CVE Vulnerabilities - 19 February 2026

The Zumba Json Serializer library can be tricked into running malicious code if it's used to deserialize untrusted JSON data. This can happen if the application or its dependencies have classes that c...

If you use Feathers OAuth, an attacker can create a malicious domain that tricks the system into giving them access to authorized domains. This could allow an attacker to steal sensitive information a...

Deno's child process feature allows attackers to execute arbitrary commands, which means unauthorized access to your system. This is a serious issue because it can lead to data theft or system comprom...

A security issue in Statamic allows authenticated users with field management permissions to inject malicious code that can harm others. This can happen when certain users view specific fields in the ...

The jsPDF library has a security flaw that allows hackers to inject malicious JavaScript code into PDF files created with it. This could happen if a user can input data into a PDF form, and that data ...

The jspdf library allows attackers to inject malicious JavaScript into PDFs if user input is not sanitized. This could let attackers harm or alter documents opened by others. To fix, update to jspdf v...

A security issue in SPIP 4.4.8 and earlier allows an attacker to execute malicious code. This happens when an attacker can place malicious data in a specific area of the site. To protect against this,...

Grafana, a popular data visualization tool, has a security issue that could allow an attacker to access sensitive data and execute malicious code without needing a login. If left unpatched, this vulne...

Grafana is updating to fix a security issue that allows unauthorized users to access sensitive information without a password. If you use Grafana, update to the latest version to prevent potential dat...

A remote attacker can potentially modify important system files, compromising the integrity of the system. This could lead to unintended consequences, such as data loss or system crashes. Update to th...

A security issue in Dell Unisphere for PowerMax version 10.2 allows an attacker with limited access to potentially delete any files. This means that if an attacker can access your system remotely, the...

A security issue was found in Open Babel's MOL2 File Handler. This could allow an attacker to access sensitive data. Open Babel's developers have released a patch to fix this issue, which you should a...

A security flaw in the Open Babel CIF File Handler can cause a data leak when processing certain file inputs. This could potentially allow an attacker to access sensitive information. Update to the la...

A recent update to the Swiper library for websites can be manipulated by malicious code to add data to your website's settings. This could allow an attacker to make changes to your website without you...

An attacker can exploit a bug in older versions of HDF5 software to crash it or potentially take control of a system. This affects HDF5 versions before 1.14.4-2. To fix the issue, update to version 1....

An attacker can use a malicious executable to gain administrator access on a computer running WorkTime. This happens if the malicious file is placed in a specific directory and has a certain name. To ...

A security flaw in the EPSON printer driver installer on macOS allows a malicious user to execute commands and install system components without needing administrator permissions. This is a serious is...

A security issue in Bit Form software allows hackers to potentially inject malicious commands into the database, which can lead to unauthorized access or data theft. This is a serious risk, especially...

Nelio AB Testing, a plugin for WordPress, is vulnerable to a security flaw that can allow hackers to access sensitive data. This means that an attacker could potentially steal or modify information st...

Media Search Enhanced versions 0.9.1 and earlier allow attackers to inject malicious SQL commands, potentially allowing them to access or modify sensitive data. This could lead to unauthorized access ...

A security weakness in Microsoft Teams allows hackers to access sensitive information on your computer network without permission. This could lead to data theft or unauthorized changes to your system....

A hacker could use OpenText XM Fax, a fax software, to access sensitive files on a local computer. This allows them to potentially see confidential information that shouldn't be shared. To stay safe, ...

A security issue in VanKarWai Airtifact allows hackers to access local files on a computer. This is a risk if you have this software installed. Update to the latest version of Airtifact to fix this is...

NanaZip versions 5.0.1252.0 to 6.0.1629.0 contain a bug that can cause the software to hang or crash when trying to extract archives. This is a critical issue because it can prevent users from accessi...

An authenticated user with edit permissions can access sensitive system files and secrets on the server by exploiting a vulnerability in Penpot design tool. This can lead to exposure of sensitive info...