Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-34071 |
|
Cross-Site Scripting (XSS) in stirling (CVE-2026-34071)
cross-site scripting in stirling (CVE-2026-34071). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-32846 |
|
Path Traversal in openclaw (CVE-2026-32846)
path traversal in openclaw (CVE-2026-32846). Confidential information can be exposed externally. Mitigation: upgrade to `2026.03.28` or later.
|
| CVE-2026-1961 |
|
OS Command Injection in CVE-2026-1961 (CVE-2026-1961)
OS command injection in CVE-2026-1961 (CVE-2026-1961). Successful exploitation can lead to full system takeover.
|
| CVE-2026-4887 |
|
Vulnerability in dos (CVE-2026-4887)
vulnerability in dos (CVE-2026-4887). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-29934 |
|
Cross-Site Scripting (XSS) in lightcms-project (CVE-2026-29934)
cross-site scripting in lightcms-project (CVE-2026-29934). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4809 |
|
Unrestricted File Upload in laravel (CVE-2026-4809)
vulnerability in laravel (CVE-2026-4809). Successful exploitation can lead to full system takeover.
|
| CVE-2026-24068 |
|
Vulnerability in privilege-escalation (CVE-2026-24068)
vulnerability in privilege-escalation (CVE-2026-24068). Successful exploitation can lead to full system takeover.
|
| CVE-2026-23398 |
|
Vulnerability in c (CVE-2026-23398)
vulnerability in c (CVE-2026-23398). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-23397 |
|
Out-of-Bounds Read in Kernel (CVE-2026-23397)
vulnerability in Kernel (CVE-2026-23397). Confidential information can be exposed externally. Mitigation: upgrade to `6.1.167, 6.6.130, 6.12.78, 6.18.20, 6.19.10` or later.
|
| CVE-2026-4263 |
|
Authorization Flaw in CVE-2026-4263 (CVE-2026-4263)
vulnerability in CVE-2026-4263 (CVE-2026-4263). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4262 |
|
Authorization Flaw in CVE-2026-4262 (CVE-2026-4262)
vulnerability in CVE-2026-4262 (CVE-2026-4262). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4874 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-4874)
SSRF in ssrf (CVE-2026-4874). Risk of unauthorized operations or information disclosure. Exploitable via ``client_session_host``.
|
| CVE-2026-28760 |
|
Vulnerability in CVE-2026-28760 (CVE-2026-28760)
vulnerability in CVE-2026-28760 (CVE-2026-28760). Successful exploitation can lead to full system takeover.
|
| CVE-2026-32680 |
|
Vulnerability in CVE-2026-32680 (CVE-2026-32680)
vulnerability in CVE-2026-32680 (CVE-2026-32680). Successful exploitation can lead to full system takeover.
|
| CVE-2025-15101 |
|
OS Command Injection in asus (CVE-2025-15101)
OS command injection in asus (CVE-2025-15101). Successful exploitation can lead to full system takeover.
|
| CVE-2026-33526 |
|
Use-After-Free in dos (CVE-2026-33526)
vulnerability in dos (CVE-2026-33526). Risk of unauthorized operations or information disclosure. Exploitable via ``icp_port``.
|
| CVE-2026-32748 |
|
Vulnerability in dos (CVE-2026-32748)
vulnerability in dos (CVE-2026-32748). Risk of unauthorized operations or information disclosure. Exploitable via ``icp_port``.
|
| CVE-2026-33634 KEV |
|
[KEV] Vulnerability in Aquasecurity trivy (CVE-2026-33634)
vulnerability in Aquasecurity trivy (CVE-2026-33634). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2026-33219 |
|
Vulnerability in linuxfoundation (CVE-2026-33219)
vulnerability in linuxfoundation (CVE-2026-33219). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-33217 |
|
Authorization Flaw in linuxfoundation (CVE-2026-33217)
vulnerability in linuxfoundation (CVE-2026-33217). Data can be tampered with by attackers.
|
| CVE-2026-33218 |
|
Vulnerability in linuxfoundation (CVE-2026-33218)
vulnerability in linuxfoundation (CVE-2026-33218). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-29785 |
|
Vulnerability in linuxfoundation (CVE-2026-29785)
vulnerability in linuxfoundation (CVE-2026-29785). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-27889 |
|
Vulnerability in linuxfoundation (CVE-2026-27889)
vulnerability in linuxfoundation (CVE-2026-27889). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-1001 |
|
Cross-Site Scripting (XSS) in domoticz (CVE-2026-1001)
cross-site scripting in domoticz (CVE-2026-1001). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-30587 |
|
Cross-Site Scripting (XSS) in seafile (CVE-2026-30587)
cross-site scripting in seafile (CVE-2026-30587). Confidential information can be exposed externally. Mitigation: upgrade to `13.0.17` or later.
|
| CVE-2025-67030 |
|
Path Traversal in path-traversal (CVE-2025-67030)
path traversal in path-traversal (CVE-2025-67030). Successful exploitation can lead to full system takeover.
|
| CVE-2026-34085 |
|
Vulnerability in c (CVE-2026-34085)
vulnerability in c (CVE-2026-34085). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-26832 |
|
OS Command Injection in zapolnoch (CVE-2026-26832)
OS command injection in zapolnoch (CVE-2026-26832). Successful exploitation can lead to full system takeover.
|
| CVE-2026-3104 |
|
Vulnerability in isc (CVE-2026-3104)
vulnerability in isc (CVE-2026-3104). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-3591 |
|
Vulnerability in isc (CVE-2026-3591)
vulnerability in isc (CVE-2026-3591). Risk of unauthorized operations or information disclosure. Exploitable via ``named``.
|
| CVE-2026-28529 |
|
Use-After-Free in privilege-escalation (CVE-2026-28529)
vulnerability in privilege-escalation (CVE-2026-28529). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-1519 |
|
Vulnerability in isc (CVE-2026-1519)
vulnerability in isc (CVE-2026-1519). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-51348 |
|
Vulnerability in CVE-2024-51348 (CVE-2024-51348)
vulnerability in CVE-2024-51348 (CVE-2024-51348). Successful exploitation can lead to full system takeover.
|
| CVE-2026-23300 |
|
Vulnerability in Kernel (CVE-2026-23300)
vulnerability in Kernel (CVE-2026-23300). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `6.1.167, 6.6.130, 6.12.77, 6.18.17, 6.19.7` or later.
|
| CVE-2026-23302 |
|
Vulnerability in linux (CVE-2026-23302)
vulnerability in linux (CVE-2026-23302). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-23285 |
|
Vulnerability in linux (CVE-2026-23285)
vulnerability in linux (CVE-2026-23285). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-23282 |
|
Vulnerability in linux (CVE-2026-23282)
vulnerability in linux (CVE-2026-23282). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-23288 |
|
Out-of-Bounds Read in linux (CVE-2026-23288)
vulnerability in linux (CVE-2026-23288). Successful exploitation can lead to full system takeover.
|
| CVE-2026-23394 |
|
Vulnerability in linux (CVE-2026-23394)
vulnerability in linux (CVE-2026-23394). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-23389 |
|
Vulnerability in linux (CVE-2026-23389)
vulnerability in linux (CVE-2026-23389). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-23381 |
|
Vulnerability in linux (CVE-2026-23381)
vulnerability in linux (CVE-2026-23381). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-23327 |
|
Out-of-Bounds Read in c (CVE-2026-23327)
vulnerability in c (CVE-2026-23327). Confidential information can be exposed externally.
|
| CVE-2026-23319 |
|
Use-After-Free in linux (CVE-2026-23319)
vulnerability in linux (CVE-2026-23319). Successful exploitation can lead to full system takeover.
|
| CVE-2026-23311 |
|
Vulnerability in linux (CVE-2026-23311)
vulnerability in linux (CVE-2026-23311). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-23304 |
|
Vulnerability in Kernel (CVE-2026-23304)
vulnerability in Kernel (CVE-2026-23304). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `6.1.167, 6.6.130, 6.12.77, 6.18.17, 6.19.7` or later.
|
| CVE-2026-23309 |
|
Vulnerability in linux (CVE-2026-23309)
vulnerability in linux (CVE-2026-23309). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-23305 |
|
Out-of-Bounds Read in linux (CVE-2026-23305)
vulnerability in linux (CVE-2026-23305). Confidential information can be exposed externally.
|
| CVE-2026-23306 |
|
Use-After-Free in Kernel (CVE-2026-23306)
vulnerability in Kernel (CVE-2026-23306). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `6.1.167, 6.6.130, 6.12.77, 6.18.17, 6.19.7` or later.
|
| CVE-2026-23297 |
|
Vulnerability in c (CVE-2026-23297)
vulnerability in c (CVE-2026-23297). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-23298 |
|
Vulnerability in Kernel (CVE-2026-23298)
vulnerability in Kernel (CVE-2026-23298). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `6.1.167, 6.6.130, 6.12.77, 6.18.17, 6.19.7` or later.
|