Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-54394 |
|
Path Traversal in path-traversal (CVE-2026-54394)
path traversal in path-traversal (CVE-2026-54394). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-45775 |
|
Path Traversal in path-traversal (CVE-2026-45775)
path traversal in path-traversal (CVE-2026-45775). Confidential information can be exposed externally.
|
| CVE-2026-43872 |
|
Path Traversal in path-traversal (CVE-2026-43872)
path traversal in path-traversal (CVE-2026-43872). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-6961 |
|
Path Traversal in path-traversal (CVE-2026-6961)
path traversal in path-traversal (CVE-2026-6961). Data can be tampered with by attackers.
|
| CVE-2026-3840 |
|
Path Traversal in path-traversal (CVE-2026-3840)
path traversal in path-traversal (CVE-2026-3840). Confidential information can be exposed externally.
|
| CVE-2026-53787 |
|
Unrestricted File Upload in path-traversal (CVE-2026-53787)
vulnerability in path-traversal (CVE-2026-53787). Successful exploitation can lead to full system takeover.
|
| CVE-2026-11847 |
|
Path Traversal in path-traversal (CVE-2026-11847)
path traversal in path-traversal (CVE-2026-11847). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-47368 |
|
Path Traversal in path-traversal (CVE-2026-47368)
path traversal in path-traversal (CVE-2026-47368). Confidential information can be exposed externally.
|
| CVE-2026-53813 |
|
Vulnerability in openclaw (CVE-2026-53813)
vulnerability in openclaw (CVE-2026-53813). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `2026.4.25` or later.
|
| CVE-2026-53777 |
|
Path Traversal in path-traversal (CVE-2026-53777)
path traversal in path-traversal (CVE-2026-53777). Confidential information can be exposed externally.
|
| CVE-2026-11816 |
|
Path Traversal in path-traversal (CVE-2026-11816)
path traversal in path-traversal (CVE-2026-11816). Confidential information can be exposed externally. Exploitable via ``AttributeError``.
|
| CVE-2026-8464 |
|
Path Traversal in path-traversal (CVE-2026-8464)
path traversal in path-traversal (CVE-2026-8464). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-0270 |
|
Path Traversal in path-traversal (CVE-2026-0270)
path traversal in path-traversal (CVE-2026-0270). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-53476 |
|
Vulnerability in path-traversal (CVE-2026-53476)
vulnerability in path-traversal (CVE-2026-53476). Successful exploitation can lead to full system takeover.
|
| CVE-2026-52756 |
|
Path Traversal in path-traversal (CVE-2026-52756)
path traversal in path-traversal (CVE-2026-52756). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-52755 |
|
Path Traversal in path-traversal (CVE-2026-52755)
path traversal in path-traversal (CVE-2026-52755). Successful exploitation can lead to full system takeover.
|
| CVE-2026-52752 |
|
Path Traversal in path-traversal (CVE-2026-52752)
path traversal in path-traversal (CVE-2026-52752). Successful exploitation can lead to full system takeover.
|
| CVE-2026-49497 |
|
Path Traversal in path-traversal (CVE-2026-49497)
path traversal in path-traversal (CVE-2026-49497). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-24717 |
|
Path Traversal in path-traversal (CVE-2026-24717)
path traversal in path-traversal (CVE-2026-24717). Confidential information can be exposed externally.
|
| CVE-2025-62851 |
|
Path Traversal in path-traversal (CVE-2025-62851)
path traversal in path-traversal (CVE-2025-62851). Confidential information can be exposed externally.
|
| CVE-2026-34657 |
|
Path Traversal in path-traversal (CVE-2026-34657)
path traversal in path-traversal (CVE-2026-34657). Data can be tampered with by attackers.
|
| CVE-2026-47932 |
|
Path Traversal in path-traversal (CVE-2026-47932)
path traversal in path-traversal (CVE-2026-47932). Successful exploitation can lead to full system takeover.
|
| CVE-2026-36726 |
|
Path Traversal in path-traversal (CVE-2026-36726)
path traversal in path-traversal (CVE-2026-36726). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-36723 |
|
Path Traversal in path-traversal (CVE-2026-36723)
path traversal in path-traversal (CVE-2026-36723). Successful exploitation can lead to full system takeover.
|
| CVE-2026-45482 |
|
Path Traversal in path-traversal (CVE-2026-45482)
path traversal in path-traversal (CVE-2026-45482). Successful exploitation can lead to full system takeover.
|
| CVE-2026-45454 |
|
Path Traversal in path-traversal (CVE-2026-45454)
path traversal in path-traversal (CVE-2026-45454). Confidential information can be exposed externally.
|
| CVE-2026-32193 |
|
Path Traversal in path-traversal (CVE-2026-32193)
path traversal in path-traversal (CVE-2026-32193). Successful exploitation can lead to full system takeover.
|
| CVE-2026-47287 |
|
Vulnerability in path-traversal (CVE-2026-47287)
vulnerability in path-traversal (CVE-2026-47287). Data can be tampered with by attackers.
|
| CVE-2017-20248 |
|
Path Traversal in path-traversal (CVE-2017-20248)
path traversal in path-traversal (CVE-2017-20248). Confidential information can be exposed externally.
|
| CVE-2017-20250 |
|
Path Traversal in wordpress (CVE-2017-20250)
path traversal in wordpress (CVE-2017-20250). Confidential information can be exposed externally.
|
| CVE-2016-20064 |
|
Vulnerability in path-traversal (CVE-2016-20064)
vulnerability in path-traversal (CVE-2016-20064). Confidential information can be exposed externally.
|
| CVE-2026-52902 |
|
Path Traversal in path-traversal (CVE-2026-52902)
path traversal in path-traversal (CVE-2026-52902). Confidential information can be exposed externally.
|
| CVE-2026-46747 |
|
Vulnerability in path-traversal (CVE-2026-46747)
vulnerability in path-traversal (CVE-2026-46747). Risk of unauthorized operations or information disclosure. Exploitable via `GET /api/sftp/uploadFiles`.
|
| CVE-2026-41972 |
|
Path Traversal in path-traversal (CVE-2026-41972)
path traversal in path-traversal (CVE-2026-41972). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9662 |
|
Vulnerability in wordpress (CVE-2026-9662)
vulnerability in wordpress (CVE-2026-9662). Successful exploitation can lead to full system takeover. Exploitable via ``tpf``.
|
| CVE-2026-41843 |
|
Path Traversal in spring (CVE-2026-41843)
path traversal in spring (CVE-2026-41843). Confidential information can be exposed externally.
|
| CVE-2026-40128 |
|
Vulnerability in path-traversal (CVE-2026-40128)
vulnerability in path-traversal (CVE-2026-40128). Successful exploitation can lead to full system takeover.
|
| CVE-2026-46484 |
|
Path Traversal in path-traversal (CVE-2026-46484)
path traversal in path-traversal (CVE-2026-46484). Data can be tampered with by attackers.
|
| CVE-2026-41448 |
|
Path Traversal in path-traversal (CVE-2026-41448)
path traversal in path-traversal (CVE-2026-41448). Confidential information can be exposed externally.
|
| CVE-2026-25559 |
|
Path Traversal in path-traversal (CVE-2026-25559)
path traversal in path-traversal (CVE-2026-25559). Successful exploitation can lead to full system takeover.
|
| CVE-2026-49233 |
|
Path Traversal in routinator (CVE-2026-49233)
path traversal in routinator (CVE-2026-49233). Confidential information can be exposed externally. Mitigation: upgrade to `0.15.2` or later.
|
| CVE-2026-9506 |
|
Path Traversal in path-traversal (CVE-2026-9506)
path traversal in path-traversal (CVE-2026-9506). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-50953 |
|
Path Traversal in wordpress (CVE-2022-50953)
path traversal in wordpress (CVE-2022-50953). Confidential information can be exposed externally.
|
| CVE-2026-11470 |
|
Path Traversal in path-traversal (CVE-2026-11470)
path traversal in path-traversal (CVE-2026-11470). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-11467 |
|
Path Traversal in path-traversal (CVE-2026-11467)
path traversal in path-traversal (CVE-2026-11467). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-11411 |
|
Path Traversal in path-traversal (CVE-2026-11411)
path traversal in path-traversal (CVE-2026-11411). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9197 |
|
Path Traversal in wordpress (CVE-2026-9197)
path traversal in wordpress (CVE-2026-9197). Confidential information can be exposed externally.
|
| CVE-2026-7565 |
|
Path Traversal in wordpress (CVE-2026-7565)
path traversal in wordpress (CVE-2026-7565). Confidential information can be exposed externally.
|
| CVE-2026-2500 |
|
Path Traversal in csharp (CVE-2026-2500)
path traversal in csharp (CVE-2026-2500). Confidential information can be exposed externally. Exploitable via ``filename``.
|
| CVE-2026-11429 |
|
Path Traversal in path-traversal (CVE-2026-11429)
path traversal in path-traversal (CVE-2026-11429). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `8.1.1` or later.
|