Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: cwe Clear
ID Title
CVE-2026-26247 Vulnerability in CVE-2026-26247 (CVE-2026-26247)
vulnerability in CVE-2026-26247 (CVE-2026-26247). Confidential information can be exposed externally.
CVE-2026-26292 Vulnerability in CVE-2026-26292 (CVE-2026-26292)
vulnerability in CVE-2026-26292 (CVE-2026-26292). Successful exploitation can lead to full system takeover.
CVE-2026-25718 Vulnerability in CVE-2026-25718 (CVE-2026-25718)
vulnerability in CVE-2026-25718 (CVE-2026-25718). Confidential information can be exposed externally.
CVE-2026-22547 Vulnerability in CVE-2026-22547 (CVE-2026-22547)
vulnerability in CVE-2026-22547 (CVE-2026-22547). Confidential information can be exposed externally.
CVE-2026-12481 Unsafe Deserialization in deserialization (CVE-2026-12481)
vulnerability in deserialization (CVE-2026-12481). Successful exploitation can lead to full system takeover. Exploitable via ``Lambda``.
CVE-2026-58422 Vulnerability in CVE-2026-58422 (CVE-2026-58422)
vulnerability in CVE-2026-58422 (CVE-2026-58422). Successful exploitation can lead to full system takeover.
CVE-2026-58426 Vulnerability in CVE-2026-58426 (CVE-2026-58426)
vulnerability in CVE-2026-58426 (CVE-2026-58426). Confidential information can be exposed externally.
CVE-2026-22874 SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-22874)
SSRF in ssrf (CVE-2026-22874). Confidential information can be exposed externally.
CVE-2026-20896 Vulnerability in CVE-2026-20896 (CVE-2026-20896)
vulnerability in CVE-2026-20896 (CVE-2026-20896). Successful exploitation can lead to full system takeover.
CVE-2026-56015 Out-of-Bounds Read in CVE-2026-56015 (CVE-2026-56015)
vulnerability in CVE-2026-56015 (CVE-2026-56015). Confidential information can be exposed externally.
CVE-2026-4321 SQL Injection in sqli (CVE-2026-4321)
SQL injection in sqli (CVE-2026-4321). Successful exploitation can lead to full system takeover.
CVE-2026-14544 Vulnerability in CVE-2026-14544 (CVE-2026-14544)
vulnerability in CVE-2026-14544 (CVE-2026-14544). Successful exploitation can lead to full system takeover.
CVE-2026-8927 Vulnerability in haxx (CVE-2026-8927)
vulnerability in haxx (CVE-2026-8927). Confidential information can be exposed externally. Exploitable via ``proxyA``.
CVE-2026-9079 Vulnerability in haxx (CVE-2026-9079)
vulnerability in haxx (CVE-2026-9079). Successful exploitation can lead to full system takeover.
CVE-2026-8926 Vulnerability in haxx (CVE-2026-8926)
vulnerability in haxx (CVE-2026-8926). Confidential information can be exposed externally.
CVE-2026-8925 Vulnerability in haxx (CVE-2026-8925)
vulnerability in haxx (CVE-2026-8925). Successful exploitation can lead to full system takeover.
CVE-2026-11856 Vulnerability in haxx (CVE-2026-11856)
vulnerability in haxx (CVE-2026-11856). Successful exploitation can lead to full system takeover. Exploitable via ``hostA``.
CVE-2026-11564 Vulnerability in haxx (CVE-2026-11564)
vulnerability in haxx (CVE-2026-11564). Confidential information can be exposed externally.
CVE-2026-10536 Use-After-Free in haxx (CVE-2026-10536)
vulnerability in haxx (CVE-2026-10536). Successful exploitation can lead to full system takeover. Exploitable via ``CURLOPT_STREAM_DEPENDS``.
CVE-2026-9725 Path Traversal in wordpress (CVE-2026-9725)
path traversal in wordpress (CVE-2026-9725). Data can be tampered with by attackers.
CVE-2026-13768 Vulnerability in CVE-2026-13768 (CVE-2026-13768)
vulnerability in CVE-2026-13768 (CVE-2026-13768). Confidential information can be exposed externally.
CVE-2026-45499 SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-45499)
SSRF in ssrf (CVE-2026-45499). Successful exploitation can lead to full system takeover.
CVE-2026-57100 SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-57100)
SSRF in ssrf (CVE-2026-57100). Successful exploitation can lead to full system takeover.
CVE-2026-41106 Open Redirect in microsoft (CVE-2026-41106)
vulnerability in microsoft (CVE-2026-41106). Confidential information can be exposed externally.
CVE-2026-38971 Out-of-Bounds Read in cpp (CVE-2026-38971)
vulnerability in cpp (CVE-2026-38971). Confidential information can be exposed externally.
CVE-2026-52830 Path Traversal in fast-mcp-telegram (CVE-2026-52830)
path traversal in fast-mcp-telegram (CVE-2026-52830). Confidential information can be exposed externally. Exploitable via ``telegram``. Mitigation: upgrade to `0.19.1` or later.
CVE-2026-59800 OS Command Injection in 9router (CVE-2026-59800)
OS command injection in 9router (CVE-2026-59800). Successful exploitation can lead to full system takeover. Exploitable via `POST /api/tunnel/tailscale-install`. Mitigation: upgrade to `0.4.44` or later.
CVE-2024-14037 Unrestricted File Upload in CVE-2024-14037 (CVE-2024-14037)
vulnerability in CVE-2024-14037 (CVE-2024-14037). Successful exploitation can lead to full system takeover.
CVE-2022-50973 Unrestricted File Upload in CVE-2022-50973 (CVE-2022-50973)
vulnerability in CVE-2022-50973 (CVE-2022-50973). Successful exploitation can lead to full system takeover.
CVE-2026-58455 OS Command Injection in CVE-2026-58455 (CVE-2026-58455)
OS command injection in CVE-2026-58455 (CVE-2026-58455). Successful exploitation can lead to full system takeover.
CVE-2026-55116 Vulnerability in CVE-2026-55116 (CVE-2026-55116)
vulnerability in CVE-2026-55116 (CVE-2026-55116). Successful exploitation can lead to full system takeover.
CVE-2026-56004 OS Command Injection in CVE-2026-56004 (CVE-2026-56004)
OS command injection in CVE-2026-56004 (CVE-2026-56004). Successful exploitation can lead to full system takeover.
CVE-2026-55115 SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-55115)
SSRF in ssrf (CVE-2026-55115). Successful exploitation can lead to full system takeover.
CVE-2026-54402 Vulnerability in CVE-2026-54402 (CVE-2026-54402)
vulnerability in CVE-2026-54402 (CVE-2026-54402). Successful exploitation can lead to full system takeover.
CVE-2026-50746 Vulnerability in CVE-2026-50746 (CVE-2026-50746)
vulnerability in CVE-2026-50746 (CVE-2026-50746). Successful exploitation can lead to full system takeover.
CVE-2026-54400 Vulnerability in CVE-2026-54400 (CVE-2026-54400)
vulnerability in CVE-2026-54400 (CVE-2026-54400). Successful exploitation can lead to full system takeover.
CVE-2026-50747 SQL Injection in sqli (CVE-2026-50747)
SQL injection in sqli (CVE-2026-50747). Successful exploitation can lead to full system takeover.
CVE-2026-4767 Vulnerability in CVE-2026-4767 (CVE-2026-4767)
vulnerability in CVE-2026-4767 (CVE-2026-4767). Successful exploitation can lead to full system takeover.
CVE-2026-50748 Vulnerability in CVE-2026-50748 (CVE-2026-50748)
vulnerability in CVE-2026-50748 (CVE-2026-50748). Successful exploitation can lead to full system takeover.
CVE-2026-5524 Unrestricted File Upload in wordpress (CVE-2026-5524)
vulnerability in wordpress (CVE-2026-5524). Successful exploitation can lead to full system takeover.
CVE-2026-57683 Unauthenticated SQL Injection in WP Fast Total Search <= 1.80.280 versions.
Unauthenticated SQL Injection in WP Fast Total Search <= 1.80.280 versions.
CVE-2026-57679 Unauthenticated SQL Injection in GeekyBot <= 1.2.5 versions.
Unauthenticated SQL Injection in GeekyBot <= 1.2.5 versions.
CVE-2026-57624 Unauthenticated Remote Code Execution (RCE) in Blocksy Companion Pro <= 2.1.46 versions.
Unauthenticated Remote Code Execution (RCE) in Blocksy Companion Pro <= 2.1.46 versions.
CVE-2026-57625 Cross-Site Scripting (XSS) in CVE-2026-57625 (CVE-2026-57625)
cross-site scripting in CVE-2026-57625 (CVE-2026-57625). Successful exploitation can lead to full system takeover.
CVE-2026-57677 Unsafe Deserialization in CVE-2026-57677 (CVE-2026-57677)
vulnerability in CVE-2026-57677 (CVE-2026-57677). Successful exploitation can lead to full system takeover.
CVE-2026-57621 Unauthenticated PHP Object Injection in Booktics <= 1.0.21 versions.
Unauthenticated PHP Object Injection in Booktics <= 1.0.21 versions.
CVE-2026-27419 Subscriber Arbitrary File Upload in Zegen <= 1.1.9 versions.
Subscriber Arbitrary File Upload in Zegen <= 1.1.9 versions.
CVE-2026-27436 Editor Arbitrary Code Execution in Five Star Business Profile and Schema <= 2.3.19 versions.
Editor Arbitrary Code Execution in Five Star Business Profile and Schema <= 2.3.19 versions.
CVE-2026-14420 Out-of-Bounds Read in google (CVE-2026-14420)
vulnerability in google (CVE-2026-14420). Successful exploitation can lead to full system takeover.
CVE-2026-14416 Out-of-Bounds Read in google (CVE-2026-14416)
vulnerability in google (CVE-2026-14416). Successful exploitation can lead to full system takeover.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →