Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2026-54652 |
|
Privilege Escalation in nginx (CVE-2026-54652)
vulnerability in nginx (CVE-2026-54652). Confidential information can be exposed externally. Exploitable via `GET /api/logs/{service}`.
|
| CVE-2026-58656 |
|
Vulnerability in CVE-2026-58656 (CVE-2026-58656)
vulnerability in CVE-2026-58656 (CVE-2026-58656). Confidential information can be exposed externally.
|
| CVE-2026-10078 |
|
Vulnerability in CVE-2026-10078 (CVE-2026-10078)
vulnerability in CVE-2026-10078 (CVE-2026-10078). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-2237 |
|
Vulnerability in synology (CVE-2026-2237)
vulnerability in synology (CVE-2026-2237). Confidential information can be exposed externally.
|
| CVE-2025-62317 |
|
Vulnerability in CVE-2025-62317 (CVE-2025-62317)
vulnerability in CVE-2025-62317 (CVE-2025-62317). Risk of unauthorized operations or information disclosure.
|
| CVE-2026-44883 |
|
Vulnerability in github.com/portainer/portainer (CVE-2026-44883)
vulnerability in github.com/portainer/portainer (CVE-2026-44883). Successful exploitation can lead to full system takeover. Exploitable via ``Referer``. Mitigation: upgrade to `2.41.0` or later.
|
| CVE-2026-43875 |
|
Vulnerability in wwbn/avideo (CVE-2026-43875)
vulnerability in wwbn/avideo (CVE-2026-43875). Confidential information can be exposed externally. Exploitable via `GET /plugin/MobileManager/oauth2.php`.
|
| CVE-2026-37504 |
|
Vulnerability in v2board (CVE-2026-37504)
vulnerability in v2board (CVE-2026-37504). Confidential information can be exposed externally. Exploitable via `Referer header`.
|
| CVE-2025-40742 |
|
Vulnerability in CVE-2025-40742 (CVE-2025-40742)
vulnerability in CVE-2025-40742 (CVE-2025-40742). Confidential information can be exposed externally.
|
| CVE-2017-3185 |
|
Vulnerability in acti (CVE-2017-3185)
vulnerability in acti (CVE-2017-3185). Successful exploitation can lead to full system takeover.
|
| CVE-2017-8443 |
|
Vulnerability in elastic (CVE-2017-8443)
vulnerability in elastic (CVE-2017-8443). Confidential information can be exposed externally.
|