Page 40

CVE-2025-12062 – WP Maps <= 4.8.6 – Authenticated (Subscriber+) Limited Local File Inclusion

Posted on February 17, 2026

CVE ID : CVE-2025-12062 Published : Feb. 17, 2026, 12:16 a.m. | 1 hour, 46 minutes ago Description : The WP Maps – Store Locator,Google Maps,OpenStreetMap,Mapbox,Listing,Directory & Filters plugin for WordPress is vulnerable to…

CVE-2026-2001 – WowRevenue <= 2.1.3 – Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Installation/Activation

Posted on February 16, 2026

CVE ID : CVE-2026-2001 Published : Feb. 16, 2026, 8:19 p.m. | 1 hour, 42 minutes ago Description : The WowRevenue plugin for WordPress is vulnerable to unauthorized plugin installation due to a missing…

CVE-2026-2567 – Wavlink WL-NU516U1 nas.cgi sub_401218 stack-based overflow

Posted on February 16, 2026

CVE ID : CVE-2026-2567 Published : Feb. 16, 2026, 6:19 p.m. | 1 hour, 42 minutes ago Description : A vulnerability was detected in Wavlink WL-NU516U1 20251208. This vulnerability affects the function sub_401218 of…

CVE-2026-2566 – Wavlink WL-NU516U1 adm.cgi sub_406194 stack-based overflow

Posted on February 16, 2026

CVE ID : CVE-2026-2566 Published : Feb. 16, 2026, 6:19 p.m. | 1 hour, 42 minutes ago Description : A security vulnerability has been detected in Wavlink WL-NU516U1 up to 130/260. This affects the…

CVE-2026-2564 – Intelbras VIP 3260 Z IA OutsideCmd password recovery

Posted on February 16, 2026

CVE ID : CVE-2026-2564 Published : Feb. 16, 2026, 5:18 p.m. | 44 minutes ago Description : A security flaw has been discovered in Intelbras VIP 3260 Z IA 2.840.00IB005.0.T. Affected by this…

CVE-2026-2101 – Reflected Cross-site Scripting (XSS) vulnerability affecting ENOVIAvpm Web Access from ENOVIAvpm Version 1 Release 16 through ENOVIAvpm Version 1 Release 19

Posted on February 16, 2026

CVE ID : CVE-2026-2101 Published : Feb. 16, 2026, 5:18 p.m. | 44 minutes ago Description : A Reflected Cross-site Scripting (XSS) vulnerability affecting ENOVIAvpm Web Access from ENOVIAvpm Version 1 Release 16…

CVE-2025-12062 – WP Maps <= 4.8.6 – Authenticated (Subscriber+) Limited Local File Inclusion

CVE-2026-2001 – WowRevenue <= 2.1.3 – Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Installation/Activation

CVE-2026-2567 – Wavlink WL-NU516U1 nas.cgi sub_401218 stack-based overflow

CVE-2026-2566 – Wavlink WL-NU516U1 adm.cgi sub_406194 stack-based overflow

CVE-2026-2564 – Intelbras VIP 3260 Z IA OutsideCmd password recovery

CVE-2026-2101 – Reflected Cross-site Scripting (XSS) vulnerability affecting ENOVIAvpm Web Access from ENOVIAvpm Version 1 Release 16 through ENOVIAvpm Version 1 Release 19

CVE-2026-2577 – Nanobot Unauthenticated WhatsApp Session Hijack via WebSocket Bridge

CVE-2026-2550 – EFM iptime A6004MX timepro.cgi commit_vpncli_file_upload unrestricted upload

CVE-2026-26369 – JUNG eNet SMART HOME server 2.2.1/2.3.1 Privilege Escalation via setUserGroup

CVE-2026-26368 – JUNG eNet SMART HOME server 2.2.1/2.3.1 Account Takeover via resetUserPassword