🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2026-0839 | High | 8.8 |
A weakness has been identified in UTT 进取 520W 1.7.7-180627. Affected is the function strcpy of the file /goform/APSecuri…
|
⚡ Exploit ✅ Patch | Jan 11, 2026 |
| CVE-2026-0840 | High | 8.8 |
A security vulnerability has been detected in UTT 进取 520W 1.7.7-180627. Affected by this vulnerability is the function s…
|
⚡ Exploit ✅ Patch | Jan 11, 2026 |
| CVE-2026-0841 | High | 8.8 |
A vulnerability was detected in UTT 进取 520W 1.7.7-180627. Affected by this issue is the function strcpy of the file /gof…
|
⚡ Exploit ✅ Patch | Jan 11, 2026 |
| CVE-2025-68493 | High | 8.1 |
Missing XML Validation vulnerability in Apache Struts, Apache Struts.
This issue affects Apache Struts: from 2.0.0 befo…
|
✅ Patch | Jan 11, 2026 |
| CVE-2026-22606 | High | 7.8 |
Fickling is a Python pickling decompiler and static analyzer. Fickling versions up to and including 0.1.6 do not treat P…
|
⚡ Exploit ✅ Patch | Jan 10, 2026 |
| CVE-2026-22607 | High | 7.8 |
Fickling is a Python pickling decompiler and static analyzer. Fickling versions up to and including 0.1.6 do not treat P…
|
⚡ Exploit ✅ Patch | Jan 10, 2026 |
| CVE-2026-22608 | High | 7.8 |
Fickling is a Python pickling decompiler and static analyzer. Prior to version 0.1.7, both ctypes and pydoc modules aren…
|
✅ Patch | Jan 10, 2026 |
| CVE-2026-22609 | High | 7.8 |
Fickling is a Python pickling decompiler and static analyzer. Prior to version 0.1.7, the unsafe_imports() method in Fic…
|
⚡ Exploit ✅ Patch | Jan 10, 2026 |
| CVE-2026-22612 | High | 7.8 |
Fickling is a Python pickling decompiler and static analyzer. Prior to version 0.1.7, Fickling is vulnerable to detectio…
|
✅ Patch | Jan 10, 2026 |
| CVE-2025-13457 | High | 7.5 |
The WooCommerce Square plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and…
|
✅ Patch | Jan 10, 2026 |
| CVE-2026-22023 | High | 7.5 |
CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures (SDL…
|
⚡ Exploit ✅ Patch | Jan 10, 2026 |
| CVE-2026-22026 | High | 7.5 |
CryptoLib provides a software-only solution using the CCSDS Space Data Link Security Protocol - Extended Procedures (SDL…
|
⚡ Exploit ✅ Patch | Jan 10, 2026 |
| CVE-2026-22601 | High | 7.2 |
OpenProject is an open-source, web-based project management software. For OpenProject version 16.6.1 and below, a regist…
|
✅ Patch | Jan 10, 2026 |
| CVE-2026-22194 | High | 8.8 |
GestSup versions up to and including 3.2.60 contain a cross-site request forgery (CSRF) vulnerability where the applicat…
|
✅ Patch | Jan 9, 2026 |
| CVE-2025-64091 | High | 8.6 |
This vulnerability allows authenticated attackers to execute commands via the NTP-configuration of the device.
|
✅ Patch | Jan 9, 2026 |
| CVE-2026-22195 | High | 8.1 |
GestSup versions prior to 3.2.60 contain a SQL injection vulnerability in the search bar functionality. User-controlled …
|
✅ Patch | Jan 9, 2026 |
| CVE-2026-22196 | High | 8.1 |
GestSup versions prior to 3.2.60 contain a SQL injection vulnerability in ticket creation functionality. User-controlled…
|
✅ Patch | Jan 9, 2026 |
| CVE-2026-22197 | High | 8.1 |
GestSup versions prior to 3.2.60 contain multiple SQL injection vulnerabilities in the asset list functionality. Multipl…
|
✅ Patch | Jan 9, 2026 |
| CVE-2026-20970 | High | 7.8 |
Improper access control in SLocation prior to SMR Jan-2026 Release 1 allows local attackers to execute the privileged AP…
|
✅ Patch | Jan 9, 2026 |
| CVE-2026-20971 | High | 7.8 |
Use After Free in PROCA driver prior to SMR Jan-2026 Release 1 allows local attackers to potentially execute arbitrary c…
|
✅ Patch | Jan 9, 2026 |