Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-34260 |
|
SQL Injection in sqli (CVE-2026-34260)
SQL injection in sqli (CVE-2026-34260). Confidential information can be exposed externally.
|
| CVE-2026-38567 |
|
SQL Injection in sqli (CVE-2026-38567)
SQL injection in sqli (CVE-2026-38567). Successful exploitation can lead to full system takeover.
|
| CVE-2026-36962 |
|
SQL Injection in sqli (CVE-2026-36962)
SQL injection in sqli (CVE-2026-36962). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-7815 |
|
SQL Injection in pgadmin4 (CVE-2026-7815)
SQL injection in pgadmin4 (CVE-2026-7815). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.15` or later.
|
| CVE-2026-6093 |
|
SQL Injection in sqli (CVE-2026-6093)
SQL injection in sqli (CVE-2026-6093). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-44521 |
|
SQL Injection in studio-42/elfinder (CVE-2026-44521)
SQL injection in studio-42/elfinder (CVE-2026-44521). Successful exploitation can lead to full system takeover. Exploitable via ``elFinderVolumeMySQL``. Mitigation: upgrade to `2.1.68` or later.
|
| CVE-2021-47941 |
|
SQL Injection in wordpress (CVE-2021-47941)
SQL injection in wordpress (CVE-2021-47941). Confidential information can be exposed externally.
|
| CVE-2021-47930 |
|
SQL Injection in sqli (CVE-2021-47930)
SQL injection in sqli (CVE-2021-47930). Confidential information can be exposed externally.
|
| CVE-2021-47928 |
|
SQL Injection in sqli (CVE-2021-47928)
SQL injection in sqli (CVE-2021-47928). Confidential information can be exposed externally.
|
| CVE-2026-8231 |
|
Vulnerability in sqli (CVE-2026-8231)
vulnerability in sqli (CVE-2026-8231). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-14179 |
|
SQL Injection in libphp (CVE-2025-14179)
SQL injection in libphp (CVE-2025-14179). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `8.2.31, 8.3.31, 8.4.21, 8.5.6` or later.
|
| CVE-2026-8207 |
|
SQL Injection in sqli (CVE-2026-8207)
SQL injection in sqli (CVE-2026-8207). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-42287 |
|
SQL Injection in sqli (CVE-2026-42287)
SQL injection in sqli (CVE-2026-42287). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41889 |
|
SQL Injection in github.com/jackc/pgx/v5 (CVE-2026-41889)
SQL injection in github.com/jackc/pgx/v5 (CVE-2026-41889). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `5.9.2` or later.
|
| CVE-2026-37431 |
|
SQL Injection in sqli (CVE-2026-37431)
SQL injection in sqli (CVE-2026-37431). Successful exploitation can lead to full system takeover.
|
| CVE-2026-4935 |
|
SQL Injection in wordpress (CVE-2026-4935)
SQL injection in wordpress (CVE-2026-4935). Confidential information can be exposed externally.
|
| CVE-2024-33722 |
|
SQL Injection in sqli (CVE-2024-33722)
SQL injection in sqli (CVE-2024-33722). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-33288 |
|
SQL Injection in sqli (CVE-2024-33288)
SQL injection in sqli (CVE-2024-33288). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8133 |
|
Vulnerability in sqli (CVE-2026-8133)
vulnerability in sqli (CVE-2026-8133). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8132 |
|
Vulnerability in sqli (CVE-2026-8132)
vulnerability in sqli (CVE-2026-8132). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8131 |
|
Vulnerability in sqli (CVE-2026-8131)
vulnerability in sqli (CVE-2026-8131). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8130 |
|
Vulnerability in sqli (CVE-2026-8130)
vulnerability in sqli (CVE-2026-8130). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8129 |
|
Vulnerability in sqli (CVE-2026-8129)
vulnerability in sqli (CVE-2026-8129). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8128 |
|
Vulnerability in sqli (CVE-2026-8128)
vulnerability in sqli (CVE-2026-8128). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8126 |
|
Vulnerability in sqli (CVE-2026-8126)
vulnerability in sqli (CVE-2026-8126). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8125 |
|
Vulnerability in sqli (CVE-2026-8125)
vulnerability in sqli (CVE-2026-8125). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8114 |
|
Vulnerability in sqli (CVE-2026-8114)
vulnerability in sqli (CVE-2026-8114). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8098 |
|
Vulnerability in sqli (CVE-2026-8098)
vulnerability in sqli (CVE-2026-8098). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8097 |
|
Vulnerability in sqli (CVE-2026-8097)
vulnerability in sqli (CVE-2026-8097). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-36458 |
|
Code Injection in sqli (CVE-2026-36458)
code injection in sqli (CVE-2026-36458). Successful exploitation can lead to full system takeover.
|
| CVE-2026-29080 |
|
SQL Injection in rucio (CVE-2026-29080)
SQL injection in rucio (CVE-2026-29080). Successful exploitation can lead to full system takeover. Exploitable via `GET /dids/`. Mitigation: upgrade to `40.1.1` or later.
|
| CVE-2026-29090 |
|
SQL Injection in rucio (CVE-2026-29090)
SQL injection in rucio (CVE-2026-29090). Successful exploitation can lead to full system takeover. Exploitable via `GET /dids/`. Mitigation: upgrade to `40.1.1` or later.
|
| CVE-2026-38428 |
|
SQL Injection in sqli (CVE-2026-38428)
SQL injection in sqli (CVE-2026-38428). Successful exploitation can lead to full system takeover. Exploitable via `GET /api/v1/main/flows/search`.
|
| CVE-2026-42087 |
|
SQL Injection in sqli (CVE-2026-42087)
SQL injection in sqli (CVE-2026-42087). Confidential information can be exposed externally. Exploitable via ``tsdb_lookup``.
|
| CVE-2026-7489 |
|
SQL Injection in sqli (CVE-2026-7489)
SQL injection in sqli (CVE-2026-7489). Successful exploitation can lead to full system takeover.
|
| CVE-2026-42475 |
|
SQL Injection in sqli (CVE-2026-42475)
SQL injection in sqli (CVE-2026-42475). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-37505 |
|
SQL Injection in sqli (CVE-2026-37505)
SQL injection in sqli (CVE-2026-37505). Confidential information can be exposed externally.
|
| CVE-2026-3325 |
|
SQL Injection in sqli (CVE-2026-3325)
SQL injection in sqli (CVE-2026-3325). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-6887 |
|
SQL Injection in sqli (CVE-2026-6887)
SQL injection in sqli (CVE-2026-6887). Successful exploitation can lead to full system takeover.
|
| CVE-2026-40906 |
|
SQL Injection in sqli (CVE-2026-40906)
SQL injection in sqli (CVE-2026-40906). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `1.5.0` or later.
|
| CVE-2025-70420 |
|
SQL Injection in sqli (CVE-2025-70420)
SQL injection in sqli (CVE-2025-70420). Successful exploitation can lead to full system takeover.
|
| CVE-2025-41029 |
|
SQL Injection in sqli (CVE-2025-41029)
SQL injection in sqli (CVE-2025-41029). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-5963 |
|
SQL Injection in csharp (CVE-2026-5963)
SQL injection in csharp (CVE-2026-5963). Successful exploitation can lead to full system takeover.
|
| CVE-2026-5964 |
|
SQL Injection in csharp (CVE-2026-5964)
SQL injection in csharp (CVE-2026-5964). Successful exploitation can lead to full system takeover.
|
| CVE-2026-36942 |
|
SQL Injection in sqli (CVE-2026-36942)
SQL injection in sqli (CVE-2026-36942). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-36946 |
|
SQL Injection in sqli (CVE-2026-36946)
SQL injection in sqli (CVE-2026-36946). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-36874 |
|
SQL Injection in sqli (CVE-2026-36874)
SQL injection in sqli (CVE-2026-36874). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4112 |
|
SQL Injection in sqli (CVE-2026-4112)
SQL injection in sqli (CVE-2026-4112). Successful exploitation can lead to full system takeover.
|
| CVE-2026-5586 |
|
Vulnerability in sqli (CVE-2026-5586)
vulnerability in sqli (CVE-2026-5586). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4317 |
|
SQL Injection in sqli (CVE-2026-4317)
SQL injection in sqli (CVE-2026-4317). Risk of unauthorized operations or information disclosure.
|