CVE ID : CVE-2026-0926 Published : Feb. 19, 2026, 4:36 a.m. | 3 hours, 26 minutes ago Description : The Prodigy Commerce plugin for WordPress is vulnerable to Local File Inclusion in all versions…
CVE-2026-0974 – Orderable <= 1.20.0 – Missing Authorization to Authenticated (Subscriber+) Arbitrary Plugin Installation
CVE ID : CVE-2026-0974 Published : Feb. 19, 2026, 4:36 a.m. | 3 hours, 26 minutes ago Description : The Orderable – WordPress Restaurant Online Ordering System and Food Ordering Plugin plugin for WordPress…
CVE-2025-13563 – Lizza LMS Pro <= 1.0.3 – Unauthenticated Privilege Escalation
CVE ID : CVE-2025-13563 Published : Feb. 19, 2026, 4:36 a.m. | 3 hours, 26 minutes ago Description : The Lizza LMS Pro plugin for WordPress is vulnerable to Privilege Escalation in all versions…
CVE-2025-15586 – Apache OGP Authentication Bypass
CVE ID : CVE-2025-15586 Published : Feb. 19, 2026, 3:41 a.m. | 2 hours, 21 minutes ago Description : OGP-Website installs prior git commit 52f865a4fba763594453068acf8fa9e3fc38d663 are affected by a type juggling flaw which if…
CVE-2026-2686 – SECCN Dingcheng G10 session_login.cgi qq os command injection
CVE ID : CVE-2026-2686 Published : Feb. 19, 2026, 12:16 a.m. | 1 hour, 46 minutes ago Description : A security vulnerability has been detected in SECCN Dingcheng G10 3.1.0.181203. This impacts the function…
CVE-2026-25548 – InvoicePlane Vulnerable to Remote Code Execution via Local File Inclusion and Log Poisoning
CVE ID : CVE-2026-25548 Published : Feb. 18, 2026, 11:16 p.m. | 46 minutes ago Description : InvoicePlane is a self-hosted open source application for managing invoices, clients, and payments. A critical Remote…
CVE-2026-2670 – Advantech WISE-6610 Background Management openvpn_apply os command injection
CVE ID : CVE-2026-2670 Published : Feb. 18, 2026, 10:16 p.m. | 1 hour, 46 minutes ago Description : A vulnerability was identified in Advantech WISE-6610 1.2.1_20251110. Affected is an unknown function of the…
CVE-2026-2650 – Google Chrome Heap Buffer Overflow
CVE ID : CVE-2026-2650 Published : Feb. 18, 2026, 10:16 p.m. | 1 hour, 46 minutes ago Description : Heap buffer overflow in Media in Google Chrome prior to 145.0.7632.109 allowed a remote attacker…
CVE-2026-2649 – Google Chrome V8 Integer Overflow Vulnerability
CVE ID : CVE-2026-2649 Published : Feb. 18, 2026, 10:16 p.m. | 1 hour, 46 minutes ago Description : Integer overflow in V8 in Google Chrome prior to 145.0.7632.109 allowed a remote attacker to…
CVE-2026-27182 – Saturn Remote Mouse Server UDP Command Injection RCE
CVE ID : CVE-2026-27182 Published : Feb. 18, 2026, 10:16 p.m. | 1 hour, 46 minutes ago Description : Saturn Remote Mouse Server contains a command injection vulnerability that allows unauthenticated attackers to execute…