Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-52964 |
|
Vulnerability in CVE-2026-52964 (CVE-2026-52964)
vulnerability in CVE-2026-52964 (CVE-2026-52964). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-52968 |
|
Vulnerability in CVE-2026-52968 (CVE-2026-52968)
vulnerability in CVE-2026-52968 (CVE-2026-52968). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-52953 |
|
Vulnerability in CVE-2026-52953 (CVE-2026-52953)
vulnerability in CVE-2026-52953 (CVE-2026-52953). Data can be tampered with by attackers.
|
| CVE-2026-52952 |
|
Vulnerability in CVE-2026-52952 (CVE-2026-52952)
vulnerability in CVE-2026-52952 (CVE-2026-52952). Successful exploitation can lead to full system takeover.
|
| CVE-2026-52955 |
|
Vulnerability in CVE-2026-52955 (CVE-2026-52955)
vulnerability in CVE-2026-52955 (CVE-2026-52955). Successful exploitation can lead to full system takeover.
|
| CVE-2026-52956 |
|
Vulnerability in CVE-2026-52956 (CVE-2026-52956)
vulnerability in CVE-2026-52956 (CVE-2026-52956). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-52949 |
|
Vulnerability in CVE-2026-52949 (CVE-2026-52949)
vulnerability in CVE-2026-52949 (CVE-2026-52949). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-52950 |
|
Vulnerability in CVE-2026-52950 (CVE-2026-52950)
vulnerability in CVE-2026-52950 (CVE-2026-52950). Successful exploitation can lead to full system takeover.
|
| CVE-2026-52957 |
|
Vulnerability in c (CVE-2026-52957)
vulnerability in c (CVE-2026-52957). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-52947 |
|
Vulnerability in c (CVE-2026-52947)
vulnerability in c (CVE-2026-52947). Successful exploitation can lead to full system takeover.
|
| CVE-2026-13164 |
|
Vulnerability in CVE-2026-13164 (CVE-2026-13164)
vulnerability in CVE-2026-13164 (CVE-2026-13164). Risk of unauthorized operations or information disclosure. Exploitable via `POST /api/auth/register/`.
|
| CVE-2026-52951 |
|
Vulnerability in CVE-2026-52951 (CVE-2026-52951)
vulnerability in CVE-2026-52951 (CVE-2026-52951). Successful exploitation can lead to full system takeover.
|
| CVE-2026-52945 |
|
Vulnerability in CVE-2026-52945 (CVE-2026-52945)
vulnerability in CVE-2026-52945 (CVE-2026-52945). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-52948 |
|
Vulnerability in dos (CVE-2026-52948)
vulnerability in dos (CVE-2026-52948). Risk of unauthorized operations or information disclosure. Exploitable via ``schedule_timeout``.
|
| CVE-2026-55611 |
|
Vulnerability in CVE-2026-55611 (CVE-2026-55611)
vulnerability in CVE-2026-55611 (CVE-2026-55611). Risk of unauthorized operations or information disclosure. Exploitable via `POST /api/workspace/`. Mitigation: upgrade to `1.14.1` or later.
|
| CVE-2026-54699 |
|
OS Command Injection in CVE-2026-54699 (CVE-2026-54699)
OS command injection in CVE-2026-54699 (CVE-2026-54699). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `0.2026.05.06.15.42.stable` or later.
|
| CVE-2026-54686 |
|
OS Command Injection in CVE-2026-54686 (CVE-2026-54686)
OS command injection in CVE-2026-54686 (CVE-2026-54686). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `0.2026.05.06.15.42.stable` or later.
|
| CVE-2026-49851 |
|
Vulnerability in dos (CVE-2026-49851)
vulnerability in dos (CVE-2026-49851). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `3.3.0` or later.
|
| CVE-2026-48789 |
|
Path Traversal in CVE-2026-48789 (CVE-2026-48789)
path traversal in CVE-2026-48789 (CVE-2026-48789). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.13.0` or later.
|
| CVE-2026-48732 |
|
OS Command Injection in CVE-2026-48732 (CVE-2026-48732)
OS command injection in CVE-2026-48732 (CVE-2026-48732). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `0.2026.05.06.15.42.stable` or later.
|
| CVE-2026-48731 |
|
OS Command Injection in CVE-2026-48731 (CVE-2026-48731)
OS command injection in CVE-2026-48731 (CVE-2026-48731). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `0.2026.05.06.15.42.stable` or later.
|
| CVE-2026-48725 |
|
Vulnerability in CVE-2026-48725 (CVE-2026-48725)
vulnerability in CVE-2026-48725 (CVE-2026-48725). Confidential information can be exposed externally. Mitigation: upgrade to `0.2026.05.06.15.42.stable` or later.
|
| CVE-2026-48721 |
|
Vulnerability in c (CVE-2026-48721)
vulnerability in c (CVE-2026-48721). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `0.2026.05.06.15.42.stable` or later.
|
| CVE-2026-48720 |
|
Vulnerability in CVE-2026-48720 (CVE-2026-48720)
vulnerability in CVE-2026-48720 (CVE-2026-48720). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `0.2026.05.06.15.42.stable` or later.
|
| CVE-2026-48719 |
|
OS Command Injection in CVE-2026-48719 (CVE-2026-48719)
OS command injection in CVE-2026-48719 (CVE-2026-48719). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `0.2026.05.06.15.42.stable` or later.
|
| CVE-2026-48704 |
|
Vulnerability in CVE-2026-48704 (CVE-2026-48704)
vulnerability in CVE-2026-48704 (CVE-2026-48704). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `0.2026.05.06.15.42.stable` or later.
|
| CVE-2026-48703 |
|
OS Command Injection in CVE-2026-48703 (CVE-2026-48703)
OS command injection in CVE-2026-48703 (CVE-2026-48703). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `0.2026.05.06.15.42.stable` or later.
|
| CVE-2026-53541 |
|
Vulnerability in github.com/OliveTin/OliveTin (CVE-2026-53541)
vulnerability in github.com/OliveTin/OliveTin (CVE-2026-53541). Risk of unauthorized operations or information disclosure. Exploitable via ``filterToDefinedArgumentsOnly``. Mitigation: upgrade to `0.0.0-20260531214440-ebffd9f040f7` or later.
|
| CVE-2026-45052 |
|
Vulnerability in org.openidentityplatform.openam:openam-federation-library (CVE-2026-45052)
vulnerability in org.openidentityplatform.openam:openam-federation-library (CVE-2026-45052). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `16.1.1` or later.
|
| CVE-2026-45051 |
|
Unsafe Deserialization in org.openidentityplatform.openam:openam-auth-webauthn (CVE-2026-45051)
vulnerability in org.openidentityplatform.openam:openam-auth-webauthn (CVE-2026-45051). Risk of unauthorized operations or information disclosure. Exploitable via ``userAttribute``. Mitigation: upgrade to `16.1.1` or later.
|
| CVE-2026-56121 |
|
Unsafe Deserialization in deserialization (CVE-2026-56121)
vulnerability in deserialization (CVE-2026-56121). Successful exploitation can lead to full system takeover.
|
| CVE-2026-56119 |
|
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
|
| CVE-2026-56118 |
|
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
|
| CVE-2026-56111 |
|
Vulnerability in c (CVE-2026-56111)
vulnerability in c (CVE-2026-56111). Data can be tampered with by attackers.
|
| CVE-2026-50712 |
|
Cross-Site Scripting (XSS) in CVE-2026-50712 (CVE-2026-50712)
cross-site scripting in CVE-2026-50712 (CVE-2026-50712). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-50711 |
|
Cross-Site Scripting (XSS) in CVE-2026-50711 (CVE-2026-50711)
cross-site scripting in CVE-2026-50711 (CVE-2026-50711). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-50710 |
|
Cross-Site Scripting (XSS) in CVE-2026-50710 (CVE-2026-50710)
cross-site scripting in CVE-2026-50710 (CVE-2026-50710). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-50709 |
|
Cross-Site Scripting (XSS) in CVE-2026-50709 (CVE-2026-50709)
cross-site scripting in CVE-2026-50709 (CVE-2026-50709). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-50708 |
|
Cross-Site Scripting (XSS) in CVE-2026-50708 (CVE-2026-50708)
cross-site scripting in CVE-2026-50708 (CVE-2026-50708). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-50705 |
|
Cross-Site Scripting (XSS) in CVE-2026-50705 (CVE-2026-50705)
cross-site scripting in CVE-2026-50705 (CVE-2026-50705). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-50704 |
|
Cross-Site Scripting (XSS) in CVE-2026-50704 (CVE-2026-50704)
cross-site scripting in CVE-2026-50704 (CVE-2026-50704). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-50703 |
|
Cross-Site Scripting (XSS) in CVE-2026-50703 (CVE-2026-50703)
cross-site scripting in CVE-2026-50703 (CVE-2026-50703). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-50701 |
|
Cross-Site Scripting (XSS) in CVE-2026-50701 (CVE-2026-50701)
cross-site scripting in CVE-2026-50701 (CVE-2026-50701). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-50700 |
|
Cross-Site Scripting (XSS) in CVE-2026-50700 (CVE-2026-50700)
cross-site scripting in CVE-2026-50700 (CVE-2026-50700). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-49269 |
|
Information Disclosure in CVE-2026-49269 (CVE-2026-49269)
vulnerability in CVE-2026-49269 (CVE-2026-49269). Confidential information can be exposed externally.
|
| CVE-2026-50699 |
|
Cross-Site Scripting (XSS) in CVE-2026-50699 (CVE-2026-50699)
cross-site scripting in CVE-2026-50699 (CVE-2026-50699). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-11877 |
|
Vulnerability in microfocus (CVE-2026-11877)
vulnerability in microfocus (CVE-2026-11877). Data can be tampered with by attackers.
|
| CVE-2026-50698 |
|
Cross-Site Scripting (XSS) in CVE-2026-50698 (CVE-2026-50698)
cross-site scripting in CVE-2026-50698 (CVE-2026-50698). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-12986 |
|
Cross-Site Request Forgery (CSRF) in ssrf (CVE-2026-12986)
vulnerability in ssrf (CVE-2026-12986). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-11878 |
|
Cross-Site Scripting (XSS) in microfocus (CVE-2026-11878)
cross-site scripting in microfocus (CVE-2026-11878). Risk of unauthorized operations or information disclosure.
|