Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: cwe Clear
ID Title
CVE-2026-12053 Vulnerability in gitlab (CVE-2026-12053)
vulnerability in gitlab (CVE-2026-12053). Confidential information can be exposed externally.
CVE-2026-12077 SQL Injection in wordpress (CVE-2026-12077)
SQL injection in wordpress (CVE-2026-12077). Confidential information can be exposed externally.
CVE-2026-8660 OS Command Injection in rapid7 (CVE-2026-8660)
OS command injection in rapid7 (CVE-2026-8660). Confidential information can be exposed externally.
CVE-2026-8666 OS Command Injection in rapid7 (CVE-2026-8666)
OS command injection in rapid7 (CVE-2026-8666). Confidential information can be exposed externally.
CVE-2026-8665 OS Command Injection in rapid7 (CVE-2026-8665)
OS command injection in rapid7 (CVE-2026-8665). Confidential information can be exposed externally.
CVE-2026-57589 Use-After-Free in c (CVE-2026-57589)
vulnerability in c (CVE-2026-57589). Successful exploitation can lead to full system takeover.
CVE-2026-8592 OS Command Injection in rapid7 (CVE-2026-8592)
OS command injection in rapid7 (CVE-2026-8592). Confidential information can be exposed externally.
CVE-2026-9155 OS Command Injection in gnu (CVE-2026-9155)
OS command injection in gnu (CVE-2026-9155). Successful exploitation can lead to full system takeover.
CVE-2026-9154 Path Traversal in gnu (CVE-2026-9154)
path traversal in gnu (CVE-2026-9154). Data can be tampered with by attackers.
CVE-2026-9787 OS Command Injection in quest (CVE-2026-9787)
OS command injection in quest (CVE-2026-9787). Successful exploitation can lead to full system takeover.
CVE-2026-9783 SQL Injection in sqli (CVE-2026-9783)
SQL injection in sqli (CVE-2026-9783). Successful exploitation can lead to full system takeover.
CVE-2026-9786 SQL Injection in sqli (CVE-2026-9786)
SQL injection in sqli (CVE-2026-9786). Successful exploitation can lead to full system takeover.
CVE-2026-9785 SQL Injection in sqli (CVE-2026-9785)
SQL injection in sqli (CVE-2026-9785). Successful exploitation can lead to full system takeover.
CVE-2026-9784 SQL Injection in sqli (CVE-2026-9784)
SQL injection in sqli (CVE-2026-9784). Successful exploitation can lead to full system takeover.
CVE-2025-60467 Use-After-Free in c (CVE-2025-60467)
vulnerability in c (CVE-2025-60467). Risk of unauthorized operations or information disclosure.
CVE-2025-60474 Vulnerability in c (CVE-2025-60474)
vulnerability in c (CVE-2025-60474). Risk of unauthorized operations or information disclosure.
CVE-2026-9772 OS Command Injection in unraid (CVE-2026-9772)
OS command injection in unraid (CVE-2026-9772). Successful exploitation can lead to full system takeover.
CVE-2026-9773 OS Command Injection in unraid (CVE-2026-9773)
OS command injection in unraid (CVE-2026-9773). Successful exploitation can lead to full system takeover.
CVE-2026-7569 Cross-Site Scripting (XSS) in quest (CVE-2026-7569)
cross-site scripting in quest (CVE-2026-7569). Successful exploitation can lead to full system takeover.
CVE-2026-9780 Cross-Site Scripting (XSS) in quest (CVE-2026-9780)
cross-site scripting in quest (CVE-2026-9780). Successful exploitation can lead to full system takeover.
CVE-2026-7570 SQL Injection in sqli (CVE-2026-7570)
SQL injection in sqli (CVE-2026-7570). Successful exploitation can lead to full system takeover.
CVE-2026-9782 SQL Injection in sqli (CVE-2026-9782)
SQL injection in sqli (CVE-2026-9782). Successful exploitation can lead to full system takeover.
CVE-2026-9781 SQL Injection in sqli (CVE-2026-9781)
SQL injection in sqli (CVE-2026-9781). Successful exploitation can lead to full system takeover.
CVE-2026-9778 Path Traversal in path-traversal (CVE-2026-9778)
path traversal in path-traversal (CVE-2026-9778). Successful exploitation can lead to full system takeover.
CVE-2026-9777 Path Traversal in path-traversal (CVE-2026-9777)
path traversal in path-traversal (CVE-2026-9777). Successful exploitation can lead to full system takeover.
CVE-2026-9776 Path Traversal in path-traversal (CVE-2026-9776)
path traversal in path-traversal (CVE-2026-9776). Confidential information can be exposed externally.
CVE-2026-9779 Vulnerability in aten (CVE-2026-9779)
vulnerability in aten (CVE-2026-9779). Successful exploitation can lead to full system takeover.
CVE-2026-10043 Unsafe Deserialization in deserialization (CVE-2026-10043)
vulnerability in deserialization (CVE-2026-10043). Successful exploitation can lead to full system takeover.
CVE-2026-2050 Vulnerability in gimp (CVE-2026-2050)
vulnerability in gimp (CVE-2026-2050). Successful exploitation can lead to full system takeover.
CVE-2026-39951 SQL Injection in sqli (CVE-2026-39951)
SQL injection in sqli (CVE-2026-39951). Confidential information can be exposed externally.
CVE-2026-55762 Vulnerability in CVE-2026-55762 (CVE-2026-55762)
vulnerability in CVE-2026-55762 (CVE-2026-55762). Data can be tampered with by attackers. Exploitable via `POST /api/v1/fingerprint`. Mitigation: upgrade to `8.5.1` or later.
CVE-2026-55759 Authentication Bypass in CVE-2026-55759 (CVE-2026-55759)
authentication bypass in CVE-2026-55759 (CVE-2026-55759). Confidential information can be exposed externally. Mitigation: upgrade to `8.5.1` or later.
CVE-2026-54066 Path Traversal in path-traversal (CVE-2026-54066)
path traversal in path-traversal (CVE-2026-54066). Confidential information can be exposed externally. Mitigation: upgrade to `3.7.0` or later.
CVE-2026-54070 Cross-Site Scripting (XSS) in CVE-2026-54070 (CVE-2026-54070)
cross-site scripting in CVE-2026-54070 (CVE-2026-54070). Confidential information can be exposed externally. Mitigation: upgrade to `3.7.0` or later.
CVE-2026-50189 Vulnerability in appsmith (CVE-2026-50189)
vulnerability in appsmith (CVE-2026-50189). Successful exploitation can lead to full system takeover. Exploitable via `GET /api/v1/admin/env`. Mitigation: upgrade to `2.1` or later.
CVE-2026-13037 Use-After-Free in google (CVE-2026-13037)
vulnerability in google (CVE-2026-13037). Successful exploitation can lead to full system takeover.
CVE-2026-13038 Use-After-Free in google (CVE-2026-13038)
vulnerability in google (CVE-2026-13038). Successful exploitation can lead to full system takeover.
CVE-2026-13035 Use-After-Free in google (CVE-2026-13035)
vulnerability in google (CVE-2026-13035). Successful exploitation can lead to full system takeover.
CVE-2026-13036 Use-After-Free in google (CVE-2026-13036)
vulnerability in google (CVE-2026-13036). Successful exploitation can lead to full system takeover.
CVE-2026-11998 Vulnerability in CVE-2026-11998 (CVE-2026-11998)
vulnerability in CVE-2026-11998 (CVE-2026-11998). Confidential information can be exposed externally.
CVE-2026-13033 Out-of-Bounds Read in google (CVE-2026-13033)
vulnerability in google (CVE-2026-13033). Successful exploitation can lead to full system takeover.
CVE-2026-13027 Use-After-Free in google (CVE-2026-13027)
vulnerability in google (CVE-2026-13027). Successful exploitation can lead to full system takeover.
CVE-2026-13026 Use-After-Free in google (CVE-2026-13026)
vulnerability in google (CVE-2026-13026). Successful exploitation can lead to full system takeover.
CVE-2026-13029 Use-After-Free in google (CVE-2026-13029)
vulnerability in google (CVE-2026-13029). Successful exploitation can lead to full system takeover.
CVE-2026-13031 Use-After-Free in google (CVE-2026-13031)
vulnerability in google (CVE-2026-13031). Successful exploitation can lead to full system takeover.
CVE-2026-13025 Vulnerability in google (CVE-2026-13025)
vulnerability in google (CVE-2026-13025). Successful exploitation can lead to full system takeover.
CVE-2026-33235 Vulnerability in dos (CVE-2026-33235)
vulnerability in dos (CVE-2026-33235). Risk of unauthorized operations or information disclosure.
CVE-2026-47389 Vulnerability in c (CVE-2026-47389)
vulnerability in c (CVE-2026-47389). Confidential information can be exposed externally. Mitigation: upgrade to `4.5.10` or later.
CVE-2026-53950 Cross-Site Scripting (XSS) in CVE-2026-53950 (CVE-2026-53950)
cross-site scripting in CVE-2026-53950 (CVE-2026-53950). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `3.1.0` or later.
CVE-2026-49247 Path Traversal in CVE-2026-49247 (CVE-2026-49247)
path traversal in CVE-2026-49247 (CVE-2026-49247). Successful exploitation can lead to full system takeover. Exploitable via `POST /ClientLog/Document`. Mitigation: upgrade to `10.11.10` or later.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →