Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

ID Title
CVE-2026-2293 Authorization Flaw in nestjs (CVE-2026-2293)
vulnerability in nestjs (CVE-2026-2293). Successful exploitation can lead to full system takeover.
CVE-2025-11252 SQL Injection in sqli (CVE-2025-11252)
SQL injection in sqli (CVE-2025-11252). Successful exploitation can lead to full system takeover.
CVE-2026-24352 Vulnerability in pluxml (CVE-2026-24352)
vulnerability in pluxml (CVE-2026-24352). Successful exploitation can lead to full system takeover.
CVE-2025-11251 SQL Injection in sqli (CVE-2025-11251)
SQL injection in sqli (CVE-2025-11251). Successful exploitation can lead to full system takeover.
CVE-2026-27148 Vulnerability in storybook (CVE-2026-27148)
vulnerability in storybook (CVE-2026-27148). Successful exploitation can lead to full system takeover.
CVE-2026-27727 Vulnerability in mchange (CVE-2026-27727)
vulnerability in mchange (CVE-2026-27727). Successful exploitation can lead to full system takeover. Exploitable via ``factoryClassLocation``.
CVE-2026-2624 Vulnerability in epati (CVE-2026-2624)
vulnerability in epati (CVE-2026-2624). Successful exploitation can lead to full system takeover.
CVE-2026-27606 Path Traversal in path-traversal (CVE-2026-27606)
path traversal in path-traversal (CVE-2026-27606). Successful exploitation can lead to full system takeover.
CVE-2026-20127 KEV [KEV] Authentication Bypass in Cisco catalyst-sd-wan-controller-and-manager (CVE-2026-20127)
authentication bypass in Cisco catalyst-sd-wan-controller-and-manager (CVE-2026-20127). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
CVE-2026-2807 Out-of-Bounds Write in mozilla (CVE-2026-2807)
out-of-bounds write in mozilla (CVE-2026-2807). Successful exploitation can lead to full system takeover.
CVE-2026-2777 Privilege Escalation in privilege-escalation (CVE-2026-2777)
vulnerability in privilege-escalation (CVE-2026-2777). Successful exploitation can lead to full system takeover.
CVE-2026-2797 Use-after-free in the JavaScript: GC component. This vulnerability affects Firefox < 148.
Use-after-free in the JavaScript: GC component. This vulnerability affects Firefox < 148.
CVE-2026-2773 Buffer Overflow in mozilla (CVE-2026-2773)
vulnerability in mozilla (CVE-2026-2773). Successful exploitation can lead to full system takeover.
CVE-2026-2793 Out-of-Bounds Write in mozilla (CVE-2026-2793)
out-of-bounds write in mozilla (CVE-2026-2793). Successful exploitation can lead to full system takeover.
CVE-2026-2799 Use-after-free in the DOM: Core & HTML component. This vulnerability affects Firefox < 148.
Use-after-free in the DOM: Core & HTML component. This vulnerability affects Firefox < 148.
CVE-2026-2796 Vulnerability in mozilla (CVE-2026-2796)
vulnerability in mozilla (CVE-2026-2796). Successful exploitation can lead to full system takeover.
CVE-2026-2795 Use-after-free in the JavaScript: GC component. This vulnerability affects Firefox < 148.
Use-after-free in the JavaScript: GC component. This vulnerability affects Firefox < 148.
CVE-2026-2792 Out-of-Bounds Write in mozilla (CVE-2026-2792)
out-of-bounds write in mozilla (CVE-2026-2792). Successful exploitation can lead to full system takeover.
CVE-2026-2778 Buffer Overflow in mozilla (CVE-2026-2778)
vulnerability in mozilla (CVE-2026-2778). Successful exploitation can lead to full system takeover.
CVE-2026-2758 Use-After-Free in mozilla (CVE-2026-2758)
vulnerability in mozilla (CVE-2026-2758). Successful exploitation can lead to full system takeover.
CVE-2026-2774 Vulnerability in mozilla (CVE-2026-2774)
vulnerability in mozilla (CVE-2026-2774). Successful exploitation can lead to full system takeover.
CVE-2026-2766 Use-After-Free in mozilla (CVE-2026-2766)
vulnerability in mozilla (CVE-2026-2766). Successful exploitation can lead to full system takeover.
CVE-2026-2760 Vulnerability in mozilla (CVE-2026-2760)
vulnerability in mozilla (CVE-2026-2760). Successful exploitation can lead to full system takeover.
CVE-2026-2757 Vulnerability in mozilla (CVE-2026-2757)
vulnerability in mozilla (CVE-2026-2757). Successful exploitation can lead to full system takeover.
CVE-2026-2762 Vulnerability in mozilla (CVE-2026-2762)
vulnerability in mozilla (CVE-2026-2762). Successful exploitation can lead to full system takeover.
CVE-2026-2771 Out-of-Bounds Read in mozilla (CVE-2026-2771)
vulnerability in mozilla (CVE-2026-2771). Successful exploitation can lead to full system takeover.
CVE-2026-2772 Use-After-Free in mozilla (CVE-2026-2772)
vulnerability in mozilla (CVE-2026-2772). Successful exploitation can lead to full system takeover.
CVE-2026-2761 Vulnerability in mozilla (CVE-2026-2761)
vulnerability in mozilla (CVE-2026-2761). Successful exploitation can lead to full system takeover.
CVE-2026-2776 Buffer Overflow in mozilla (CVE-2026-2776)
vulnerability in mozilla (CVE-2026-2776). Successful exploitation can lead to full system takeover.
CVE-2026-2764 Use-After-Free in mozilla (CVE-2026-2764)
vulnerability in mozilla (CVE-2026-2764). Successful exploitation can lead to full system takeover.
CVE-2026-2765 Use-After-Free in mozilla (CVE-2026-2765)
vulnerability in mozilla (CVE-2026-2765). Successful exploitation can lead to full system takeover.
CVE-2026-2767 Use-After-Free in mozilla (CVE-2026-2767)
vulnerability in mozilla (CVE-2026-2767). Successful exploitation can lead to full system takeover.
CVE-2026-2759 Vulnerability in mozilla (CVE-2026-2759)
vulnerability in mozilla (CVE-2026-2759). Successful exploitation can lead to full system takeover.
CVE-2026-2775 Vulnerability in mozilla (CVE-2026-2775)
vulnerability in mozilla (CVE-2026-2775). Successful exploitation can lead to full system takeover.
CVE-2026-2770 Use-After-Free in mozilla (CVE-2026-2770)
vulnerability in mozilla (CVE-2026-2770). Successful exploitation can lead to full system takeover.
CVE-2026-2763 Use-After-Free in mozilla (CVE-2026-2763)
vulnerability in mozilla (CVE-2026-2763). Successful exploitation can lead to full system takeover.
CVE-2026-2768 Vulnerability in mozilla (CVE-2026-2768)
vulnerability in mozilla (CVE-2026-2768). Successful exploitation can lead to full system takeover.
CVE-2026-2786 Use-After-Free in mozilla (CVE-2026-2786)
vulnerability in mozilla (CVE-2026-2786). Successful exploitation can lead to full system takeover.
CVE-2026-25896 Vulnerability in c (CVE-2026-25896)
vulnerability in c (CVE-2026-25896). Data can be tampered with by attackers. Mitigation: upgrade to `5.3.5` or later.
CVE-2026-26725 Privilege Escalation in edubusinesssolutions (CVE-2026-26725)
vulnerability in edubusinesssolutions (CVE-2026-26725). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `19.76` or later.
CVE-2025-10970 SQL Injection in sqli (CVE-2025-10970)
SQL injection in sqli (CVE-2025-10970). Successful exploitation can lead to full system takeover.
CVE-2026-24834 Vulnerability in c (CVE-2026-24834)
vulnerability in c (CVE-2026-24834). Successful exploitation can lead to full system takeover.
CVE-2025-9953 Vulnerability in sqli (CVE-2025-9953)
vulnerability in sqli (CVE-2025-9953). Successful exploitation can lead to full system takeover.
CVE-2025-8350 Vulnerability in CVE-2025-8350 (CVE-2025-8350)
vulnerability in CVE-2025-8350 (CVE-2025-8350). Successful exploitation can lead to full system takeover.
CVE-2025-13590 Unrestricted File Upload in wso2 (CVE-2025-13590)
vulnerability in wso2 (CVE-2025-13590). Successful exploitation can lead to full system takeover.
CVE-2026-26980 SQL Injection in ghost (CVE-2026-26980)
SQL injection in ghost (CVE-2026-26980). Confidential information can be exposed externally. Mitigation: upgrade to `6.19.1` or later.
CVE-2026-22208 Vulnerability in CVE-2026-22208 (CVE-2026-22208)
vulnerability in CVE-2026-22208 (CVE-2026-22208). Successful exploitation can lead to full system takeover.
CVE-2026-23112 Out-of-Bounds Write in linux (CVE-2026-23112)
out-of-bounds write in linux (CVE-2026-23112). Successful exploitation can lead to full system takeover.
CVE-2025-14014 Unrestricted File Upload in CVE-2025-14014 (CVE-2025-14014)
vulnerability in CVE-2025-14014 (CVE-2025-14014). Successful exploitation can lead to full system takeover.
CVE-2025-10969 SQL Injection in sqli (CVE-2025-10969)
SQL injection in sqli (CVE-2025-10969). Successful exploitation can lead to full system takeover.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →