Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-44241 |
|
Vulnerability in io.micronaut:micronaut-context (CVE-2026-44241)
vulnerability in io.micronaut:micronaut-context (CVE-2026-44241). Risk of unauthorized operations or information disclosure. Exploitable via ``TimeConverterRegistrar``. Mitigation: upgrade to `3.8.14` or later.
|
| CVE-2026-42268 |
|
Vulnerability in modsecurity (CVE-2026-42268)
vulnerability in modsecurity (CVE-2026-42268). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `3.0.15` or later.
|
| CVE-2026-42544 |
|
Vulnerability in granian (CVE-2026-42544)
vulnerability in granian (CVE-2026-42544). Risk of unauthorized operations or information disclosure. Exploitable via ``Err``. Mitigation: upgrade to `2.7.4` or later.
|
| CVE-2026-42844 |
|
Privilege Escalation in getgrav/grav (CVE-2026-42844)
vulnerability in getgrav/grav (CVE-2026-42844). Successful exploitation can lead to full system takeover. Exploitable via `POST /api/v1/auth/token`. Mitigation: upgrade to `2.0.0-beta.4` or later.
|
| CVE-2026-40863 |
|
Vulnerability in phpoffice/phpspreadsheet (CVE-2026-40863)
vulnerability in phpoffice/phpspreadsheet (CVE-2026-40863). Risk of unauthorized operations or information disclosure. Exploitable via ``cachedHighestRow``. Mitigation: upgrade to `1.30.4` or later.
|
| CVE-2026-40902 |
|
Vulnerability in phpoffice/phpspreadsheet (CVE-2026-40902)
vulnerability in phpoffice/phpspreadsheet (CVE-2026-40902). Risk of unauthorized operations or information disclosure. Exploitable via ``cachedHighestRow``. Mitigation: upgrade to `1.30.4` or later.
|
| CVE-2026-26289 |
|
Authorization Flaw in CVE-2026-26289 (CVE-2026-26289)
vulnerability in CVE-2026-26289 (CVE-2026-26289). Confidential information can be exposed externally.
|
| CVE-2026-44224 |
|
Privilege Escalation in requarks (CVE-2026-44224)
vulnerability in requarks (CVE-2026-44224). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `2.5.313` or later.
|
| CVE-2026-44246 |
|
Vulnerability in dkfz (CVE-2026-44246)
vulnerability in dkfz (CVE-2026-44246). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.4.1` or later.
|
| CVE-2026-44403 |
|
Code Injection in wftpserver (CVE-2026-44403)
code injection in wftpserver (CVE-2026-44403). Successful exploitation can lead to full system takeover.
|
| CVE-2025-65086 |
|
Out-of-Bounds Write in ashlar (CVE-2025-65086)
out-of-bounds write in ashlar (CVE-2025-65086). Successful exploitation can lead to full system takeover.
|
| CVE-2025-65087 |
|
Out-of-Bounds Read in ashlar (CVE-2025-65087)
vulnerability in ashlar (CVE-2025-65087). Successful exploitation can lead to full system takeover.
|
| CVE-2025-65088 |
|
Out-of-Bounds Read in ashlar (CVE-2025-65088)
vulnerability in ashlar (CVE-2025-65088). Successful exploitation can lead to full system takeover.
|
| CVE-2026-7474 |
|
Path Traversal in github.com/hashicorp/nomad (CVE-2026-7474)
path traversal in github.com/hashicorp/nomad (CVE-2026-7474). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `1.11.0-rc.1.0.20260511152149-cd7240c4099a` or later.
|
| CVE-2026-44864 |
|
SQL Injection in sqli (CVE-2026-44864)
SQL injection in sqli (CVE-2026-44864). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44865 |
|
Command Injection in arubanetworks (CVE-2026-44865)
command injection in arubanetworks (CVE-2026-44865). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44866 |
|
Command Injection in arubanetworks (CVE-2026-44866)
command injection in arubanetworks (CVE-2026-44866). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44867 |
|
Command Injection in arubanetworks (CVE-2026-44867)
command injection in arubanetworks (CVE-2026-44867). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44868 |
|
Command Injection in arubanetworks (CVE-2026-44868)
command injection in arubanetworks (CVE-2026-44868). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44869 |
|
Command Injection in arubanetworks (CVE-2026-44869)
command injection in arubanetworks (CVE-2026-44869). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44870 |
|
Command Injection in arubanetworks (CVE-2026-44870)
command injection in arubanetworks (CVE-2026-44870). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44872 |
|
Command Injection in arubanetworks (CVE-2026-44872)
command injection in arubanetworks (CVE-2026-44872). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44854 |
|
Command Injection in arubanetworks (CVE-2026-44854)
command injection in arubanetworks (CVE-2026-44854). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44855 |
|
Vulnerability in arubanetworks (CVE-2026-44855)
vulnerability in arubanetworks (CVE-2026-44855). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44856 |
|
Vulnerability in arubanetworks (CVE-2026-44856)
vulnerability in arubanetworks (CVE-2026-44856). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44857 |
|
Vulnerability in arubanetworks (CVE-2026-44857)
vulnerability in arubanetworks (CVE-2026-44857). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44858 |
|
Vulnerability in arubanetworks (CVE-2026-44858)
vulnerability in arubanetworks (CVE-2026-44858). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44859 |
|
Vulnerability in arubanetworks (CVE-2026-44859)
vulnerability in arubanetworks (CVE-2026-44859). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44860 |
|
SQL Injection in sqli (CVE-2026-44860)
SQL injection in sqli (CVE-2026-44860). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44861 |
|
SQL Injection in sqli (CVE-2026-44861)
SQL injection in sqli (CVE-2026-44861). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44862 |
|
SQL Injection in sqli (CVE-2026-44862)
SQL injection in sqli (CVE-2026-44862). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44863 |
|
SQL Injection in sqli (CVE-2026-44863)
SQL injection in sqli (CVE-2026-44863). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44852 |
|
Vulnerability in arubanetworks (CVE-2026-44852)
vulnerability in arubanetworks (CVE-2026-44852). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44853 |
|
Command Injection in arubanetworks (CVE-2026-44853)
command injection in arubanetworks (CVE-2026-44853). Successful exploitation can lead to full system takeover.
|
| CVE-2026-34686 |
|
Cross-Site Scripting (XSS) in adobe (CVE-2026-34686)
cross-site scripting in adobe (CVE-2026-34686). Confidential information can be exposed externally.
|
| CVE-2026-34690 |
|
Vulnerability in adobe (CVE-2026-34690)
vulnerability in adobe (CVE-2026-34690). Successful exploitation can lead to full system takeover.
|
| CVE-2026-34665 |
|
Vulnerability in adobe (CVE-2026-34665)
vulnerability in adobe (CVE-2026-34665). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34650 |
|
Vulnerability in adobe (CVE-2026-34650)
vulnerability in adobe (CVE-2026-34650). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34651 |
|
Vulnerability in adobe (CVE-2026-34651)
vulnerability in adobe (CVE-2026-34651). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34652 |
|
Vulnerability in adobe (CVE-2026-34652)
vulnerability in adobe (CVE-2026-34652). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34653 |
|
Path Traversal in path-traversal (CVE-2026-34653)
path traversal in path-traversal (CVE-2026-34653). Confidential information can be exposed externally.
|
| CVE-2026-34645 |
|
Authorization Flaw in adobe (CVE-2026-34645)
vulnerability in adobe (CVE-2026-34645). Data can be tampered with by attackers.
|
| CVE-2026-34646 |
|
Authorization Flaw in adobe (CVE-2026-34646)
vulnerability in adobe (CVE-2026-34646). Data can be tampered with by attackers.
|
| CVE-2026-34647 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-34647)
SSRF in ssrf (CVE-2026-34647). Confidential information can be exposed externally.
|
| CVE-2026-34648 |
|
Vulnerability in adobe (CVE-2026-34648)
vulnerability in adobe (CVE-2026-34648). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34649 |
|
Vulnerability in adobe (CVE-2026-34649)
vulnerability in adobe (CVE-2026-34649). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-23824 |
|
Vulnerability in arubanetworks (CVE-2026-23824)
vulnerability in arubanetworks (CVE-2026-23824). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-23825 |
|
Vulnerability in arubanetworks (CVE-2026-23825)
vulnerability in arubanetworks (CVE-2026-23825). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-23826 |
|
Vulnerability in arubanetworks (CVE-2026-23826)
vulnerability in arubanetworks (CVE-2026-23826). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-23827 |
|
Vulnerability in dos (CVE-2026-23827)
vulnerability in dos (CVE-2026-23827). Risk of unauthorized operations or information disclosure.
|