🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2021-47872 | High | 7.1 |
SEO Panel versions prior to 4.9.0 contain a blind SQL injection vulnerability in the archive.php page that allows authen…
|
✅ Patch | Jan 21, 2026 |
| CVE-2026-23986 | High | 7.1 |
Copier is a library and CLI app for rendering project templates. Prior to version 9.11.2, Copier suggests that it's safe…
|
⚡ Exploit ✅ Patch | Jan 21, 2026 |
| CVE-2025-53912 | Critical | 9.6 |
An arbitrary file read vulnerability exists in the encapsulatedDoc functionality of MedDream PACS Premium 7.3.6.870. A s…
|
⚡ Exploit ✅ Patch | Jan 20, 2026 |
| CVE-2025-15347 | High | 8.8 |
The Creator LMS – The LMS for Creators, Coaches, and Trainers plugin for WordPress is vulnerable to unauthorized modific…
|
✅ Patch | Jan 20, 2026 |
| CVE-2025-33015 | High | 8.8 |
IBM Concert 1.0.0 through 2.1.0 is vulnerable to malicious file upload by not validating the content of the file uploade…
|
✅ Patch | Jan 20, 2026 |
| CVE-2026-21967 | High | 8.6 |
Vulnerability in the Oracle Hospitality OPERA 5 product of Oracle Hospitality Applications (component: Opera Servlet). …
|
✅ Patch | Jan 20, 2026 |
| CVE-2025-12985 | High | 8.4 |
IBM Licensing Operator incorrectly assigns privileges to security critical files which could allow a local root escalati…
|
✅ Patch | Jan 20, 2026 |
| CVE-2025-14115 | High | 8.4 |
IBM Sterling Connect:Direct for UNIX Container 6.3.0.0 through 6.3.0.6 Interim Fix 016, and 6.4.0.0 through 6.4.0.3 Inte…
|
✅ Patch | Jan 20, 2026 |
| CVE-2026-21987 | High | 8.2 |
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that a…
|
✅ Patch | Jan 20, 2026 |
| CVE-2026-21988 | High | 8.2 |
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that a…
|
✅ Patch | Jan 20, 2026 |
| CVE-2026-21990 | High | 8.2 |
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that a…
|
✅ Patch | Jan 20, 2026 |
| CVE-2026-0726 | High | 8.1 |
The Nexter Extension – Site Enhancements Toolkit plugin for WordPress is vulnerable to PHP Object Injection in all versi…
|
✅ Patch | Jan 20, 2026 |
| CVE-2026-21973 | High | 8.1 |
Vulnerability in the Oracle FLEXCUBE Investor Servicing product of Oracle Financial Services Applications (component: Se…
|
✅ Patch | Jan 20, 2026 |
| CVE-2026-21989 | High | 8.1 |
Vulnerability in the Oracle VM VirtualBox product of Oracle Virtualization (component: Core). Supported versions that a…
|
✅ Patch | Jan 20, 2026 |
| CVE-2025-14977 | High | 8.1 |
The Dokan: AI Powered WooCommerce Multivendor Marketplace Solution – Build Your Own Amazon, eBay, Etsy plugin for WordPr…
|
✅ Patch | Jan 20, 2026 |
| CVE-2026-22219 | High | 7.7 |
Chainlit versions prior to 2.9.4 contain a server-side request forgery (SSRF) vulnerability in the /project/element upda…
|
⚡ Exploit ✅ Patch | Jan 20, 2026 |
| CVE-2026-21637 | High | 7.5 |
A flaw in Node.js TLS error handling allows remote attackers to crash or exhaust resources of a TLS server when `pskCall…
|
✅ Patch | Jan 20, 2026 |
| CVE-2026-21926 | High | 7.5 |
Vulnerability in the Siebel CRM Deployment product of Oracle Siebel CRM (component: Server Infrastructure). Supported v…
|
✅ Patch | Jan 20, 2026 |
| CVE-2025-58741 | High | 7.5 |
Insufficiently Protected Credentials vulnerability in the Credential Field of Milner ImageDirector Capture allows retrie…
|
✅ Patch | Jan 20, 2026 |
| CVE-2025-58743 | High | 7.5 |
Use of a Broken or Risky Cryptographic Algorithm (DES) vulnerability
in the Password class in C2SConnections.dll in Mi…
|
✅ Patch | Jan 20, 2026 |