Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-56242 |
|
Information Disclosure in CVE-2026-56242 (CVE-2026-56242)
vulnerability in CVE-2026-56242 (CVE-2026-56242). Confidential information can be exposed externally.
|
| CVE-2026-56236 |
|
Vulnerability in CVE-2026-56236 (CVE-2026-56236)
vulnerability in CVE-2026-56236 (CVE-2026-56236). Data can be tampered with by attackers.
|
| CVE-2026-56239 |
|
Privilege Escalation in privilege-escalation (CVE-2026-56239)
vulnerability in privilege-escalation (CVE-2026-56239). Data can be tampered with by attackers.
|
| CVE-2026-56265 |
|
Vulnerability in kidocode (CVE-2026-56265)
vulnerability in kidocode (CVE-2026-56265). Successful exploitation can lead to full system takeover.
|
| CVE-2025-71357 |
|
Unsafe Deserialization in mmaitre314 (CVE-2025-71357)
vulnerability in mmaitre314 (CVE-2025-71357). Confidential information can be exposed externally.
|
| CVE-2025-71378 |
|
Unsafe Deserialization in mmaitre314 (CVE-2025-71378)
vulnerability in mmaitre314 (CVE-2025-71378). Confidential information can be exposed externally.
|
| CVE-2025-71348 |
|
Unsafe Deserialization in mmaitre314 (CVE-2025-71348)
vulnerability in mmaitre314 (CVE-2025-71348). Confidential information can be exposed externally.
|
| CVE-2025-71351 |
|
Vulnerability in CVE-2025-71351 (CVE-2025-71351)
vulnerability in CVE-2025-71351 (CVE-2025-71351). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12799 |
|
Vulnerability in litellm (CVE-2026-12799)
vulnerability in litellm (CVE-2026-12799). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12798 |
|
SSRF (Server-Side Request Forgery) in litellm (CVE-2026-12798)
SSRF in litellm (CVE-2026-12798). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12797 |
|
Vulnerability in litellm (CVE-2026-12797)
vulnerability in litellm (CVE-2026-12797). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12795 |
|
Authentication Bypass in litellm (CVE-2026-12795)
authentication bypass in litellm (CVE-2026-12795). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12784 |
|
Vulnerability in CVE-2026-12784 (CVE-2026-12784)
vulnerability in CVE-2026-12784 (CVE-2026-12784). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12786 |
|
Vulnerability in CVE-2026-12786 (CVE-2026-12786)
vulnerability in CVE-2026-12786 (CVE-2026-12786). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12789 |
|
Vulnerability in sqli (CVE-2026-12789)
vulnerability in sqli (CVE-2026-12789). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12788 |
|
Vulnerability in CVE-2026-12788 (CVE-2026-12788)
vulnerability in CVE-2026-12788 (CVE-2026-12788). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12787 |
|
Vulnerability in deserialization (CVE-2026-12787)
vulnerability in deserialization (CVE-2026-12787). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12781 |
|
Vulnerability in CVE-2026-12781 (CVE-2026-12781)
vulnerability in CVE-2026-12781 (CVE-2026-12781). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12782 |
|
Vulnerability in CVE-2026-12782 (CVE-2026-12782)
vulnerability in CVE-2026-12782 (CVE-2026-12782). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12778 |
|
Vulnerability in CVE-2026-12778 (CVE-2026-12778)
vulnerability in CVE-2026-12778 (CVE-2026-12778). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12780 |
|
Vulnerability in CVE-2026-12780 (CVE-2026-12780)
vulnerability in CVE-2026-12780 (CVE-2026-12780). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12779 |
|
Vulnerability in CVE-2026-12779 (CVE-2026-12779)
vulnerability in CVE-2026-12779 (CVE-2026-12779). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12775 |
|
Vulnerability in sqli (CVE-2026-12775)
vulnerability in sqli (CVE-2026-12775). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12776 |
|
Vulnerability in sqli (CVE-2026-12776)
vulnerability in sqli (CVE-2026-12776). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12774 |
|
SSRF (Server-Side Request Forgery) in litellm (CVE-2026-12774)
SSRF in litellm (CVE-2026-12774). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12773 |
|
A weakness has been identified in BerriAI litellm up to 1.59.8. Affected is the function...
A weakness has been identified in BerriAI litellm up to 1.59.8. Affected is the function...
|
| CVE-2026-12771 |
|
Vulnerability in litellm (CVE-2026-12771)
vulnerability in litellm (CVE-2026-12771). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12770 |
|
Vulnerability in litellm (CVE-2026-12770)
vulnerability in litellm (CVE-2026-12770). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56347 |
|
Cross-Site Scripting (XSS) in CVE-2026-56347 (CVE-2026-56347)
cross-site scripting in CVE-2026-56347 (CVE-2026-56347). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56346 |
|
Vulnerability in CVE-2026-56346 (CVE-2026-56346)
vulnerability in CVE-2026-56346 (CVE-2026-56346). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56341 |
|
Vulnerability in csharp (CVE-2026-56341)
vulnerability in csharp (CVE-2026-56341). Confidential information can be exposed externally.
|
| CVE-2026-56345 |
|
Authentication Bypass in CVE-2026-56345 (CVE-2026-56345)
authentication bypass in CVE-2026-56345 (CVE-2026-56345). Successful exploitation can lead to full system takeover.
|
| CVE-2026-56342 |
|
SSRF (Server-Side Request Forgery) in CVE-2026-56342 (CVE-2026-56342)
SSRF in CVE-2026-56342 (CVE-2026-56342). Confidential information can be exposed externally.
|
| CVE-2026-56340 |
|
Vulnerability in dos (CVE-2026-56340)
vulnerability in dos (CVE-2026-56340). Successful exploitation can lead to full system takeover.
|
| CVE-2026-5366 |
|
Code Injection in prefect (CVE-2026-5366)
code injection in prefect (CVE-2026-5366). Successful exploitation can lead to full system takeover. Exploitable via ``GitRepository``.
|
| CVE-2026-56330 |
|
Open Redirect in CVE-2026-56330 (CVE-2026-56330)
vulnerability in CVE-2026-56330 (CVE-2026-56330). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56332 |
|
Open Redirect in CVE-2026-56332 (CVE-2026-56332)
vulnerability in CVE-2026-56332 (CVE-2026-56332). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56319 |
|
Vulnerability in CVE-2026-56319 (CVE-2026-56319)
vulnerability in CVE-2026-56319 (CVE-2026-56319). Risk of unauthorized operations or information disclosure. Exploitable via `GET /statistics/app/`.
|
| CVE-2026-56282 |
|
Information Disclosure in CVE-2026-56282 (CVE-2026-56282)
vulnerability in CVE-2026-56282 (CVE-2026-56282). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56307 |
|
Vulnerability in CVE-2026-56307 (CVE-2026-56307)
vulnerability in CVE-2026-56307 (CVE-2026-56307). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56295 |
|
Vulnerability in CVE-2026-56295 (CVE-2026-56295)
vulnerability in CVE-2026-56295 (CVE-2026-56295). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56294 |
|
Authentication Bypass in CVE-2026-56294 (CVE-2026-56294)
authentication bypass in CVE-2026-56294 (CVE-2026-56294). Confidential information can be exposed externally.
|
| CVE-2026-56304 |
|
Unsafe Deserialization in dos (CVE-2026-56304)
vulnerability in dos (CVE-2026-56304). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56325 |
|
Vulnerability in CVE-2026-56325 (CVE-2026-56325)
vulnerability in CVE-2026-56325 (CVE-2026-56325). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56317 |
|
Cross-Site Scripting (XSS) in nuxt (CVE-2026-56317)
cross-site scripting in nuxt (CVE-2026-56317). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56228 |
|
Vulnerability in dos (CVE-2026-56228)
vulnerability in dos (CVE-2026-56228). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-71331 |
|
Vulnerability in flowiseai (CVE-2025-71331)
vulnerability in flowiseai (CVE-2025-71331). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56218 |
|
Information Disclosure in CVE-2026-56218 (CVE-2026-56218)
vulnerability in CVE-2026-56218 (CVE-2026-56218). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56235 |
|
Information Disclosure in CVE-2026-56235 (CVE-2026-56235)
vulnerability in CVE-2026-56235 (CVE-2026-56235). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56267 |
|
Information Disclosure in CVE-2026-56267 (CVE-2026-56267)
vulnerability in CVE-2026-56267 (CVE-2026-56267). Risk of unauthorized operations or information disclosure. Exploitable via `POST /api/v1/account/forgot-password`.
|