Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-12321 |
|
Vulnerability in mozilla (CVE-2026-12321)
vulnerability in mozilla (CVE-2026-12321). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12320 |
|
Information Disclosure in mozilla (CVE-2026-12320)
vulnerability in mozilla (CVE-2026-12320). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12319 |
|
Vulnerability in mozilla (CVE-2026-12319)
vulnerability in mozilla (CVE-2026-12319). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12318 |
|
Buffer Overflow in mozilla (CVE-2026-12318)
vulnerability in mozilla (CVE-2026-12318). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12317 |
|
Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152.
Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152.
|
| CVE-2026-12316 |
|
Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 152.
Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 152.
|
| CVE-2026-12315 |
|
Vulnerability in mozilla (CVE-2026-12315)
vulnerability in mozilla (CVE-2026-12315). Confidential information can be exposed externally.
|
| CVE-2026-12314 |
|
Buffer Overflow in mozilla (CVE-2026-12314)
vulnerability in mozilla (CVE-2026-12314). Confidential information can be exposed externally.
|
| CVE-2026-12313 |
|
Privilege Escalation in mozilla (CVE-2026-12313)
vulnerability in mozilla (CVE-2026-12313). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12312 |
|
Buffer Overflow in mozilla (CVE-2026-12312)
vulnerability in mozilla (CVE-2026-12312). Confidential information can be exposed externally.
|
| CVE-2026-12311 |
|
Information Disclosure in mozilla (CVE-2026-12311)
vulnerability in mozilla (CVE-2026-12311). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12310 |
|
Buffer Overflow in mozilla (CVE-2026-12310)
vulnerability in mozilla (CVE-2026-12310). Confidential information can be exposed externally.
|
| CVE-2026-12309 |
|
Buffer Overflow in mozilla (CVE-2026-12309)
vulnerability in mozilla (CVE-2026-12309). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12308 |
|
Buffer Overflow in mozilla (CVE-2026-12308)
vulnerability in mozilla (CVE-2026-12308). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12307 |
|
Buffer Overflow in mozilla (CVE-2026-12307)
vulnerability in mozilla (CVE-2026-12307). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12306 |
|
Buffer Overflow in mozilla (CVE-2026-12306)
vulnerability in mozilla (CVE-2026-12306). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12305 |
|
Buffer Overflow in mozilla (CVE-2026-12305)
vulnerability in mozilla (CVE-2026-12305). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12304 |
|
Vulnerability in mozilla (CVE-2026-12304)
vulnerability in mozilla (CVE-2026-12304). Confidential information can be exposed externally.
|
| CVE-2026-12303 |
|
Out-of-Bounds Read in mozilla (CVE-2026-12303)
vulnerability in mozilla (CVE-2026-12303). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12302 |
|
Vulnerability in mozilla (CVE-2026-12302)
vulnerability in mozilla (CVE-2026-12302). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12301 |
|
Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152.
Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152.
|
| CVE-2026-12300 |
|
Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152.
Memory safety bug fixed in Firefox 152. This vulnerability was fixed in Firefox 152.
|
| CVE-2026-12299 |
|
Vulnerability in mozilla (CVE-2026-12299)
vulnerability in mozilla (CVE-2026-12299). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12298 |
|
Out-of-Bounds Read in mozilla (CVE-2026-12298)
vulnerability in mozilla (CVE-2026-12298). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12289 |
|
Privilege Escalation in privilege-escalation (CVE-2026-12289)
vulnerability in privilege-escalation (CVE-2026-12289). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12290 |
|
Buffer Overflow in mozilla (CVE-2026-12290)
vulnerability in mozilla (CVE-2026-12290). Confidential information can be exposed externally.
|
| CVE-2026-12291 |
|
Use-After-Free in mozilla (CVE-2026-12291)
vulnerability in mozilla (CVE-2026-12291). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12292 |
|
Buffer Overflow in mozilla (CVE-2026-12292)
vulnerability in mozilla (CVE-2026-12292). Confidential information can be exposed externally.
|
| CVE-2026-12293 |
|
Use-after-free in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 152.
Use-after-free in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 152.
|
| CVE-2026-12294 |
|
Vulnerability in mozilla (CVE-2026-12294)
vulnerability in mozilla (CVE-2026-12294). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12295 |
|
Vulnerability in mozilla (CVE-2026-12295)
vulnerability in mozilla (CVE-2026-12295). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12296 |
|
Vulnerability in mozilla (CVE-2026-12296)
vulnerability in mozilla (CVE-2026-12296). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12297 |
|
Buffer Overflow in mozilla (CVE-2026-12297)
vulnerability in mozilla (CVE-2026-12297). Successful exploitation can lead to full system takeover.
|
| CVE-2026-6933 |
|
Unrestricted File Upload in wordpress (CVE-2026-6933)
vulnerability in wordpress (CVE-2026-6933). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9262 |
|
Vulnerability in canon (CVE-2026-9262)
vulnerability in canon (CVE-2026-9262). Confidential information can be exposed externally.
|
| CVE-2026-9261 |
|
Use of weak SSH cryptographic algorithms in Canon EOS Network Setting Tool Version 1.5.0 or earlier
Use of weak SSH cryptographic algorithms in Canon EOS Network Setting Tool Version 1.5.0 or earlier
|
| CVE-2026-9258 |
|
Improper validation of SSH host keys in Canon EOS Network Setting Tool Version 1.5.0 or earlier
Improper validation of SSH host keys in Canon EOS Network Setting Tool Version 1.5.0 or earlier
|
| CVE-2026-9259 |
|
Vulnerability in canon (CVE-2026-9259)
vulnerability in canon (CVE-2026-9259). Confidential information can be exposed externally.
|
| CVE-2026-9260 |
|
Use of hard-coded cryptographic keys in Canon EOS Network Setting Tool Version 1.5.0 or earlier
Use of hard-coded cryptographic keys in Canon EOS Network Setting Tool Version 1.5.0 or earlier
|
| CVE-2026-48157 |
|
Cross-Site Scripting (XSS) in slim/slim (CVE-2026-48157)
cross-site scripting in slim/slim (CVE-2026-48157). Risk of unauthorized operations or information disclosure. Exploitable via ``HttpNotFoundException``. Mitigation: upgrade to `4.15.2` or later.
|
| CVE-2026-49769 |
|
Unauthenticated PHP Object Injection in wpForo Forum <= 3.1.0 versions.
Unauthenticated PHP Object Injection in wpForo Forum <= 3.1.0 versions.
|
| CVE-2026-9691 |
|
Unsafe Deserialization in CVE-2026-9691 (CVE-2026-9691)
vulnerability in CVE-2026-9691 (CVE-2026-9691). Successful exploitation can lead to full system takeover.
|
| CVE-2026-49765 |
|
Unsafe Deserialization in CVE-2026-49765 (CVE-2026-49765)
vulnerability in CVE-2026-49765 (CVE-2026-49765). Successful exploitation can lead to full system takeover.
|
| CVE-2026-49768 |
|
Unauthenticated PHP Object Injection in Happyforms <= 1.26.13 versions.
Unauthenticated PHP Object Injection in Happyforms <= 1.26.13 versions.
|
| CVE-2026-49781 |
|
Unauthenticated PHP Object Injection in OttoKit <= 1.1.27 versions.
Unauthenticated PHP Object Injection in OttoKit <= 1.1.27 versions.
|
| CVE-2026-49770 |
|
Unauthenticated PHP Object Injection in WP Travel Engine <= 6.7.12 versions.
Unauthenticated PHP Object Injection in WP Travel Engine <= 6.7.12 versions.
|
| CVE-2026-49104 |
|
Unsafe Deserialization in CVE-2026-49104 (CVE-2026-49104)
vulnerability in CVE-2026-49104 (CVE-2026-49104). Successful exploitation can lead to full system takeover.
|
| CVE-2026-49106 |
|
Unsafe Deserialization in CVE-2026-49106 (CVE-2026-49106)
vulnerability in CVE-2026-49106 (CVE-2026-49106). Successful exploitation can lead to full system takeover.
|
| CVE-2026-49105 |
|
Unsafe Deserialization in CVE-2026-49105 (CVE-2026-49105)
vulnerability in CVE-2026-49105 (CVE-2026-49105). Successful exploitation can lead to full system takeover.
|
| CVE-2026-49085 |
|
Unsafe Deserialization in CVE-2026-49085 (CVE-2026-49085)
vulnerability in CVE-2026-49085 (CVE-2026-49085). Successful exploitation can lead to full system takeover.
|