Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: vendors Clear
ID Title
CVE-2026-8935 Vulnerability in wordpress (CVE-2026-8935)
vulnerability in wordpress (CVE-2026-8935). Successful exploitation can lead to full system takeover.
CVE-2026-12183 Authentication Bypass in CVE-2026-12183 (CVE-2026-12183)
authentication bypass in CVE-2026-12183 (CVE-2026-12183). Successful exploitation can lead to full system takeover.
CVE-2026-53838 Vulnerability in openclaw (CVE-2026-53838)
vulnerability in openclaw (CVE-2026-53838). Successful exploitation can lead to full system takeover.
CVE-2026-41157 Out-of-Bounds Write in Google chrome (CVE-2026-41157)
out-of-bounds write in Google chrome (CVE-2026-41157). Successful exploitation can lead to full system takeover.
CVE-2026-48558 KEV [KEV] Vulnerability in Simplehelp simple-help (CVE-2026-48558)
vulnerability in Simplehelp simple-help (CVE-2026-48558). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
CVE-2026-53787 Unrestricted File Upload in path-traversal (CVE-2026-53787)
vulnerability in path-traversal (CVE-2026-53787). Successful exploitation can lead to full system takeover.
CVE-2026-54133 Vulnerability in jmespath (CVE-2026-54133)
vulnerability in jmespath (CVE-2026-54133). Successful exploitation can lead to full system takeover. Exploitable via ``JP_PHP_COMPILE``. Mitigation: upgrade to `2.9.1` or later.
CVE-2026-50628 Vulnerability in apache (CVE-2026-50628)
vulnerability in apache (CVE-2026-50628). Successful exploitation can lead to full system takeover.
CVE-2026-50627 Vulnerability in apache (CVE-2026-50627)
vulnerability in apache (CVE-2026-50627). Successful exploitation can lead to full system takeover.
CVE-2026-49875 XXE (XML External Entity) in apache (CVE-2026-49875)
vulnerability in apache (CVE-2026-49875). Successful exploitation can lead to full system takeover.
CVE-2026-47365 Vulnerability in wordpress (CVE-2026-47365)
vulnerability in wordpress (CVE-2026-47365). Successful exploitation can lead to full system takeover.
CVE-2026-45060 SQL Injection in sqli (CVE-2026-45060)
SQL injection in sqli (CVE-2026-45060). Successful exploitation can lead to full system takeover.
CVE-2026-12027 Vulnerability in google (CVE-2026-12027)
vulnerability in google (CVE-2026-12027). Successful exploitation can lead to full system takeover.
CVE-2026-38581 SQL Injection in sqli (CVE-2026-38581)
SQL injection in sqli (CVE-2026-38581). Successful exploitation can lead to full system takeover.
CVE-2026-35273 KEV [KEV] Vulnerability in Oracle c (CVE-2026-35273)
vulnerability in Oracle c (CVE-2026-35273). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
CVE-2026-45552 Vulnerability in nginx (CVE-2026-45552)
vulnerability in nginx (CVE-2026-45552). Successful exploitation can lead to full system takeover.
CVE-2026-45558 Vulnerability in c (CVE-2026-45558)
vulnerability in c (CVE-2026-45558). Successful exploitation can lead to full system takeover. Exploitable via `POST /api/service/haproxy/`.
CVE-2026-45556 Vulnerability in nginx (CVE-2026-45556)
vulnerability in nginx (CVE-2026-45556). Successful exploitation can lead to full system takeover. Exploitable via `POST /waf/`.
CVE-2026-45550 Vulnerability in nginx (CVE-2026-45550)
vulnerability in nginx (CVE-2026-45550). Data can be tampered with by attackers. Exploitable via `PUT /smon/check`.
CVE-2025-6254 Privilege Escalation in wordpress (CVE-2025-6254)
vulnerability in wordpress (CVE-2025-6254). Successful exploitation can lead to full system takeover.
CVE-2026-9067 Unrestricted File Upload in wordpress (CVE-2026-9067)
vulnerability in wordpress (CVE-2026-9067). Confidential information can be exposed externally.
CVE-2026-26241 Vulnerability in qnap (CVE-2026-26241)
vulnerability in qnap (CVE-2026-26241). Data can be tampered with by attackers.
CVE-2026-26240 Vulnerability in qnap (CVE-2026-26240)
vulnerability in qnap (CVE-2026-26240). Data can be tampered with by attackers.
CVE-2025-66276 Vulnerability in qnap (CVE-2025-66276)
vulnerability in qnap (CVE-2025-66276). Successful exploitation can lead to full system takeover.
CVE-2026-48303 Authorization Flaw in adobe (CVE-2026-48303)
vulnerability in adobe (CVE-2026-48303). Successful exploitation can lead to full system takeover.
CVE-2026-47928 Vulnerability in adobe (CVE-2026-47928)
vulnerability in adobe (CVE-2026-47928). Successful exploitation can lead to full system takeover.
CVE-2026-47281 Vulnerability in microsoft (CVE-2026-47281)
vulnerability in microsoft (CVE-2026-47281). Successful exploitation can lead to full system takeover.
CVE-2026-44815 Vulnerability in microsoft (CVE-2026-44815)
vulnerability in microsoft (CVE-2026-44815). Successful exploitation can lead to full system takeover.
CVE-2026-42904 Vulnerability in microsoft (CVE-2026-42904)
vulnerability in microsoft (CVE-2026-42904). Successful exploitation can lead to full system takeover.
CVE-2026-34182 Vulnerability in openssl (CVE-2026-34182)
vulnerability in openssl (CVE-2026-34182). Confidential information can be exposed externally.
CVE-2026-38615 DedeCMS V5.7.118 is vulnerable to Command Execution in file_manage_control.php.
DedeCMS V5.7.118 is vulnerable to Command Execution in file_manage_control.php.
CVE-2026-26142 Unsafe Deserialization in deserialization (CVE-2026-26142)
vulnerability in deserialization (CVE-2026-26142). Successful exploitation can lead to full system takeover.
CVE-2026-34691 Cross-Site Scripting (XSS) in adobe (CVE-2026-34691)
cross-site scripting in adobe (CVE-2026-34691). Confidential information can be exposed externally.
CVE-2026-47643 Vulnerability in microsoft (CVE-2026-47643)
vulnerability in microsoft (CVE-2026-47643). Successful exploitation can lead to full system takeover.
CVE-2026-47291 Vulnerability in microsoft (CVE-2026-47291)
vulnerability in microsoft (CVE-2026-47291). Successful exploitation can lead to full system takeover.
CVE-2026-45657 Use after free in Windows Kernel allows an unauthorized attacker to execute code over a network.
Use after free in Windows Kernel allows an unauthorized attacker to execute code over a network.
CVE-2026-45602 Vulnerability in microsoft (CVE-2026-45602)
vulnerability in microsoft (CVE-2026-45602). Confidential information can be exposed externally.
CVE-2026-25089 OS Command Injection in fortinet (CVE-2026-25089)
OS command injection in fortinet (CVE-2026-25089). Successful exploitation can lead to full system takeover.
CVE-2026-10520 KEV [KEV] OS Command Injection in Ivanti standalone-sentry (CVE-2026-10520)
OS command injection in Ivanti standalone-sentry (CVE-2026-10520). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
CVE-2026-10523 Vulnerability in ivanti (CVE-2026-10523)
vulnerability in ivanti (CVE-2026-10523). Successful exploitation can lead to full system takeover.
CVE-2026-46316 Vulnerability in linux (CVE-2026-46316)
vulnerability in linux (CVE-2026-46316). Successful exploitation can lead to full system takeover.
CVE-2017-20251 Code Injection in wordpress (CVE-2017-20251)
code injection in wordpress (CVE-2017-20251). Successful exploitation can lead to full system takeover.
CVE-2026-9698 Out-of-Bounds Write in perl (CVE-2026-9698)
out-of-bounds write in perl (CVE-2026-9698). Successful exploitation can lead to full system takeover.
CVE-2026-44083 Vulnerability in qnap (CVE-2026-44083)
vulnerability in qnap (CVE-2026-44083). Successful exploitation can lead to full system takeover.
CVE-2026-40128 Vulnerability in path-traversal (CVE-2026-40128)
vulnerability in path-traversal (CVE-2026-40128). Successful exploitation can lead to full system takeover.
CVE-2026-11697 Vulnerability in google (CVE-2026-11697)
vulnerability in google (CVE-2026-11697). Successful exploitation can lead to full system takeover.
CVE-2026-11671 Use-After-Free in google (CVE-2026-11671)
vulnerability in google (CVE-2026-11671). Successful exploitation can lead to full system takeover.
CVE-2026-11654 Use-After-Free in google (CVE-2026-11654)
vulnerability in google (CVE-2026-11654). Successful exploitation can lead to full system takeover.
CVE-2026-11651 Use-After-Free in google (CVE-2026-11651)
vulnerability in google (CVE-2026-11651). Successful exploitation can lead to full system takeover.
CVE-2026-11659 Vulnerability in google (CVE-2026-11659)
vulnerability in google (CVE-2026-11659). Successful exploitation can lead to full system takeover.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →