Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| MINI-w88g-92m9-f8mw |
|
MINI-w88g-92m9-f8mw |
| MINI-p3f6-vmmw-qhj6 |
|
MINI-p3f6-vmmw-qhj6 |
| MINI-34g8-34gv-3hcp |
|
MINI-34g8-34gv-3hcp |
| MINI-4grc-w528-8cv8 |
|
MINI-4grc-w528-8cv8 |
| MINI-6h49-v86m-rh2f |
|
MINI-6h49-v86m-rh2f |
| CVE-2026-50557 |
|
Cross-Site Scripting (XSS) in @angular/core (CVE-2026-50557)
cross-site scripting in @angular/core (CVE-2026-50557). Risk of unauthorized operations or information disclosure.
|
| MINI-m3mq-hm99-6p3v |
|
MINI-m3mq-hm99-6p3v |
| CVE-2026-50556 |
|
Cross-Site Scripting (XSS) in @angular/platform-server (CVE-2026-50556)
cross-site scripting in @angular/platform-server (CVE-2026-50556). Risk of unauthorized operations or information disclosure. Exploitable via ``domino``.
|
| MINI-fjw7-mppp-wrwc |
|
MINI-fjw7-mppp-wrwc |
| MINI-f62r-r4r4-xpqv |
|
MINI-f62r-r4r4-xpqv |
| MINI-qv59-5g6c-mcjj |
|
MINI-qv59-5g6c-mcjj |
| CVE-2026-50555 |
|
Cross-Site Scripting (XSS) in @angular/platform-server (CVE-2026-50555)
cross-site scripting in @angular/platform-server (CVE-2026-50555). Risk of unauthorized operations or information disclosure. Exploitable via ``domino``.
|
| CVE-2026-53655 |
|
Vulnerability in tar (CVE-2026-53655)
vulnerability in tar (CVE-2026-53655). Data can be tampered with by attackers. Exploitable via ``tar``. Mitigation: upgrade to `7.5.16` or later.
|
| CVE-2026-53632 |
|
Vulnerability in launch-editor (CVE-2026-53632)
vulnerability in launch-editor (CVE-2026-53632). Risk of unauthorized operations or information disclosure. Exploitable via ``smbserver.py``. Mitigation: upgrade to `2.14.1` or later.
|
| CVE-2026-53571 |
|
Path Traversal in vite (CVE-2026-53571)
path traversal in vite (CVE-2026-53571). Confidential information can be exposed externally. Exploitable via ``server.fs.deny``. Mitigation: upgrade to `6.4.3` or later.
|
| MAL-2026-5786 |
|
Vulnerability in @solana-labs/ancor (MAL-2026-5786)
vulnerability in @solana-labs/ancor (MAL-2026-5786). Risk of unauthorized operations or information disclosure. Exploitable via ``process.platform``.
|
| MAL-2026-5787 |
|
Vulnerability in @solana-labs/spl-toke (MAL-2026-5787)
vulnerability in @solana-labs/spl-toke (MAL-2026-5787). Risk of unauthorized operations or information disclosure. Exploitable via ``curl``.
|
| MAL-2026-5788 |
|
Vulnerability in @solana-labs/web3js (MAL-2026-5788)
vulnerability in @solana-labs/web3js (MAL-2026-5788). Risk of unauthorized operations or information disclosure. Exploitable via ``child_process``.
|
| CVE-2026-53550 |
|
Vulnerability in js-yaml (CVE-2026-53550)
vulnerability in js-yaml (CVE-2026-53550). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `3.15.0` or later.
|
| CVE-2026-49356 |
|
Path Traversal in @babel/core (CVE-2026-49356)
path traversal in @babel/core (CVE-2026-49356). Risk of unauthorized operations or information disclosure. Exploitable via ``inputSourceMap``. Mitigation: upgrade to `7.29.6` or later.
|
| CVE-2026-50184 |
|
Information Disclosure in @angular/service-worker (CVE-2026-50184)
vulnerability in @angular/service-worker (CVE-2026-50184). Risk of unauthorized operations or information disclosure. Exploitable via `Authorization header`.
|
| MINI-mw3f-8334-87x4 |
|
MINI-mw3f-8334-87x4 |
| MINI-c9f9-5vf7-x4fh |
|
MINI-c9f9-5vf7-x4fh |
| MINI-xq66-5c4q-q32g |
|
MINI-xq66-5c4q-q32g |
| MINI-c6v4-w2g2-5q6c |
|
MINI-c6v4-w2g2-5q6c |
| MINI-85g5-98wh-xrx3 |
|
MINI-85g5-98wh-xrx3 |
| MINI-qcvj-rh28-3j5p |
|
MINI-qcvj-rh28-3j5p |
| MINI-wcgm-98hf-77g8 |
|
MINI-wcgm-98hf-77g8 |
| MINI-wj8r-g9cq-mr4f |
|
MINI-wj8r-g9cq-mr4f |
| MINI-gwqg-79wv-f2gf |
|
MINI-gwqg-79wv-f2gf |
| MINI-g672-8j6j-fr9q |
|
MINI-g672-8j6j-fr9q |
| MINI-7vx2-pv5p-29r8 |
|
MINI-7vx2-pv5p-29r8 |
| MINI-6c2r-369v-j88w |
|
MINI-6c2r-369v-j88w |
| MINI-mc7v-p52g-pm6x |
|
MINI-mc7v-p52g-pm6x |
| MINI-4xq5-5r59-8rgc |
|
MINI-4xq5-5r59-8rgc |
| CVE-2026-20262 KEV |
|
[KEV] Path Traversal in Cisco catalyst-sd-wan-manager (CVE-2026-20262)
path traversal in Cisco catalyst-sd-wan-manager (CVE-2026-20262). Data can be tampered with by attackers. Listed in CISA KEV — actively exploited.
|
| MINI-39w2-fv6c-jj4j |
|
MINI-39w2-fv6c-jj4j |
| MINI-2h4m-rphm-gvj3 |
|
MINI-2h4m-rphm-gvj3 |
| MINI-fp2c-667h-mxjp |
|
MINI-fp2c-667h-mxjp |
| MINI-hpqr-pjqx-97hp |
|
MINI-hpqr-pjqx-97hp |
| MINI-7cg5-x24f-pcqq |
|
MINI-7cg5-x24f-pcqq |
| CVE-2026-50171 |
|
Vulnerability in @angular/common (CVE-2026-50171)
vulnerability in @angular/common (CVE-2026-50171). Risk of unauthorized operations or information disclosure. Exploitable via ``formatNumber``. Mitigation: upgrade to `21.2.15` or later.
|
| MINI-x3v4-g4xv-5h28 |
|
MINI-x3v4-g4xv-5h28 |
| CVE-2026-50170 |
|
Vulnerability in @angular/common (CVE-2026-50170)
vulnerability in @angular/common (CVE-2026-50170). Confidential information can be exposed externally. Exploitable via ``HttpTransferCache``. Mitigation: upgrade to `21.2.15` or later.
|
| MINI-8vph-7239-phgw |
|
MINI-8vph-7239-phgw |
| CVE-2026-52725 |
|
Cross-Site Scripting (XSS) in @angular/core (CVE-2026-52725)
cross-site scripting in @angular/core (CVE-2026-52725). Risk of unauthorized operations or information disclosure. Exploitable via ``createComponent``. Mitigation: upgrade to `20.3.22` or later.
|
| MINI-47gg-x69p-2m3v |
|
MINI-47gg-x69p-2m3v |
| MINI-8cp4-28x3-gcqq |
|
MINI-8cp4-28x3-gcqq |
| MINI-3jq3-7f4m-28jq |
|
MINI-3jq3-7f4m-28jq |
| MINI-gg99-p77x-2485 |
|
MINI-gg99-p77x-2485 |