Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-33436 |
|
Vulnerability in stirlingpdf (CVE-2026-33436)
vulnerability in stirlingpdf (CVE-2026-33436). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-33941 |
|
Cross-Site Scripting (XSS) in handlebarsjs (CVE-2026-33941)
cross-site scripting in handlebarsjs (CVE-2026-33941). Successful exploitation can lead to full system takeover.
|
| CVE-2026-33758 |
|
Vulnerability in openbao (CVE-2026-33758)
vulnerability in openbao (CVE-2026-33758). Risk of unauthorized operations or information disclosure. Exploitable via ``error_description``.
|
| CVE-2026-31898 |
|
Vulnerability in parall (CVE-2026-31898)
vulnerability in parall (CVE-2026-31898). Confidential information can be exposed externally. Exploitable via ``createAnnotation``.
|
| CVE-2026-3644 |
|
Vulnerability in CVE-2026-3644 (CVE-2026-3644)
vulnerability in CVE-2026-3644 (CVE-2026-3644). Data can be tampered with by attackers.
|
| CVE-2026-25940 |
|
Vulnerability in parall (CVE-2026-25940)
vulnerability in parall (CVE-2026-25940). Confidential information can be exposed externally.
|
| CVE-2026-25755 |
|
Code Injection in parall (CVE-2026-25755)
code injection in parall (CVE-2026-25755). Confidential information can be exposed externally. Exploitable via ``addJS``.
|
| CVE-2026-24737 |
|
Vulnerability in parall (CVE-2026-24737)
vulnerability in parall (CVE-2026-24737). Confidential information can be exposed externally.
|
| CVE-2025-0607 |
|
Cross-Site Scripting (XSS) in CVE-2025-0607 (CVE-2025-0607)
cross-site scripting in CVE-2025-0607 (CVE-2025-0607). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-60787 |
|
Vulnerability in motioneye-project (CVE-2025-60787)
vulnerability in motioneye-project (CVE-2025-60787). Successful exploitation can lead to full system takeover.
|
| CVE-2025-8276 |
|
Vulnerability in CVE-2025-8276 (CVE-2025-8276)
vulnerability in CVE-2025-8276 (CVE-2025-8276). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-38475 KEV |
|
[KEV] Vulnerability in Apache http-server (CVE-2024-38475)
vulnerability in Apache http-server (CVE-2024-38475). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2024-40088 |
|
Cross-Site Scripting (XSS) in path-traversal (CVE-2024-40088)
cross-site scripting in path-traversal (CVE-2024-40088). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-7873 |
|
Cross-Site Scripting (XSS) in CVE-2024-7873 (CVE-2024-7873)
cross-site scripting in CVE-2024-7873 (CVE-2024-7873). Risk of unauthorized operations or information disclosure.
|
| CVE-2023-48655 |
|
Vulnerability in misp-project (CVE-2023-48655)
vulnerability in misp-project (CVE-2023-48655). Successful exploitation can lead to full system takeover.
|
| CVE-2022-42948 KEV |
|
[KEV] Cross-Site Scripting (XSS) in Fortra cobalt-strike (CVE-2022-42948)
cross-site scripting in Fortra cobalt-strike (CVE-2022-42948). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2022-24682 KEV |
|
[KEV] Cross-Site Scripting (XSS) in Synacor zimbra-collaborate-suite-zcs (CVE-2022-24682)
cross-site scripting in Synacor zimbra-collaborate-suite-zcs (CVE-2022-24682). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2019-6109 |
|
Vulnerability in c (CVE-2019-6109)
vulnerability in c (CVE-2019-6109). Confidential information can be exposed externally.
|
| CVE-2017-12340 |
|
Vulnerability in cisco (CVE-2017-12340)
vulnerability in cisco (CVE-2017-12340). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12064 |
|
Vulnerability in open-emr (CVE-2017-12064)
vulnerability in open-emr (CVE-2017-12064). Data can be tampered with by attackers.
|
| CVE-2017-8303 |
|
Vulnerability in accellion (CVE-2017-8303)
vulnerability in accellion (CVE-2017-8303). Successful exploitation can lead to full system takeover.
|
| CVE-2014-9938 |
|
Vulnerability in git-scm (CVE-2014-9938)
vulnerability in git-scm (CVE-2014-9938). Successful exploitation can lead to full system takeover.
|
| CVE-2016-2568 |
|
Vulnerability in freedesktop (CVE-2016-2568)
vulnerability in freedesktop (CVE-2016-2568). Successful exploitation can lead to full system takeover.
|
| CVE-2016-3063 |
|
Vulnerability in netapp (CVE-2016-3063)
vulnerability in netapp (CVE-2016-3063). Successful exploitation can lead to full system takeover.
|