Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-32223 |
|
Vulnerability in microsoft (CVE-2026-32223)
vulnerability in microsoft (CVE-2026-32223). Successful exploitation can lead to full system takeover.
|
| CVE-2026-32077 |
|
Vulnerability in microsoft (CVE-2026-32077)
vulnerability in microsoft (CVE-2026-32077). Successful exploitation can lead to full system takeover.
|
| CVE-2026-23666 |
|
Vulnerability in csharp (CVE-2026-23666)
vulnerability in csharp (CVE-2026-23666). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-65134 |
|
Cross-Site Scripting (XSS) in CVE-2025-65134 (CVE-2025-65134)
cross-site scripting in CVE-2025-65134 (CVE-2025-65134). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-33116 |
|
Vulnerability in csharp (CVE-2026-33116)
vulnerability in csharp (CVE-2026-33116). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-32203 |
|
Vulnerability in csharp (CVE-2026-32203)
vulnerability in csharp (CVE-2026-32203). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-32181 |
|
Privilege Escalation in microsoft (CVE-2026-32181)
vulnerability in microsoft (CVE-2026-32181). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-32154 |
|
Use-After-Free in microsoft (CVE-2026-32154)
vulnerability in microsoft (CVE-2026-32154). Successful exploitation can lead to full system takeover.
|
| CVE-2026-32152 |
|
Use-After-Free in microsoft (CVE-2026-32152)
vulnerability in microsoft (CVE-2026-32152). Successful exploitation can lead to full system takeover.
|
| CVE-2026-26151 |
|
Vulnerability in microsoft (CVE-2026-26151)
vulnerability in microsoft (CVE-2026-26151). Confidential information can be exposed externally.
|
| CVE-2026-5713 |
|
Vulnerability in python-min (CVE-2026-5713)
vulnerability in python-min (CVE-2026-5713). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-61624 |
|
Path Traversal in path-traversal (CVE-2025-61624)
path traversal in path-traversal (CVE-2025-61624). Data can be tampered with by attackers.
|
| CVE-2025-53847 |
|
Vulnerability in fortinet (CVE-2025-53847)
vulnerability in fortinet (CVE-2025-53847). Data can be tampered with by attackers.
|
| CVE-2026-37980 |
|
Cross-Site Scripting (XSS) in redhat (CVE-2026-37980)
cross-site scripting in redhat (CVE-2026-37980). Confidential information can be exposed externally. Exploitable via ``organization.alias``.
|
| CVE-2025-61260 |
|
Code Injection in CVE-2025-61260 (CVE-2025-61260)
code injection in CVE-2025-61260 (CVE-2025-61260). Successful exploitation can lead to full system takeover.
|
| CVE-2026-24069 |
|
Authorization Flaw in CVE-2026-24069 (CVE-2026-24069)
vulnerability in CVE-2026-24069 (CVE-2026-24069). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-40745 |
|
Vulnerability in siemens (CVE-2025-40745)
vulnerability in siemens (CVE-2025-40745). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34257 |
|
Open Redirect in sap (CVE-2026-34257)
vulnerability in sap (CVE-2026-34257). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-27674 |
|
Code Injection in sap (CVE-2026-27674)
code injection in sap (CVE-2026-27674). Risk of unauthorized operations or information disclosure.
|
| CVE-2009-0238 KEV |
|
[KEV] Code Injection in Microsoft office (CVE-2009-0238)
code injection in Microsoft office (CVE-2009-0238). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2026-32201 KEV |
|
[KEV] Vulnerability in Microsoft sharepoint-server (CVE-2026-32201)
vulnerability in Microsoft sharepoint-server (CVE-2026-32201). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2026-39979 |
|
Out-of-Bounds Read in jqlang (CVE-2026-39979)
vulnerability in jqlang (CVE-2026-39979). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-31280 |
|
Vulnerability in dos (CVE-2026-31280)
vulnerability in dos (CVE-2026-31280). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-33901 |
|
Vulnerability in imagemagick (CVE-2026-33901)
vulnerability in imagemagick (CVE-2026-33901). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-28291 |
|
OS Command Injection in simple-git-project (CVE-2026-28291)
OS command injection in simple-git-project (CVE-2026-28291). Successful exploitation can lead to full system takeover.
|
| CVE-2026-6192 |
|
Vulnerability in c (CVE-2026-6192)
vulnerability in c (CVE-2026-6192). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-33555 |
|
Vulnerability in haproxy (CVE-2026-33555)
vulnerability in haproxy (CVE-2026-33555). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-69627 |
|
Use-After-Free in gonitro (CVE-2025-69627)
vulnerability in gonitro (CVE-2025-69627). Successful exploitation can lead to full system takeover.
|
| CVE-2025-69624 |
|
Vulnerability in gonitro (CVE-2025-69624)
vulnerability in gonitro (CVE-2025-69624). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-63743 |
|
Cross-Site Scripting (XSS) in CVE-2025-63743 (CVE-2025-63743)
cross-site scripting in CVE-2025-63743 (CVE-2025-63743). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `8.3.2` or later.
|
| CVE-2026-1462 |
|
Unsafe Deserialization in keras (CVE-2026-1462)
vulnerability in keras (CVE-2026-1462). Successful exploitation can lead to full system takeover. Exploitable via ``TFSMLayer``. Mitigation: upgrade to `3.13.2` or later.
|
| CVE-2026-36942 |
|
SQL Injection in sqli (CVE-2026-36942)
SQL injection in sqli (CVE-2026-36942). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-36946 |
|
SQL Injection in sqli (CVE-2026-36946)
SQL injection in sqli (CVE-2026-36946). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-31426 |
|
Use-After-Free in c (CVE-2026-31426)
vulnerability in c (CVE-2026-31426). Successful exploitation can lead to full system takeover.
|
| CVE-2026-31424 |
|
Vulnerability in c (CVE-2026-31424)
vulnerability in c (CVE-2026-31424). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-31425 |
|
Vulnerability in c (CVE-2026-31425)
vulnerability in c (CVE-2026-31425). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-31427 |
|
Vulnerability in c (CVE-2026-31427)
vulnerability in c (CVE-2026-31427). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-31428 |
|
Vulnerability in linux (CVE-2026-31428)
vulnerability in linux (CVE-2026-31428). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-31421 |
|
Vulnerability in c (CVE-2026-31421)
vulnerability in c (CVE-2026-31421). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-31422 |
|
Vulnerability in c (CVE-2026-31422)
vulnerability in c (CVE-2026-31422). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-31420 |
|
Vulnerability in linux (CVE-2026-31420)
vulnerability in linux (CVE-2026-31420). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-31417 |
|
Vulnerability in linux (CVE-2026-31417)
vulnerability in linux (CVE-2026-31417). Risk of unauthorized operations or information disclosure. Exploitable via ``x25_sock.fraglen``.
|
| CVE-2026-31419 |
|
Use-After-Free in c (CVE-2026-31419)
vulnerability in c (CVE-2026-31419). Successful exploitation can lead to full system takeover.
|
| CVE-2026-36874 |
|
SQL Injection in sqli (CVE-2026-36874)
SQL injection in sqli (CVE-2026-36874). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-0233 |
|
Vulnerability in paloaltonetworks (CVE-2026-0233)
vulnerability in paloaltonetworks (CVE-2026-0233). Successful exploitation can lead to full system takeover.
|
| CVE-2026-0234 |
|
Vulnerability in paloaltonetworks (CVE-2026-0234)
vulnerability in paloaltonetworks (CVE-2026-0234). Confidential information can be exposed externally.
|
| CVE-2026-5936 |
|
SSRF (Server-Side Request Forgery) in foxit (CVE-2026-5936)
SSRF in foxit (CVE-2026-5936). Confidential information can be exposed externally.
|
| CVE-2026-40447 |
|
Vulnerability in samsung (CVE-2026-40447)
vulnerability in samsung (CVE-2026-40447). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-40446 |
|
Vulnerability in samsung (CVE-2026-40446)
vulnerability in samsung (CVE-2026-40446). Data can be tampered with by attackers.
|
| CVE-2026-6179 |
|
Cross-Site Scripting (XSS) in fptsoftware (CVE-2026-6179)
cross-site scripting in fptsoftware (CVE-2026-6179). Risk of unauthorized operations or information disclosure.
|