Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: vendors Clear
ID Title
CVE-2026-8198 Information Disclosure in wordpress (CVE-2026-8198)
vulnerability in wordpress (CVE-2026-8198). Risk of unauthorized operations or information disclosure. Exploitable via `Authorization header`.
CVE-2026-8209 Vulnerability in path-traversal (CVE-2026-8209)
vulnerability in path-traversal (CVE-2026-8209). Risk of unauthorized operations or information disclosure.
CVE-2026-8208 Vulnerability in CVE-2026-8208 (CVE-2026-8208)
vulnerability in CVE-2026-8208 (CVE-2026-8208). Risk of unauthorized operations or information disclosure.
CVE-2026-8207 SQL Injection in sqli (CVE-2026-8207)
SQL injection in sqli (CVE-2026-8207). Risk of unauthorized operations or information disclosure.
CVE-2026-7652 Vulnerability in wordpress (CVE-2026-7652)
vulnerability in wordpress (CVE-2026-7652). Risk of unauthorized operations or information disclosure.
CVE-2026-41705 Vulnerability in org.springframework.ai:spring-ai-milvus-store (CVE-2026-41705)
vulnerability in org.springframework.ai:spring-ai-milvus-store (CVE-2026-41705). Confidential information can be exposed externally. Mitigation: upgrade to `1.1.6` or later.
CVE-2026-44966 Vulnerability in velocityjs (CVE-2026-44966)
vulnerability in velocityjs (CVE-2026-44966). Risk of unauthorized operations or information disclosure.
CVE-2026-44313 SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-44313)
SSRF in ssrf (CVE-2026-44313). Confidential information can be exposed externally. Exploitable via `GET /api/v1/archives/{linkId}`.
CVE-2026-44900 Vulnerability in com.oviva.telematik:epa4all-client (CVE-2026-44900)
vulnerability in com.oviva.telematik:epa4all-client (CVE-2026-44900). Confidential information can be exposed externally. Mitigation: upgrade to `1.2.1` or later.
CVE-2026-44837 Vulnerability in view_component (CVE-2026-44837)
vulnerability in view_component (CVE-2026-44837). Confidential information can be exposed externally. Exploitable via `GET /_system_test_entrypoint`. Mitigation: upgrade to `4.9.0` or later.
CVE-2026-44836 Vulnerability in view_component (CVE-2026-44836)
vulnerability in view_component (CVE-2026-44836). Confidential information can be exposed externally. Exploitable via `GET /rails/view_components/my_component/render_with_template`. Mitigation: upgrade to `4.9.0` or later.
CVE-2026-42454 OS Command Injection in docker (CVE-2026-42454)
OS command injection in docker (CVE-2026-42454). Successful exploitation can lead to full system takeover. Exploitable via `GET /docker/containers/`.
CVE-2026-42298 Code Injection in docker (CVE-2026-42298)
code injection in docker (CVE-2026-42298). Successful exploitation can lead to full system takeover. Exploitable via ``GITHUB_TOKEN``. Mitigation: upgrade to `>= 0` or later.
CVE-2026-42302 Vulnerability in openai-sdk (CVE-2026-42302)
vulnerability in openai-sdk (CVE-2026-42302). Successful exploitation can lead to full system takeover. Exploitable via ``entrypoint.sh``.
CVE-2026-42224 Cross-Site Scripting (XSS) in ipl/web (CVE-2026-42224)
cross-site scripting in ipl/web (CVE-2026-42224). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `0.10.3` or later.
CVE-2026-37709 Vulnerability in snipe/snipe-it (CVE-2026-37709)
vulnerability in snipe/snipe-it (CVE-2026-37709). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `8.4.1` or later.
CVE-2026-42205 Vulnerability in avo (CVE-2026-42205)
vulnerability in avo (CVE-2026-42205). Successful exploitation can lead to full system takeover. Exploitable via `POST /admin/resources/posts/actions`. Mitigation: upgrade to `3.31.2` or later.
CVE-2026-41517 Unrestricted File Upload in CVE-2026-41517 (CVE-2026-41517)
vulnerability in CVE-2026-41517 (CVE-2026-41517). Risk of unauthorized operations or information disclosure.
CVE-2026-7807 Path Traversal in smartertools (CVE-2026-7807)
path traversal in smartertools (CVE-2026-7807). Successful exploitation can lead to full system takeover.
CVE-2026-44714 Vulnerability in org.bitcoinj:bitcoinj-core (CVE-2026-44714)
vulnerability in org.bitcoinj:bitcoinj-core (CVE-2026-44714). Data can be tampered with by attackers. Exploitable via ``P2PKH``. Mitigation: upgrade to `0.17.1` or later.
CVE-2026-42028 Path Traversal in path-traversal (CVE-2026-42028)
path traversal in path-traversal (CVE-2026-42028). Risk of unauthorized operations or information disclosure.
CVE-2026-42030 Vulnerability in osgeo (CVE-2026-42030)
vulnerability in osgeo (CVE-2026-42030). Risk of unauthorized operations or information disclosure.
CVE-2026-41887 Path Traversal in flarum/core (CVE-2026-41887)
path traversal in flarum/core (CVE-2026-41887). Confidential information can be exposed externally. Exploitable via `POST /api/settings`. Mitigation: upgrade to `2.0.0-rc.1` or later.
CVE-2026-41070 Authentication Bypass in openvpn (CVE-2026-41070)
authentication bypass in openvpn (CVE-2026-41070). Confidential information can be exposed externally. Exploitable via ``plugin``.
CVE-2026-40295 Open Redirect in devise (CVE-2026-40295)
vulnerability in devise (CVE-2026-40295). Risk of unauthorized operations or information disclosure. Exploitable via `Referer header`. Mitigation: upgrade to `5.0.4` or later.
CVE-2026-43470 Vulnerability in linux (CVE-2026-43470)
vulnerability in linux (CVE-2026-43470). Risk of unauthorized operations or information disclosure.
CVE-2026-43471 Vulnerability in linux (CVE-2026-43471)
vulnerability in linux (CVE-2026-43471). Risk of unauthorized operations or information disclosure.
CVE-2026-43472 Vulnerability in linux (CVE-2026-43472)
vulnerability in linux (CVE-2026-43472). Risk of unauthorized operations or information disclosure.
CVE-2026-43473 Vulnerability in linux (CVE-2026-43473)
vulnerability in linux (CVE-2026-43473). Risk of unauthorized operations or information disclosure.
CVE-2026-43474 Vulnerability in c (CVE-2026-43474)
vulnerability in c (CVE-2026-43474). Risk of unauthorized operations or information disclosure.
CVE-2026-43475 Vulnerability in linux (CVE-2026-43475)
vulnerability in linux (CVE-2026-43475). Risk of unauthorized operations or information disclosure.
CVE-2026-43462 Vulnerability in linux (CVE-2026-43462)
vulnerability in linux (CVE-2026-43462). Risk of unauthorized operations or information disclosure.
CVE-2026-43464 Vulnerability in linux (CVE-2026-43464)
vulnerability in linux (CVE-2026-43464). Risk of unauthorized operations or information disclosure.
CVE-2026-43465 Vulnerability in linux (CVE-2026-43465)
vulnerability in linux (CVE-2026-43465). Successful exploitation can lead to full system takeover.
CVE-2026-43466 Vulnerability in c (CVE-2026-43466)
vulnerability in c (CVE-2026-43466). Risk of unauthorized operations or information disclosure.
CVE-2026-43467 Vulnerability in c (CVE-2026-43467)
vulnerability in c (CVE-2026-43467). Risk of unauthorized operations or information disclosure.
CVE-2026-43468 Vulnerability in linux (CVE-2026-43468)
vulnerability in linux (CVE-2026-43468). Risk of unauthorized operations or information disclosure.
CVE-2026-43469 Vulnerability in linux (CVE-2026-43469)
vulnerability in linux (CVE-2026-43469). Risk of unauthorized operations or information disclosure.
CVE-2026-43453 Out-of-Bounds Read in linux (CVE-2026-43453)
vulnerability in linux (CVE-2026-43453). Confidential information can be exposed externally.
CVE-2026-43454 Vulnerability in linux (CVE-2026-43454)
vulnerability in linux (CVE-2026-43454). Successful exploitation can lead to full system takeover.
CVE-2026-43455 Vulnerability in linux (CVE-2026-43455)
vulnerability in linux (CVE-2026-43455). Risk of unauthorized operations or information disclosure.
CVE-2026-43456 Vulnerability in c (CVE-2026-43456)
vulnerability in c (CVE-2026-43456). Successful exploitation can lead to full system takeover.
CVE-2026-43457 Vulnerability in linux (CVE-2026-43457)
vulnerability in linux (CVE-2026-43457). Risk of unauthorized operations or information disclosure.
CVE-2026-43458 Use-After-Free in linux (CVE-2026-43458)
vulnerability in linux (CVE-2026-43458). Successful exploitation can lead to full system takeover.
CVE-2026-43459 Use-After-Free in linux (CVE-2026-43459)
vulnerability in linux (CVE-2026-43459). Successful exploitation can lead to full system takeover.
CVE-2026-43460 Vulnerability in linux (CVE-2026-43460)
vulnerability in linux (CVE-2026-43460). Successful exploitation can lead to full system takeover.
CVE-2026-43461 Vulnerability in linux (CVE-2026-43461)
vulnerability in linux (CVE-2026-43461). Successful exploitation can lead to full system takeover.
CVE-2026-43446 Vulnerability in linux (CVE-2026-43446)
vulnerability in linux (CVE-2026-43446). Risk of unauthorized operations or information disclosure.
CVE-2026-43447 Use-After-Free in linux (CVE-2026-43447)
vulnerability in linux (CVE-2026-43447). Successful exploitation can lead to full system takeover.
CVE-2026-43448 Vulnerability in c (CVE-2026-43448)
vulnerability in c (CVE-2026-43448). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →