Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-14966 |
|
Vulnerability in dos (CVE-2026-14966)
vulnerability in dos (CVE-2026-14966). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-55668 |
|
Path Traversal in CVE-2026-55668 (CVE-2026-55668)
path traversal in CVE-2026-55668 (CVE-2026-55668). Data can be tampered with by attackers.
|
| CVE-2026-14904 |
|
Vulnerability in Amazon aws (CVE-2026-14904)
vulnerability in Amazon aws (CVE-2026-14904). Confidential information can be exposed externally.
|
| CVE-2026-57571 |
|
Path Traversal in kidocode (CVE-2026-57571)
path traversal in kidocode (CVE-2026-57571). Successful exploitation can lead to full system takeover.
|
| CVE-2026-58403 |
|
Vulnerability in gohugo (CVE-2026-58403)
vulnerability in gohugo (CVE-2026-58403). Confidential information can be exposed externally. Mitigation: upgrade to `0.163.1` or later.
|
| CVE-2026-58203 |
|
Path Traversal in CVE-2026-58203 (CVE-2026-58203)
path traversal in CVE-2026-58203 (CVE-2026-58203). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.14.2` or later.
|
| CVE-2026-14699 |
|
Vulnerability in CVE-2026-14699 (CVE-2026-14699)
vulnerability in CVE-2026-14699 (CVE-2026-14699). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-57991 |
|
Vulnerability in microsoft (CVE-2026-57991)
vulnerability in microsoft (CVE-2026-57991). Confidential information can be exposed externally.
|
| CVE-2026-25718 |
|
Vulnerability in CVE-2026-25718 (CVE-2026-25718)
vulnerability in CVE-2026-25718 (CVE-2026-25718). Confidential information can be exposed externally.
|
| CVE-2026-46464 |
|
Vulnerability in CVE-2026-46464 (CVE-2026-46464)
vulnerability in CVE-2026-46464 (CVE-2026-46464). Confidential information can be exposed externally.
|
| CVE-2026-46468 |
|
Vulnerability in CVE-2026-46468 (CVE-2026-46468)
vulnerability in CVE-2026-46468 (CVE-2026-46468). Confidential information can be exposed externally.
|
| CVE-2026-44269 |
|
Vulnerability in CVE-2026-44269 (CVE-2026-44269)
vulnerability in CVE-2026-44269 (CVE-2026-44269). Confidential information can be exposed externally.
|
| CVE-2026-41121 |
|
Vulnerability in dell (CVE-2026-41121)
vulnerability in dell (CVE-2026-41121). Successful exploitation can lead to full system takeover.
|
| CVE-2026-55607 |
|
Path Traversal in anthropic (CVE-2026-55607)
path traversal in anthropic (CVE-2026-55607). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `2.1.163` or later.
|
| CVE-2026-54371 |
|
Vulnerability in privilege-escalation (CVE-2026-54371)
vulnerability in privilege-escalation (CVE-2026-54371). Confidential information can be exposed externally.
|
| CVE-2026-54369 |
|
Vulnerability in privilege-escalation (CVE-2026-54369)
vulnerability in privilege-escalation (CVE-2026-54369). Confidential information can be exposed externally.
|
| CVE-2026-45405 |
|
Vulnerability in dokku (CVE-2026-45405)
vulnerability in dokku (CVE-2026-45405). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `0.38.2` or later.
|
| CVE-2026-55667 |
|
Path Traversal in CVE-2026-55667 (CVE-2026-55667)
path traversal in CVE-2026-55667 (CVE-2026-55667). Data can be tampered with by attackers. Mitigation: upgrade to `2.63.16` or later.
|
| CVE-2026-50549 |
|
Vulnerability in anysphere (CVE-2026-50549)
vulnerability in anysphere (CVE-2026-50549). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `3.0` or later.
|
| CVE-2026-46406 |
|
Vulnerability in @anthropic-ai/claude-code (CVE-2026-46406)
vulnerability in @anthropic-ai/claude-code (CVE-2026-46406). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.1.128` or later.
|
| CVE-2026-53766 |
|
Path Traversal in google (CVE-2026-53766)
path traversal in google (CVE-2026-53766). Data can be tampered with by attackers. Mitigation: upgrade to `1.1.0` or later.
|
| CVE-2026-35025 |
|
Vulnerability in proftpd (CVE-2026-35025)
vulnerability in proftpd (CVE-2026-35025). Confidential information can be exposed externally.
|
| CVE-2026-11940 |
|
Path Traversal in CVE-2026-11940 (CVE-2026-11940)
path traversal in CVE-2026-11940 (CVE-2026-11940). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-52811 |
|
Path Traversal in gogs.io/gogs (CVE-2026-52811)
path traversal in gogs.io/gogs (CVE-2026-52811). Risk of unauthorized operations or information disclosure. Exploitable via `GET /user/login`. Mitigation: upgrade to `0.14.3` or later.
|
| CVE-2026-56692 |
|
Vulnerability in CVE-2026-56692 (CVE-2026-56692)
vulnerability in CVE-2026-56692 (CVE-2026-56692). Confidential information can be exposed externally.
|
| CVE-2026-54352 |
|
Path Traversal in @budibase/server (CVE-2026-54352)
path traversal in @budibase/server (CVE-2026-54352). Confidential information can be exposed externally. Exploitable via `POST /api/pwa/process-zip`. Mitigation: upgrade to `3.39.9` or later.
|
| CVE-2026-44274 |
|
Vulnerability in dell (CVE-2026-44274)
vulnerability in dell (CVE-2026-44274). Successful exploitation can lead to full system takeover.
|
| CVE-2026-55443 |
|
Path Traversal in langchain (CVE-2026-55443)
path traversal in langchain (CVE-2026-55443). Confidential information can be exposed externally. Mitigation: upgrade to `1.3.9` or later.
|
| CVE-2026-56236 |
|
Vulnerability in CVE-2026-56236 (CVE-2026-56236)
vulnerability in CVE-2026-56236 (CVE-2026-56236). Data can be tampered with by attackers.
|
| CVE-2026-23879 |
|
Vulnerability in py7zr (CVE-2026-23879)
vulnerability in py7zr (CVE-2026-23879). Successful exploitation can lead to full system takeover. Exploitable via ``py7zr``. Mitigation: upgrade to `1.1.3` or later.
|
| CVE-2026-47833 |
|
Vulnerability in privilege-escalation (CVE-2026-47833)
vulnerability in privilege-escalation (CVE-2026-47833). Confidential information can be exposed externally.
|
| CVE-2026-12567 |
|
Vulnerability in bbot (CVE-2026-12567)
vulnerability in bbot (CVE-2026-12567). Risk of unauthorized operations or information disclosure. Exploitable via ``github_workflows``. Mitigation: upgrade to `2.8.5` or later.
|
| CVE-2026-53765 |
|
Vulnerability in chrome-devtools-mcp (CVE-2026-53765)
vulnerability in chrome-devtools-mcp (CVE-2026-53765). Data can be tampered with by attackers. Exploitable via ``O_NOFOLLOW``. Mitigation: upgrade to `1.1.0` or later.
|
| CVE-2026-47277 |
|
Path Traversal in CVE-2026-47277 (CVE-2026-47277)
path traversal in CVE-2026-47277 (CVE-2026-47277). Confidential information can be exposed externally.
|
| CVE-2026-50135 |
|
Vulnerability in github.com/gohugoio/hugo (CVE-2026-50135)
vulnerability in github.com/gohugoio/hugo (CVE-2026-50135). Confidential information can be exposed externally. Exploitable via ``resources.Get``. Mitigation: upgrade to `0.162.0` or later.
|
| CVE-2026-50656 |
|
Microsoft is aware of an elevation of privilege in the Microsoft Malware Protection Engine in...
Microsoft is aware of an elevation of privilege in the Microsoft Malware Protection Engine in...
|
| CVE-2026-54230 |
|
Vulnerability in abrt-project (CVE-2026-54230)
vulnerability in abrt-project (CVE-2026-54230). Successful exploitation can lead to full system takeover.
|
| CVE-2026-54094 |
|
Path Traversal in github.com/filebrowser/filebrowser/v2 (CVE-2026-54094)
path traversal in github.com/filebrowser/filebrowser/v2 (CVE-2026-54094). Confidential information can be exposed externally. Exploitable via `GET /api/raw/{path}`. Mitigation: upgrade to `2.63.14` or later.
|
| CVE-2026-54056 |
|
Vulnerability in kovidgoyal (CVE-2026-54056)
vulnerability in kovidgoyal (CVE-2026-54056). Data can be tampered with by attackers. Exploitable via ``O_NOFOLLOW``.
|
| CVE-2026-54055 |
|
Vulnerability in privilege-escalation (CVE-2026-54055)
vulnerability in privilege-escalation (CVE-2026-54055). Data can be tampered with by attackers. Exploitable via ``O_NOFOLLOW``.
|
| CVE-2025-46293 |
|
Vulnerability in apple (CVE-2025-46293)
vulnerability in apple (CVE-2025-46293). Confidential information can be exposed externally.
|
| CVE-2026-45384 |
|
Vulnerability in c (CVE-2026-45384)
vulnerability in c (CVE-2026-45384). Data can be tampered with by attackers.
|
| CVE-2026-53476 |
|
Vulnerability in path-traversal (CVE-2026-53476)
vulnerability in path-traversal (CVE-2026-53476). Successful exploitation can lead to full system takeover.
|
| CVE-2026-11853 |
|
Vulnerability in CVE-2026-11853 (CVE-2026-11853)
vulnerability in CVE-2026-11853 (CVE-2026-11853). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-11837 |
|
Vulnerability in privilege-escalation (CVE-2026-11837)
vulnerability in privilege-escalation (CVE-2026-11837). Successful exploitation can lead to full system takeover.
|
| CVE-2026-42989 |
|
Vulnerability in microsoft (CVE-2026-42989)
vulnerability in microsoft (CVE-2026-42989). Successful exploitation can lead to full system takeover.
|
| CVE-2026-50511 |
|
Vulnerability in microsoft (CVE-2026-50511)
vulnerability in microsoft (CVE-2026-50511). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44275 |
|
Vulnerability in CVE-2026-44275 (CVE-2026-44275)
vulnerability in CVE-2026-44275 (CVE-2026-44275). Data can be tampered with by attackers.
|
| CVE-2026-45586 |
|
Vulnerability in microsoft (CVE-2026-45586)
vulnerability in microsoft (CVE-2026-45586). Successful exploitation can lead to full system takeover.
|
| CVE-2026-45491 |
|
Vulnerability in Microsoft.NETCore.App.Runtime.linux-x64 (CVE-2026-45491)
vulnerability in Microsoft.NETCore.App.Runtime.linux-x64 (CVE-2026-45491). Data can be tampered with by attackers. Exploitable via ``TarFile.ExtractToDirectory``. Mitigation: upgrade to `10.0.9` or later.
|