Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2025-53831 |
|
Cross-Site Scripting (XSS) in CVE-2025-53831 (CVE-2025-53831)
cross-site scripting in CVE-2025-53831 (CVE-2025-53831). Confidential information can be exposed externally.
|
| CVE-2026-5268 |
|
Vulnerability in CVE-2026-5268 (CVE-2026-5268)
vulnerability in CVE-2026-5268 (CVE-2026-5268). Confidential information can be exposed externally.
|
| CVE-2026-59152 |
|
Path Traversal in CVE-2026-59152 (CVE-2026-59152)
path traversal in CVE-2026-59152 (CVE-2026-59152). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `0.8.18` or later.
|
| CVE-2026-59194 |
|
Path Traversal in pnpm (CVE-2026-59194)
path traversal in pnpm (CVE-2026-59194). Data can be tampered with by attackers. Mitigation: upgrade to `10.34.4` or later.
|
| CVE-2026-59195 |
|
Path Traversal in pnpm (CVE-2026-59195)
path traversal in pnpm (CVE-2026-59195). Data can be tampered with by attackers. Mitigation: upgrade to `10.34.4` or later.
|
| CVE-2026-59196 |
|
Path Traversal in pnpm (CVE-2026-59196)
path traversal in pnpm (CVE-2026-59196). Data can be tampered with by attackers. Mitigation: upgrade to `10.34.4` or later.
|
| CVE-2026-58203 |
|
Path Traversal in CVE-2026-58203 (CVE-2026-58203)
path traversal in CVE-2026-58203 (CVE-2026-58203). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.14.2` or later.
|
| CVE-2025-53829 |
|
Vulnerability in path-traversal (CVE-2025-53829)
vulnerability in path-traversal (CVE-2025-53829). Successful exploitation can lead to full system takeover.
|
| CVE-2025-53830 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2025-53830)
SSRF in ssrf (CVE-2025-53830). Successful exploitation can lead to full system takeover.
|
| CVE-2025-53828 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2025-53828)
SSRF in ssrf (CVE-2025-53828). Successful exploitation can lead to full system takeover.
|
| CVE-2025-53827 |
|
Vulnerability in CVE-2025-53827 (CVE-2025-53827)
vulnerability in CVE-2025-53827 (CVE-2025-53827). Successful exploitation can lead to full system takeover.
|
| CVE-2026-7185 |
|
Path Traversal in CVE-2026-7185 (CVE-2026-7185)
path traversal in CVE-2026-7185 (CVE-2026-7185). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-13698 |
|
Vulnerability in dos (CVE-2026-13698)
vulnerability in dos (CVE-2026-13698). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-58380 |
|
Vulnerability in dos (CVE-2026-58380)
vulnerability in dos (CVE-2026-58380). Successful exploitation can lead to full system takeover.
|
| CVE-2026-54893 |
|
Vulnerability in CVE-2026-54893 (CVE-2026-54893)
vulnerability in CVE-2026-54893 (CVE-2026-54893). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-13708 |
|
Vulnerability in dos (CVE-2026-13708)
vulnerability in dos (CVE-2026-13708). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-13705 |
|
Out-of-Bounds Read in CVE-2026-13705 (CVE-2026-13705)
vulnerability in CVE-2026-13705 (CVE-2026-13705). Confidential information can be exposed externally.
|
| CVE-2025-15667 |
|
Buffer Overflow in c (CVE-2025-15667)
vulnerability in c (CVE-2025-15667). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-6901 |
|
Vulnerability in CVE-2026-6901 (CVE-2026-6901)
vulnerability in CVE-2026-6901 (CVE-2026-6901). Confidential information can be exposed externally.
|
| CVE-2026-6900 |
|
Vulnerability in CVE-2026-6900 (CVE-2026-6900)
vulnerability in CVE-2026-6900 (CVE-2026-6900). Confidential information can be exposed externally.
|
| CVE-2025-15668 |
|
Buffer Overflow in c (CVE-2025-15668)
vulnerability in c (CVE-2025-15668). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-49297 |
|
Path Traversal in apache (CVE-2026-49297)
path traversal in apache (CVE-2026-49297). Data can be tampered with by attackers. Exploitable via ``GCSToSFTPOperator``.
|
| CVE-2025-8591 |
|
Cross-Site Scripting (XSS) in CVE-2025-8591 (CVE-2025-8591)
cross-site scripting in CVE-2025-8591 (CVE-2025-8591). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-49042 |
|
Vulnerability in apache (CVE-2026-49042)
vulnerability in apache (CVE-2026-49042). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-46587 |
|
Vulnerability in apache (CVE-2026-46587)
vulnerability in apache (CVE-2026-46587). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-46588 |
|
Vulnerability in apache (CVE-2026-46588)
vulnerability in apache (CVE-2026-46588). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4249 |
|
Vulnerability in dos (CVE-2026-4249)
vulnerability in dos (CVE-2026-4249). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56810 |
|
Vulnerability in dos (CVE-2026-56810)
vulnerability in dos (CVE-2026-56810). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9165 |
|
Vulnerability in dos (CVE-2026-9165)
vulnerability in dos (CVE-2026-9165). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56139 |
|
Vulnerability in apache (CVE-2026-56139)
vulnerability in apache (CVE-2026-56139). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-49365 |
|
Vulnerability in apache (CVE-2026-49365)
vulnerability in apache (CVE-2026-49365). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-53913 |
|
Authentication Bypass in apache (CVE-2026-53913)
authentication bypass in apache (CVE-2026-53913). Successful exploitation can lead to full system takeover.
|
| CVE-2026-49099 |
|
Vulnerability in apache (CVE-2026-49099)
vulnerability in apache (CVE-2026-49099). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56140 |
|
Vulnerability in apache (CVE-2026-56140)
vulnerability in apache (CVE-2026-56140). Successful exploitation can lead to full system takeover.
|
| CVE-2026-55994 |
|
Vulnerability in apache (CVE-2026-55994)
vulnerability in apache (CVE-2026-55994). Confidential information can be exposed externally.
|
| CVE-2026-55993 |
|
Vulnerability in apache (CVE-2026-55993)
vulnerability in apache (CVE-2026-55993). Confidential information can be exposed externally.
|
| CVE-2026-48206 |
|
Vulnerability in apache (CVE-2026-48206)
vulnerability in apache (CVE-2026-48206). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48205 |
|
Vulnerability in apache (CVE-2026-48205)
vulnerability in apache (CVE-2026-48205). Confidential information can be exposed externally.
|
| CVE-2026-49098 |
|
Vulnerability in c (CVE-2026-49098)
vulnerability in c (CVE-2026-49098). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-49086 |
|
Vulnerability in apache (CVE-2026-49086)
vulnerability in apache (CVE-2026-49086). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-49097 |
|
Vulnerability in apache (CVE-2026-49097)
vulnerability in apache (CVE-2026-49097). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-46584 |
|
Vulnerability in apache (CVE-2026-46584)
vulnerability in apache (CVE-2026-46584). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48203 |
|
Vulnerability in apache (CVE-2026-48203)
vulnerability in apache (CVE-2026-48203). Confidential information can be exposed externally.
|
| CVE-2026-46456 |
|
Vulnerability in apache (CVE-2026-46456)
vulnerability in apache (CVE-2026-46456). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46585 |
|
Vulnerability in apache (CVE-2026-46585)
vulnerability in apache (CVE-2026-46585). Confidential information can be exposed externally.
|
| CVE-2026-46726 |
|
Vulnerability in apache (CVE-2026-46726)
vulnerability in apache (CVE-2026-46726). Confidential information can be exposed externally.
|
| CVE-2026-46592 |
|
Vulnerability in apache (CVE-2026-46592)
vulnerability in apache (CVE-2026-46592). Confidential information can be exposed externally.
|
| CVE-2026-48204 |
|
Vulnerability in apache (CVE-2026-48204)
vulnerability in apache (CVE-2026-48204). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46590 |
|
Unsafe Deserialization in apache (CVE-2026-46590)
vulnerability in apache (CVE-2026-46590). Successful exploitation can lead to full system takeover.
|
| CVE-2026-24014 |
|
Vulnerability in apache (CVE-2026-24014)
vulnerability in apache (CVE-2026-24014). Successful exploitation can lead to full system takeover.
|