Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: languages Clear
ID Title
CVE-2026-31942 Vulnerability in librechat (CVE-2026-31942)
vulnerability in librechat (CVE-2026-31942). Data can be tampered with by attackers. Exploitable via `PUT /api/keys`.
CVE-2026-10650 Vulnerability in c (CVE-2026-10650)
vulnerability in c (CVE-2026-10650). Risk of unauthorized operations or information disclosure.
CVE-2026-10620 Vulnerability in sqli (CVE-2026-10620)
vulnerability in sqli (CVE-2026-10620). Risk of unauthorized operations or information disclosure.
CVE-2026-10624 Vulnerability in CVE-2026-10624 (CVE-2026-10624)
vulnerability in CVE-2026-10624 (CVE-2026-10624). Risk of unauthorized operations or information disclosure.
CVE-2026-49144 Path Traversal in browserstack-runner (CVE-2026-49144)
path traversal in browserstack-runner (CVE-2026-49144). Confidential information can be exposed externally. Exploitable via ``_default``.
CVE-2026-49143 Code Injection in browserstack-runner (CVE-2026-49143)
code injection in browserstack-runner (CVE-2026-49143). Successful exploitation can lead to full system takeover. Exploitable via ``context``.
CVE-2026-48682 Out-of-Bounds Read in cpp (CVE-2026-48682)
vulnerability in cpp (CVE-2026-48682). Confidential information can be exposed externally.
CVE-2026-47265 Vulnerability in aiohttp (CVE-2026-47265)
vulnerability in aiohttp (CVE-2026-47265). Confidential information can be exposed externally. Exploitable via ``cookies``. Mitigation: upgrade to `3.14.0` or later.
CVE-2026-34993 Unsafe Deserialization in aiohttp (CVE-2026-34993)
vulnerability in aiohttp (CVE-2026-34993). Data can be tampered with by attackers. Mitigation: upgrade to `3.14.0` or later.
CVE-2026-1829 The Content Visibility for Divi Builder plugin for WordPress is vulnerable to Remote Code...
The Content Visibility for Divi Builder plugin for WordPress is vulnerable to Remote Code...
CVE-2026-10702 Vulnerability in mozilla (CVE-2026-10702)
vulnerability in mozilla (CVE-2026-10702). Risk of unauthorized operations or information disclosure.
CVE-2026-10607 Vulnerability in sqli (CVE-2026-10607)
vulnerability in sqli (CVE-2026-10607). Risk of unauthorized operations or information disclosure.
CVE-2026-10608 Vulnerability in sqli (CVE-2026-10608)
vulnerability in sqli (CVE-2026-10608). Risk of unauthorized operations or information disclosure.
CVE-2025-64390 Vulnerability in privilege-escalation (CVE-2025-64390)
vulnerability in privilege-escalation (CVE-2025-64390). Successful exploitation can lead to full system takeover.
CVE-2021-4479 Vulnerability in c (CVE-2021-4479)
vulnerability in c (CVE-2021-4479). Risk of unauthorized operations or information disclosure.
CVE-2026-49943 Vulnerability in c (CVE-2026-49943)
vulnerability in c (CVE-2026-49943). Risk of unauthorized operations or information disclosure.
CVE-2026-10606 Vulnerability in sqli (CVE-2026-10606)
vulnerability in sqli (CVE-2026-10606). Risk of unauthorized operations or information disclosure.
CVE-2026-0611 Vulnerability in csharp (CVE-2026-0611)
vulnerability in csharp (CVE-2026-0611). Successful exploitation can lead to full system takeover.
CVE-2026-40571 Vulnerability in CVE-2026-40571 (CVE-2026-40571)
vulnerability in CVE-2026-40571 (CVE-2026-40571). Risk of unauthorized operations or information disclosure.
CVE-2026-35443 Vulnerability in CVE-2026-35443 (CVE-2026-35443)
vulnerability in CVE-2026-35443 (CVE-2026-35443). Risk of unauthorized operations or information disclosure. Exploitable via ``view_other_topics``.
CVE-2026-35447 Vulnerability in CVE-2026-35447 (CVE-2026-35447)
vulnerability in CVE-2026-35447 (CVE-2026-35447). Risk of unauthorized operations or information disclosure.
CVE-2026-40314 Vulnerability in CVE-2026-40314 (CVE-2026-40314)
vulnerability in CVE-2026-40314 (CVE-2026-40314). Risk of unauthorized operations or information disclosure.
CVE-2026-33398 Vulnerability in CVE-2026-33398 (CVE-2026-33398)
vulnerability in CVE-2026-33398 (CVE-2026-33398). Risk of unauthorized operations or information disclosure. Exploitable via ``post``.
CVE-2026-10047 Out-of-Bounds Write in c (CVE-2026-10047)
out-of-bounds write in c (CVE-2026-10047). Successful exploitation can lead to full system takeover.
CVE-2026-10046 Out-of-Bounds Write in c (CVE-2026-10046)
out-of-bounds write in c (CVE-2026-10046). Successful exploitation can lead to full system takeover.
CVE-2026-7195 CWE-20: Improper Input Validation in web services in Progress Sitefinity 14.1.x through 14.3.x,...
CWE-20: Improper Input Validation in web services in Progress Sitefinity 14.1.x through 14.3.x,...
CVE-2026-7313 CWE‑522: Insufficiently Protected Credentials in web services in Progress Sitefinity version from...
CWE‑522: Insufficiently Protected Credentials in web services in Progress Sitefinity version from...
CVE-2026-39552 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File...
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File...
CVE-2026-39553 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File...
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File...
CVE-2026-39555 Deserialization of Untrusted Data vulnerability in Elated-Themes Askka allows Object Injection. ...
Deserialization of Untrusted Data vulnerability in Elated-Themes Askka allows Object Injection. ...
CVE-2026-32250 Cross-Site Scripting (XSS) in CVE-2026-32250 (CVE-2026-32250)
cross-site scripting in CVE-2026-32250 (CVE-2026-32250). Risk of unauthorized operations or information disclosure.
CVE-2025-68886 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File...
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File...
CVE-2025-69369 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File...
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File...
CVE-2025-58707 Vulnerability in CVE-2025-58707 (CVE-2025-58707)
vulnerability in CVE-2025-58707 (CVE-2025-58707). Successful exploitation can lead to full system takeover.
CVE-2025-58897 Vulnerability in CVE-2025-58897 (CVE-2025-58897)
vulnerability in CVE-2025-58897 (CVE-2025-58897). Successful exploitation can lead to full system takeover.
CVE-2025-58024 Vulnerability in CVE-2025-58024 (CVE-2025-58024)
vulnerability in CVE-2025-58024 (CVE-2025-58024). Successful exploitation can lead to full system takeover.
CVE-2025-58705 Vulnerability in CVE-2025-58705 (CVE-2025-58705)
vulnerability in CVE-2025-58705 (CVE-2025-58705). Successful exploitation can lead to full system takeover.
CVE-2025-53440 Vulnerability in CVE-2025-53440 (CVE-2025-53440)
vulnerability in CVE-2025-53440 (CVE-2025-53440). Successful exploitation can lead to full system takeover.
CVE-2026-34907 Cross-Site Scripting (XSS) in CVE-2026-34907 (CVE-2026-34907)
cross-site scripting in CVE-2026-34907 (CVE-2026-34907). Risk of unauthorized operations or information disclosure.
CVE-2026-10581 SSRF (Server-Side Request Forgery) in CVE-2026-10581 (CVE-2026-10581)
SSRF in CVE-2026-10581 (CVE-2026-10581). Risk of unauthorized operations or information disclosure.
CVE-2026-10568 Vulnerability in sqli (CVE-2026-10568)
vulnerability in sqli (CVE-2026-10568). Risk of unauthorized operations or information disclosure.
CVE-2026-10565 Vulnerability in c (CVE-2026-10565)
vulnerability in c (CVE-2026-10565). Risk of unauthorized operations or information disclosure.
CVE-2026-10567 Cross-Site Scripting (XSS) in CVE-2026-10567 (CVE-2026-10567)
cross-site scripting in CVE-2026-10567 (CVE-2026-10567). Risk of unauthorized operations or information disclosure.
CVE-2026-10100 Cross-Site Scripting (XSS) in wordpress (CVE-2026-10100)
cross-site scripting in wordpress (CVE-2026-10100). Risk of unauthorized operations or information disclosure.
CVE-2026-10510 Cross-Site Scripting (XSS) in CVE-2026-10510 (CVE-2026-10510)
cross-site scripting in CVE-2026-10510 (CVE-2026-10510). Risk of unauthorized operations or information disclosure.
CVE-2026-10558 Vulnerability in CVE-2026-10558 (CVE-2026-10558)
vulnerability in CVE-2026-10558 (CVE-2026-10558). Risk of unauthorized operations or information disclosure.
CVE-2026-10550 Vulnerability in CVE-2026-10550 (CVE-2026-10550)
vulnerability in CVE-2026-10550 (CVE-2026-10550). Risk of unauthorized operations or information disclosure.
CVE-2026-10559 Vulnerability in CVE-2026-10559 (CVE-2026-10559)
vulnerability in CVE-2026-10559 (CVE-2026-10559). Risk of unauthorized operations or information disclosure.
CVE-2026-10529 Cross-Site Scripting (XSS) in CVE-2026-10529 (CVE-2026-10529)
cross-site scripting in CVE-2026-10529 (CVE-2026-10529). Risk of unauthorized operations or information disclosure.
CVE-2026-10296 Vulnerability in sqli (CVE-2026-10296)
vulnerability in sqli (CVE-2026-10296). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →