Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-2293 |
|
Authorization Flaw in nestjs (CVE-2026-2293)
vulnerability in nestjs (CVE-2026-2293). Successful exploitation can lead to full system takeover.
|
| CVE-2025-11252 |
|
SQL Injection in sqli (CVE-2025-11252)
SQL injection in sqli (CVE-2025-11252). Successful exploitation can lead to full system takeover.
|
| CVE-2026-24352 |
|
Vulnerability in pluxml (CVE-2026-24352)
vulnerability in pluxml (CVE-2026-24352). Successful exploitation can lead to full system takeover.
|
| CVE-2025-11251 |
|
SQL Injection in sqli (CVE-2025-11251)
SQL injection in sqli (CVE-2025-11251). Successful exploitation can lead to full system takeover.
|
| CVE-2026-27148 |
|
Vulnerability in storybook (CVE-2026-27148)
vulnerability in storybook (CVE-2026-27148). Successful exploitation can lead to full system takeover.
|
| CVE-2026-27727 |
|
Vulnerability in mchange (CVE-2026-27727)
vulnerability in mchange (CVE-2026-27727). Successful exploitation can lead to full system takeover. Exploitable via ``factoryClassLocation``.
|
| CVE-2026-2624 |
|
Vulnerability in epati (CVE-2026-2624)
vulnerability in epati (CVE-2026-2624). Successful exploitation can lead to full system takeover.
|
| CVE-2026-27606 |
|
Path Traversal in path-traversal (CVE-2026-27606)
path traversal in path-traversal (CVE-2026-27606). Successful exploitation can lead to full system takeover.
|
| CVE-2026-20127 KEV |
|
[KEV] Authentication Bypass in Cisco catalyst-sd-wan-controller-and-manager (CVE-2026-20127)
authentication bypass in Cisco catalyst-sd-wan-controller-and-manager (CVE-2026-20127). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
|
| CVE-2026-2807 |
|
Out-of-Bounds Write in mozilla (CVE-2026-2807)
out-of-bounds write in mozilla (CVE-2026-2807). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2777 |
|
Privilege Escalation in privilege-escalation (CVE-2026-2777)
vulnerability in privilege-escalation (CVE-2026-2777). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2797 |
|
Use-after-free in the JavaScript: GC component. This vulnerability affects Firefox < 148.
Use-after-free in the JavaScript: GC component. This vulnerability affects Firefox < 148.
|
| CVE-2026-2773 |
|
Buffer Overflow in mozilla (CVE-2026-2773)
vulnerability in mozilla (CVE-2026-2773). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2793 |
|
Out-of-Bounds Write in mozilla (CVE-2026-2793)
out-of-bounds write in mozilla (CVE-2026-2793). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2799 |
|
Use-after-free in the DOM: Core & HTML component. This vulnerability affects Firefox < 148.
Use-after-free in the DOM: Core & HTML component. This vulnerability affects Firefox < 148.
|
| CVE-2026-2796 |
|
Vulnerability in mozilla (CVE-2026-2796)
vulnerability in mozilla (CVE-2026-2796). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2795 |
|
Use-after-free in the JavaScript: GC component. This vulnerability affects Firefox < 148.
Use-after-free in the JavaScript: GC component. This vulnerability affects Firefox < 148.
|
| CVE-2026-2792 |
|
Out-of-Bounds Write in mozilla (CVE-2026-2792)
out-of-bounds write in mozilla (CVE-2026-2792). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2778 |
|
Buffer Overflow in mozilla (CVE-2026-2778)
vulnerability in mozilla (CVE-2026-2778). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2758 |
|
Use-After-Free in mozilla (CVE-2026-2758)
vulnerability in mozilla (CVE-2026-2758). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2774 |
|
Vulnerability in mozilla (CVE-2026-2774)
vulnerability in mozilla (CVE-2026-2774). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2766 |
|
Use-After-Free in mozilla (CVE-2026-2766)
vulnerability in mozilla (CVE-2026-2766). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2760 |
|
Vulnerability in mozilla (CVE-2026-2760)
vulnerability in mozilla (CVE-2026-2760). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2757 |
|
Vulnerability in mozilla (CVE-2026-2757)
vulnerability in mozilla (CVE-2026-2757). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2762 |
|
Vulnerability in mozilla (CVE-2026-2762)
vulnerability in mozilla (CVE-2026-2762). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2771 |
|
Out-of-Bounds Read in mozilla (CVE-2026-2771)
vulnerability in mozilla (CVE-2026-2771). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2772 |
|
Use-After-Free in mozilla (CVE-2026-2772)
vulnerability in mozilla (CVE-2026-2772). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2761 |
|
Vulnerability in mozilla (CVE-2026-2761)
vulnerability in mozilla (CVE-2026-2761). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2776 |
|
Buffer Overflow in mozilla (CVE-2026-2776)
vulnerability in mozilla (CVE-2026-2776). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2764 |
|
Use-After-Free in mozilla (CVE-2026-2764)
vulnerability in mozilla (CVE-2026-2764). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2765 |
|
Use-After-Free in mozilla (CVE-2026-2765)
vulnerability in mozilla (CVE-2026-2765). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2767 |
|
Use-After-Free in mozilla (CVE-2026-2767)
vulnerability in mozilla (CVE-2026-2767). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2759 |
|
Vulnerability in mozilla (CVE-2026-2759)
vulnerability in mozilla (CVE-2026-2759). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2775 |
|
Vulnerability in mozilla (CVE-2026-2775)
vulnerability in mozilla (CVE-2026-2775). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2770 |
|
Use-After-Free in mozilla (CVE-2026-2770)
vulnerability in mozilla (CVE-2026-2770). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2763 |
|
Use-After-Free in mozilla (CVE-2026-2763)
vulnerability in mozilla (CVE-2026-2763). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2768 |
|
Vulnerability in mozilla (CVE-2026-2768)
vulnerability in mozilla (CVE-2026-2768). Successful exploitation can lead to full system takeover.
|
| CVE-2026-2786 |
|
Use-After-Free in mozilla (CVE-2026-2786)
vulnerability in mozilla (CVE-2026-2786). Successful exploitation can lead to full system takeover.
|
| CVE-2026-25896 |
|
Vulnerability in c (CVE-2026-25896)
vulnerability in c (CVE-2026-25896). Data can be tampered with by attackers. Mitigation: upgrade to `5.3.5` or later.
|
| CVE-2026-26725 |
|
Privilege Escalation in edubusinesssolutions (CVE-2026-26725)
vulnerability in edubusinesssolutions (CVE-2026-26725). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `19.76` or later.
|
| CVE-2025-10970 |
|
SQL Injection in sqli (CVE-2025-10970)
SQL injection in sqli (CVE-2025-10970). Successful exploitation can lead to full system takeover.
|
| CVE-2026-24834 |
|
Vulnerability in c (CVE-2026-24834)
vulnerability in c (CVE-2026-24834). Successful exploitation can lead to full system takeover.
|
| CVE-2025-9953 |
|
Vulnerability in sqli (CVE-2025-9953)
vulnerability in sqli (CVE-2025-9953). Successful exploitation can lead to full system takeover.
|
| CVE-2025-8350 |
|
Vulnerability in CVE-2025-8350 (CVE-2025-8350)
vulnerability in CVE-2025-8350 (CVE-2025-8350). Successful exploitation can lead to full system takeover.
|
| CVE-2025-13590 |
|
Unrestricted File Upload in wso2 (CVE-2025-13590)
vulnerability in wso2 (CVE-2025-13590). Successful exploitation can lead to full system takeover.
|
| CVE-2026-26980 |
|
SQL Injection in ghost (CVE-2026-26980)
SQL injection in ghost (CVE-2026-26980). Confidential information can be exposed externally. Mitigation: upgrade to `6.19.1` or later.
|
| CVE-2026-22208 |
|
Vulnerability in CVE-2026-22208 (CVE-2026-22208)
vulnerability in CVE-2026-22208 (CVE-2026-22208). Successful exploitation can lead to full system takeover.
|
| CVE-2026-23112 |
|
Out-of-Bounds Write in linux (CVE-2026-23112)
out-of-bounds write in linux (CVE-2026-23112). Successful exploitation can lead to full system takeover.
|
| CVE-2025-14014 |
|
Unrestricted File Upload in CVE-2025-14014 (CVE-2025-14014)
vulnerability in CVE-2025-14014 (CVE-2025-14014). Successful exploitation can lead to full system takeover.
|
| CVE-2025-10969 |
|
SQL Injection in sqli (CVE-2025-10969)
SQL injection in sqli (CVE-2025-10969). Successful exploitation can lead to full system takeover.
|