Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Tag: cwe-201 Clear
ID Title
CVE-2026-42505 Vulnerability in CVE-2026-42505 (CVE-2026-42505)
vulnerability in CVE-2026-42505 (CVE-2026-42505). Risk of unauthorized operations or information disclosure.
CVE-2026-59519 Vulnerability in CVE-2026-59519 (CVE-2026-59519)
vulnerability in CVE-2026-59519 (CVE-2026-59519). Risk of unauthorized operations or information disclosure.
CVE-2026-59511 Vulnerability in CVE-2026-59511 (CVE-2026-59511)
vulnerability in CVE-2026-59511 (CVE-2026-59511). Risk of unauthorized operations or information disclosure.
CVE-2026-57347 Subscriber Sensitive Data Exposure in Hotel Booking Lite <= 6.0.3 versions.
Subscriber Sensitive Data Exposure in Hotel Booking Lite <= 6.0.3 versions.
CVE-2025-69132 Subscriber Sensitive Data Exposure in Corpkit <= 1.0.5 versions.
Subscriber Sensitive Data Exposure in Corpkit <= 1.0.5 versions.
CVE-2026-57736 Vulnerability in CVE-2026-57736 (CVE-2026-57736)
vulnerability in CVE-2026-57736 (CVE-2026-57736). Risk of unauthorized operations or information disclosure.
CVE-2026-13211 Vulnerability in CVE-2026-13211 (CVE-2026-13211)
vulnerability in CVE-2026-13211 (CVE-2026-13211). Risk of unauthorized operations or information disclosure.
CVE-2026-12085 Vulnerability in ibm (CVE-2026-12085)
vulnerability in ibm (CVE-2026-12085). Confidential information can be exposed externally.
CVE-2026-13437 Vulnerability in devolutions (CVE-2026-13437)
vulnerability in devolutions (CVE-2026-13437). Confidential information can be exposed externally.
CVE-2026-55180 Information Disclosure in pnpm (CVE-2026-55180)
vulnerability in pnpm (CVE-2026-55180). Confidential information can be exposed externally. Exploitable via `Authorization header`. Mitigation: upgrade to `11.5.3` or later.
CVE-2026-57318 Subscriber Sensitive Data Exposure in Site Reviews <= 8.0.11 versions.
Subscriber Sensitive Data Exposure in Site Reviews <= 8.0.11 versions.
CVE-2026-54834 Unauthenticated Sensitive Data Exposure in Object Cache 4 everyone <= 2.3.2 versions.
Unauthenticated Sensitive Data Exposure in Object Cache 4 everyone <= 2.3.2 versions.
CVE-2026-54848 Vulnerability in CVE-2026-54848 (CVE-2026-54848)
vulnerability in CVE-2026-54848 (CVE-2026-54848). Risk of unauthorized operations or information disclosure.
CVE-2026-54841 Unauthenticated Sensitive Data Exposure in Vitepos <= 3.4.2 versions.
Unauthenticated Sensitive Data Exposure in Vitepos <= 3.4.2 versions.
CVE-2026-54821 Subscriber Sensitive Data Exposure in Visual Link Preview <= 2.3.1 versions.
Subscriber Sensitive Data Exposure in Visual Link Preview <= 2.3.1 versions.
CVE-2026-22551 Vulnerability in @theia/ai-chat-ui (CVE-2026-22551)
vulnerability in @theia/ai-chat-ui (CVE-2026-22551). Confidential information can be exposed externally. Mitigation: upgrade to `1.71.0` or later.
CVE-2026-52698 Vulnerability in CVE-2026-52698 (CVE-2026-52698)
vulnerability in CVE-2026-52698 (CVE-2026-52698). Risk of unauthorized operations or information disclosure.
CVE-2026-34888 Unauthenticated Sensitive Data Exposure in Bricksforge <= 3.1.8.4 versions.
Unauthenticated Sensitive Data Exposure in Bricksforge <= 3.1.8.4 versions.
CVE-2026-27868 Vulnerability in CVE-2026-27868 (CVE-2026-27868)
vulnerability in CVE-2026-27868 (CVE-2026-27868). Risk of unauthorized operations or information disclosure.
CVE-2024-35690 Vulnerability in CVE-2024-35690 (CVE-2024-35690)
vulnerability in CVE-2024-35690 (CVE-2024-35690). Confidential information can be exposed externally.
CVE-2026-54197 Unauthenticated Sensitive Data Exposure in GetGenie <= 4.4.1 versions.
Unauthenticated Sensitive Data Exposure in GetGenie <= 4.4.1 versions.
CVE-2026-52692 Unauthenticated Sensitive Data Exposure in Affiliates Manager <= 2.9.50 versions.
Unauthenticated Sensitive Data Exposure in Affiliates Manager <= 2.9.50 versions.
CVE-2026-52695 Unauthenticated Sensitive Data Exposure in ABC Crypto Checkout <= 1.8.2 versions.
Unauthenticated Sensitive Data Exposure in ABC Crypto Checkout <= 1.8.2 versions.
CVE-2026-49082 Vulnerability in CVE-2026-49082 (CVE-2026-49082)
vulnerability in CVE-2026-49082 (CVE-2026-49082). Risk of unauthorized operations or information disclosure.
CVE-2026-48965 Subscriber Sensitive Data Exposure in XCloner <= 4.8.6 versions.
Subscriber Sensitive Data Exposure in XCloner <= 4.8.6 versions.
CVE-2026-42667 Unauthenticated Sensitive Data Exposure in Bookly <= 27.4 versions.
Unauthenticated Sensitive Data Exposure in Bookly <= 27.4 versions.
CVE-2026-40789 Unauthenticated Sensitive Data Exposure in Amelia <= 2.2 versions.
Unauthenticated Sensitive Data Exposure in Amelia <= 2.2 versions.
CVE-2026-42384 Unauthenticated Sensitive Data Exposure in Simply Schedule Appointments < 1.6.11.2 versions.
Unauthenticated Sensitive Data Exposure in Simply Schedule Appointments < 1.6.11.2 versions.
CVE-2026-39480 Unauthenticated Sensitive Data Exposure in Backup Migration <= 2.1.1 versions.
Unauthenticated Sensitive Data Exposure in Backup Migration <= 2.1.1 versions.
CVE-2026-49064 Vulnerability in CVE-2026-49064 (CVE-2026-49064)
vulnerability in CVE-2026-49064 (CVE-2026-49064). Confidential information can be exposed externally.
CVE-2026-7184 Vulnerability in mattermost (CVE-2026-7184)
vulnerability in mattermost (CVE-2026-7184). Confidential information can be exposed externally.
CVE-2026-42539 Vulnerability in CVE-2026-42539 (CVE-2026-42539)
vulnerability in CVE-2026-42539 (CVE-2026-42539). Confidential information can be exposed externally.
CVE-2026-44487 Vulnerability in axios (CVE-2026-44487)
vulnerability in axios (CVE-2026-44487). Confidential information can be exposed externally. Exploitable via `Authorization header`. Mitigation: upgrade to `0.32.0` or later.
CVE-2026-44486 Information Disclosure in axios (CVE-2026-44486)
vulnerability in axios (CVE-2026-44486). Confidential information can be exposed externally. Exploitable via `GET /start`. Mitigation: upgrade to `0.32.0` or later.
CVE-2026-4035 Vulnerability in mlflow (CVE-2026-4035)
vulnerability in mlflow (CVE-2026-4035). Confidential information can be exposed externally. Exploitable via ``api_key``. Mitigation: upgrade to `3.11.0` or later.
CVE-2026-44653 Vulnerability in librechat (CVE-2026-44653)
vulnerability in librechat (CVE-2026-44653). Confidential information can be exposed externally. Exploitable via `GET /api/mcp/servers`.
CVE-2026-35447 Vulnerability in CVE-2026-35447 (CVE-2026-35447)
vulnerability in CVE-2026-35447 (CVE-2026-35447). Risk of unauthorized operations or information disclosure.
CVE-2026-42673 Vulnerability in CVE-2026-42673 (CVE-2026-42673)
vulnerability in CVE-2026-42673 (CVE-2026-42673). Confidential information can be exposed externally.
CVE-2026-49370 In JetBrains YouTrack before 2026.1.13162 information disclosure was possible on fetchApp requests
In JetBrains YouTrack before 2026.1.13162 information disclosure was possible on fetchApp requests
CVE-2026-10101 Vulnerability in CVE-2026-10101 (CVE-2026-10101)
vulnerability in CVE-2026-10101 (CVE-2026-10101). Confidential information can be exposed externally. Exploitable via ``view``.
CVE-2026-42746 Insertion of Sensitive Information Into Sent Data vulnerability in ZAYTECH Smart Online Order for...
Insertion of Sensitive Information Into Sent Data vulnerability in ZAYTECH Smart Online Order for...
CVE-2026-48877 Vulnerability in CVE-2026-48877 (CVE-2026-48877)
vulnerability in CVE-2026-48877 (CVE-2026-48877). Confidential information can be exposed externally.
CVE-2026-46481 Vulnerability in org.open-metadata:openmetadata-service (CVE-2026-46481)
vulnerability in org.open-metadata:openmetadata-service (CVE-2026-46481). Confidential information can be exposed externally. Exploitable via `POST /api/v1/automations/workflows`. Mitigation: upgrade to `1.12.4` or later.
CVE-2026-45739 Information Disclosure in strawberry-graphql (CVE-2026-45739)
vulnerability in strawberry-graphql (CVE-2026-45739). Risk of unauthorized operations or information disclosure. Exploitable via ``parameters``. Mitigation: upgrade to `0.315.4` or later.
CVE-2026-45582 Vulnerability in n8n-mcp (CVE-2026-45582)
vulnerability in n8n-mcp (CVE-2026-45582). Confidential information can be exposed externally. Exploitable via ``PRIVACY.md``. Mitigation: upgrade to `2.51.3` or later.
CVE-2026-41181 Vulnerability in github.com/traefik/traefik/v2 (CVE-2026-41181)
vulnerability in github.com/traefik/traefik/v2 (CVE-2026-41181). Risk of unauthorized operations or information disclosure. Exploitable via ``errors``. Mitigation: upgrade to `2.11.44` or later.
CVE-2025-62309 Vulnerability in CVE-2025-62309 (CVE-2025-62309)
vulnerability in CVE-2025-62309 (CVE-2025-62309). Risk of unauthorized operations or information disclosure.
CVE-2025-62308 Vulnerability in CVE-2025-62308 (CVE-2025-62308)
vulnerability in CVE-2025-62308 (CVE-2025-62308). Risk of unauthorized operations or information disclosure.
CVE-2025-62305 Vulnerability in CVE-2025-62305 (CVE-2025-62305)
vulnerability in CVE-2025-62305 (CVE-2025-62305). Risk of unauthorized operations or information disclosure.
CVE-2026-45215 Vulnerability in wordpress (CVE-2026-45215)
vulnerability in wordpress (CVE-2026-45215). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →