Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: vendors Clear
ID Title
CVE-2026-55950 Vulnerability in dos (CVE-2026-55950)
vulnerability in dos (CVE-2026-55950). Risk of unauthorized operations or information disclosure.
CVE-2026-54886 Vulnerability in dos (CVE-2026-54886)
vulnerability in dos (CVE-2026-54886). Risk of unauthorized operations or information disclosure.
CVE-2026-54887 Vulnerability in erlang (CVE-2026-54887)
vulnerability in erlang (CVE-2026-54887). Risk of unauthorized operations or information disclosure.
CVE-2026-54891 Vulnerability in erlang (CVE-2026-54891)
vulnerability in erlang (CVE-2026-54891). Risk of unauthorized operations or information disclosure.
CVE-2026-53422 Vulnerability in erlang (CVE-2026-53422)
vulnerability in erlang (CVE-2026-53422). Risk of unauthorized operations or information disclosure.
CVE-2026-50281 Vulnerability in craftcms/cms (CVE-2026-50281)
vulnerability in craftcms/cms (CVE-2026-50281). Risk of unauthorized operations or information disclosure. Exploitable via ``newAttributes``. Mitigation: upgrade to `5.9.21` or later.
CVE-2026-58455 OS Command Injection in CVE-2026-58455 (CVE-2026-58455)
OS command injection in CVE-2026-58455 (CVE-2026-58455). Successful exploitation can lead to full system takeover.
CVE-2026-8079 Authorization Flaw in progress (CVE-2026-8079)
vulnerability in progress (CVE-2026-8079). Confidential information can be exposed externally.
CVE-2026-9272 SQL Injection in progress (CVE-2026-9272)
SQL injection in progress (CVE-2026-9272). Confidential information can be exposed externally.
CVE-2026-5524 Unrestricted File Upload in wordpress (CVE-2026-5524)
vulnerability in wordpress (CVE-2026-5524). Successful exploitation can lead to full system takeover.
CVE-2026-57685 Vulnerability in wordpress (CVE-2026-57685)
vulnerability in wordpress (CVE-2026-57685). Risk of unauthorized operations or information disclosure.
CVE-2026-57677 Unsafe Deserialization in CVE-2026-57677 (CVE-2026-57677)
vulnerability in CVE-2026-57677 (CVE-2026-57677). Successful exploitation can lead to full system takeover.
CVE-2026-57621 Unauthenticated PHP Object Injection in Booktics <= 1.0.21 versions.
Unauthenticated PHP Object Injection in Booktics <= 1.0.21 versions.
CVE-2026-27402 Cross-Site Scripting (XSS) in wordpress (CVE-2026-27402)
cross-site scripting in wordpress (CVE-2026-27402). Risk of unauthorized operations or information disclosure.
CVE-2026-27060 Contributor PHP Object Injection in ARMember Premium <= 7.0 versions.
Contributor PHP Object Injection in ARMember Premium <= 7.0 versions.
CVE-2026-27414 Contributor PHP Object Injection in Werkstatt <= 4.8.3 versions.
Contributor PHP Object Injection in Werkstatt <= 4.8.3 versions.
CVE-2025-69155 Unauthenticated Cross Site Scripting (XSS) in Fitness Zone WordPress Theme <= 5.7 versions.
Unauthenticated Cross Site Scripting (XSS) in Fitness Zone WordPress Theme <= 5.7 versions.
CVE-2025-69154 Cross-Site Scripting (XSS) in wordpress (CVE-2025-69154)
cross-site scripting in wordpress (CVE-2025-69154). Risk of unauthorized operations or information disclosure.
CVE-2025-69134 Vulnerability in wordpress (CVE-2025-69134)
vulnerability in wordpress (CVE-2025-69134). Risk of unauthorized operations or information disclosure.
CVE-2025-69156 Unauthenticated Cross Site Scripting (XSS) in Kids Zone - Children WordPress Theme <= 5.4 versions.
Unauthenticated Cross Site Scripting (XSS) in Kids Zone - Children WordPress Theme <= 5.4 versions.
CVE-2025-69152 Cross-Site Scripting (XSS) in wordpress (CVE-2025-69152)
cross-site scripting in wordpress (CVE-2025-69152). Risk of unauthorized operations or information disclosure.
CVE-2026-9834 Command Injection in wordpress (CVE-2026-9834)
command injection in wordpress (CVE-2026-9834). Successful exploitation can lead to full system takeover. Exploitable via ``wp_db_exclude_table``.
CVE-2026-9188 Vulnerability in wordpress (CVE-2026-9188)
vulnerability in wordpress (CVE-2026-9188). Risk of unauthorized operations or information disclosure. Exploitable via ``appointmentkey``.
CVE-2026-13459 Vulnerability in wordpress (CVE-2026-13459)
vulnerability in wordpress (CVE-2026-13459). Risk of unauthorized operations or information disclosure.
CVE-2026-13252 Cross-Site Scripting (XSS) in wordpress (CVE-2026-13252)
cross-site scripting in wordpress (CVE-2026-13252). Risk of unauthorized operations or information disclosure.
CVE-2026-8441 SQL Injection in wordpress (CVE-2026-8441)
SQL injection in wordpress (CVE-2026-8441). Confidential information can be exposed externally.
CVE-2026-13369 Path Traversal in wordpress (CVE-2026-13369)
path traversal in wordpress (CVE-2026-13369). Confidential information can be exposed externally.
CVE-2026-14029 SQL Injection in wordpress (CVE-2026-14029)
SQL injection in wordpress (CVE-2026-14029). Confidential information can be exposed externally.
CVE-2026-9145 Path Traversal in wordpress (CVE-2026-9145)
path traversal in wordpress (CVE-2026-9145). Confidential information can be exposed externally.
CVE-2026-13251 Path Traversal in wordpress (CVE-2026-13251)
path traversal in wordpress (CVE-2026-13251). Confidential information can be exposed externally.
CVE-2026-12657 Vulnerability in wordpress (CVE-2026-12657)
vulnerability in wordpress (CVE-2026-12657). Risk of unauthorized operations or information disclosure.
CVE-2026-12134 Vulnerability in wordpress (CVE-2026-12134)
vulnerability in wordpress (CVE-2026-12134). Risk of unauthorized operations or information disclosure.
CVE-2026-11896 Vulnerability in wordpress (CVE-2026-11896)
vulnerability in wordpress (CVE-2026-11896). Risk of unauthorized operations or information disclosure.
CVE-2026-12122 Vulnerability in wordpress (CVE-2026-12122)
vulnerability in wordpress (CVE-2026-12122). Risk of unauthorized operations or information disclosure.
CVE-2026-12472 Vulnerability in wordpress (CVE-2026-12472)
vulnerability in wordpress (CVE-2026-12472). Risk of unauthorized operations or information disclosure.
CVE-2026-10104 Cross-Site Scripting (XSS) in wordpress (CVE-2026-10104)
cross-site scripting in wordpress (CVE-2026-10104). Risk of unauthorized operations or information disclosure.
CVE-2026-13357 SQL Injection in wordpress (CVE-2026-13357)
SQL injection in wordpress (CVE-2026-13357). Confidential information can be exposed externally.
CVE-2026-11965 Vulnerability in wordpress (CVE-2026-11965)
vulnerability in wordpress (CVE-2026-11965). Risk of unauthorized operations or information disclosure.
CVE-2026-5348 Vulnerability in wordpress (CVE-2026-5348)
vulnerability in wordpress (CVE-2026-5348). Risk of unauthorized operations or information disclosure.
CVE-2026-11600 Vulnerability in wordpress (CVE-2026-11600)
vulnerability in wordpress (CVE-2026-11600). Risk of unauthorized operations or information disclosure.
CVE-2026-11592 Vulnerability in wordpress (CVE-2026-11592)
vulnerability in wordpress (CVE-2026-11592). Risk of unauthorized operations or information disclosure.
CVE-2026-11781 Vulnerability in wordpress (CVE-2026-11781)
vulnerability in wordpress (CVE-2026-11781). Risk of unauthorized operations or information disclosure.
CVE-2026-13704 Cross-Site Scripting (XSS) in wordpress (CVE-2026-13704)
cross-site scripting in wordpress (CVE-2026-13704). Risk of unauthorized operations or information disclosure.
CVE-2026-5821 Vulnerability in wordpress (CVE-2026-5821)
vulnerability in wordpress (CVE-2026-5821). Data can be tampered with by attackers.
CVE-2026-14249 Vulnerability in wordpress (CVE-2026-14249)
vulnerability in wordpress (CVE-2026-14249). Data can be tampered with by attackers.
CVE-2026-10089 Cross-Site Scripting (XSS) in wordpress (CVE-2026-10089)
cross-site scripting in wordpress (CVE-2026-10089). Risk of unauthorized operations or information disclosure.
CVE-2026-11578 Vulnerability in wordpress (CVE-2026-11578)
vulnerability in wordpress (CVE-2026-11578). Risk of unauthorized operations or information disclosure.
CVE-2026-10077 Vulnerability in wordpress (CVE-2026-10077)
vulnerability in wordpress (CVE-2026-10077). Successful exploitation can lead to full system takeover.
CVE-2026-57277 GeoWebPlayer (also called "Web Plugin" in the GV-VMS documentation and "WS Player" for VMS-Cloud)...
GeoWebPlayer (also called "Web Plugin" in the GV-VMS documentation and "WS Player" for VMS-Cloud)...
CVE-2026-57274 GeoWebPlayer (also called "Web Plugin" in the GV-VMS documentation and "WS Player" for VMS-Cloud)...
GeoWebPlayer (also called "Web Plugin" in the GV-VMS documentation and "WS Player" for VMS-Cloud)...

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →