Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

ID Title
CVE-2026-49877 Vulnerability in apache (CVE-2026-49877)
vulnerability in apache (CVE-2026-49877). Confidential information can be exposed externally.
CVE-2026-13316 SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-13316)
SSRF in ssrf (CVE-2026-13316). Confidential information can be exposed externally.
CVE-2026-12610 Vulnerability in privilege-escalation (CVE-2026-12610)
vulnerability in privilege-escalation (CVE-2026-12610). Successful exploitation can lead to full system takeover.
CVE-2026-9711 SQL Injection in wordpress (CVE-2026-9711)
SQL injection in wordpress (CVE-2026-9711). Successful exploitation can lead to full system takeover.
CVE-2026-8141 Cross-Site Scripting (XSS) in wordpress (CVE-2026-8141)
cross-site scripting in wordpress (CVE-2026-8141). Risk of unauthorized operations or information disclosure.
CVE-2026-6954 Cross-Site Scripting (XSS) in CVE-2026-6954 (CVE-2026-6954)
cross-site scripting in CVE-2026-6954 (CVE-2026-6954). Risk of unauthorized operations or information disclosure.
CVE-2026-6953 Cross-Site Scripting (XSS) in CVE-2026-6953 (CVE-2026-6953)
cross-site scripting in CVE-2026-6953 (CVE-2026-6953). Risk of unauthorized operations or information disclosure.
CVE-2025-24816 Vulnerability in CVE-2025-24816 (CVE-2025-24816)
vulnerability in CVE-2025-24816 (CVE-2025-24816). Confidential information can be exposed externally.
CVE-2025-7406 Privilege Escalation in privilege-escalation (CVE-2025-7406)
vulnerability in privilege-escalation (CVE-2025-7406). Successful exploitation can lead to full system takeover.
CVE-2026-10763 Vulnerability in CVE-2026-10763 (CVE-2026-10763)
vulnerability in CVE-2026-10763 (CVE-2026-10763). Risk of unauthorized operations or information disclosure.
CVE-2026-12076 SQL Injection in sqli (CVE-2026-12076)
SQL injection in sqli (CVE-2026-12076). Risk of unauthorized operations or information disclosure.
CVE-2025-24815 Unrestricted File Upload in CVE-2025-24815 (CVE-2025-24815)
vulnerability in CVE-2025-24815 (CVE-2025-24815). Successful exploitation can lead to full system takeover.
CVE-2026-13149 Vulnerability in dos (CVE-2026-13149)
vulnerability in dos (CVE-2026-13149). Risk of unauthorized operations or information disclosure.
CVE-2026-14164 Vulnerability in dos (CVE-2026-14164)
vulnerability in dos (CVE-2026-14164). Risk of unauthorized operations or information disclosure.
CVE-2026-12818 Vulnerability in CVE-2026-12818 (CVE-2026-12818)
vulnerability in CVE-2026-12818 (CVE-2026-12818). Risk of unauthorized operations or information disclosure.
CVE-2026-9576 Vulnerability in wordpress (CVE-2026-9576)
vulnerability in wordpress (CVE-2026-9576). Confidential information can be exposed externally.
CVE-2026-12240 Unsafe Deserialization in wordpress (CVE-2026-12240)
vulnerability in wordpress (CVE-2026-12240). Successful exploitation can lead to full system takeover.
CVE-2026-11581 Vulnerability in wordpress (CVE-2026-11581)
vulnerability in wordpress (CVE-2026-11581). Risk of unauthorized operations or information disclosure.
CVE-2026-11590 Vulnerability in wordpress (CVE-2026-11590)
vulnerability in wordpress (CVE-2026-11590). Confidential information can be exposed externally.
CVE-2026-11589 Vulnerability in wordpress (CVE-2026-11589)
vulnerability in wordpress (CVE-2026-11589). Successful exploitation can lead to full system takeover.
CVE-2026-12819 Vulnerability in cisa (CVE-2026-12819)
vulnerability in cisa (CVE-2026-12819). Risk of unauthorized operations or information disclosure.
CVE-2026-45822 Vulnerability in dos (CVE-2026-45822)
vulnerability in dos (CVE-2026-45822). Risk of unauthorized operations or information disclosure.
CVE-2026-56808 OS Command Injection in jvn (CVE-2026-56808)
OS command injection in jvn (CVE-2026-56808). Successful exploitation can lead to full system takeover.
CVE-2026-56137 OS Command Injection in jvn (CVE-2026-56137)
OS command injection in jvn (CVE-2026-56137). Successful exploitation can lead to full system takeover.
CVE-2026-56809 Cross-Site Scripting (XSS) in jvn (CVE-2026-56809)
cross-site scripting in jvn (CVE-2026-56809). Risk of unauthorized operations or information disclosure.
CVE-2026-8944 Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8944)
vulnerability in wordpress (CVE-2026-8944). Risk of unauthorized operations or information disclosure.
CVE-2026-12560 Cross-Site Scripting (XSS) in wordpress (CVE-2026-12560)
cross-site scripting in wordpress (CVE-2026-12560). Risk of unauthorized operations or information disclosure.
CVE-2026-12349 Vulnerability in c (CVE-2026-12349)
vulnerability in c (CVE-2026-12349). Risk of unauthorized operations or information disclosure.
CVE-2026-11367 Path Traversal in wordpress (CVE-2026-11367)
path traversal in wordpress (CVE-2026-11367). Confidential information can be exposed externally.
CVE-2026-12073 Vulnerability in wordpress (CVE-2026-12073)
vulnerability in wordpress (CVE-2026-12073). Successful exploitation can lead to full system takeover. Exploitable via ``user_login``.
CVE-2026-12114 Cross-Site Scripting (XSS) in wordpress (CVE-2026-12114)
cross-site scripting in wordpress (CVE-2026-12114). Risk of unauthorized operations or information disclosure.
CVE-2026-14160 Vulnerability in CVE-2026-14160 (CVE-2026-14160)
vulnerability in CVE-2026-14160 (CVE-2026-14160). Risk of unauthorized operations or information disclosure.
CVE-2026-58302 Path Traversal in path-traversal (CVE-2026-58302)
path traversal in path-traversal (CVE-2026-58302). Successful exploitation can lead to full system takeover.
CVE-2025-61984 サーバ製品におけるiLOの脆弱性(CVE-2025-61984)による影響について
iLOファームウェアに情報漏洩、権限昇格の攻撃を受けるおそれがある脆弱性が見つかりました。
CVE-2026-12243 Path Traversal in path-traversal (CVE-2026-12243)
path traversal in path-traversal (CVE-2026-12243). Confidential information can be exposed externally. Exploitable via ``_UNSAFE_NO_PROTOCOL_RE``.
CVE-2026-51219 Vulnerability in dos (CVE-2026-51219)
vulnerability in dos (CVE-2026-51219). Risk of unauthorized operations or information disclosure.
CVE-2026-51218 Vulnerability in cpp (CVE-2026-51218)
vulnerability in cpp (CVE-2026-51218). Risk of unauthorized operations or information disclosure.
CVE-2026-8023 Path Traversal in c (CVE-2026-8023)
path traversal in c (CVE-2026-8023). Confidential information can be exposed externally.
CVE-2026-7656 Vulnerability in c (CVE-2026-7656)
vulnerability in c (CVE-2026-7656). Data can be tampered with by attackers.
CVE-2026-10648 Vulnerability in c (CVE-2026-10648)
vulnerability in c (CVE-2026-10648). Risk of unauthorized operations or information disclosure.
CVE-2026-44840 Vulnerability in github.com/dgraph-io/dgraph/v25 (CVE-2026-44840)
vulnerability in github.com/dgraph-io/dgraph/v25 (CVE-2026-44840). Confidential information can be exposed externally. Exploitable via ``checkUserPassword``. Mitigation: upgrade to `25.3.4` or later.
CVE-2026-57997 Vulnerability in strapi (CVE-2026-57997)
vulnerability in strapi (CVE-2026-57997). Risk of unauthorized operations or information disclosure.
CVE-2026-51221 Vulnerability in dos (CVE-2026-51221)
vulnerability in dos (CVE-2026-51221). Risk of unauthorized operations or information disclosure.
CVE-2026-34592 Vulnerability in CVE-2026-34592 (CVE-2026-34592)
vulnerability in CVE-2026-34592 (CVE-2026-34592). Confidential information can be exposed externally. Mitigation: upgrade to `4.0.0-beta.471` or later.
CVE-2026-10647 Vulnerability in c (CVE-2026-10647)
vulnerability in c (CVE-2026-10647). Risk of unauthorized operations or information disclosure.
CVE-2026-55957 Vulnerability in apache (CVE-2026-55957)
vulnerability in apache (CVE-2026-55957). Risk of unauthorized operations or information disclosure.
CVE-2026-55276 Vulnerability in apache (CVE-2026-55276)
vulnerability in apache (CVE-2026-55276). Confidential information can be exposed externally.
CVE-2026-13758 Vulnerability in CVE-2026-13758 (CVE-2026-13758)
vulnerability in CVE-2026-13758 (CVE-2026-13758). Risk of unauthorized operations or information disclosure.
CVE-2026-55956 Vulnerability in apache (CVE-2026-55956)
vulnerability in apache (CVE-2026-55956). Risk of unauthorized operations or information disclosure.
CVE-2026-55955 Authentication Bypass in apache (CVE-2026-55955)
authentication bypass in apache (CVE-2026-55955). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →