Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: languages Tag: cwe-88 Clear
ID Title
CVE-2026-40047 Vulnerability in apache (CVE-2026-40047)
vulnerability in apache (CVE-2026-40047). Confidential information can be exposed externally. Exploitable via ``docling``.
CVE-2026-12856 Vulnerability in redhat (CVE-2026-12856)
vulnerability in redhat (CVE-2026-12856). Successful exploitation can lead to full system takeover.
CVE-2026-40079 OS Command Injection in cacti (CVE-2026-40079)
OS command injection in cacti (CVE-2026-40079). Successful exploitation can lead to full system takeover.
CVE-2026-12530 Vulnerability in Amazon bedrock-agentcore (CVE-2026-12530)
vulnerability in Amazon bedrock-agentcore (CVE-2026-12530). Confidential information can be exposed externally. Mitigation: upgrade to `1.6.1` or later.
CVE-2026-46529 Command Injection in c (CVE-2026-46529)
command injection in c (CVE-2026-46529). Successful exploitation can lead to full system takeover. Exploitable via ``g_shell_quote``. Mitigation: upgrade to `1.6.2` or later.
CVE-2024-52011 Command Injection in launch-editor (CVE-2024-52011)
command injection in launch-editor (CVE-2024-52011). Confidential information can be exposed externally. Exploitable via ``file``. Mitigation: upgrade to `2.9.0` or later.
CVE-2026-44449 Vulnerability in c (CVE-2026-44449)
vulnerability in c (CVE-2026-44449). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `0.9.7` or later.
CVE-2026-44450 Vulnerability in c (CVE-2026-44450)
vulnerability in c (CVE-2026-44450). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `0.9.7` or later.
CVE-2026-3515 Vulnerability in prefect (CVE-2026-3515)
vulnerability in prefect (CVE-2026-3515). Confidential information can be exposed externally. Exploitable via ``GitHubRepository``.
CVE-2026-8773 Vulnerability in CVE-2026-8773 (CVE-2026-8773)
vulnerability in CVE-2026-8773 (CVE-2026-8773). Risk of unauthorized operations or information disclosure.
CVE-2026-31230 Vulnerability in CVE-2026-31230 (CVE-2026-31230)
vulnerability in CVE-2026-31230 (CVE-2026-31230). Successful exploitation can lead to full system takeover.
CVE-2026-43893 Vulnerability in exiftool-vendored (CVE-2026-43893)
vulnerability in exiftool-vendored (CVE-2026-43893). Data can be tampered with by attackers. Exploitable via ``WriteTask``. Mitigation: upgrade to `35.19.0` or later.
CVE-2026-41570 Vulnerability in phpunit/phpunit (CVE-2026-41570)
vulnerability in phpunit/phpunit (CVE-2026-41570). Successful exploitation can lead to full system takeover. Exploitable via ``auto_prepend_file``. Mitigation: upgrade to `13.1.6` or later.
CVE-2026-43941 Vulnerability in electerm (CVE-2026-43941)
vulnerability in electerm (CVE-2026-43941). Successful exploitation can lead to full system takeover. Exploitable via ``shell.openExternal``.
CVE-2026-42284 Vulnerability in GitPython (CVE-2026-42284)
vulnerability in GitPython (CVE-2026-42284). Successful exploitation can lead to full system takeover. Exploitable via ``multi_options``. Mitigation: upgrade to `3.1.47` or later.
CVE-2026-6951 Code Injection in simple-git (CVE-2026-6951)
code injection in simple-git (CVE-2026-6951). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `3.36.0` or later.
CVE-2026-34769 Vulnerability in electronjs (CVE-2026-34769)
vulnerability in electronjs (CVE-2026-34769). Successful exploitation can lead to full system takeover.
CVE-2026-4519 Vulnerability in CVE-2026-4519 (CVE-2026-4519)
vulnerability in CVE-2026-4519 (CVE-2026-4519). Risk of unauthorized operations or information disclosure.
CVE-2026-32304 Code Injection in locutus (CVE-2026-32304)
code injection in locutus (CVE-2026-32304). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `3.0.14` or later.
CVE-2025-24293 Command Injection in CVE-2025-24293 (CVE-2025-24293)
command injection in CVE-2025-24293 (CVE-2025-24293). Successful exploitation can lead to full system takeover.
CVE-2025-61731 Vulnerability in toolchain (CVE-2025-61731)
vulnerability in toolchain (CVE-2025-61731). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `1.24.12, 1.25.6` or later.
CVE-2016-10033 KEV [KEV] Command Injection in php (CVE-2016-10033)
command injection in php (CVE-2016-10033). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-1001003 Vulnerability in mathjs-project (CVE-2017-1001003)
vulnerability in mathjs-project (CVE-2017-1001003). Successful exploitation can lead to full system takeover.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →