Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-8045 |
|
XXE (XML External Entity) in schneider-electric (CVE-2026-8045)
vulnerability in schneider-electric (CVE-2026-8045). Confidential information can be exposed externally.
|
| CVE-2026-49938 |
|
Vulnerability in fortinet (CVE-2026-49938)
vulnerability in fortinet (CVE-2026-49938). Confidential information can be exposed externally.
|
| CVE-2026-25089 |
|
OS Command Injection in fortinet (CVE-2026-25089)
OS command injection in fortinet (CVE-2026-25089). Successful exploitation can lead to full system takeover.
|
| CVE-2025-67862 |
|
Vulnerability in fortinet (CVE-2025-67862)
vulnerability in fortinet (CVE-2025-67862). Successful exploitation can lead to full system takeover.
|
| CVE-2026-10520 KEV |
|
[KEV] OS Command Injection in Ivanti standalone-sentry (CVE-2026-10520)
OS command injection in Ivanti standalone-sentry (CVE-2026-10520). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
|
| CVE-2026-10523 |
|
Vulnerability in ivanti (CVE-2026-10523)
vulnerability in ivanti (CVE-2026-10523). Successful exploitation can lead to full system takeover.
|
| CVE-2026-52907 |
|
Vulnerability in linux (CVE-2026-52907)
vulnerability in linux (CVE-2026-52907). Successful exploitation can lead to full system takeover.
|
| CVE-2026-52906 |
|
Vulnerability in linux (CVE-2026-52906)
vulnerability in linux (CVE-2026-52906). Confidential information can be exposed externally.
|
| CVE-2026-52905 |
|
Vulnerability in linux (CVE-2026-52905)
vulnerability in linux (CVE-2026-52905). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-52904 |
|
Vulnerability in linux (CVE-2026-52904)
vulnerability in linux (CVE-2026-52904). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-46332 |
|
Vulnerability in linux (CVE-2026-46332)
vulnerability in linux (CVE-2026-46332). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46330 |
|
Use-After-Free in linux (CVE-2026-46330)
vulnerability in linux (CVE-2026-46330). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46329 |
|
Vulnerability in linux (CVE-2026-46329)
vulnerability in linux (CVE-2026-46329). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-46328 |
|
Vulnerability in linux (CVE-2026-46328)
vulnerability in linux (CVE-2026-46328). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-46327 |
|
Vulnerability in linux (CVE-2026-46327)
vulnerability in linux (CVE-2026-46327). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46326 |
|
Vulnerability in linux (CVE-2026-46326)
vulnerability in linux (CVE-2026-46326). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46325 |
|
Vulnerability in linux (CVE-2026-46325)
vulnerability in linux (CVE-2026-46325). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46324 |
|
Vulnerability in linux (CVE-2026-46324)
vulnerability in linux (CVE-2026-46324). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46323 |
|
Vulnerability in linux (CVE-2026-46323)
vulnerability in linux (CVE-2026-46323). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46322 |
|
Vulnerability in linux (CVE-2026-46322)
vulnerability in linux (CVE-2026-46322). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-46321 |
|
Vulnerability in linux (CVE-2026-46321)
vulnerability in linux (CVE-2026-46321). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-46320 |
|
Vulnerability in linux (CVE-2026-46320)
vulnerability in linux (CVE-2026-46320). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-46319 |
|
Use-After-Free in csharp (CVE-2026-46319)
vulnerability in csharp (CVE-2026-46319). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46318 |
|
Vulnerability in linux (CVE-2026-46318)
vulnerability in linux (CVE-2026-46318). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-46317 |
|
Vulnerability in linux (CVE-2026-46317)
vulnerability in linux (CVE-2026-46317). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46316 |
|
Vulnerability in linux (CVE-2026-46316)
vulnerability in linux (CVE-2026-46316). Successful exploitation can lead to full system takeover.
|
| CVE-2017-20251 |
|
Code Injection in wordpress (CVE-2017-20251)
code injection in wordpress (CVE-2017-20251). Successful exploitation can lead to full system takeover.
|
| CVE-2017-20247 |
|
SQL Injection in wordpress (CVE-2017-20247)
SQL injection in wordpress (CVE-2017-20247). Confidential information can be exposed externally.
|
| CVE-2017-20244 |
|
SQL Injection in wordpress (CVE-2017-20244)
SQL injection in wordpress (CVE-2017-20244). Confidential information can be exposed externally.
|
| CVE-2017-20245 |
|
SQL Injection in wordpress (CVE-2017-20245)
SQL injection in wordpress (CVE-2017-20245). Confidential information can be exposed externally.
|
| CVE-2017-20246 |
|
SQL Injection in wordpress (CVE-2017-20246)
SQL injection in wordpress (CVE-2017-20246). Confidential information can be exposed externally.
|
| CVE-2017-20248 |
|
Path Traversal in path-traversal (CVE-2017-20248)
path traversal in path-traversal (CVE-2017-20248). Confidential information can be exposed externally.
|
| CVE-2017-20250 |
|
Path Traversal in wordpress (CVE-2017-20250)
path traversal in wordpress (CVE-2017-20250). Confidential information can be exposed externally.
|
| CVE-2017-20243 |
|
SQL Injection in wordpress (CVE-2017-20243)
SQL injection in wordpress (CVE-2017-20243). Confidential information can be exposed externally.
|
| CVE-2016-20065 |
|
SQL Injection in wordpress (CVE-2016-20065)
SQL injection in wordpress (CVE-2016-20065). Confidential information can be exposed externally.
|
| CVE-2016-20062 |
|
SQL Injection in wordpress (CVE-2016-20062)
SQL injection in wordpress (CVE-2016-20062). Confidential information can be exposed externally.
|
| CVE-2026-49740 |
|
Unsafe Deserialization in typo3/cms-core (CVE-2026-49740)
vulnerability in typo3/cms-core (CVE-2026-49740). Risk of unauthorized operations or information disclosure. Exploitable via ``VariableFrontend``. Mitigation: upgrade to `14.3.3` or later.
|
| CVE-2026-4058 |
|
Vulnerability in wordpress (CVE-2026-4058)
vulnerability in wordpress (CVE-2026-4058). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-46746 |
|
OS Command Injection in siemens (CVE-2026-46746)
OS command injection in siemens (CVE-2026-46746). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46747 |
|
Vulnerability in path-traversal (CVE-2026-46747)
vulnerability in path-traversal (CVE-2026-46747). Risk of unauthorized operations or information disclosure. Exploitable via `GET /api/sftp/uploadFiles`.
|
| CVE-2026-46748 |
|
Vulnerability in siemens (CVE-2026-46748)
vulnerability in siemens (CVE-2026-46748). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46749 |
|
Vulnerability in siemens (CVE-2026-46749)
vulnerability in siemens (CVE-2026-46749). Successful exploitation can lead to full system takeover.
|
| CVE-2026-24349 |
|
Vulnerability in siemens (CVE-2026-24349)
vulnerability in siemens (CVE-2026-24349). Confidential information can be exposed externally.
|
| CVE-2026-25699 |
|
Vulnerability in c (CVE-2026-25699)
vulnerability in c (CVE-2026-25699). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34031 |
|
Unrestricted File Upload in apache (CVE-2026-34031)
vulnerability in apache (CVE-2026-34031). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-33582 |
|
Unrestricted File Upload in apache (CVE-2026-33582)
vulnerability in apache (CVE-2026-33582). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34905 |
|
Information Disclosure in apache (CVE-2026-34905)
vulnerability in apache (CVE-2026-34905). Confidential information can be exposed externally.
|
| CVE-2026-34033 |
|
Cross-Site Scripting (XSS) in apache (CVE-2026-34033)
cross-site scripting in apache (CVE-2026-34033). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-49818 |
|
Path Traversal in apache-airflow-providers-samba (CVE-2026-49818)
path traversal in apache-airflow-providers-samba (CVE-2026-49818). Risk of unauthorized operations or information disclosure. Exploitable via ``GCSToSambaOperator``. Mitigation: upgrade to `4.12.6` or later.
|
| CVE-2026-25688 |
|
Vulnerability in apache (CVE-2026-25688)
vulnerability in apache (CVE-2026-25688). Risk of unauthorized operations or information disclosure.
|