Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: vendors Clear
ID Title
CVE-2026-45610 Vulnerability in WWBN/AVideo (CVE-2026-45610)
vulnerability in WWBN/AVideo (CVE-2026-45610). Data can be tampered with by attackers. Exploitable via ``SameSite``.
CVE-2026-45580 Cross-Site Scripting (XSS) in WWBN/AVideo (CVE-2026-45580)
cross-site scripting in WWBN/AVideo (CVE-2026-45580). Risk of unauthorized operations or information disclosure. Exploitable via ``echo``.
CVE-2026-45578 OS Command Injection in WWBN/AVideo (CVE-2026-45578)
OS command injection in WWBN/AVideo (CVE-2026-45578). Successful exploitation can lead to full system takeover. Exploitable via ``on_publish.php``.
CVE-2026-45575 Vulnerability in com.oviva.telematik:epa4all-client (CVE-2026-45575)
vulnerability in com.oviva.telematik:epa4all-client (CVE-2026-45575). Confidential information can be exposed externally. Mitigation: upgrade to `1.2.2` or later.
CVE-2026-45574 Vulnerability in com.oviva.telematik:epa4all-client (CVE-2026-45574)
vulnerability in com.oviva.telematik:epa4all-client (CVE-2026-45574). Confidential information can be exposed externally. Mitigation: upgrade to `1.2.2` or later.
CVE-2026-46491 Path Traversal in simplesamlphp/simplesamlphp-module-casserver (CVE-2026-46491)
path traversal in simplesamlphp/simplesamlphp-module-casserver (CVE-2026-46491). Data can be tampered with by attackers. Exploitable via ``ticket``. Mitigation: upgrade to `7.0.3` or later.
CVE-2026-44692 Vulnerability in code16/sharp (CVE-2026-44692)
vulnerability in code16/sharp (CVE-2026-44692). Confidential information can be exposed externally. Exploitable via `GET /sharp/{globalFilter}/download/{entityKey}/{instanceId`. Mitigation: upgrade to `9.22.0` or later.
CVE-2026-42155 Vulnerability in openmage/magento-lts (CVE-2026-42155)
vulnerability in openmage/magento-lts (CVE-2026-42155). Risk of unauthorized operations or information disclosure. Exploitable via `POST /api/xmlrpc/`. Mitigation: upgrade to `20.18.0` or later.
CVE-2026-41258 Code Injection in org.openmrs.api:openmrs-api (CVE-2026-41258)
code injection in org.openmrs.api:openmrs-api (CVE-2026-41258). Successful exploitation can lead to full system takeover. Exploitable via ``VelocityEngine``. Mitigation: upgrade to `2.8.6` or later.
CVE-2026-45062 Vulnerability in github.com/dunglas/frankenphp (CVE-2026-45062)
vulnerability in github.com/dunglas/frankenphp (CVE-2026-45062). Successful exploitation can lead to full system takeover. Exploitable via ``cgi.go``. Mitigation: upgrade to `1.12.3` or later.
CVE-2026-35194 Code Injection in flink (CVE-2026-35194)
code injection in flink (CVE-2026-35194). Confidential information can be exposed externally. Mitigation: upgrade to `1.20.4, 2.0.2, 2.1.1, 2.2.1` or later.
CVE-2026-46333 Privilege Escalation in cisa (CVE-2026-46333)
vulnerability in cisa (CVE-2026-46333). Confidential information can be exposed externally.
CVE-2026-8503 Vulnerability in apache (CVE-2026-8503)
vulnerability in apache (CVE-2026-8503). Risk of unauthorized operations or information disclosure.
CVE-2026-8398 KEV [KEV] Vulnerability in Daemon disc-soft (CVE-2026-8398)
vulnerability in Daemon disc-soft (CVE-2026-8398). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
CVE-2026-6228 Privilege Escalation in wordpress (CVE-2026-6228)
vulnerability in wordpress (CVE-2026-6228). Successful exploitation can lead to full system takeover.
CVE-2026-7046 SQL Injection in wordpress (CVE-2026-7046)
SQL injection in wordpress (CVE-2026-7046). Confidential information can be exposed externally.
CVE-2026-4683 Vulnerability in wordpress (CVE-2026-4683)
vulnerability in wordpress (CVE-2026-4683). Risk of unauthorized operations or information disclosure.
CVE-2026-6415 Cross-Site Scripting (XSS) in wordpress (CVE-2026-6415)
cross-site scripting in wordpress (CVE-2026-6415). Risk of unauthorized operations or information disclosure.
CVE-2026-5229 Authentication Bypass in wordpress (CVE-2026-5229)
authentication bypass in wordpress (CVE-2026-5229). Successful exploitation can lead to full system takeover.
CVE-2026-7563 Vulnerability in wordpress (CVE-2026-7563)
vulnerability in wordpress (CVE-2026-7563). Risk of unauthorized operations or information disclosure.
CVE-2026-6403 Path Traversal in wordpress (CVE-2026-6403)
path traversal in wordpress (CVE-2026-6403). Confidential information can be exposed externally.
