🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2025-11382 | Medium | — |
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
|
— | Feb 26, 2026 |
| CVE-2025-11383 | Medium | — |
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
|
— | Feb 26, 2026 |
| CVE-2025-11384 | Medium | — |
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority.
|
— | Feb 26, 2026 |
| CVE-2026-1198 | Medium | — |
SIMPLE.ERP is vulnerable to the SQL Injection in search functionality in "Obroty na kontach" window. Lack of input valid…
|
— | Feb 26, 2026 |
| CVE-2026-1241 | Medium | — |
The Pelco, Inc. Sarix Professional 3 Series Cameras are vulnerable to an authentication bypass issue in their web manage…
|
— | Feb 26, 2026 |
| CVE-2026-1692 | Medium | — |
A missing origin validation in WebSockets vulnerability affects the GraphicalData web services used by the WebVue, WebSc…
|
— | Feb 26, 2026 |
| CVE-2026-1693 | Medium | — |
The OAuth grant type Resource Owner Password Credentials (ROPC) flow is still used by the werbservices used by the WebVu…
|
— | Feb 26, 2026 |
| CVE-2026-1694 | Medium | — |
HTTP headers are added by the default configuration of IIS and ASP.net, and are not removed at the deployment phase of t…
|
— | Feb 26, 2026 |
| CVE-2026-1695 | Medium | — |
An XSS vulnerability affects the OAuth web services used by the WebVue, WebScheduler, TouchVue and SnapVue features of P…
|
— | Feb 26, 2026 |
| CVE-2026-1696 | Medium | — |
Some HTTP security headers are not properly set by the web server when sending responses to the client application.
|
— | Feb 26, 2026 |
| CVE-2026-1697 | Medium | — |
The Secure and SameSite attribute are missing in the GraphicalData web services and WebClient web app of PcVue in versio…
|
— | Feb 26, 2026 |
| CVE-2026-1698 | Medium | — |
A HTTP Host header attack vulnerability affects WebClient and the WebScheduler web apps of PcVue in version 15.0.0 throu…
|
— | Feb 26, 2026 |
| CVE-2026-2244 | Medium | — |
A vulnerability in Google Cloud Vertex AI Workbench from 7/21/2025 to 01/30/2026 allows an attacker to exfiltrate valid …
|
— | Feb 26, 2026 |
| CVE-2026-23939 | Medium | — |
Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') vulnerability in hexpm hexpm/hexpm ('Elix…
|
— | Feb 26, 2026 |
| CVE-2026-2930 | Medium | 6.3 |
A vulnerability was identified in Tenda A18 15.13.07.13. The affected element is the function webCgiGetUploadFile of the…
|
— | Feb 22, 2026 |
| CVE-2026-2945 | Medium | 6.3 |
A weakness has been identified in JeecgBoot 3.9.0. Affected by this vulnerability is an unknown functionality of the fil…
|
— | Feb 22, 2026 |
| CVE-2026-2954 | Medium | 6.3 |
A vulnerability was found in Dromara UJCMS 10.0.2. Impacted is the function importChanel of the file /api/backend/ext/im…
|
— | Feb 22, 2026 |
| CVE-2026-2956 | Medium | 6.3 |
A security flaw has been discovered in qinming99 dst-admin up to 1.5.0. This affects the function revertBackup of the fi…
|
⚡ Exploit | Feb 22, 2026 |
| CVE-2026-2898 | Medium | 5.5 |
A vulnerability was detected in funadmin up to 7.1.0-rc4. This issue affects the function getMember of the file app/comm…
|
⚡ Exploit | Feb 22, 2026 |
| CVE-2026-2953 | Medium | 5.4 |
A vulnerability has been found in Dromara UJCMS 101.2. This issue affects the function deleteDirectory of the file WebFi…
|
⚡ Exploit | Feb 22, 2026 |