Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-59802 |
|
Vulnerability in CVE-2026-59802 (CVE-2026-59802)
vulnerability in CVE-2026-59802 (CVE-2026-59802). Confidential information can be exposed externally.
|
| CVE-2026-50189 |
|
Vulnerability in appsmith (CVE-2026-50189)
vulnerability in appsmith (CVE-2026-50189). Successful exploitation can lead to full system takeover. Exploitable via `GET /api/v1/admin/env`. Mitigation: upgrade to `2.1` or later.
|
| CVE-2026-46608 |
|
Vulnerability in glances (CVE-2026-46608)
vulnerability in glances (CVE-2026-46608). Confidential information can be exposed externally. Exploitable via ``cors_origins``. Mitigation: upgrade to `4.5.5` or later.
|
| CVE-2026-8918 |
|
Vulnerability in CVE-2026-8918 (CVE-2026-8918)
vulnerability in CVE-2026-8918 (CVE-2026-8918). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-3490 |
|
Vulnerability in picklescan (CVE-2026-3490)
vulnerability in picklescan (CVE-2026-3490). Successful exploitation can lead to full system takeover. Exploitable via ``pkgutil.resolve_name``. Mitigation: upgrade to `1.0.4` or later.
|
| CVE-2026-11525 |
|
Vulnerability in undici (CVE-2026-11525)
vulnerability in undici (CVE-2026-11525). Risk of unauthorized operations or information disclosure. Exploitable via ``SameSite``. Mitigation: upgrade to `8.5.0` or later.
|
| CVE-2026-54316 |
|
Vulnerability in @anthropic-ai/claude-code (CVE-2026-54316)
vulnerability in @anthropic-ai/claude-code (CVE-2026-54316). Confidential information can be exposed externally. Mitigation: upgrade to `2.1.163` or later.
|
| CVE-2026-46391 |
|
Vulnerability in @haxtheweb/open-apis (CVE-2026-46391)
vulnerability in @haxtheweb/open-apis (CVE-2026-46391). Risk of unauthorized operations or information disclosure. Exploitable via ``cloudflared``. Mitigation: upgrade to `26.0.0` or later.
|
| CVE-2026-29514 |
|
Vulnerability in CVE-2026-29514 (CVE-2026-29514)
vulnerability in CVE-2026-29514 (CVE-2026-29514). Successful exploitation can lead to full system takeover.
|
| CVE-2026-42043 |
|
Vulnerability in axios (CVE-2026-42043)
vulnerability in axios (CVE-2026-42043). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.15.1` or later.
|
| CVE-2026-21915 |
|
Vulnerability in juniper (CVE-2026-21915)
vulnerability in juniper (CVE-2026-21915). Successful exploitation can lead to full system takeover.
|