CVE.report search for "CVE-2026-26120"
Listed below are 50 relevant search results for "CVE-2026-26120" based on Vendor, Software, and CVE description
These results are gathered from attempted matches with listed vendor and software data, as well as a keyword search in the description of all known CVEs.
If you notice a "Not Listed" in either the vendor or software columns, the underlying source record does not currently include normalized affected-product data.
Search Results
| CVE ID | Vendor | Software | Description |
|---|---|---|---|
| CVE-2026-54444 | Rejected reason: ]** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2026-49489. Reason: This candidate is a dupl... | ||
| CVE-2026-54420 | Litespeedtech | Litespeed Cpanel Plugin | LiteSpeed cPanel plugin before 2.4.8 (as distributed in LiteSpeed WHM PlugIn before 5.3.2.0) mishandles symlinks provided by ... |
| CVE-2026-54296 | Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2026-12075. Reason: This candidate is a dupli... | ||
| CVE-2026-54295 | Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2026-12061. Reason: This candidate is a dupli... | ||
| CVE-2026-54294 | Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2026-12072. Reason: This candidate is a dupli... | ||
| CVE-2026-54292 | Rejected reason: ** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2026-12074. Reason: This candidate is a dupli... | ||
| CVE-2026-53866 | Openclaw | Openclaw | OpenClaw before 2026.5.12 contains an allowlist bypass vulnerability in shell inline-command parsing that allows authenticate... |
| CVE-2026-53865 | Openclaw | Openclaw | OpenClaw before 2026.5.2 contains a path traversal vulnerability in maintenance task execution that allows workspace-derived ... |
| CVE-2026-53864 | Openclaw | Openclaw | OpenClaw before 2026.5.26 contains an insufficient sanitization vulnerability in the host environment sanitizer that allows N... |
| CVE-2026-53863 | Openclaw | Openclaw | OpenClaw before 2026.4.25 contains an input validation vulnerability in tool group policy callers that accept unvalidated gro... |
| CVE-2026-53862 | Openclaw | Openclaw | OpenClaw before 2026.5.12 contains a bootstrap token replay vulnerability allowing callers with pending token access to reuse... |
| CVE-2026-53861 | Openclaw | Openclaw | OpenClaw before 2026.5.6 contains an allowlist bypass vulnerability in the macOS Swift exec feature that misses combined POSI... |
| CVE-2026-53860 | Openclaw | Openclaw | OpenClaw before 2026.5.7 contains a sender policy bypass vulnerability in BlueBubbles that allows participants to match allow... |
| CVE-2026-53859 | Openclaw | Openclaw | OpenClaw before 2026.5.26 contains a hostname validation vulnerability allowing attackers to bypass blocklist comparisons usi... |
| CVE-2026-53858 | OpenClaw before 2026.5.2 contains an environment variable injection vulnerability where workspace .env STATE_DIRECTORY could ... | ||
| CVE-2026-53857 | OpenClaw before 2026.5.3 contains a policy enforcement vulnerability where Zalo contacts with mutable display metadata could ... | ||
| CVE-2026-53856 | OpenClaw 2026.4.23 before 2026.4.24 contains an insecure file permissions vulnerability in config recovery that restores Open... | ||
| CVE-2026-53855 | OpenClaw before 2026.4.2 contains an inline-eval bypass vulnerability allowing authenticated operators to weaken strict allow... | ||
| CVE-2026-53854 | OpenClaw before 2026.4.25 contains a privilege escalation vulnerability in internal and webchat command authentication that a... | ||
| CVE-2026-53853 | Openclaw | Openclaw | OpenClaw before 2026.5.12 contains an argument pattern validation bypass in the exec allowlist that allows attackers to execu... |
| CVE-2026-53852 | Openclaw | Openclaw | OpenClaw before 2026.4.25 contains a scope containment bypass vulnerability in device re-pairing that allows authenticated op... |
| CVE-2026-53851 | Openclaw | Openclaw | OpenClaw before 2026.5.12 contains a notification bypass vulnerability allowing Slack reaction events to enter the agent pipe... |
| CVE-2026-53850 | Openclaw | Openclaw | OpenClaw before 2026.4.25 contains a control scope enforcement bypass vulnerability in the focus command that allows authenti... |
| CVE-2026-53849 | Openclaw | Openclaw | OpenClaw before 2026.5.7 contains a privilege escalation vulnerability where the allowFrom feature improperly validates Disco... |
| CVE-2026-53848 | Openclaw | Openclaw | OpenClaw before 2026.5.26 contains an exec allowlist bypass vulnerability allowing authenticated operators to execute wrapper... |
| CVE-2026-53847 | Openclaw | Openclaw | OpenClaw before 2026.5.6 contains a privilege escalation vulnerability in the Active Memory write scope that allows Gateway o... |
| CVE-2026-53846 | Openclaw | Openclaw | OpenClaw before 2026.4.29 contains a path traversal vulnerability in the install helper that allows workspace .env files to o... |
| CVE-2026-53845 | Openclaw | Openclaw | OpenClaw before 2026.5.6 contains a hook bypass vulnerability where skill commands routed through the affected dispatch path ... |
| CVE-2026-53844 | Openclaw | Openclaw | OpenClaw before 2026.4.29 contains a session visibility check bypass vulnerability in shared memory search that allows authen... |
| CVE-2026-53843 | Openclaw | Openclaw | OpenClaw before 2026.5.26 contains an authorization bypass vulnerability where a surviving pairing-scoped device session can ... |
| CVE-2026-53842 | Openclaw | Openclaw | OpenClaw before 2026.5.2 contains an environment variable injection vulnerability allowing workspace .env files to influence ... |
| CVE-2026-53841 | Openclaw | Openclaw | OpenClaw before 2026.5.12 contains a cross-site scripting vulnerability in exported session HTML that preserves unsafe javasc... |
| CVE-2026-53840 | Openclaw | Openclaw | OpenClaw before 2026.5.12 contains an information disclosure vulnerability in streamable-http MCP servers that forwards opera... |
| CVE-2026-53839 | Openclaw | Openclaw | OpenClaw before 2026.5.7 contains a hostname validation vulnerability in retry endpoint checks that allows matching hostname ... |
| CVE-2026-53838 | Openclaw | Openclaw | OpenClaw before 2026.5.27 contains a state mutation vulnerability in node pairing reconnection that allows paired nodes to co... |
| CVE-2026-53837 | Openclaw | Openclaw | OpenClaw before 2026.5.6 contains an improper access control vulnerability in Mattermost event handlers that fails to validat... |
| CVE-2026-53836 | Openclaw | Openclaw | OpenClaw before 2026.5.12 contains an allowlist bypass vulnerability in PowerShell encoded-command handling that allows attac... |
| CVE-2026-53835 | Openclaw | Openclaw | OpenClaw before 2026.5.6 contains a configuration enforcement bypass vulnerability in Feishu dynamic-agent bindings that allo... |
| CVE-2026-53834 | Openclaw | Openclaw | OpenClaw before 2026.4.27 contains an authorization bypass vulnerability in QQBot pre-dispatch slash commands that allows aut... |
| CVE-2026-53833 | Openclaw | Openclaw | OpenClaw before 2026.4.29 contains an authorization bypass vulnerability in the QQBot streaming command that allows authentic... |
| CVE-2026-53832 | Openclaw | Openclaw | OpenClaw before 2026.5.18 contains an identity header validation vulnerability allowing local same-host callers to forge trus... |
| CVE-2026-53831 | Openclaw | Openclaw | OpenClaw before 2026.5.18 contains a policy enforcement vulnerability in system.run safe-bin allowlist validation that allows... |
| CVE-2026-53830 | Openclaw | Openclaw | OpenClaw before 2026.4.22 contains a webhook secret revocation bypass vulnerability allowing callers with old Slack and Zalo ... |
| CVE-2026-53829 | Openclaw | Openclaw | OpenClaw before 2026.5.18 contains an approval display truncation vulnerability allowing authenticated users to hide command ... |
| CVE-2026-53828 | Openclaw | Openclaw | OpenClaw before 2026.5.6 contains an authorization bypass vulnerability in native command handling that allows authenticated ... |
| CVE-2026-53827 | Openclaw | Openclaw | OpenClaw before 2026.5.2 contains a credential exposure vulnerability in message.action forwarding that allows model-controll... |
| CVE-2026-53826 | Openclaw | Openclaw | OpenClaw before 2026.4.26 contains an information disclosure vulnerability in sandboxed session spawning that exposes the rea... |
| CVE-2026-53825 | Openclaw | Openclaw | OpenClaw before 2026.4.7 contains an arbitrary file read vulnerability in the memory-wiki ingest feature that allows authenti... |
| CVE-2026-53824 | Openclaw | Openclaw | OpenClaw before 2026.4.24 contains a token revocation vulnerability allowing callers with revoked slash tokens to continue ex... |
| CVE-2026-53823 | Openclaw | Openclaw | OpenClaw before 2026.5.3 contains a privilege escalation vulnerability in the allowFrom feature that binds to mutable Slack d... |