Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-50551 |
|
Cross-Site Scripting (XSS) in CVE-2026-50551 (CVE-2026-50551)
cross-site scripting in CVE-2026-50551 (CVE-2026-50551). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `3.7.0` or later.
|
| CVE-2026-49979 |
|
Vulnerability in appsmith (CVE-2026-49979)
vulnerability in appsmith (CVE-2026-49979). Risk of unauthorized operations or information disclosure. Exploitable via `POST /api/v1/admin/send-test-email`. Mitigation: upgrade to `1.99` or later.
|
| CVE-2026-50189 |
|
Vulnerability in appsmith (CVE-2026-50189)
vulnerability in appsmith (CVE-2026-50189). Successful exploitation can lead to full system takeover. Exploitable via `GET /api/v1/admin/env`. Mitigation: upgrade to `2.1` or later.
|
| CVE-2026-53766 |
|
Path Traversal in google (CVE-2026-53766)
path traversal in google (CVE-2026-53766). Data can be tampered with by attackers. Mitigation: upgrade to `1.1.0` or later.
|
| CVE-2026-10642 |
|
Vulnerability in c (CVE-2026-10642)
vulnerability in c (CVE-2026-10642). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-39897 |
|
Cross-Site Scripting (XSS) in cacti (CVE-2026-39897)
cross-site scripting in cacti (CVE-2026-39897). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-39893 |
|
SQL Injection in sqli (CVE-2026-39893)
SQL injection in sqli (CVE-2026-39893). Successful exploitation can lead to full system takeover.
|
| CVE-2026-11998 |
|
Vulnerability in CVE-2026-11998 (CVE-2026-11998)
vulnerability in CVE-2026-11998 (CVE-2026-11998). Confidential information can be exposed externally.
|
| CVE-2026-13036 |
|
Use-After-Free in google (CVE-2026-13036)
vulnerability in google (CVE-2026-13036). Successful exploitation can lead to full system takeover.
|
| CVE-2026-13032 |
|
Use-After-Free in google (CVE-2026-13032)
vulnerability in google (CVE-2026-13032). Successful exploitation can lead to full system takeover.
|
| CVE-2026-13035 |
|
Use-After-Free in google (CVE-2026-13035)
vulnerability in google (CVE-2026-13035). Successful exploitation can lead to full system takeover.
|
| CVE-2026-13038 |
|
Use-After-Free in google (CVE-2026-13038)
vulnerability in google (CVE-2026-13038). Successful exploitation can lead to full system takeover.
|
| CVE-2026-13037 |
|
Use-After-Free in google (CVE-2026-13037)
vulnerability in google (CVE-2026-13037). Successful exploitation can lead to full system takeover.
|
| CVE-2026-13033 |
|
Out-of-Bounds Read in google (CVE-2026-13033)
vulnerability in google (CVE-2026-13033). Successful exploitation can lead to full system takeover.
|
| CVE-2026-13208 |
|
Authentication Bypass in kubevirt (CVE-2026-13208)
authentication bypass in kubevirt (CVE-2026-13208). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12760 |
|
Vulnerability in dos (CVE-2026-12760)
vulnerability in dos (CVE-2026-12760). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-13031 |
|
Use-After-Free in google (CVE-2026-13031)
vulnerability in google (CVE-2026-13031). Successful exploitation can lead to full system takeover.
|
| CVE-2026-13029 |
|
Use-After-Free in google (CVE-2026-13029)
vulnerability in google (CVE-2026-13029). Successful exploitation can lead to full system takeover.
|
| CVE-2026-13026 |
|
Use-After-Free in google (CVE-2026-13026)
vulnerability in google (CVE-2026-13026). Successful exploitation can lead to full system takeover.
|
| CVE-2026-13027 |
|
Use-After-Free in google (CVE-2026-13027)
vulnerability in google (CVE-2026-13027). Successful exploitation can lead to full system takeover.
|
| CVE-2026-13024 |
|
Vulnerability in google (CVE-2026-13024)
vulnerability in google (CVE-2026-13024). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-13025 |
|
Vulnerability in google (CVE-2026-13025)
vulnerability in google (CVE-2026-13025). Successful exploitation can lead to full system takeover.
|
| CVE-2025-60471 |
|
Use-After-Free in c (CVE-2025-60471)
vulnerability in c (CVE-2025-60471). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-52795 |
|
Authorization Flaw in CVE-2026-52795 (CVE-2026-52795)
vulnerability in CVE-2026-52795 (CVE-2026-52795). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-49278 |
|
Vulnerability in CVE-2026-49278 (CVE-2026-49278)
vulnerability in CVE-2026-49278 (CVE-2026-49278). Confidential information can be exposed externally. Mitigation: upgrade to `8.5.0` or later.
|
| CVE-2026-46423 |
|
Vulnerability in CVE-2026-46423 (CVE-2026-46423)
vulnerability in CVE-2026-46423 (CVE-2026-46423). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `8.5.0` or later.
|
| CVE-2026-47733 |
|
Cross-Site Scripting (XSS) in CVE-2026-47733 (CVE-2026-47733)
cross-site scripting in CVE-2026-47733 (CVE-2026-47733). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `8.5.0` or later.
|
| CVE-2026-45677 |
|
Vulnerability in CVE-2026-45677 (CVE-2026-45677)
vulnerability in CVE-2026-45677 (CVE-2026-45677). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `8.5.0` or later.
|
| CVE-2026-33235 |
|
Vulnerability in dos (CVE-2026-33235)
vulnerability in dos (CVE-2026-33235). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-33543 |
|
Vulnerability in CVE-2026-33543 (CVE-2026-33543)
vulnerability in CVE-2026-33543 (CVE-2026-33543). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-46349 |
|
Vulnerability in CVE-2026-46349 (CVE-2026-46349)
vulnerability in CVE-2026-46349 (CVE-2026-46349). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `4.5.10` or later.
|
| CVE-2026-46348 |
|
SSRF (Server-Side Request Forgery) in CVE-2026-46348 (CVE-2026-46348)
SSRF in CVE-2026-46348 (CVE-2026-46348). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `4.5.10` or later.
|
| CVE-2026-47389 |
|
Vulnerability in c (CVE-2026-47389)
vulnerability in c (CVE-2026-47389). Confidential information can be exposed externally. Mitigation: upgrade to `4.5.10` or later.
|
| CVE-2026-27708 |
|
Vulnerability in CVE-2026-27708 (CVE-2026-27708)
vulnerability in CVE-2026-27708 (CVE-2026-27708). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-13028 |
|
Use-After-Free in Google chrome (CVE-2026-13028)
vulnerability in Google chrome (CVE-2026-13028). Successful exploitation can lead to full system takeover.
|
| CVE-2026-53950 |
|
Cross-Site Scripting (XSS) in CVE-2026-53950 (CVE-2026-53950)
cross-site scripting in CVE-2026-53950 (CVE-2026-53950). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `3.1.0` or later.
|
| CVE-2026-53945 |
|
Vulnerability in CVE-2026-53945 (CVE-2026-53945)
vulnerability in CVE-2026-53945 (CVE-2026-53945). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `6.21.1` or later.
|
| CVE-2026-53946 |
|
SSRF (Server-Side Request Forgery) in CVE-2026-53946 (CVE-2026-53946)
SSRF in CVE-2026-53946 (CVE-2026-53946). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `6.21.1` or later.
|
| CVE-2026-53949 |
|
Information Disclosure in CVE-2026-53949 (CVE-2026-53949)
vulnerability in CVE-2026-53949 (CVE-2026-53949). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `6.21.2` or later.
|
| CVE-2026-53948 |
|
Unrestricted File Upload in CVE-2026-53948 (CVE-2026-53948)
vulnerability in CVE-2026-53948 (CVE-2026-53948). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `6.21.1` or later.
|
| CVE-2026-53943 |
|
Vulnerability in ghost (CVE-2026-53943)
vulnerability in ghost (CVE-2026-53943). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `6.37.0` or later.
|
| CVE-2026-49220 |
|
Cross-Site Scripting (XSS) in CVE-2026-49220 (CVE-2026-49220)
cross-site scripting in CVE-2026-49220 (CVE-2026-49220). Confidential information can be exposed externally. Mitigation: upgrade to `10.11.9` or later.
|
| CVE-2026-53944 |
|
Vulnerability in CVE-2026-53944 (CVE-2026-53944)
vulnerability in CVE-2026-53944 (CVE-2026-53944). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `6.21.1` or later.
|
| CVE-2026-49246 |
|
Path Traversal in csharp (CVE-2026-49246)
path traversal in csharp (CVE-2026-49246). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `10.11.10` or later.
|
| CVE-2026-49247 |
|
Path Traversal in CVE-2026-49247 (CVE-2026-49247)
path traversal in CVE-2026-49247 (CVE-2026-49247). Successful exploitation can lead to full system takeover. Exploitable via `POST /ClientLog/Document`. Mitigation: upgrade to `10.11.10` or later.
|
| CVE-2026-48793 |
|
Vulnerability in CVE-2026-48793 (CVE-2026-48793)
vulnerability in CVE-2026-48793 (CVE-2026-48793). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `10.11.10` or later.
|
| CVE-2026-53129 |
|
Use-After-Free in linux (CVE-2026-53129)
vulnerability in linux (CVE-2026-53129). Successful exploitation can lead to full system takeover.
|
| CVE-2026-53130 |
|
Vulnerability in linux (CVE-2026-53130)
vulnerability in linux (CVE-2026-53130). Successful exploitation can lead to full system takeover.
|
| CVE-2026-53091 |
|
Vulnerability in c (CVE-2026-53091)
vulnerability in c (CVE-2026-53091). Confidential information can be exposed externally.
|
| CVE-2026-53071 |
|
Vulnerability in CVE-2026-53071 (CVE-2026-53071)
vulnerability in CVE-2026-53071 (CVE-2026-53071). Successful exploitation can lead to full system takeover.
|