CVE ID : CVE-2026-26362 Published : Feb. 19, 2026, 8:25 a.m. | 1 hour, 37 minutes ago Description : Dell Unisphere for PowerMax, version(s) 10.2, contain(s) a Relative Path Traversal vulnerability. A low privileged…
CVE-2026-2731 – Unauthenticated RCE in Dynamicweb 9 and Dynamicweb 8
CVE ID : CVE-2026-2731 Published : Feb. 19, 2026, 6:46 a.m. | 1 hour, 15 minutes ago Description : Path traversal and content injection in JobRunnerBackground.aspx in DymaicWeb 8 (all) and 9 ( Severity:…
CVE-2025-13851 – Buyent Theme (with Buyent Classified Plugin) <= 1.0.7 – Unauthenticated Privilege Escalation via User Registration
CVE ID : CVE-2025-13851 Published : Feb. 19, 2026, 4:36 a.m. | 3 hours, 26 minutes ago Description : The Buyent Classified plugin for WordPress (bundled with Buyent theme) is vulnerable to privilege escalation…
CVE-2026-0926 – Prodigy Commerce <= 3.2.9 – Unauthenticated Local File Inclusion via parameters[template_name]
CVE ID : CVE-2026-0926 Published : Feb. 19, 2026, 4:36 a.m. | 3 hours, 26 minutes ago Description : The Prodigy Commerce plugin for WordPress is vulnerable to Local File Inclusion in all versions…
CVE-2026-0974 – Orderable <= 1.20.0 – Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Installation
CVE ID : CVE-2026-0974 Published : Feb. 19, 2026, 4:36 a.m. | 3 hours, 26 minutes ago Description : The Orderable – WordPress Restaurant Online Ordering System and Food Ordering Plugin plugin for WordPress…
CVE-2025-13563 – Lizza LMS Pro <= 1.0.3 – Unauthenticated Privilege Escalation
CVE ID : CVE-2025-13563 Published : Feb. 19, 2026, 4:36 a.m. | 3 hours, 26 minutes ago Description : The Lizza LMS Pro plugin for WordPress is vulnerable to Privilege Escalation in all versions…
CVE-2025-15586 – Apache OGP Authentication Bypass
CVE ID : CVE-2025-15586 Published : Feb. 19, 2026, 3:41 a.m. | 2 hours, 21 minutes ago Description : OGP-Website installs prior git commit 52f865a4fba763594453068acf8fa9e3fc38d663 are affected by a type juggling flaw which if…
CVE-2026-2686 – SECCN Dingcheng G10 session_login.cgi qq os command injection
CVE ID : CVE-2026-2686 Published : Feb. 19, 2026, 12:16 a.m. | 1 hour, 46 minutes ago Description : A security vulnerability has been detected in SECCN Dingcheng G10 3.1.0.181203. This impacts the function…
CVE-2026-25548 – InvoicePlane Vulnerable to Remote Code Execution via Local File Inclusion and Log Poisoning
CVE ID : CVE-2026-25548 Published : Feb. 18, 2026, 11:16 p.m. | 46 minutes ago Description : InvoicePlane is a self-hosted open source application for managing invoices, clients, and payments. A critical Remote…
CVE-2026-2670 – Advantech WISE-6610 Background Management openvpn_apply os command injection
CVE ID : CVE-2026-2670 Published : Feb. 18, 2026, 10:16 p.m. | 1 hour, 46 minutes ago Description : A vulnerability was identified in Advantech WISE-6610 1.2.1_20251110. Affected is an unknown function of the…