Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: web-frameworks Clear
ID Title
CVE-2026-4058 Vulnerability in wordpress (CVE-2026-4058)
vulnerability in wordpress (CVE-2026-4058). Risk of unauthorized operations or information disclosure.
CVE-2026-34905 Information Disclosure in apache (CVE-2026-34905)
vulnerability in apache (CVE-2026-34905). Confidential information can be exposed externally.
CVE-2026-34033 Cross-Site Scripting (XSS) in apache (CVE-2026-34033)
cross-site scripting in apache (CVE-2026-34033). Risk of unauthorized operations or information disclosure.
CVE-2026-49818 Path Traversal in apache-airflow-providers-samba (CVE-2026-49818)
path traversal in apache-airflow-providers-samba (CVE-2026-49818). Risk of unauthorized operations or information disclosure. Exploitable via ``GCSToSambaOperator``. Mitigation: upgrade to `4.12.6` or later.
CVE-2026-25688 Vulnerability in apache (CVE-2026-25688)
vulnerability in apache (CVE-2026-25688). Risk of unauthorized operations or information disclosure.
CVE-2026-34031 Unrestricted File Upload in apache (CVE-2026-34031)
vulnerability in apache (CVE-2026-34031). Risk of unauthorized operations or information disclosure.
CVE-2026-25699 Vulnerability in c (CVE-2026-25699)
vulnerability in c (CVE-2026-25699). Risk of unauthorized operations or information disclosure.
CVE-2026-33582 Unrestricted File Upload in apache (CVE-2026-33582)
vulnerability in apache (CVE-2026-33582). Risk of unauthorized operations or information disclosure.
CVE-2026-11616 Privilege Escalation in wordpress (CVE-2026-11616)
vulnerability in wordpress (CVE-2026-11616). Successful exploitation can lead to full system takeover.
CVE-2026-8365 Unsafe Deserialization in wordpress (CVE-2026-8365)
vulnerability in wordpress (CVE-2026-8365). Successful exploitation can lead to full system takeover.
CVE-2026-8677 Cross-Site Scripting (XSS) in wordpress (CVE-2026-8677)
cross-site scripting in wordpress (CVE-2026-8677). Risk of unauthorized operations or information disclosure.
CVE-2026-7542 Information Disclosure in wordpress (CVE-2026-7542)
vulnerability in wordpress (CVE-2026-7542). Confidential information can be exposed externally.
CVE-2026-8599 Cross-Site Scripting (XSS) in wordpress (CVE-2026-8599)
cross-site scripting in wordpress (CVE-2026-8599). Risk of unauthorized operations or information disclosure.
CVE-2026-8981 Cross-Site Scripting (XSS) in wordpress (CVE-2026-8981)
cross-site scripting in wordpress (CVE-2026-8981). Risk of unauthorized operations or information disclosure.
CVE-2026-4986 Vulnerability in wordpress (CVE-2026-4986)
vulnerability in wordpress (CVE-2026-4986). Risk of unauthorized operations or information disclosure.
CVE-2026-9662 Vulnerability in wordpress (CVE-2026-9662)
vulnerability in wordpress (CVE-2026-9662). Successful exploitation can lead to full system takeover. Exploitable via ``tpf``.
CVE-2026-8977 Cross-Site Scripting (XSS) in wordpress (CVE-2026-8977)
cross-site scripting in wordpress (CVE-2026-8977). Risk of unauthorized operations or information disclosure.
CVE-2026-9185 Vulnerability in wordpress (CVE-2026-9185)
vulnerability in wordpress (CVE-2026-9185). Confidential information can be exposed externally. Exploitable via ``userId``.
CVE-2026-8895 Cross-Site Scripting (XSS) in wordpress (CVE-2026-8895)
cross-site scripting in wordpress (CVE-2026-8895). Risk of unauthorized operations or information disclosure.
CVE-2026-8902 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8902)
vulnerability in wordpress (CVE-2026-8902). Risk of unauthorized operations or information disclosure.
CVE-2026-8904 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8904)
vulnerability in wordpress (CVE-2026-8904). Risk of unauthorized operations or information disclosure.
CVE-2026-8907 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8907)
vulnerability in wordpress (CVE-2026-8907). Risk of unauthorized operations or information disclosure.
CVE-2026-8909 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8909)
vulnerability in wordpress (CVE-2026-8909). Risk of unauthorized operations or information disclosure.
CVE-2026-8910 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8910)
vulnerability in wordpress (CVE-2026-8910). Risk of unauthorized operations or information disclosure.
CVE-2026-8940 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8940)
vulnerability in wordpress (CVE-2026-8940). Risk of unauthorized operations or information disclosure.
CVE-2026-8883 Cross-Site Scripting (XSS) in wordpress (CVE-2026-8883)
cross-site scripting in wordpress (CVE-2026-8883). Risk of unauthorized operations or information disclosure.
CVE-2026-8499 Vulnerability in wordpress (CVE-2026-8499)
vulnerability in wordpress (CVE-2026-8499). Risk of unauthorized operations or information disclosure. Exploitable via ``token``.
CVE-2026-7662 Cross-Site Scripting (XSS) in wordpress (CVE-2026-7662)
cross-site scripting in wordpress (CVE-2026-7662). Risk of unauthorized operations or information disclosure. Exploitable via ``epaperflip_embed``.
CVE-2026-8841 Cross-Site Scripting (XSS) in wordpress (CVE-2026-8841)
cross-site scripting in wordpress (CVE-2026-8841). Risk of unauthorized operations or information disclosure.
CVE-2026-8880 Cross-Site Scripting (XSS) in wordpress (CVE-2026-8880)
cross-site scripting in wordpress (CVE-2026-8880). Risk of unauthorized operations or information disclosure.
CVE-2026-8882 Cross-Site Scripting (XSS) in wordpress (CVE-2026-8882)
cross-site scripting in wordpress (CVE-2026-8882). Risk of unauthorized operations or information disclosure.
CVE-2026-41851 Vulnerability in spring (CVE-2026-41851)
vulnerability in spring (CVE-2026-41851). Risk of unauthorized operations or information disclosure.
CVE-2026-41855 Unsafe Deserialization in spring (CVE-2026-41855)
vulnerability in spring (CVE-2026-41855). Successful exploitation can lead to full system takeover.
CVE-2026-41854 SSRF (Server-Side Request Forgery) in spring (CVE-2026-41854)
SSRF in spring (CVE-2026-41854). Risk of unauthorized operations or information disclosure.
CVE-2026-41853 Vulnerability in spring (CVE-2026-41853)
vulnerability in spring (CVE-2026-41853). Risk of unauthorized operations or information disclosure.
CVE-2026-41852 Authorization Flaw in spring (CVE-2026-41852)
vulnerability in spring (CVE-2026-41852). Risk of unauthorized operations or information disclosure.
CVE-2026-41849 Vulnerability in spring (CVE-2026-41849)
vulnerability in spring (CVE-2026-41849). Risk of unauthorized operations or information disclosure.
CVE-2026-41850 Vulnerability in spring (CVE-2026-41850)
vulnerability in spring (CVE-2026-41850). Risk of unauthorized operations or information disclosure.
CVE-2026-41843 Path Traversal in spring (CVE-2026-41843)
path traversal in spring (CVE-2026-41843). Confidential information can be exposed externally.
CVE-2026-41841 Vulnerability in spring (CVE-2026-41841)
vulnerability in spring (CVE-2026-41841). Confidential information can be exposed externally.
CVE-2026-41842 Vulnerability in spring (CVE-2026-41842)
vulnerability in spring (CVE-2026-41842). Risk of unauthorized operations or information disclosure.
CVE-2026-41844 Open Redirect in spring (CVE-2026-41844)
vulnerability in spring (CVE-2026-41844). Risk of unauthorized operations or information disclosure.
CVE-2026-41845 Cross-Site Scripting (XSS) in spring (CVE-2026-41845)
cross-site scripting in spring (CVE-2026-41845). Confidential information can be exposed externally.
CVE-2026-41846 Cross-Site Scripting (XSS) in spring (CVE-2026-41846)
cross-site scripting in spring (CVE-2026-41846). Confidential information can be exposed externally.
CVE-2026-41847 Vulnerability in spring (CVE-2026-41847)
vulnerability in spring (CVE-2026-41847). Risk of unauthorized operations or information disclosure.
CVE-2026-41848 Vulnerability in spring (CVE-2026-41848)
vulnerability in spring (CVE-2026-41848). Risk of unauthorized operations or information disclosure.
CVE-2026-41838 Vulnerability in spring (CVE-2026-41838)
vulnerability in spring (CVE-2026-41838). Confidential information can be exposed externally.
CVE-2026-41839 Vulnerability in spring (CVE-2026-41839)
vulnerability in spring (CVE-2026-41839). Risk of unauthorized operations or information disclosure.
CVE-2026-41840 Vulnerability in spring (CVE-2026-41840)
vulnerability in spring (CVE-2026-41840). Risk of unauthorized operations or information disclosure.
CVE-2026-11603 Cross-Site Scripting (XSS) in wordpress (CVE-2026-11603)
cross-site scripting in wordpress (CVE-2026-11603). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →