Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-46865 |
|
Vulnerability in c (CVE-2026-46865)
vulnerability in c (CVE-2026-46865). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46862 |
|
Vulnerability in c (CVE-2026-46862)
vulnerability in c (CVE-2026-46862). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-46849 |
|
Vulnerability in c (CVE-2026-46849)
vulnerability in c (CVE-2026-46849). Confidential information can be exposed externally.
|
| CVE-2026-46851 |
|
Code Injection in c (CVE-2026-46851)
code injection in c (CVE-2026-46851). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46848 |
|
Vulnerability in c (CVE-2026-46848)
vulnerability in c (CVE-2026-46848). Confidential information can be exposed externally.
|
| CVE-2026-46808 |
|
Vulnerability in c (CVE-2026-46808)
vulnerability in c (CVE-2026-46808). Confidential information can be exposed externally.
|
| CVE-2026-46806 |
|
Open Redirect in c (CVE-2026-46806)
vulnerability in c (CVE-2026-46806). Confidential information can be exposed externally.
|
| CVE-2026-46804 |
|
Privilege Escalation in c (CVE-2026-46804)
vulnerability in c (CVE-2026-46804). Confidential information can be exposed externally.
|
| CVE-2026-46796 |
|
Open Redirect in c (CVE-2026-46796)
vulnerability in c (CVE-2026-46796). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46788 |
|
Vulnerability in c (CVE-2026-46788)
vulnerability in c (CVE-2026-46788). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46791 |
|
Vulnerability in c (CVE-2026-46791)
vulnerability in c (CVE-2026-46791). Confidential information can be exposed externally.
|
| CVE-2026-46787 |
|
Cross-Site Request Forgery (CSRF) in c (CVE-2026-46787)
vulnerability in c (CVE-2026-46787). Confidential information can be exposed externally.
|
| CVE-2026-46780 |
|
Vulnerability in c (CVE-2026-46780)
vulnerability in c (CVE-2026-46780). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46776 |
|
Vulnerability in c (CVE-2026-46776)
vulnerability in c (CVE-2026-46776). Data can be tampered with by attackers.
|
| CVE-2026-35327 |
|
Vulnerability in c (CVE-2026-35327)
vulnerability in c (CVE-2026-35327). Confidential information can be exposed externally.
|
| CVE-2026-35325 |
|
Vulnerability in c (CVE-2026-35325)
vulnerability in c (CVE-2026-35325). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35324 |
|
Vulnerability in c (CVE-2026-35324)
vulnerability in c (CVE-2026-35324). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35326 |
|
Vulnerability in c (CVE-2026-35326)
vulnerability in c (CVE-2026-35326). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46769 |
|
Vulnerability in c (CVE-2026-46769)
vulnerability in c (CVE-2026-46769). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35318 |
|
Vulnerability in c (CVE-2026-35318)
vulnerability in c (CVE-2026-35318). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35322 |
|
Vulnerability in c (CVE-2026-35322)
vulnerability in c (CVE-2026-35322). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35314 |
|
Vulnerability in c (CVE-2026-35314)
vulnerability in c (CVE-2026-35314). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-35315 |
|
Vulnerability in c (CVE-2026-35315)
vulnerability in c (CVE-2026-35315). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35317 |
|
Vulnerability in c (CVE-2026-35317)
vulnerability in c (CVE-2026-35317). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35302 |
|
Open Redirect in c (CVE-2026-35302)
vulnerability in c (CVE-2026-35302). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35303 |
|
Vulnerability in c (CVE-2026-35303)
vulnerability in c (CVE-2026-35303). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35299 |
|
Vulnerability in c (CVE-2026-35299)
vulnerability in c (CVE-2026-35299). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35311 |
|
Vulnerability in c (CVE-2026-35311)
vulnerability in c (CVE-2026-35311). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35295 |
|
Vulnerability in c (CVE-2026-35295)
vulnerability in c (CVE-2026-35295). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35289 |
|
Vulnerability in c (CVE-2026-35289)
vulnerability in c (CVE-2026-35289). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35288 |
|
Privilege Escalation in c (CVE-2026-35288)
vulnerability in c (CVE-2026-35288). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35275 |
|
Vulnerability in c (CVE-2026-35275)
vulnerability in c (CVE-2026-35275). Confidential information can be exposed externally.
|
| CVE-2026-35272 |
|
Privilege Escalation in c (CVE-2026-35272)
vulnerability in c (CVE-2026-35272). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35279 |
|
Vulnerability in c (CVE-2026-35279)
vulnerability in c (CVE-2026-35279). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35274 |
|
Vulnerability in c (CVE-2026-35274)
vulnerability in c (CVE-2026-35274). Confidential information can be exposed externally.
|
| CVE-2026-35276 |
|
Vulnerability in c (CVE-2026-35276)
vulnerability in c (CVE-2026-35276). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35271 |
|
Vulnerability in c (CVE-2026-35271)
vulnerability in c (CVE-2026-35271). Confidential information can be exposed externally.
|
| CVE-2026-35259 |
|
Open Redirect in c (CVE-2026-35259)
vulnerability in c (CVE-2026-35259). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35269 |
|
Vulnerability in c (CVE-2026-35269)
vulnerability in c (CVE-2026-35269). Data can be tampered with by attackers.
|
| CVE-2026-12348 |
|
Vulnerability in CVE-2026-12348 (CVE-2026-12348)
vulnerability in CVE-2026-12348 (CVE-2026-12348). Data can be tampered with by attackers.
|
| CVE-2026-35265 |
|
Vulnerability in c (CVE-2026-35265)
vulnerability in c (CVE-2026-35265). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35267 |
|
Vulnerability in c (CVE-2026-35267)
vulnerability in c (CVE-2026-35267). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35262 |
|
Vulnerability in c (CVE-2026-35262)
vulnerability in c (CVE-2026-35262). Confidential information can be exposed externally.
|
| CVE-2026-35258 |
|
Open Redirect in c (CVE-2026-35258)
vulnerability in c (CVE-2026-35258). Confidential information can be exposed externally.
|
| CVE-2026-9697 |
|
Vulnerability in undici (CVE-2026-9697)
vulnerability in undici (CVE-2026-9697). Confidential information can be exposed externally. Exploitable via ``ProxyAgent``. Mitigation: upgrade to `8.5.0` or later.
|
| CVE-2026-6734 |
|
Vulnerability in undici (CVE-2026-6734)
vulnerability in undici (CVE-2026-6734). Successful exploitation can lead to full system takeover. Exploitable via ``Socks5ProxyAgent``. Mitigation: upgrade to `8.2.0` or later.
|
| CVE-2026-47774 |
|
Vulnerability in dos (CVE-2026-47774)
vulnerability in dos (CVE-2026-47774). Risk of unauthorized operations or information disclosure. Exploitable via `Cookie header`.
|
| CVE-2026-28737 |
|
Cross-Site Scripting (XSS) in code.gitea.io/gitea (CVE-2026-28737)
cross-site scripting in code.gitea.io/gitea (CVE-2026-28737). Confidential information can be exposed externally. Exploitable via ``innerHTML``. Mitigation: upgrade to `1.26.0` or later.
|
| CVE-2026-22555 |
|
Vulnerability in code.gitea.io/gitea (CVE-2026-22555)
vulnerability in code.gitea.io/gitea (CVE-2026-22555). Confidential information can be exposed externally. Exploitable via `POST /api/v1/repos/{owner}/{repo}/forks`. Mitigation: upgrade to `1.26.0` or later.
|
| CVE-2026-54018 |
|
SSRF (Server-Side Request Forgery) in open-webui (CVE-2026-54018)
SSRF in open-webui (CVE-2026-54018). Confidential information can be exposed externally. Mitigation: upgrade to `0.9.6` or later.
|