Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-46618 |
|
Vulnerability in github.com/fission/fission (CVE-2026-46618)
vulnerability in github.com/fission/fission (CVE-2026-46618). Risk of unauthorized operations or information disclosure. Exploitable via ``Environment.spec.builder.command``. Mitigation: upgrade to `1.23.0` or later.
|
| CVE-2026-46616 |
|
Open Redirect in Umbraco.Cms (CVE-2026-46616)
vulnerability in Umbraco.Cms (CVE-2026-46616). Risk of unauthorized operations or information disclosure. Exploitable via ``UmbLoginStatusController``. Mitigation: upgrade to `17.4.0` or later.
|
| CVE-2026-46561 |
|
SSRF (Server-Side Request Forgery) in pyload-ng (CVE-2026-46561)
SSRF in pyload-ng (CVE-2026-46561). Risk of unauthorized operations or information disclosure. Exploitable via ``PREREQFUNCTION``. Mitigation: upgrade to `0.5.0b3.dev100` or later.
|
| CVE-2026-46545 |
|
Vulnerability in nimiq-primitives (CVE-2026-46545)
vulnerability in nimiq-primitives (CVE-2026-46545). Risk of unauthorized operations or information disclosure. Exploitable via ``RequestChunk``. Mitigation: upgrade to `1.5.0` or later.
|
| CVE-2026-46543 |
|
Vulnerability in nimiq-blockchain (CVE-2026-46543)
vulnerability in nimiq-blockchain (CVE-2026-46543). Risk of unauthorized operations or information disclosure. Exploitable via ``get_epoch_chunks``. Mitigation: upgrade to `1.5.0` or later.
|
| CVE-2026-46542 |
|
Vulnerability in nimiq-keys (CVE-2026-46542)
vulnerability in nimiq-keys (CVE-2026-46542). Risk of unauthorized operations or information disclosure. Exploitable via ``Ed25519PublicKey``. Mitigation: upgrade to `1.4.0` or later.
|
| CVE-2026-46539 |
|
Vulnerability in nimiq-primitives (CVE-2026-46539)
vulnerability in nimiq-primitives (CVE-2026-46539). Data can be tampered with by attackers. Exploitable via ``get_interlink_hops``.
|
| CVE-2026-48249 |
|
Vulnerability in CVE-2026-48249 (CVE-2026-48249)
vulnerability in CVE-2026-48249 (CVE-2026-48249). Confidential information can be exposed externally.
|
| CVE-2026-48244 |
|
Vulnerability in CVE-2026-48244 (CVE-2026-48244)
vulnerability in CVE-2026-48244 (CVE-2026-48244). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48248 |
|
Vulnerability in CVE-2026-48248 (CVE-2026-48248)
vulnerability in CVE-2026-48248 (CVE-2026-48248). Confidential information can be exposed externally.
|
| CVE-2026-48246 |
|
Vulnerability in CVE-2026-48246 (CVE-2026-48246)
vulnerability in CVE-2026-48246 (CVE-2026-48246). Confidential information can be exposed externally.
|
| CVE-2026-48245 |
|
Vulnerability in CVE-2026-48245 (CVE-2026-48245)
vulnerability in CVE-2026-48245 (CVE-2026-48245). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48247 |
|
Vulnerability in CVE-2026-48247 (CVE-2026-48247)
vulnerability in CVE-2026-48247 (CVE-2026-48247). Confidential information can be exposed externally.
|
| CVE-2026-48238 |
|
SQL Injection in sqli (CVE-2026-48238)
SQL injection in sqli (CVE-2026-48238). Confidential information can be exposed externally.
|
| CVE-2026-48240 |
|
SQL Injection in sqli (CVE-2026-48240)
SQL injection in sqli (CVE-2026-48240). Confidential information can be exposed externally.
|
| CVE-2026-48235 |
|
SQL Injection in sqli (CVE-2026-48235)
SQL injection in sqli (CVE-2026-48235). Confidential information can be exposed externally.
|
| CVE-2026-48237 |
|
SQL Injection in sqli (CVE-2026-48237)
SQL injection in sqli (CVE-2026-48237). Confidential information can be exposed externally.
|
| CVE-2026-48241 |
|
Vulnerability in CVE-2026-48241 (CVE-2026-48241)
vulnerability in CVE-2026-48241 (CVE-2026-48241). Successful exploitation can lead to full system takeover.
|
| CVE-2026-48243 |
|
Vulnerability in CVE-2026-48243 (CVE-2026-48243)
vulnerability in CVE-2026-48243 (CVE-2026-48243). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48242 |
|
Vulnerability in CVE-2026-48242 (CVE-2026-48242)
vulnerability in CVE-2026-48242 (CVE-2026-48242). Successful exploitation can lead to full system takeover.
|
| CVE-2026-48236 |
|
SQL Injection in sqli (CVE-2026-48236)
SQL injection in sqli (CVE-2026-48236). Confidential information can be exposed externally.
|
| CVE-2026-48239 |
|
SQL Injection in sqli (CVE-2026-48239)
SQL injection in sqli (CVE-2026-48239). Confidential information can be exposed externally.
|
| CVE-2026-48232 |
|
SQL Injection in sqli (CVE-2026-48232)
SQL injection in sqli (CVE-2026-48232). Confidential information can be exposed externally.
|
| CVE-2026-48233 |
|
SQL Injection in sqli (CVE-2026-48233)
SQL injection in sqli (CVE-2026-48233). Confidential information can be exposed externally.
|
| CVE-2026-48234 |
|
SQL Injection in sqli (CVE-2026-48234)
SQL injection in sqli (CVE-2026-48234). Confidential information can be exposed externally.
|
| CVE-2026-48217 |
|
Cross-Site Scripting (XSS) in CVE-2026-48217 (CVE-2026-48217)
cross-site scripting in CVE-2026-48217 (CVE-2026-48217). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48230 |
|
Cross-Site Scripting (XSS) in CVE-2026-48230 (CVE-2026-48230)
cross-site scripting in CVE-2026-48230 (CVE-2026-48230). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48218 |
|
Cross-Site Scripting (XSS) in CVE-2026-48218 (CVE-2026-48218)
cross-site scripting in CVE-2026-48218 (CVE-2026-48218). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48225 |
|
Cross-Site Scripting (XSS) in CVE-2026-48225 (CVE-2026-48225)
cross-site scripting in CVE-2026-48225 (CVE-2026-48225). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48219 |
|
Cross-Site Scripting (XSS) in CVE-2026-48219 (CVE-2026-48219)
cross-site scripting in CVE-2026-48219 (CVE-2026-48219). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48231 |
|
SQL Injection in sqli (CVE-2026-48231)
SQL injection in sqli (CVE-2026-48231). Confidential information can be exposed externally.
|
| CVE-2026-48222 |
|
Cross-Site Scripting (XSS) in CVE-2026-48222 (CVE-2026-48222)
cross-site scripting in CVE-2026-48222 (CVE-2026-48222). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48228 |
|
Cross-Site Scripting (XSS) in CVE-2026-48228 (CVE-2026-48228)
cross-site scripting in CVE-2026-48228 (CVE-2026-48228). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48221 |
|
Cross-Site Scripting (XSS) in CVE-2026-48221 (CVE-2026-48221)
cross-site scripting in CVE-2026-48221 (CVE-2026-48221). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48229 |
|
Cross-Site Scripting (XSS) in CVE-2026-48229 (CVE-2026-48229)
cross-site scripting in CVE-2026-48229 (CVE-2026-48229). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48220 |
|
Cross-Site Scripting (XSS) in CVE-2026-48220 (CVE-2026-48220)
cross-site scripting in CVE-2026-48220 (CVE-2026-48220). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48227 |
|
Cross-Site Scripting (XSS) in CVE-2026-48227 (CVE-2026-48227)
cross-site scripting in CVE-2026-48227 (CVE-2026-48227). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48226 |
|
Cross-Site Scripting (XSS) in CVE-2026-48226 (CVE-2026-48226)
cross-site scripting in CVE-2026-48226 (CVE-2026-48226). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48216 |
|
Cross-Site Scripting (XSS) in CVE-2026-48216 (CVE-2026-48216)
cross-site scripting in CVE-2026-48216 (CVE-2026-48216). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48224 |
|
Cross-Site Scripting (XSS) in CVE-2026-48224 (CVE-2026-48224)
cross-site scripting in CVE-2026-48224 (CVE-2026-48224). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48223 |
|
Cross-Site Scripting (XSS) in CVE-2026-48223 (CVE-2026-48223)
cross-site scripting in CVE-2026-48223 (CVE-2026-48223). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48215 |
|
Cross-Site Scripting (XSS) in CVE-2026-48215 (CVE-2026-48215)
cross-site scripting in CVE-2026-48215 (CVE-2026-48215). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48214 |
|
Cross-Site Scripting (XSS) in CVE-2026-48214 (CVE-2026-48214)
cross-site scripting in CVE-2026-48214 (CVE-2026-48214). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48207 |
|
Unsafe Deserialization in pyfory (CVE-2026-48207)
vulnerability in pyfory (CVE-2026-48207). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `1.0.0` or later.
|
| CVE-2026-48213 |
|
Cross-Site Scripting (XSS) in CVE-2026-48213 (CVE-2026-48213)
cross-site scripting in CVE-2026-48213 (CVE-2026-48213). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-46492 |
|
Vulnerability in md-fileserver (CVE-2026-46492)
vulnerability in md-fileserver (CVE-2026-46492). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.10.3` or later.
|
| CVE-2026-46490 |
|
Vulnerability in samlify (CVE-2026-46490)
vulnerability in samlify (CVE-2026-46490). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `2.13.0` or later.
|
| CVE-2026-36189 |
|
Vulnerability in cpp (CVE-2026-36189)
vulnerability in cpp (CVE-2026-36189). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-6841 |
|
Cross-Site Scripting (XSS) in bestpractical (CVE-2026-6841)
cross-site scripting in bestpractical (CVE-2026-6841). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-44062 |
|
Out-of-Bounds Write in c (CVE-2026-44062)
out-of-bounds write in c (CVE-2026-44062). Successful exploitation can lead to full system takeover.
|