Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2025-65891 |
|
Vulnerability in dos (CVE-2025-65891)
vulnerability in dos (CVE-2025-65891). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-65886 |
|
Vulnerability in dos (CVE-2025-65886)
vulnerability in dos (CVE-2025-65886). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-65888 |
|
Vulnerability in dos (CVE-2025-65888)
vulnerability in dos (CVE-2025-65888). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-65889 |
|
Vulnerability in dos (CVE-2025-65889)
vulnerability in dos (CVE-2025-65889). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-65890 |
|
Vulnerability in dos (CVE-2025-65890)
vulnerability in dos (CVE-2025-65890). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-61140 |
|
The value function in jsonpath 1.1.1 lib/index.js is vulnerable to Prototype Pollution.
The value function in jsonpath 1.1.1 lib/index.js is vulnerable to Prototype Pollution.
|
| CVE-2025-57283 |
|
Code Injection in browserstack (CVE-2025-57283)
code injection in browserstack (CVE-2025-57283). Successful exploitation can lead to full system takeover.
|
| CVE-2026-24842 |
|
Path Traversal in path-traversal (CVE-2026-24842)
path traversal in path-traversal (CVE-2026-24842). Confidential information can be exposed externally.
|
| CVE-2026-24779 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-24779)
SSRF in ssrf (CVE-2026-24779). Confidential information can be exposed externally. Exploitable via ``MediaConnector``.
|
| CVE-2026-24747 |
|
Code Injection in linuxfoundation (CVE-2026-24747)
code injection in linuxfoundation (CVE-2026-24747). Successful exploitation can lead to full system takeover. Exploitable via ``weights_only``.
|
| CVE-2026-24881 |
|
Vulnerability in dos (CVE-2026-24881)
vulnerability in dos (CVE-2026-24881). Successful exploitation can lead to full system takeover.
|
| CVE-2026-24882 |
|
Vulnerability in gnupg (CVE-2026-24882)
vulnerability in gnupg (CVE-2026-24882). Successful exploitation can lead to full system takeover.
|
| CVE-2026-24869 |
|
Use-After-Free in mozilla (CVE-2026-24869)
vulnerability in mozilla (CVE-2026-24869). Successful exploitation can lead to full system takeover.
|
| CVE-2026-22795 |
|
Vulnerability in dos (CVE-2026-22795)
vulnerability in dos (CVE-2026-22795). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-69421 |
|
Vulnerability in dos (CVE-2025-69421)
vulnerability in dos (CVE-2025-69421). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-69419 |
|
Out-of-Bounds Write in dos (CVE-2025-69419)
out-of-bounds write in dos (CVE-2025-69419). Confidential information can be exposed externally.
|
| CVE-2025-69420 |
|
Vulnerability in dos (CVE-2025-69420)
vulnerability in dos (CVE-2025-69420). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-68160 |
|
Out-of-Bounds Write in dos (CVE-2025-68160)
out-of-bounds write in dos (CVE-2025-68160). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-15467 |
|
Vulnerability in cisa (CVE-2025-15467)
vulnerability in cisa (CVE-2025-15467). Successful exploitation can lead to full system takeover.
|
| CVE-2026-1489 |
|
Out-of-Bounds Write in CVE-2026-1489 (CVE-2026-1489)
out-of-bounds write in CVE-2026-1489 (CVE-2026-1489). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-1484 |
|
Out-of-Bounds Write in CVE-2026-1484 (CVE-2026-1484)
out-of-bounds write in CVE-2026-1484 (CVE-2026-1484). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-21721 |
|
Authorization Flaw in privilege-escalation (CVE-2026-21721)
vulnerability in privilege-escalation (CVE-2026-21721). Confidential information can be exposed externally.
|
| CVE-2026-21720 |
|
Vulnerability in grafana (CVE-2026-21720)
vulnerability in grafana (CVE-2026-21720). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-24486 |
|
Path Traversal in path-traversal (CVE-2026-24486)
path traversal in path-traversal (CVE-2026-24486). Data can be tampered with by attackers. Exploitable via ``UPLOAD_DIR``.
|
| CVE-2026-24858 KEV |
|
[KEV] Vulnerability in Fortinet multiple-products (CVE-2026-24858)
vulnerability in Fortinet multiple-products (CVE-2026-24858). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
|
| CVE-2026-23864 |
|
Vulnerability in react (CVE-2026-23864)
vulnerability in react (CVE-2026-23864). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-9820 |
|
Vulnerability in privilege-escalation (CVE-2025-9820)
vulnerability in privilege-escalation (CVE-2025-9820). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-9615 |
|
Vulnerability in CVE-2025-9615 (CVE-2025-9615)
vulnerability in CVE-2025-9615 (CVE-2025-9615). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-11065 |
|
Vulnerability in CVE-2025-11065 (CVE-2025-11065)
vulnerability in CVE-2025-11065 (CVE-2025-11065). Confidential information can be exposed externally.
|
| CVE-2025-52691 KEV |
|
[KEV] Unrestricted File Upload in Smartertools smartermail (CVE-2025-52691)
vulnerability in Smartertools smartermail (CVE-2025-52691). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2026-21509 KEV |
|
[KEV] Vulnerability in Microsoft office (CVE-2026-21509)
vulnerability in Microsoft office (CVE-2026-21509). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
|
| CVE-2026-23760 KEV |
|
[KEV] Vulnerability in Smartertools smartermail (CVE-2026-23760)
vulnerability in Smartertools smartermail (CVE-2026-23760). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2018-14634 KEV |
|
[KEV] Vulnerability in Linux kernel (CVE-2018-14634)
vulnerability in Linux kernel (CVE-2018-14634). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2026-24061 KEV |
|
[KEV] Vulnerability in Gnu inetutils (CVE-2026-24061)
vulnerability in Gnu inetutils (CVE-2026-24061). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2026-23010 |
|
Use-After-Free in c (CVE-2026-23010)
vulnerability in c (CVE-2026-23010). Successful exploitation can lead to full system takeover.
|
| CVE-2026-23003 |
|
Vulnerability in c (CVE-2026-23003)
vulnerability in c (CVE-2026-23003). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-71163 |
|
Vulnerability in linux (CVE-2025-71163)
vulnerability in linux (CVE-2025-71163). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-71162 |
|
Use-After-Free in linux (CVE-2025-71162)
vulnerability in linux (CVE-2025-71162). Successful exploitation can lead to full system takeover.
|
| CVE-2026-22586 |
|
Vulnerability in salesforce (CVE-2026-22586)
vulnerability in salesforce (CVE-2026-22586). Successful exploitation can lead to full system takeover.
|
| CVE-2025-52026 |
|
Information Disclosure in aptsys (CVE-2025-52026)
vulnerability in aptsys (CVE-2025-52026). Confidential information can be exposed externally.
|
| CVE-2025-52023 |
|
Vulnerability in aptsys (CVE-2025-52023)
vulnerability in aptsys (CVE-2025-52023). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-52025 |
|
SQL Injection in sqli (CVE-2025-52025)
SQL injection in sqli (CVE-2025-52025). Confidential information can be exposed externally.
|
| CVE-2025-52024 |
|
Vulnerability in aptsys (CVE-2025-52024)
vulnerability in aptsys (CVE-2025-52024). Confidential information can be exposed externally.
|
| CVE-2025-52022 |
|
Vulnerability in aptsys (CVE-2025-52022)
vulnerability in aptsys (CVE-2025-52022). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-67264 |
|
OS Command Injection in doogee (CVE-2025-67264)
OS command injection in doogee (CVE-2025-67264). Successful exploitation can lead to full system takeover.
|
| CVE-2026-22992 |
|
Vulnerability in linux (CVE-2026-22992)
vulnerability in linux (CVE-2026-22992). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-22980 |
|
Use-After-Free in linux (CVE-2026-22980)
vulnerability in linux (CVE-2026-22980). Successful exploitation can lead to full system takeover.
|
| CVE-2026-22982 |
|
Vulnerability in c (CVE-2026-22982)
vulnerability in c (CVE-2026-22982). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-22979 |
|
Vulnerability in linux (CVE-2026-22979)
vulnerability in linux (CVE-2026-22979). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-71161 |
|
Vulnerability in linux (CVE-2025-71161)
vulnerability in linux (CVE-2025-71161). Risk of unauthorized operations or information disclosure.
|