🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2025-68461 | Critical | 9.0 |
RoundCube Webmail Cross-site Scripting Vulnerability — RoundCube Webmail contains a cross-site scripting vulnerability v…
|
⚡ Exploit ✅ Patch | Feb 20, 2026 |
| CVE-2021-22175 | Critical | 9.0 |
GitLab Server-Side Request Forgery (SSRF) Vulnerability — GitLab contains a server-side request forgery (SSRF) vulnerabi…
|
⚡ Exploit ✅ Patch | Feb 18, 2026 |
| CVE-2026-22769 | Critical | 9.0 |
Dell RecoverPoint for Virtual Machines (RP4VMs) Use of Hard-coded Credentials Vulnerability — Dell RecoverPoint for Virt…
|
⚡ Exploit ✅ Patch | Feb 18, 2026 |
| CVE-2026-2441 | Critical | 9.0 |
Google Chromium CSS Use-After-Free Vulnerability — Google Chromium CSS contains a use-after-free vulnerability that coul…
|
⚡ Exploit ✅ Patch | Feb 17, 2026 |
| CVE-2008-0015 | Critical | 9.0 |
Microsoft Windows Video ActiveX Control Remote Code Execution Vulnerability — Microsoft Windows Video ActiveX Control c…
|
⚡ Exploit ✅ Patch | Feb 17, 2026 |
| CVE-2020-7796 | Critical | 9.0 |
Synacor Zimbra Collaboration Suite (ZCS) Server-Side Request Forgery Vulnerability — Synacor Zimbra Collaboration Suite …
|
⚡ Exploit ✅ Patch | Feb 17, 2026 |
| CVE-2024-7694 | Critical | 9.0 |
TeamT5 ThreatSonar Anti-Ransomware Unrestricted Upload of File with Dangerous Type Vulnerability — TeamT5 ThreatSonar An…
|
⚡ Exploit ✅ Patch | Feb 17, 2026 |
| CVE-2026-1731 | Critical | 9.0 |
BeyondTrust Remote Support (RS) and Privileged Remote Access (PRA) OS Command Injection Vulnerability — BeyondTrust Remo…
|
⚡ Exploit ✅ Patch | Feb 13, 2026 |
| CVE-2026-20700 | Critical | 9.0 |
Apple Multiple Buffer Overflow Vulnerability — Apple iOS, macOS, tvOS, watchOS, and visionOS contain an improper restric…
|
⚡ Exploit ✅ Patch | Feb 12, 2026 |
| CVE-2024-43468 | Critical | 9.0 |
Microsoft Configuration Manager SQL Injection Vulnerability — Microsoft Configuration Manager contains an SQL injection …
|
⚡ Exploit ✅ Patch | Feb 12, 2026 |
| CVE-2025-40536 | Critical | 9.0 |
SolarWinds Web Help Desk Security Control Bypass Vulnerability — SolarWinds Web Help Desk contains a security control by…
|
⚡ Exploit ✅ Patch | Feb 12, 2026 |
| CVE-2025-15096 | High | 8.8 |
The 'Videospirecore Theme Plugin' plugin for WordPress is vulnerable to privilege escalation via account takeover in all…
|
✅ Patch | Feb 11, 2026 |
| CVE-2025-30276 | High | 8.8 |
An out-of-bounds write vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user accoun…
|
✅ Patch | Feb 11, 2026 |
| CVE-2025-57707 | High | 8.8 |
An improper neutralization of directives in statically saved code ('Static Code Injection') vulnerability has been repor…
|
✅ Patch | Feb 11, 2026 |
| CVE-2026-0910 | High | 8.8 |
The wpForo Forum plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 2.4.13…
|
✅ Patch | Feb 11, 2026 |
| CVE-2026-1560 | High | 8.8 |
The Custom Block Builder – Lazy Blocks plugin for WordPress is vulnerable to Remote Code Execution in all versions up to…
|
✅ Patch | Feb 11, 2026 |
| CVE-2026-2321 | High | 8.8 |
Use after free in Ozone in Google Chrome prior to 145.0.7632.45 allowed a remote attacker who convinced a user to engage…
|
✅ Patch | Feb 11, 2026 |
| CVE-2026-25924 | High | 8.4 |
Kanboard is project management software focused on Kanban methodology. Prior to 1.2.50, a security control bypass vulner…
|
⚡ Exploit ✅ Patch | Feb 11, 2026 |
| CVE-2025-10174 | High | 8.3 |
Cleartext Transmission of Sensitive Information vulnerability in Pan Software & Information Technologies Ltd. PanCafe Pr…
|
✅ Patch | Feb 11, 2026 |
| CVE-2025-10913 | High | 8.3 |
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Saastech Cl…
|
✅ Patch | Feb 11, 2026 |