🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2026-2877 | High | 8.8 |
A vulnerability has been found in Tenda A18 15.13.07.13. This affects the function strcpy of the file /goform/WifiExtraS…
|
✅ Patch | Feb 21, 2026 |
| CVE-2026-2881 | High | 8.8 |
A vulnerability has been found in D-Link DWR-M960 1.01.07. This vulnerability affects the function sub_425FF8 of the fil…
|
⚡ Exploit ✅ Patch | Feb 21, 2026 |
| CVE-2026-2882 | High | 8.8 |
A vulnerability was found in D-Link DWR-M960 1.01.07. This issue affects the function sub_46385C of the file /boafrm/for…
|
⚡ Exploit ✅ Patch | Feb 21, 2026 |
| CVE-2026-2883 | High | 8.8 |
A vulnerability was determined in D-Link DWR-M960 1.01.07. Impacted is the function sub_427D74 of the file /boafrm/formI…
|
⚡ Exploit ✅ Patch | Feb 21, 2026 |
| CVE-2026-2884 | High | 8.8 |
A vulnerability was identified in D-Link DWR-M960 1.01.07. The affected element is the function sub_41914C of the file /…
|
⚡ Exploit ✅ Patch | Feb 21, 2026 |
| CVE-2026-2885 | High | 8.8 |
A security flaw has been discovered in D-Link DWR-M960 1.01.07. The impacted element is the function sub_469104 of the f…
|
⚡ Exploit ✅ Patch | Feb 21, 2026 |
| CVE-2026-2886 | High | 8.8 |
A weakness has been identified in Tenda A21 1.0.0.0. This affects the function set_device_name of the file /goform/SetOn…
|
⚡ Exploit ✅ Patch | Feb 21, 2026 |
| CVE-2026-27464 | High | 7.7 |
Metabase is an open-source data analytics platform. In versions prior to 0.57.13 and versions 0.58.x through 0.58.6, aut…
|
✅ Patch | Feb 21, 2026 |
| CVE-2026-27479 | High | 7.7 |
Wallos is an open-source, self-hostable personal subscription tracker. Versions 4.6.0 and below contain a Server-Side Re…
|
⚡ Exploit ✅ Patch | Feb 21, 2026 |
| CVE-2026-27487 | High | 7.6 |
OpenClaw is a personal AI assistant. In versions 2026.2.13 and below, when using macOS, the Claude CLI keychain credenti…
|
✅ Patch | Feb 21, 2026 |
| CVE-2026-27579 | High | 7.4 |
CollabPlatform is a full-stack, real-time doc collaboration platform. In all versions of CollabPlatform, the Appwrite pr…
|
✅ Patch | Feb 21, 2026 |
| CVE-2026-27488 | High | 7.3 |
OpenClaw is a personal AI assistant. In versions 2026.2.17 and below, Cron webhook delivery in src/gateway/server-cron.t…
|
✅ Patch | Feb 21, 2026 |
| CVE-2026-2865 | High | 7.3 |
A vulnerability was found in itsourcecode Agri-Trading Online Shopping System 1.0. This impacts an unknown function of t…
|
⚡ Exploit ✅ Patch | Feb 21, 2026 |
| CVE-2026-2867 | High | 7.3 |
A vulnerability was determined in itsourcecode Vehicle Management System 1.0. Affected is an unknown function of the fil…
|
✅ Patch | Feb 21, 2026 |
| CVE-2026-27466 | High | 7.2 |
BigBlueButton is an open-source virtual classroom. In versions 3.0.21 and below, the official documentation for "Server …
|
⚡ Exploit ✅ Patch | Feb 21, 2026 |
| CVE-2025-15096 | High | 8.8 |
The 'Videospirecore Theme Plugin' plugin for WordPress is vulnerable to privilege escalation via account takeover in all…
|
✅ Patch | Feb 11, 2026 |
| CVE-2025-30276 | High | 8.8 |
An out-of-bounds write vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user accoun…
|
✅ Patch | Feb 11, 2026 |
| CVE-2025-57707 | High | 8.8 |
An improper neutralization of directives in statically saved code ('Static Code Injection') vulnerability has been repor…
|
✅ Patch | Feb 11, 2026 |
| CVE-2026-0910 | High | 8.8 |
The wpForo Forum plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 2.4.13…
|
✅ Patch | Feb 11, 2026 |
| CVE-2026-1560 | High | 8.8 |
The Custom Block Builder – Lazy Blocks plugin for WordPress is vulnerable to Remote Code Execution in all versions up to…
|
✅ Patch | Feb 11, 2026 |