Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-54699 |
|
OS Command Injection in CVE-2026-54699 (CVE-2026-54699)
OS command injection in CVE-2026-54699 (CVE-2026-54699). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `0.2026.05.06.15.42.stable` or later.
|
| CVE-2026-54686 |
|
OS Command Injection in CVE-2026-54686 (CVE-2026-54686)
OS command injection in CVE-2026-54686 (CVE-2026-54686). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `0.2026.05.06.15.42.stable` or later.
|
| CVE-2026-48732 |
|
OS Command Injection in CVE-2026-48732 (CVE-2026-48732)
OS command injection in CVE-2026-48732 (CVE-2026-48732). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `0.2026.05.06.15.42.stable` or later.
|
| CVE-2026-48731 |
|
OS Command Injection in CVE-2026-48731 (CVE-2026-48731)
OS command injection in CVE-2026-48731 (CVE-2026-48731). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `0.2026.05.06.15.42.stable` or later.
|
| CVE-2026-48719 |
|
OS Command Injection in CVE-2026-48719 (CVE-2026-48719)
OS command injection in CVE-2026-48719 (CVE-2026-48719). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `0.2026.05.06.15.42.stable` or later.
|
| CVE-2026-48703 |
|
OS Command Injection in CVE-2026-48703 (CVE-2026-48703)
OS command injection in CVE-2026-48703 (CVE-2026-48703). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `0.2026.05.06.15.42.stable` or later.
|
| CVE-2026-57282 |
|
OS Command Injection in jenkins (CVE-2026-57282)
OS command injection in jenkins (CVE-2026-57282). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12537 |
|
Vulnerability in google (CVE-2026-12537)
vulnerability in google (CVE-2026-12537). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12851 |
|
OS Command Injection in CVE-2026-12851 (CVE-2026-12851)
OS command injection in CVE-2026-12851 (CVE-2026-12851). Successful exploitation can lead to full system takeover. Exploitable via ``libNetSetObj.so``.
|
| CVE-2026-12850 |
|
OS Command Injection in CVE-2026-12850 (CVE-2026-12850)
OS command injection in CVE-2026-12850 (CVE-2026-12850). Successful exploitation can lead to full system takeover. Exploitable via ``libNetSetObj.so``.
|
| CVE-2026-12849 |
|
OS Command Injection in CVE-2026-12849 (CVE-2026-12849)
OS command injection in CVE-2026-12849 (CVE-2026-12849). Successful exploitation can lead to full system takeover. Exploitable via ``libNetSetObj.so``.
|
| CVE-2026-12486 |
|
OS Command Injection in CVE-2026-12486 (CVE-2026-12486)
OS command injection in CVE-2026-12486 (CVE-2026-12486). Successful exploitation can lead to full system takeover. Exploitable via ``libNetSetObj.so``.
|
| CVE-2026-55249 |
|
OS Command Injection in c (CVE-2026-55249)
OS command injection in c (CVE-2026-55249). Confidential information can be exposed externally.
|
| CVE-2026-55448 |
|
OS Command Injection in mise (CVE-2026-55448)
OS command injection in mise (CVE-2026-55448). Confidential information can be exposed externally. Exploitable via ``mise``. Mitigation: upgrade to `2026.6.4` or later.
|
| CVE-2026-55441 |
|
OS Command Injection in mise (CVE-2026-55441)
OS command injection in mise (CVE-2026-55441). Successful exploitation can lead to full system takeover. Exploitable via ``mise.toml``. Mitigation: upgrade to `2026.6.4` or later.
|
| CVE-2026-35018 |
|
OS Command Injection in CVE-2026-35018 (CVE-2026-35018)
OS command injection in CVE-2026-35018 (CVE-2026-35018). Successful exploitation can lead to full system takeover.
|
| CVE-2026-56379 |
|
Vulnerability in imagemagick (CVE-2026-56379)
vulnerability in imagemagick (CVE-2026-56379). Successful exploitation can lead to full system takeover.
|
| CVE-2026-56274 |
|
OS Command Injection in flowiseai (CVE-2026-56274)
OS command injection in flowiseai (CVE-2026-56274). Successful exploitation can lead to full system takeover.
|
| CVE-2025-67038 KEV |
|
An issue was discovered in Lantronix EDS5000 2.1.0.0R3. The HTTP RPC module executes a shell...
An issue was discovered in Lantronix EDS5000 2.1.0.0R3. The HTTP RPC module executes a shell...
|
| CVE-2026-11834 |
|
OS Command Injection in CVE-2026-11834 (CVE-2026-11834)
OS command injection in CVE-2026-11834 (CVE-2026-11834). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-46606 |
|
OS Command Injection in glances (CVE-2026-46606)
OS command injection in glances (CVE-2026-46606). Successful exploitation can lead to full system takeover. Exploitable via ``domain``. Mitigation: upgrade to `4.5.5` or later.
|
| CVE-2026-12815 |
|
Command Injection in CVE-2026-12815 (CVE-2026-12815)
command injection in CVE-2026-12815 (CVE-2026-12815). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12814 |
|
Command Injection in CVE-2026-12814 (CVE-2026-12814)
command injection in CVE-2026-12814 (CVE-2026-12814). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48787 |
|
OS Command Injection in vue (CVE-2026-48787)
OS command injection in vue (CVE-2026-48787). Risk of unauthorized operations or information disclosure. Exploitable via `POST /autoCode/addFunc`.
|
| CVE-2026-49260 |
|
OS Command Injection in pontedilana/php-weasyprint (CVE-2026-49260)
OS command injection in pontedilana/php-weasyprint (CVE-2026-49260). Successful exploitation can lead to full system takeover. Exploitable via ``master``. Mitigation: upgrade to `2.5.1` or later.
|
| CVE-2026-12104 |
|
OS Command Injection in CVE-2026-12104 (CVE-2026-12104)
OS command injection in CVE-2026-12104 (CVE-2026-12104). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-40456 |
|
OS Command Injection in CVE-2026-40456 (CVE-2026-40456)
OS command injection in CVE-2026-40456 (CVE-2026-40456). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48997 |
|
OS Command Injection in c (CVE-2026-48997)
OS command injection in c (CVE-2026-48997). Data can be tampered with by attackers.
|
| CVE-2026-20266 |
|
OS Command Injection in splunk (CVE-2026-20266)
OS command injection in splunk (CVE-2026-20266). Successful exploitation can lead to full system takeover.
|
| CVE-2026-55743 |
|
OS Command Injection in CVE-2026-55743 (CVE-2026-55743)
OS command injection in CVE-2026-55743 (CVE-2026-55743). Successful exploitation can lead to full system takeover.
|
| CVE-2026-55748 |
|
OS Command Injection in horizon (CVE-2026-55748)
OS command injection in horizon (CVE-2026-55748). Confidential information can be exposed externally.
|
| CVE-2026-53876 |
|
OS Command Injection in CVE-2026-53876 (CVE-2026-53876)
OS command injection in CVE-2026-53876 (CVE-2026-53876). Successful exploitation can lead to full system takeover.
|
| CVE-2026-11409 |
|
OS Command Injection in tp-link (CVE-2026-11409)
OS command injection in tp-link (CVE-2026-11409). Successful exploitation can lead to full system takeover.
|
| CVE-2026-11410 |
|
OS Command Injection in tp-link (CVE-2026-11410)
OS command injection in tp-link (CVE-2026-11410). Successful exploitation can lead to full system takeover.
|
| CVE-2026-49980 |
|
Vulnerability in github.com/rclone/rclone (CVE-2026-49980)
vulnerability in github.com/rclone/rclone (CVE-2026-49980). Successful exploitation can lead to full system takeover. Exploitable via ``GET``. Mitigation: upgrade to `1.74.3` or later.
|
| CVE-2026-22313 |
|
OS Command Injection in CVE-2026-22313 (CVE-2026-22313)
OS command injection in CVE-2026-22313 (CVE-2026-22313). Successful exploitation can lead to full system takeover.
|
| CVE-2026-49402 |
|
OS Command Injection in deno (CVE-2026-49402)
OS command injection in deno (CVE-2026-49402). Successful exploitation can lead to full system takeover. Exploitable via ``spawn``. Mitigation: upgrade to `2.7.10` or later.
|
| CVE-2026-44932 |
|
OS Command Injection in CVE-2026-44932 (CVE-2026-44932)
OS command injection in CVE-2026-44932 (CVE-2026-44932). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12398 |
|
OS Command Injection in galaxy-ng (CVE-2026-12398)
OS command injection in galaxy-ng (CVE-2026-12398). Successful exploitation can lead to full system takeover.
|
| CVE-2026-5416 |
|
OS Command Injection in CVE-2026-5416 (CVE-2026-5416)
OS command injection in CVE-2026-5416 (CVE-2026-5416). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12161 |
|
OS Command Injection in devolutions (CVE-2026-12161)
OS command injection in devolutions (CVE-2026-12161). Successful exploitation can lead to full system takeover.
|
| CVE-2026-48723 |
|
OS Command Injection in CVE-2026-48723 (CVE-2026-48723)
OS command injection in CVE-2026-48723 (CVE-2026-48723). Successful exploitation can lead to full system takeover.
|
| CVE-2026-50874 |
|
OS Command Injection in CVE-2026-50874 (CVE-2026-50874)
OS command injection in CVE-2026-50874 (CVE-2026-50874). Confidential information can be exposed externally.
|
| CVE-2026-38061 |
|
OS Command Injection in CVE-2026-38061 (CVE-2026-38061)
OS command injection in CVE-2026-38061 (CVE-2026-38061). Successful exploitation can lead to full system takeover.
|
| CVE-2026-38060 |
|
OS Command Injection in CVE-2026-38060 (CVE-2026-38060)
OS command injection in CVE-2026-38060 (CVE-2026-38060). Successful exploitation can lead to full system takeover.
|
| CVE-2026-38062 |
|
OS Command Injection in CVE-2026-38062 (CVE-2026-38062)
OS command injection in CVE-2026-38062 (CVE-2026-38062). Successful exploitation can lead to full system takeover.
|
| CVE-2026-38064 |
|
OS Command Injection in CVE-2026-38064 (CVE-2026-38064)
OS command injection in CVE-2026-38064 (CVE-2026-38064). Successful exploitation can lead to full system takeover.
|
| CVE-2026-38065 |
|
OS Command Injection in CVE-2026-38065 (CVE-2026-38065)
OS command injection in CVE-2026-38065 (CVE-2026-38065). Successful exploitation can lead to full system takeover.
|
| CVE-2026-38063 |
|
OS Command Injection in CVE-2026-38063 (CVE-2026-38063)
OS command injection in CVE-2026-38063 (CVE-2026-38063). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9863 |
|
OS Command Injection in CVE-2026-9863 (CVE-2026-9863)
OS command injection in CVE-2026-9863 (CVE-2026-9863). Successful exploitation can lead to full system takeover.
|