Vulnerabilities

Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.

Filtering: Tag: cwe-862 Clear
ID Title
CVE-2026-54027 Vulnerability in librechat (CVE-2026-54027)
vulnerability in librechat (CVE-2026-54027). Data can be tampered with by attackers. Exploitable via `POST /api/files/images`. Mitigation: upgrade to `0.8.4-rc1` or later.
CVE-2026-57429 Contributor Broken Access Control in Slim SEO <= 4.6.2 versions.
Contributor Broken Access Control in Slim SEO <= 4.6.2 versions.
CVE-2026-57619 Contributor Sensitive Data Exposure in Elementor Website Builder <= 4.1.3 versions.
Contributor Sensitive Data Exposure in Elementor Website Builder <= 4.1.3 versions.
CVE-2026-56023 Customer Broken Access Control in UPI QR Code Payment Gateway for WooCommerce <= 1.6.2 versions.
Customer Broken Access Control in UPI QR Code Payment Gateway for WooCommerce <= 1.6.2 versions.
CVE-2026-54842 Vulnerability in CVE-2026-54842 (CVE-2026-54842)
vulnerability in CVE-2026-54842 (CVE-2026-54842). Confidential information can be exposed externally.
CVE-2026-54844 Unauthenticated Broken Access Control in CheckView Automated Testing <= 2.1.0 versions.
Unauthenticated Broken Access Control in CheckView Automated Testing <= 2.1.0 versions.
CVE-2026-54828 Unauthenticated Broken Access Control in Motors <= 1.4.109 versions.
Unauthenticated Broken Access Control in Motors <= 1.4.109 versions.
CVE-2026-54830 Unauthenticated Broken Access Control in Five Star Restaurant Reservations <= 2.7.19 versions.
Unauthenticated Broken Access Control in Five Star Restaurant Reservations <= 2.7.19 versions.
CVE-2026-27366 Unauthenticated Broken Access Control in MainWP Child <= 6.1.1 versions.
Unauthenticated Broken Access Control in MainWP Child <= 6.1.1 versions.
CVE-2026-2238 Vulnerability in gitlab (CVE-2026-2238)
vulnerability in gitlab (CVE-2026-2238). Risk of unauthorized operations or information disclosure.
CVE-2026-3176 Vulnerability in gitlab (CVE-2026-3176)
vulnerability in gitlab (CVE-2026-3176). Risk of unauthorized operations or information disclosure.
CVE-2026-55762 Vulnerability in CVE-2026-55762 (CVE-2026-55762)
vulnerability in CVE-2026-55762 (CVE-2026-55762). Data can be tampered with by attackers. Exploitable via `POST /api/v1/fingerprint`. Mitigation: upgrade to `8.5.1` or later.
CVE-2026-45677 Vulnerability in CVE-2026-45677 (CVE-2026-45677)
vulnerability in CVE-2026-45677 (CVE-2026-45677). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `8.5.0` or later.
CVE-2026-27708 Vulnerability in CVE-2026-27708 (CVE-2026-27708)
vulnerability in CVE-2026-27708 (CVE-2026-27708). Risk of unauthorized operations or information disclosure.
CVE-2026-57307 Vulnerability in jenkins (CVE-2026-57307)
vulnerability in jenkins (CVE-2026-57307). Risk of unauthorized operations or information disclosure.
CVE-2026-57304 Vulnerability in jenkins (CVE-2026-57304)
vulnerability in jenkins (CVE-2026-57304). Risk of unauthorized operations or information disclosure.
CVE-2026-57300 Vulnerability in jenkins (CVE-2026-57300)
vulnerability in jenkins (CVE-2026-57300). Risk of unauthorized operations or information disclosure.
CVE-2026-57299 Vulnerability in jenkins (CVE-2026-57299)
vulnerability in jenkins (CVE-2026-57299). Risk of unauthorized operations or information disclosure.
CVE-2026-57297 Vulnerability in jenkins (CVE-2026-57297)
vulnerability in jenkins (CVE-2026-57297). Risk of unauthorized operations or information disclosure.
CVE-2026-57294 Vulnerability in jenkins (CVE-2026-57294)
vulnerability in jenkins (CVE-2026-57294). Risk of unauthorized operations or information disclosure.
CVE-2026-57293 Vulnerability in CVE-2026-57293 (CVE-2026-57293)
vulnerability in CVE-2026-57293 (CVE-2026-57293). Risk of unauthorized operations or information disclosure.
CVE-2026-57291 Vulnerability in CVE-2026-57291 (CVE-2026-57291)
vulnerability in CVE-2026-57291 (CVE-2026-57291). Risk of unauthorized operations or information disclosure.
CVE-2026-57286 Vulnerability in jenkins (CVE-2026-57286)
vulnerability in jenkins (CVE-2026-57286). Risk of unauthorized operations or information disclosure.
CVE-2026-57285 Vulnerability in jenkins (CVE-2026-57285)
vulnerability in jenkins (CVE-2026-57285). Risk of unauthorized operations or information disclosure.
CVE-2026-7761 Vulnerability in wordpress (CVE-2026-7761)
vulnerability in wordpress (CVE-2026-7761). Successful exploitation can lead to full system takeover.
CVE-2026-9619 Vulnerability in wordpress (CVE-2026-9619)
vulnerability in wordpress (CVE-2026-9619). Risk of unauthorized operations or information disclosure.
CVE-2026-9616 Vulnerability in wordpress (CVE-2026-9616)
vulnerability in wordpress (CVE-2026-9616). Risk of unauthorized operations or information disclosure.
CVE-2026-9184 Vulnerability in wordpress (CVE-2026-9184)
vulnerability in wordpress (CVE-2026-9184). Risk of unauthorized operations or information disclosure.
CVE-2026-9178 Vulnerability in wordpress (CVE-2026-9178)
vulnerability in wordpress (CVE-2026-9178). Confidential information can be exposed externally.
CVE-2026-9175 Vulnerability in wordpress (CVE-2026-9175)
vulnerability in wordpress (CVE-2026-9175). Risk of unauthorized operations or information disclosure.
CVE-2026-9172 Vulnerability in wordpress (CVE-2026-9172)
vulnerability in wordpress (CVE-2026-9172). Risk of unauthorized operations or information disclosure.
CVE-2026-8690 Vulnerability in wordpress (CVE-2026-8690)
vulnerability in wordpress (CVE-2026-8690). Risk of unauthorized operations or information disclosure.
CVE-2026-8688 Vulnerability in wordpress (CVE-2026-8688)
vulnerability in wordpress (CVE-2026-8688). Risk of unauthorized operations or information disclosure.
CVE-2026-8617 Vulnerability in wordpress (CVE-2026-8617)
vulnerability in wordpress (CVE-2026-8617). Risk of unauthorized operations or information disclosure.
CVE-2026-8614 Vulnerability in wordpress (CVE-2026-8614)
vulnerability in wordpress (CVE-2026-8614). Risk of unauthorized operations or information disclosure.
CVE-2026-7617 Vulnerability in wordpress (CVE-2026-7617)
vulnerability in wordpress (CVE-2026-7617). Risk of unauthorized operations or information disclosure.
CVE-2026-4297 Vulnerability in wordpress (CVE-2026-4297)
vulnerability in wordpress (CVE-2026-4297). Successful exploitation can lead to full system takeover.
CVE-2026-12094 Vulnerability in wordpress (CVE-2026-12094)
vulnerability in wordpress (CVE-2026-12094). Risk of unauthorized operations or information disclosure. Exploitable via ``wp_ajax_cf7cdb_delete``.
CVE-2026-11807 Vulnerability in CVE-2026-11807 (CVE-2026-11807)
vulnerability in CVE-2026-11807 (CVE-2026-11807). Confidential information can be exposed externally.
CVE-2026-56115 Vulnerability in c (CVE-2026-56115)
vulnerability in c (CVE-2026-56115). Successful exploitation can lead to full system takeover.
CVE-2026-52812 Vulnerability in gogs.io/gogs (CVE-2026-52812)
vulnerability in gogs.io/gogs (CVE-2026-52812). Risk of unauthorized operations or information disclosure. Exploitable via ``lfs_object``. Mitigation: upgrade to `0.14.3` or later.
CVE-2026-56696 Vulnerability in CVE-2026-56696 (CVE-2026-56696)
vulnerability in CVE-2026-56696 (CVE-2026-56696). Risk of unauthorized operations or information disclosure.
CVE-2026-56695 Vulnerability in CVE-2026-56695 (CVE-2026-56695)
vulnerability in CVE-2026-56695 (CVE-2026-56695). Confidential information can be exposed externally.
CVE-2026-56402 Vulnerability in privilege-escalation (CVE-2026-56402)
vulnerability in privilege-escalation (CVE-2026-56402). Data can be tampered with by attackers.
CVE-2026-27604 Information Disclosure in csrf (CVE-2026-27604)
vulnerability in csrf (CVE-2026-27604). Risk of unauthorized operations or information disclosure. Exploitable via ``system``.
CVE-2026-10609 Vulnerability in redhat (CVE-2026-10609)
vulnerability in redhat (CVE-2026-10609). Confidential information can be exposed externally.
CVE-2026-52799 Vulnerability in gogs.io/gogs (CVE-2026-52799)
vulnerability in gogs.io/gogs (CVE-2026-52799). Confidential information can be exposed externally. Exploitable via `GET /attachments/`. Mitigation: upgrade to `0.14.3` or later.
CVE-2026-50137 Vulnerability in @budibase/server (CVE-2026-50137)
vulnerability in @budibase/server (CVE-2026-50137). Confidential information can be exposed externally. Exploitable via `POST /api/attachments/`. Mitigation: upgrade to `3.39.0` or later.
CVE-2026-56280 Vulnerability in CVE-2026-56280 (CVE-2026-56280)
vulnerability in CVE-2026-56280 (CVE-2026-56280). Risk of unauthorized operations or information disclosure. Exploitable via `GET /build/logs/`.
CVE-2026-48500 Vulnerability in filament/filament (CVE-2026-48500)
vulnerability in filament/filament (CVE-2026-48500). Risk of unauthorized operations or information disclosure. Exploitable via ``WithFileUploads``. Mitigation: upgrade to `3.3.52` or later.

🍪 About cookies

We use cookies to keep you logged in, remember your language, and improve the service.

Details →