Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-45503 |
|
Vulnerability in ssrf (CVE-2026-45503)
vulnerability in ssrf (CVE-2026-45503). Confidential information can be exposed externally.
|
| CVE-2026-49948 |
|
Vulnerability in CVE-2026-49948 (CVE-2026-49948)
vulnerability in CVE-2026-49948 (CVE-2026-49948). Confidential information can be exposed externally. Exploitable via `POST /configure`.
|
| CVE-2026-24065 |
|
Vulnerability in privilege-escalation (CVE-2026-24065)
vulnerability in privilege-escalation (CVE-2026-24065). Successful exploitation can lead to full system takeover.
|
| CVE-2026-24064 |
|
Vulnerability in privilege-escalation (CVE-2026-24064)
vulnerability in privilege-escalation (CVE-2026-24064). Successful exploitation can lead to full system takeover.
|
| CVE-2026-10727 |
|
OS Command Injection in CVE-2026-10727 (CVE-2026-10727)
OS command injection in CVE-2026-10727 (CVE-2026-10727). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9277 |
|
Command Injection in shell-quote (CVE-2026-9277)
command injection in shell-quote (CVE-2026-9277). Successful exploitation can lead to full system takeover. Exploitable via ``envFn``. Mitigation: upgrade to `1.8.4` or later.
|
| CVE-2026-52907 |
|
Vulnerability in linux (CVE-2026-52907)
vulnerability in linux (CVE-2026-52907). Successful exploitation can lead to full system takeover.
|
| CVE-2026-52906 |
|
Vulnerability in linux (CVE-2026-52906)
vulnerability in linux (CVE-2026-52906). Confidential information can be exposed externally.
|
| CVE-2026-46332 |
|
Vulnerability in linux (CVE-2026-46332)
vulnerability in linux (CVE-2026-46332). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46330 |
|
Use-After-Free in linux (CVE-2026-46330)
vulnerability in linux (CVE-2026-46330). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46328 |
|
Vulnerability in linux (CVE-2026-46328)
vulnerability in linux (CVE-2026-46328). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-46327 |
|
Vulnerability in linux (CVE-2026-46327)
vulnerability in linux (CVE-2026-46327). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46326 |
|
Vulnerability in linux (CVE-2026-46326)
vulnerability in linux (CVE-2026-46326). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46324 |
|
Vulnerability in linux (CVE-2026-46324)
vulnerability in linux (CVE-2026-46324). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46323 |
|
Vulnerability in linux (CVE-2026-46323)
vulnerability in linux (CVE-2026-46323). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46322 |
|
Vulnerability in linux (CVE-2026-46322)
vulnerability in linux (CVE-2026-46322). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-46321 |
|
Vulnerability in linux (CVE-2026-46321)
vulnerability in linux (CVE-2026-46321). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-46320 |
|
Vulnerability in linux (CVE-2026-46320)
vulnerability in linux (CVE-2026-46320). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-46319 |
|
Use-After-Free in csharp (CVE-2026-46319)
vulnerability in csharp (CVE-2026-46319). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46317 |
|
Vulnerability in linux (CVE-2026-46317)
vulnerability in linux (CVE-2026-46317). Successful exploitation can lead to full system takeover.
|
| CVE-2017-20250 |
|
Path Traversal in wordpress (CVE-2017-20250)
path traversal in wordpress (CVE-2017-20250). Confidential information can be exposed externally.
|
| CVE-2017-20249 |
|
SQL Injection in sqli (CVE-2017-20249)
SQL injection in sqli (CVE-2017-20249). Confidential information can be exposed externally.
|
| CVE-2017-20248 |
|
Path Traversal in path-traversal (CVE-2017-20248)
path traversal in path-traversal (CVE-2017-20248). Confidential information can be exposed externally.
|
| CVE-2017-20247 |
|
SQL Injection in wordpress (CVE-2017-20247)
SQL injection in wordpress (CVE-2017-20247). Confidential information can be exposed externally.
|
| CVE-2017-20246 |
|
SQL Injection in wordpress (CVE-2017-20246)
SQL injection in wordpress (CVE-2017-20246). Confidential information can be exposed externally.
|
| CVE-2017-20245 |
|
SQL Injection in wordpress (CVE-2017-20245)
SQL injection in wordpress (CVE-2017-20245). Confidential information can be exposed externally.
|
| CVE-2017-20244 |
|
SQL Injection in wordpress (CVE-2017-20244)
SQL injection in wordpress (CVE-2017-20244). Confidential information can be exposed externally.
|
| CVE-2017-20243 |
|
SQL Injection in wordpress (CVE-2017-20243)
SQL injection in wordpress (CVE-2017-20243). Confidential information can be exposed externally.
|
| CVE-2016-20065 |
|
SQL Injection in wordpress (CVE-2016-20065)
SQL injection in wordpress (CVE-2016-20065). Confidential information can be exposed externally.
|
| CVE-2016-20063 |
|
SQL Injection in sqli (CVE-2016-20063)
SQL injection in sqli (CVE-2016-20063). Confidential information can be exposed externally.
|
| CVE-2016-20062 |
|
SQL Injection in wordpress (CVE-2016-20062)
SQL injection in wordpress (CVE-2016-20062). Confidential information can be exposed externally.
|
| CVE-2026-46749 |
|
Vulnerability in siemens (CVE-2026-46749)
vulnerability in siemens (CVE-2026-46749). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46748 |
|
Vulnerability in siemens (CVE-2026-46748)
vulnerability in siemens (CVE-2026-46748). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46746 |
|
OS Command Injection in siemens (CVE-2026-46746)
OS command injection in siemens (CVE-2026-46746). Successful exploitation can lead to full system takeover.
|
| CVE-2026-41031 |
|
Cross-Site Scripting (XSS) in CVE-2026-41031 (CVE-2026-41031)
cross-site scripting in CVE-2026-41031 (CVE-2026-41031). Confidential information can be exposed externally.
|
| CVE-2026-24349 |
|
Vulnerability in siemens (CVE-2026-24349)
vulnerability in siemens (CVE-2026-24349). Confidential information can be exposed externally.
|
| CVE-2026-8365 |
|
Unsafe Deserialization in wordpress (CVE-2026-8365)
vulnerability in wordpress (CVE-2026-8365). Successful exploitation can lead to full system takeover.
|
| CVE-2026-11616 |
|
Privilege Escalation in wordpress (CVE-2026-11616)
vulnerability in wordpress (CVE-2026-11616). Successful exploitation can lead to full system takeover.
|
| CVE-2026-5068 |
|
Out-of-Bounds Write in c (CVE-2026-5068)
out-of-bounds write in c (CVE-2026-5068). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-11572 |
|
Command Injection in CVE-2026-11572 (CVE-2026-11572)
command injection in CVE-2026-11572 (CVE-2026-11572). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9662 |
|
Vulnerability in wordpress (CVE-2026-9662)
vulnerability in wordpress (CVE-2026-9662). Successful exploitation can lead to full system takeover. Exploitable via ``tpf``.
|
| CVE-2026-9185 |
|
Vulnerability in wordpress (CVE-2026-9185)
vulnerability in wordpress (CVE-2026-9185). Confidential information can be exposed externally. Exploitable via ``userId``.
|
| CVE-2026-41855 |
|
Unsafe Deserialization in spring (CVE-2026-41855)
vulnerability in spring (CVE-2026-41855). Successful exploitation can lead to full system takeover.
|
| CVE-2026-41850 |
|
Vulnerability in spring (CVE-2026-41850)
vulnerability in spring (CVE-2026-41850). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41849 |
|
Vulnerability in spring (CVE-2026-41849)
vulnerability in spring (CVE-2026-41849). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41845 |
|
Cross-Site Scripting (XSS) in spring (CVE-2026-41845)
cross-site scripting in spring (CVE-2026-41845). Confidential information can be exposed externally.
|
| CVE-2026-41842 |
|
Vulnerability in spring (CVE-2026-41842)
vulnerability in spring (CVE-2026-41842). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41720 |
|
Authentication Bypass in CVE-2026-41720 (CVE-2026-41720)
authentication bypass in CVE-2026-41720 (CVE-2026-41720). Confidential information can be exposed externally.
|
| CVE-2026-41007 |
|
Vulnerability in vmware (CVE-2026-41007)
vulnerability in vmware (CVE-2026-41007). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41006 |
|
Vulnerability in vmware (CVE-2026-41006)
vulnerability in vmware (CVE-2026-41006). Risk of unauthorized operations or information disclosure.
|