Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-60102 |
|
OS Command Injection in c (CVE-2026-60102)
OS command injection in c (CVE-2026-60102). Successful exploitation can lead to full system takeover.
|
| CVE-2026-15033 |
|
Command Injection in CVE-2026-15033 (CVE-2026-15033)
command injection in CVE-2026-15033 (CVE-2026-15033). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34057 |
|
OS Command Injection in CVE-2026-34057 (CVE-2026-34057)
OS command injection in CVE-2026-34057 (CVE-2026-34057). Successful exploitation can lead to full system takeover.
|
| CVE-2026-42148 |
|
OS Command Injection in CVE-2026-42148 (CVE-2026-42148)
OS command injection in CVE-2026-42148 (CVE-2026-42148). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-55798 |
|
OS Command Injection in pillow (CVE-2026-55798)
OS command injection in pillow (CVE-2026-55798). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-14802 |
|
A vulnerability was detected in react create-react-app up to 5.0.1 on macOS. This affects the...
A vulnerability was detected in react create-react-app up to 5.0.1 on macOS. This affects the...
|
| CVE-2026-44454 |
|
OS Command Injection in github.com/coder/coder/v2 (CVE-2026-44454)
OS command injection in github.com/coder/coder/v2 (CVE-2026-44454). Confidential information can be exposed externally. Exploitable via ``dotfiles``. Mitigation: upgrade to `2.30.2` or later.
|
| CVE-2026-58455 |
|
OS Command Injection in CVE-2026-58455 (CVE-2026-58455)
OS command injection in CVE-2026-58455 (CVE-2026-58455). Successful exploitation can lead to full system takeover.
|
| CVE-2026-34115 |
|
OS Command Injection in CVE-2026-34115 (CVE-2026-34115)
OS command injection in CVE-2026-34115 (CVE-2026-34115). Successful exploitation can lead to full system takeover.
|
| CVE-2026-34116 |
|
OS Command Injection in CVE-2026-34116 (CVE-2026-34116)
OS command injection in CVE-2026-34116 (CVE-2026-34116). Successful exploitation can lead to full system takeover.
|
| CVE-2026-34111 |
|
OS Command Injection in CVE-2026-34111 (CVE-2026-34111)
OS command injection in CVE-2026-34111 (CVE-2026-34111). Successful exploitation can lead to full system takeover.
|
| CVE-2026-34108 |
|
OS Command Injection in CVE-2026-34108 (CVE-2026-34108)
OS command injection in CVE-2026-34108 (CVE-2026-34108). Successful exploitation can lead to full system takeover.
|
| CVE-2026-34113 |
|
OS Command Injection in CVE-2026-34113 (CVE-2026-34113)
OS command injection in CVE-2026-34113 (CVE-2026-34113). Successful exploitation can lead to full system takeover.
|
| CVE-2026-34110 |
|
OS Command Injection in CVE-2026-34110 (CVE-2026-34110)
OS command injection in CVE-2026-34110 (CVE-2026-34110). Successful exploitation can lead to full system takeover.
|
| CVE-2026-34117 |
|
OS Command Injection in CVE-2026-34117 (CVE-2026-34117)
OS command injection in CVE-2026-34117 (CVE-2026-34117). Successful exploitation can lead to full system takeover.
|
| CVE-2026-34114 |
|
OS Command Injection in CVE-2026-34114 (CVE-2026-34114)
OS command injection in CVE-2026-34114 (CVE-2026-34114). Successful exploitation can lead to full system takeover.
|
| CVE-2026-34112 |
|
OS Command Injection in CVE-2026-34112 (CVE-2026-34112)
OS command injection in CVE-2026-34112 (CVE-2026-34112). Successful exploitation can lead to full system takeover.
|
| CVE-2026-34107 |
|
OS Command Injection in CVE-2026-34107 (CVE-2026-34107)
OS command injection in CVE-2026-34107 (CVE-2026-34107). Successful exploitation can lead to full system takeover.
|
| CVE-2026-34109 |
|
OS Command Injection in CVE-2026-34109 (CVE-2026-34109)
OS command injection in CVE-2026-34109 (CVE-2026-34109). Successful exploitation can lead to full system takeover.
|
| CVE-2026-34106 |
|
OS Command Injection in CVE-2026-34106 (CVE-2026-34106)
OS command injection in CVE-2026-34106 (CVE-2026-34106). Successful exploitation can lead to full system takeover.
|
| CVE-2026-56700 |
|
OS Command Injection in CVE-2026-56700 (CVE-2026-56700)
OS command injection in CVE-2026-56700 (CVE-2026-56700). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `2.0.0-beta.2` or later.
|
| CVE-2026-27955 |
|
OS Command Injection in c (CVE-2026-27955)
OS command injection in c (CVE-2026-27955). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `4.0.0-beta.464` or later.
|
| CVE-2026-49869 |
|
OS Command Injection in kestra (CVE-2026-49869)
OS command injection in kestra (CVE-2026-49869). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `1.0.45` or later.
|
| CVE-2026-48800 |
|
OS Command Injection in cpp (CVE-2026-48800)
OS command injection in cpp (CVE-2026-48800). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `8.9.6.1` or later.
|
| CVE-2026-48778 |
|
OS Command Injection in cpp (CVE-2026-48778)
OS command injection in cpp (CVE-2026-48778). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `8.9.6.1` or later.
|
| CVE-2026-9773 |
|
OS Command Injection in unraid (CVE-2026-9773)
OS command injection in unraid (CVE-2026-9773). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9772 |
|
OS Command Injection in unraid (CVE-2026-9772)
OS command injection in unraid (CVE-2026-9772). Successful exploitation can lead to full system takeover.
|
| CVE-2026-40079 |
|
OS Command Injection in cacti (CVE-2026-40079)
OS command injection in cacti (CVE-2026-40079). Successful exploitation can lead to full system takeover.
|
| CVE-2026-55249 |
|
OS Command Injection in c (CVE-2026-55249)
OS command injection in c (CVE-2026-55249). Confidential information can be exposed externally.
|
| CVE-2026-55448 |
|
OS Command Injection in mise (CVE-2026-55448)
OS command injection in mise (CVE-2026-55448). Confidential information can be exposed externally. Exploitable via ``mise``. Mitigation: upgrade to `2026.6.4` or later.
|
| CVE-2026-55441 |
|
OS Command Injection in mise (CVE-2026-55441)
OS command injection in mise (CVE-2026-55441). Successful exploitation can lead to full system takeover. Exploitable via ``mise.toml``. Mitigation: upgrade to `2026.6.4` or later.
|
| CVE-2026-49260 |
|
OS Command Injection in pontedilana/php-weasyprint (CVE-2026-49260)
OS command injection in pontedilana/php-weasyprint (CVE-2026-49260). Successful exploitation can lead to full system takeover. Exploitable via ``master``. Mitigation: upgrade to `2.5.1` or later.
|
| CVE-2026-48997 |
|
OS Command Injection in c (CVE-2026-48997)
OS command injection in c (CVE-2026-48997). Data can be tampered with by attackers.
|
| CVE-2026-49402 |
|
OS Command Injection in deno (CVE-2026-49402)
OS command injection in deno (CVE-2026-49402). Successful exploitation can lead to full system takeover. Exploitable via ``spawn``. Mitigation: upgrade to `2.7.10` or later.
|
| CVE-2026-48723 |
|
OS Command Injection in CVE-2026-48723 (CVE-2026-48723)
OS command injection in CVE-2026-48723 (CVE-2026-48723). Successful exploitation can lead to full system takeover.
|
| CVE-2026-45564 |
|
OS Command Injection in c (CVE-2026-45564)
OS command injection in c (CVE-2026-45564). Successful exploitation can lead to full system takeover. Exploitable via `POST /config/versions/`.
|
| CVE-2026-45558 |
|
Vulnerability in c (CVE-2026-45558)
vulnerability in c (CVE-2026-45558). Successful exploitation can lead to full system takeover. Exploitable via `POST /api/service/haproxy/`.
|
| CVE-2026-38615 |
|
DedeCMS V5.7.118 is vulnerable to Command Execution in file_manage_control.php.
DedeCMS V5.7.118 is vulnerable to Command Execution in file_manage_control.php.
|
| CVE-2026-9277 |
|
Command Injection in shell-quote (CVE-2026-9277)
command injection in shell-quote (CVE-2026-9277). Successful exploitation can lead to full system takeover. Exploitable via ``envFn``. Mitigation: upgrade to `1.8.4` or later.
|
| CVE-2026-9279 |
|
OS Command Injection in CVE-2026-9279 (CVE-2026-9279)
OS command injection in CVE-2026-9279 (CVE-2026-9279). Risk of unauthorized operations or information disclosure. Exploitable via ``git``.
|
| CVE-2026-40519 |
|
OS Command Injection in nginx (CVE-2026-40519)
OS command injection in nginx (CVE-2026-40519). Successful exploitation can lead to full system takeover.
|
| CVE-2026-11408 |
|
Command Injection in CVE-2026-11408 (CVE-2026-11408)
command injection in CVE-2026-11408 (CVE-2026-11408). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-46394 |
|
OS Command Injection in CVE-2026-46394 (CVE-2026-46394)
OS command injection in CVE-2026-46394 (CVE-2026-46394). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-46399 |
|
Vulnerability in CVE-2026-46399 (CVE-2026-46399)
vulnerability in CVE-2026-46399 (CVE-2026-46399). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10796 |
|
OS Command Injection in openjsf (CVE-2026-10796)
OS command injection in openjsf (CVE-2026-10796). Successful exploitation can lead to full system takeover. Exploitable via ``eval``.
|
| CVE-2026-41010 |
|
OS Command Injection in c (CVE-2026-41010)
OS command injection in c (CVE-2026-41010). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `282.1.12` or later.
|
| CVE-2026-41011 |
|
OS Command Injection in c (CVE-2026-41011)
OS command injection in c (CVE-2026-41011). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `282.1.12` or later.
|
| CVE-2026-10273 |
|
Command Injection in CVE-2026-10273 (CVE-2026-10273)
command injection in CVE-2026-10273 (CVE-2026-10273). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-42563 |
|
OS Command Injection in dulwich (CVE-2026-42563)
OS command injection in dulwich (CVE-2026-42563). Risk of unauthorized operations or information disclosure. Exploitable via ``ProcessMergeDriver``. Mitigation: upgrade to `1.2.5` or later.
|
| CVE-2026-9645 |
|
OS Command Injection in CVE-2026-9645 (CVE-2026-9645)
OS command injection in CVE-2026-9645 (CVE-2026-9645). Successful exploitation can lead to full system takeover.
|