Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2024-54178 |
|
Vulnerability in dos (CVE-2024-54178)
vulnerability in dos (CVE-2024-54178). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-2669 |
|
Vulnerability in ibm (CVE-2025-2669)
vulnerability in ibm (CVE-2025-2669). Data can be tampered with by attackers.
|
| CVE-2026-11373 |
|
Vulnerability in CVE-2026-11373 (CVE-2026-11373)
vulnerability in CVE-2026-11373 (CVE-2026-11373). Confidential information can be exposed externally.
|
| CVE-2026-12863 |
|
Open Redirect in CVE-2026-12863 (CVE-2026-12863)
vulnerability in CVE-2026-12863 (CVE-2026-12863). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12580 |
|
Cross-Site Scripting (XSS) in csharp (CVE-2026-12580)
cross-site scripting in csharp (CVE-2026-12580). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-45796 |
|
Cross-Site Scripting (XSS) in CVE-2023-45796 (CVE-2023-45796)
cross-site scripting in CVE-2023-45796 (CVE-2023-45796). Data can be tampered with by attackers.
|
| CVE-2025-4994 |
|
Vulnerability in CVE-2025-4994 (CVE-2025-4994)
vulnerability in CVE-2025-4994 (CVE-2025-4994). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-45795 |
|
Cross-Site Scripting (XSS) in CVE-2023-45795 (CVE-2023-45795)
cross-site scripting in CVE-2023-45795 (CVE-2023-45795). Successful exploitation can lead to full system takeover.
|
| CVE-2026-4259 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-4259)
cross-site scripting in wordpress (CVE-2026-4259). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-6858 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-6858)
cross-site scripting in wordpress (CVE-2026-6858). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-66336 |
|
SQL Injection in apache (CVE-2025-66336)
SQL injection in apache (CVE-2025-66336). Confidential information can be exposed externally.
|
| CVE-2026-44913 |
|
Vulnerability in apache (CVE-2026-44913)
vulnerability in apache (CVE-2026-44913). Successful exploitation can lead to full system takeover.
|
| CVE-2025-62198 |
|
Vulnerability in apache (CVE-2025-62198)
vulnerability in apache (CVE-2025-62198). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8157 |
|
Privilege Escalation in wordpress (CVE-2026-8157)
vulnerability in wordpress (CVE-2026-8157). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44911 |
|
Authorization Flaw in apache (CVE-2026-44911)
vulnerability in apache (CVE-2026-44911). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-44914 |
|
Vulnerability in apache (CVE-2026-44914)
vulnerability in apache (CVE-2026-44914). Successful exploitation can lead to full system takeover.
|
| CVE-2026-7859 |
|
Vulnerability in wordpress (CVE-2026-7859)
vulnerability in wordpress (CVE-2026-7859). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-6645 |
|
Vulnerability in CVE-2026-6645 (CVE-2026-6645)
vulnerability in CVE-2026-6645 (CVE-2026-6645). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-11746 |
|
Vulnerability in CVE-2026-11746 (CVE-2026-11746)
vulnerability in CVE-2026-11746 (CVE-2026-11746). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12815 |
|
Command Injection in CVE-2026-12815 (CVE-2026-12815)
command injection in CVE-2026-12815 (CVE-2026-12815). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12823 |
|
Vulnerability in CVE-2026-12823 (CVE-2026-12823)
vulnerability in CVE-2026-12823 (CVE-2026-12823). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12821 |
|
Path Traversal in path-traversal (CVE-2026-12821)
path traversal in path-traversal (CVE-2026-12821). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12822 |
|
Vulnerability in langflow (CVE-2026-12822)
vulnerability in langflow (CVE-2026-12822). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12813 |
|
SSRF (Server-Side Request Forgery) in CVE-2026-12813 (CVE-2026-12813)
SSRF in CVE-2026-12813 (CVE-2026-12813). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12812 |
|
Vulnerability in CVE-2026-12812 (CVE-2026-12812)
vulnerability in CVE-2026-12812 (CVE-2026-12812). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12811 |
|
Cross-Site Scripting (XSS) in CVE-2026-12811 (CVE-2026-12811)
cross-site scripting in CVE-2026-12811 (CVE-2026-12811). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `0.8.39` or later.
|
| CVE-2026-12810 |
|
Vulnerability in CVE-2026-12810 (CVE-2026-12810)
vulnerability in CVE-2026-12810 (CVE-2026-12810). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12809 |
|
Vulnerability in CVE-2026-12809 (CVE-2026-12809)
vulnerability in CVE-2026-12809 (CVE-2026-12809). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12814 |
|
Command Injection in CVE-2026-12814 (CVE-2026-12814)
command injection in CVE-2026-12814 (CVE-2026-12814). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12808 |
|
Vulnerability in CVE-2026-12808 (CVE-2026-12808)
vulnerability in CVE-2026-12808 (CVE-2026-12808). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12807 |
|
Vulnerability in CVE-2026-12807 (CVE-2026-12807)
vulnerability in CVE-2026-12807 (CVE-2026-12807). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12806 |
|
Buffer Overflow in CVE-2026-12806 (CVE-2026-12806)
vulnerability in CVE-2026-12806 (CVE-2026-12806). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12805 |
|
Buffer Overflow in CVE-2026-12805 (CVE-2026-12805)
vulnerability in CVE-2026-12805 (CVE-2026-12805). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12804 |
|
Open Redirect in CVE-2026-12804 (CVE-2026-12804)
vulnerability in CVE-2026-12804 (CVE-2026-12804). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56412 |
|
Use-After-Free in libexpat-project (CVE-2026-56412)
vulnerability in libexpat-project (CVE-2026-56412). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56409 |
|
Vulnerability in libexpat-project (CVE-2026-56409)
vulnerability in libexpat-project (CVE-2026-56409). Confidential information can be exposed externally.
|
| CVE-2026-56411 |
|
xmlwf in libexpat before 2.8.2 has an integer overflow in endDoctypeDecl via NOTATION declarations.
xmlwf in libexpat before 2.8.2 has an integer overflow in endDoctypeDecl via NOTATION declarations.
|
| CVE-2026-56408 |
|
libexpat before 2.8.2 has an integer overflow in copyString.
libexpat before 2.8.2 has an integer overflow in copyString.
|
| CVE-2026-56410 |
|
xmlwf in libexpat before 2.8.2 has an integer overflow in resolveSystemId.
xmlwf in libexpat before 2.8.2 has an integer overflow in resolveSystemId.
|
| CVE-2026-56407 |
|
Vulnerability in libexpat-project (CVE-2026-56407)
vulnerability in libexpat-project (CVE-2026-56407). Confidential information can be exposed externally.
|
| CVE-2026-56405 |
|
libexpat before 2.8.2 has an integer overflow in getAttributeId.
libexpat before 2.8.2 has an integer overflow in getAttributeId.
|
| CVE-2026-56406 |
|
Vulnerability in libexpat-project (CVE-2026-56406)
vulnerability in libexpat-project (CVE-2026-56406). Confidential information can be exposed externally.
|
| CVE-2026-56403 |
|
libexpat before 2.8.2 has an integer overflow in storeAtts.
libexpat before 2.8.2 has an integer overflow in storeAtts.
|
| CVE-2026-56404 |
|
libexpat before 2.8.2 has an integer overflow in addBinding.
libexpat before 2.8.2 has an integer overflow in addBinding.
|
| CVE-2026-56397 |
|
Cross-Site Scripting (XSS) in CVE-2026-56397 (CVE-2026-56397)
cross-site scripting in CVE-2026-56397 (CVE-2026-56397). Successful exploitation can lead to full system takeover.
|
| CVE-2026-56395 |
|
Cross-Site Scripting (XSS) in CVE-2026-56395 (CVE-2026-56395)
cross-site scripting in CVE-2026-56395 (CVE-2026-56395). Successful exploitation can lead to full system takeover.
|
| CVE-2026-56393 |
|
Cross-Site Scripting (XSS) in CVE-2026-56393 (CVE-2026-56393)
cross-site scripting in CVE-2026-56393 (CVE-2026-56393). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `4.17.0-beta.1` or later.
|
| CVE-2026-56396 |
|
Vulnerability in CVE-2026-56396 (CVE-2026-56396)
vulnerability in CVE-2026-56396 (CVE-2026-56396). Successful exploitation can lead to full system takeover.
|
| CVE-2026-56384 |
|
Vulnerability in CVE-2026-56384 (CVE-2026-56384)
vulnerability in CVE-2026-56384 (CVE-2026-56384). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `4.17.8` or later.
|
| CVE-2026-56394 |
|
Path Traversal in path-traversal (CVE-2026-56394)
path traversal in path-traversal (CVE-2026-56394). Confidential information can be exposed externally.
|