Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-9642 |
|
Vulnerability in deltaww (CVE-2026-9642)
vulnerability in deltaww (CVE-2026-9642). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44449 |
|
Vulnerability in c (CVE-2026-44449)
vulnerability in c (CVE-2026-44449). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `0.9.7` or later.
|
| CVE-2026-44450 |
|
Vulnerability in c (CVE-2026-44450)
vulnerability in c (CVE-2026-44450). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `0.9.7` or later.
|
| CVE-2026-44451 |
|
Vulnerability in CVE-2026-44451 (CVE-2026-44451)
vulnerability in CVE-2026-44451 (CVE-2026-44451). Confidential information can be exposed externally. Mitigation: upgrade to `0.9.7` or later.
|
| CVE-2026-44444 |
|
OS Command Injection in CVE-2026-44444 (CVE-2026-44444)
OS command injection in CVE-2026-44444 (CVE-2026-44444). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `0.9.7` or later.
|
| CVE-2026-48689 |
|
Out-of-Bounds Write in pavel-odintsov (CVE-2026-48689)
out-of-bounds write in pavel-odintsov (CVE-2026-48689). Successful exploitation can lead to full system takeover.
|
| CVE-2026-3660 |
|
Authorization Flaw in ibm (CVE-2026-3660)
vulnerability in ibm (CVE-2026-3660). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9170 |
|
Code Injection in dos (CVE-2026-9170)
code injection in dos (CVE-2026-9170). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8633 |
|
Code Injection in ibm (CVE-2026-8633)
code injection in ibm (CVE-2026-8633). Successful exploitation can lead to full system takeover.
|
| CVE-2026-7251 |
|
Vulnerability in CVE-2026-7251 (CVE-2026-7251)
vulnerability in CVE-2026-7251 (CVE-2026-7251). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46624 |
|
OS Command Injection in sqli (CVE-2026-46624)
OS command injection in sqli (CVE-2026-46624). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44668 |
|
Vulnerability in CVE-2026-44668 (CVE-2026-44668)
vulnerability in CVE-2026-44668 (CVE-2026-44668). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `1.8.3` or later.
|
| CVE-2026-48904 |
|
Vulnerability in joomla (CVE-2026-48904)
vulnerability in joomla (CVE-2026-48904). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `5.4.6, 6.1.1` or later.
|
| CVE-2026-48898 |
|
Joomla! Core - [20260513] - Privilege escalation through com_users batch task
Joomla! Core - [20260513] - Privilege escalation through com_users batch task
|
| CVE-2026-48899 |
|
Joomla! Core - [20260515] - Incorrect Access Control in sample data plugins
Joomla! Core - [20260515] - Incorrect Access Control in sample data plugins
|
| CVE-2026-48691 |
|
Vulnerability in pavel-odintsov (CVE-2026-48691)
vulnerability in pavel-odintsov (CVE-2026-48691). Successful exploitation can lead to full system takeover.
|
| CVE-2026-40383 |
|
Joomla! Core - [20260509] - LFI in HTMLView layout parameter
Joomla! Core - [20260509] - LFI in HTMLView layout parameter
|
| CVE-2026-35223 |
|
Joomla! Core - [20260508] - Improper access check in com_config webservice endpoints
Joomla! Core - [20260508] - Improper access check in com_config webservice endpoints
|
| CVE-2026-35221 |
|
SQL Injection in joomla (CVE-2026-35221)
SQL injection in joomla (CVE-2026-35221). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `5.4.6, 6.1.1` or later.
|
| CVE-2026-35222 |
|
Joomla! Core - [20260507] - Authenticated blind SQLi in com_tags
Joomla! Core - [20260507] - Authenticated blind SQLi in com_tags
|
| CVE-2026-48686 |
|
Vulnerability in cpp (CVE-2026-48686)
vulnerability in cpp (CVE-2026-48686). Successful exploitation can lead to full system takeover.
|
| CVE-2026-48687 |
|
OS Command Injection in c (CVE-2026-48687)
OS command injection in c (CVE-2026-48687). Successful exploitation can lead to full system takeover. Exploitable via ``date``.
|
| CVE-2026-4480 |
|
OS Command Injection in redhat (CVE-2026-4480)
OS command injection in redhat (CVE-2026-4480). Successful exploitation can lead to full system takeover.
|
| CVE-2026-45247 KEV |
|
[KEV] Unsafe Deserialization in Mirasvit full-page-cache-warmer (CVE-2026-45247)
vulnerability in Mirasvit full-page-cache-warmer (CVE-2026-45247). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
|
| CVE-2026-9543 |
|
Command Injection in CVE-2026-9543 (CVE-2026-9543)
command injection in CVE-2026-9543 (CVE-2026-9543). Successful exploitation can lead to full system takeover.
|
| CVE-2026-7374 |
|
Vulnerability in kubevirt.io/kubevirt (CVE-2026-7374)
vulnerability in kubevirt.io/kubevirt (CVE-2026-7374). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `1.6.6` or later.
|
| CVE-2026-42496 |
|
Vulnerability in archive (CVE-2026-42496)
vulnerability in archive (CVE-2026-42496). Confidential information can be exposed externally.
|
| CVE-2026-42774 |
|
SQL Injection in sqli (CVE-2026-42774)
SQL injection in sqli (CVE-2026-42774). Confidential information can be exposed externally.
|
| CVE-2026-42773 |
|
SQL Injection in sqli (CVE-2026-42773)
SQL injection in sqli (CVE-2026-42773). Confidential information can be exposed externally.
|
| CVE-2026-9475 |
|
Command Injection in CVE-2026-9475 (CVE-2026-9475)
command injection in CVE-2026-9475 (CVE-2026-9475). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9476 |
|
Command Injection in CVE-2026-9476 (CVE-2026-9476)
command injection in CVE-2026-9476 (CVE-2026-9476). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9477 |
|
Command Injection in CVE-2026-9477 (CVE-2026-9477)
command injection in CVE-2026-9477 (CVE-2026-9477). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9478 |
|
Command Injection in CVE-2026-9478 (CVE-2026-9478)
command injection in CVE-2026-9478 (CVE-2026-9478). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9456 |
|
Command Injection in CVE-2026-9456 (CVE-2026-9456)
command injection in CVE-2026-9456 (CVE-2026-9456). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9457 |
|
Command Injection in CVE-2026-9457 (CVE-2026-9457)
command injection in CVE-2026-9457 (CVE-2026-9457). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9454 |
|
Command Injection in CVE-2026-9454 (CVE-2026-9454)
command injection in CVE-2026-9454 (CVE-2026-9454). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9458 |
|
Command Injection in CVE-2026-9458 (CVE-2026-9458)
command injection in CVE-2026-9458 (CVE-2026-9458). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9455 |
|
Command Injection in CVE-2026-9455 (CVE-2026-9455)
command injection in CVE-2026-9455 (CVE-2026-9455). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9433 |
|
Command Injection in CVE-2026-9433 (CVE-2026-9433)
command injection in CVE-2026-9433 (CVE-2026-9433). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9435 |
|
Command Injection in CVE-2026-9435 (CVE-2026-9435)
command injection in CVE-2026-9435 (CVE-2026-9435). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9434 |
|
Command Injection in CVE-2026-9434 (CVE-2026-9434)
command injection in CVE-2026-9434 (CVE-2026-9434). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9436 |
|
Command Injection in CVE-2026-9436 (CVE-2026-9436)
command injection in CVE-2026-9436 (CVE-2026-9436). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9432 |
|
Command Injection in CVE-2026-9432 (CVE-2026-9432)
command injection in CVE-2026-9432 (CVE-2026-9432). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2651 |
|
Vulnerability in mlflow (CVE-2026-2651)
vulnerability in mlflow (CVE-2026-2651). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `3.11.1` or later.
|
| CVE-2026-9405 |
|
Command Injection in CVE-2026-9405 (CVE-2026-9405)
command injection in CVE-2026-9405 (CVE-2026-9405). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9406 |
|
Command Injection in CVE-2026-9406 (CVE-2026-9406)
command injection in CVE-2026-9406 (CVE-2026-9406). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9404 |
|
Command Injection in CVE-2026-9404 (CVE-2026-9404)
command injection in CVE-2026-9404 (CVE-2026-9404). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9407 |
|
Command Injection in CVE-2026-9407 (CVE-2026-9407)
command injection in CVE-2026-9407 (CVE-2026-9407). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9408 |
|
Command Injection in CVE-2026-9408 (CVE-2026-9408)
command injection in CVE-2026-9408 (CVE-2026-9408). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9384 |
|
Command Injection in CVE-2026-9384 (CVE-2026-9384)
command injection in CVE-2026-9384 (CVE-2026-9384). Successful exploitation can lead to full system takeover.
|