Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2025-13901 |
|
Vulnerability in dos (CVE-2025-13901)
vulnerability in dos (CVE-2025-13901). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-29773 |
|
Authorization Flaw in privilege-escalation (CVE-2026-29773)
vulnerability in privilege-escalation (CVE-2026-29773). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-28267 |
|
Vulnerability in CVE-2026-28267 (CVE-2026-28267)
vulnerability in CVE-2026-28267 (CVE-2026-28267). Data can be tampered with by attackers.
|
| CVE-2026-27688 |
|
Vulnerability in sap (CVE-2026-27688)
vulnerability in sap (CVE-2026-27688). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-24310 |
|
Vulnerability in sap (CVE-2026-24310)
vulnerability in sap (CVE-2026-24310). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-24316 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-24316)
SSRF in ssrf (CVE-2026-24316). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-24309 |
|
Vulnerability in sap (CVE-2026-24309)
vulnerability in sap (CVE-2026-24309). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-28691 |
|
Vulnerability in imagemagick (CVE-2026-28691)
vulnerability in imagemagick (CVE-2026-28691). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `7.1.2-16` or later.
|
| CVE-2026-28693 |
|
Out-of-Bounds Read in imagemagick (CVE-2026-28693)
vulnerability in imagemagick (CVE-2026-28693). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `7.1.2-16` or later.
|
| CVE-2026-1776 |
|
Path Traversal in path-traversal (CVE-2026-1776)
path traversal in path-traversal (CVE-2026-1776). Confidential information can be exposed externally.
|
| CVE-2026-0846 |
|
Vulnerability in nltk (CVE-2026-0846)
vulnerability in nltk (CVE-2026-0846). Confidential information can be exposed externally. Exploitable via ``nltk.util``. Mitigation: upgrade to `3.9.3` or later.
|
| CVE-2026-25960 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-25960)
SSRF in ssrf (CVE-2026-25960). Confidential information can be exposed externally.
|
| CVE-2026-29023 |
|
Vulnerability in CVE-2026-29023 (CVE-2026-29023)
vulnerability in CVE-2026-29023 (CVE-2026-29023). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-70060 |
|
Cross-Site Scripting (XSS) in ymfe (CVE-2025-70060)
cross-site scripting in ymfe (CVE-2025-70060). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-70040 |
|
Vulnerability in lupinlin1 (CVE-2025-70040)
vulnerability in lupinlin1 (CVE-2025-70040). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-14027 |
|
Vulnerability in Kernel (CVE-2024-14027)
vulnerability in Kernel (CVE-2024-14027). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `6.12.77` or later.
|
| CVE-2026-3823 |
|
Vulnerability in blackbeartechhive (CVE-2026-3823)
vulnerability in blackbeartechhive (CVE-2026-3823). Successful exploitation can lead to full system takeover.
|
| CVE-2025-26399 KEV |
|
[KEV] Unsafe Deserialization in Solarwinds web-help-desk (CVE-2025-26399)
vulnerability in Solarwinds web-help-desk (CVE-2025-26399). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2021-22054 KEV |
|
[KEV] SSRF (Server-Side Request Forgery) in Omnissa workspace-one-uem (CVE-2021-22054)
SSRF in Omnissa workspace-one-uem (CVE-2021-22054). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2026-1603 KEV |
|
[KEV] Vulnerability in Ivanti endpoint-manager-epm (CVE-2026-1603)
vulnerability in Ivanti endpoint-manager-epm (CVE-2026-1603). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2026-29786 |
|
Path Traversal in c (CVE-2026-29786)
path traversal in c (CVE-2026-29786). Data can be tampered with by attackers.
|
| CVE-2026-29771 |
|
Vulnerability in dos (CVE-2026-29771)
vulnerability in dos (CVE-2026-29771). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-29186 |
|
Vulnerability in linuxfoundation (CVE-2026-29186)
vulnerability in linuxfoundation (CVE-2026-29186). Confidential information can be exposed externally.
|
| CVE-2026-2219 |
|
Vulnerability in dos (CVE-2026-2219)
vulnerability in dos (CVE-2026-2219). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-24308 |
|
Vulnerability in apache (CVE-2026-24308)
vulnerability in apache (CVE-2026-24308). Confidential information can be exposed externally.
|
| CVE-2026-24281 |
|
Vulnerability in apache (CVE-2026-24281)
vulnerability in apache (CVE-2026-24281). Confidential information can be exposed externally.
|
| CVE-2026-27137 |
|
Vulnerability in stdlib (CVE-2026-27137)
vulnerability in stdlib (CVE-2026-27137). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.26.1` or later.
|
| CVE-2026-25679 |
|
Vulnerability in stdlib (CVE-2026-25679)
vulnerability in stdlib (CVE-2026-25679). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.25.8, 1.26.1` or later.
|
| CVE-2025-69654 |
|
Vulnerability in dos (CVE-2025-69654)
vulnerability in dos (CVE-2025-69654). Risk of unauthorized operations or information disclosure. Exploitable via ``qjs``.
|
| CVE-2026-29063 |
|
Vulnerability in immutable-js (CVE-2026-29063)
vulnerability in immutable-js (CVE-2026-29063). Successful exploitation can lead to full system takeover.
|
| CVE-2026-29091 |
|
Vulnerability in locutus (CVE-2026-29091)
vulnerability in locutus (CVE-2026-29091). Successful exploitation can lead to full system takeover.
|
| CVE-2026-29783 |
|
OS Command Injection in github (CVE-2026-29783)
OS command injection in github (CVE-2026-29783). Successful exploitation can lead to full system takeover.
|
| CVE-2025-70363 |
|
Vulnerability in ibexa (CVE-2025-70363)
vulnerability in ibexa (CVE-2025-70363). Confidential information can be exposed externally.
|
| CVE-2026-26018 |
|
Vulnerability in dos (CVE-2026-26018)
vulnerability in dos (CVE-2026-26018). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-26017 |
|
Vulnerability in corednsio (CVE-2026-26017)
vulnerability in corednsio (CVE-2026-26017). Confidential information can be exposed externally.
|
| CVE-2026-2754 |
|
Vulnerability in navtor (CVE-2026-2754)
vulnerability in navtor (CVE-2026-2754). Confidential information can be exposed externally.
|
| CVE-2026-2753 |
|
Vulnerability in path-traversal (CVE-2026-2753)
vulnerability in path-traversal (CVE-2026-2753). Confidential information can be exposed externally.
|
| CVE-2026-2752 |
|
Vulnerability in csharp (CVE-2026-2752)
vulnerability in csharp (CVE-2026-2752). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-23925 |
|
Authorization Flaw in zabbix (CVE-2026-23925)
vulnerability in zabbix (CVE-2026-23925). Confidential information can be exposed externally.
|
| CVE-2026-29062 |
|
Vulnerability in dos (CVE-2026-29062)
vulnerability in dos (CVE-2026-29062). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-28802 |
|
Vulnerability in authlib (CVE-2026-28802)
vulnerability in authlib (CVE-2026-28802). Successful exploitation can lead to full system takeover.
|
| CVE-2026-22723 |
|
Vulnerability in cloudfoundry (CVE-2026-22723)
vulnerability in cloudfoundry (CVE-2026-22723). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-3009 |
|
Authorization Flaw in redhat (CVE-2026-3009)
vulnerability in redhat (CVE-2026-3009). Confidential information can be exposed externally.
|
| CVE-2026-3047 |
|
Vulnerability in redhat (CVE-2026-3047)
vulnerability in redhat (CVE-2026-3047). Successful exploitation can lead to full system takeover.
|
| CVE-2026-29054 |
|
Vulnerability in traefik (CVE-2026-29054)
vulnerability in traefik (CVE-2026-29054). Data can be tampered with by attackers.
|
| CVE-2026-26999 |
|
Vulnerability in traefik (CVE-2026-26999)
vulnerability in traefik (CVE-2026-26999). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-45691 |
|
Path Traversal in vibrantlabsai (CVE-2025-45691)
path traversal in vibrantlabsai (CVE-2025-45691). Confidential information can be exposed externally.
|
| CVE-2026-30796 |
|
Vulnerability in rustdesk (CVE-2026-30796)
vulnerability in rustdesk (CVE-2026-30796). Confidential information can be exposed externally.
|
| CVE-2026-30798 |
|
Vulnerability in rustdesk (CVE-2026-30798)
vulnerability in rustdesk (CVE-2026-30798). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-30794 |
|
Vulnerability in rustdesk (CVE-2026-30794)
vulnerability in rustdesk (CVE-2026-30794). Successful exploitation can lead to full system takeover.
|