Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-6209 |
|
Vulnerability in CVE-2026-6209 (CVE-2026-6209)
vulnerability in CVE-2026-6209 (CVE-2026-6209). Confidential information can be exposed externally.
|
| CVE-2026-5228 |
|
Vulnerability in CVE-2026-5228 (CVE-2026-5228)
vulnerability in CVE-2026-5228 (CVE-2026-5228). Successful exploitation can lead to full system takeover.
|
| CVE-2026-10815 |
|
Vulnerability in CVE-2026-10815 (CVE-2026-10815)
vulnerability in CVE-2026-10815 (CVE-2026-10815). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10855 |
|
Vulnerability in misp (CVE-2026-10855)
vulnerability in misp (CVE-2026-10855). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-4881 |
|
Vulnerability in octopus (CVE-2026-4881)
vulnerability in octopus (CVE-2026-4881). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-10737 |
|
Vulnerability in wordpress (CVE-2026-10737)
vulnerability in wordpress (CVE-2026-10737). Confidential information can be exposed externally.
|
| CVE-2026-44281 |
|
Vulnerability in CVE-2026-44281 (CVE-2026-44281)
vulnerability in CVE-2026-44281 (CVE-2026-44281). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-42317 |
|
Vulnerability in CVE-2026-42317 (CVE-2026-42317)
vulnerability in CVE-2026-42317 (CVE-2026-42317). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-42318 |
|
Vulnerability in CVE-2026-42318 (CVE-2026-42318)
vulnerability in CVE-2026-42318 (CVE-2026-42318). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-42320 |
|
Vulnerability in CVE-2026-42320 (CVE-2026-42320)
vulnerability in CVE-2026-42320 (CVE-2026-42320). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-31942 |
|
Vulnerability in librechat (CVE-2026-31942)
vulnerability in librechat (CVE-2026-31942). Data can be tampered with by attackers. Exploitable via `PUT /api/keys`.
|
| CVE-2026-10616 |
|
Vulnerability in CVE-2026-10616 (CVE-2026-10616)
vulnerability in CVE-2026-10616 (CVE-2026-10616). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-40571 |
|
Vulnerability in CVE-2026-40571 (CVE-2026-40571)
vulnerability in CVE-2026-40571 (CVE-2026-40571). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-35443 |
|
Vulnerability in CVE-2026-35443 (CVE-2026-35443)
vulnerability in CVE-2026-35443 (CVE-2026-35443). Risk of unauthorized operations or information disclosure. Exploitable via ``view_other_topics``.
|
| CVE-2026-40314 |
|
Vulnerability in CVE-2026-40314 (CVE-2026-40314)
vulnerability in CVE-2026-40314 (CVE-2026-40314). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-49782 |
|
Vulnerability in CVE-2026-49782 (CVE-2026-49782)
vulnerability in CVE-2026-49782 (CVE-2026-49782). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-27351 |
|
Vulnerability in CVE-2026-27351 (CVE-2026-27351)
vulnerability in CVE-2026-27351 (CVE-2026-27351). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-42669 |
|
Vulnerability in CVE-2026-42669 (CVE-2026-42669)
vulnerability in CVE-2026-42669 (CVE-2026-42669). Data can be tampered with by attackers.
|
| CVE-2026-42670 |
|
Vulnerability in CVE-2026-42670 (CVE-2026-42670)
vulnerability in CVE-2026-42670 (CVE-2026-42670). Confidential information can be exposed externally.
|
| CVE-2025-53345 |
|
Vulnerability in CVE-2025-53345 (CVE-2025-53345)
vulnerability in CVE-2025-53345 (CVE-2025-53345). Successful exploitation can lead to full system takeover.
|
| CVE-2025-53346 |
|
Vulnerability in CVE-2025-53346 (CVE-2025-53346)
vulnerability in CVE-2025-53346 (CVE-2025-53346). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-52766 |
|
Vulnerability in CVE-2025-52766 (CVE-2025-52766)
vulnerability in CVE-2025-52766 (CVE-2025-52766). Data can be tampered with by attackers.
|
| CVE-2025-53302 |
|
Vulnerability in CVE-2025-53302 (CVE-2025-53302)
vulnerability in CVE-2025-53302 (CVE-2025-53302). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9234 |
|
Vulnerability in wordpress (CVE-2026-9234)
vulnerability in wordpress (CVE-2026-9234). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-9050 |
|
Vulnerability in wordpress (CVE-2026-9050)
vulnerability in wordpress (CVE-2026-9050). Risk of unauthorized operations or information disclosure.
|
| CVE-2022-0492 KEV |
|
[KEV] Authentication Bypass in Linux c (CVE-2022-0492)
authentication bypass in Linux c (CVE-2022-0492). Successful exploitation can lead to full system takeover. Listed in CISA KEV — actively exploited.
|
| CVE-2025-26418 |
|
Vulnerability in google (CVE-2025-26418)
vulnerability in google (CVE-2025-26418). Successful exploitation can lead to full system takeover.
|
| CVE-2026-45285 |
|
Vulnerability in nextcloud (CVE-2026-45285)
vulnerability in nextcloud (CVE-2026-45285). Confidential information can be exposed externally.
|
| CVE-2026-45267 |
|
Information Disclosure in CVE-2026-45267 (CVE-2026-45267)
vulnerability in CVE-2026-45267 (CVE-2026-45267). Confidential information can be exposed externally.
|
| CVE-2026-42675 |
|
Vulnerability in CVE-2026-42675 (CVE-2026-42675)
vulnerability in CVE-2026-42675 (CVE-2026-42675). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-42677 |
|
Vulnerability in CVE-2026-42677 (CVE-2026-42677)
vulnerability in CVE-2026-42677 (CVE-2026-42677). Confidential information can be exposed externally.
|
| CVE-2026-42671 |
|
Vulnerability in CVE-2026-42671 (CVE-2026-42671)
vulnerability in CVE-2026-42671 (CVE-2026-42671). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-42682 |
|
Vulnerability in CVE-2026-42682 (CVE-2026-42682)
vulnerability in CVE-2026-42682 (CVE-2026-42682). Data can be tampered with by attackers.
|
| CVE-2026-48119 |
|
Vulnerability in github.com/nezhahq/nezha (CVE-2026-48119)
vulnerability in github.com/nezhahq/nezha (CVE-2026-48119). Data can be tampered with by attackers. Exploitable via ``TaskResult``. Mitigation: upgrade to `2.0.12` or later.
|
| CVE-2026-40543 |
|
Vulnerability in CVE-2026-40543 (CVE-2026-40543)
vulnerability in CVE-2026-40543 (CVE-2026-40543). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-41014 |
|
Vulnerability in apache-airflow (CVE-2026-41014)
vulnerability in apache-airflow (CVE-2026-41014). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `3.2.2` or later.
|
| CVE-2026-8382 |
|
Vulnerability in wordpress (CVE-2026-8382)
vulnerability in wordpress (CVE-2026-8382). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48811 |
|
Vulnerability in laravel (CVE-2026-48811)
vulnerability in laravel (CVE-2026-48811). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `1.8.221` or later.
|
| CVE-2026-49385 |
|
Vulnerability in jetbrains (CVE-2026-49385)
vulnerability in jetbrains (CVE-2026-49385). Data can be tampered with by attackers.
|
| CVE-2026-49374 |
|
Vulnerability in jetbrains (CVE-2026-49374)
vulnerability in jetbrains (CVE-2026-49374). Confidential information can be exposed externally.
|
| CVE-2026-49378 |
|
Vulnerability in jetbrains (CVE-2026-49378)
vulnerability in jetbrains (CVE-2026-49378). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-47745 |
|
Vulnerability in shopper/framework (CVE-2026-47745)
vulnerability in shopper/framework (CVE-2026-47745). Data can be tampered with by attackers. Exploitable via ``PaymentMethods``. Mitigation: upgrade to `2.8.0` or later.
|
| CVE-2026-49367 |
|
In JetBrains IntelliJ IDEA before 2026.1.1 command execution was possible via the guest user account
In JetBrains IntelliJ IDEA before 2026.1.1 command execution was possible via the guest user account
|
| CVE-2026-47740 |
|
shopper/framework: Authorization bypass in multiple Livewire admin components
shopper/framework: Authorization bypass in multiple Livewire admin components
|
| CVE-2026-47742 |
|
Vulnerability in shopper/framework (CVE-2026-47742)
vulnerability in shopper/framework (CVE-2026-47742). Data can be tampered with by attackers. Exploitable via ``Edit``. Mitigation: upgrade to `2.8.0` or later.
|
| CVE-2026-45632 |
|
OS Command Injection in CVE-2026-45632 (CVE-2026-45632)
OS command injection in CVE-2026-45632 (CVE-2026-45632). Successful exploitation can lead to full system takeover.
|
| CVE-2026-35630 |
|
Vulnerability in openclaw (CVE-2026-35630)
vulnerability in openclaw (CVE-2026-35630). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `2026.5.18` or later.
|
| CVE-2026-32905 |
|
Vulnerability in openclaw (CVE-2026-32905)
vulnerability in openclaw (CVE-2026-32905). Confidential information can be exposed externally.
|
| CVE-2018-25391 |
|
Vulnerability in CVE-2018-25391 (CVE-2018-25391)
vulnerability in CVE-2018-25391 (CVE-2018-25391). Data can be tampered with by attackers.
|
| CVE-2026-4290 |
|
Vulnerability in wordpress (CVE-2026-4290)
vulnerability in wordpress (CVE-2026-4290). Data can be tampered with by attackers.
|