🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2026-22905 | High | 7.5 |
An unauthenticated remote attacker can bypass authentication by exploiting insufficient URI validation and using path tr…
|
✅ Patch | Feb 9, 2026 |
| CVE-2026-23948 | High | 7.5 |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, a NULL pointer dereference vulnerabili…
|
✅ Patch | Feb 9, 2026 |
| CVE-2026-24491 | High | 7.5 |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, video_timer can send client notificati…
|
✅ Patch | Feb 9, 2026 |
| CVE-2026-24675 | High | 7.5 |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, urb_select_interface can free the devi…
|
✅ Patch | Feb 9, 2026 |
| CVE-2026-24676 | High | 7.5 |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, AUDIN format renegotiation frees the a…
|
✅ Patch | Feb 9, 2026 |
| CVE-2026-24678 | High | 7.5 |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, A capture thread sends sample response…
|
✅ Patch | Feb 9, 2026 |
| CVE-2026-24680 | High | 7.5 |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, sdl_Pointer_New frees data on failure,…
|
✅ Patch | Feb 9, 2026 |
| CVE-2026-24681 | High | 7.5 |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, aAsynchronous bulk transfer completion…
|
✅ Patch | Feb 9, 2026 |
| CVE-2026-24682 | High | 7.5 |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, audin_server_recv_formats frees an inc…
|
✅ Patch | Feb 9, 2026 |
| CVE-2026-24683 | High | 7.5 |
FreeRDP is a free implementation of the Remote Desktop Protocol. ainput_send_input_event caches channel_callback in a lo…
|
✅ Patch | Feb 9, 2026 |
| CVE-2026-24684 | High | 7.5 |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.22.0, the RDPSND async playback thread can p…
|
✅ Patch | Feb 9, 2026 |
| CVE-2026-25813 | High | 7.5 |
PlaciPy is a placement management system designed for educational institutions. In version 1.0.0, The application logs h…
|
✅ Patch | Feb 9, 2026 |
| CVE-2026-25885 | High | 7.5 |
PolarLearn is a free and open-source learning program. In 0-PRERELEASE-16 and earlier, the group chat WebSocket at wss:/…
|
⚡ Exploit ✅ Patch | Feb 9, 2026 |
| CVE-2026-25961 | High | 7.5 |
SumatraPDF is a multi-format reader for Windows. In 3.5.0 through 3.5.2, SumatraPDF's update mechanism disables TLS host…
|
⚡ Exploit ✅ Patch | Feb 9, 2026 |
| CVE-2025-10463 | High | 7.3 |
Improper Authentication vulnerability in Birtech Information Technologies Industry and Trade Ltd. Co. Senseway allows Au…
|
✅ Patch | Feb 9, 2026 |
| CVE-2026-2210 | High | 7.2 |
A vulnerability has been found in D-Link DIR-823X 250416. This affects the function sub_4211C8 of the file /goform/set_f…
|
⚡ Exploit ✅ Patch | Feb 9, 2026 |
| CVE-2026-25498 | High | 7.2 |
Craft is a platform for creating digital experiences. In versions 4.0.0-RC1 through 4.16.17 and 5.0.0-RC1 through 5.8.21…
|
⚡ Exploit ✅ Patch | Feb 9, 2026 |
| CVE-2026-25951 | High | 7.2 |
FUXA is a web-based Process Visualization (SCADA/HMI/Dashboard) software. Prior to 1.2.11, there is a flaw in the path s…
|
✅ Patch | Feb 9, 2026 |
| CVE-2025-15100 | High | 8.8 |
The JAY Login & Register plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including…
|
✅ Patch | Feb 8, 2026 |
| CVE-2026-2177 | High | 7.3 |
A vulnerability has been found in SourceCodester Prison Management System 1.0. The impacted element is an unknown functi…
|
⚡ Exploit ✅ Patch | Feb 8, 2026 |