CVE-2026-8425 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8425)
vulnerability in wordpress (CVE-2026-8425). Risk of unauthorized operations or information disclosure.
CVE-2026-4094 The FOX – Currency Switcher Professional for WooCommerce plugin for WordPress is vulnerable to...
The FOX – Currency Switcher Professional for WooCommerce plugin for WordPress is vulnerable to...
CVE-2026-6646 Cross-Site Scripting (XSS) in wordpress (CVE-2026-6646)
cross-site scripting in wordpress (CVE-2026-6646). Risk of unauthorized operations or information disclosure.
CVE-2026-41702 VMware Fusion contains a TOCTOU (Time-of-check Time-of-use) vulnerability that occurs during an...
VMware Fusion contains a TOCTOU (Time-of-check Time-of-use) vulnerability that occurs during an...
CVE-2026-43490 Out-of-Bounds Write in linux (CVE-2026-43490)
out-of-bounds write in linux (CVE-2026-43490). Successful exploitation can lead to full system takeover.
CVE-2026-6811 Vulnerability in CVE-2026-6811 (CVE-2026-6811)
vulnerability in CVE-2026-6811 (CVE-2026-6811). Risk of unauthorized operations or information disclosure.
CVE-2026-8583 Vulnerability in google (CVE-2026-8583)
vulnerability in google (CVE-2026-8583). Confidential information can be exposed externally.
CVE-2026-8585 Vulnerability in c (CVE-2026-8585)
vulnerability in c (CVE-2026-8585). Successful exploitation can lead to full system takeover.
CVE-2026-8582 Vulnerability in google (CVE-2026-8582)
vulnerability in google (CVE-2026-8582). Confidential information can be exposed externally.
CVE-2026-8584 Vulnerability in google (CVE-2026-8584)
vulnerability in google (CVE-2026-8584). Risk of unauthorized operations or information disclosure.
CVE-2026-8587 Use-After-Free in google (CVE-2026-8587)
vulnerability in google (CVE-2026-8587). Successful exploitation can lead to full system takeover.
CVE-2026-8581 Use-After-Free in google (CVE-2026-8581)
vulnerability in google (CVE-2026-8581). Successful exploitation can lead to full system takeover.
CVE-2026-8586 Vulnerability in google (CVE-2026-8586)
vulnerability in google (CVE-2026-8586). Risk of unauthorized operations or information disclosure.
CVE-2026-8552 Vulnerability in google (CVE-2026-8552)
vulnerability in google (CVE-2026-8552). Risk of unauthorized operations or information disclosure.
CVE-2026-8564 Vulnerability in google (CVE-2026-8564)
vulnerability in google (CVE-2026-8564). Risk of unauthorized operations or information disclosure.
CVE-2026-8566 Vulnerability in google (CVE-2026-8566)
vulnerability in google (CVE-2026-8566). Risk of unauthorized operations or information disclosure.
CVE-2026-8571 Vulnerability in google (CVE-2026-8571)
vulnerability in google (CVE-2026-8571). Successful exploitation can lead to full system takeover.
CVE-2026-8572 Vulnerability in google (CVE-2026-8572)
vulnerability in google (CVE-2026-8572). Risk of unauthorized operations or information disclosure.
CVE-2026-8576 Vulnerability in google (CVE-2026-8576)
vulnerability in google (CVE-2026-8576). Risk of unauthorized operations or information disclosure.
CVE-2026-8562 Vulnerability in google (CVE-2026-8562)
vulnerability in google (CVE-2026-8562). Risk of unauthorized operations or information disclosure.
CVE-2026-8561 Vulnerability in google (CVE-2026-8561)
vulnerability in google (CVE-2026-8561). Risk of unauthorized operations or information disclosure.
CVE-2026-8578 Out-of-Bounds Read in google (CVE-2026-8578)
vulnerability in google (CVE-2026-8578). Risk of unauthorized operations or information disclosure.
CVE-2026-8556 Buffer Overflow in google (CVE-2026-8556)
vulnerability in google (CVE-2026-8556). Risk of unauthorized operations or information disclosure.
CVE-2026-8565 Vulnerability in google (CVE-2026-8565)
vulnerability in google (CVE-2026-8565). Risk of unauthorized operations or information disclosure.
CVE-2026-8563 Vulnerability in google (CVE-2026-8563)
vulnerability in google (CVE-2026-8563). Risk of unauthorized operations or information disclosure.
CVE-2026-8555 Use-After-Free in Google chrome (CVE-2026-8555)
vulnerability in Google chrome (CVE-2026-8555). Successful exploitation can lead to full system takeover.
CVE-2026-8567 Vulnerability in google (CVE-2026-8567)
vulnerability in google (CVE-2026-8567). Risk of unauthorized operations or information disclosure.
CVE-2026-8560 Vulnerability in google (CVE-2026-8560)
vulnerability in google (CVE-2026-8560). Risk of unauthorized operations or information disclosure.
CVE-2026-8558 Out-of-Bounds Write in google (CVE-2026-8558)
out-of-bounds write in google (CVE-2026-8558). Successful exploitation can lead to full system takeover.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →