Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: cwe Clear
ID Title
CVE-2026-4691 Use-After-Free in mozilla (CVE-2026-4691)
vulnerability in mozilla (CVE-2026-4691). Successful exploitation can lead to full system takeover.
CVE-2026-4686 Vulnerability in mozilla (CVE-2026-4686)
vulnerability in mozilla (CVE-2026-4686). Risk of unauthorized operations or information disclosure.
CVE-2026-4685 Vulnerability in mozilla (CVE-2026-4685)
vulnerability in mozilla (CVE-2026-4685). Risk of unauthorized operations or information disclosure.
CVE-2026-4687 Vulnerability in mozilla (CVE-2026-4687)
vulnerability in mozilla (CVE-2026-4687). Risk of unauthorized operations or information disclosure.
CVE-2026-4693 Vulnerability in mozilla (CVE-2026-4693)
vulnerability in mozilla (CVE-2026-4693). Risk of unauthorized operations or information disclosure.
CVE-2026-4775 Vulnerability in dos (CVE-2026-4775)
vulnerability in dos (CVE-2026-4775). Successful exploitation can lead to full system takeover.
CVE-2026-33554 Vulnerability in CVE-2026-33554 (CVE-2026-33554)
vulnerability in CVE-2026-33554 (CVE-2026-33554). Risk of unauthorized operations or information disclosure.
CVE-2026-4698 Vulnerability in mozilla (CVE-2026-4698)
vulnerability in mozilla (CVE-2026-4698). Successful exploitation can lead to full system takeover.
CVE-2025-64998 Vulnerability in checkmk (CVE-2025-64998)
vulnerability in checkmk (CVE-2025-64998). Successful exploitation can lead to full system takeover.
CVE-2019-25634 Out-of-Bounds Write in 4mhz (CVE-2019-25634)
out-of-bounds write in 4mhz (CVE-2019-25634). Successful exploitation can lead to full system takeover.
CVE-2026-32642 Authorization Flaw in apache (CVE-2026-32642)
vulnerability in apache (CVE-2026-32642). Risk of unauthorized operations or information disclosure.
CVE-2026-33211 Path Traversal in path-traversal (CVE-2026-33211)
path traversal in path-traversal (CVE-2026-33211). Confidential information can be exposed externally. Exploitable via ``pathInRepo``.
CVE-2026-33195 Path Traversal in activestorage (CVE-2026-33195)
path traversal in activestorage (CVE-2026-33195). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `7.2.3.1` or later.
CVE-2026-4368 Vulnerability in CVE-2026-4368 (CVE-2026-4368)
vulnerability in CVE-2026-4368 (CVE-2026-4368). Risk of unauthorized operations or information disclosure.
CVE-2026-32851 Cross-Site Scripting (XSS) in mailenable (CVE-2026-32851)
cross-site scripting in mailenable (CVE-2026-32851). Risk of unauthorized operations or information disclosure.
CVE-2025-52204 Cross-Site Scripting (XSS) in CVE-2025-52204 (CVE-2025-52204)
cross-site scripting in CVE-2025-52204 (CVE-2025-52204). Risk of unauthorized operations or information disclosure.
CVE-2026-25075 Vulnerability in dos (CVE-2026-25075)
vulnerability in dos (CVE-2026-25075). Risk of unauthorized operations or information disclosure.
CVE-2026-32284 Out-of-Bounds Read in github.com/shamaton/msgpack (CVE-2026-32284)
vulnerability in github.com/shamaton/msgpack (CVE-2026-32284). Risk of unauthorized operations or information disclosure.
CVE-2026-32845 Vulnerability in dos (CVE-2026-32845)
vulnerability in dos (CVE-2026-32845). Successful exploitation can lead to full system takeover.
CVE-2026-4647 Out-of-Bounds Read in gnu (CVE-2026-4647)
vulnerability in gnu (CVE-2026-4647). Risk of unauthorized operations or information disclosure.
CVE-2025-41008 SQL Injection in sqli (CVE-2025-41008)
SQL injection in sqli (CVE-2025-41008). Risk of unauthorized operations or information disclosure.
CVE-2026-1958 Vulnerability in CVE-2026-1958 (CVE-2026-1958)
vulnerability in CVE-2026-1958 (CVE-2026-1958). Risk of unauthorized operations or information disclosure.
CVE-2025-41007 SQL Injection in sqli (CVE-2025-41007)
SQL injection in sqli (CVE-2025-41007). Risk of unauthorized operations or information disclosure.
CVE-2026-31846 Vulnerability in CVE-2026-31846 (CVE-2026-31846)
vulnerability in CVE-2026-31846 (CVE-2026-31846). Confidential information can be exposed externally.
CVE-2026-28809 XXE (XML External Entity) in esaml (CVE-2026-28809)
vulnerability in esaml (CVE-2026-28809). Risk of unauthorized operations or information disclosure.
CVE-2026-4600 Vulnerability in kjur (CVE-2026-4600)
vulnerability in kjur (CVE-2026-4600). Confidential information can be exposed externally.
CVE-2026-4598 Vulnerability in kjur (CVE-2026-4598)
vulnerability in kjur (CVE-2026-4598). Risk of unauthorized operations or information disclosure.
CVE-2026-4606 Vulnerability in privilege-escalation (CVE-2026-4606)
vulnerability in privilege-escalation (CVE-2026-4606). Risk of unauthorized operations or information disclosure.
CVE-2026-4115 Vulnerability in c (CVE-2026-4115)
vulnerability in c (CVE-2026-4115). Risk of unauthorized operations or information disclosure.
CVE-2026-32896 Vulnerability in openclaw (CVE-2026-32896)
vulnerability in openclaw (CVE-2026-32896). Risk of unauthorized operations or information disclosure.
CVE-2026-32067 Authorization Flaw in openclaw (CVE-2026-32067)
vulnerability in openclaw (CVE-2026-32067). Risk of unauthorized operations or information disclosure.
CVE-2026-23536 Path Traversal in CVE-2026-23536 (CVE-2026-23536)
path traversal in CVE-2026-23536 (CVE-2026-23536). Confidential information can be exposed externally.
CVE-2026-33236 Path Traversal in path-traversal (CVE-2026-33236)
path traversal in path-traversal (CVE-2026-33236). Data can be tampered with by attackers. Exploitable via ``subdir``.
CVE-2026-33228 Vulnerability in webreflection (CVE-2026-33228)
vulnerability in webreflection (CVE-2026-33228). Successful exploitation can lead to full system takeover.
CVE-2026-33231 Vulnerability in dos (CVE-2026-33231)
vulnerability in dos (CVE-2026-33231). Risk of unauthorized operations or information disclosure. Exploitable via `GET /SHUTDOWN`.
CVE-2026-33180 Information Disclosure in CVE-2026-33180 (CVE-2026-33180)
vulnerability in CVE-2026-33180 (CVE-2026-33180). Confidential information can be exposed externally.
CVE-2026-29796 Vulnerability in privilege-escalation (CVE-2026-29796)
vulnerability in privilege-escalation (CVE-2026-29796). Confidential information can be exposed externally.
CVE-2026-33210 Vulnerability in dos (CVE-2026-33210)
vulnerability in dos (CVE-2026-33210). Confidential information can be exposed externally.
CVE-2026-33186 Vulnerability in grpc (CVE-2026-33186)
vulnerability in grpc (CVE-2026-33186). Confidential information can be exposed externally. Exploitable via ``info.FullMethod``.
CVE-2026-33150 Use-After-Free in libfuse-project (CVE-2026-33150)
vulnerability in libfuse-project (CVE-2026-33150). Successful exploitation can lead to full system takeover.
CVE-2026-4438 Vulnerability in c (CVE-2026-4438)
vulnerability in c (CVE-2026-4438). Risk of unauthorized operations or information disclosure.
CVE-2026-4437 Out-of-Bounds Read in c (CVE-2026-4437)
vulnerability in c (CVE-2026-4437). Risk of unauthorized operations or information disclosure.
CVE-2025-63260 Cross-Site Scripting (XSS) in syncfusion (CVE-2025-63260)
cross-site scripting in syncfusion (CVE-2025-63260). Risk of unauthorized operations or information disclosure.
CVE-2026-22895 Cross-Site Scripting (XSS) in qnap (CVE-2026-22895)
cross-site scripting in qnap (CVE-2026-22895). Risk of unauthorized operations or information disclosure.
CVE-2025-15608 Vulnerability in tp-link (CVE-2025-15608)
vulnerability in tp-link (CVE-2025-15608). Successful exploitation can lead to full system takeover.
CVE-2025-67260 Unrestricted File Upload in aster-te (CVE-2025-67260)
vulnerability in aster-te (CVE-2025-67260). Successful exploitation can lead to full system takeover.
CVE-2026-4519 Vulnerability in CVE-2026-4519 (CVE-2026-4519)
vulnerability in CVE-2026-4519 (CVE-2026-4519). Risk of unauthorized operations or information disclosure.
CVE-2026-32305 Authentication Bypass in traefik (CVE-2026-32305)
authentication bypass in traefik (CVE-2026-32305). Risk of unauthorized operations or information disclosure.
CVE-2026-0677 Unsafe Deserialization in deserialization (CVE-2026-0677)
vulnerability in deserialization (CVE-2026-0677). Risk of unauthorized operations or information disclosure.
CVE-2026-23277 Vulnerability in c (CVE-2026-23277)
vulnerability in c (CVE-2026-23277). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →