🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2026-27466 | High | 7.2 |
BigBlueButton is an open-source virtual classroom. In versions 3.0.21 and below, the official documentation for "Server …
|
⚡ Exploit ✅ Patch | Feb 21, 2026 |
| CVE-2025-15096 | High | 8.8 |
The 'Videospirecore Theme Plugin' plugin for WordPress is vulnerable to privilege escalation via account takeover in all…
|
✅ Patch | Feb 11, 2026 |
| CVE-2025-30276 | High | 8.8 |
An out-of-bounds write vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user accoun…
|
✅ Patch | Feb 11, 2026 |
| CVE-2025-57707 | High | 8.8 |
An improper neutralization of directives in statically saved code ('Static Code Injection') vulnerability has been repor…
|
✅ Patch | Feb 11, 2026 |
| CVE-2026-0910 | High | 8.8 |
The wpForo Forum plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 2.4.13…
|
✅ Patch | Feb 11, 2026 |
| CVE-2026-1560 | High | 8.8 |
The Custom Block Builder – Lazy Blocks plugin for WordPress is vulnerable to Remote Code Execution in all versions up to…
|
✅ Patch | Feb 11, 2026 |
| CVE-2026-2321 | High | 8.8 |
Use after free in Ozone in Google Chrome prior to 145.0.7632.45 allowed a remote attacker who convinced a user to engage…
|
✅ Patch | Feb 11, 2026 |
| CVE-2026-25924 | High | 8.4 |
Kanboard is project management software focused on Kanban methodology. Prior to 1.2.50, a security control bypass vulner…
|
⚡ Exploit ✅ Patch | Feb 11, 2026 |
| CVE-2025-10174 | High | 8.3 |
Cleartext Transmission of Sensitive Information vulnerability in Pan Software & Information Technologies Ltd. PanCafe Pr…
|
✅ Patch | Feb 11, 2026 |
| CVE-2025-10913 | High | 8.3 |
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Saastech Cl…
|
✅ Patch | Feb 11, 2026 |
| CVE-2025-9986 | High | 8.2 |
Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Vadi Corporate Information S…
|
✅ Patch | Feb 11, 2026 |
| CVE-2025-30269 | High | 8.1 |
A use of externally-controlled format string vulnerability has been reported to affect Qsync Central. If a remote attack…
|
✅ Patch | Feb 11, 2026 |
| CVE-2025-48723 | High | 8.1 |
A buffer overflow vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, th…
|
✅ Patch | Feb 11, 2026 |
| CVE-2025-48724 | High | 8.1 |
A buffer overflow vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, th…
|
✅ Patch | Feb 11, 2026 |
| CVE-2025-48725 | High | 8.1 |
A buffer overflow vulnerability has been reported to affect several QNAP operating system versions. If a remote attacker…
|
✅ Patch | Feb 11, 2026 |
| CVE-2025-52868 | High | 8.1 |
A buffer overflow vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, th…
|
✅ Patch | Feb 11, 2026 |
| CVE-2025-52869 | High | 8.1 |
A buffer overflow vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, th…
|
✅ Patch | Feb 11, 2026 |
| CVE-2025-52870 | High | 8.1 |
A buffer overflow vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, th…
|
✅ Patch | Feb 11, 2026 |
| CVE-2025-57709 | High | 8.1 |
A buffer overflow vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, th…
|
✅ Patch | Feb 11, 2026 |
| CVE-2019-25306 | High | 7.8 |
BlackMoon FTP Server 3.1.2.1731 contains an unquoted service path vulnerability that allows local users to potentially e…
|
✅ Patch | Feb 11, 2026 |