Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-59996 |
|
Vulnerability in CVE-2026-59996 (CVE-2026-59996)
vulnerability in CVE-2026-59996 (CVE-2026-59996). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-59995 |
|
Vulnerability in CVE-2026-59995 (CVE-2026-59995)
vulnerability in CVE-2026-59995 (CVE-2026-59995). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-14476 |
|
Vulnerability in path-traversal (CVE-2026-14476)
vulnerability in path-traversal (CVE-2026-14476). Successful exploitation can lead to full system takeover.
|
| CVE-2026-57871 |
|
Vulnerability in path-traversal (CVE-2026-57871)
vulnerability in path-traversal (CVE-2026-57871). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-53829 |
|
Vulnerability in path-traversal (CVE-2025-53829)
vulnerability in path-traversal (CVE-2025-53829). Successful exploitation can lead to full system takeover.
|
| CVE-2026-58522 |
|
Vulnerability in path-traversal (CVE-2026-58522)
vulnerability in path-traversal (CVE-2026-58522). Confidential information can be exposed externally.
|
| CVE-2026-57988 |
|
Vulnerability in path-traversal (CVE-2026-57988)
vulnerability in path-traversal (CVE-2026-57988). Data can be tampered with by attackers.
|
| CVE-2026-44941 |
|
Vulnerability in path-traversal (CVE-2026-44941)
vulnerability in path-traversal (CVE-2026-44941). Successful exploitation can lead to full system takeover.
|
| CVE-2026-8387 |
|
Vulnerability in path-traversal (CVE-2026-8387)
vulnerability in path-traversal (CVE-2026-8387). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-44948 |
|
Vulnerability in path-traversal (CVE-2026-44948)
vulnerability in path-traversal (CVE-2026-44948). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-8023 |
|
Path Traversal in c (CVE-2026-8023)
path traversal in c (CVE-2026-8023). Confidential information can be exposed externally.
|
| CVE-2026-25707 |
|
Vulnerability in path-traversal (CVE-2026-25707)
vulnerability in path-traversal (CVE-2026-25707). Successful exploitation can lead to full system takeover.
|
| CVE-2026-50016 |
|
Vulnerability in pnpm (CVE-2026-50016)
vulnerability in pnpm (CVE-2026-50016). Successful exploitation can lead to full system takeover. Exploitable via ``node_modules``. Mitigation: upgrade to `11.4.0` or later.
|
| CVE-2026-45188 |
|
Vulnerability in apache (CVE-2026-45188)
vulnerability in apache (CVE-2026-45188). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-54066 |
|
Path Traversal in path-traversal (CVE-2026-54066)
path traversal in path-traversal (CVE-2026-54066). Confidential information can be exposed externally. Mitigation: upgrade to `3.7.0` or later.
|
| CVE-2026-52813 |
|
Vulnerability in gogs.io/gogs (CVE-2026-52813)
vulnerability in gogs.io/gogs (CVE-2026-52813). Successful exploitation can lead to full system takeover. Exploitable via ``hooks``. Mitigation: upgrade to `0.14.3` or later.
|
| CVE-2026-41046 |
|
Vulnerability in path-traversal (CVE-2026-41046)
vulnerability in path-traversal (CVE-2026-41046). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-49290 |
|
Path Traversal in CVE-2026-49290 (CVE-2026-49290)
path traversal in CVE-2026-49290 (CVE-2026-49290). Risk of unauthorized operations or information disclosure. Exploitable via ``zipfile``.
|
| CVE-2026-10720 |
|
Vulnerability in github.com/canonical/microceph/microceph (CVE-2026-10720)
vulnerability in github.com/canonical/microceph/microceph (CVE-2026-10720). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `0.0.0-20260609072127-5c2760d8fb76` or later.
|
| CVE-2026-8100 |
|
Vulnerability in CVE-2026-8100 (CVE-2026-8100)
vulnerability in CVE-2026-8100 (CVE-2026-8100). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-34026 |
|
Vulnerability in path-traversal (CVE-2026-34026)
vulnerability in path-traversal (CVE-2026-34026). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-48569 |
|
Vulnerability in microsoft (CVE-2026-48569)
vulnerability in microsoft (CVE-2026-48569). Confidential information can be exposed externally.
|
| CVE-2026-47287 |
|
Vulnerability in path-traversal (CVE-2026-47287)
vulnerability in path-traversal (CVE-2026-47287). Data can be tampered with by attackers.
|
| CVE-2026-48681 |
|
Vulnerability in path-traversal (CVE-2026-48681)
vulnerability in path-traversal (CVE-2026-48681). Confidential information can be exposed externally.
|
| CVE-2026-5422 |
|
Vulnerability in path-traversal (CVE-2026-5422)
vulnerability in path-traversal (CVE-2026-5422). Confidential information can be exposed externally.
|
| CVE-2026-10074 |
|
Vulnerability in path-traversal (CVE-2026-10074)
vulnerability in path-traversal (CVE-2026-10074). Confidential information can be exposed externally.
|
| CVE-2026-10073 |
|
Vulnerability in path-traversal (CVE-2026-10073)
vulnerability in path-traversal (CVE-2026-10073). Confidential information can be exposed externally.
|
| CVE-2026-8326 |
|
Vulnerability in path-traversal (CVE-2026-8326)
vulnerability in path-traversal (CVE-2026-8326). Risk of unauthorized operations or information disclosure.
|
| CVE-2025-41280 |
|
Vulnerability in path-traversal (CVE-2025-41280)
vulnerability in path-traversal (CVE-2025-41280). Successful exploitation can lead to full system takeover.
|
| CVE-2025-41271 |
|
Vulnerability in path-traversal (CVE-2025-41271)
vulnerability in path-traversal (CVE-2025-41271). Confidential information can be exposed externally.
|
| CVE-2025-41268 |
|
Vulnerability in path-traversal (CVE-2025-41268)
vulnerability in path-traversal (CVE-2025-41268). Data can be tampered with by attackers.
|
| CVE-2025-48977 |
|
Vulnerability in org.apache.ignite:ignite-core (CVE-2025-48977)
vulnerability in org.apache.ignite:ignite-core (CVE-2025-48977). Confidential information can be exposed externally. Mitigation: upgrade to `2.18.0` or later.
|
| CVE-2026-8361 |
|
Vulnerability in path-traversal (CVE-2026-8361)
vulnerability in path-traversal (CVE-2026-8361). Confidential information can be exposed externally.
|
| CVE-2026-48126 |
|
Path Traversal in github.com/xyproto/algernon (CVE-2026-48126)
path traversal in github.com/xyproto/algernon (CVE-2026-48126). Confidential information can be exposed externally. Exploitable via `Host header`. Mitigation: upgrade to `1.17.8` or later.
|
| CVE-2026-8134 |
|
Vulnerability in concrete5/concrete5 (CVE-2026-8134)
vulnerability in concrete5/concrete5 (CVE-2026-8134). Successful exploitation can lead to full system takeover. Mitigation: upgrade to `9.5.1` or later.
|
| CVE-2026-34926 KEV |
|
[KEV] Vulnerability in Trend micro path-traversal (CVE-2026-34926)
vulnerability in Trend micro path-traversal (CVE-2026-34926). Confidential information can be exposed externally. Listed in CISA KEV — actively exploited.
|
| CVE-2026-23734 |
|
Vulnerability in org.xwiki.commons:xwiki-commons-classloader-api (CVE-2026-23734)
vulnerability in org.xwiki.commons:xwiki-commons-classloader-api (CVE-2026-23734). Risk of unauthorized operations or information disclosure. Mitigation: upgrade to `18.0.0-rc-1` or later.
|
| CVE-2026-8073 |
|
Vulnerability in wordpress (CVE-2026-8073)
vulnerability in wordpress (CVE-2026-8073). Confidential information can be exposed externally.
|
| CVE-2026-41948 |
|
Vulnerability in path-traversal (CVE-2026-41948)
vulnerability in path-traversal (CVE-2026-41948). Confidential information can be exposed externally.
|
| CVE-2026-41612 |
|
Path Traversal in path-traversal (CVE-2026-41612)
path traversal in path-traversal (CVE-2026-41612). Confidential information can be exposed externally.
|
| CVE-2026-41551 |
|
Vulnerability in path-traversal (CVE-2026-41551)
vulnerability in path-traversal (CVE-2026-41551). Confidential information can be exposed externally.
|
| CVE-2026-8209 |
|
Vulnerability in path-traversal (CVE-2026-8209)
vulnerability in path-traversal (CVE-2026-8209). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-29201 |
|
Vulnerability in CVE-2026-29201 (CVE-2026-29201)
vulnerability in CVE-2026-29201 (CVE-2026-29201). Confidential information can be exposed externally.
|
| CVE-2026-43616 |
|
Vulnerability in path-traversal (CVE-2026-43616)
vulnerability in path-traversal (CVE-2026-43616). Data can be tampered with by attackers.
|
| CVE-2026-42085 |
|
Vulnerability in openc3 (CVE-2026-42085)
vulnerability in openc3 (CVE-2026-42085). Risk of unauthorized operations or information disclosure. Exploitable via ``OPENC3_LOCAL_MODE_PATH``. Mitigation: upgrade to `7.0.0-rc3` or later.
|
| CVE-2026-5966 |
|
Vulnerability in path-traversal (CVE-2026-5966)
vulnerability in path-traversal (CVE-2026-5966). Data can be tampered with by attackers.
|
| CVE-2024-27199 KEV |
|
[KEV] Vulnerability in Jetbrains teamcity (CVE-2024-27199)
vulnerability in Jetbrains teamcity (CVE-2024-27199). Risk of unauthorized operations or information disclosure. Listed in CISA KEV — actively exploited.
|
| CVE-2026-27489 |
|
Vulnerability in path-traversal (CVE-2026-27489)
vulnerability in path-traversal (CVE-2026-27489). Confidential information can be exposed externally.
|
| CVE-2026-2818 |
|
Vulnerability in path-traversal (CVE-2026-2818)
vulnerability in path-traversal (CVE-2026-2818). Data can be tampered with by attackers.
|
| CVE-2025-66737 |
|
Vulnerability in path-traversal (CVE-2025-66737)
vulnerability in path-traversal (CVE-2025-66737). Risk of unauthorized operations or information disclosure.
|