CVE Vulnerabilities - 19 February 2026

Comodo Dome Firewall version 2.7.0 has a security weakness that lets hackers inject malicious code into websites, which can harm users who visit those sites. This can happen if a hacker sends a specia...

Comodo Dome Firewall version 2.7.0 has a security weakness that could allow hackers to inject malicious code into users' web browsers. This could lead to unauthorized access to users' computers or per...

Comodo Dome Firewall 2.7.0 has a security flaw that lets attackers inject malicious code into web pages. This could lead to unauthorized access or actions on your network, so update to a fixed version...

Comodo Dome Firewall 2.7.0 has a security weakness that lets hackers inject malicious code into your browser. This could allow them to take control of your browser or steal sensitive information. Upda...

Comodo Dome Firewall 2.7.0 has a security flaw that lets hackers insert malicious code into users' browsers by sending them a specially crafted request. This could allow hackers to take control of a u...

Comodo Dome Firewall version 2.7.0 has a security weakness that lets hackers send fake requests to administrators' browsers, potentially allowing them to run malicious code. This could be used to stea...

The Comodo Dome Firewall version 2.7.0 has a security weakness that allows hackers to inject malicious code into users' browsers when they visit certain websites. This could potentially lead to unauth...

Comodo Dome Firewall 2.7.0 has a security flaw that allows hackers to inject malicious code into users' browsers. This can happen when a user visits a website that sends a special request to the firew...

The Comodo Dome Firewall 2.7.0 contains a security flaw that allows hackers to inject malicious code into users' browsers by submitting specially crafted input. This can lead to unauthorized actions o...

Comodo Dome Firewall's backup schedule interface is vulnerable to a security threat that can let hackers inject malicious scripts into users' browsers. This could potentially lead to unauthorized acce...

Comodo Dome Firewall 2.7.0 is vulnerable to a security weakness that lets attackers inject malicious code into users' browsers. This can happen if a user visits a specially crafted website or clicks o...

An attacker can trick users into revealing sensitive information or taking unwanted actions by sending a special kind of link or form request to their browser. This can happen when a user navigates to...

Adobe ColdFusion's /report/internet/urls endpoint fails to protect against malicious URLs, allowing attackers to inject JavaScript code that can execute in a user's browser. This could lead to unautho...

If you use OpenCms v18.0, an attacker can trick you into visiting a fake link that steals your sensitive information or makes it look like you're doing things you didn't. Update to the latest version ...

The Xmlrpc Attacks Blocker plugin for WordPress is vulnerable to a security risk that allows hackers to inject malicious code into the debug logs, which can be executed when an administrator views the...

The Shield Security plugin for WordPress has a security flaw that allows attackers to inject malicious scripts into websites. This can happen if a user clicks on a link sent by an attacker. Update the...

An attacker can trick users into clicking on a malicious link to inject malicious scripts into your WordPress site. This could allow an attacker to take control of your site or steal user data. Update...

The Easy SVG Support plugin for WordPress is not properly protecting against malicious code injected into SVG files uploaded to your site. This means an attacker with the right access can add code to ...

The Aruba HiSpeed Cache plugin for WordPress is insecure, allowing attackers to inject malicious scripts into web pages if a user clicks on a specially crafted link. This could lead to unauthorized ac...

The 10Web Photo Gallery software has a security flaw that allows hackers to inject malicious code into your website. This could allow them to steal sensitive information or take control of your site. ...

The FooGallery plugin for your website has a security flaw that could allow hackers to inject malicious code into your site. This could potentially lead to unauthorized actions being taken on your sit...

WP SMS, a plugin used for sending SMS from WordPress, has a security weakness that could allow attackers to inject malicious code into websites. This could lead to unauthorized actions, such as steali...

The HurryTimer software does not properly check user input, which allows hackers to inject malicious code into your website. This can lead to unauthorized actions being taken on your site. You should ...

If an attacker sends a large packet to a Windows system running OpenVPN version 2.8.0, it may crash the system. This only happens if the packet has a specific format, and it requires the attacker to b...

A flaw in the Worldquant-miner software, up to version 1.0.9, lets hackers trick a server into making false requests. This could be done from anywhere, and while it's not easy to exploit, the vulnerab...