Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: vendors Tag: cwe-93 Clear
ID Title
CVE-2026-12127 Vulnerability in wordpress (CVE-2026-12127)
vulnerability in wordpress (CVE-2026-12127). Risk of unauthorized operations or information disclosure.
CVE-2026-57281 Vulnerability in jenkins (CVE-2026-57281)
vulnerability in jenkins (CVE-2026-57281). Successful exploitation can lead to full system takeover.
CVE-2026-55766 Vulnerability in guzzlehttp/psr7 (CVE-2026-55766)
vulnerability in guzzlehttp/psr7 (CVE-2026-55766). Risk of unauthorized operations or information disclosure. Exploitable via ``Request``. Mitigation: upgrade to `2.12.1` or later.
CVE-2026-50629 Vulnerability in apache (CVE-2026-50629)
vulnerability in apache (CVE-2026-50629). Risk of unauthorized operations or information disclosure.
CVE-2026-49214 Vulnerability in guzzlehttp/psr7 (CVE-2026-49214)
vulnerability in guzzlehttp/psr7 (CVE-2026-49214). Risk of unauthorized operations or information disclosure. Exploitable via ``Uri``. Mitigation: upgrade to `2.10.2` or later.
CVE-2026-41570 Vulnerability in phpunit/phpunit (CVE-2026-41570)
vulnerability in phpunit/phpunit (CVE-2026-41570). Successful exploitation can lead to full system takeover. Exploitable via ``auto_prepend_file``. Mitigation: upgrade to `13.1.6` or later.
CVE-2026-43882 Vulnerability in wwbn/avideo (CVE-2026-43882)
vulnerability in wwbn/avideo (CVE-2026-43882). Risk of unauthorized operations or information disclosure. Exploitable via ``title``.
CVE-2026-39849 Vulnerability in pi-hole (CVE-2026-39849)
vulnerability in pi-hole (CVE-2026-39849). Successful exploitation can lead to full system takeover. Exploitable via ``dns.interface``.
CVE-2022-27924 KEV [KEV] Vulnerability in Synacor zimbra-collaboration-suite-zcs (CVE-2022-27924)
vulnerability in Synacor zimbra-collaboration-suite-zcs (CVE-2022-27924). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2016-3115 Vulnerability in c (CVE-2016-3115)
vulnerability in c (CVE-2016-3115). Risk of unauthorized operations or information disclosure.
CVE-2017-14037 CrushFTP before 7.8.0 and 8.x before 8.2.0 has an HTTP header vulnerability.
CrushFTP before 7.8.0 and 8.x before 8.2.0 has an HTTP header vulnerability.
CVE-2014-9564 Vulnerability in ibm (CVE-2014-9564)
vulnerability in ibm (CVE-2014-9564). Risk of unauthorized operations or information disclosure.
CVE-2017-8788 Vulnerability in accellion (CVE-2017-8788)
vulnerability in accellion (CVE-2017-8788). Risk of unauthorized operations or information disclosure.
CVE-2017-8791 Vulnerability in accellion (CVE-2017-8791)
vulnerability in accellion (CVE-2017-8791). Risk of unauthorized operations or information disclosure.
CVE-2017-6508 Vulnerability in c (CVE-2017-6508)
vulnerability in c (CVE-2017-6508). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →