CVE ID : CVE-2026-24708 Published : Feb. 18, 2026, 6:24 p.m. | 1 hour, 38 minutes ago Description : An issue was discovered in OpenStack Nova before 30.2.2, 31 before 31.2.1, and 32 before…
CVE-2025-70152 – Code-Projects Community Project Scholars Tracking System SQL Injection Vulnerability
CVE ID : CVE-2025-70152 Published : Feb. 18, 2026, 6:24 p.m. | 1 hour, 38 minutes ago Description : code-projects Community Project Scholars Tracking System 1.0 is vulnerable to SQL Injection in the admin…
CVE-2025-70151 – Code-Projects Scholars Tracking System Remote Code Execution Vulnerability
CVE ID : CVE-2025-70151 Published : Feb. 18, 2026, 6:24 p.m. | 1 hour, 38 minutes ago Description : code-projects Scholars Tracking System 1.0 allows an authenticated attacker to achieve remote code execution via…
CVE-2025-70150 – CodeAstro Membership Management System Unauthenticated Delete Member Vulnerability
CVE ID : CVE-2025-70150 Published : Feb. 18, 2026, 6:24 p.m. | 1 hour, 38 minutes ago Description : CodeAstro Membership Management System 1.0 contains a missing authentication vulnerability in delete_members.php that allows unauthenticated…
CVE-2025-14009 – Zip Slip Vulnerability in nltk/nltk Leading to Remote Code Execution
CVE ID : CVE-2025-14009 Published : Feb. 18, 2026, 6:24 p.m. | 1 hour, 38 minutes ago Description : A critical vulnerability exists in the NLTK downloader component of nltk/nltk, affecting all versions. The…
CVE-2026-2507 – BIG-IP TMM Vulnerability
CVE ID : CVE-2026-2507 Published : Feb. 18, 2026, 5:21 p.m. | 41 minutes ago Description : When BIG-IP AFM or BIG-IP DDoS is provisioned, undisclosed traffic can cause TMM to terminate. Note:…
CVE-2025-70998 – UTT HiPER 810 Telnet Insecure Default Credentials Vulnerability
CVE ID : CVE-2025-70998 Published : Feb. 18, 2026, 4:22 p.m. | 1 hour, 40 minutes ago Description : UTT HiPER 810 / nv810v4 router firmware v1.5.0-140603 was discovered to contain insecure default credentials…
CVE-2025-65791 – ZoneMinder Command Injection Vulnerability
CVE ID : CVE-2025-65791 Published : Feb. 18, 2026, 4:22 p.m. | 1 hour, 40 minutes ago Description : ZoneMinder v1.36.34 is vulnerable to Command Injection in web/views/image.php. The application passes unsanitized user input…
CVE-2026-2329 – Grandstream GXP1600 VoIP Phones – Unauthenticated stack buffer overflow
CVE ID : CVE-2026-2329 Published : Feb. 18, 2026, 3:18 p.m. | 44 minutes ago Description : An unauthenticated stack-based buffer overflow vulnerability exists in the HTTP API endpoint /cgi-bin/api.values.get. A remote attacker…
CVE-2026-1426 – Advanced AJAX Product Filters <= 3.1.9.6 – Authenticated (Author+) PHP Object Injection via Live Composer Compatibility
CVE ID : CVE-2026-1426 Published : Feb. 18, 2026, 3:18 p.m. | 44 minutes ago Description : The Advanced AJAX Product Filters plugin for WordPress is vulnerable to PHP Object Injection in all…