🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2020-36935 | High | 7.8 |
KMSpico 17.1.0.0 contains an unquoted service path vulnerability in the Service KMSELDI configuration that allows local …
|
✅ Patch | Jan 25, 2026 |
| CVE-2020-36936 | High | 7.8 |
Magic Mouse 2 Utilities 2.20 contains an unquoted service path vulnerability in its Windows service configuration. Attac…
|
✅ Patch | Jan 25, 2026 |
| CVE-2020-36937 | High | 7.8 |
Microvirt MEMU Play 3.7.0 contains an unquoted service path vulnerability in the MEmusvc Windows service that allows loc…
|
✅ Patch | Jan 25, 2026 |
| CVE-2025-71162 | High | 7.8 |
In the Linux kernel, the following vulnerability has been resolved:
dmaengine: tegra-adma: Fix use-after-free
A use-af…
|
✅ Patch | Jan 25, 2026 |
| CVE-2026-0911 | High | 7.5 |
The Hustle – Email Marketing, Lead Generation, Optins, Popups plugin for WordPress is vulnerable to arbitrary file uploa…
|
✅ Patch | Jan 24, 2026 |
| CVE-2026-1257 | High | 7.5 |
The Administrative Shortcodes plugin for WordPress is vulnerable to Local File Inclusion in all versions up to, and incl…
|
✅ Patch | Jan 24, 2026 |
| CVE-2026-24136 | High | 7.5 |
Saleor is an e-commerce platform. Versions 3.2.0 through 3.20.109, 3.21.0-a.0 through 3.21.44 and 3.22.0-a.0 through 3.2…
|
✅ Patch | Jan 24, 2026 |
| CVE-2026-0800 | High | 7.2 |
The User Submitted Posts – Enable Users to Submit Posts from the Front End plugin for WordPress is vulnerable to Stored …
|
✅ Patch | Jan 24, 2026 |
| CVE-2026-0807 | High | 7.2 |
The Frontis Blocks plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and includin…
|
✅ Patch | Jan 24, 2026 |
| CVE-2026-24403 | High | 7.1 |
iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. In v…
|
⚡ Exploit ✅ Patch | Jan 24, 2026 |
| CVE-2026-24404 | High | 7.1 |
iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. In v…
|
⚡ Exploit ✅ Patch | Jan 24, 2026 |
| CVE-2026-24407 | High | 7.1 |
iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. Vers…
|
⚡ Exploit ✅ Patch | Jan 24, 2026 |
| CVE-2026-24409 | High | 7.1 |
iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. Vers…
|
⚡ Exploit ✅ Patch | Jan 24, 2026 |
| CVE-2026-24410 | High | 7.1 |
iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. Vers…
|
⚡ Exploit ✅ Patch | Jan 24, 2026 |
| CVE-2026-24411 | High | 7.1 |
iccDEV provides libraries and tools for interacting with, manipulating, and applying ICC color management profiles. Vers…
|
⚡ Exploit ✅ Patch | Jan 24, 2026 |
| CVE-2026-24304 | Critical | 9.9 |
Improper access control in Azure Resource Manager allows an authorized attacker to elevate privileges over a network.
|
✅ Patch | Jan 23, 2026 |
| CVE-2024-37079 | Critical | 9.0 |
Broadcom VMware vCenter Server Out-of-bounds Write Vulnerability — Broadcom VMware vCenter Server contains an out-of-bou…
|
⚡ Exploit ✅ Patch | Jan 23, 2026 |
| CVE-2025-14866 | High | 8.8 |
The Melapress Role Editor plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and includin…
|
✅ Patch | Jan 23, 2026 |
| CVE-2026-0779 | High | 8.8 |
ALGO 8180 IP Audio Alerter Ping Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote …
|
✅ Patch | Jan 23, 2026 |
| CVE-2026-0780 | High | 8.8 |
ALGO 8180 IP Audio Alerter Web UI Command Injection Remote Code Execution Vulnerability. This vulnerability allows remot…
|
✅ Patch | Jan 23, 2026 |