Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-43466 |
|
Vulnerability in c (CVE-2026-43466)
vulnerability in c (CVE-2026-43466). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43456 |
|
Vulnerability in c (CVE-2026-43456)
vulnerability in c (CVE-2026-43456). Successful exploitation can lead to full system takeover.
|
| CVE-2026-43449 |
|
Out-of-Bounds Read in c (CVE-2026-43449)
vulnerability in c (CVE-2026-43449). Confidential information can be exposed externally.
|
| CVE-2026-43448 |
|
Vulnerability in c (CVE-2026-43448)
vulnerability in c (CVE-2026-43448). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43444 |
|
Vulnerability in c (CVE-2026-43444)
vulnerability in c (CVE-2026-43444). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43434 |
|
Vulnerability in c (CVE-2026-43434)
vulnerability in c (CVE-2026-43434). Successful exploitation can lead to full system takeover.
|
| CVE-2026-43420 |
|
Vulnerability in c (CVE-2026-43420)
vulnerability in c (CVE-2026-43420). Risk of unauthorized operations or information disclosure. Exploitable via ``i_nlink``.
|
| CVE-2026-43421 |
|
Vulnerability in csharp (CVE-2026-43421)
vulnerability in csharp (CVE-2026-43421). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43411 |
|
Vulnerability in c (CVE-2026-43411)
vulnerability in c (CVE-2026-43411). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43408 |
|
Vulnerability in c (CVE-2026-43408)
vulnerability in c (CVE-2026-43408). Successful exploitation can lead to full system takeover.
|
| CVE-2026-43404 |
|
Vulnerability in c (CVE-2026-43404)
vulnerability in c (CVE-2026-43404). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43388 |
|
Use-After-Free in c (CVE-2026-43388)
vulnerability in c (CVE-2026-43388). Successful exploitation can lead to full system takeover.
|
| CVE-2026-43381 |
|
Vulnerability in c (CVE-2026-43381)
vulnerability in c (CVE-2026-43381). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43372 |
|
Vulnerability in c (CVE-2026-43372)
vulnerability in c (CVE-2026-43372). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43368 |
|
Vulnerability in c (CVE-2026-43368)
vulnerability in c (CVE-2026-43368). Successful exploitation can lead to full system takeover.
|
| CVE-2026-43361 |
|
Vulnerability in c (CVE-2026-43361)
vulnerability in c (CVE-2026-43361). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41588 |
|
Vulnerability in timing-attack (CVE-2026-41588)
vulnerability in timing-attack (CVE-2026-41588). Successful exploitation can lead to full system takeover.
|
| CVE-2026-41585 |
|
Vulnerability in zebra-rpc (CVE-2026-41585)
vulnerability in zebra-rpc (CVE-2026-41585). Risk of unauthorized operations or information disclosure. Exploitable via ``zebrad``. Mitigation: upgrade to `6.0.2` or later.
|
| CVE-2026-41584 |
|
Vulnerability in zebrad (CVE-2026-41584)
vulnerability in zebrad (CVE-2026-41584). Risk of unauthorized operations or information disclosure. Exploitable via ``orchard``. Mitigation: upgrade to `4.3.1` or later.
|
| CVE-2026-41583 |
|
Vulnerability in zfnd (CVE-2026-41583)
vulnerability in zfnd (CVE-2026-41583). Data can be tampered with by attackers. Exploitable via ``zcashd``.
|
| CVE-2026-41524 |
|
Cross-Site Scripting (XSS) in laravel (CVE-2026-41524)
cross-site scripting in laravel (CVE-2026-41524). Confidential information can be exposed externally.
|
| CVE-2026-41576 |
|
Cross-Site Scripting (XSS) in CVE-2026-41576 (CVE-2026-41576)
cross-site scripting in CVE-2026-41576 (CVE-2026-41576). Confidential information can be exposed externally.
|
| CVE-2026-41570 |
|
Vulnerability in phpunit/phpunit (CVE-2026-41570)
vulnerability in phpunit/phpunit (CVE-2026-41570). Successful exploitation can lead to full system takeover. Exploitable via ``auto_prepend_file``. Mitigation: upgrade to `13.1.6` or later.
|
| CVE-2026-41575 |
|
Cross-Site Scripting (XSS) in th30d4y (CVE-2026-41575)
cross-site scripting in th30d4y (CVE-2026-41575). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-37431 |
|
SQL Injection in sqli (CVE-2026-37431)
SQL injection in sqli (CVE-2026-37431). Successful exploitation can lead to full system takeover.
|
| CVE-2025-67486 |
|
Vulnerability in dolibarr (CVE-2025-67486)
vulnerability in dolibarr (CVE-2025-67486). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44335 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-44335)
SSRF in ssrf (CVE-2026-44335). Successful exploitation can lead to full system takeover. Exploitable via ``requests``. Mitigation: upgrade to `>= 1.6.32` or later.
|
| CVE-2026-44336 |
|
Vulnerability in praison (CVE-2026-44336)
vulnerability in praison (CVE-2026-44336). Successful exploitation can lead to full system takeover. Exploitable via ``praisonai.rules.create``.
|
| CVE-2026-44338 |
|
Vulnerability in PraisonAI (CVE-2026-44338)
vulnerability in PraisonAI (CVE-2026-44338). Risk of unauthorized operations or information disclosure. Exploitable via `POST /chat`. Mitigation: upgrade to `4.6.34` or later.
|
| CVE-2026-43349 |
|
Vulnerability in c (CVE-2026-43349)
vulnerability in c (CVE-2026-43349). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43345 |
|
Vulnerability in c (CVE-2026-43345)
vulnerability in c (CVE-2026-43345). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43338 |
|
Vulnerability in c (CVE-2026-43338)
vulnerability in c (CVE-2026-43338). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43337 |
|
Vulnerability in c (CVE-2026-43337)
vulnerability in c (CVE-2026-43337). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43331 |
|
Vulnerability in c (CVE-2026-43331)
vulnerability in c (CVE-2026-43331). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43327 |
|
Vulnerability in c (CVE-2026-43327)
vulnerability in c (CVE-2026-43327). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43322 |
|
Use-After-Free in c (CVE-2026-43322)
vulnerability in c (CVE-2026-43322). Successful exploitation can lead to full system takeover.
|
| CVE-2026-43315 |
|
Vulnerability in c (CVE-2026-43315)
vulnerability in c (CVE-2026-43315). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43311 |
|
Vulnerability in c (CVE-2026-43311)
vulnerability in c (CVE-2026-43311). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43299 |
|
Vulnerability in c (CVE-2026-43299)
vulnerability in c (CVE-2026-43299). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43301 |
|
Vulnerability in c (CVE-2026-43301)
vulnerability in c (CVE-2026-43301). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43302 |
|
Vulnerability in c (CVE-2026-43302)
vulnerability in c (CVE-2026-43302). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43298 |
|
Vulnerability in c (CVE-2026-43298)
vulnerability in c (CVE-2026-43298). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43293 |
|
Vulnerability in c (CVE-2026-43293)
vulnerability in c (CVE-2026-43293). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43290 |
|
Vulnerability in c (CVE-2026-43290)
vulnerability in c (CVE-2026-43290). Successful exploitation can lead to full system takeover.
|
| CVE-2026-43292 |
|
Vulnerability in c (CVE-2026-43292)
vulnerability in c (CVE-2026-43292). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43289 |
|
Vulnerability in c (CVE-2026-43289)
vulnerability in c (CVE-2026-43289). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-43288 |
|
Vulnerability in c (CVE-2026-43288)
vulnerability in c (CVE-2026-43288). Risk of unauthorized operations or information disclosure. Exploitable via ``DOUBLE_CHECK``.
|
| CVE-2026-41507 |
|
Code Injection in remote (CVE-2026-41507)
code injection in remote (CVE-2026-41507). Successful exploitation can lead to full system takeover.
|
| CVE-2026-41512 |
|
Code Injection in gem (CVE-2026-41512)
code injection in gem (CVE-2026-41512). Successful exploitation can lead to full system takeover. Exploitable via `POST /targets/auto_detect_selectors`.
|
| CVE-2026-41497 |
|
Command Injection in praison (CVE-2026-41497)
command injection in praison (CVE-2026-41497). Successful exploitation can lead to full system takeover. Exploitable via ``bash``. Mitigation: upgrade to `>= 4.6.9` or later.
|