Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-8516 |
|
Vulnerability in google (CVE-2026-8516)
vulnerability in google (CVE-2026-8516). Confidential information can be exposed externally.
|
| CVE-2026-8512 |
|
Use-After-Free in google (CVE-2026-8512)
vulnerability in google (CVE-2026-8512). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8511 |
|
Use-After-Free in google (CVE-2026-8511)
vulnerability in google (CVE-2026-8511). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8519 |
|
Vulnerability in c (CVE-2026-8519)
vulnerability in c (CVE-2026-8519). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8510 |
|
Vulnerability in google (CVE-2026-8510)
vulnerability in google (CVE-2026-8510). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8523 |
|
Use-After-Free in google (CVE-2026-8523)
vulnerability in google (CVE-2026-8523). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8524 |
|
Out-of-Bounds Write in google (CVE-2026-8524)
out-of-bounds write in google (CVE-2026-8524). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8514 |
|
Use-After-Free in google (CVE-2026-8514)
vulnerability in google (CVE-2026-8514). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8518 |
|
Use-After-Free in google (CVE-2026-8518)
vulnerability in google (CVE-2026-8518). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8520 |
|
Vulnerability in google (CVE-2026-8520)
vulnerability in google (CVE-2026-8520). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8521 |
|
Use-After-Free in google (CVE-2026-8521)
vulnerability in google (CVE-2026-8521). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8522 |
|
Use-After-Free in google (CVE-2026-8522)
vulnerability in google (CVE-2026-8522). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8525 |
|
Vulnerability in google (CVE-2026-8525)
vulnerability in google (CVE-2026-8525). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8517 |
|
Vulnerability in google (CVE-2026-8517)
vulnerability in google (CVE-2026-8517). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8513 |
|
Use-After-Free in google (CVE-2026-8513)
vulnerability in google (CVE-2026-8513). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8509 |
|
Vulnerability in Google chrome (CVE-2026-8509)
vulnerability in Google chrome (CVE-2026-8509). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44666 |
|
OS Command Injection in CVE-2026-44666 (CVE-2026-44666)
OS command injection in CVE-2026-44666 (CVE-2026-44666). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `3.3.8` or later.
|
| CVE-2026-42847 |
|
SQL Injection in sqli (CVE-2026-42847)
SQL injection in sqli (CVE-2026-42847). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `5.5.3` or later.
|
| CVE-2026-42897 KEV |
|
[KEV] Cross-Site Scripting (XSS) in Microsoft exchange-server (CVE-2026-42897)
cross-site scripting in Microsoft exchange-server (CVE-2026-42897). Confidential information can be exposed externally. Listed in CISA KEV — actively exploited.
|
| CVE-2026-20224 |
|
Vulnerability in cisco (CVE-2026-20224)
vulnerability in cisco (CVE-2026-20224). Confidential information can be exposed externally.
|
| CVE-2026-20210 |
|
Vulnerability in cisco (CVE-2026-20210)
vulnerability in cisco (CVE-2026-20210). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-45732 |
|
Vulnerability in n8n (CVE-2026-45732)
vulnerability in n8n (CVE-2026-45732). Confidential information can be exposed externally. Mitigation: upgrade to `2.20.7` or later.
|
| CVE-2026-44792 |
|
SQL Injection in n8n (CVE-2026-44792)
SQL injection in n8n (CVE-2026-44792). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `2.20.7` or later.
|
| CVE-2026-44791 |
|
Vulnerability in n8n (CVE-2026-44791)
vulnerability in n8n (CVE-2026-44791). Successful exploitation can lead to full system takeover. Exploitable via ``NODES_EXCLUDE``. Mitigation: upgrade to `2.20.7` or later.
|
| CVE-2026-44790 |
|
Vulnerability in n8n (CVE-2026-44790)
vulnerability in n8n (CVE-2026-44790). Successful exploitation can lead to full system takeover. Exploitable via ``NODES_EXCLUDE``. Mitigation: upgrade to `2.20.7` or later.
|
| CVE-2026-44789 |
|
Vulnerability in n8n (CVE-2026-44789)
vulnerability in n8n (CVE-2026-44789). Successful exploitation can lead to full system takeover. Exploitable via ``NODES_EXCLUDE``. Mitigation: upgrade to `2.20.7` or later.
|
| CVE-2026-20182 KEV |
|
[KEV] Authentication Bypass in Cisco catalyst-sd-wan-manager (CVE-2026-20182)
authentication bypass in Cisco catalyst-sd-wan-manager (CVE-2026-20182). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
|
| CVE-2026-20209 |
|
Vulnerability in Cisco catalyst-sd-wan-manager (CVE-2026-20209)
vulnerability in Cisco catalyst-sd-wan-manager (CVE-2026-20209). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41937 |
|
Vulnerability in CVE-2026-41937 (CVE-2026-41937)
vulnerability in CVE-2026-41937 (CVE-2026-41937). Successful exploitation can lead to full system takeover.
|
| CVE-2026-41935 |
|
Vulnerability in dos (CVE-2026-41935)
vulnerability in dos (CVE-2026-41935). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4031 |
|
Vulnerability in wordpress (CVE-2026-4031)
vulnerability in wordpress (CVE-2026-4031). Confidential information can be exposed externally.
|
| CVE-2026-45205 |
|
Vulnerability in org.apache.commons:commons-configuration2 (CVE-2026-45205)
vulnerability in org.apache.commons:commons-configuration2 (CVE-2026-45205). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.15.0` or later.
|
| CVE-2026-8280 |
|
Vulnerability in gitlab (CVE-2026-8280)
vulnerability in gitlab (CVE-2026-8280). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `18.9.7, 18.10.6, 18.11.3` or later.
|
| CVE-2026-6883 |
|
Vulnerability in gitlab (CVE-2026-6883)
vulnerability in gitlab (CVE-2026-6883). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `18.9.7, 18.10.6, 18.11.3` or later.
|
| CVE-2026-7471 |
|
SSRF (Server-Side Request Forgery) in gitlab (CVE-2026-7471)
SSRF in gitlab (CVE-2026-7471). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `18.9.7, 18.10.6, 18.11.3` or later.
|
| CVE-2026-8144 |
|
Vulnerability in gitlab (CVE-2026-8144)
vulnerability in gitlab (CVE-2026-8144). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `18.9.7, 18.10.6, 18.11.3` or later.
|
| CVE-2026-6335 |
|
Cross-Site Scripting (XSS) in gitlab (CVE-2026-6335)
cross-site scripting in gitlab (CVE-2026-6335). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `18.11.3` or later.
|
| CVE-2026-7377 |
|
Cross-Site Scripting (XSS) in gitlab (CVE-2026-7377)
cross-site scripting in gitlab (CVE-2026-7377). Confidential information can be exposed externally. Mitigation: upgrade to `18.9.7, 18.10.6, 18.11.3` or later.
|
| CVE-2026-7481 |
|
Cross-Site Scripting (XSS) in gitlab (CVE-2026-7481)
cross-site scripting in gitlab (CVE-2026-7481). Confidential information can be exposed externally. Mitigation: upgrade to `18.9.7, 18.10.6, 18.11.3` or later.
|
| CVE-2026-1659 |
|
Vulnerability in gitlab (CVE-2026-1659)
vulnerability in gitlab (CVE-2026-1659). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `18.9.7, 18.10.6, 18.11.3` or later.
|
| CVE-2025-14870 |
|
Vulnerability in gitlab (CVE-2025-14870)
vulnerability in gitlab (CVE-2025-14870). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `18.9.7, 18.10.6, 18.11.3` or later.
|
| CVE-2026-1322 |
|
Vulnerability in gitlab (CVE-2026-1322)
vulnerability in gitlab (CVE-2026-1322). Confidential information can be exposed externally. Mitigation: upgrade to `18.9.7, 18.10.6, 18.11.3` or later.
|
| CVE-2026-1338 |
|
Vulnerability in gitlab (CVE-2026-1338)
vulnerability in gitlab (CVE-2026-1338). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `18.9.7, 18.10.6, 18.11.3` or later.
|
| CVE-2026-2900 |
|
Vulnerability in gitlab (CVE-2026-2900)
vulnerability in gitlab (CVE-2026-2900). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `18.9.7, 18.10.6, 18.11.3` or later.
|
| CVE-2026-3607 |
|
Vulnerability in gitlab (CVE-2026-3607)
vulnerability in gitlab (CVE-2026-3607). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `18.9.7, 18.10.6, 18.11.3` or later.
|
| CVE-2026-4527 |
|
Cross-Site Request Forgery (CSRF) in gitlab (CVE-2026-4527)
vulnerability in gitlab (CVE-2026-4527). Confidential information can be exposed externally. Mitigation: upgrade to `18.9.7, 18.10.6, 18.11.3` or later.
|
| CVE-2026-3074 |
|
Vulnerability in gitlab (CVE-2026-3074)
vulnerability in gitlab (CVE-2026-3074). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `18.9.7, 18.10.6, 18.11.3` or later.
|
| CVE-2026-6063 |
|
Vulnerability in gitlab (CVE-2026-6063)
vulnerability in gitlab (CVE-2026-6063). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `18.9.7, 18.10.6, 18.11.3` or later.
|
| CVE-2026-4524 |
|
Vulnerability in gitlab (CVE-2026-4524)
vulnerability in gitlab (CVE-2026-4524). Confidential information can be exposed externally. Mitigation: upgrade to `18.9.7, 18.10.6, 18.11.3` or later.
|
| CVE-2026-1184 |
|
Unsafe Deserialization in gitlab (CVE-2026-1184)
vulnerability in gitlab (CVE-2026-1184). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `18.9.7, 18.10.6, 18.11.3` or later.
|