Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

KEV

Categories

All 🌐 Web Application 🧭 Browser 🖥️ Operating System 📱 Mobile 🛰️ Network Infrastructure ☁️ Cloud / Container 📝 CMS / Site Builder 🗄️ Database / Storage 🔐 Auth / Identity 🔑 Cryptography 🛠️ DevOps / CI-CD 🤖 AI / ML 🔌 IoT / Embedded 🧩 Hardware / Firmware 🏢 Enterprise SaaS 🧰 Developer Tooling ☠️ Malicious Package 📦 Other

Tag groups

All 💬 Programming Languages 22 🧱 Web Frameworks 29 📱 Mobile Platforms 6 🤖 AI/ML Frameworks 11 🖥️ Web Servers 9 🗄️ Databases 13 📝 CMS 9 ☁️ Cloud Platforms 11 📦 Container Tech 12 🖥️ Operating Systems 15 ⚔️ Attack Types 25 🧬 CWE 185 🏢 Vendors 581 📦 Products 666 🌳 Package Ecosystems 24 🛠️ DevOps Tools 17 📡 Protocols 15

Popular tags (Top 40)

Rootio Linux419 Microsoft386 C237 Java183 Jre178 Java Min178 Bitnami178 Windows177 Rootdebian11175 Rootdebian12151 Linux130 Cwe 20125 Cwe 78120 Linux Kernel106 Cwe 787105 Apple99 Cwe 41699 Cwe 2296 Rootdebian1393 Cwe 11990 Cisco89 Denial of Service85 Cwe 9484 Multiple Products79 Adobe78 Google77 Cwe 50270 Cwe 7966 Cwe 8954 Apache47 Cwe 91844 Cwe 28443 Oracle42 Cwe 28741 JavaScript41 PHP41 Cwe 7740 Chromium V838 Cwe 30638 Cwe 84337

ID	Title	Severity	Tags	Detected
MINI-5xh8-2xgr-qrf2	MINI-5xh8-2xgr-qrf2			1 week ago
MINI-59g8-r34c-ccpw	MINI-59g8-r34c-ccpw			1 week ago
MINI-4m6h-3p34-39cj	MINI-4m6h-3p34-39cj			1 week ago
MINI-4h8h-6mhw-pc24	MINI-4h8h-6mhw-pc24			1 week ago
MINI-4887-9c5f-3457	MINI-4887-9c5f-3457			1 week ago
MINI-438x-3838-rh2v	MINI-438x-3838-rh2v			1 week ago
MINI-2gvx-2fqj-26xx	MINI-2gvx-2fqj-26xx			1 week ago
MINI-3v7x-qpp2-8r93	MINI-3v7x-qpp2-8r93			1 week ago
MINI-vxpj-vfjc-9f5j	MINI-vxpj-vfjc-9f5j			1 week ago
MINI-v8qp-q85m-cq4v	MINI-v8qp-q85m-cq4v			1 week ago
MINI-hxjv-5v38-m2c2	MINI-hxjv-5v38-m2c2			1 week ago
MINI-9x9m-8f43-wcm4	MINI-9x9m-8f43-wcm4			1 week ago
JLSEC-2026-575	Vulnerability in Nettle_jll (JLSEC-2026-575) vulnerability in Nettle_jll (JLSEC-2026-575). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `3.7.2+0` or later.			1 week ago
JLSEC-2026-576	Vulnerability in Nettle_jll (JLSEC-2026-576) vulnerability in Nettle_jll (JLSEC-2026-576). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `3.9.1+0` or later.			1 week ago
ROOT-OS-DEBIAN-11-CVE-2026-46252	Vulnerability in rootio-linux (ROOT-OS-DEBIAN-11-CVE-2026-46252) vulnerability in rootio-linux (ROOT-OS-DEBIAN-11-CVE-2026-46252). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `5.10.257-1.root.io.95, 5.10.257-1.root.io.96, 5.10.257-1.root.io.97, 5.10.257-1.root.io.98, 5.10.257-1.root.io.99` or later.			1 week ago
CVE-2026-9281	Cross-Site Scripting (XSS) in wordpress (CVE-2026-9281) cross-site scripting in wordpress (CVE-2026-9281). Risk of unauthorized operations or information disclosure.	Medium	PHP JavaScript WordPress Cross-Site Scripting +1	1 week ago
CVE-2026-9008	Vulnerability in wordpress (CVE-2026-9008) vulnerability in wordpress (CVE-2026-9008). Risk of unauthorized operations or information disclosure.	Medium	WordPress Cwe 862	1 week ago
CVE-2026-8901	Cross-Site Scripting (XSS) in wordpress (CVE-2026-8901) cross-site scripting in wordpress (CVE-2026-8901). Risk of unauthorized operations or information disclosure.	High	WordPress Cross-Site Scripting Cwe 79	1 week ago
CVE-2026-8438	Cross-Site Scripting (XSS) in wordpress (CVE-2026-8438) cross-site scripting in wordpress (CVE-2026-8438). Risk of unauthorized operations or information disclosure.	High	JavaScript WordPress Cross-Site Scripting Cwe 79	1 week ago
ROOT-APP-GOBINARY-GHSA-fw8g-cg8f-9j28	Vulnerability in rootio-github.com/prometheus/prometheus (ROOT-APP-GOBINARY-GHSA-fw8g-cg8f-9j28) vulnerability in rootio-github.com/prometheus/prometheus (ROOT-APP-GOBINARY-GHSA-fw8g-cg8f-9j28). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `v0.303.0-root.io.2` or later.			1 week ago
CGA-hmp2-jmvh-v67h	CGA-hmp2-jmvh-v67h			1 week ago
OSV-2026-863	Vulnerability in htslib (OSV-2026-863) vulnerability in htslib (OSV-2026-863). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1b3225f11b7bb55781ad7927f3ef343bc810a21d, d94071f3dd9613ab66f177e1237660855a56f0ed` or later.			1 week ago
CVE-2026-9719	Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-9719) vulnerability in wordpress (CVE-2026-9719). Risk of unauthorized operations or information disclosure.	Medium	WordPress Cwe 352	1 week ago
CVE-2026-9290	Path Traversal in wordpress (CVE-2026-9290) path traversal in wordpress (CVE-2026-9290). Confidential information can be exposed externally.	High	PHP WordPress Cwe 22	1 week ago
CVE-2026-8976	Vulnerability in wordpress (CVE-2026-8976) vulnerability in wordpress (CVE-2026-8976). Risk of unauthorized operations or information disclosure.	Medium	WordPress Cwe 862	1 week ago
CVE-2026-8900	Cross-Site Scripting (XSS) in wordpress (CVE-2026-8900) cross-site scripting in wordpress (CVE-2026-8900). Risk of unauthorized operations or information disclosure.	Medium	WordPress Cross-Site Scripting Cwe 79	1 week ago
CVE-2026-8893	Cross-Site Scripting (XSS) in wordpress (CVE-2026-8893) cross-site scripting in wordpress (CVE-2026-8893). Risk of unauthorized operations or information disclosure.	Medium	WordPress Express Cross-Site Scripting Cwe 79	1 week ago
CVE-2026-8608	Vulnerability in wordpress (CVE-2026-8608) vulnerability in wordpress (CVE-2026-8608). Risk of unauthorized operations or information disclosure.	Medium	WordPress Cwe 345	1 week ago
CVE-2026-7047	Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-7047) vulnerability in wordpress (CVE-2026-7047). Risk of unauthorized operations or information disclosure.	Medium	WordPress Cwe 352	1 week ago
CVE-2026-6448	SQL Injection in wordpress (CVE-2026-6448) SQL injection in wordpress (CVE-2026-6448). Confidential information can be exposed externally.	Medium	WordPress SQL Injection Cwe 89	1 week ago
CVE-2026-6242	Vulnerability in CVE-2026-6242 (CVE-2026-6242) vulnerability in CVE-2026-6242 (CVE-2026-6242). Risk of unauthorized operations or information disclosure.		Cwe 134	1 week ago
CVE-2026-6241	Vulnerability in dos (CVE-2026-6241) vulnerability in dos (CVE-2026-6241). Risk of unauthorized operations or information disclosure.		Denial of Service Cwe 134	1 week ago
CVE-2026-6240	Vulnerability in dos (CVE-2026-6240) vulnerability in dos (CVE-2026-6240). Risk of unauthorized operations or information disclosure.		Denial of Service Cwe 121	1 week ago
CVE-2026-6239	Vulnerability in dos (CVE-2026-6239) vulnerability in dos (CVE-2026-6239). Risk of unauthorized operations or information disclosure.		Denial of Service Cwe 121	1 week ago
CVE-2026-34123	Authentication Bypass in CVE-2026-34123 (CVE-2026-34123) authentication bypass in CVE-2026-34123 (CVE-2026-34123). Risk of unauthorized operations or information disclosure.		Cwe 287	1 week ago
CVE-2026-10038	Vulnerability in wordpress (CVE-2026-10038) vulnerability in wordpress (CVE-2026-10038). Risk of unauthorized operations or information disclosure.	Medium	WordPress Cwe 639	1 week ago
CVE-2025-12656	Vulnerability in wordpress (CVE-2025-12656) vulnerability in wordpress (CVE-2025-12656). Risk of unauthorized operations or information disclosure.	Low	WordPress Cwe 73	1 week ago
CVE-2026-7654	Unsafe Deserialization in wordpress (CVE-2026-7654) vulnerability in wordpress (CVE-2026-7654). Successful exploitation can lead to full system takeover. Exploitable via ``allowed_classes``.	High	PHP WordPress Remote Code Execution Cwe 502	1 week ago
CVE-2026-7523	Vulnerability in wordpress (CVE-2026-7523) vulnerability in wordpress (CVE-2026-7523). Risk of unauthorized operations or information disclosure.	Medium	WordPress Cwe 862	1 week ago
DEBIAN-CVE-2026-45409	Vulnerability in python-idna (DEBIAN-CVE-2026-45409) vulnerability in python-idna (DEBIAN-CVE-2026-45409). Risk of unauthorized operations or information disclosure. Exploitable via ``valid_contexto``.			1 week ago
CVE-2026-11431	Path Traversal in path-traversal (CVE-2026-11431) path traversal in path-traversal (CVE-2026-11431). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `8.1.1` or later.		Path Traversal Cwe 22 Cwe 200	1 week ago
CVE-2026-11429	Path Traversal in path-traversal (CVE-2026-11429) path traversal in path-traversal (CVE-2026-11429). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `8.1.1` or later.		Remote Code Execution Path Traversal Cwe 22 Cwe 94 +1	1 week ago
CVE-2026-11424	Information Disclosure in ssrf (CVE-2026-11424) vulnerability in ssrf (CVE-2026-11424). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `8.1.1` or later.		Server-Side Request Forgery Cwe 200 Cwe 918	1 week ago
CVE-2026-11416	Path Traversal in path-traversal (CVE-2026-11416) path traversal in path-traversal (CVE-2026-11416). Data can be tampered with by attackers.	High	Path Traversal Cwe 22	1 week ago
MAL-2026-5273	Vulnerability in anthropy (MAL-2026-5273) vulnerability in anthropy (MAL-2026-5273). Risk of unauthorized operations or information disclosure. Exploitable via ``anthropy``.			1 week ago
MINI-76vr-gm9x-7v6q	MINI-76vr-gm9x-7v6q			1 week ago
DEBIAN-CVE-2026-11099	DEBIAN-CVE-2026-11099			1 week ago
DEBIAN-CVE-2026-11053	DEBIAN-CVE-2026-11053			1 week ago
CVE-2026-47732	Vulnerability in twig/twig (CVE-2026-47732) vulnerability in twig/twig (CVE-2026-47732). Risk of unauthorized operations or information disclosure. Exploitable via ``SandboxNodeVisitor``. Mitigation: upgrade to `3.26.0` or later.			1 week ago
CVE-2026-47730	Cross-Site Scripting (XSS) in twig/twig (CVE-2026-47730) cross-site scripting in twig/twig (CVE-2026-47730). Risk of unauthorized operations or information disclosure. Exploitable via ``ArrayLoader``. Mitigation: upgrade to `3.26.0` or later.			1 week ago

Vulnerabilities

🍪 About cookies