CVE Vulnerabilities - 19 February 2026

The Smartsupp plugin for WordPress has a security flaw that lets attackers inject malicious code into website pages. This can happen if an attacker with a basic account or higher can trick a website u...

The Printful WooCommerce plugin for WordPress contains a security flaw that allows an attacker with contributor access to make unauthorized requests to internal services, potentially exposing sensitiv...

The Renden WordPress theme has a security flaw that allows authenticated users with Contributor-level access or higher to inject malicious code into website pages. This code can run on any user's brow...

The Drift WordPress theme has a security risk that allows attackers with admin access to inject malicious code into posts. This could lead to unauthorized actions or data theft, and it's essential to ...

Websites using Pannellum's viewer may be at risk of a security threat if an attacker can upload a malicious configuration file. This could allow an attacker to take control of the website, replacing i...

Feathers OAuth setup can be tricked into redirecting users to malicious sites, allowing attackers to steal access tokens and impersonate users. To fix this, update Feathers to the latest version and e...

Leaf Kit, a templating engine, has a bug that can allow hackers to inject malicious code into web pages. This can happen when a user-controlled value is used in an HTML attribute. To stay safe, update...

A security issue in Cilium allows unauthorized traffic to bypass network security policies when specific features are enabled. This can happen if you're using Cilium 1.18 between versions 1.18.0 and 1...

An attacker can inject malicious code into the private area of SPIP, potentially allowing them to steal sensitive information or take control of user accounts. This is because the software doesn't pro...

SPIP, a web software, has a security flaw that allows an attacker to inject malicious code into the admin area, potentially allowing them to take control of sensitive parts of the site. This could lea...

If you use SPIP in AJAX mode, a hacker could trick your users into visiting a fake login page that sends them to a different website. This only affects sites that have customized their login page to w...

If you use SPIP, an attacker might be able to inject malicious scripts in the private area, potentially harming your users. This could lead to unauthorized actions or data theft. Update to the latest ...

An attacker can inject malicious scripts into Comodo Dome Firewall 2.7.0 by sending fake user input, potentially allowing them to take control of a user's browser. This could lead to unauthorized acce...

Comodo Dome Firewall version 2.7.0 has a security flaw that lets hackers inject malicious code into users' browsers by manipulating firewall settings. This can happen when a user visits a compromised ...

The Comodo Dome Firewall 2.7.0 has a security flaw that lets attackers send malicious code to users' browsers through the Comodo Dome Firewall's settings page. This could allow attackers to steal sens...

The Comodo Dome Firewall version 2.7.0 has a security weakness that lets hackers inject malicious code into users' web browsers. This can happen when a user visits a website that has been set up to ex...

Comodo Dome Firewall's dnsmasq endpoint can be tricked into executing malicious scripts in users' browsers. This can happen if an attacker sends a specially crafted request to the firewall. Users shou...

Comodo Dome Firewall, a security product, has a weakness that allows hackers to inject malicious code into an administrator's web browser. This can happen when an attacker sends a specially crafted me...

A security flaw in Comodo Dome Firewall 2.7.0 allows hackers to steal sensitive user data by sending a special type of request to the firewall's configuration page. This could happen if a user clicks ...

If an attacker sends a special message to the Comodo Dome Firewall, they can trick an administrator's web browser into running malicious scripts, potentially allowing them to take control of the syste...

Comodo Dome Firewall 2.7.0 has a security weakness that allows hackers to inject malicious code into an administrator's web browser. This can happen if an administrator views a specially crafted webpa...

Comodo's firewall software has a security flaw that could let hackers inject code into the system. This could allow them to take control of the firewall or store malicious scripts, compromising the se...

Comodo Dome Firewall version 2.7.0 has a security flaw that lets attackers inject malicious code into users' browsers by tricking them into visiting a malicious website. This could allow the attacker ...

Comodo Dome Firewall version 2.7.0 contains a security flaw that lets hackers inject malicious code into users' browsers, potentially stealing sensitive information. This can happen when an attacker s...

Comodo Dome Firewall version 2.7.0 has a security weakness that lets attackers inject malicious code into your administrator's web browser. This can happen when a specially crafted input is sent to th...