CVE Vulnerabilities - 20 February 2026

Traefik, a popular web traffic manager, has a security flaw that could allow hackers to bypass the secure encryption on some internet connections. This means that sensitive information could be interc...

A security issue in PROLiNK PRC2402M's satellite list page allows an attacker to inject malicious commands. This could potentially allow an attacker to access or modify sensitive system files. Update ...

Acronis Cyber Protect versions 15 and 16 on Linux and Windows may allow unauthorized access to sensitive data. This means that someone with the wrong permissions could view or modify confidential info...

If not updated, attackers can access and modify sensitive data on systems using Acronis Cyber Protect 16 and 15. This is a serious security risk because it could lead to unauthorized access to confide...

Acronis Cyber Protect versions before specific builds on Linux and Windows may allow unauthorized access to sensitive data. This is a serious concern as it could lead to the theft or manipulation of c...

The RoundCube Webmail application can execute malicious code if an attacker sends a specially crafted email with a URL containing unverified data. This means an attacker could potentially take control...

A security issue in Bravis Addons allows attackers to upload files of any type, which could potentially contain malware or other malicious code. If exploited, this could lead to data corruption or sys...

An attacker can upload a malicious web shell to your Wiguard server, potentially allowing them to control your website and steal sensitive data. This issue affects all versions of Wiguard up to 2.0.1....

A security issue in WPForms Google Sheet Connector allows an attacker to inject malicious code into Google Sheets. This can lead to unauthorized data access or modification. Update to version 4.0.2 or...

MLflow installations that use default passwords are at risk of being accessed by unauthorized users. This is because the default passwords are hardcoded, allowing anyone to bypass authentication. To f...

A vulnerability in GFI Archiver allows attackers to bypass authentication and potentially access sensitive areas without a password. This could lead to unauthorized access to sensitive data. To protec...

A security issue affects GFI Archiver installations, allowing unauthorized access to the system without needing a password. This could allow attackers to access sensitive data or take control of the s...

Unauthenticated users can run arbitrary system commands on your server by submitting malicious input. This could allow them to access sensitive data, delete files, or disrupt your service. You should ...

A security issue has been found in SourceCodester's Simple Responsive Tourism Website, specifically in the registration feature. This means an attacker could potentially inject malicious SQL code to a...

The Owl opds software does not properly filter network requests, allowing an attacker to inject malicious commands. This could allow an attacker to take control of the system. To protect your system, ...

An attacker can remotely take control of a vulnerable Print Shop Pro WebDesk system by manipulating the AccessID parameter. This could allow them to access sensitive information or make unauthorized c...

A security issue in Owl opds 2.2.0.4 allows an attacker to potentially execute unauthorized commands on your system. This means that a malicious user could potentially take control of your system or d...

A security issue in the device's web management interface allows an attacker on the same network to access and control the device without a password. This is a significant risk, as it allows unauthori...

The Soleng theme for WordPress allows hackers to load malicious files on your site. This is a security risk because it could let an attacker take control of your website. To fix this, update to a newe...

An attacker can inject commands on your server by manipulating a specific input field in Smanga 3.2.7. This could allow an attacker to access and control your server, which could lead to data theft, d...

A vulnerability in the Lorem Ipsum Books & Media Store theme allows hackers to inject unauthorized data, potentially compromising the security of your store. This affects versions 1.2.6 and earlier. U...

The Extreme Store software has a vulnerability that allows an attacker to inject malicious code into the system. This means that an attacker could potentially take control of the application or access...

A security issue in Themesflat Elementor theme allows an attacker to inject malicious code. This affects Themesflat Elementor theme versions up to 1.0.1. We recommend updating to the latest version to...

The SevenHills theme for WordPress has a security issue that allows an attacker to inject malicious code. This could allow an attacker to take control of the website. Update to the latest version of t...

An attacker can inject malicious code into KindlyCare, potentially leading to unauthorized access or data manipulation. This vulnerability affects KindlyCare versions up to 1.6.1. Update to a fixed ve...