Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2018-25382 |
|
SQL Injection in sqli (CVE-2018-25382)
SQL injection in sqli (CVE-2018-25382). Confidential information can be exposed externally.
|
| CVE-2026-44494 |
|
Vulnerability in axios (CVE-2026-44494)
vulnerability in axios (CVE-2026-44494). Confidential information can be exposed externally. Exploitable via `Authorization header`. Mitigation: upgrade to `1.15.0` or later.
|
| CVE-2026-44492 |
|
Vulnerability in axios (CVE-2026-44492)
vulnerability in axios (CVE-2026-44492). Confidential information can be exposed externally. Mitigation: upgrade to `1.16.0` or later.
|
| CVE-2026-44698 |
|
Code Injection in CVE-2026-44698 (CVE-2026-44698)
code injection in CVE-2026-44698 (CVE-2026-44698). Successful exploitation can lead to full system takeover. Exploitable via ``window.externalApp``. Mitigation: upgrade to `2026.4.1` or later.
|
| CVE-2026-44239 |
|
Vulnerability in path-traversal (CVE-2026-44239)
vulnerability in path-traversal (CVE-2026-44239). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `16.0.22` or later.
|
| CVE-2026-44237 |
|
Vulnerability in sangoma (CVE-2026-44237)
vulnerability in sangoma (CVE-2026-44237). Confidential information can be exposed externally. Mitigation: upgrade to `17.0.8` or later.
|
| CVE-2026-44238 |
|
SQL Injection in sqli (CVE-2026-44238)
SQL injection in sqli (CVE-2026-44238). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `16.0.50` or later.
|
| CVE-2026-48527 |
|
Cross-Site Scripting (XSS) in @haxtheweb/haxcms-nodejs (CVE-2026-48527)
cross-site scripting in @haxtheweb/haxcms-nodejs (CVE-2026-48527). Confidential information can be exposed externally. Exploitable via `POST /system/api/saveNode`. Mitigation: upgrade to `26.0.1` or later.
|
| CVE-2026-6075 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-6075)
vulnerability in wordpress (CVE-2026-6075). Data can be tampered with by attackers.
|
| CVE-2025-11262 |
|
The Link Whisper Free plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...
The Link Whisper Free plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the...
|
| CVE-2025-11993 |
|
Unsafe Deserialization in wordpress (CVE-2025-11993)
vulnerability in wordpress (CVE-2025-11993). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9948 |
|
Use-After-Free in google (CVE-2026-9948)
vulnerability in google (CVE-2026-9948). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9947 |
|
Use-After-Free in google (CVE-2026-9947)
vulnerability in google (CVE-2026-9947). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9952 |
|
Use-After-Free in google (CVE-2026-9952)
vulnerability in google (CVE-2026-9952). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9946 |
|
Use-After-Free in google (CVE-2026-9946)
vulnerability in google (CVE-2026-9946). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9951 |
|
Use-After-Free in google (CVE-2026-9951)
vulnerability in google (CVE-2026-9951). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9938 |
|
Code Injection in google (CVE-2026-9938)
code injection in google (CVE-2026-9938). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9934 |
|
Use-After-Free in Google chrome (CVE-2026-9934)
vulnerability in Google chrome (CVE-2026-9934). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9937 |
|
Use-After-Free in google (CVE-2026-9937)
vulnerability in google (CVE-2026-9937). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9928 |
|
Out-of-Bounds Read in google (CVE-2026-9928)
vulnerability in google (CVE-2026-9928). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9916 |
|
Out-of-Bounds Write in google (CVE-2026-9916)
out-of-bounds write in google (CVE-2026-9916). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9923 |
|
Use-After-Free in google (CVE-2026-9923)
vulnerability in google (CVE-2026-9923). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9932 |
|
Use-After-Free in google (CVE-2026-9932)
vulnerability in google (CVE-2026-9932). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9909 |
|
Vulnerability in google (CVE-2026-9909)
vulnerability in google (CVE-2026-9909). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9926 |
|
Vulnerability in google (CVE-2026-9926)
vulnerability in google (CVE-2026-9926). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9931 |
|
Use-After-Free in google (CVE-2026-9931)
vulnerability in google (CVE-2026-9931). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9925 |
|
Use-After-Free in google (CVE-2026-9925)
vulnerability in google (CVE-2026-9925). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9927 |
|
Use-After-Free in google (CVE-2026-9927)
vulnerability in google (CVE-2026-9927). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9904 |
|
Use-After-Free in google (CVE-2026-9904)
vulnerability in google (CVE-2026-9904). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9933 |
|
Use-After-Free in google (CVE-2026-9933)
vulnerability in google (CVE-2026-9933). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9910 |
|
Out-of-Bounds Read in google (CVE-2026-9910)
vulnerability in google (CVE-2026-9910). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9883 |
|
Use-After-Free in google (CVE-2026-9883)
vulnerability in google (CVE-2026-9883). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9900 |
|
Out-of-Bounds Write in google (CVE-2026-9900)
out-of-bounds write in google (CVE-2026-9900). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9895 |
|
Out-of-Bounds Read in google (CVE-2026-9895)
vulnerability in google (CVE-2026-9895). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9902 |
|
Use-After-Free in google (CVE-2026-9902)
vulnerability in google (CVE-2026-9902). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9893 |
|
Use-After-Free in google (CVE-2026-9893)
vulnerability in google (CVE-2026-9893). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9885 |
|
Vulnerability in google (CVE-2026-9885)
vulnerability in google (CVE-2026-9885). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9899 |
|
Use-After-Free in google (CVE-2026-9899)
vulnerability in google (CVE-2026-9899). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9884 |
|
Use-After-Free in google (CVE-2026-9884)
vulnerability in google (CVE-2026-9884). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9890 |
|
Use-After-Free in google (CVE-2026-9890)
vulnerability in google (CVE-2026-9890). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9897 |
|
Use-After-Free in google (CVE-2026-9897)
vulnerability in google (CVE-2026-9897). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9894 |
|
Use-After-Free in google (CVE-2026-9894)
vulnerability in google (CVE-2026-9894). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9877 |
|
Use-After-Free in google (CVE-2026-9877)
vulnerability in google (CVE-2026-9877). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9880 |
|
Vulnerability in google (CVE-2026-9880)
vulnerability in google (CVE-2026-9880). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9878 |
|
Use-After-Free in google (CVE-2026-9878)
vulnerability in google (CVE-2026-9878). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9888 |
|
Use-After-Free in google (CVE-2026-9888)
vulnerability in google (CVE-2026-9888). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9892 |
|
Privilege Escalation in google (CVE-2026-9892)
vulnerability in google (CVE-2026-9892). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9889 |
|
Out-of-Bounds Read in google (CVE-2026-9889)
vulnerability in google (CVE-2026-9889). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9901 |
|
Use-After-Free in google (CVE-2026-9901)
vulnerability in google (CVE-2026-9901). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9879 |
|
Out-of-Bounds Write in google (CVE-2026-9879)
out-of-bounds write in google (CVE-2026-9879). Successful exploitation can lead to full system takeover.
|