Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-6101 |
|
Vulnerability in wordpress (CVE-2026-6101)
vulnerability in wordpress (CVE-2026-6101). Successful exploitation can lead to full system takeover.
|
| CVE-2026-58293 |
|
Vulnerability in microsoft (CVE-2026-58293)
vulnerability in microsoft (CVE-2026-58293). Successful exploitation can lead to full system takeover.
|
| CVE-2026-5821 |
|
Vulnerability in wordpress (CVE-2026-5821)
vulnerability in wordpress (CVE-2026-5821). Data can be tampered with by attackers.
|
| CVE-2026-6070 |
|
Vulnerability in wordpress (CVE-2026-6070)
vulnerability in wordpress (CVE-2026-6070). Data can be tampered with by attackers.
|
| CVE-2026-3602 |
|
Vulnerability in sqli (CVE-2026-3602)
vulnerability in sqli (CVE-2026-3602). Data can be tampered with by attackers.
|
| CVE-2026-10816 |
|
Vulnerability in citrix (CVE-2026-10816)
vulnerability in citrix (CVE-2026-10816). Confidential information can be exposed externally.
|
| CVE-2026-8095 |
|
Vulnerability in wordpress (CVE-2026-8095)
vulnerability in wordpress (CVE-2026-8095). Data can be tampered with by attackers.
|
| CVE-2025-71334 |
|
Vulnerability in flowiseai (CVE-2025-71334)
vulnerability in flowiseai (CVE-2025-71334). Successful exploitation can lead to full system takeover.
|
| CVE-2025-71338 |
|
Vulnerability in path-traversal (CVE-2025-71338)
vulnerability in path-traversal (CVE-2025-71338). Successful exploitation can lead to full system takeover.
|
| CVE-2025-71333 |
|
Vulnerability in path-traversal (CVE-2025-71333)
vulnerability in path-traversal (CVE-2025-71333). Successful exploitation can lead to full system takeover.
|
| CVE-2025-71324 |
|
Vulnerability in path-traversal (CVE-2025-71324)
vulnerability in path-traversal (CVE-2025-71324). Confidential information can be exposed externally.
|
| CVE-2026-49358 |
|
Vulnerability in pontedilana/php-weasyprint (CVE-2026-49358)
vulnerability in pontedilana/php-weasyprint (CVE-2026-49358). Risk of unauthorized operations or information disclosure. Exploitable via ``realpath``. Mitigation: upgrade to `2.6.0` or later.
|
| CVE-2026-53915 |
|
Vulnerability in jetbrains (CVE-2026-53915)
vulnerability in jetbrains (CVE-2026-53915). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8118 |
|
Vulnerability in wordpress (CVE-2026-8118)
vulnerability in wordpress (CVE-2026-8118). Confidential information can be exposed externally.
|
| CVE-2026-48520 |
|
Vulnerability in langflow (CVE-2026-48520)
vulnerability in langflow (CVE-2026-48520). Confidential information can be exposed externally. Exploitable via ``files``. Mitigation: upgrade to `1.10.0` or later.
|
| CVE-2025-52465 |
|
Vulnerability in org.geoserver.web:gs-web-app (CVE-2025-52465)
vulnerability in org.geoserver.web:gs-web-app (CVE-2025-52465). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `2.26.4` or later.
|
| CVE-2026-45556 |
|
Vulnerability in nginx (CVE-2026-45556)
vulnerability in nginx (CVE-2026-45556). Successful exploitation can lead to full system takeover. Exploitable via `POST /waf/`.
|
| CVE-2026-47643 |
|
Vulnerability in microsoft (CVE-2026-47643)
vulnerability in microsoft (CVE-2026-47643). Successful exploitation can lead to full system takeover.
|
| CVE-2025-12656 |
|
Vulnerability in wordpress (CVE-2025-12656)
vulnerability in wordpress (CVE-2025-12656). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-46397 |
|
Path Traversal in CVE-2026-46397 (CVE-2026-46397)
path traversal in CVE-2026-46397 (CVE-2026-46397). Confidential information can be exposed externally.
|
| CVE-2026-46399 |
|
Vulnerability in CVE-2026-46399 (CVE-2026-46399)
vulnerability in CVE-2026-46399 (CVE-2026-46399). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-20175 |
|
Vulnerability in cisco (CVE-2026-20175)
vulnerability in cisco (CVE-2026-20175). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10694 |
|
Vulnerability in CVE-2026-10694 (CVE-2026-10694)
vulnerability in CVE-2026-10694 (CVE-2026-10694). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10559 |
|
Vulnerability in CVE-2026-10559 (CVE-2026-10559)
vulnerability in CVE-2026-10559 (CVE-2026-10559). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10558 |
|
Vulnerability in CVE-2026-10558 (CVE-2026-10558)
vulnerability in CVE-2026-10558 (CVE-2026-10558). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9559 |
|
Path Traversal in mautic/core (CVE-2026-9559)
path traversal in mautic/core (CVE-2026-9559). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `7.1.2` or later.
|
| CVE-2026-48920 |
|
Vulnerability in org.jenkins-ci.plugins:email-ext (CVE-2026-48920)
vulnerability in org.jenkins-ci.plugins:email-ext (CVE-2026-48920). Successful exploitation can lead to full system takeover. Exploitable via ``base64``. Mitigation: upgrade to `1933.1935.v276319e3cc47` or later.
|
| CVE-2025-0898 |
|
Vulnerability in wordpress (CVE-2025-0898)
vulnerability in wordpress (CVE-2025-0898). Confidential information can be exposed externally.
|
| CVE-2026-29962 |
|
Vulnerability in path-traversal (CVE-2026-29962)
vulnerability in path-traversal (CVE-2026-29962). Confidential information can be exposed externally.
|
| CVE-2026-3892 |
|
Vulnerability in wordpress (CVE-2026-3892)
vulnerability in wordpress (CVE-2026-3892). Data can be tampered with by attackers.
|
| CVE-2026-41107 |
|
Vulnerability in microsoft (CVE-2026-41107)
vulnerability in microsoft (CVE-2026-41107). Confidential information can be exposed externally.
|
| CVE-2026-41088 |
|
Vulnerability in microsoft (CVE-2026-41088)
vulnerability in microsoft (CVE-2026-41088). Successful exploitation can lead to full system takeover.
|
| CVE-2026-40421 |
|
Vulnerability in microsoft (CVE-2026-40421)
vulnerability in microsoft (CVE-2026-40421). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-40370 |
|
Vulnerability in microsoft (CVE-2026-40370)
vulnerability in microsoft (CVE-2026-40370). Successful exploitation can lead to full system takeover.
|
| CVE-2026-32204 |
|
Vulnerability in microsoft (CVE-2026-32204)
vulnerability in microsoft (CVE-2026-32204). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8043 |
|
Vulnerability in ivanti (CVE-2026-8043)
vulnerability in ivanti (CVE-2026-8043). Confidential information can be exposed externally.
|
| CVE-2026-20931 |
|
Vulnerability in microsoft (CVE-2026-20931)
vulnerability in microsoft (CVE-2026-20931). Successful exploitation can lead to full system takeover.
|
| CVE-2025-33053 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2025-33053)
vulnerability in Microsoft windows (CVE-2025-33053). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-24054 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2025-24054)
vulnerability in Microsoft windows (CVE-2025-24054). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2025-1686 |
|
Vulnerability in pebbletemplates (CVE-2025-1686)
vulnerability in pebbletemplates (CVE-2025-1686). Confidential information can be exposed externally.
|
| CVE-2025-0111 KEV |
|
[KEV] Vulnerability in Palo alto networks palo-alto-networks (CVE-2025-0111)
vulnerability in Palo alto networks palo-alto-networks (CVE-2025-0111). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-43451 KEV |
|
[KEV] Vulnerability in Microsoft windows (CVE-2024-43451)
vulnerability in Microsoft windows (CVE-2024-43451). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2020-1631 KEV |
|
[KEV] Path Traversal in Juniper junos-os (CVE-2020-1631)
path traversal in Juniper junos-os (CVE-2020-1631). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|