🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2019-25283 | High | 7.8 |
Shrew Soft VPN Client 2.2.2 contains an unquoted service path vulnerability that allows local users to execute arbitrary…
|
✅ Patch | Feb 5, 2026 |
| CVE-2019-25285 | High | 7.8 |
Alps Pointing-device Controller 8.1202.1711.04 contains an unquoted service path vulnerability in the ApHidMonitorServic…
|
✅ Patch | Feb 5, 2026 |
| CVE-2019-25286 | High | 7.8 |
GCafé 3.0 contains an unquoted service path vulnerability in the gbClientService that allows local attackers to potentia…
|
✅ Patch | Feb 5, 2026 |
| CVE-2019-25287 | High | 7.8 |
Adaware Web Companion version 4.8.2078.3950 contains an unquoted service path vulnerability in the WCAssistantService th…
|
✅ Patch | Feb 5, 2026 |
| CVE-2019-25288 | High | 7.8 |
Wacom WTabletService 6.6.7-3 contains an unquoted service path vulnerability that allows local attackers to execute mali…
|
✅ Patch | Feb 5, 2026 |
| CVE-2025-15311 | High | 7.8 |
Tanium addressed an unauthorized code execution vulnerability in Tanium Appliance.
|
✅ Patch | Feb 5, 2026 |
| CVE-2020-37130 | High | 7.5 |
Nsauditor 3.2.0.0 contains a denial of service vulnerability in the registration name input field that allows attackers …
|
⚡ Exploit ✅ Patch | Feb 5, 2026 |
| CVE-2020-37133 | High | 7.5 |
UltraVNC Launcher 1.2.4.0 contains a denial of service vulnerability in the Repeater Host configuration field that allow…
|
⚡ Exploit ✅ Patch | Feb 5, 2026 |
| CVE-2020-37134 | High | 7.5 |
UltraVNC Viewer 1.2.4.0 contains a denial of service vulnerability that allows attackers to crash the application by man…
|
✅ Patch | Feb 5, 2026 |
| CVE-2020-37136 | High | 7.5 |
ZOC Terminal 7.25.5 contains a denial of service vulnerability in the private key file input field that allows attackers…
|
✅ Patch | Feb 5, 2026 |
| CVE-2020-37143 | High | 7.5 |
ProficySCADA for iOS 5.0.25920 contains a denial of service vulnerability that allows attackers to crash the application…
|
✅ Patch | Feb 5, 2026 |
| CVE-2020-37150 | High | 7.5 |
Edimax EW-7438RPn-v3 Mini 1.27 allows unauthenticated attackers to access the /wizard_reboot.asp page in unsetup mode, w…
|
⚡ Exploit ✅ Patch | Feb 5, 2026 |
| CVE-2025-11730 | High | 7.2 |
A post‑authentication command injection vulnerability in the Dynamic DNS (DDNS) configuration CLI command in Zyxel ATP s…
|
✅ Patch | Feb 5, 2026 |
| CVE-2026-1294 | High | 7.2 |
The All In One Image Viewer Block plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up t…
|
✅ Patch | Feb 5, 2026 |
| CVE-2026-25160 | Critical | 9.1 |
Alist is a file list program that supports multiple storages, powered by Gin and Solidjs. Prior to version 3.57.0, the a…
|
⚡ Exploit ✅ Patch | Feb 4, 2026 |
| CVE-2026-25539 | Critical | 9.1 |
SiYuan is a personal knowledge management system. Prior to version 3.5.5, the /api/file/copyFile endpoint does not valid…
|
⚡ Exploit ✅ Patch | Feb 4, 2026 |
| CVE-2026-1756 | High | 8.8 |
The WP FOFT Loader plugin for WordPress is vulnerable to arbitrary file uploads due to incorrect file type validation in…
|
✅ Patch | Feb 4, 2026 |
| CVE-2026-1819 | High | 8.8 |
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Karel Elect…
|
✅ Patch | Feb 4, 2026 |
| CVE-2026-20098 | High | 8.8 |
A vulnerability in the Certificate Management feature of Cisco Meeting Management could allow an authenticated, remote a…
|
✅ Patch | Feb 4, 2026 |
| CVE-2026-25056 | High | 8.8 |
n8n is an open source workflow automation platform. Prior to versions 1.118.0 and 2.4.0, a vulnerability in the Merge no…
|
✅ Patch | Feb 4, 2026 |