Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: vendors Clear
ID Title
CVE-2026-28956 Out-of-Bounds Read in apple (CVE-2026-28956)
vulnerability in apple (CVE-2026-28956). Risk of unauthorized operations or information disclosure.
CVE-2026-28848 Vulnerability in apple (CVE-2026-28848)
vulnerability in apple (CVE-2026-28848). Risk of unauthorized operations or information disclosure.
CVE-2026-28883 Use-After-Free in apple (CVE-2026-28883)
vulnerability in apple (CVE-2026-28883). Confidential information can be exposed externally.
CVE-2026-28847 Buffer Overflow in apple (CVE-2026-28847)
vulnerability in apple (CVE-2026-28847). Successful exploitation can lead to full system takeover.
CVE-2026-28905 Buffer Overflow in apple (CVE-2026-28905)
vulnerability in apple (CVE-2026-28905). Confidential information can be exposed externally.
CVE-2026-28897 Vulnerability in apple (CVE-2026-28897)
vulnerability in apple (CVE-2026-28897). Risk of unauthorized operations or information disclosure.
CVE-2026-28914 Vulnerability in apple (CVE-2026-28914)
vulnerability in apple (CVE-2026-28914). Data can be tampered with by attackers.
CVE-2026-28907 Vulnerability in apple (CVE-2026-28907)
vulnerability in apple (CVE-2026-28907). Confidential information can be exposed externally.
CVE-2026-28913 Buffer Overflow in apple (CVE-2026-28913)
vulnerability in apple (CVE-2026-28913). Confidential information can be exposed externally.
CVE-2026-28819 Out-of-Bounds Write in apple (CVE-2026-28819)
out-of-bounds write in apple (CVE-2026-28819). Risk of unauthorized operations or information disclosure.
CVE-2026-28840 Privilege Escalation in apple (CVE-2026-28840)
vulnerability in apple (CVE-2026-28840). Successful exploitation can lead to full system takeover.
CVE-2026-28830 Vulnerability in apple (CVE-2026-28830)
vulnerability in apple (CVE-2026-28830). Confidential information can be exposed externally.
CVE-2026-28902 Buffer Overflow in apple (CVE-2026-28902)
vulnerability in apple (CVE-2026-28902). Risk of unauthorized operations or information disclosure.
CVE-2026-28860 Vulnerability in apple (CVE-2026-28860)
vulnerability in apple (CVE-2026-28860). Confidential information can be exposed externally.
CVE-2026-28873 Authorization Flaw in apple (CVE-2026-28873)
vulnerability in apple (CVE-2026-28873). Confidential information can be exposed externally.
CVE-2026-28872 Vulnerability in apple (CVE-2026-28872)
vulnerability in apple (CVE-2026-28872). Risk of unauthorized operations or information disclosure.
CVE-2026-28908 Vulnerability in dos (CVE-2026-28908)
vulnerability in dos (CVE-2026-28908). Risk of unauthorized operations or information disclosure.
CVE-2026-20696 Vulnerability in apple (CVE-2026-20696)
vulnerability in apple (CVE-2026-20696). Confidential information can be exposed externally.
CVE-2026-28906 Vulnerability in apple (CVE-2026-28906)
vulnerability in apple (CVE-2026-28906). Confidential information can be exposed externally.
CVE-2026-28901 Buffer Overflow in apple (CVE-2026-28901)
vulnerability in apple (CVE-2026-28901). Risk of unauthorized operations or information disclosure.
CVE-2026-28910 Vulnerability in apple (CVE-2026-28910)
vulnerability in apple (CVE-2026-28910). Risk of unauthorized operations or information disclosure.
CVE-2026-28903 Buffer Overflow in apple (CVE-2026-28903)
vulnerability in apple (CVE-2026-28903). Risk of unauthorized operations or information disclosure.
CVE-2026-28904 Buffer Overflow in apple (CVE-2026-28904)
vulnerability in apple (CVE-2026-28904). Confidential information can be exposed externally.
CVE-2026-28846 Vulnerability in apple (CVE-2026-28846)
vulnerability in apple (CVE-2026-28846). Risk of unauthorized operations or information disclosure.
CVE-2026-43874 Code Injection in wwbn/avideo (CVE-2026-43874)
code injection in wwbn/avideo (CVE-2026-43874). Risk of unauthorized operations or information disclosure. Exploitable via ``autoEvalCodeOnHTML``.
CVE-2026-8320 SSRF (Server-Side Request Forgery) in CVE-2026-8320 (CVE-2026-8320)
SSRF in CVE-2026-8320 (CVE-2026-8320). Risk of unauthorized operations or information disclosure.
CVE-2026-45026 Cross-Site Scripting (XSS) in CVE-2026-45026 (CVE-2026-45026)
cross-site scripting in CVE-2026-45026 (CVE-2026-45026). Confidential information can be exposed externally. Mitigation: upgrade to `3.7.3` or later.
CVE-2026-45025 Cross-Site Scripting (XSS) in CVE-2026-45025 (CVE-2026-45025)
cross-site scripting in CVE-2026-45025 (CVE-2026-45025). Confidential information can be exposed externally. Mitigation: upgrade to `3.7.3` or later.
CVE-2026-42870 Cross-Site Scripting (XSS) in CVE-2026-42870 (CVE-2026-42870)
cross-site scripting in CVE-2026-42870 (CVE-2026-42870). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `3.7.0` or later.
CVE-2026-42872 Cross-Site Scripting (XSS) in CVE-2026-42872 (CVE-2026-42872)
cross-site scripting in CVE-2026-42872 (CVE-2026-42872). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `3.7.0` or later.
CVE-2026-42873 Information Disclosure in CVE-2026-42873 (CVE-2026-42873)
vulnerability in CVE-2026-42873 (CVE-2026-42873). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `3.6.10` or later.
CVE-2026-42050 Vulnerability in imagemagick (CVE-2026-42050)
vulnerability in imagemagick (CVE-2026-42050). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `7.1.2-21` or later.
CVE-2026-44657 Cross-Site Scripting (XSS) in mantisbt/mantisbt (CVE-2026-44657)
cross-site scripting in mantisbt/mantisbt (CVE-2026-44657). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.28.2` or later.
CVE-2026-41897 Cross-Site Scripting (XSS) in mantisbt/mantisbt (CVE-2026-41897)
cross-site scripting in mantisbt/mantisbt (CVE-2026-41897). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.28.2` or later.
CVE-2026-39960 Cross-Site Scripting (XSS) in mantisbt/mantisbt (CVE-2026-39960)
cross-site scripting in mantisbt/mantisbt (CVE-2026-39960). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.28.2` or later.
CVE-2026-39850 Vulnerability in yiisoft/yii2 (CVE-2026-39850)
vulnerability in yiisoft/yii2 (CVE-2026-39850). Confidential information can be exposed externally. Exploitable via ``require``. Mitigation: upgrade to `2.0.55` or later.
CVE-2026-34579 Information Disclosure in mantisbt/mantisbt (CVE-2026-34579)
vulnerability in mantisbt/mantisbt (CVE-2026-34579). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.28.2` or later.
CVE-2026-34463 Cross-Site Scripting (XSS) in mantisbt/mantisbt (CVE-2026-34463)
cross-site scripting in mantisbt/mantisbt (CVE-2026-34463). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.28.2` or later.
CVE-2026-34390 Vulnerability in mantisbt/mantisbt (CVE-2026-34390)
vulnerability in mantisbt/mantisbt (CVE-2026-34390). Risk of unauthorized operations or information disclosure. Exploitable via `PUT /project/{id}/users`. Mitigation: upgrade to `2.28.2` or later.
CVE-2026-42871 Information Disclosure in CVE-2026-42871 (CVE-2026-42871)
vulnerability in CVE-2026-42871 (CVE-2026-42871). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `3.7.0` or later.
CVE-2026-5266 Information Disclosure in CVE-2026-5266 (CVE-2026-5266)
vulnerability in CVE-2026-5266 (CVE-2026-5266). Risk of unauthorized operations or information disclosure.
CVE-2026-8305 Authentication Bypass in openclaw (CVE-2026-8305)
authentication bypass in openclaw (CVE-2026-8305). Risk of unauthorized operations or information disclosure.
CVE-2026-45002 Vulnerability in openclaw (CVE-2026-45002)
vulnerability in openclaw (CVE-2026-45002). Risk of unauthorized operations or information disclosure. Exploitable via ``openclaw``. Mitigation: upgrade to `2026.4.20` or later.
CVE-2026-45000 SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-45000)
SSRF in ssrf (CVE-2026-45000). Risk of unauthorized operations or information disclosure.
CVE-2026-45003 Vulnerability in openclaw (CVE-2026-45003)
vulnerability in openclaw (CVE-2026-45003). Confidential information can be exposed externally. Mitigation: upgrade to `2026.4.22` or later.
CVE-2026-45001 Vulnerability in ssrf (CVE-2026-45001)
vulnerability in ssrf (CVE-2026-45001). Data can be tampered with by attackers.
CVE-2026-44998 Authorization Flaw in openclaw (CVE-2026-44998)
vulnerability in openclaw (CVE-2026-44998). Risk of unauthorized operations or information disclosure.
CVE-2026-45006 Vulnerability in openclaw (CVE-2026-45006)
vulnerability in openclaw (CVE-2026-45006). Successful exploitation can lead to full system takeover.
CVE-2026-45004 Code Injection in openclaw (CVE-2026-45004)
code injection in openclaw (CVE-2026-45004). Successful exploitation can lead to full system takeover. Exploitable via ``openclaw``. Mitigation: upgrade to `2026.4.23` or later.
CVE-2026-45005 Vulnerability in openclaw (CVE-2026-45005)
vulnerability in openclaw (CVE-2026-45005). Data can be tampered with by attackers. Exploitable via ``SecretRef``. Mitigation: upgrade to `2026.4.23` or later.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →