Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Tag: cwe-116 Clear
ID Title
CVE-2026-33436 Vulnerability in stirlingpdf (CVE-2026-33436)
vulnerability in stirlingpdf (CVE-2026-33436). Risk of unauthorized operations or information disclosure.
CVE-2026-33941 Cross-Site Scripting (XSS) in handlebarsjs (CVE-2026-33941)
cross-site scripting in handlebarsjs (CVE-2026-33941). Successful exploitation can lead to full system takeover.
CVE-2026-33758 Vulnerability in openbao (CVE-2026-33758)
vulnerability in openbao (CVE-2026-33758). Risk of unauthorized operations or information disclosure. Exploitable via ``error_description``.
CVE-2026-31898 Vulnerability in parall (CVE-2026-31898)
vulnerability in parall (CVE-2026-31898). Confidential information can be exposed externally. Exploitable via ``createAnnotation``.
CVE-2026-3644 Vulnerability in CVE-2026-3644 (CVE-2026-3644)
vulnerability in CVE-2026-3644 (CVE-2026-3644). Data can be tampered with by attackers.
CVE-2026-25940 Vulnerability in parall (CVE-2026-25940)
vulnerability in parall (CVE-2026-25940). Confidential information can be exposed externally.
CVE-2026-25755 Code Injection in parall (CVE-2026-25755)
code injection in parall (CVE-2026-25755). Confidential information can be exposed externally. Exploitable via ``addJS``.
CVE-2026-24737 Vulnerability in parall (CVE-2026-24737)
vulnerability in parall (CVE-2026-24737). Confidential information can be exposed externally.
CVE-2025-0607 Cross-Site Scripting (XSS) in CVE-2025-0607 (CVE-2025-0607)
cross-site scripting in CVE-2025-0607 (CVE-2025-0607). Risk of unauthorized operations or information disclosure.
CVE-2025-60787 Vulnerability in motioneye-project (CVE-2025-60787)
vulnerability in motioneye-project (CVE-2025-60787). Successful exploitation can lead to full system takeover.
CVE-2025-8276 Vulnerability in CVE-2025-8276 (CVE-2025-8276)
vulnerability in CVE-2025-8276 (CVE-2025-8276). Risk of unauthorized operations or information disclosure.
CVE-2024-38475 KEV [KEV] Vulnerability in Apache http-server (CVE-2024-38475)
vulnerability in Apache http-server (CVE-2024-38475). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2024-40088 Cross-Site Scripting (XSS) in path-traversal (CVE-2024-40088)
cross-site scripting in path-traversal (CVE-2024-40088). Risk of unauthorized operations or information disclosure.
CVE-2024-7873 Cross-Site Scripting (XSS) in CVE-2024-7873 (CVE-2024-7873)
cross-site scripting in CVE-2024-7873 (CVE-2024-7873). Risk of unauthorized operations or information disclosure.
CVE-2023-48655 Vulnerability in misp-project (CVE-2023-48655)
vulnerability in misp-project (CVE-2023-48655). Successful exploitation can lead to full system takeover.
CVE-2022-42948 KEV [KEV] Cross-Site Scripting (XSS) in Fortra cobalt-strike (CVE-2022-42948)
cross-site scripting in Fortra cobalt-strike (CVE-2022-42948). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2022-24682 KEV [KEV] Cross-Site Scripting (XSS) in Synacor zimbra-collaborate-suite-zcs (CVE-2022-24682)
cross-site scripting in Synacor zimbra-collaborate-suite-zcs (CVE-2022-24682). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
CVE-2019-6109 Vulnerability in c (CVE-2019-6109)
vulnerability in c (CVE-2019-6109). Confidential information can be exposed externally.
CVE-2017-12340 Vulnerability in cisco (CVE-2017-12340)
vulnerability in cisco (CVE-2017-12340). Risk of unauthorized operations or information disclosure.
CVE-2017-12064 Vulnerability in open-emr (CVE-2017-12064)
vulnerability in open-emr (CVE-2017-12064). Data can be tampered with by attackers.
CVE-2017-8303 Vulnerability in accellion (CVE-2017-8303)
vulnerability in accellion (CVE-2017-8303). Successful exploitation can lead to full system takeover.
CVE-2014-9938 Vulnerability in git-scm (CVE-2014-9938)
vulnerability in git-scm (CVE-2014-9938). Successful exploitation can lead to full system takeover.
CVE-2016-2568 Vulnerability in freedesktop (CVE-2016-2568)
vulnerability in freedesktop (CVE-2016-2568). Successful exploitation can lead to full system takeover.
CVE-2016-3063 Vulnerability in netapp (CVE-2016-3063)
vulnerability in netapp (CVE-2016-3063). Successful exploitation can lead to full system takeover.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →