CVE Vulnerabilities - 16 February 2026

If you use SOLIDWORKS eDrawings, be aware that a vulnerability in the software can allow an attacker to run malicious code on your computer. This can happen when opening a specially crafted EPRT file....

Certain versions of SOLIDWORKS eDrawings can be tricked into executing malicious code when opening a specially designed file. This could lead to unauthorized actions on your computer. Update to the la...

If you use the Mattermost Desktop App, a malicious Mattermost server can trick you into running arbitrary code on your computer if you click on certain help links. This is a serious security risk. Upd...

A bug in Perl's Crypt::URandom module can cause a crash if the application is given an incorrect length for random data. This issue is most likely to affect applications that pass untrusted input to t...

A security update is available for the Go library on Red Hat systems, which fixes a flaw that could allow an attacker to execute code remotely. This update is recommended for all users to install, as ...

A vulnerability in Free5GC's PFCP UDP Endpoint can be exploited remotely, causing a denial of service. This means the system may become unresponsive or crash. Update to the latest version of Free5GC t...

A flaw in Open5GS 2.7.6 can allow an attacker to remotely take down the system. This could happen if an attacker exploits a published vulnerability in the MME component. Businesses using Open5GS 2.7.6...

A security weakness in Open5GS versions up to 2.7.6 can be exploited by hackers to access or disrupt the system remotely. This means an attacker can potentially take control of or crash the system. We...

A security issue was found in Zhanghuanhao Library System version 1.1.1 that could allow an attacker to access sensitive information without permission. This is a significant concern because it could ...

The LuLu UI up to version 3.0.0 has a security flaw that lets hackers remotely execute unauthorized system commands. This means a hacker could potentially take control of your system or steal sensitiv...

A bug in the Tosei Self-service Washing Machine's software can be exploited by a hacker to remotely access and control the machine. This could allow unauthorized access to sensitive information and po...

A security issue has been found in the Wavlink WL-NU516U1 router. Attackers can potentially take control of the device by sending a specially crafted request to the router, which could let them access...

A security flaw in the Wavlink WL-NU516U1 device's management interface allows an attacker to remotely crash the device by manipulating a specific setting. This can happen if the device is not properl...

Smoothwall Express has a security weakness that allows hackers to inject malicious code into users' browsers. This can happen when a user visits a website that sends a specific request to the Smoothwa...

SmarterMail's email software has a security flaw that lets attackers inject malicious code into emails. This could allow them to take control of your email account or steal sensitive information. Upda...

A security flaw in Comfast CF-E4 allows an attacker to execute unauthorized commands on the device by sending a malicious request, potentially allowing them to access or manipulate sensitive data. Thi...

A flaw in Total VPN 0.5.29.0 on Windows could allow an attacker to run unauthorized programs on a user's computer. This could happen if a user interacts with the Total VPN service in a certain way. We...

A security issue affects Notepad2 4.2.22 to 4.2.25 on Windows. An attacker with local access can potentially exploit this flaw to execute malicious code. Users are advised to update to a fixed version...

A security flaw in a Wavlink router's admin feature can be exploited remotely, potentially allowing an attacker to take control of the router. This could happen if the router's software is not updated...

Pretix email templates can leak sensitive system info to attackers. Anyone with access to the backend can create malicious email templates that reveal database passwords and API keys. To stay safe, up...

A bug in Pretix's email placeholder feature allowed attackers to extract sensitive system information, including passwords and API keys. This was possible through specially crafted placeholder names. ...

A security flaw in Kodbox's Media File Preview Plugin can allow hackers to execute malicious code on a website, potentially leading to data breaches or unauthorized access. This vulnerability affects ...

GeekAI versions up to 4.2.4 have a security flaw in their Download function that allows hackers to trick the server into executing malicious requests. This could be exploited remotely, and exploit cod...

A security flaw in CSKefu version 8.0.1 and earlier can let attackers trick the server into performing unauthorized actions. This could happen if a hacker sends a specially crafted request to the CSKe...

A bug in the Tushar-2223 Hotel Management System allows hackers to inject malicious code into the system by manipulating user input, potentially giving them access to sensitive data. This affects user...