Live disclosure tracker · updated continuously

Technology & Software Data Breaches

SaaS platforms, cloud providers, developer tooling, and app-layer infrastructure are concentrated attack surfaces. One tech vendor breach can expose thousands of downstream customers. Below is every tech-sector breach LeakTrace has indexed.

98B+
Records Exposed
3008
Incidents
94+
Countries
+104%
Breach Velocity YoY
Browse by sector
All breaches Healthcare Finance Government Technology Retail Education Legal
Browse by year
2024 2025 2026 2026 Index

Technology & Software Data Breaches (3008 indexed)

high · tech · Jun 1, 2026

Oracle WebLogic Server

Oracle WebLogic Server Unspecified Vulnerability — Oracle WebLogic contains an unspecified vulnerability that could allow an unauthenticated attacker with network access via T3, IIOP to compromise Oracle WebLogic Server.

View incident → Original disclosure Indexed 1 month, 1 week ago
high · tech · May 29, 2026

Palo Alto Networks PAN-OS

Palo Alto Networks PAN-OS Authentication Bypass Vulnerability — Palo Alto Networks PAN-OS contains an authentication bypass vulnerability that allows attackers to bypass security restrictions and establish an unauthorize

View incident → Original disclosure Indexed 1 month, 1 week ago
critical · tech · May 27, 2026

Nx Nx Console

Nx Console Embedded Malicious Code Vulnerability — Nx Console contains an embedded malicious code vulnerability that allowed a malicious version of Nx Console to be published. The compromised extension fetched an obfusca

View incident → Original disclosure Indexed 1 month, 2 weeks ago
critical · tech · May 27, 2026

TanStack TanStack

TanStack Unspecified Vulnerability — TanStack contains an unspecified vulnerability that allowed malicious versions of the product to be published to the npm registry to publish credential-stealing malware under a truste

View incident → Original disclosure Indexed 1 month, 2 weeks ago
high · tech · May 26, 2026

LiteSpeed cPanel Plugin

LiteSpeed cPanel Plugin Privilege Escalation Vulnerability — LiteSpeed cPanel Plugin contains privilege escalation vulnerability that is exposed via the user-end cPanel plugin, which can be abused by any cPanel user acco

View incident → Original disclosure Indexed 1 month, 2 weeks ago
high · tech · May 22, 2026

Drupal Core

Drupal Core SQL Injection Vulnerability — Drupal Core contains a SQL injection vulnerability that could allow for privilege escalation and remote code execution via specially crafted requests sent with the database abstr

View incident → Original disclosure Indexed 1 month, 2 weeks ago
high · tech · May 21, 2026

Trend Micro Apex One

Trend Micro Apex One (On-Premise) Directory Traversal Vulnerability — Trend Micro Apex One (on-premise) contains a directory traversal vulnerability that could allow a pre-authenticated local attacker to modify a key tab

View incident → Original disclosure Indexed 1 month, 3 weeks ago
high · tech · May 21, 2026

Langflow Langflow

Langflow Origin Validation Error Vulnerability — Langflow contains an origin validation error vulnerability in which an overly permissive CORS configuration combined with a refresh token cookie configured as SameSite=Non

View incident → Original disclosure Indexed 1 month, 3 weeks ago
high · tech · May 21, 2026

Dragonica Lunaris

126,293 records exposed — Dates of birth, Email addresses, Names, Passwords and 2 more

View incident → Indexed 1 month, 3 weeks ago
high · tech · May 20, 2026

Microsoft Internet Explorer

Microsoft Internet Explorer Use-After-Free Vulnerability — Microsoft Internet Explorer contains an use-after-free vulnerability that could allow remote attackers to execute arbitrary code via vectors involving access to

View incident → Original disclosure Indexed 1 month, 3 weeks ago
high · tech · May 20, 2026

Microsoft Defender

Microsoft Defender Link Following Vulnerability — Microsoft Defender contains a link following vulnerability that allows an authorized attacker to elevate privileges locally.

View incident → Original disclosure Indexed 1 month, 3 weeks ago
high · tech · May 20, 2026

Microsoft Windows

Microsoft Windows Buffer Overflow Vulnerability — Microsoft Windows contains a buffer overflow vulnerability in the Windows Server Service that allows remote attackers to execute arbitrary code via a crafted RPC request

View incident → Original disclosure Indexed 1 month, 3 weeks ago
high · tech · May 20, 2026

Microsoft Internet Explorer

Microsoft Internet Explorer Use-After-Free Vulnerability — Microsoft Internet Explorer contains an use-after-free vulnerability that could allow remote attackers to execute arbitrary code by accessing a pointer associate

View incident → Original disclosure Indexed 1 month, 3 weeks ago
high · tech · May 20, 2026

Adobe Acrobat and Reader

Adobe Acrobat and Reader Heap-Based Buffer Overflow Vulnerability — Adobe Acrobat and Reader contain a heap-based buffer overflow vulnerability which could allow remote attackers to execute arbitrary code via a crafted P

View incident → Original disclosure Indexed 1 month, 3 weeks ago
high · tech · May 20, 2026

Microsoft DirectX

Microsoft DirectX NULL Byte Overwrite Vulnerability — Microsoft DirectX contains a NULL byte overwrite vulnerability in the QuickTime Movie Parser Filter in quartz.dll in DirectShow which could allow remote attackers to

View incident → Original disclosure Indexed 1 month, 3 weeks ago
medium · tech · May 19, 2026

CTT

468,124 records exposed — Email addresses, Names, Phone numbers

View incident → Indexed 1 month, 3 weeks ago
high · tech · May 15, 2026

Microsoft Microsoft

Microsoft Exchange Server Cross-Site Scripting Vulnerability — Microsoft Exchange Server contains a cross-site scripting vulnerability during web page generation in Outlook Web Access and when certain interaction conditi

View incident → Original disclosure Indexed 1 month, 3 weeks ago
high · tech · May 14, 2026

Cisco Catalyst SD-WAN

Cisco Catalyst SD-WAN Controller Authentication Bypass Vulnerability — Cisco Catalyst SD-WAN Controller & Manager contain an authentication bypass vulnerability that allows an unauthenticated, remote attacker to bypass a

View incident → Original disclosure Indexed 1 month, 4 weeks ago
high · tech · May 8, 2026

BerriAI LiteLLM

BerriAI LiteLLM SQL Injection Vulnerability — BerriAI LiteLLM contains a SQL injection vulnerability that allows an attacker to read data from the proxy's database and potentially modify it, leading to unauthorized acces

medium · tech · May 7, 2026

Woflow

447,593 records exposed — Email addresses, Names, Phone numbers, Physical addresses

View incident → Indexed 2 months ago