CVE Vulnerabilities - 15 February 2026

A security weakness in Open5GS, a software used by telecommunications companies, can be exploited by remote attackers to cause memory corruption. This can potentially lead to crashes or other security...

A user with limited access can gain extra powers on the eNet SMART HOME server by sending a special request. This allows them to control settings and devices that they shouldn't be able to access. Upd...

The eNet SMART HOME server comes with default passwords that don't get changed after setup, allowing anyone to access sensitive home settings and controls without permission. This is a serious securit...

The CleanTalk plugin for WordPress has a security flaw that could let attackers install and activate any plugin without permission. This is a risk because it could allow them to install malicious plug...

A security flaw in some Infotainment ECUs made by Bosch allows an attacker to execute code on the system controlling car messages, potentially allowing them to send malicious messages to other car sys...

An attacker can use a feature meant for password reset to take over any account, including admin accounts, without knowing the current password. This can happen if the attacker logs in with a lower-le...

The Nissan Leaf's infotainment system, made by Bosch and containing a Bluetooth stack from Alps Alpine, has a security weakness. An attacker could send a special message to the system, potentially all...

The Infotainment system in some Nissan Leaf vehicles can be hacked remotely, potentially allowing an attacker to take control of the vehicle's computer system with complete access. This is due to a fl...

The Nissan Infotainment System's Bluetooth connection is vulnerable to a security risk that could allow an attacker to take control of the system with complete access. This could happen if a hacker se...

If an attacker with low-level permissions updates a user profile, they may gain full control over an online store. This affects all versions of the Ecwid Ecommerce Shopping Cart plugin for WordPress u...

The Micca KE700 system has a flaw that can be exploited by an attacker who sends two previously captured codes in a specific order. This can allow the attacker to unlock or lock doors without permissi...

Any authenticated user can delete other accounts except the admin account by sending a specific request. This could allow an attacker to lock out other users or disrupt the system. Update the SMART HO...

A flaw has been found in Open5GS versions up to 2.7.6 that could allow a remote attacker to crash the system. This vulnerability affects the way Open5GS handles certain network traffic, which could le...

A flaw in the ezPDF DRM Reader and ezPDF Reader 32-bit on certain versions allows an attacker to gain unauthorized access to your system. This can happen if an attacker has physical access to your com...

A misconfiguration in BOSCH's Infotainment ECU can allow unauthorized access to a vehicle's internal systems. This is particularly concerning for owners of Nissan Leaf ZE1 models from 2020, as it may ...

The Nissan Leaf ZE1 2020 model is missing a crucial security check that prevents malicious kernel modules from being loaded. This allows an attacker who already has certain privileges to gain even mor...

Adobe Acrobat Reader, a popular tool for viewing and editing PDF files, contains a vulnerability that could allow attackers to execute malicious code on a user's computer. If exploited, this flaw coul...

The Element Pack Addons for Elementor plugin for WordPress has a security flaw that allows attackers with contributor-level access to read sensitive information from your server. This is a serious iss...

The Micca KE700 system's weak password system makes it easy for an attacker to guess the code and unlock a vehicle. This is because the system only uses 64 possible combinations, making it a simple ta...

OPNsense firewall software has a security weakness that allows hackers to inject malicious code into the system using a specific user input field. This could allow a hacker to access sensitive informa...

A security issue in OPNsense 19.1 allows hackers to inject malicious code into users' browsers without needing a password. This can happen when a user visits a website that sends a special request to ...

OPNsense 19.1 has a security flaw that lets attackers inject malicious code into users' browsers without needing a password. This can happen when an attacker sends a specific type of request to the sy...

OPNsense 19.1 has a security weakness that lets hackers inject malicious scripts into users' web browsers. This can happen when an attacker sends a specific type of request to the OPNsense web interfa...

OPNsense 19.1 has a weakness that allows hackers to inject malicious code into a user's web browser. This can happen when a user visits a specially crafted website or clicks a link. To fix this, updat...

OPNsense 19.1 has a security flaw that lets hackers inject malicious code into users' browsers through the diag_ping.php page. This could allow them to steal sensitive information or take control of u...