Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: languages Clear
ID Title
CVE-2026-7701 Vulnerability in cpp (CVE-2026-7701)
vulnerability in cpp (CVE-2026-7701). Risk of unauthorized operations or information disclosure.
CVE-2026-7598 Vulnerability in c (CVE-2026-7598)
vulnerability in c (CVE-2026-7598). Risk of unauthorized operations or information disclosure.
CVE-2026-37457 Out-of-Bounds Write in c (CVE-2026-37457)
out-of-bounds write in c (CVE-2026-37457). Risk of unauthorized operations or information disclosure.
CVE-2026-42469 Vulnerability in cpp (CVE-2026-42469)
vulnerability in cpp (CVE-2026-42469). Risk of unauthorized operations or information disclosure.
CVE-2026-42468 Vulnerability in cpp (CVE-2026-42468)
vulnerability in cpp (CVE-2026-42468). Successful exploitation can lead to full system takeover.
CVE-2026-37541 Vulnerability in cpp (CVE-2026-37541)
vulnerability in cpp (CVE-2026-37541). Successful exploitation can lead to full system takeover.
CVE-2026-37540 Vulnerability in c (CVE-2026-37540)
vulnerability in c (CVE-2026-37540). Successful exploitation can lead to full system takeover.
CVE-2026-37531 Path Traversal in c (CVE-2026-37531)
path traversal in c (CVE-2026-37531). Successful exploitation can lead to full system takeover.
CVE-2026-37526 Vulnerability in c (CVE-2026-37526)
vulnerability in c (CVE-2026-37526). Successful exploitation can lead to full system takeover.
CVE-2026-37525 Privilege Escalation in c (CVE-2026-37525)
vulnerability in c (CVE-2026-37525). Successful exploitation can lead to full system takeover.
CVE-2026-37530 Vulnerability in c (CVE-2026-37530)
vulnerability in c (CVE-2026-37530). Risk of unauthorized operations or information disclosure.
CVE-2026-37532 Vulnerability in c (CVE-2026-37532)
vulnerability in c (CVE-2026-37532). Risk of unauthorized operations or information disclosure.
CVE-2026-42475 SQL Injection in sqli (CVE-2026-42475)
SQL injection in sqli (CVE-2026-42475). Risk of unauthorized operations or information disclosure.
CVE-2026-37505 SQL Injection in sqli (CVE-2026-37505)
SQL injection in sqli (CVE-2026-37505). Confidential information can be exposed externally.
CVE-2026-37552 Unsafe Deserialization in deserialization (CVE-2026-37552)
vulnerability in deserialization (CVE-2026-37552). Successful exploitation can lead to full system takeover.
CVE-2026-37504 Vulnerability in v2board (CVE-2026-37504)
vulnerability in v2board (CVE-2026-37504). Confidential information can be exposed externally. Exploitable via `Referer header`.
CVE-2026-37503 Cross-Site Scripting (XSS) in v2board (CVE-2026-37503)
cross-site scripting in v2board (CVE-2026-37503). Confidential information can be exposed externally.
CVE-2026-31778 Out-of-Bounds Read in c (CVE-2026-31778)
vulnerability in c (CVE-2026-31778). Confidential information can be exposed externally.
CVE-2026-43046 Vulnerability in c (CVE-2026-43046)
vulnerability in c (CVE-2026-43046). Risk of unauthorized operations or information disclosure.
CVE-2026-43028 Vulnerability in c (CVE-2026-43028)
vulnerability in c (CVE-2026-43028). Confidential information can be exposed externally.
CVE-2026-43029 Vulnerability in c (CVE-2026-43029)
vulnerability in c (CVE-2026-43029). Risk of unauthorized operations or information disclosure.
CVE-2026-43021 Vulnerability in c (CVE-2026-43021)
vulnerability in c (CVE-2026-43021). Risk of unauthorized operations or information disclosure.
CVE-2026-31762 Vulnerability in c (CVE-2026-31762)
vulnerability in c (CVE-2026-31762). Risk of unauthorized operations or information disclosure.
CVE-2026-31707 Out-of-Bounds Write in c (CVE-2026-31707)
out-of-bounds write in c (CVE-2026-31707). Confidential information can be exposed externally.
CVE-2026-31704 Vulnerability in c (CVE-2026-31704)
vulnerability in c (CVE-2026-31704). Risk of unauthorized operations or information disclosure.
CVE-2026-31702 Use-After-Free in c (CVE-2026-31702)
vulnerability in c (CVE-2026-31702). Successful exploitation can lead to full system takeover.
CVE-2026-31700 Vulnerability in c (CVE-2026-31700)
vulnerability in c (CVE-2026-31700). Successful exploitation can lead to full system takeover.
CVE-2026-31696 Out-of-Bounds Write in c (CVE-2026-31696)
out-of-bounds write in c (CVE-2026-31696). Successful exploitation can lead to full system takeover.
CVE-2026-31699 Out-of-Bounds Write in c (CVE-2026-31699)
out-of-bounds write in c (CVE-2026-31699). Confidential information can be exposed externally.
CVE-2026-31698 Out-of-Bounds Write in c (CVE-2026-31698)
out-of-bounds write in c (CVE-2026-31698). Confidential information can be exposed externally.
CVE-2026-31697 Out-of-Bounds Write in c (CVE-2026-31697)
out-of-bounds write in c (CVE-2026-31697). Confidential information can be exposed externally.
CVE-2026-43003 OS Command Injection in ironic-python-agent (CVE-2026-43003)
OS command injection in ironic-python-agent (CVE-2026-43003). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `11.6.0` or later.
CVE-2026-3346 SQL Injection in langflow (CVE-2026-3346)
SQL injection in langflow (CVE-2026-3346). Risk of unauthorized operations or information disclosure.
CVE-2025-14576 Vulnerability in dos (CVE-2025-14576)
vulnerability in dos (CVE-2025-14576). Successful exploitation can lead to full system takeover.
CVE-2026-41940 KEV [KEV] Vulnerability in Webpros cpanel-whm-and-wp2-wordpress-squared (CVE-2026-41940)
vulnerability in Webpros cpanel-whm-and-wp2-wordpress-squared (CVE-2026-41940). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2026-44015 SSRF (Server-Side Request Forgery) in github.com/0xJacky/Nginx-UI (CVE-2026-44015)
SSRF in github.com/0xJacky/Nginx-UI (CVE-2026-44015). Confidential information can be exposed externally. Exploitable via `GET /api/settings`.
CVE-2026-41484 Vulnerability in OpenTelemetry.Exporter.OneCollector (CVE-2026-41484)
vulnerability in OpenTelemetry.Exporter.OneCollector (CVE-2026-41484). Risk of unauthorized operations or information disclosure. Exploitable via ``HttpJsonPostTransport``. Mitigation: upgrade to `1.15.1` or later.
CVE-2026-41483 Vulnerability in OpenTelemetry.Resources.Azure (CVE-2026-41483)
vulnerability in OpenTelemetry.Resources.Azure (CVE-2026-41483). Risk of unauthorized operations or information disclosure. Exploitable via ``OpenTelemetry.Resources.Azure``. Mitigation: upgrade to `1.15.1-beta.1` or later.
CVE-2026-41310 Vulnerability in OpenTelemetry.Exporter.Zipkin (CVE-2026-41310)
vulnerability in OpenTelemetry.Exporter.Zipkin (CVE-2026-41310). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.15.3` or later.
CVE-2026-40296 Cross-Site Scripting (XSS) in phpoffice/phpspreadsheet (CVE-2026-40296)
cross-site scripting in phpoffice/phpspreadsheet (CVE-2026-40296). Risk of unauthorized operations or information disclosure. Exploitable via ``General``. Mitigation: upgrade to `1.30.4` or later.
CVE-2026-30246 Vulnerability in github.com/gofiber/fiber/v3 (CVE-2026-30246)
vulnerability in github.com/gofiber/fiber/v3 (CVE-2026-30246). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `3.2.0` or later.
CVE-2026-6238 Vulnerability in c (CVE-2026-6238)
vulnerability in c (CVE-2026-6238). Risk of unauthorized operations or information disclosure.
CVE-2026-32202 KEV [KEV] Vulnerability in Microsoft windows (CVE-2026-32202)
vulnerability in Microsoft windows (CVE-2026-32202). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2026-5362 Cross-Site Scripting (XSS) in pimcore (CVE-2026-5362)
cross-site scripting in pimcore (CVE-2026-5362). Risk of unauthorized operations or information disclosure.
CVE-2026-3087 Path Traversal in libpython (CVE-2026-3087)
path traversal in libpython (CVE-2026-3087). Data can be tampered with by attackers. Mitigation: upgrade to `3.14.5` or later.
CVE-2026-38935 Cross-Site Scripting (XSS) in CVE-2026-38935 (CVE-2026-38935)
cross-site scripting in CVE-2026-38935 (CVE-2026-38935). Risk of unauthorized operations or information disclosure.
CVE-2026-38934 Cross-Site Request Forgery (CSRF) in CVE-2026-38934 (CVE-2026-38934)
vulnerability in CVE-2026-38934 (CVE-2026-38934). Successful exploitation can lead to full system takeover.
CVE-2026-38936 Cross-Site Scripting (XSS) in CVE-2026-38936 (CVE-2026-38936)
cross-site scripting in CVE-2026-38936 (CVE-2026-38936). Risk of unauthorized operations or information disclosure.
CVE-2026-41465 Path Traversal in path-traversal (CVE-2026-41465)
path traversal in path-traversal (CVE-2026-41465). Confidential information can be exposed externally.
CVE-2026-27172 Unsafe Deserialization in apache (CVE-2026-27172)
vulnerability in apache (CVE-2026-27172). Successful exploitation can lead to full system takeover.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →