Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-4691 |
|
Use-After-Free in mozilla (CVE-2026-4691)
vulnerability in mozilla (CVE-2026-4691). Successful exploitation can lead to full system takeover.
|
| CVE-2026-4686 |
|
Vulnerability in mozilla (CVE-2026-4686)
vulnerability in mozilla (CVE-2026-4686). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4685 |
|
Vulnerability in mozilla (CVE-2026-4685)
vulnerability in mozilla (CVE-2026-4685). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4687 |
|
Vulnerability in mozilla (CVE-2026-4687)
vulnerability in mozilla (CVE-2026-4687). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4693 |
|
Vulnerability in mozilla (CVE-2026-4693)
vulnerability in mozilla (CVE-2026-4693). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4775 |
|
Vulnerability in dos (CVE-2026-4775)
vulnerability in dos (CVE-2026-4775). Successful exploitation can lead to full system takeover.
|
| CVE-2026-33554 |
|
Vulnerability in CVE-2026-33554 (CVE-2026-33554)
vulnerability in CVE-2026-33554 (CVE-2026-33554). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4698 |
|
Vulnerability in mozilla (CVE-2026-4698)
vulnerability in mozilla (CVE-2026-4698). Successful exploitation can lead to full system takeover.
|
| CVE-2025-64998 |
|
Vulnerability in checkmk (CVE-2025-64998)
vulnerability in checkmk (CVE-2025-64998). Successful exploitation can lead to full system takeover.
|
| CVE-2019-25634 |
|
Out-of-Bounds Write in 4mhz (CVE-2019-25634)
out-of-bounds write in 4mhz (CVE-2019-25634). Successful exploitation can lead to full system takeover.
|
| CVE-2026-32642 |
|
Authorization Flaw in apache (CVE-2026-32642)
vulnerability in apache (CVE-2026-32642). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-33211 |
|
Path Traversal in path-traversal (CVE-2026-33211)
path traversal in path-traversal (CVE-2026-33211). Confidential information can be exposed externally. Exploitable via ``pathInRepo``.
|
| CVE-2026-33195 |
|
Path Traversal in activestorage (CVE-2026-33195)
path traversal in activestorage (CVE-2026-33195). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `7.2.3.1` or later.
|
| CVE-2026-4368 |
|
Vulnerability in CVE-2026-4368 (CVE-2026-4368)
vulnerability in CVE-2026-4368 (CVE-2026-4368). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-32851 |
|
Cross-Site Scripting (XSS) in mailenable (CVE-2026-32851)
cross-site scripting in mailenable (CVE-2026-32851). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-52204 |
|
Cross-Site Scripting (XSS) in CVE-2025-52204 (CVE-2025-52204)
cross-site scripting in CVE-2025-52204 (CVE-2025-52204). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-25075 |
|
Vulnerability in dos (CVE-2026-25075)
vulnerability in dos (CVE-2026-25075). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-32284 |
|
Out-of-Bounds Read in github.com/shamaton/msgpack (CVE-2026-32284)
vulnerability in github.com/shamaton/msgpack (CVE-2026-32284). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-32845 |
|
Vulnerability in dos (CVE-2026-32845)
vulnerability in dos (CVE-2026-32845). Successful exploitation can lead to full system takeover.
|
| CVE-2026-4647 |
|
Out-of-Bounds Read in gnu (CVE-2026-4647)
vulnerability in gnu (CVE-2026-4647). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-41008 |
|
SQL Injection in sqli (CVE-2025-41008)
SQL injection in sqli (CVE-2025-41008). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-1958 |
|
Vulnerability in CVE-2026-1958 (CVE-2026-1958)
vulnerability in CVE-2026-1958 (CVE-2026-1958). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-41007 |
|
SQL Injection in sqli (CVE-2025-41007)
SQL injection in sqli (CVE-2025-41007). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-31846 |
|
Vulnerability in CVE-2026-31846 (CVE-2026-31846)
vulnerability in CVE-2026-31846 (CVE-2026-31846). Confidential information can be exposed externally.
|
| CVE-2026-28809 |
|
XXE (XML External Entity) in esaml (CVE-2026-28809)
vulnerability in esaml (CVE-2026-28809). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4600 |
|
Vulnerability in kjur (CVE-2026-4600)
vulnerability in kjur (CVE-2026-4600). Confidential information can be exposed externally.
|
| CVE-2026-4598 |
|
Vulnerability in kjur (CVE-2026-4598)
vulnerability in kjur (CVE-2026-4598). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4606 |
|
Vulnerability in privilege-escalation (CVE-2026-4606)
vulnerability in privilege-escalation (CVE-2026-4606). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4115 |
|
Vulnerability in c (CVE-2026-4115)
vulnerability in c (CVE-2026-4115). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-32896 |
|
Vulnerability in openclaw (CVE-2026-32896)
vulnerability in openclaw (CVE-2026-32896). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-32067 |
|
Authorization Flaw in openclaw (CVE-2026-32067)
vulnerability in openclaw (CVE-2026-32067). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-23536 |
|
Path Traversal in CVE-2026-23536 (CVE-2026-23536)
path traversal in CVE-2026-23536 (CVE-2026-23536). Confidential information can be exposed externally.
|
| CVE-2026-33236 |
|
Path Traversal in path-traversal (CVE-2026-33236)
path traversal in path-traversal (CVE-2026-33236). Data can be tampered with by attackers. Exploitable via ``subdir``.
|
| CVE-2026-33228 |
|
Vulnerability in webreflection (CVE-2026-33228)
vulnerability in webreflection (CVE-2026-33228). Successful exploitation can lead to full system takeover.
|
| CVE-2026-33231 |
|
Vulnerability in dos (CVE-2026-33231)
vulnerability in dos (CVE-2026-33231). Risk of unauthorized operations or information disclosure. Exploitable via `GET /SHUTDOWN`.
|
| CVE-2026-33180 |
|
Information Disclosure in CVE-2026-33180 (CVE-2026-33180)
vulnerability in CVE-2026-33180 (CVE-2026-33180). Confidential information can be exposed externally.
|
| CVE-2026-29796 |
|
Vulnerability in privilege-escalation (CVE-2026-29796)
vulnerability in privilege-escalation (CVE-2026-29796). Confidential information can be exposed externally.
|
| CVE-2026-33210 |
|
Vulnerability in dos (CVE-2026-33210)
vulnerability in dos (CVE-2026-33210). Confidential information can be exposed externally.
|
| CVE-2026-33186 |
|
Vulnerability in grpc (CVE-2026-33186)
vulnerability in grpc (CVE-2026-33186). Confidential information can be exposed externally. Exploitable via ``info.FullMethod``.
|
| CVE-2026-33150 |
|
Use-After-Free in libfuse-project (CVE-2026-33150)
vulnerability in libfuse-project (CVE-2026-33150). Successful exploitation can lead to full system takeover.
|
| CVE-2026-4438 |
|
Vulnerability in c (CVE-2026-4438)
vulnerability in c (CVE-2026-4438). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4437 |
|
Out-of-Bounds Read in c (CVE-2026-4437)
vulnerability in c (CVE-2026-4437). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-63260 |
|
Cross-Site Scripting (XSS) in syncfusion (CVE-2025-63260)
cross-site scripting in syncfusion (CVE-2025-63260). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-22895 |
|
Cross-Site Scripting (XSS) in qnap (CVE-2026-22895)
cross-site scripting in qnap (CVE-2026-22895). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-15608 |
|
Vulnerability in tp-link (CVE-2025-15608)
vulnerability in tp-link (CVE-2025-15608). Successful exploitation can lead to full system takeover.
|
| CVE-2025-67260 |
|
Unrestricted File Upload in aster-te (CVE-2025-67260)
vulnerability in aster-te (CVE-2025-67260). Successful exploitation can lead to full system takeover.
|
| CVE-2026-4519 |
|
Vulnerability in CVE-2026-4519 (CVE-2026-4519)
vulnerability in CVE-2026-4519 (CVE-2026-4519). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-32305 |
|
Authentication Bypass in traefik (CVE-2026-32305)
authentication bypass in traefik (CVE-2026-32305). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-0677 |
|
Unsafe Deserialization in deserialization (CVE-2026-0677)
vulnerability in deserialization (CVE-2026-0677). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-23277 |
|
Vulnerability in c (CVE-2026-23277)
vulnerability in c (CVE-2026-23277). Risk of unauthorized operations or information disclosure.
|