Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-10597 |
|
Vulnerability in CVE-2026-10597 (CVE-2026-10597)
vulnerability in CVE-2026-10597 (CVE-2026-10597). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-14772 |
|
Vulnerability in abb (CVE-2025-14772)
vulnerability in abb (CVE-2025-14772). Successful exploitation can lead to full system takeover.
|
| CVE-2026-7201 |
|
CWE-639: Authorization Bypass Through User-Controlled Key in web services in Progress Sitefinity...
CWE-639: Authorization Bypass Through User-Controlled Key in web services in Progress Sitefinity...
|
| CVE-2026-24753 |
|
Vulnerability in accellion (CVE-2026-24753)
vulnerability in accellion (CVE-2026-24753). Data can be tampered with by attackers.
|
| CVE-2026-24755 |
|
Vulnerability in accellion (CVE-2026-24755)
vulnerability in accellion (CVE-2026-24755). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-24756 |
|
Vulnerability in accellion (CVE-2026-24756)
vulnerability in accellion (CVE-2026-24756). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-24761 |
|
Vulnerability in accellion (CVE-2026-24761)
vulnerability in accellion (CVE-2026-24761). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-45810 |
|
Vulnerability in nextcloud (CVE-2026-45810)
vulnerability in nextcloud (CVE-2026-45810). Confidential information can be exposed externally.
|
| CVE-2026-45281 |
|
Vulnerability in nextcloud (CVE-2026-45281)
vulnerability in nextcloud (CVE-2026-45281). Confidential information can be exposed externally.
|
| CVE-2026-23638 |
|
Vulnerability in accellion (CVE-2026-23638)
vulnerability in accellion (CVE-2026-23638). Data can be tampered with by attackers.
|
| CVE-2026-45155 |
|
Vulnerability in CVE-2026-45155 (CVE-2026-45155)
vulnerability in CVE-2026-45155 (CVE-2026-45155). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-45159 |
|
Vulnerability in CVE-2026-45159 (CVE-2026-45159)
vulnerability in CVE-2026-45159 (CVE-2026-45159). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-46764 |
|
Vulnerability in airflow (CVE-2026-46764)
vulnerability in airflow (CVE-2026-46764). Risk of unauthorized operations or information disclosure. Exploitable via `GET /api/v2/eventLogs/{event_log_id}`. Mitigation: upgrade to `3.2.2` or later.
|
| CVE-2026-41084 |
|
Vulnerability in apache-airflow (CVE-2026-41084)
vulnerability in apache-airflow (CVE-2026-41084). Data can be tampered with by attackers. Exploitable via `DELETE /api/v2/dags/{dag_id}/dagRuns/{dag_run_id}/taskInstances`. Mitigation: upgrade to `3.2.2` or later.
|
| CVE-2026-10212 |
|
Vulnerability in AstrBot (CVE-2026-10212)
vulnerability in AstrBot (CVE-2026-10212). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10154 |
|
Vulnerability in CVE-2026-10154 (CVE-2026-10154)
vulnerability in CVE-2026-10154 (CVE-2026-10154). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-47266 |
|
Vulnerability in verbb/formie (CVE-2026-47266)
vulnerability in verbb/formie (CVE-2026-47266). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.2.21` or later.
|
| CVE-2026-49386 |
|
Vulnerability in jetbrains (CVE-2026-49386)
vulnerability in jetbrains (CVE-2026-49386). Confidential information can be exposed externally.
|
| CVE-2026-43917 |
|
Vulnerability in CVE-2026-43917 (CVE-2026-43917)
vulnerability in CVE-2026-43917 (CVE-2026-43917). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-45551 |
|
Cross-Site Scripting (XSS) in CVE-2026-45551 (CVE-2026-45551)
cross-site scripting in CVE-2026-45551 (CVE-2026-45551). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `26.0.25` or later.
|
| CVE-2026-9493 |
|
Vulnerability in CVE-2026-9493 (CVE-2026-9493)
vulnerability in CVE-2026-9493 (CVE-2026-9493). Confidential information can be exposed externally.
|
| CVE-2026-47713 |
|
Vulnerability in mintplexlabs (CVE-2026-47713)
vulnerability in mintplexlabs (CVE-2026-47713). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.13.0` or later.
|
| CVE-2026-45342 |
|
Vulnerability in CVE-2026-45342 (CVE-2026-45342)
vulnerability in CVE-2026-45342 (CVE-2026-45342). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.5.6` or later.
|
| CVE-2026-42999 |
|
Vulnerability in keystone (CVE-2026-42999)
vulnerability in keystone (CVE-2026-42999). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `29.0.2` or later.
|
| CVE-2026-45297 |
|
Vulnerability in CVE-2026-45297 (CVE-2026-45297)
vulnerability in CVE-2026-45297 (CVE-2026-45297). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.26.0` or later.
|
| CVE-2026-41160 |
|
Vulnerability in CVE-2026-41160 (CVE-2026-41160)
vulnerability in CVE-2026-41160 (CVE-2026-41160). Risk of unauthorized operations or information disclosure. Exploitable via `POST /api/v1/Note/{id}/pin`. Mitigation: upgrade to `9.3.5` or later.
|
| CVE-2026-41141 |
|
Vulnerability in CVE-2026-41141 (CVE-2026-41141)
vulnerability in CVE-2026-41141 (CVE-2026-41141). Confidential information can be exposed externally. Exploitable via `POST /api/v1/EmailTemplate/`. Mitigation: upgrade to `9.3.5` or later.
|
| CVE-2026-7651 |
|
Vulnerability in wordpress (CVE-2026-7651)
vulnerability in wordpress (CVE-2026-7651). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-3173 |
|
Vulnerability in wordpress (CVE-2026-3173)
vulnerability in wordpress (CVE-2026-3173). Confidential information can be exposed externally.
|
| CVE-2026-9228 |
|
Vulnerability in wordpress (CVE-2026-9228)
vulnerability in wordpress (CVE-2026-9228). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9241 |
|
Vulnerability in wordpress (CVE-2026-9241)
vulnerability in wordpress (CVE-2026-9241). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-46544 |
|
Vulnerability in CVE-2026-46544 (CVE-2026-46544)
vulnerability in CVE-2026-46544 (CVE-2026-46544). Confidential information can be exposed externally.
|
| CVE-2026-46414 |
|
Vulnerability in CVE-2026-46414 (CVE-2026-46414)
vulnerability in CVE-2026-46414 (CVE-2026-46414). Successful exploitation can lead to full system takeover.
|
| CVE-2026-4868 |
|
Vulnerability in gitlab (CVE-2026-4868)
vulnerability in gitlab (CVE-2026-4868). Confidential information can be exposed externally. Mitigation: upgrade to `18.10.7, 18.11.4, 19.0.2` or later.
|
| CVE-2026-38807 |
|
Vulnerability in CVE-2026-38807 (CVE-2026-38807)
vulnerability in CVE-2026-38807 (CVE-2026-38807). Successful exploitation can lead to full system takeover.
|
| CVE-2026-9712 |
|
Vulnerability in pretix (CVE-2026-9712)
vulnerability in pretix (CVE-2026-9712). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2026.4.2` or later.
|
| CVE-2026-42736 |
|
Authorization Bypass Through User-Controlled Key vulnerability in wordplus BP Better Messages bp...
Authorization Bypass Through User-Controlled Key vulnerability in wordplus BP Better Messages bp...
|
| CVE-2026-42725 |
|
Vulnerability in CVE-2026-42725 (CVE-2026-42725)
vulnerability in CVE-2026-42725 (CVE-2026-42725). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8890 |
|
Vulnerability in CVE-2026-8890 (CVE-2026-8890)
vulnerability in CVE-2026-8890 (CVE-2026-8890). Confidential information can be exposed externally.
|
| CVE-2026-44776 |
|
Vulnerability in CVE-2026-44776 (CVE-2026-44776)
vulnerability in CVE-2026-44776 (CVE-2026-44776). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `0.9.0` or later.
|
| CVE-2026-47715 |
|
Vulnerability in bugsink (CVE-2026-47715)
vulnerability in bugsink (CVE-2026-47715). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.2.0` or later.
|
| CVE-2026-47716 |
|
Vulnerability in bugsink (CVE-2026-47716)
vulnerability in bugsink (CVE-2026-47716). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `2.2.0` or later.
|
| CVE-2026-43934 |
|
Vulnerability in CVE-2026-43934 (CVE-2026-43934)
vulnerability in CVE-2026-43934 (CVE-2026-43934). Data can be tampered with by attackers. Mitigation: upgrade to `2.3.4` or later.
|
| CVE-2026-38587 |
|
Vulnerability in CVE-2026-38587 (CVE-2026-38587)
vulnerability in CVE-2026-38587 (CVE-2026-38587). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-40127 |
|
Vulnerability in CVE-2026-40127 (CVE-2026-40127)
vulnerability in CVE-2026-40127 (CVE-2026-40127). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9306 |
|
Vulnerability in CVE-2026-9306 (CVE-2026-9306)
vulnerability in CVE-2026-9306 (CVE-2026-9306). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-35430 |
|
Vulnerability in microsoft (CVE-2026-35430)
vulnerability in microsoft (CVE-2026-35430). Successful exploitation can lead to full system takeover.
|
| CVE-2026-39968 |
|
Vulnerability in CVE-2026-39968 (CVE-2026-39968)
vulnerability in CVE-2026-39968 (CVE-2026-39968). Confidential information can be exposed externally.
|
| CVE-2026-39967 |
|
Vulnerability in CVE-2026-39967 (CVE-2026-39967)
vulnerability in CVE-2026-39967 (CVE-2026-39967). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8337 |
|
Vulnerability in concrete5/concrete5 (CVE-2026-8337)
vulnerability in concrete5/concrete5 (CVE-2026-8337). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `9.5.1` or later.
|