Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Tag: php Clear
ID Title
CVE-2026-40571 Vulnerability in CVE-2026-40571 (CVE-2026-40571)
vulnerability in CVE-2026-40571 (CVE-2026-40571). Risk of unauthorized operations or information disclosure.
CVE-2026-35447 Vulnerability in CVE-2026-35447 (CVE-2026-35447)
vulnerability in CVE-2026-35447 (CVE-2026-35447). Risk of unauthorized operations or information disclosure.
CVE-2026-35443 Vulnerability in CVE-2026-35443 (CVE-2026-35443)
vulnerability in CVE-2026-35443 (CVE-2026-35443). Risk of unauthorized operations or information disclosure. Exploitable via ``view_other_topics``.
CVE-2026-40314 Vulnerability in CVE-2026-40314 (CVE-2026-40314)
vulnerability in CVE-2026-40314 (CVE-2026-40314). Risk of unauthorized operations or information disclosure.
CVE-2026-33398 Vulnerability in CVE-2026-33398 (CVE-2026-33398)
vulnerability in CVE-2026-33398 (CVE-2026-33398). Risk of unauthorized operations or information disclosure. Exploitable via ``post``.
CVE-2026-7313 CWE‑522: Insufficiently Protected Credentials in web services in Progress Sitefinity version from...
CWE‑522: Insufficiently Protected Credentials in web services in Progress Sitefinity version from...
CVE-2026-7195 CWE-20: Improper Input Validation in web services in Progress Sitefinity 14.1.x through 14.3.x,...
CWE-20: Improper Input Validation in web services in Progress Sitefinity 14.1.x through 14.3.x,...
CVE-2026-39555 Deserialization of Untrusted Data vulnerability in Elated-Themes Askka allows Object Injection. ...
Deserialization of Untrusted Data vulnerability in Elated-Themes Askka allows Object Injection. ...
CVE-2026-39553 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File...
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File...
CVE-2026-39552 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File...
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File...
CVE-2026-32250 Cross-Site Scripting (XSS) in CVE-2026-32250 (CVE-2026-32250)
cross-site scripting in CVE-2026-32250 (CVE-2026-32250). Risk of unauthorized operations or information disclosure.
CVE-2025-68886 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File...
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File...
CVE-2025-69369 Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File...
Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File...
CVE-2025-58897 Vulnerability in CVE-2025-58897 (CVE-2025-58897)
vulnerability in CVE-2025-58897 (CVE-2025-58897). Successful exploitation can lead to full system takeover.
CVE-2025-58707 Vulnerability in CVE-2025-58707 (CVE-2025-58707)
vulnerability in CVE-2025-58707 (CVE-2025-58707). Successful exploitation can lead to full system takeover.
CVE-2025-58705 Vulnerability in CVE-2025-58705 (CVE-2025-58705)
vulnerability in CVE-2025-58705 (CVE-2025-58705). Successful exploitation can lead to full system takeover.
CVE-2025-58024 Vulnerability in CVE-2025-58024 (CVE-2025-58024)
vulnerability in CVE-2025-58024 (CVE-2025-58024). Successful exploitation can lead to full system takeover.
CVE-2025-53440 Vulnerability in CVE-2025-53440 (CVE-2025-53440)
vulnerability in CVE-2025-53440 (CVE-2025-53440). Successful exploitation can lead to full system takeover.
CVE-2026-10581 SSRF (Server-Side Request Forgery) in CVE-2026-10581 (CVE-2026-10581)
SSRF in CVE-2026-10581 (CVE-2026-10581). Risk of unauthorized operations or information disclosure.
CVE-2026-10568 Vulnerability in sqli (CVE-2026-10568)
vulnerability in sqli (CVE-2026-10568). Risk of unauthorized operations or information disclosure.
CVE-2026-10100 Cross-Site Scripting (XSS) in wordpress (CVE-2026-10100)
cross-site scripting in wordpress (CVE-2026-10100). Risk of unauthorized operations or information disclosure.
CVE-2026-10558 Vulnerability in CVE-2026-10558 (CVE-2026-10558)
vulnerability in CVE-2026-10558 (CVE-2026-10558). Risk of unauthorized operations or information disclosure.
CVE-2026-10559 Vulnerability in CVE-2026-10559 (CVE-2026-10559)
vulnerability in CVE-2026-10559 (CVE-2026-10559). Risk of unauthorized operations or information disclosure.
CVE-2026-10296 Vulnerability in sqli (CVE-2026-10296)
vulnerability in sqli (CVE-2026-10296). Risk of unauthorized operations or information disclosure.
CVE-2026-10299 Vulnerability in CVE-2026-10299 (CVE-2026-10299)
vulnerability in CVE-2026-10299 (CVE-2026-10299). Risk of unauthorized operations or information disclosure.
CVE-2026-10301 Cross-Site Scripting (XSS) in CVE-2026-10301 (CVE-2026-10301)
cross-site scripting in CVE-2026-10301 (CVE-2026-10301). Risk of unauthorized operations or information disclosure.
CVE-2026-10302 Vulnerability in sqli (CVE-2026-10302)
vulnerability in sqli (CVE-2026-10302). Risk of unauthorized operations or information disclosure.
CVE-2026-10297 Vulnerability in sqli (CVE-2026-10297)
vulnerability in sqli (CVE-2026-10297). Risk of unauthorized operations or information disclosure.
CVE-2026-49491 SQL Injection in sqli (CVE-2026-49491)
SQL injection in sqli (CVE-2026-49491). Confidential information can be exposed externally.
CVE-2026-10290 Vulnerability in sqli (CVE-2026-10290)
vulnerability in sqli (CVE-2026-10290). Risk of unauthorized operations or information disclosure.
CVE-2018-25429 SQL Injection in sqli (CVE-2018-25429)
SQL injection in sqli (CVE-2018-25429). Confidential information can be exposed externally.
CVE-2018-25433 SQL Injection in sqli (CVE-2018-25433)
SQL injection in sqli (CVE-2018-25433). Confidential information can be exposed externally.
CVE-2018-25434 SQL Injection in wordpress (CVE-2018-25434)
SQL injection in wordpress (CVE-2018-25434). Confidential information can be exposed externally.
CVE-2018-25430 SQL Injection in c (CVE-2018-25430)
SQL injection in c (CVE-2018-25430). Confidential information can be exposed externally.
CVE-2018-25428 SQL Injection in sqli (CVE-2018-25428)
SQL injection in sqli (CVE-2018-25428). Confidential information can be exposed externally.
CVE-2026-10284 Vulnerability in CVE-2026-10284 (CVE-2026-10284)
vulnerability in CVE-2026-10284 (CVE-2026-10284). Risk of unauthorized operations or information disclosure.
CVE-2026-10287 SSRF (Server-Side Request Forgery) in CVE-2026-10287 (CVE-2026-10287)
SSRF in CVE-2026-10287 (CVE-2026-10287). Risk of unauthorized operations or information disclosure.
CVE-2026-10288 Authentication Bypass in CVE-2026-10288 (CVE-2026-10288)
authentication bypass in CVE-2026-10288 (CVE-2026-10288). Risk of unauthorized operations or information disclosure.
CVE-2026-10285 Vulnerability in CVE-2026-10285 (CVE-2026-10285)
vulnerability in CVE-2026-10285 (CVE-2026-10285). Risk of unauthorized operations or information disclosure.
CVE-2026-10289 Cross-Site Scripting (XSS) in CVE-2026-10289 (CVE-2026-10289)
cross-site scripting in CVE-2026-10289 (CVE-2026-10289). Risk of unauthorized operations or information disclosure.
CVE-2026-10286 Vulnerability in sqli (CVE-2026-10286)
vulnerability in sqli (CVE-2026-10286). Risk of unauthorized operations or information disclosure.
CVE-2026-10282 Vulnerability in CVE-2026-10282 (CVE-2026-10282)
vulnerability in CVE-2026-10282 (CVE-2026-10282). Risk of unauthorized operations or information disclosure.
CVE-2026-10272 Vulnerability in CVE-2026-10272 (CVE-2026-10272)
vulnerability in CVE-2026-10272 (CVE-2026-10272). Risk of unauthorized operations or information disclosure.
CVE-2026-10273 Command Injection in CVE-2026-10273 (CVE-2026-10273)
command injection in CVE-2026-10273 (CVE-2026-10273). Risk of unauthorized operations or information disclosure.
CVE-2026-10265 Vulnerability in sqli (CVE-2026-10265)
vulnerability in sqli (CVE-2026-10265). Risk of unauthorized operations or information disclosure.
CVE-2026-10262 Vulnerability in sqli (CVE-2026-10262)
vulnerability in sqli (CVE-2026-10262). Risk of unauthorized operations or information disclosure.
CVE-2026-10261 Vulnerability in sqli (CVE-2026-10261)
vulnerability in sqli (CVE-2026-10261). Risk of unauthorized operations or information disclosure.
CVE-2026-10263 Vulnerability in sqli (CVE-2026-10263)
vulnerability in sqli (CVE-2026-10263). Risk of unauthorized operations or information disclosure.
CVE-2026-10260 Vulnerability in sqli (CVE-2026-10260)
vulnerability in sqli (CVE-2026-10260). Risk of unauthorized operations or information disclosure.
CVE-2026-10257 Vulnerability in sqli (CVE-2026-10257)
vulnerability in sqli (CVE-2026-10257). Risk of unauthorized operations or information disclosure.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →