Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-8938 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8938)
vulnerability in wordpress (CVE-2026-8938). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8939 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8939)
vulnerability in wordpress (CVE-2026-8939). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8941 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8941)
vulnerability in wordpress (CVE-2026-8941). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8943 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8943)
vulnerability in wordpress (CVE-2026-8943). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8708 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8708)
vulnerability in wordpress (CVE-2026-8708). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-7614 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-7614)
vulnerability in wordpress (CVE-2026-7614). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9236 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-9236)
vulnerability in wordpress (CVE-2026-9236). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9582 |
|
Cross-Site Request Forgery (CSRF) in CVE-2026-9582 (CVE-2026-9582)
vulnerability in CVE-2026-9582 (CVE-2026-9582). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-35220 |
|
Cross-Site Request Forgery (CSRF) in joomla (CVE-2026-35220)
vulnerability in joomla (CVE-2026-35220). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `6.1.1` or later.
|
| CVE-2026-46620 |
|
Vulnerability in csrf (CVE-2026-46620)
vulnerability in csrf (CVE-2026-46620). Data can be tampered with by attackers. Mitigation: upgrade to `2.3.5` or later.
|
| CVE-2026-8174 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8174)
vulnerability in wordpress (CVE-2026-8174). Data can be tampered with by attackers.
|
| CVE-2026-39436 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2026-39436)
vulnerability in csrf (CVE-2026-39436). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-24554 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2026-24554)
vulnerability in csrf (CVE-2026-24554). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9486 |
|
Cross-Site Request Forgery (CSRF) in CVE-2026-9486 (CVE-2026-9486)
vulnerability in CVE-2026-9486 (CVE-2026-9486). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-24597 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2026-24597)
vulnerability in csrf (CVE-2026-24597). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-24574 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2026-24574)
vulnerability in csrf (CVE-2026-24574). Data can be tampered with by attackers.
|
| CVE-2018-25370 |
|
Cross-Site Request Forgery (CSRF) in CVE-2018-25370 (CVE-2018-25370)
vulnerability in CVE-2018-25370 (CVE-2018-25370). Risk of unauthorized operations or information disclosure.
|
| CVE-2018-25363 |
|
Cross-Site Request Forgery (CSRF) in CVE-2018-25363 (CVE-2018-25363)
vulnerability in CVE-2018-25363 (CVE-2018-25363). Risk of unauthorized operations or information disclosure.
|
| CVE-2018-25354 |
|
Cross-Site Request Forgery (CSRF) in CVE-2018-25354 (CVE-2018-25354)
vulnerability in CVE-2018-25354 (CVE-2018-25354). Risk of unauthorized operations or information disclosure.
|
| CVE-2018-25343 |
|
Cross-Site Request Forgery (CSRF) in CVE-2018-25343 (CVE-2018-25343)
vulnerability in CVE-2018-25343 (CVE-2018-25343). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9303 |
|
Cross-Site Request Forgery (CSRF) in CVE-2026-9303 (CVE-2026-9303)
vulnerability in CVE-2026-9303 (CVE-2026-9303). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8340 |
|
Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8340)
vulnerability in concrete5/concrete5 (CVE-2026-8340). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `9.5.1` or later.
|
| CVE-2026-41074 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2026-41074)
vulnerability in csrf (CVE-2026-41074). Data can be tampered with by attackers.
|
| CVE-2026-40864 |
|
Cross-Site Request Forgery (CSRF) in jupyterhub (CVE-2026-40864)
vulnerability in jupyterhub (CVE-2026-40864). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `5.4.5` or later.
|
| CVE-2026-4070 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-4070)
vulnerability in wordpress (CVE-2026-4070). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8435 |
|
Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8435)
vulnerability in concrete5/concrete5 (CVE-2026-8435). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `9.5.1` or later.
|
| CVE-2026-8433 |
|
Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8433)
vulnerability in concrete5/concrete5 (CVE-2026-8433). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.5.1` or later.
|
| CVE-2026-8434 |
|
Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8434)
vulnerability in concrete5/concrete5 (CVE-2026-8434). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.5.1` or later.
|
| CVE-2026-8432 |
|
Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8432)
vulnerability in concrete5/concrete5 (CVE-2026-8432). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.5.1` or later.
|
| CVE-2026-8427 |
|
Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8427)
vulnerability in concrete5/concrete5 (CVE-2026-8427). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.5.1` or later.
|
| CVE-2026-8416 |
|
Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8416)
vulnerability in concrete5/concrete5 (CVE-2026-8416). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.5.1` or later.
|
| CVE-2026-8414 |
|
Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8414)
vulnerability in concrete5/concrete5 (CVE-2026-8414). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.5.1` or later.
|
| CVE-2026-8415 |
|
Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8415)
vulnerability in concrete5/concrete5 (CVE-2026-8415). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.5.1` or later.
|
| CVE-2026-8413 |
|
Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8413)
vulnerability in concrete5/concrete5 (CVE-2026-8413). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.5.1` or later.
|
| CVE-2026-8412 |
|
Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8412)
vulnerability in concrete5/concrete5 (CVE-2026-8412). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.5.1` or later.
|
| CVE-2026-8411 |
|
Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8411)
vulnerability in concrete5/concrete5 (CVE-2026-8411). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.5.1` or later.
|
| CVE-2026-8410 |
|
Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8410)
vulnerability in concrete5/concrete5 (CVE-2026-8410). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.5.1` or later.
|
| CVE-2026-8409 |
|
Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8409)
vulnerability in concrete5/concrete5 (CVE-2026-8409). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.5.1` or later.
|
| CVE-2026-7882 |
|
Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-7882)
vulnerability in concrete5/concrete5 (CVE-2026-7882). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `9.5.1` or later.
|
| CVE-2026-8426 |
|
Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8426)
vulnerability in concrete5/concrete5 (CVE-2026-8426). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.5.1` or later.
|
| CVE-2026-8421 |
|
Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8421)
vulnerability in concrete5/concrete5 (CVE-2026-8421). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.5.1` or later.
|
| CVE-2026-8428 |
|
Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8428)
vulnerability in concrete5/concrete5 (CVE-2026-8428). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.5.1` or later.
|
| CVE-2026-8417 |
|
Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8417)
vulnerability in concrete5/concrete5 (CVE-2026-8417). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.5.1` or later.
|
| CVE-2026-8140 |
|
Cross-Site Request Forgery (CSRF) in concrete5/concrete5 (CVE-2026-8140)
vulnerability in concrete5/concrete5 (CVE-2026-8140). Data can be tampered with by attackers. Mitigation: upgrade to `9.5.1` or later.
|
| CVE-2026-22880 |
|
Cross-Site Request Forgery (CSRF) in CVE-2026-22880 (CVE-2026-22880)
vulnerability in CVE-2026-22880 (CVE-2026-22880). Confidential information can be exposed externally.
|
| CVE-2026-44925 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2026-44925)
vulnerability in csrf (CVE-2026-44925). Successful exploitation can lead to full system takeover.
|
| CVE-2025-11954 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2025-11954)
vulnerability in csrf (CVE-2025-11954). Successful exploitation can lead to full system takeover.
|
| CVE-2026-6405 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-6405)
vulnerability in wordpress (CVE-2026-6405). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8420 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8420)
vulnerability in wordpress (CVE-2026-8420). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8424 |
|
Cross-Site Request Forgery (CSRF) in wordpress (CVE-2026-8424)
vulnerability in wordpress (CVE-2026-8424). Risk of unauthorized operations or information disclosure.
|