Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-10129 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-10129)
SSRF in ssrf (CVE-2026-10129). Confidential information can be exposed externally.
|
| CVE-2026-10513 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-10513)
cross-site scripting in wordpress (CVE-2026-10513). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-58370 |
|
Vulnerability in CVE-2026-58370 (CVE-2026-58370)
vulnerability in CVE-2026-58370 (CVE-2026-58370). Successful exploitation can lead to full system takeover.
|
| CVE-2026-58377 |
|
Vulnerability in CVE-2026-58377 (CVE-2026-58377)
vulnerability in CVE-2026-58377 (CVE-2026-58377). Confidential information can be exposed externally.
|
| CVE-2026-58372 |
|
Path Traversal in path-traversal (CVE-2026-58372)
path traversal in path-traversal (CVE-2026-58372). Data can be tampered with by attackers.
|
| CVE-2026-58376 |
|
SQL Injection in sqli (CVE-2026-58376)
SQL injection in sqli (CVE-2026-58376). Confidential information can be exposed externally.
|
| CVE-2026-58375 |
|
Vulnerability in CVE-2026-58375 (CVE-2026-58375)
vulnerability in CVE-2026-58375 (CVE-2026-58375). Confidential information can be exposed externally. Exploitable via `POST /jmreport/auto/export`.
|
| CVE-2026-58169 |
|
Vulnerability in CVE-2026-58169 (CVE-2026-58169)
vulnerability in CVE-2026-58169 (CVE-2026-58169). Successful exploitation can lead to full system takeover. Exploitable via `Host header`.
|
| CVE-2026-58168 |
|
Vulnerability in CVE-2026-58168 (CVE-2026-58168)
vulnerability in CVE-2026-58168 (CVE-2026-58168). Successful exploitation can lead to full system takeover.
|
| CVE-2026-58165 |
|
Vulnerability in privilege-escalation (CVE-2026-58165)
vulnerability in privilege-escalation (CVE-2026-58165). Successful exploitation can lead to full system takeover.
|
| CVE-2026-58170 |
|
Path Traversal in path-traversal (CVE-2026-58170)
path traversal in path-traversal (CVE-2026-58170). Data can be tampered with by attackers.
|
| CVE-2026-48285 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-48285)
SSRF in ssrf (CVE-2026-48285). Confidential information can be exposed externally.
|
| CVE-2026-48307 |
|
Cross-Site Scripting (XSS) in adobe (CVE-2026-48307)
cross-site scripting in adobe (CVE-2026-48307). Successful exploitation can lead to full system takeover.
|
| CVE-2026-49451 |
|
Vulnerability in Microsoft.OpenAPI (CVE-2026-49451)
vulnerability in Microsoft.OpenAPI (CVE-2026-49451). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.7.5` or later.
|
| CVE-2026-58016 |
|
Vulnerability in c (CVE-2026-58016)
vulnerability in c (CVE-2026-58016). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-58014 |
|
Vulnerability in c (CVE-2026-58014)
vulnerability in c (CVE-2026-58014). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8451 |
|
Out-of-Bounds Read in citrix (CVE-2026-8451)
vulnerability in citrix (CVE-2026-8451). Confidential information can be exposed externally.
|
| CVE-2026-53433 |
|
Vulnerability in dos (CVE-2026-53433)
vulnerability in dos (CVE-2026-53433). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-13474 |
|
Vulnerability in dos (CVE-2026-13474)
vulnerability in dos (CVE-2026-13474). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-53432 |
|
Vulnerability in junegunn (CVE-2026-53432)
vulnerability in junegunn (CVE-2026-53432). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10816 |
|
Vulnerability in citrix (CVE-2026-10816)
vulnerability in citrix (CVE-2026-10816). Confidential information can be exposed externally.
|
| CVE-2026-10817 |
|
Out-of-Bounds Read in citrix (CVE-2026-10817)
vulnerability in citrix (CVE-2026-10817). Confidential information can be exposed externally.
|
| CVE-2026-27957 |
|
OS Command Injection in CVE-2026-27957 (CVE-2026-27957)
OS command injection in CVE-2026-27957 (CVE-2026-27957). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `4.0.0-beta.464` or later.
|
| CVE-2026-44946 |
|
Vulnerability in suse (CVE-2026-44946)
vulnerability in suse (CVE-2026-44946). Confidential information can be exposed externally.
|
| CVE-2026-57081 |
|
Vulnerability in CVE-2026-57081 (CVE-2026-57081)
vulnerability in CVE-2026-57081 (CVE-2026-57081). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-57080 |
|
Vulnerability in CVE-2026-57080 (CVE-2026-57080)
vulnerability in CVE-2026-57080 (CVE-2026-57080). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-14161 |
|
Information Disclosure in CVE-2026-14161 (CVE-2026-14161)
vulnerability in CVE-2026-14161 (CVE-2026-14161). Confidential information can be exposed externally.
|
| CVE-2026-49432 |
|
Vulnerability in apache (CVE-2026-49432)
vulnerability in apache (CVE-2026-49432). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-54475 |
|
Vulnerability in apache (CVE-2026-54475)
vulnerability in apache (CVE-2026-54475). Data can be tampered with by attackers.
|
| CVE-2026-53917 |
|
Vulnerability in apache (CVE-2026-53917)
vulnerability in apache (CVE-2026-53917). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-50750 |
|
Vulnerability in apache (CVE-2026-50750)
vulnerability in apache (CVE-2026-50750). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-53916 |
|
Vulnerability in apache (CVE-2026-53916)
vulnerability in apache (CVE-2026-53916). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-50734 |
|
Vulnerability in apache (CVE-2026-50734)
vulnerability in apache (CVE-2026-50734). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-49434 |
|
Vulnerability in apache (CVE-2026-49434)
vulnerability in apache (CVE-2026-49434). Data can be tampered with by attackers.
|
| CVE-2026-49877 |
|
Vulnerability in apache (CVE-2026-49877)
vulnerability in apache (CVE-2026-49877). Confidential information can be exposed externally.
|
| CVE-2026-8141 |
|
Cross-Site Scripting (XSS) in wordpress (CVE-2026-8141)
cross-site scripting in wordpress (CVE-2026-8141). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-7406 |
|
Privilege Escalation in privilege-escalation (CVE-2025-7406)
vulnerability in privilege-escalation (CVE-2025-7406). Successful exploitation can lead to full system takeover.
|
| CVE-2025-24815 |
|
Unrestricted File Upload in CVE-2025-24815 (CVE-2025-24815)
vulnerability in CVE-2025-24815 (CVE-2025-24815). Successful exploitation can lead to full system takeover.
|
| CVE-2026-14164 |
|
Vulnerability in dos (CVE-2026-14164)
vulnerability in dos (CVE-2026-14164). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12240 |
|
Unsafe Deserialization in wordpress (CVE-2026-12240)
vulnerability in wordpress (CVE-2026-12240). Successful exploitation can lead to full system takeover.
|
| CVE-2026-11590 |
|
Vulnerability in wordpress (CVE-2026-11590)
vulnerability in wordpress (CVE-2026-11590). Confidential information can be exposed externally.
|
| CVE-2026-11589 |
|
Vulnerability in wordpress (CVE-2026-11589)
vulnerability in wordpress (CVE-2026-11589). Successful exploitation can lead to full system takeover.
|
| CVE-2026-56808 |
|
OS Command Injection in jvn (CVE-2026-56808)
OS command injection in jvn (CVE-2026-56808). Successful exploitation can lead to full system takeover.
|
| CVE-2026-56137 |
|
OS Command Injection in jvn (CVE-2026-56137)
OS command injection in jvn (CVE-2026-56137). Successful exploitation can lead to full system takeover.
|
| CVE-2026-58302 |
|
Path Traversal in path-traversal (CVE-2026-58302)
path traversal in path-traversal (CVE-2026-58302). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12243 |
|
Path Traversal in path-traversal (CVE-2026-12243)
path traversal in path-traversal (CVE-2026-12243). Confidential information can be exposed externally. Exploitable via ``_UNSAFE_NO_PROTOCOL_RE``.
|
| CVE-2026-8023 |
|
Path Traversal in c (CVE-2026-8023)
path traversal in c (CVE-2026-8023). Confidential information can be exposed externally.
|
| CVE-2026-7656 |
|
Vulnerability in c (CVE-2026-7656)
vulnerability in c (CVE-2026-7656). Data can be tampered with by attackers.
|
| CVE-2026-44840 |
|
Vulnerability in github.com/dgraph-io/dgraph/v25 (CVE-2026-44840)
vulnerability in github.com/dgraph-io/dgraph/v25 (CVE-2026-44840). Confidential information can be exposed externally. Exploitable via ``checkUserPassword``. Mitigation: upgrade to `25.3.4` or later.
|
| CVE-2026-51221 |
|
Vulnerability in dos (CVE-2026-51221)
vulnerability in dos (CVE-2026-51221). Risk of unauthorized operations or information disclosure.
|