Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-12808 |
|
Vulnerability in CVE-2026-12808 (CVE-2026-12808)
vulnerability in CVE-2026-12808 (CVE-2026-12808). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12807 |
|
Vulnerability in CVE-2026-12807 (CVE-2026-12807)
vulnerability in CVE-2026-12807 (CVE-2026-12807). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12806 |
|
Buffer Overflow in CVE-2026-12806 (CVE-2026-12806)
vulnerability in CVE-2026-12806 (CVE-2026-12806). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12805 |
|
Buffer Overflow in CVE-2026-12805 (CVE-2026-12805)
vulnerability in CVE-2026-12805 (CVE-2026-12805). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12804 |
|
Open Redirect in CVE-2026-12804 (CVE-2026-12804)
vulnerability in CVE-2026-12804 (CVE-2026-12804). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56412 |
|
Use-After-Free in libexpat-project (CVE-2026-56412)
vulnerability in libexpat-project (CVE-2026-56412). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56409 |
|
Vulnerability in libexpat-project (CVE-2026-56409)
vulnerability in libexpat-project (CVE-2026-56409). Confidential information can be exposed externally.
|
| CVE-2026-56411 |
|
xmlwf in libexpat before 2.8.2 has an integer overflow in endDoctypeDecl via NOTATION declarations.
xmlwf in libexpat before 2.8.2 has an integer overflow in endDoctypeDecl via NOTATION declarations.
|
| CVE-2026-56408 |
|
libexpat before 2.8.2 has an integer overflow in copyString.
libexpat before 2.8.2 has an integer overflow in copyString.
|
| CVE-2026-56410 |
|
xmlwf in libexpat before 2.8.2 has an integer overflow in resolveSystemId.
xmlwf in libexpat before 2.8.2 has an integer overflow in resolveSystemId.
|
| CVE-2026-56407 |
|
Vulnerability in libexpat-project (CVE-2026-56407)
vulnerability in libexpat-project (CVE-2026-56407). Confidential information can be exposed externally.
|
| CVE-2026-56405 |
|
libexpat before 2.8.2 has an integer overflow in getAttributeId.
libexpat before 2.8.2 has an integer overflow in getAttributeId.
|
| CVE-2026-56406 |
|
Vulnerability in libexpat-project (CVE-2026-56406)
vulnerability in libexpat-project (CVE-2026-56406). Confidential information can be exposed externally.
|
| CVE-2026-56403 |
|
libexpat before 2.8.2 has an integer overflow in storeAtts.
libexpat before 2.8.2 has an integer overflow in storeAtts.
|
| CVE-2026-56404 |
|
libexpat before 2.8.2 has an integer overflow in addBinding.
libexpat before 2.8.2 has an integer overflow in addBinding.
|
| CVE-2026-56397 |
|
Cross-Site Scripting (XSS) in CVE-2026-56397 (CVE-2026-56397)
cross-site scripting in CVE-2026-56397 (CVE-2026-56397). Successful exploitation can lead to full system takeover.
|
| CVE-2026-56396 |
|
Vulnerability in CVE-2026-56396 (CVE-2026-56396)
vulnerability in CVE-2026-56396 (CVE-2026-56396). Successful exploitation can lead to full system takeover.
|
| CVE-2026-56395 |
|
Cross-Site Scripting (XSS) in CVE-2026-56395 (CVE-2026-56395)
cross-site scripting in CVE-2026-56395 (CVE-2026-56395). Successful exploitation can lead to full system takeover.
|
| CVE-2026-56394 |
|
Path Traversal in path-traversal (CVE-2026-56394)
path traversal in path-traversal (CVE-2026-56394). Confidential information can be exposed externally.
|
| CVE-2026-56393 |
|
Cross-Site Scripting (XSS) in CVE-2026-56393 (CVE-2026-56393)
cross-site scripting in CVE-2026-56393 (CVE-2026-56393). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `4.17.0-beta.1` or later.
|
| CVE-2026-56385 |
|
Vulnerability in CVE-2026-56385 (CVE-2026-56385)
vulnerability in CVE-2026-56385 (CVE-2026-56385). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `5.9.14` or later.
|
| CVE-2026-56384 |
|
Vulnerability in CVE-2026-56384 (CVE-2026-56384)
vulnerability in CVE-2026-56384 (CVE-2026-56384). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `4.17.8` or later.
|
| CVE-2026-56383 |
|
Cross-Site Scripting (XSS) in CVE-2026-56383 (CVE-2026-56383)
cross-site scripting in CVE-2026-56383 (CVE-2026-56383). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `4.16.19` or later.
|
| CVE-2026-56382 |
|
Code Injection in CVE-2026-56382 (CVE-2026-56382)
code injection in CVE-2026-56382 (CVE-2026-56382). Successful exploitation can lead to full system takeover.
|
| CVE-2026-56381 |
|
Cross-Site Scripting (XSS) in CVE-2026-56381 (CVE-2026-56381)
cross-site scripting in CVE-2026-56381 (CVE-2026-56381). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56378 |
|
Out-of-Bounds Read in dos (CVE-2026-56378)
vulnerability in dos (CVE-2026-56378). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56367 |
|
Out-of-Bounds Read in c (CVE-2026-56367)
vulnerability in c (CVE-2026-56367). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56316 |
|
Vulnerability in CVE-2026-56316 (CVE-2026-56316)
vulnerability in CVE-2026-56316 (CVE-2026-56316). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56299 |
|
Vulnerability in dos (CVE-2026-56299)
vulnerability in dos (CVE-2026-56299). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56265 |
|
Vulnerability in kidocode (CVE-2026-56265)
vulnerability in kidocode (CVE-2026-56265). Successful exploitation can lead to full system takeover.
|
| CVE-2026-56253 |
|
Vulnerability in CVE-2026-56253 (CVE-2026-56253)
vulnerability in CVE-2026-56253 (CVE-2026-56253). Confidential information can be exposed externally.
|
| CVE-2026-56251 |
|
Vulnerability in CVE-2026-56251 (CVE-2026-56251)
vulnerability in CVE-2026-56251 (CVE-2026-56251). Data can be tampered with by attackers.
|
| CVE-2026-56242 |
|
Information Disclosure in CVE-2026-56242 (CVE-2026-56242)
vulnerability in CVE-2026-56242 (CVE-2026-56242). Confidential information can be exposed externally.
|
| CVE-2026-56239 |
|
Privilege Escalation in privilege-escalation (CVE-2026-56239)
vulnerability in privilege-escalation (CVE-2026-56239). Data can be tampered with by attackers.
|
| CVE-2026-56236 |
|
Vulnerability in CVE-2026-56236 (CVE-2026-56236)
vulnerability in CVE-2026-56236 (CVE-2026-56236). Data can be tampered with by attackers.
|
| CVE-2026-56229 |
|
Vulnerability in CVE-2026-56229 (CVE-2026-56229)
vulnerability in CVE-2026-56229 (CVE-2026-56229). Confidential information can be exposed externally.
|
| CVE-2025-71378 |
|
Unsafe Deserialization in mmaitre314 (CVE-2025-71378)
vulnerability in mmaitre314 (CVE-2025-71378). Confidential information can be exposed externally.
|
| CVE-2025-71357 |
|
Unsafe Deserialization in mmaitre314 (CVE-2025-71357)
vulnerability in mmaitre314 (CVE-2025-71357). Confidential information can be exposed externally.
|
| CVE-2025-71351 |
|
Vulnerability in CVE-2025-71351 (CVE-2025-71351)
vulnerability in CVE-2025-71351 (CVE-2025-71351). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-71348 |
|
Unsafe Deserialization in mmaitre314 (CVE-2025-71348)
vulnerability in mmaitre314 (CVE-2025-71348). Confidential information can be exposed externally.
|
| CVE-2026-12799 |
|
Vulnerability in litellm (CVE-2026-12799)
vulnerability in litellm (CVE-2026-12799). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12798 |
|
SSRF (Server-Side Request Forgery) in litellm (CVE-2026-12798)
SSRF in litellm (CVE-2026-12798). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12797 |
|
Vulnerability in litellm (CVE-2026-12797)
vulnerability in litellm (CVE-2026-12797). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12796 |
|
Vulnerability in litellm (CVE-2026-12796)
vulnerability in litellm (CVE-2026-12796). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12795 |
|
Authentication Bypass in litellm (CVE-2026-12795)
authentication bypass in litellm (CVE-2026-12795). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12788 |
|
Vulnerability in CVE-2026-12788 (CVE-2026-12788)
vulnerability in CVE-2026-12788 (CVE-2026-12788). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12786 |
|
Vulnerability in CVE-2026-12786 (CVE-2026-12786)
vulnerability in CVE-2026-12786 (CVE-2026-12786). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12789 |
|
Vulnerability in sqli (CVE-2026-12789)
vulnerability in sqli (CVE-2026-12789). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12787 |
|
Vulnerability in deserialization (CVE-2026-12787)
vulnerability in deserialization (CVE-2026-12787). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-52911 |
|
Vulnerability in linux (CVE-2026-52911)
vulnerability in linux (CVE-2026-52911). Successful exploitation can lead to full system takeover.
|