Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-4058 |
|
Vulnerability in wordpress (CVE-2026-4058)
vulnerability in wordpress (CVE-2026-4058). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34905 |
|
Information Disclosure in apache (CVE-2026-34905)
vulnerability in apache (CVE-2026-34905). Confidential information can be exposed externally.
|
| CVE-2026-34033 |
|
Cross-Site Scripting (XSS) in apache (CVE-2026-34033)
cross-site scripting in apache (CVE-2026-34033). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-49818 |
|
Path Traversal in apache-airflow-providers-samba (CVE-2026-49818)
path traversal in apache-airflow-providers-samba (CVE-2026-49818). Risk of unauthorized operations or information disclosure. Exploitable via ``GCSToSambaOperator``. Mitigation: upgrade to `4.12.6` or later.
|
| CVE-2026-25688 |
|
Vulnerability in apache (CVE-2026-25688)
vulnerability in apache (CVE-2026-25688). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34031 |
|
Unrestricted File Upload in apache (CVE-2026-34031)
vulnerability in apache (CVE-2026-34031). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-25699 |
|
Vulnerability in c (CVE-2026-25699)
vulnerability in c (CVE-2026-25699). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-33582 |
|
Unrestricted File Upload in apache (CVE-2026-33582)
vulnerability in apache (CVE-2026-33582). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-11616 |
|
Privilege Escalation in wordpress (CVE-2026-11616)
vulnerability in wordpress (CVE-2026-11616). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8365 |
|
Unsafe Deserialization in wordpress (CVE-2026-8365)
vulnerability in wordpress (CVE-2026-8365). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8677 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-8677)
cross-site scripting in wordpress (CVE-2026-8677). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-7542 |
|
Information Disclosure in wordpress (CVE-2026-7542)
vulnerability in wordpress (CVE-2026-7542). Confidential information can be exposed externally.
|
| CVE-2026-8599 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-8599)
cross-site scripting in wordpress (CVE-2026-8599). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8981 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-8981)
cross-site scripting in wordpress (CVE-2026-8981). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4986 |
|
Vulnerability in wordpress (CVE-2026-4986)
vulnerability in wordpress (CVE-2026-4986). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9662 |
|
Vulnerability in wordpress (CVE-2026-9662)
vulnerability in wordpress (CVE-2026-9662). Successful exploitation can lead to full system takeover. Exploitable via ``tpf``.
|
| CVE-2026-8977 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-8977)
cross-site scripting in wordpress (CVE-2026-8977). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9185 |
|
Vulnerability in wordpress (CVE-2026-9185)
vulnerability in wordpress (CVE-2026-9185). Confidential information can be exposed externally. Exploitable via ``userId``.
|
| CVE-2026-8895 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-8895)
cross-site scripting in wordpress (CVE-2026-8895). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8902 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8902)
vulnerability in wordpress (CVE-2026-8902). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8904 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8904)
vulnerability in wordpress (CVE-2026-8904). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8907 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8907)
vulnerability in wordpress (CVE-2026-8907). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8909 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8909)
vulnerability in wordpress (CVE-2026-8909). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8910 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8910)
vulnerability in wordpress (CVE-2026-8910). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8940 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8940)
vulnerability in wordpress (CVE-2026-8940). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8883 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-8883)
cross-site scripting in wordpress (CVE-2026-8883). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8499 |
|
Vulnerability in wordpress (CVE-2026-8499)
vulnerability in wordpress (CVE-2026-8499). Risk of unauthorized operations or information disclosure. Exploitable via ``token``.
|
| CVE-2026-7662 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-7662)
cross-site scripting in wordpress (CVE-2026-7662). Risk of unauthorized operations or information disclosure. Exploitable via ``epaperflip_embed``.
|
| CVE-2026-8841 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-8841)
cross-site scripting in wordpress (CVE-2026-8841). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8880 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-8880)
cross-site scripting in wordpress (CVE-2026-8880). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8882 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-8882)
cross-site scripting in wordpress (CVE-2026-8882). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41851 |
|
Vulnerability in spring (CVE-2026-41851)
vulnerability in spring (CVE-2026-41851). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41855 |
|
Unsafe Deserialization in spring (CVE-2026-41855)
vulnerability in spring (CVE-2026-41855). Successful exploitation can lead to full system takeover.
|
| CVE-2026-41854 |
|
SSRF (Server-Side Request Forgery) in spring (CVE-2026-41854)
SSRF in spring (CVE-2026-41854). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41853 |
|
Vulnerability in spring (CVE-2026-41853)
vulnerability in spring (CVE-2026-41853). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41852 |
|
Authorization Flaw in spring (CVE-2026-41852)
vulnerability in spring (CVE-2026-41852). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41849 |
|
Vulnerability in spring (CVE-2026-41849)
vulnerability in spring (CVE-2026-41849). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41850 |
|
Vulnerability in spring (CVE-2026-41850)
vulnerability in spring (CVE-2026-41850). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41843 |
|
Path Traversal in spring (CVE-2026-41843)
path traversal in spring (CVE-2026-41843). Confidential information can be exposed externally.
|
| CVE-2026-41841 |
|
Vulnerability in spring (CVE-2026-41841)
vulnerability in spring (CVE-2026-41841). Confidential information can be exposed externally.
|
| CVE-2026-41842 |
|
Vulnerability in spring (CVE-2026-41842)
vulnerability in spring (CVE-2026-41842). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41844 |
|
Open Redirect in spring (CVE-2026-41844)
vulnerability in spring (CVE-2026-41844). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41845 |
|
Cross-Site Scripting (XSS) in spring (CVE-2026-41845)
cross-site scripting in spring (CVE-2026-41845). Confidential information can be exposed externally.
|
| CVE-2026-41846 |
|
Cross-Site Scripting (XSS) in spring (CVE-2026-41846)
cross-site scripting in spring (CVE-2026-41846). Confidential information can be exposed externally.
|
| CVE-2026-41847 |
|
Vulnerability in spring (CVE-2026-41847)
vulnerability in spring (CVE-2026-41847). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41848 |
|
Vulnerability in spring (CVE-2026-41848)
vulnerability in spring (CVE-2026-41848). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41838 |
|
Vulnerability in spring (CVE-2026-41838)
vulnerability in spring (CVE-2026-41838). Confidential information can be exposed externally.
|
| CVE-2026-41839 |
|
Vulnerability in spring (CVE-2026-41839)
vulnerability in spring (CVE-2026-41839). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41840 |
|
Vulnerability in spring (CVE-2026-41840)
vulnerability in spring (CVE-2026-41840). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-11603 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-11603)
cross-site scripting in wordpress (CVE-2026-11603). Risk of unauthorized operations or information disclosure.
|