🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2026-21508 | High | 7.0 |
Improper authentication in Windows Storage allows an authorized attacker to elevate privileges locally.
|
✅ Patch | Feb 10, 2026 |
| CVE-2026-25497 | High | 8.8 |
Craft is a platform for creating digital experiences. In Craft versions from 4.0.0-RC1 to before 4.17.0-beta.1 and 5.9.0…
|
✅ Patch | Feb 9, 2026 |
| CVE-2026-25495 | High | 8.8 |
Craft is a platform for creating digital experiences. In Craft versions 4.0.0-RC1 through 4.16.17 and 5.0.0-RC1 through …
|
⚡ Exploit ✅ Patch | Feb 9, 2026 |
| CVE-2026-25812 | High | 8.8 |
PlaciPy is a placement management system designed for educational institutions. In version 1.0.0, the application enable…
|
✅ Patch | Feb 9, 2026 |
| CVE-2025-10465 | High | 8.8 |
Unrestricted Upload of File with Dangerous Type vulnerability in Birtech Information Technologies Industry and Trade Ltd…
|
✅ Patch | Feb 9, 2026 |
| CVE-2025-7799 | High | 8.6 |
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Zirve Infor…
|
✅ Patch | Feb 9, 2026 |
| CVE-2026-0870 | High | 7.8 |
MacroHub developed by GIGABYTE has a Local Privilege Escalation vulnerability. Due to the MacroHub application launching…
|
✅ Patch | Feb 9, 2026 |
| CVE-2026-23948 | High | 7.5 |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, a NULL pointer dereference vulnerabili…
|
✅ Patch | Feb 9, 2026 |
| CVE-2026-24678 | High | 7.5 |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, A capture thread sends sample response…
|
✅ Patch | Feb 9, 2026 |
| CVE-2026-24676 | High | 7.5 |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, AUDIN format renegotiation frees the a…
|
✅ Patch | Feb 9, 2026 |
| CVE-2026-24675 | High | 7.5 |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, urb_select_interface can free the devi…
|
✅ Patch | Feb 9, 2026 |
| CVE-2026-24491 | High | 7.5 |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, video_timer can send client notificati…
|
✅ Patch | Feb 9, 2026 |
| CVE-2026-2236 | High | 7.5 |
C&Cm@il developed by HGiga has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbit…
|
✅ Patch | Feb 9, 2026 |
| CVE-2026-25885 | High | 7.5 |
PolarLearn is a free and open-source learning program. In 0-PRERELEASE-16 and earlier, the group chat WebSocket at wss:/…
|
⚡ Exploit ✅ Patch | Feb 9, 2026 |
| CVE-2026-25813 | High | 7.5 |
PlaciPy is a placement management system designed for educational institutions. In version 1.0.0, The application logs h…
|
✅ Patch | Feb 9, 2026 |
| CVE-2026-22905 | High | 7.5 |
An unauthenticated remote attacker can bypass authentication by exploiting insufficient URI validation and using path tr…
|
✅ Patch | Feb 9, 2026 |
| CVE-2026-24682 | High | 7.5 |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, audin_server_recv_formats frees an inc…
|
✅ Patch | Feb 9, 2026 |
| CVE-2026-24684 | High | 7.5 |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, the RDPSND async playback thread can p…
|
✅ Patch | Feb 9, 2026 |
| CVE-2026-24683 | High | 7.5 |
FreeRDP is a free implementation of the Remote Desktop Protocol. ainput_send_input_event caches channel_callback in a lo…
|
✅ Patch | Feb 9, 2026 |
| CVE-2026-24680 | High | 7.5 |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, sdl_Pointer_New frees data on failure,…
|
✅ Patch | Feb 9, 2026 |