Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

ID Title
CVE-2026-56023 Customer Broken Access Control in UPI QR Code Payment Gateway for WooCommerce <= 1.6.2 versions.
Customer Broken Access Control in UPI QR Code Payment Gateway for WooCommerce <= 1.6.2 versions.
CVE-2026-54849 Unauthenticated SQL Injection in Premmerce Wishlist for WooCommerce <= 1.1.11 versions.
Unauthenticated SQL Injection in Premmerce Wishlist for WooCommerce <= 1.1.11 versions.
CVE-2026-54842 Vulnerability in CVE-2026-54842 (CVE-2026-54842)
vulnerability in CVE-2026-54842 (CVE-2026-54842). Confidential information can be exposed externally.
CVE-2026-54844 Unauthenticated Broken Access Control in CheckView Automated Testing <= 2.1.0 versions.
Unauthenticated Broken Access Control in CheckView Automated Testing <= 2.1.0 versions.
CVE-2026-54841 Unauthenticated Sensitive Data Exposure in Vitepos <= 3.4.2 versions.
Unauthenticated Sensitive Data Exposure in Vitepos <= 3.4.2 versions.
CVE-2026-56013 Vulnerability in CVE-2026-56013 (CVE-2026-56013)
vulnerability in CVE-2026-56013 (CVE-2026-56013). Risk of unauthorized operations or information disclosure.
CVE-2026-54845 Unauthenticated Local File Inclusion in MDTF <= 1.3.8 versions.
Unauthenticated Local File Inclusion in MDTF <= 1.3.8 versions.
CVE-2026-56006 Unauthenticated Cross Site Scripting (XSS) in H5P <= 1.17.6 versions.
Unauthenticated Cross Site Scripting (XSS) in H5P <= 1.17.6 versions.
CVE-2026-54828 Unauthenticated Broken Access Control in Motors <= 1.4.109 versions.
Unauthenticated Broken Access Control in Motors <= 1.4.109 versions.
CVE-2026-54838 Subscriber SQL Injection in WC Vendors Marketplace <= 2.6.8 versions.
Subscriber SQL Injection in WC Vendors Marketplace <= 2.6.8 versions.
CVE-2026-54830 Unauthenticated Broken Access Control in Five Star Restaurant Reservations <= 2.7.19 versions.
Unauthenticated Broken Access Control in Five Star Restaurant Reservations <= 2.7.19 versions.
CVE-2026-54843 Unauthenticated SQL Injection in MDTF <= 1.3.7 versions.
Unauthenticated SQL Injection in MDTF <= 1.3.7 versions.
CVE-2026-54836 SQL Injection in sqli (CVE-2026-54836)
SQL injection in sqli (CVE-2026-54836). Confidential information can be exposed externally.
CVE-2026-54829 SQL Injection in sqli (CVE-2026-54829)
SQL injection in sqli (CVE-2026-54829). Confidential information can be exposed externally.
CVE-2026-4526 Out-of-Bounds Read in silabs (CVE-2026-4526)
vulnerability in silabs (CVE-2026-4526). Risk of unauthorized operations or information disclosure.
CVE-2026-47154 Out-of-Bounds Read in silabs (CVE-2026-47154)
vulnerability in silabs (CVE-2026-47154). Risk of unauthorized operations or information disclosure.
CVE-2026-47152 Vulnerability in silabs (CVE-2026-47152)
vulnerability in silabs (CVE-2026-47152). Risk of unauthorized operations or information disclosure.
CVE-2026-47153 Vulnerability in silabs (CVE-2026-47153)
vulnerability in silabs (CVE-2026-47153). Risk of unauthorized operations or information disclosure.
CVE-2026-47150 Out-of-Bounds Write in silabs (CVE-2026-47150)
out-of-bounds write in silabs (CVE-2026-47150). Risk of unauthorized operations or information disclosure.
CVE-2026-47151 Out-of-Bounds Write in silabs (CVE-2026-47151)
out-of-bounds write in silabs (CVE-2026-47151). Risk of unauthorized operations or information disclosure.
CVE-2026-47147 Out-of-Bounds Read in silabs (CVE-2026-47147)
vulnerability in silabs (CVE-2026-47147). Risk of unauthorized operations or information disclosure.
CVE-2026-47148 Out-of-Bounds Read in silabs (CVE-2026-47148)
vulnerability in silabs (CVE-2026-47148). Risk of unauthorized operations or information disclosure.
CVE-2026-47149 Out-of-Bounds Read in silabs (CVE-2026-47149)
vulnerability in silabs (CVE-2026-47149). Risk of unauthorized operations or information disclosure.
CVE-2026-47146 Vulnerability in silabs (CVE-2026-47146)
vulnerability in silabs (CVE-2026-47146). Risk of unauthorized operations or information disclosure.
CVE-2026-47145 Vulnerability in silabs (CVE-2026-47145)
vulnerability in silabs (CVE-2026-47145). Risk of unauthorized operations or information disclosure.
CVE-2026-42389 Vulnerability in CVE-2026-42389 (CVE-2026-42389)
vulnerability in CVE-2026-42389 (CVE-2026-42389). Risk of unauthorized operations or information disclosure.
CVE-2026-42387 Vulnerability in CVE-2026-42387 (CVE-2026-42387)
vulnerability in CVE-2026-42387 (CVE-2026-42387). Risk of unauthorized operations or information disclosure.
CVE-2026-42388 Incomplete validation of the SOA record present in a catalog zone might lead to a crash.
Incomplete validation of the SOA record present in a catalog zone might lead to a crash.
CVE-2026-40012 Vulnerability in CVE-2026-40012 (CVE-2026-40012)
vulnerability in CVE-2026-40012 (CVE-2026-40012). Risk of unauthorized operations or information disclosure.
CVE-2026-12755 Vulnerability in devolutions (CVE-2026-12755)
vulnerability in devolutions (CVE-2026-12755). Risk of unauthorized operations or information disclosure.
CVE-2026-49506 Path Traversal in path-traversal (CVE-2026-49506)
path traversal in path-traversal (CVE-2026-49506). Successful exploitation can lead to full system takeover.
CVE-2026-54821 Subscriber Sensitive Data Exposure in Visual Link Preview <= 2.3.1 versions.
Subscriber Sensitive Data Exposure in Visual Link Preview <= 2.3.1 versions.
CVE-2026-52690 Vulnerability in CVE-2026-52690 (CVE-2026-52690)
vulnerability in CVE-2026-52690 (CVE-2026-52690). Risk of unauthorized operations or information disclosure.
CVE-2026-54822 Subscriber SQL Injection in SALESmanago & Leadoo <= 3.11.2 versions.
Subscriber SQL Injection in SALESmanago & Leadoo <= 3.11.2 versions.
CVE-2026-54823 Contributor Remote Code Execution (RCE) in Widget Options <= 4.2.3 versions.
Contributor Remote Code Execution (RCE) in Widget Options <= 4.2.3 versions.
CVE-2026-41120 Vulnerability in dell (CVE-2026-41120)
vulnerability in dell (CVE-2026-41120). Successful exploitation can lead to full system takeover.
CVE-2026-46733 Vulnerability in dell (CVE-2026-46733)
vulnerability in dell (CVE-2026-46733). Successful exploitation can lead to full system takeover.
CVE-2026-42390 Vulnerability in CVE-2026-42390 (CVE-2026-42390)
vulnerability in CVE-2026-42390 (CVE-2026-42390). Risk of unauthorized operations or information disclosure.
CVE-2026-46732 Vulnerability in dell (CVE-2026-46732)
vulnerability in dell (CVE-2026-46732). Successful exploitation can lead to full system takeover.
CVE-2026-46734 Vulnerability in dell (CVE-2026-46734)
vulnerability in dell (CVE-2026-46734). Successful exploitation can lead to full system takeover.
CVE-2026-2815 Incorrect use of the PUF key for user key generation in EFR32xG27 results in predictable keys
Incorrect use of the PUF key for user key generation in EFR32xG27 results in predictable keys
CVE-2026-27366 Unauthenticated Broken Access Control in MainWP Child <= 6.1.1 versions.
Unauthenticated Broken Access Control in MainWP Child <= 6.1.1 versions.
CVE-2026-40209 Vulnerability in dos (CVE-2026-40209)
vulnerability in dos (CVE-2026-40209). Risk of unauthorized operations or information disclosure.
CVE-2026-40210 Vulnerability in CVE-2026-40210 (CVE-2026-40210)
vulnerability in CVE-2026-40210 (CVE-2026-40210). Risk of unauthorized operations or information disclosure.
CVE-2026-40211 Vulnerability in dos (CVE-2026-40211)
vulnerability in dos (CVE-2026-40211). Risk of unauthorized operations or information disclosure.
CVE-2026-40011 Vulnerability in CVE-2026-40011 (CVE-2026-40011)
vulnerability in CVE-2026-40011 (CVE-2026-40011). Risk of unauthorized operations or information disclosure.
CVE-2026-33612 Vulnerability in CVE-2026-33612 (CVE-2026-33612)
vulnerability in CVE-2026-33612 (CVE-2026-33612). Data can be tampered with by attackers.
CVE-2026-42004 Vulnerability in CVE-2026-42004 (CVE-2026-42004)
vulnerability in CVE-2026-42004 (CVE-2026-42004). Risk of unauthorized operations or information disclosure.
CVE-2026-40208 Vulnerability in CVE-2026-40208 (CVE-2026-40208)
vulnerability in CVE-2026-40208 (CVE-2026-40208). Risk of unauthorized operations or information disclosure.
CVE-2026-57437 Use-After-Free in nokogiri (CVE-2026-57437)
vulnerability in nokogiri (CVE-2026-57437). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.19.4` or later.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →