Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-22927 |
|
Omnissa Workspace ONE® Tunnel for Windows addresses a Local Privilege Escalation Vulnerability.
Omnissa Workspace ONE® Tunnel for Windows addresses a Local Privilege Escalation Vulnerability.
|
| CVE-2026-55874 |
|
Path Traversal in CVE-2026-55874 (CVE-2026-55874)
path traversal in CVE-2026-55874 (CVE-2026-55874). Confidential information can be exposed externally.
|
| CVE-2026-14244 |
|
Path Traversal in wordpress (CVE-2026-14244)
path traversal in wordpress (CVE-2026-14244). Confidential information can be exposed externally.
|
| CVE-2026-42200 |
|
Path Traversal in CVE-2026-42200 (CVE-2026-42200)
path traversal in CVE-2026-42200 (CVE-2026-42200). Successful exploitation can lead to full system takeover.
|
| CVE-2026-14468 |
|
Path Traversal in CVE-2026-14468 (CVE-2026-14468)
path traversal in CVE-2026-14468 (CVE-2026-14468). Confidential information can be exposed externally.
|
| CVE-2026-59194 |
|
Path Traversal in pnpm (CVE-2026-59194)
path traversal in pnpm (CVE-2026-59194). Data can be tampered with by attackers. Mitigation: upgrade to `10.34.4` or later.
|
| CVE-2026-59195 |
|
Path Traversal in pnpm (CVE-2026-59195)
path traversal in pnpm (CVE-2026-59195). Data can be tampered with by attackers. Mitigation: upgrade to `10.34.4` or later.
|
| CVE-2026-59196 |
|
Path Traversal in pnpm (CVE-2026-59196)
path traversal in pnpm (CVE-2026-59196). Data can be tampered with by attackers. Mitigation: upgrade to `10.34.4` or later.
|
| CVE-2026-49297 |
|
Path Traversal in apache (CVE-2026-49297)
path traversal in apache (CVE-2026-49297). Data can be tampered with by attackers. Exploitable via ``GCSToSFTPOperator``.
|
| CVE-2026-14635 |
|
Path Traversal in path-traversal (CVE-2026-14635)
path traversal in path-traversal (CVE-2026-14635). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-47896 |
|
Path Traversal in csharp (CVE-2026-47896)
path traversal in csharp (CVE-2026-47896). Confidential information can be exposed externally.
|
| CVE-2026-14352 |
|
Path Traversal in wordpress (CVE-2026-14352)
path traversal in wordpress (CVE-2026-14352). Confidential information can be exposed externally. Exploitable via `Referer header`.
|
| CVE-2026-14327 |
|
Path Traversal in wordpress (CVE-2026-14327)
path traversal in wordpress (CVE-2026-14327). Confidential information can be exposed externally.
|
| CVE-2026-58460 |
|
Path Traversal in react (CVE-2026-58460)
path traversal in react (CVE-2026-58460). Data can be tampered with by attackers.
|
| CVE-2026-58467 |
|
Path Traversal in nginx (CVE-2026-58467)
path traversal in nginx (CVE-2026-58467). Confidential information can be exposed externally.
|
| CVE-2026-7311 |
|
Path Traversal in wordpress (CVE-2026-7311)
path traversal in wordpress (CVE-2026-7311). Data can be tampered with by attackers.
|
| CVE-2026-55117 |
|
Path Traversal in path-traversal (CVE-2026-55117)
path traversal in path-traversal (CVE-2026-55117). Confidential information can be exposed externally.
|
| CVE-2026-55111 |
|
Path Traversal in path-traversal (CVE-2026-55111)
path traversal in path-traversal (CVE-2026-55111). Confidential information can be exposed externally.
|
| CVE-2026-54406 |
|
Path Traversal in path-traversal (CVE-2026-54406)
path traversal in path-traversal (CVE-2026-54406). Data can be tampered with by attackers.
|
| CVE-2026-54403 |
|
Path Traversal in path-traversal (CVE-2026-54403)
path traversal in path-traversal (CVE-2026-54403). Confidential information can be exposed externally.
|
| CVE-2026-13369 |
|
Path Traversal in wordpress (CVE-2026-13369)
path traversal in wordpress (CVE-2026-13369). Confidential information can be exposed externally.
|
| CVE-2026-13251 |
|
Path Traversal in wordpress (CVE-2026-13251)
path traversal in wordpress (CVE-2026-13251). Confidential information can be exposed externally.
|
| CVE-2026-49119 |
|
Path Traversal in path-traversal (CVE-2026-49119)
path traversal in path-traversal (CVE-2026-49119). Confidential information can be exposed externally.
|
| CVE-2026-20191 |
|
Path Traversal in cisco (CVE-2026-20191)
path traversal in cisco (CVE-2026-20191). Confidential information can be exposed externally.
|
| CVE-2026-53906 |
|
Path Traversal in path-traversal (CVE-2026-53906)
path traversal in path-traversal (CVE-2026-53906). Data can be tampered with by attackers.
|
| CVE-2026-56233 |
|
Path Traversal in path-traversal (CVE-2026-56233)
path traversal in path-traversal (CVE-2026-56233). Confidential information can be exposed externally.
|
| CVE-2026-52868 |
|
Path Traversal in CVE-2026-52868 (CVE-2026-52868)
path traversal in CVE-2026-52868 (CVE-2026-52868). Confidential information can be exposed externally.
|
| CVE-2026-58372 |
|
Path Traversal in path-traversal (CVE-2026-58372)
path traversal in path-traversal (CVE-2026-58372). Data can be tampered with by attackers.
|
| CVE-2026-58170 |
|
Path Traversal in path-traversal (CVE-2026-58170)
path traversal in path-traversal (CVE-2026-58170). Data can be tampered with by attackers.
|
| CVE-2026-58302 |
|
Path Traversal in path-traversal (CVE-2026-58302)
path traversal in path-traversal (CVE-2026-58302). Successful exploitation can lead to full system takeover.
|
| CVE-2026-12243 |
|
Path Traversal in path-traversal (CVE-2026-12243)
path traversal in path-traversal (CVE-2026-12243). Confidential information can be exposed externally. Exploitable via ``_UNSAFE_NO_PROTOCOL_RE``.
|
| CVE-2026-8023 |
|
Path Traversal in c (CVE-2026-8023)
path traversal in c (CVE-2026-8023). Confidential information can be exposed externally.
|
| CVE-2026-36848 |
|
Gigamon GVOS v5.16.1 and below is vulnerable to Directory Traversal in the GVOS H-VUE subsystem.
Gigamon GVOS v5.16.1 and below is vulnerable to Directory Traversal in the GVOS H-VUE subsystem.
|
| CVE-2026-55607 |
|
Path Traversal in anthropic (CVE-2026-55607)
path traversal in anthropic (CVE-2026-55607). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `2.1.163` or later.
|
| CVE-2026-40521 |
|
Path Traversal in path-traversal (CVE-2026-40521)
path traversal in path-traversal (CVE-2026-40521). Successful exploitation can lead to full system takeover.
|
| CVE-2026-57346 |
|
Path Traversal in path-traversal (CVE-2026-57346)
path traversal in path-traversal (CVE-2026-57346). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-13528 |
|
Path Traversal in vue (CVE-2026-13528)
path traversal in vue (CVE-2026-13528). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-55700 |
|
Path Traversal in pnpm (CVE-2026-55700)
path traversal in pnpm (CVE-2026-55700). Data can be tampered with by attackers. Exploitable via ``main``. Mitigation: upgrade to `11.5.3` or later.
|
| CVE-2026-50015 |
|
Path Traversal in pnpm (CVE-2026-50015)
path traversal in pnpm (CVE-2026-50015). Data can be tampered with by attackers. Exploitable via ``patchedDependencies``. Mitigation: upgrade to `11.4.0` or later.
|
| CVE-2026-49984 |
|
Path Traversal in kestra (CVE-2026-49984)
path traversal in kestra (CVE-2026-49984). Confidential information can be exposed externally. Exploitable via `GET /api/v1/{tenant}/executions/{executionId}/file`. Mitigation: upgrade to `1.0.45` or later.
|
| CVE-2026-45807 |
|
Path Traversal in kestra (CVE-2026-45807)
path traversal in kestra (CVE-2026-45807). Confidential information can be exposed externally. Mitigation: upgrade to `1.0.43` or later.
|
| CVE-2026-49991 |
|
Path Traversal in path-traversal (CVE-2026-49991)
path traversal in path-traversal (CVE-2026-49991). Data can be tampered with by attackers.
|
| CVE-2026-56876 |
|
Path Traversal in max-mapper (CVE-2026-56876)
path traversal in max-mapper (CVE-2026-56876). Confidential information can be exposed externally.
|
| CVE-2026-55677 |
|
Path Traversal in CVE-2026-55677 (CVE-2026-55677)
path traversal in CVE-2026-55677 (CVE-2026-55677). Confidential information can be exposed externally. Mitigation: upgrade to `4.15.3` or later.
|
| CVE-2026-57321 |
|
Contributor Arbitrary File Deletion in H5P <= 1.17.7 versions.
Contributor Arbitrary File Deletion in H5P <= 1.17.7 versions.
|
| CVE-2026-57872 |
|
Path Traversal in path-traversal (CVE-2026-57872)
path traversal in path-traversal (CVE-2026-57872). Confidential information can be exposed externally.
|
| CVE-2026-55667 |
|
Path Traversal in CVE-2026-55667 (CVE-2026-55667)
path traversal in CVE-2026-55667 (CVE-2026-55667). Data can be tampered with by attackers. Mitigation: upgrade to `2.63.16` or later.
|
| CVE-2026-45233 |
|
Path Traversal in path-traversal (CVE-2026-45233)
path traversal in path-traversal (CVE-2026-45233). Data can be tampered with by attackers.
|
| CVE-2026-55092 |
|
Path Traversal in aquasec (CVE-2026-55092)
path traversal in aquasec (CVE-2026-55092). Data can be tampered with by attackers. Mitigation: upgrade to `0.71.1` or later.
|
| CVE-2026-56122 |
|
Path Traversal in path-traversal (CVE-2026-56122)
path traversal in path-traversal (CVE-2026-56122). Confidential information can be exposed externally.
|