Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: vendors Clear
ID Title
CVE-2026-35286 Vulnerability in c (CVE-2026-35286)
vulnerability in c (CVE-2026-35286). Successful exploitation can lead to full system takeover.
CVE-2026-35298 Vulnerability in c (CVE-2026-35298)
vulnerability in c (CVE-2026-35298). Successful exploitation can lead to full system takeover.
CVE-2026-35282 Vulnerability in c (CVE-2026-35282)
vulnerability in c (CVE-2026-35282). Successful exploitation can lead to full system takeover.
CVE-2026-35293 Vulnerability in c (CVE-2026-35293)
vulnerability in c (CVE-2026-35293). Successful exploitation can lead to full system takeover.
CVE-2026-35285 Vulnerability in c (CVE-2026-35285)
vulnerability in c (CVE-2026-35285). Successful exploitation can lead to full system takeover.
CVE-2026-35284 Vulnerability in c (CVE-2026-35284)
vulnerability in c (CVE-2026-35284). Successful exploitation can lead to full system takeover.
CVE-2026-35292 Vulnerability in c (CVE-2026-35292)
vulnerability in c (CVE-2026-35292). Successful exploitation can lead to full system takeover.
CVE-2026-35294 Vulnerability in c (CVE-2026-35294)
vulnerability in c (CVE-2026-35294). Successful exploitation can lead to full system takeover.
CVE-2026-35296 Vulnerability in c (CVE-2026-35296)
vulnerability in c (CVE-2026-35296). Successful exploitation can lead to full system takeover.
CVE-2026-35281 Vulnerability in c (CVE-2026-35281)
vulnerability in c (CVE-2026-35281). Successful exploitation can lead to full system takeover.
CVE-2026-35280 Vulnerability in c (CVE-2026-35280)
vulnerability in c (CVE-2026-35280). Successful exploitation can lead to full system takeover.
CVE-2026-35278 Vulnerability in c (CVE-2026-35278)
vulnerability in c (CVE-2026-35278). Successful exploitation can lead to full system takeover.
CVE-2026-35270 Vulnerability in c (CVE-2026-35270)
vulnerability in c (CVE-2026-35270). Successful exploitation can lead to full system takeover.
CVE-2026-35268 Vulnerability in c (CVE-2026-35268)
vulnerability in c (CVE-2026-35268). Successful exploitation can lead to full system takeover.
CVE-2026-35263 Vulnerability in c (CVE-2026-35263)
vulnerability in c (CVE-2026-35263). Successful exploitation can lead to full system takeover.
CVE-2026-20181 Path Traversal in Cisco dos (CVE-2026-20181)
path traversal in Cisco dos (CVE-2026-20181). Successful exploitation can lead to full system takeover.
CVE-2026-54309 Vulnerability in n8n (CVE-2026-54309)
vulnerability in n8n (CVE-2026-54309). Confidential information can be exposed externally. Mitigation: upgrade to `2.25.7` or later.
CVE-2026-54305 Information Disclosure in n8n (CVE-2026-54305)
vulnerability in n8n (CVE-2026-54305). Confidential information can be exposed externally. Exploitable via ``N8N_ENV_FEAT_DYNAMIC_CREDENTIALS``. Mitigation: upgrade to `2.25.7` or later.
CVE-2026-54307 Authorization Flaw in n8n (CVE-2026-54307)
vulnerability in n8n (CVE-2026-54307). Confidential information can be exposed externally. Mitigation: upgrade to `2.25.7` or later.
CVE-2026-0126 Out-of-Bounds Write in google (CVE-2026-0126)
out-of-bounds write in google (CVE-2026-0126). Successful exploitation can lead to full system takeover.
CVE-2026-54310 SQL Injection in n8n (CVE-2026-54310)
SQL injection in n8n (CVE-2026-54310). Successful exploitation can lead to full system takeover. Exploitable via ``NODES_EXCLUDE``. Mitigation: upgrade to `2.25.7` or later.
CVE-2026-48519 Code Injection in langflow (CVE-2026-48519)
code injection in langflow (CVE-2026-48519). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `1.9.2` or later.
CVE-2026-12315 Vulnerability in mozilla (CVE-2026-12315)
vulnerability in mozilla (CVE-2026-12315). Confidential information can be exposed externally.
CVE-2026-12316 Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 152.
Mitigation bypass in the DOM: Security component. This vulnerability was fixed in Firefox 152.
CVE-2026-12304 Vulnerability in mozilla (CVE-2026-12304)
vulnerability in mozilla (CVE-2026-12304). Confidential information can be exposed externally.
CVE-2026-12293 Use-after-free in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 152.
Use-after-free in the Graphics: WebGPU component. This vulnerability was fixed in Firefox 152.
CVE-2026-12297 Buffer Overflow in mozilla (CVE-2026-12297)
vulnerability in mozilla (CVE-2026-12297). Successful exploitation can lead to full system takeover.
CVE-2026-12296 Vulnerability in mozilla (CVE-2026-12296)
vulnerability in mozilla (CVE-2026-12296). Successful exploitation can lead to full system takeover.
CVE-2026-12295 Vulnerability in mozilla (CVE-2026-12295)
vulnerability in mozilla (CVE-2026-12295). Successful exploitation can lead to full system takeover.
CVE-2026-12294 Vulnerability in mozilla (CVE-2026-12294)
vulnerability in mozilla (CVE-2026-12294). Successful exploitation can lead to full system takeover.
CVE-2026-52715 Unauthenticated SQL Injection in GEO my WordPress <= 4.5.5 versions.
Unauthenticated SQL Injection in GEO my WordPress <= 4.5.5 versions.
CVE-2026-49776 SQL Injection in wordpress (CVE-2026-49776)
SQL injection in wordpress (CVE-2026-49776). Confidential information can be exposed externally.
CVE-2026-9691 Unsafe Deserialization in CVE-2026-9691 (CVE-2026-9691)
vulnerability in CVE-2026-9691 (CVE-2026-9691). Successful exploitation can lead to full system takeover.
CVE-2026-49769 Unauthenticated PHP Object Injection in wpForo Forum <= 3.1.0 versions.
Unauthenticated PHP Object Injection in wpForo Forum <= 3.1.0 versions.
CVE-2026-49765 Unsafe Deserialization in CVE-2026-49765 (CVE-2026-49765)
vulnerability in CVE-2026-49765 (CVE-2026-49765). Successful exploitation can lead to full system takeover.
CVE-2026-49768 Unauthenticated PHP Object Injection in Happyforms <= 1.26.13 versions.
Unauthenticated PHP Object Injection in Happyforms <= 1.26.13 versions.
CVE-2026-49770 Unauthenticated PHP Object Injection in WP Travel Engine <= 6.7.12 versions.
Unauthenticated PHP Object Injection in WP Travel Engine <= 6.7.12 versions.
CVE-2026-49781 Unauthenticated PHP Object Injection in OttoKit <= 1.1.27 versions.
Unauthenticated PHP Object Injection in OttoKit <= 1.1.27 versions.
CVE-2026-49763 Unauthenticated PHP Object Injection in Integration for Contact Form 7 HubSpot <= 1.3.7 versions.
Unauthenticated PHP Object Injection in Integration for Contact Form 7 HubSpot <= 1.3.7 versions.
CVE-2026-49105 Unsafe Deserialization in CVE-2026-49105 (CVE-2026-49105)
vulnerability in CVE-2026-49105 (CVE-2026-49105). Successful exploitation can lead to full system takeover.
CVE-2026-49106 Unsafe Deserialization in CVE-2026-49106 (CVE-2026-49106)
vulnerability in CVE-2026-49106 (CVE-2026-49106). Successful exploitation can lead to full system takeover.
CVE-2026-49104 Unsafe Deserialization in CVE-2026-49104 (CVE-2026-49104)
vulnerability in CVE-2026-49104 (CVE-2026-49104). Successful exploitation can lead to full system takeover.
CVE-2026-49085 Unsafe Deserialization in CVE-2026-49085 (CVE-2026-49085)
vulnerability in CVE-2026-49085 (CVE-2026-49085). Successful exploitation can lead to full system takeover.
CVE-2026-49109 Unsafe Deserialization in CVE-2026-49109 (CVE-2026-49109)
vulnerability in CVE-2026-49109 (CVE-2026-49109). Successful exploitation can lead to full system takeover.
CVE-2026-39591 Subscriber Arbitrary File Upload in WP-BusinessDirectory <= 4.0.0 versions.
Subscriber Arbitrary File Upload in WP-BusinessDirectory <= 4.0.0 versions.
CVE-2026-27053 Unauthenticated PHP Object Injection in Broadcast Live Video < 7.1.3 versions.
Unauthenticated PHP Object Injection in Broadcast Live Video < 7.1.3 versions.
CVE-2026-50869 Path Traversal in path-traversal (CVE-2026-50869)
path traversal in path-traversal (CVE-2026-50869). Successful exploitation can lead to full system takeover.
CVE-2026-49952 Vulnerability in CVE-2026-49952 (CVE-2026-49952)
vulnerability in CVE-2026-49952 (CVE-2026-49952). Confidential information can be exposed externally.
CVE-2026-38329 Vulnerability in CVE-2026-38329 (CVE-2026-38329)
vulnerability in CVE-2026-38329 (CVE-2026-38329). Successful exploitation can lead to full system takeover. Exploitable via `POST /api/files/{key}`.
CVE-2018-25436 Unrestricted File Upload in wordpress (CVE-2018-25436)
vulnerability in wordpress (CVE-2018-25436). Successful exploitation can lead to full system takeover.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →