Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Group: web-frameworks Clear
ID Title
CVE-2026-4375 Vulnerability in wordpress (CVE-2026-4375)
vulnerability in wordpress (CVE-2026-4375). Successful exploitation can lead to full system takeover.
CVE-2026-14345 Unrestricted File Upload in wordpress (CVE-2026-14345)
vulnerability in wordpress (CVE-2026-14345). Successful exploitation can lead to full system takeover.
CVE-2026-12277 Vulnerability in wordpress (CVE-2026-12277)
vulnerability in wordpress (CVE-2026-12277). Data can be tampered with by attackers.
CVE-2026-12375 Vulnerability in wordpress (CVE-2026-12375)
vulnerability in wordpress (CVE-2026-12375). Successful exploitation can lead to full system takeover.
CVE-2026-11328 Cross-Site Scripting (XSS) in wordpress (CVE-2026-11328)
cross-site scripting in wordpress (CVE-2026-11328). Risk of unauthorized operations or information disclosure.
CVE-2026-53646 Vulnerability in nginx (CVE-2026-53646)
vulnerability in nginx (CVE-2026-53646). Risk of unauthorized operations or information disclosure. Exploitable via ``ClientPasswordReset``.
CVE-2026-53624 Vulnerability in github.com/gofiber/fiber (CVE-2026-53624)
vulnerability in github.com/gofiber/fiber (CVE-2026-53624). Risk of unauthorized operations or information disclosure. Exploitable via ``helmet``. Mitigation: upgrade to `3.4.0` or later.
CVE-2026-12154 Cross-Site Scripting (XSS) in wordpress (CVE-2026-12154)
cross-site scripting in wordpress (CVE-2026-12154). Risk of unauthorized operations or information disclosure.
CVE-2026-43825 Unsafe Deserialization in apache (CVE-2026-43825)
vulnerability in apache (CVE-2026-43825). Risk of unauthorized operations or information disclosure.
CVE-2026-49042 Vulnerability in apache (CVE-2026-49042)
vulnerability in apache (CVE-2026-49042). Risk of unauthorized operations or information disclosure.
CVE-2026-49297 Path Traversal in apache (CVE-2026-49297)
path traversal in apache (CVE-2026-49297). Data can be tampered with by attackers. Exploitable via ``GCSToSFTPOperator``.
CVE-2026-46587 Vulnerability in apache (CVE-2026-46587)
vulnerability in apache (CVE-2026-46587). Risk of unauthorized operations or information disclosure.
CVE-2026-46588 Vulnerability in apache (CVE-2026-46588)
vulnerability in apache (CVE-2026-46588). Risk of unauthorized operations or information disclosure.
CVE-2026-56139 Vulnerability in apache (CVE-2026-56139)
vulnerability in apache (CVE-2026-56139). Risk of unauthorized operations or information disclosure.
CVE-2026-49098 Vulnerability in c (CVE-2026-49098)
vulnerability in c (CVE-2026-49098). Risk of unauthorized operations or information disclosure.
CVE-2026-53913 Authentication Bypass in apache (CVE-2026-53913)
authentication bypass in apache (CVE-2026-53913). Successful exploitation can lead to full system takeover.
CVE-2026-49097 Vulnerability in apache (CVE-2026-49097)
vulnerability in apache (CVE-2026-49097). Risk of unauthorized operations or information disclosure.
CVE-2026-49086 Vulnerability in apache (CVE-2026-49086)
vulnerability in apache (CVE-2026-49086). Risk of unauthorized operations or information disclosure.
CVE-2026-48205 Vulnerability in apache (CVE-2026-48205)
vulnerability in apache (CVE-2026-48205). Confidential information can be exposed externally.
CVE-2026-48206 Vulnerability in apache (CVE-2026-48206)
vulnerability in apache (CVE-2026-48206). Risk of unauthorized operations or information disclosure.
CVE-2026-49365 Vulnerability in apache (CVE-2026-49365)
vulnerability in apache (CVE-2026-49365). Risk of unauthorized operations or information disclosure.
CVE-2026-56140 Vulnerability in apache (CVE-2026-56140)
vulnerability in apache (CVE-2026-56140). Successful exploitation can lead to full system takeover.
CVE-2026-55994 Vulnerability in apache (CVE-2026-55994)
vulnerability in apache (CVE-2026-55994). Confidential information can be exposed externally.
CVE-2026-49099 Vulnerability in apache (CVE-2026-49099)
vulnerability in apache (CVE-2026-49099). Risk of unauthorized operations or information disclosure.
CVE-2026-55993 Vulnerability in apache (CVE-2026-55993)
vulnerability in apache (CVE-2026-55993). Confidential information can be exposed externally.
CVE-2026-46726 Vulnerability in apache (CVE-2026-46726)
vulnerability in apache (CVE-2026-46726). Confidential information can be exposed externally.
CVE-2026-46592 Vulnerability in apache (CVE-2026-46592)
vulnerability in apache (CVE-2026-46592). Confidential information can be exposed externally.
CVE-2026-46590 Unsafe Deserialization in apache (CVE-2026-46590)
vulnerability in apache (CVE-2026-46590). Successful exploitation can lead to full system takeover.
CVE-2026-46585 Vulnerability in apache (CVE-2026-46585)
vulnerability in apache (CVE-2026-46585). Confidential information can be exposed externally.
CVE-2026-46591 Vulnerability in apache (CVE-2026-46591)
vulnerability in apache (CVE-2026-46591). Data can be tampered with by attackers.
CVE-2026-46456 Vulnerability in apache (CVE-2026-46456)
vulnerability in apache (CVE-2026-46456). Successful exploitation can lead to full system takeover.
CVE-2026-48203 Vulnerability in apache (CVE-2026-48203)
vulnerability in apache (CVE-2026-48203). Confidential information can be exposed externally.
CVE-2026-46584 Vulnerability in apache (CVE-2026-46584)
vulnerability in apache (CVE-2026-46584). Risk of unauthorized operations or information disclosure.
CVE-2026-48204 Vulnerability in apache (CVE-2026-48204)
vulnerability in apache (CVE-2026-48204). Successful exploitation can lead to full system takeover.
CVE-2026-43865 Unsafe Deserialization in csharp (CVE-2026-43865)
vulnerability in csharp (CVE-2026-43865). Successful exploitation can lead to full system takeover.
CVE-2026-24012 Vulnerability in apache (CVE-2026-24012)
vulnerability in apache (CVE-2026-24012). Risk of unauthorized operations or information disclosure.
CVE-2026-42527 Unsafe Deserialization in csharp (CVE-2026-42527)
vulnerability in csharp (CVE-2026-42527). Successful exploitation can lead to full system takeover.
CVE-2026-46453 Vulnerability in apache (CVE-2026-46453)
vulnerability in apache (CVE-2026-46453). Risk of unauthorized operations or information disclosure.
CVE-2026-46455 Vulnerability in apache (CVE-2026-46455)
vulnerability in apache (CVE-2026-46455). Successful exploitation can lead to full system takeover.
CVE-2026-43866 Unsafe Deserialization in apache (CVE-2026-43866)
vulnerability in apache (CVE-2026-43866). Risk of unauthorized operations or information disclosure.
CVE-2026-24013 Vulnerability in apache (CVE-2026-24013)
vulnerability in apache (CVE-2026-24013). Confidential information can be exposed externally.
CVE-2026-24014 Vulnerability in apache (CVE-2026-24014)
vulnerability in apache (CVE-2026-24014). Successful exploitation can lead to full system takeover.
CVE-2026-40859 Unsafe Deserialization in apache (CVE-2026-40859)
vulnerability in apache (CVE-2026-40859). Successful exploitation can lead to full system takeover.
CVE-2026-40047 Vulnerability in apache (CVE-2026-40047)
vulnerability in apache (CVE-2026-40047). Confidential information can be exposed externally. Exploitable via ``docling``.
CVE-2026-46457 Vulnerability in apache (CVE-2026-46457)
vulnerability in apache (CVE-2026-46457). Data can be tampered with by attackers.
CVE-2026-43867 Unsafe Deserialization in apache (CVE-2026-43867)
vulnerability in apache (CVE-2026-43867). Successful exploitation can lead to full system takeover.
CVE-2026-46454 Vulnerability in apache (CVE-2026-46454)
vulnerability in apache (CVE-2026-46454). Successful exploitation can lead to full system takeover.
CVE-2026-6382 Vulnerability in wordpress (CVE-2026-6382)
vulnerability in wordpress (CVE-2026-6382). Successful exploitation can lead to full system takeover.
CVE-2026-14802 A vulnerability was detected in react create-react-app up to 5.0.1 on macOS. This affects the...
A vulnerability was detected in react create-react-app up to 5.0.1 on macOS. This affects the...
CVE-2026-11855 Vulnerability in wordpress (CVE-2026-11855)
vulnerability in wordpress (CVE-2026-11855). Successful exploitation can lead to full system takeover.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →