Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-45833 |
|
Code Injection in trychroma (CVE-2026-45833)
code injection in trychroma (CVE-2026-45833). Successful exploitation can lead to full system takeover.
|
| CVE-2026-45832 |
|
Vulnerability in trychroma (CVE-2026-45832)
vulnerability in trychroma (CVE-2026-45832). Successful exploitation can lead to full system takeover.
|
| CVE-2026-45831 |
|
Authorization Flaw in trychroma (CVE-2026-45831)
vulnerability in trychroma (CVE-2026-45831). Successful exploitation can lead to full system takeover.
|
| CVE-2026-45830 |
|
Vulnerability in trychroma (CVE-2026-45830)
vulnerability in trychroma (CVE-2026-45830). Successful exploitation can lead to full system takeover.
|
| CVE-2026-7368 |
|
Vulnerability in CVE-2026-7368 (CVE-2026-7368)
vulnerability in CVE-2026-7368 (CVE-2026-7368). Confidential information can be exposed externally.
|
| CVE-2026-6211 |
|
Unrestricted File Upload in CVE-2026-6211 (CVE-2026-6211)
vulnerability in CVE-2026-6211 (CVE-2026-6211). Confidential information can be exposed externally.
|
| CVE-2026-53721 |
|
Vulnerability in nuxt (CVE-2026-53721)
vulnerability in nuxt (CVE-2026-53721). Confidential information can be exposed externally. Exploitable via ``routeRules``. Mitigation: upgrade to `3.21.7` or later.
|
| CVE-2026-12066 |
|
Vulnerability in CVE-2026-12066 (CVE-2026-12066)
vulnerability in CVE-2026-12066 (CVE-2026-12066). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-50645 |
|
Vulnerability in apache (CVE-2026-50645)
vulnerability in apache (CVE-2026-50645). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-50633 |
|
Vulnerability in apache (CVE-2026-50633)
vulnerability in apache (CVE-2026-50633). Successful exploitation can lead to full system takeover.
|
| CVE-2026-50632 |
|
Vulnerability in apache (CVE-2026-50632)
vulnerability in apache (CVE-2026-50632). Successful exploitation can lead to full system takeover.
|
| CVE-2026-50631 |
|
Vulnerability in apache (CVE-2026-50631)
vulnerability in apache (CVE-2026-50631). Confidential information can be exposed externally.
|
| CVE-2026-11846 |
|
Path Traversal in CVE-2026-11846 (CVE-2026-11846)
path traversal in CVE-2026-11846 (CVE-2026-11846). Data can be tampered with by attackers.
|
| CVE-2026-11845 |
|
OS Command Injection in CVE-2026-11845 (CVE-2026-11845)
OS command injection in CVE-2026-11845 (CVE-2026-11845). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12059 |
|
Vulnerability in CVE-2026-12059 (CVE-2026-12059)
vulnerability in CVE-2026-12059 (CVE-2026-12059). Successful exploitation can lead to full system takeover.
|
| CVE-2026-45169 |
|
Vulnerability in dos (CVE-2026-45169)
vulnerability in dos (CVE-2026-45169). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48612 |
|
Cross-Site Request Forgery (CSRF) in CVE-2026-48612 (CVE-2026-48612)
vulnerability in CVE-2026-48612 (CVE-2026-48612). Successful exploitation can lead to full system takeover.
|
| CVE-2026-48610 |
|
Vulnerability in CVE-2026-48610 (CVE-2026-48610)
vulnerability in CVE-2026-48610 (CVE-2026-48610). Successful exploitation can lead to full system takeover.
|
| CVE-2026-47368 |
|
Path Traversal in path-traversal (CVE-2026-47368)
path traversal in path-traversal (CVE-2026-47368). Confidential information can be exposed externally.
|
| CVE-2026-47366 |
|
Vulnerability in privilege-escalation (CVE-2026-47366)
vulnerability in privilege-escalation (CVE-2026-47366). Successful exploitation can lead to full system takeover.
|
| CVE-2025-7737 |
|
Vulnerability in jvn (CVE-2025-7737)
vulnerability in jvn (CVE-2025-7737). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-45170 |
|
Vulnerability in paloaltonetworks (CVE-2026-45170)
vulnerability in paloaltonetworks (CVE-2026-45170). Successful exploitation can lead to full system takeover.
|
| CVE-2026-11933 |
|
A use-after-free vulnerability exists in MongoDB Server's server-side JavaScript engine when...
A use-after-free vulnerability exists in MongoDB Server's server-side JavaScript engine when...
|
| CVE-2026-45418 |
|
SQL Injection in sqli (CVE-2026-45418)
SQL injection in sqli (CVE-2026-45418). Successful exploitation can lead to full system takeover. Exploitable via `POST /actions/subtitle_edit.php`.
|
| CVE-2026-6250 |
|
Vulnerability in tp-link (CVE-2026-6250)
vulnerability in tp-link (CVE-2026-6250). Data can be tampered with by attackers.
|
| CVE-2026-45174 |
|
Vulnerability in paloaltonetworks (CVE-2026-45174)
vulnerability in paloaltonetworks (CVE-2026-45174). Successful exploitation can lead to full system takeover.
|
| CVE-2026-45172 |
|
OS Command Injection in paloaltonetworks (CVE-2026-45172)
OS command injection in paloaltonetworks (CVE-2026-45172). Successful exploitation can lead to full system takeover.
|
| CVE-2026-45171 |
|
Path Traversal in paloaltonetworks (CVE-2026-45171)
path traversal in paloaltonetworks (CVE-2026-45171). Successful exploitation can lead to full system takeover.
|
| CVE-2026-42653 |
|
Cross-Site Scripting (XSS) in CVE-2026-42653 (CVE-2026-42653)
cross-site scripting in CVE-2026-42653 (CVE-2026-42653). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12035 |
|
Use-After-Free in google (CVE-2026-12035)
vulnerability in google (CVE-2026-12035). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12034 |
|
Vulnerability in Google chrome (CVE-2026-12034)
vulnerability in Google chrome (CVE-2026-12034). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12031 |
|
Vulnerability in google (CVE-2026-12031)
vulnerability in google (CVE-2026-12031). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12030 |
|
Vulnerability in google (CVE-2026-12030)
vulnerability in google (CVE-2026-12030). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12029 |
|
Use-After-Free in google (CVE-2026-12029)
vulnerability in google (CVE-2026-12029). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12028 |
|
Use-After-Free in google (CVE-2026-12028)
vulnerability in google (CVE-2026-12028). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12023 |
|
Use-After-Free in google (CVE-2026-12023)
vulnerability in google (CVE-2026-12023). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12022 |
|
Vulnerability in google (CVE-2026-12022)
vulnerability in google (CVE-2026-12022). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12020 |
|
Use-After-Free in google (CVE-2026-12020)
vulnerability in google (CVE-2026-12020). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12019 |
|
Out-of-Bounds Write in google (CVE-2026-12019)
out-of-bounds write in google (CVE-2026-12019). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12018 |
|
Privilege Escalation in privilege-escalation (CVE-2026-12018)
vulnerability in privilege-escalation (CVE-2026-12018). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12016 |
|
Vulnerability in google (CVE-2026-12016)
vulnerability in google (CVE-2026-12016). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12014 |
|
Use-After-Free in google (CVE-2026-12014)
vulnerability in google (CVE-2026-12014). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12013 |
|
Use-After-Free in google (CVE-2026-12013)
vulnerability in google (CVE-2026-12013). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12012 |
|
Use-After-Free in google (CVE-2026-12012)
vulnerability in google (CVE-2026-12012). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12011 |
|
Use-After-Free in google (CVE-2026-12011)
vulnerability in google (CVE-2026-12011). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12010 |
|
Vulnerability in google (CVE-2026-12010)
vulnerability in google (CVE-2026-12010). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12009 |
|
Vulnerability in google (CVE-2026-12009)
vulnerability in google (CVE-2026-12009). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12008 |
|
Use-After-Free in google (CVE-2026-12008)
vulnerability in google (CVE-2026-12008). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12007 |
|
Use-After-Free in Google chrome (CVE-2026-12007)
vulnerability in Google chrome (CVE-2026-12007). Successful exploitation can lead to full system takeover.
|
| CVE-2026-50005 |
|
Vulnerability in CVE-2026-50005 (CVE-2026-50005)
vulnerability in CVE-2026-50005 (CVE-2026-50005). Confidential information can be exposed externally.
|