🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2026-27480 | Medium | 5.3 |
Static Web Server (SWS) is a production-ready web server suitable for static web files or assets. In versions 2.1.0 thro…
|
⚡ Exploit ✅ Patch | Feb 21, 2026 |
| CVE-2026-2894 | Medium | 5.3 |
A vulnerability was identified in funadmin up to 7.1.0-rc4. Affected by this vulnerability is the function getMember of …
|
⚡ Exploit | Feb 21, 2026 |
| CVE-2026-1787 | Medium | 4.8 |
The LearnPress Export Import – WordPress extension for LearnPress plugin for WordPress is vulnerable to unauthorized los…
|
— | Feb 21, 2026 |
| CVE-2026-27492 | Medium | 4.7 |
Lettermint Node.js SDK is the official Node.js SDK for Lettermint. In versions 1.5.0 and below, email properties (such a…
|
✅ Patch | Feb 21, 2026 |
| CVE-2026-27485 | Medium | 4.4 |
OpenClaw is a personal AI assistant. In versions 2026.2.17 and below, skills/skill-creator/scripts/package_skill.py (a l…
|
✅ Patch | Feb 21, 2026 |
| CVE-2026-27484 | Medium | 4.3 |
OpenClaw is a personal AI assistant. In versions 2026.2.17 and below, the Discord moderation action handling (timeout, k…
|
✅ Patch | Feb 21, 2026 |
| CVE-2026-27576 | Medium | 4.0 |
OpenClaw is a personal AI assistant. In versions 2026.2.17 and below, the ACP bridge accepts very large prompt text bloc…
|
✅ Patch | Feb 21, 2026 |
| CVE-2026-2895 | Low | 3.7 |
A security flaw has been discovered in funadmin up to 7.1.0-rc4. Affected by this issue is the function repass of the fi…
|
⚡ Exploit | Feb 21, 2026 |
| CVE-2026-2887 | Low | 3.3 |
A security vulnerability has been detected in aardappel lobster up to 2025.4. This impacts the function lobster::TypeNam…
|
⚡ Exploit ✅ Patch | Feb 21, 2026 |
| CVE-2026-2889 | Low | 3.3 |
A vulnerability was detected in CCExtractor up to 0.96.5. Affected is the function processmp4 in the library src/lib_ccx…
|
— | Feb 21, 2026 |
| CVE-2026-2869 | Low | 3.3 |
A vulnerability was identified in janet-lang janet up to 1.40.1. Affected by this vulnerability is the function janetc_v…
|
⚡ Exploit ✅ Patch | Feb 21, 2026 |
| CVE-2026-27467 | Low | 2.0 |
BigBlueButton is an open-source virtual classroom. In versions 3.0.19 and below, when first joining a session with the m…
|
✅ Patch | Feb 21, 2026 |
| CVE-2025-68461 | Critical | 9.0 |
RoundCube Webmail Cross-site Scripting Vulnerability — RoundCube Webmail contains a cross-site scripting vulnerability v…
|
⚡ Exploit ✅ Patch | Feb 20, 2026 |
| CVE-2025-49113 | Critical | 9.0 |
RoundCube Webmail Deserialization of Untrusted Data Vulnerability — RoundCube Webmail contains a deserialization of untr…
|
⚡ Exploit ✅ Patch | Feb 20, 2026 |
| CVE-2026-22769 | Critical | 9.0 |
Dell RecoverPoint for Virtual Machines (RP4VMs) Use of Hard-coded Credentials Vulnerability — Dell RecoverPoint for Virt…
|
⚡ Exploit ✅ Patch | Feb 18, 2026 |
| CVE-2021-22175 | Critical | 9.0 |
GitLab Server-Side Request Forgery (SSRF) Vulnerability — GitLab contains a server-side request forgery (SSRF) vulnerabi…
|
⚡ Exploit ✅ Patch | Feb 18, 2026 |
| CVE-2008-0015 | Critical | 9.0 |
Microsoft Windows Video ActiveX Control Remote Code Execution Vulnerability — Microsoft Windows Video ActiveX Control c…
|
⚡ Exploit ✅ Patch | Feb 17, 2026 |
| CVE-2020-7796 | Critical | 9.0 |
Synacor Zimbra Collaboration Suite (ZCS) Server-Side Request Forgery Vulnerability — Synacor Zimbra Collaboration Suite …
|
⚡ Exploit ✅ Patch | Feb 17, 2026 |
| CVE-2026-2441 | Critical | 9.0 |
Google Chromium CSS Use-After-Free Vulnerability — Google Chromium CSS contains a use-after-free vulnerability that coul…
|
⚡ Exploit ✅ Patch | Feb 17, 2026 |
| CVE-2024-7694 | Critical | 9.0 |
TeamT5 ThreatSonar Anti-Ransomware Unrestricted Upload of File with Dangerous Type Vulnerability — TeamT5 ThreatSonar An…
|
⚡ Exploit ✅ Patch | Feb 17, 2026 |