Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-2219 |
|
Vulnerability in dos (CVE-2026-2219)
vulnerability in dos (CVE-2026-2219). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-69654 |
|
Vulnerability in dos (CVE-2025-69654)
vulnerability in dos (CVE-2025-69654). Risk of unauthorized operations or information disclosure. Exploitable via ``qjs``.
|
| CVE-2026-26018 |
|
Vulnerability in dos (CVE-2026-26018)
vulnerability in dos (CVE-2026-26018). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-29062 |
|
Vulnerability in dos (CVE-2026-29062)
vulnerability in dos (CVE-2026-29062). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-69534 |
|
Vulnerability in markdown (CVE-2025-69534)
vulnerability in markdown (CVE-2025-69534). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `3.8.1` or later.
|
| CVE-2026-20025 |
|
Vulnerability in dos (CVE-2026-20025)
vulnerability in dos (CVE-2026-20025). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-3520 |
|
Vulnerability in dos (CVE-2026-3520)
vulnerability in dos (CVE-2026-3520). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-25673 |
|
Vulnerability in django (CVE-2026-25673)
vulnerability in django (CVE-2026-25673). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-3304 |
|
Vulnerability in dos (CVE-2026-3304)
vulnerability in dos (CVE-2026-3304). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-2359 |
|
Vulnerability in dos (CVE-2026-2359)
vulnerability in dos (CVE-2026-2359). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-10990 |
|
Vulnerability in dos (CVE-2025-10990)
vulnerability in dos (CVE-2025-10990). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-56368 |
|
Vulnerability in Magick.NET-Q16-AnyCPU (CVE-2026-56368)
vulnerability in Magick.NET-Q16-AnyCPU (CVE-2026-56368). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `14.10.3` or later.
|
| CVE-2026-1773 |
|
Vulnerability in dos (CVE-2026-1773)
vulnerability in dos (CVE-2026-1773). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-14905 |
|
Vulnerability in c (CVE-2025-14905)
vulnerability in c (CVE-2025-14905). Successful exploitation can lead to full system takeover. Exploitable via ``schema_attr_enum_callback``.
|
| CVE-2019-25434 |
|
SpotAuditor 5.3.1.0 contains a denial of service vulnerability that allows unauthenticated attackers to crash the application by submitting excessive data in the registration name field. Attackers can...
SpotAuditor 5.3.1.0 contains a denial of service vulnerability that allows unauthenticated attackers to crash the application by submitting excessive data in the registration name field. Attackers can enter a large string of characters (5000 bytes or more) in the name field during registration to tr...
|
| CVE-2026-25535 |
|
Vulnerability in dos (CVE-2026-25535)
vulnerability in dos (CVE-2026-25535). Risk of unauthorized operations or information disclosure. Exploitable via ``addImage``.
|
| CVE-2026-25949 |
|
Vulnerability in dos (CVE-2026-25949)
vulnerability in dos (CVE-2026-25949). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `3.6.8` or later.
|
| CVE-2020-37209 |
|
Vulnerability in dos (CVE-2020-37209)
vulnerability in dos (CVE-2020-37209). Confidential information can be exposed externally.
|
| CVE-2020-37210 |
|
SpotIE 2.9.5 contains a denial of service vulnerability in the registration key input that allows attackers to crash the application. Attackers can generate a 1000-character buffer payload and paste i...
SpotIE 2.9.5 contains a denial of service vulnerability in the registration key input that allows attackers to crash the application. Attackers can generate a 1000-character buffer payload and paste it into the 'Key' field to trigger an application crash.
|
| CVE-2020-37211 |
|
SpotIM 2.2 contains a denial of service vulnerability that allows attackers to crash the application by inputting a large buffer in the registration name field. Attackers can generate a 1000-character...
SpotIM 2.2 contains a denial of service vulnerability that allows attackers to crash the application by inputting a large buffer in the registration name field. Attackers can generate a 1000-character payload and paste it into the 'Name' field to trigger an application crash.
|
| CVE-2020-37208 |
|
SpotFTP 3.0.0.0 contains a buffer overflow vulnerability in the registration key input field that allows attackers to crash the application. Attackers can generate a 1000-character payload and paste i...
SpotFTP 3.0.0.0 contains a buffer overflow vulnerability in the registration key input field that allows attackers to crash the application. Attackers can generate a 1000-character payload and paste it into the 'Key' field to trigger an application crash and denial of service.
|
| CVE-2020-37212 |
|
SpotMSN 2.4.6 contains a denial of service vulnerability in the registration name input field that allows attackers to crash the application. Attackers can generate a 1000-character payload and paste...
SpotMSN 2.4.6 contains a denial of service vulnerability in the registration name input field that allows attackers to crash the application. Attackers can generate a 1000-character payload and paste it into the 'Name' field to trigger an application crash.
|
| CVE-2020-37207 |
|
Vulnerability in dos (CVE-2020-37207)
vulnerability in dos (CVE-2020-37207). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-37206 |
|
Vulnerability in dos (CVE-2020-37206)
vulnerability in dos (CVE-2020-37206). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-37205 |
|
Vulnerability in dos (CVE-2020-37205)
vulnerability in dos (CVE-2020-37205). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-37204 |
|
Vulnerability in dos (CVE-2020-37204)
vulnerability in dos (CVE-2020-37204). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-37196 |
|
Vulnerability in dos (CVE-2020-37196)
vulnerability in dos (CVE-2020-37196). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-37197 |
|
Vulnerability in dos (CVE-2020-37197)
vulnerability in dos (CVE-2020-37197). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-37199 |
|
Vulnerability in dos (CVE-2020-37199)
vulnerability in dos (CVE-2020-37199). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-69873 |
|
Vulnerability in dos (CVE-2025-69873)
vulnerability in dos (CVE-2025-69873). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-66274 |
|
Vulnerability in dos (CVE-2025-66274)
vulnerability in dos (CVE-2025-66274). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-25639 |
|
Vulnerability in axios (CVE-2026-25639)
vulnerability in axios (CVE-2026-25639). Risk of unauthorized operations or information disclosure. Exploitable via ``mergeConfig``. Mitigation: upgrade to `0.30.3` or later.
|
| CVE-2025-14831 |
|
Vulnerability in dos (CVE-2025-14831)
vulnerability in dos (CVE-2025-14831). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-25727 |
|
Vulnerability in dos (CVE-2026-25727)
vulnerability in dos (CVE-2026-25727). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-69619 |
|
Path Traversal in path-traversal (CVE-2025-69619)
path traversal in path-traversal (CVE-2025-69619). Risk of unauthorized operations or information disclosure.
|
| CVE-2020-37131 |
|
Vulnerability in dos (CVE-2020-37131)
vulnerability in dos (CVE-2020-37131). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-69620 |
|
Path Traversal in path-traversal (CVE-2025-69620)
path traversal in path-traversal (CVE-2025-69620). Risk of unauthorized operations or information disclosure.
|
| CVE-2024-4027 |
|
Vulnerability in dos (CVE-2024-4027)
vulnerability in dos (CVE-2024-4027). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-71001 |
|
Out-of-Bounds Read in dos (CVE-2025-71001)
vulnerability in dos (CVE-2025-71001). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-70999 |
|
Vulnerability in dos (CVE-2025-70999)
vulnerability in dos (CVE-2025-70999). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-71000 |
|
Vulnerability in dos (CVE-2025-71000)
vulnerability in dos (CVE-2025-71000). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-65891 |
|
Vulnerability in dos (CVE-2025-65891)
vulnerability in dos (CVE-2025-65891). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-65887 |
|
Vulnerability in dos (CVE-2025-65887)
vulnerability in dos (CVE-2025-65887). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-65886 |
|
Vulnerability in dos (CVE-2025-65886)
vulnerability in dos (CVE-2025-65886). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-65890 |
|
Vulnerability in dos (CVE-2025-65890)
vulnerability in dos (CVE-2025-65890). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-65888 |
|
Vulnerability in dos (CVE-2025-65888)
vulnerability in dos (CVE-2025-65888). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-65889 |
|
Vulnerability in dos (CVE-2025-65889)
vulnerability in dos (CVE-2025-65889). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-24779 |
|
SSRF (Server-Side Request Forgery) in ssrf (CVE-2026-24779)
SSRF in ssrf (CVE-2026-24779). Confidential information can be exposed externally. Exploitable via ``MediaConnector``.
|
| CVE-2026-24881 |
|
Vulnerability in dos (CVE-2026-24881)
vulnerability in dos (CVE-2026-24881). Successful exploitation can lead to full system takeover.
|
| CVE-2026-22795 |
|
Vulnerability in dos (CVE-2026-22795)
vulnerability in dos (CVE-2026-22795). Risk of unauthorized operations or information disclosure.
|