Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-54067 |
|
Cross-Site Scripting (XSS) in CVE-2026-54067 (CVE-2026-54067)
cross-site scripting in CVE-2026-54067 (CVE-2026-54067). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `3.7.0` or later.
|
| CVE-2026-50551 |
|
Cross-Site Scripting (XSS) in CVE-2026-50551 (CVE-2026-50551)
cross-site scripting in CVE-2026-50551 (CVE-2026-50551). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `3.7.0` or later.
|
| CVE-2026-39893 |
|
SQL Injection in sqli (CVE-2026-39893)
SQL injection in sqli (CVE-2026-39893). Successful exploitation can lead to full system takeover.
|
| CVE-2026-13032 |
|
Use-After-Free in google (CVE-2026-13032)
vulnerability in google (CVE-2026-13032). Successful exploitation can lead to full system takeover.
|
| CVE-2026-45689 |
|
Vulnerability in CVE-2026-45689 (CVE-2026-45689)
vulnerability in CVE-2026-45689 (CVE-2026-45689). Confidential information can be exposed externally. Mitigation: upgrade to `8.5.0` or later.
|
| CVE-2026-45688 |
|
Vulnerability in CVE-2026-45688 (CVE-2026-45688)
vulnerability in CVE-2026-45688 (CVE-2026-45688). Confidential information can be exposed externally. Mitigation: upgrade to `8.5.0` or later.
|
| CVE-2026-13028 |
|
Use-After-Free in Google chrome (CVE-2026-13028)
vulnerability in Google chrome (CVE-2026-13028). Successful exploitation can lead to full system takeover.
|
| CVE-2026-53943 |
|
Vulnerability in ghost (CVE-2026-53943)
vulnerability in ghost (CVE-2026-53943). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `6.37.0` or later.
|
| CVE-2026-53088 |
|
Vulnerability in CVE-2026-53088 (CVE-2026-53088)
vulnerability in CVE-2026-53088 (CVE-2026-53088). Successful exploitation can lead to full system takeover.
|
| CVE-2026-53086 |
|
Vulnerability in CVE-2026-53086 (CVE-2026-53086)
vulnerability in CVE-2026-53086 (CVE-2026-53086). Successful exploitation can lead to full system takeover.
|
| CVE-2026-53055 |
|
Vulnerability in CVE-2026-53055 (CVE-2026-53055)
vulnerability in CVE-2026-53055 (CVE-2026-53055). Successful exploitation can lead to full system takeover.
|
| CVE-2026-53049 |
|
Vulnerability in CVE-2026-53049 (CVE-2026-53049)
vulnerability in CVE-2026-53049 (CVE-2026-53049). Successful exploitation can lead to full system takeover.
|
| CVE-2026-53043 |
|
Vulnerability in CVE-2026-53043 (CVE-2026-53043)
vulnerability in CVE-2026-53043 (CVE-2026-53043). Confidential information can be exposed externally.
|
| CVE-2026-53046 |
|
Vulnerability in c (CVE-2026-53046)
vulnerability in c (CVE-2026-53046). Successful exploitation can lead to full system takeover.
|
| CVE-2026-53045 |
|
Vulnerability in CVE-2026-53045 (CVE-2026-53045)
vulnerability in CVE-2026-53045 (CVE-2026-53045). Successful exploitation can lead to full system takeover.
|
| CVE-2026-53006 |
|
Vulnerability in CVE-2026-53006 (CVE-2026-53006)
vulnerability in CVE-2026-53006 (CVE-2026-53006). Successful exploitation can lead to full system takeover.
|
| CVE-2026-53010 |
|
Vulnerability in CVE-2026-53010 (CVE-2026-53010)
vulnerability in CVE-2026-53010 (CVE-2026-53010). Successful exploitation can lead to full system takeover.
|
| CVE-2026-52999 |
|
Vulnerability in CVE-2026-52999 (CVE-2026-52999)
vulnerability in CVE-2026-52999 (CVE-2026-52999). Confidential information can be exposed externally.
|
| CVE-2026-52989 |
|
Vulnerability in CVE-2026-52989 (CVE-2026-52989)
vulnerability in CVE-2026-52989 (CVE-2026-52989). Successful exploitation can lead to full system takeover.
|
| CVE-2026-52993 |
|
Vulnerability in CVE-2026-52993 (CVE-2026-52993)
vulnerability in CVE-2026-52993 (CVE-2026-52993). Successful exploitation can lead to full system takeover.
|
| CVE-2026-53002 |
|
Out-of-Bounds Write in CVE-2026-53002 (CVE-2026-53002)
out-of-bounds write in CVE-2026-53002 (CVE-2026-53002). Successful exploitation can lead to full system takeover.
|
| CVE-2026-52982 |
|
Vulnerability in c (CVE-2026-52982)
vulnerability in c (CVE-2026-52982). Successful exploitation can lead to full system takeover.
|
| CVE-2026-52986 |
|
Vulnerability in c (CVE-2026-52986)
vulnerability in c (CVE-2026-52986). Successful exploitation can lead to full system takeover.
|
| CVE-2026-52958 |
|
Vulnerability in CVE-2026-52958 (CVE-2026-52958)
vulnerability in CVE-2026-52958 (CVE-2026-52958). Confidential information can be exposed externally.
|
| CVE-2026-52955 |
|
Vulnerability in CVE-2026-52955 (CVE-2026-52955)
vulnerability in CVE-2026-52955 (CVE-2026-52955). Successful exploitation can lead to full system takeover.
|
| CVE-2026-56121 |
|
Unsafe Deserialization in deserialization (CVE-2026-56121)
vulnerability in deserialization (CVE-2026-56121). Successful exploitation can lead to full system takeover.
|
| CVE-2026-56111 |
|
Vulnerability in c (CVE-2026-56111)
vulnerability in c (CVE-2026-56111). Data can be tampered with by attackers.
|
| CVE-2026-56237 |
|
Authentication Bypass in CVE-2026-56237 (CVE-2026-56237)
authentication bypass in CVE-2026-56237 (CVE-2026-56237). Confidential information can be exposed externally.
|
| CVE-2026-52924 |
|
Use-After-Free in linux (CVE-2026-52924)
vulnerability in linux (CVE-2026-52924). Successful exploitation can lead to full system takeover.
|
| CVE-2026-52931 |
|
Vulnerability in linux (CVE-2026-52931)
vulnerability in linux (CVE-2026-52931). Successful exploitation can lead to full system takeover.
|
| CVE-2026-52914 |
|
Out-of-Bounds Write in dos (CVE-2026-52914)
out-of-bounds write in dos (CVE-2026-52914). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12417 |
|
Vulnerability in wordpress (CVE-2026-12417)
vulnerability in wordpress (CVE-2026-12417). Successful exploitation can lead to full system takeover. Exploitable via ``wp_ajax_nopriv_pravel_change_password``.
|
| CVE-2026-12416 |
|
Vulnerability in wordpress (CVE-2026-12416)
vulnerability in wordpress (CVE-2026-12416). Successful exploitation can lead to full system takeover. Exploitable via ``reset_activation_code``.
|
| CVE-2026-12851 |
|
OS Command Injection in CVE-2026-12851 (CVE-2026-12851)
OS command injection in CVE-2026-12851 (CVE-2026-12851). Successful exploitation can lead to full system takeover. Exploitable via ``libNetSetObj.so``.
|
| CVE-2026-12850 |
|
OS Command Injection in CVE-2026-12850 (CVE-2026-12850)
OS command injection in CVE-2026-12850 (CVE-2026-12850). Successful exploitation can lead to full system takeover. Exploitable via ``libNetSetObj.so``.
|
| CVE-2026-12849 |
|
OS Command Injection in CVE-2026-12849 (CVE-2026-12849)
OS command injection in CVE-2026-12849 (CVE-2026-12849). Successful exploitation can lead to full system takeover. Exploitable via ``libNetSetObj.so``.
|
| CVE-2026-12848 |
|
Vulnerability in CVE-2026-12848 (CVE-2026-12848)
vulnerability in CVE-2026-12848 (CVE-2026-12848). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12847 |
|
Vulnerability in CVE-2026-12847 (CVE-2026-12847)
vulnerability in CVE-2026-12847 (CVE-2026-12847). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12846 |
|
Vulnerability in CVE-2026-12846 (CVE-2026-12846)
vulnerability in CVE-2026-12846 (CVE-2026-12846). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12486 |
|
OS Command Injection in CVE-2026-12486 (CVE-2026-12486)
OS command injection in CVE-2026-12486 (CVE-2026-12486). Successful exploitation can lead to full system takeover. Exploitable via ``libNetSetObj.so``.
|
| CVE-2026-12485 |
|
Vulnerability in CVE-2026-12485 (CVE-2026-12485)
vulnerability in CVE-2026-12485 (CVE-2026-12485). Successful exploitation can lead to full system takeover.
|
| CVE-2026-54588 |
|
Vulnerability in CVE-2026-54588 (CVE-2026-54588)
vulnerability in CVE-2026-54588 (CVE-2026-54588). Confidential information can be exposed externally. Exploitable via ``HTTP_HOST``.
|
| CVE-2026-11807 |
|
Vulnerability in CVE-2026-11807 (CVE-2026-11807)
vulnerability in CVE-2026-11807 (CVE-2026-11807). Confidential information can be exposed externally.
|
| CVE-2026-53662 |
|
Cross-Site Scripting (XSS) in CVE-2026-53662 (CVE-2026-53662)
cross-site scripting in CVE-2026-53662 (CVE-2026-53662). Successful exploitation can lead to full system takeover.
|
| CVE-2026-54350 |
|
SQL Injection in @budibase/server (CVE-2026-54350)
SQL injection in @budibase/server (CVE-2026-54350). Confidential information can be exposed externally. Exploitable via `POST /api/v2/queries/`. Mitigation: upgrade to `3.39.12` or later.
|
| CVE-2026-52813 |
|
Vulnerability in gogs.io/gogs (CVE-2026-52813)
vulnerability in gogs.io/gogs (CVE-2026-52813). Successful exploitation can lead to full system takeover. Exploitable via ``hooks``. Mitigation: upgrade to `0.14.3` or later.
|
| CVE-2026-52806 |
|
Command Injection in gogs.io/gogs (CVE-2026-52806)
command injection in gogs.io/gogs (CVE-2026-52806). Successful exploitation can lead to full system takeover. Exploitable via ``b53d3162``. Mitigation: upgrade to `0.14.3` or later.
|
| CVE-2026-56315 |
|
Vulnerability in CVE-2026-56315 (CVE-2026-56315)
vulnerability in CVE-2026-56315 (CVE-2026-56315). Successful exploitation can lead to full system takeover.
|
| CVE-2026-56274 |
|
OS Command Injection in flowiseai (CVE-2026-56274)
OS command injection in flowiseai (CVE-2026-56274). Successful exploitation can lead to full system takeover.
|
| CVE-2026-11374 |
|
Authentication Bypass in CVE-2026-11374 (CVE-2026-11374)
authentication bypass in CVE-2026-11374 (CVE-2026-11374). Successful exploitation can lead to full system takeover.
|