Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: vendors Tag: cwe-88 Clear
ID Title
CVE-2026-40047 Vulnerability in apache (CVE-2026-40047)
vulnerability in apache (CVE-2026-40047). Confidential information can be exposed externally. Exploitable via ``docling``.
CVE-2026-12856 Vulnerability in redhat (CVE-2026-12856)
vulnerability in redhat (CVE-2026-12856). Successful exploitation can lead to full system takeover.
CVE-2026-40079 OS Command Injection in cacti (CVE-2026-40079)
OS command injection in cacti (CVE-2026-40079). Successful exploitation can lead to full system takeover.
CVE-2026-47365 Vulnerability in wordpress (CVE-2026-47365)
vulnerability in wordpress (CVE-2026-47365). Successful exploitation can lead to full system takeover.
CVE-2026-49373 Vulnerability in jetbrains (CVE-2026-49373)
vulnerability in jetbrains (CVE-2026-49373). Confidential information can be exposed externally.
CVE-2026-8773 Vulnerability in CVE-2026-8773 (CVE-2026-8773)
vulnerability in CVE-2026-8773 (CVE-2026-8773). Risk of unauthorized operations or information disclosure.
CVE-2026-44790 Vulnerability in n8n (CVE-2026-44790)
vulnerability in n8n (CVE-2026-44790). Successful exploitation can lead to full system takeover. Exploitable via ``NODES_EXCLUDE``. Mitigation: upgrade to `2.20.7` or later.
CVE-2026-25690 Vulnerability in fortinet (CVE-2026-25690)
vulnerability in fortinet (CVE-2026-25690). Risk of unauthorized operations or information disclosure.
CVE-2025-40948 Vulnerability in siemens (CVE-2025-40948)
vulnerability in siemens (CVE-2025-40948). Confidential information can be exposed externally.
CVE-2026-41570 Vulnerability in phpunit/phpunit (CVE-2026-41570)
vulnerability in phpunit/phpunit (CVE-2026-41570). Successful exploitation can lead to full system takeover. Exploitable via ``auto_prepend_file``. Mitigation: upgrade to `13.1.6` or later.
CVE-2026-35153 Vulnerability in dell (CVE-2026-35153)
vulnerability in dell (CVE-2026-35153). Successful exploitation can lead to full system takeover.
CVE-2026-22738 Vulnerability in org.springframework.ai:spring-ai-vector-store (CVE-2026-22738)
vulnerability in org.springframework.ai:spring-ai-vector-store (CVE-2026-22738). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `1.1.4` or later.
CVE-2026-20016 Vulnerability in cisco (CVE-2026-20016)
vulnerability in cisco (CVE-2026-20016). Confidential information can be exposed externally.
CVE-2025-24293 Command Injection in CVE-2025-24293 (CVE-2025-24293)
command injection in CVE-2025-24293 (CVE-2025-24293). Successful exploitation can lead to full system takeover.
CVE-2026-24061 KEV [KEV] Vulnerability in Gnu inetutils (CVE-2026-24061)
vulnerability in Gnu inetutils (CVE-2026-24061). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2016-10033 KEV [KEV] Command Injection in php (CVE-2016-10033)
command injection in php (CVE-2016-10033). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-41710 KEV [KEV] Vulnerability in Mitel sip-phones (CVE-2024-41710)
vulnerability in Mitel sip-phones (CVE-2024-41710). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-36804 KEV [KEV] OS Command Injection in Atlassian bitbucket-server-and-data-center (CVE-2022-36804)
OS command injection in Atlassian bitbucket-server-and-data-center (CVE-2022-36804). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2017-14591 Vulnerability in atlassian (CVE-2017-14591)
vulnerability in atlassian (CVE-2017-14591). Successful exploitation can lead to full system takeover.
CVE-2016-1000222 Vulnerability in elastic (CVE-2016-1000222)
vulnerability in elastic (CVE-2016-1000222). Data can be tampered with by attackers.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →