Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-42847 |
|
SQL Injection in sqli (CVE-2026-42847)
SQL injection in sqli (CVE-2026-42847). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `5.5.3` or later.
|
| CVE-2026-45288 |
|
Vulnerability in Marten (CVE-2026-45288)
vulnerability in Marten (CVE-2026-45288). Successful exploitation can lead to full system takeover. Exploitable via ``regConfig``. Mitigation: upgrade to `8.37.0` or later.
|
| CVE-2026-44792 |
|
SQL Injection in n8n (CVE-2026-44792)
SQL injection in n8n (CVE-2026-44792). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `2.20.7` or later.
|
| CVE-2026-6637 |
|
SQL Injection in postgresql (CVE-2026-6637)
SQL injection in postgresql (CVE-2026-6637). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `14.23.0, 15.18.0, 16.14.0, 17.10.0, 18.4.0` or later.
|
| CVE-2026-6476 |
|
SQL Injection in postgresql (CVE-2026-6476)
SQL injection in postgresql (CVE-2026-6476). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `17.10.0, 18.4.0` or later.
|
| CVE-2026-6638 |
|
SQL Injection in postgresql (CVE-2026-6638)
SQL injection in postgresql (CVE-2026-6638). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `16.14.0, 17.10.0, 18.4.0` or later.
|
| CVE-2025-11024 |
|
SQL Injection in sqli (CVE-2025-11024)
SQL injection in sqli (CVE-2025-11024). Successful exploitation can lead to full system takeover.
|
| CVE-2026-6225 |
|
SQL Injection in wordpress (CVE-2026-6225)
SQL injection in wordpress (CVE-2026-6225). Confidential information can be exposed externally.
|
| CVE-2026-46445 |
|
SOGo before 5.12.7, when PostgreSQL is used, allows SQL injection.
SOGo before 5.12.7, when PostgreSQL is used, allows SQL injection.
|
| CVE-2026-46446 |
|
SOGo before 5.12.7, when PostgreSQL or MariaDB is used, and cleartext passwords are stored,...
SOGo before 5.12.7, when PostgreSQL or MariaDB is used, and cleartext passwords are stored,...
|
| CVE-2026-5486 |
|
SQL Injection in wordpress (CVE-2026-5486)
SQL injection in wordpress (CVE-2026-5486). Confidential information can be exposed externally.
|
| CVE-2026-44446 |
|
SQL Injection in sqli (CVE-2026-44446)
SQL injection in sqli (CVE-2026-44446). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `15.104.3` or later.
|
| CVE-2026-44447 |
|
SQL Injection in sqli (CVE-2026-44447)
SQL injection in sqli (CVE-2026-44447). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `16.9.0` or later.
|
| CVE-2026-44381 |
|
SQL Injection in sqli (CVE-2026-44381)
SQL injection in sqli (CVE-2026-44381). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.5.37` or later.
|
| CVE-2026-44418 |
|
SQL Injection in sqli (CVE-2026-44418)
SQL injection in sqli (CVE-2026-44418). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-39358 |
|
SQL Injection in sqli (CVE-2026-39358)
SQL injection in sqli (CVE-2026-39358). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `6.6.0` or later.
|
| CVE-2026-0242 |
|
SQL Injection in sqli (CVE-2026-0242)
SQL injection in sqli (CVE-2026-0242). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-37226 |
|
SQL Injection in sqli (CVE-2020-37226)
SQL injection in sqli (CVE-2020-37226). Confidential information can be exposed externally.
|
| CVE-2020-37224 |
|
SQL Injection in sqli (CVE-2020-37224)
SQL injection in sqli (CVE-2020-37224). Confidential information can be exposed externally.
|
| CVE-2020-37218 |
|
SQL Injection in sqli (CVE-2020-37218)
SQL injection in sqli (CVE-2020-37218). Confidential information can be exposed externally.
|
| CVE-2026-4608 |
|
SQL Injection in wordpress (CVE-2026-4608)
SQL injection in wordpress (CVE-2026-4608). Confidential information can be exposed externally.
|
| CVE-2026-37429 |
|
SQL Injection in sqli (CVE-2026-37429)
SQL injection in sqli (CVE-2026-37429). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-37428 |
|
SQL Injection in sqli (CVE-2026-37428)
SQL injection in sqli (CVE-2026-37428). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4798 |
|
SQL Injection in wordpress (CVE-2026-4798)
SQL injection in wordpress (CVE-2026-4798). Confidential information can be exposed externally.
|
| CVE-2026-6929 |
|
SQL Injection in wordpress (CVE-2026-6929)
SQL injection in wordpress (CVE-2026-6929). Confidential information can be exposed externally.
|
| CVE-2026-7619 |
|
SQL Injection in wordpress (CVE-2026-7619)
SQL injection in wordpress (CVE-2026-7619). Confidential information can be exposed externally.
|
| CVE-2026-6888 |
|
SQL Injection in sqli (CVE-2026-6888)
SQL injection in sqli (CVE-2026-6888). Successful exploitation can lead to full system takeover.
|
| CVE-2026-1250 |
|
SQL Injection in wordpress (CVE-2026-1250)
SQL injection in wordpress (CVE-2026-1250). Confidential information can be exposed externally.
|
| CVE-2026-44864 |
|
SQL Injection in sqli (CVE-2026-44864)
SQL injection in sqli (CVE-2026-44864). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44860 |
|
SQL Injection in sqli (CVE-2026-44860)
SQL injection in sqli (CVE-2026-44860). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44861 |
|
SQL Injection in sqli (CVE-2026-44861)
SQL injection in sqli (CVE-2026-44861). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44862 |
|
SQL Injection in sqli (CVE-2026-44862)
SQL injection in sqli (CVE-2026-44862). Successful exploitation can lead to full system takeover.
|
| CVE-2026-44863 |
|
SQL Injection in sqli (CVE-2026-44863)
SQL injection in sqli (CVE-2026-44863). Successful exploitation can lead to full system takeover.
|
| CVE-2025-53681 |
|
SQL Injection in sqli (CVE-2025-53681)
SQL injection in sqli (CVE-2025-53681). Successful exploitation can lead to full system takeover.
|
| CVE-2026-25088 |
|
SQL Injection in sqli (CVE-2026-25088)
SQL injection in sqli (CVE-2026-25088). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-44204 |
|
Vulnerability in sqli (CVE-2026-44204)
vulnerability in sqli (CVE-2026-44204). Confidential information can be exposed externally. Mitigation: upgrade to `1.20.1` or later.
|
| CVE-2026-34187 |
|
SQL Injection in sqli (CVE-2026-34187)
SQL injection in sqli (CVE-2026-34187). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8111 |
|
SQL Injection in sqli (CVE-2026-8111)
SQL injection in sqli (CVE-2026-8111). Successful exploitation can lead to full system takeover.
|
| CVE-2026-32687 |
|
SQL Injection in postgrex (CVE-2026-32687)
SQL injection in postgrex (CVE-2026-32687). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `0.22.2` or later.
|
| CVE-2026-45218 |
|
SQL Injection in wordpress (CVE-2026-45218)
SQL injection in wordpress (CVE-2026-45218). Confidential information can be exposed externally.
|
| CVE-2026-42741 |
|
SQL Injection in sqli (CVE-2026-42741)
SQL injection in sqli (CVE-2026-42741). Confidential information can be exposed externally.
|
| CVE-2026-42742 |
|
SQL Injection in sqli (CVE-2026-42742)
SQL injection in sqli (CVE-2026-42742). Confidential information can be exposed externally.
|
| CVE-2026-45211 |
|
SQL Injection in sqli (CVE-2026-45211)
SQL injection in sqli (CVE-2026-45211). Confidential information can be exposed externally.
|
| CVE-2026-45214 |
|
SQL Injection in sqli (CVE-2026-45214)
SQL injection in sqli (CVE-2026-45214). Confidential information can be exposed externally.
|
| CVE-2026-45213 |
|
SQL Injection in sqli (CVE-2026-45213)
SQL injection in sqli (CVE-2026-45213). Confidential information can be exposed externally.
|
| CVE-2026-41125 |
|
SQL Injection in sqli (CVE-2026-41125)
SQL injection in sqli (CVE-2026-41125). Data can be tampered with by attackers.
|
| CVE-2025-6577 |
|
SQL Injection in sqli (CVE-2025-6577)
SQL injection in sqli (CVE-2025-6577). Successful exploitation can lead to full system takeover.
|
| CVE-2026-5028 |
|
SQL Injection in wordpress (CVE-2026-5028)
SQL injection in wordpress (CVE-2026-5028). Confidential information can be exposed externally.
|
| CVE-2026-2993 |
|
SQL Injection in wordpress (CVE-2026-2993)
SQL injection in wordpress (CVE-2026-2993). Confidential information can be exposed externally.
|
| CVE-2026-40131 |
|
SQL Injection in sqli (CVE-2026-40131)
SQL injection in sqli (CVE-2026-40131). Risk of unauthorized operations or information disclosure.
|