Sign in Sign up
JA · EN · FR
SecPulse

Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Categories
All 🌐 Web Application 🧭 Browser 🖥️ Operating System 📱 Mobile 🛰️ Network Infrastructure ☁️ Cloud / Container 📝 CMS / Site Builder 🗄️ Database / Storage 🔐 Auth / Identity 🔑 Cryptography 🛠️ DevOps / CI-CD 🤖 AI / ML 🔌 IoT / Embedded 🧩 Hardware / Firmware 🏢 Enterprise SaaS 🧰 Developer Tooling ☠️ Malicious Package 📦 Other
Tag groups
All 💬 Programming Languages 22 🧱 Web Frameworks 29 📱 Mobile Platforms 6 🤖 AI/ML Frameworks 11 🖥️ Web Servers 9 🗄️ Databases 13 📝 CMS 9 ☁️ Cloud Platforms 11 📦 Container Tech 12 🖥️ Operating Systems 15 ⚔️ Attack Types 25 🧬 CWE 185 🏢 Vendors 581 📦 Products 666 🌳 Package Ecosystems 24 🛠️ DevOps Tools 17 📡 Protocols 15
Popular tags (Top 40)
Rootio Linux419 Microsoft386 C237 Java183 Jre178 Java Min178 Bitnami178 Windows177 Rootdebian11175 Rootdebian12151 Linux130 Cwe 20125 Cwe 78120 Linux Kernel106 Cwe 787105 Apple99 Cwe 41699 Cwe 2296 Rootdebian1393 Cwe 11990 Cisco89 Denial of Service85 Cwe 9484 Multiple Products79 Adobe78 Google77 Cwe 50270 Cwe 7966 Cwe 8954 Apache47 Cwe 91844 Cwe 28443 Oracle42 Cwe 28741 JavaScript41 PHP41 Cwe 7740 Chromium V838 Cwe 30638 Cwe 84337
ID Title
CVE-2026-44836 Vulnerability in view_component (CVE-2026-44836)
vulnerability in view_component (CVE-2026-44836). Risk of unauthorized operations or information disclosure. Exploitable via `GET /rails/view_components/my_component/render_with_template`. Mitigation: upgrade to `4.9.0` or later.
CVE-2026-44833 Open Redirect in snipe/snipe-it (CVE-2026-44833)
vulnerability in snipe/snipe-it (CVE-2026-44833). Risk of unauthorized operations or information disclosure. Exploitable via `Referer header`. Mitigation: upgrade to `8.4.1` or later.
GHSA-mv93-w799-cj2w Vulnerability in GitPython (GHSA-mv93-w799-cj2w)
vulnerability in GitPython (GHSA-mv93-w799-cj2w). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `3.1.50` or later.
CVE-2026-45130 Vulnerability in c (CVE-2026-45130)
vulnerability in c (CVE-2026-45130). Risk of unauthorized operations or information disclosure.
CVE-2026-44987 Privilege Escalation in django (CVE-2026-44987)
vulnerability in django (CVE-2026-44987). Risk of unauthorized operations or information disclosure.
CVE-2026-44656 OS Command Injection in CVE-2026-44656 (CVE-2026-44656)
OS command injection in CVE-2026-44656 (CVE-2026-44656). Risk of unauthorized operations or information disclosure.
CVE-2026-44286 SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-44286)
SSRF in ssrf (CVE-2026-44286). Risk of unauthorized operations or information disclosure.
CVE-2026-44284 SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-44284)
SSRF in ssrf (CVE-2026-44284). Risk of unauthorized operations or information disclosure.
CVE-2026-42556 Cross-Site Scripting (XSS) in CVE-2026-42556 (CVE-2026-42556)
cross-site scripting in CVE-2026-42556 (CVE-2026-42556). Confidential information can be exposed externally.
CVE-2026-42456 Information Disclosure in CVE-2026-42456 (CVE-2026-42456)
vulnerability in CVE-2026-42456 (CVE-2026-42456). Risk of unauthorized operations or information disclosure. Exploitable via `GET /api/workspace/`.
CVE-2026-42454 OS Command Injection in docker (CVE-2026-42454)
OS command injection in docker (CVE-2026-42454). Successful exploitation can lead to full system takeover. Exploitable via `GET /docker/containers/`.
CVE-2026-42453 Command Injection in CVE-2026-42453 (CVE-2026-42453)
command injection in CVE-2026-42453 (CVE-2026-42453). Risk of unauthorized operations or information disclosure.
CVE-2026-42452 Vulnerability in CVE-2026-42452 (CVE-2026-42452)
vulnerability in CVE-2026-42452 (CVE-2026-42452). Confidential information can be exposed externally.
CVE-2026-42451 Cross-Site Scripting (XSS) in CVE-2026-42451 (CVE-2026-42451)
cross-site scripting in CVE-2026-42451 (CVE-2026-42451). Confidential information can be exposed externally.
CVE-2026-42354 Vulnerability in sso (CVE-2026-42354)
vulnerability in sso (CVE-2026-42354). Confidential information can be exposed externally. Exploitable via ``Moved``.
CVE-2026-42352 SSRF (Server-Side Request Forgery) in CVE-2026-42352 (CVE-2026-42352)
SSRF in CVE-2026-42352 (CVE-2026-42352). Confidential information can be exposed externally.
CVE-2026-42351 Path Traversal in CVE-2026-42351 (CVE-2026-42351)
path traversal in CVE-2026-42351 (CVE-2026-42351). Confidential information can be exposed externally.
CVE-2026-42350 Open Redirect in CVE-2026-42350 (CVE-2026-42350)
vulnerability in CVE-2026-42350 (CVE-2026-42350). Risk of unauthorized operations or information disclosure.
CVE-2026-42346 SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-42346)
SSRF in ssrf (CVE-2026-42346). Confidential information can be exposed externally.
CVE-2026-42345 SSRF (Server-Side Request Forgery) in CVE-2026-42345 (CVE-2026-42345)
SSRF in CVE-2026-42345 (CVE-2026-42345). Confidential information can be exposed externally.
CVE-2026-42344 Vulnerability in CVE-2026-42344 (CVE-2026-42344)
vulnerability in CVE-2026-42344 (CVE-2026-42344). Confidential information can be exposed externally.
CVE-2026-42343 Vulnerability in dos (CVE-2026-42343)
vulnerability in dos (CVE-2026-42343). Risk of unauthorized operations or information disclosure.
CVE-2026-42339 SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-42339)
SSRF in ssrf (CVE-2026-42339). Risk of unauthorized operations or information disclosure.
CVE-2026-42307 OS Command Injection in CVE-2026-42307 (CVE-2026-42307)
OS command injection in CVE-2026-42307 (CVE-2026-42307). Risk of unauthorized operations or information disclosure.
CVE-2026-42302 Vulnerability in openai-sdk (CVE-2026-42302)
vulnerability in openai-sdk (CVE-2026-42302). Successful exploitation can lead to full system takeover. Exploitable via ``entrypoint.sh``.
CVE-2026-42298 Code Injection in docker (CVE-2026-42298)
code injection in docker (CVE-2026-42298). Successful exploitation can lead to full system takeover. Exploitable via ``GITHUB_TOKEN``. Mitigation: upgrade to `>= 0` or later.
CVE-2026-42291 Vulnerability in CVE-2026-42291 (CVE-2026-42291)
vulnerability in CVE-2026-42291 (CVE-2026-42291). Confidential information can be exposed externally.
CVE-2026-42224 Cross-Site Scripting (XSS) in CVE-2026-42224 (CVE-2026-42224)
cross-site scripting in CVE-2026-42224 (CVE-2026-42224). Successful exploitation can lead to full system takeover.
CVE-2026-41682 Vulnerability in CVE-2026-41682 (CVE-2026-41682)
vulnerability in CVE-2026-41682 (CVE-2026-41682). Risk of unauthorized operations or information disclosure.
CVE-2026-41520 Information Disclosure in CVE-2026-41520 (CVE-2026-41520)
vulnerability in CVE-2026-41520 (CVE-2026-41520). Confidential information can be exposed externally.
CVE-2026-41432 Vulnerability in CVE-2026-41432 (CVE-2026-41432)
vulnerability in CVE-2026-41432 (CVE-2026-41432). Data can be tampered with by attackers.
CVE-2026-44844 Vulnerability in eml_parser (CVE-2026-44844)
vulnerability in eml_parser (CVE-2026-44844). Risk of unauthorized operations or information disclosure. Exploitable via ``RecursionError``. Mitigation: upgrade to `3.0.1` or later.
CVE-2026-44843 Unsafe Deserialization in langchain-core (CVE-2026-44843)
vulnerability in langchain-core (CVE-2026-44843). Risk of unauthorized operations or information disclosure. Exploitable via ``RunnableWithMessageHistory``. Mitigation: upgrade to `0.3.85` or later.
CVE-2023-49316 Vulnerability in phpseclib/phpseclib (CVE-2023-49316)
vulnerability in phpseclib/phpseclib (CVE-2023-49316). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `3.0.34` or later.
CVE-2026-37709 Vulnerability in snipe/snipe-it (CVE-2026-37709)
vulnerability in snipe/snipe-it (CVE-2026-37709). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `8.4.1` or later.
CVE-2026-44330 Authorization Flaw in github.com/free5gc/nef (CVE-2026-44330)
vulnerability in github.com/free5gc/nef (CVE-2026-44330). Risk of unauthorized operations or information disclosure. Exploitable via `GET /applications`.
CVE-2026-44329 Vulnerability in github.com/free5gc/smf (CVE-2026-44329)
vulnerability in github.com/free5gc/smf (CVE-2026-44329). Risk of unauthorized operations or information disclosure. Exploitable via `GET /upi/v1/upNodesLinks`. Mitigation: upgrade to `1.4.3` or later.
CVE-2026-44328 Vulnerability in github.com/free5gc/smf (CVE-2026-44328)
vulnerability in github.com/free5gc/smf (CVE-2026-44328). Risk of unauthorized operations or information disclosure. Exploitable via `DELETE /upi/v1/upNodesLinks/{upNodeRef}`. Mitigation: upgrade to `1.4.3` or later.
CVE-2026-44327 Vulnerability in github.com/free5gc/nef (CVE-2026-44327)
vulnerability in github.com/free5gc/nef (CVE-2026-44327). Risk of unauthorized operations or information disclosure. Exploitable via ``Authorization``.
CVE-2026-44326 Vulnerability in github.com/free5gc/nef (CVE-2026-44326)
vulnerability in github.com/free5gc/nef (CVE-2026-44326). Risk of unauthorized operations or information disclosure. Exploitable via ``Authorization``.
CVE-2026-44325 Vulnerability in github.com/free5gc/nrf (CVE-2026-44325)
vulnerability in github.com/free5gc/nrf (CVE-2026-44325). Risk of unauthorized operations or information disclosure. Exploitable via `POST /oauth2/token`. Mitigation: upgrade to `1.4.3` or later.
CVE-2026-44324 Vulnerability in github.com/free5gc/udr (CVE-2026-44324)
vulnerability in github.com/free5gc/udr (CVE-2026-44324). Risk of unauthorized operations or information disclosure. Exploitable via `DELETE /subscription-data/{ueId}/{servingPlmnId}/ee-subscriptions/{subsId}/amf-subscript`. Mitigation: upgrade to `1.4.3` or later.
CVE-2026-44323 Vulnerability in github.com/free5gc/udr (CVE-2026-44323)
vulnerability in github.com/free5gc/udr (CVE-2026-44323). Risk of unauthorized operations or information disclosure. Exploitable via `DELETE /subscription-data/{ueId}/{servingPlmnId}/ee-subscriptions/{subsId}/amf-subscript`. Mitigation: upgrade to `1.4.3` or later.
CVE-2026-44322 Vulnerability in github.com/free5gc/nef (CVE-2026-44322)
vulnerability in github.com/free5gc/nef (CVE-2026-44322). Risk of unauthorized operations or information disclosure. Exploitable via `PATCH /3gpp-pfd-management/v1/{afId}/transactions/{transId}/applications/{appId}`. Mitigation: upgrade to `1.2.3` or later.
CVE-2026-44321 Vulnerability in github.com/free5gc/smf (CVE-2026-44321)
vulnerability in github.com/free5gc/smf (CVE-2026-44321). Risk of unauthorized operations or information disclosure. Exploitable via `POST /upi/v1/upNodesLinks`.
CVE-2026-44320 Vulnerability in github.com/free5gc/nef (CVE-2026-44320)
vulnerability in github.com/free5gc/nef (CVE-2026-44320). Risk of unauthorized operations or information disclosure. Exploitable via ``NotifId``.
CVE-2026-44319 Vulnerability in github.com/free5gc/nef (CVE-2026-44319)
vulnerability in github.com/free5gc/nef (CVE-2026-44319). Risk of unauthorized operations or information disclosure. Exploitable via `Authorization header`. Mitigation: upgrade to `1.2.3` or later.
CVE-2026-44318 Vulnerability in github.com/free5gc/bsf (CVE-2026-44318)
vulnerability in github.com/free5gc/bsf (CVE-2026-44318). Risk of unauthorized operations or information disclosure. Exploitable via `PUT /nbsf-management/v1/subscriptions/{subId}`. Mitigation: upgrade to `1.0.2` or later.
CVE-2026-44317 Vulnerability in github.com/free5gc/pcf (CVE-2026-44317)
vulnerability in github.com/free5gc/pcf (CVE-2026-44317). Risk of unauthorized operations or information disclosure. Exploitable via `POST /npcf-policyauthorization/v1/app-sessions`. Mitigation: upgrade to `1.4.3` or later.
CVE-2026-44316 Vulnerability in github.com/free5gc/pcf (CVE-2026-44316)
vulnerability in github.com/free5gc/pcf (CVE-2026-44316). Risk of unauthorized operations or information disclosure. Exploitable via `POST /npcf-smpolicycontrol/v1/sm-policies`. Mitigation: upgrade to `1.4.2` or later.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →