Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: languages Tag: cwe-200 Clear
ID Title
CVE-2026-57481 Information Disclosure in CVE-2026-57481 (CVE-2026-57481)
vulnerability in CVE-2026-57481 (CVE-2026-57481). Risk of unauthorized operations or information disclosure.
CVE-2026-53643 Information Disclosure in c (CVE-2026-53643)
vulnerability in c (CVE-2026-53643). Risk of unauthorized operations or information disclosure. Exploitable via ``can_always_access``.
CVE-2026-58036 Information Disclosure in CVE-2026-58036 (CVE-2026-58036)
vulnerability in CVE-2026-58036 (CVE-2026-58036). Risk of unauthorized operations or information disclosure.
CVE-2026-58033 Information Disclosure in CVE-2026-58033 (CVE-2026-58033)
vulnerability in CVE-2026-58033 (CVE-2026-58033). Risk of unauthorized operations or information disclosure.
CVE-2026-58026 Information Disclosure in CVE-2026-58026 (CVE-2026-58026)
vulnerability in CVE-2026-58026 (CVE-2026-58026). Risk of unauthorized operations or information disclosure.
CVE-2026-58027 Information Disclosure in CVE-2026-58027 (CVE-2026-58027)
vulnerability in CVE-2026-58027 (CVE-2026-58027). Risk of unauthorized operations or information disclosure.
CVE-2026-58024 Information Disclosure in CVE-2026-58024 (CVE-2026-58024)
vulnerability in CVE-2026-58024 (CVE-2026-58024). Risk of unauthorized operations or information disclosure.
CVE-2026-55188 Information Disclosure in CVE-2026-55188 (CVE-2026-55188)
vulnerability in CVE-2026-55188 (CVE-2026-55188). Confidential information can be exposed externally. Mitigation: upgrade to `1.0.0-beta.9` or later.
CVE-2026-47389 Vulnerability in c (CVE-2026-47389)
vulnerability in c (CVE-2026-47389). Confidential information can be exposed externally. Mitigation: upgrade to `4.5.10` or later.
CVE-2026-53949 Information Disclosure in CVE-2026-53949 (CVE-2026-53949)
vulnerability in CVE-2026-53949 (CVE-2026-53949). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `6.21.2` or later.
CVE-2026-9612 Information Disclosure in wordpress (CVE-2026-9612)
vulnerability in wordpress (CVE-2026-9612). Risk of unauthorized operations or information disclosure.
CVE-2026-9183 Information Disclosure in wordpress (CVE-2026-9183)
vulnerability in wordpress (CVE-2026-9183). Risk of unauthorized operations or information disclosure.
CVE-2026-50200 Information Disclosure in Steeltoe.Management.Endpoint (CVE-2026-50200)
vulnerability in Steeltoe.Management.Endpoint (CVE-2026-50200). Confidential information can be exposed externally. Exploitable via ``Sanitizer``. Mitigation: upgrade to `4.2.0` or later.
CVE-2026-46977 Information Disclosure in c (CVE-2026-46977)
vulnerability in c (CVE-2026-46977). Risk of unauthorized operations or information disclosure.
CVE-2026-46912 Information Disclosure in c (CVE-2026-46912)
vulnerability in c (CVE-2026-46912). Confidential information can be exposed externally.
CVE-2026-46910 Vulnerability in c (CVE-2026-46910)
vulnerability in c (CVE-2026-46910). Confidential information can be exposed externally.
CVE-2026-46874 Information Disclosure in c (CVE-2026-46874)
vulnerability in c (CVE-2026-46874). Risk of unauthorized operations or information disclosure.
CVE-2026-46816 Information Disclosure in c (CVE-2026-46816)
vulnerability in c (CVE-2026-46816). Risk of unauthorized operations or information disclosure.
CVE-2026-46815 Information Disclosure in c (CVE-2026-46815)
vulnerability in c (CVE-2026-46815). Risk of unauthorized operations or information disclosure.
CVE-2026-46790 Information Disclosure in c (CVE-2026-46790)
vulnerability in c (CVE-2026-46790). Risk of unauthorized operations or information disclosure.
CVE-2026-54276 Information Disclosure in aiohttp (CVE-2026-54276)
vulnerability in aiohttp (CVE-2026-54276). Risk of unauthorized operations or information disclosure. Exploitable via ``DigestAuthMiddleware``. Mitigation: upgrade to `3.14.1` or later.
CVE-2026-54264 Information Disclosure in @angular/service-worker (CVE-2026-54264)
vulnerability in @angular/service-worker (CVE-2026-54264). Risk of unauthorized operations or information disclosure. Exploitable via ``Authorization``.
CVE-2026-53571 Path Traversal in vite (CVE-2026-53571)
path traversal in vite (CVE-2026-53571). Confidential information can be exposed externally. Exploitable via ``server.fs.deny``. Mitigation: upgrade to `6.4.3` or later.
CVE-2026-49356 Path Traversal in @babel/core (CVE-2026-49356)
path traversal in @babel/core (CVE-2026-49356). Risk of unauthorized operations or information disclosure. Exploitable via ``inputSourceMap``. Mitigation: upgrade to `7.29.6` or later.
CVE-2026-50184 Information Disclosure in @angular/service-worker (CVE-2026-50184)
vulnerability in @angular/service-worker (CVE-2026-50184). Risk of unauthorized operations or information disclosure. Exploitable via `Authorization header`.
CVE-2026-50169 Information Disclosure in @angular/service-worker (CVE-2026-50169)
vulnerability in @angular/service-worker (CVE-2026-50169). Risk of unauthorized operations or information disclosure. Exploitable via ``Request``. Mitigation: upgrade to `21.2.15` or later.
CVE-2026-53725 Information Disclosure in parse-server (CVE-2026-53725)
vulnerability in parse-server (CVE-2026-53725). Risk of unauthorized operations or information disclosure. Exploitable via ``get``. Mitigation: upgrade to `9.9.1-alpha.5` or later.
CVE-2026-45329 ESF-IDF is the Espressif Internet of Things (IOT) Development Framework. In versions 5.5.4 and 6.0, several ESP-TEE secure-service wrappers in esp_secure_services.c and esp_secure_services_iram.c vali...
ESF-IDF is the Espressif Internet of Things (IOT) Development Framework. In versions 5.5.4 and 6.0, several ESP-TEE secure-service wrappers in esp_secure_services.c and esp_secure_services_iram.c validated only some of the caller-supplied pointer arguments, leaving input pointer arguments unchecked....
CVE-2026-45536 Information Disclosure in io.netty:netty-transport-native-epoll (CVE-2026-45536)
vulnerability in io.netty:netty-transport-native-epoll (CVE-2026-45536). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `4.1.135.Final` or later.
CVE-2026-11464 Information Disclosure in CVE-2026-11464 (CVE-2026-11464)
vulnerability in CVE-2026-11464 (CVE-2026-11464). Risk of unauthorized operations or information disclosure.
CVE-2026-44486 Information Disclosure in axios (CVE-2026-44486)
vulnerability in axios (CVE-2026-44486). Confidential information can be exposed externally. Exploitable via `GET /start`. Mitigation: upgrade to `0.32.0` or later.
CVE-2026-2128 Information Disclosure in wordpress (CVE-2026-2128)
vulnerability in wordpress (CVE-2026-2128). Risk of unauthorized operations or information disclosure. Exploitable via ``wordpress_logged_in_``.
CVE-2026-46841 Information Disclosure in c (CVE-2026-46841)
vulnerability in c (CVE-2026-46841). Risk of unauthorized operations or information disclosure.
CVE-2026-46830 Information Disclosure in c (CVE-2026-46830)
vulnerability in c (CVE-2026-46830). Risk of unauthorized operations or information disclosure.
CVE-2026-47136 Information Disclosure in CVE-2026-47136 (CVE-2026-47136)
vulnerability in CVE-2026-47136 (CVE-2026-47136). Risk of unauthorized operations or information disclosure. Exploitable via `GET /rustfs/console/license`. Mitigation: upgrade to `1.0.0-beta.2` or later.
CVE-2026-42878 Information Disclosure in facturascripts/facturascripts (CVE-2026-42878)
vulnerability in facturascripts/facturascripts (CVE-2026-42878). Risk of unauthorized operations or information disclosure.
CVE-2026-44460 Information Disclosure in CVE-2026-44460 (CVE-2026-44460)
vulnerability in CVE-2026-44460 (CVE-2026-44460). Confidential information can be exposed externally. Mitigation: upgrade to `3.12.0` or later.
CVE-2026-9583 Information Disclosure in CVE-2026-9583 (CVE-2026-9583)
vulnerability in CVE-2026-9583 (CVE-2026-9583). Risk of unauthorized operations or information disclosure.
CVE-2026-46395 Information Disclosure in @haxtheweb/haxcms-nodejs (CVE-2026-46395)
vulnerability in @haxtheweb/haxcms-nodejs (CVE-2026-46395). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `26.0.0` or later.
CVE-2026-45553 Information Disclosure in nicegui (CVE-2026-45553)
vulnerability in nicegui (CVE-2026-45553). Confidential information can be exposed externally. Exploitable via ``include``. Mitigation: upgrade to `3.12.0` or later.
CVE-2026-45683 Vulnerability in go.opentelemetry.io/obi (CVE-2026-45683)
vulnerability in go.opentelemetry.io/obi (CVE-2026-45683). Risk of unauthorized operations or information disclosure. Exploitable via ``bpf_probe_read``. Mitigation: upgrade to `0.9.0` or later.
CVE-2026-45300 Information Disclosure in org.asynchttpclient:async-http-client (CVE-2026-45300)
vulnerability in org.asynchttpclient:async-http-client (CVE-2026-45300). Confidential information can be exposed externally. Exploitable via ``Cookie``. Mitigation: upgrade to `2.15.0` or later.
CVE-2026-39079 Information Disclosure in CVE-2026-39079 (CVE-2026-39079)
vulnerability in CVE-2026-39079 (CVE-2026-39079). Confidential information can be exposed externally.
CVE-2026-8750 Information Disclosure in h2o (CVE-2026-8750)
vulnerability in h2o (CVE-2026-8750). Risk of unauthorized operations or information disclosure.
CVE-2026-45091 Information Disclosure in sealed-env (CVE-2026-45091)
vulnerability in sealed-env (CVE-2026-45091). Confidential information can be exposed externally. Mitigation: upgrade to `0.1.0-alpha.4` or later.
CVE-2026-7626 Information Disclosure in wordpress (CVE-2026-7626)
vulnerability in wordpress (CVE-2026-7626). Risk of unauthorized operations or information disclosure.
CVE-2026-43885 Information Disclosure in wwbn/avideo (CVE-2026-43885)
vulnerability in wwbn/avideo (CVE-2026-43885). Risk of unauthorized operations or information disclosure. Exploitable via ``APISecret``.
CVE-2026-42873 Information Disclosure in CVE-2026-42873 (CVE-2026-42873)
vulnerability in CVE-2026-42873 (CVE-2026-42873). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `3.6.10` or later.
CVE-2026-34579 Information Disclosure in mantisbt/mantisbt (CVE-2026-34579)
vulnerability in mantisbt/mantisbt (CVE-2026-34579). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.28.2` or later.
CVE-2026-42871 Information Disclosure in CVE-2026-42871 (CVE-2026-42871)
vulnerability in CVE-2026-42871 (CVE-2026-42871). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `3.7.0` or later.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →