CVE Vulnerabilities - 23 February 2026

ElementsKit Elementor Addons plugin exposes sensitive data without password

CVE-2026-23693

ElementsKit Elementor Addons – Advanced Widgets & Templates Addons for Elementor (elementskit-lite) WordPress plugin versions prior to 3.7.9 expose th...

9.3

Google Chrome on Mac allows malicious websites to access sensitive data

CVE-2026-3062

Out of bounds read and write in Tint in Google Chrome on Mac prior to 145.0.7632.116 allowed a remote attacker to perform out of bounds memory access ...

9.8

Ormar Database Access Risk if Malicious Data is Entered

CVE-2026-26198 GHSA-xxh2-68g9-8jqr

# Report of SQL Injection Vulnerability in Ormar ORM ## A SQL Injection attack can be achieved by passing a crafted string to the min() or max() aggr...

9.8

ShuoRen Smart Heating Platform Allows Unrestricted File Upload

CVE-2026-3025

A flaw has been found in ShuoRen Smart Heating Integrated Management Platform 1.0.0. Affected by this vulnerability is an unknown functionality of the...

6.9

TOTOLINK X5000R Router: Uncontrolled Command Injection

CVE-2025-70327

TOTOLINK X5000R v9.1.0cu_2415_B20250515 contains an argument injection vulnerability in the setDiagnosisCfg handler of the /usr/sbin/lighttpd executab...

9.8

SourceCodester Student Result Management System Allows Unauthorized File Access

CVE-2026-2983

A vulnerability was determined in SourceCodester Student Result Management System 1.0. The impacted element is an unknown function of the file /admin/...

6.9

Order Up Online Ordering System 1.0 exposes sensitive database data

CVE-2026-24494

SQL Injection vulnerability in the /api/integrations/getintegrations endpoint of Order Up Online Ordering System 1.0 allows an unauthenticated attacke...

9.8

Infoticketing: Unauthenticated Users Can Access Database

CVE-2025-41002

SQL injection vulnerability in Infoticketing. This vulnerability allows an unauthenticated attacker to retrieve, create, update, and delete the data...

9.3

Google Chrome allows an attacker to access sensitive memory

CVE-2026-3061

Out of bounds read in Media in Google Chrome prior to 145.0.7632.116 allowed a remote attacker to perform an out of bounds memory read via a crafted H...

9.1

Ayms Node-To Master: Unverified TLS Connections Possible

CVE-2025-70043

An issue pertaining to CWE-295: Improper Certificate Validation was discovered in Ayms node-To master. The application disables TLS/SSL certificate va...

9.1

Apache Camel: Unsecured Keycloak Tokens Bypass Tenant Isolation

CVE-2026-23552 GHSA-c3f3-cc42-xr9v

Cross-Realm Token Acceptance Bypass in KeycloakSecurityPolicy Apache Camel Keycloak component.  The Camel-Keycloak KeycloakSecurityPolicy does not va...

9.1

Perl Crypt::NaCl::Sodium may cause data corruption on 32-bit systems

CVE-2026-2588

Crypt::NaCl::Sodium versions through 2.001 for Perl has an integer overflow flaw on 32-bit systems. Sodium.xs casts a STRLEN (size_t) to unsigned lon...

9.1

yt-dlp: Malicious URL Can Run Any System Command

CVE-2026-26331 GHSA-g3gw-q23r-pgqm

### Summary When yt-dlp's `--netrc-cmd` command-line option (or `netrc_cmd` Python API parameter) is used, an attacker could achieve arbitrary command...

8.8

TOTOLINK Router NTP Sync Attack Allows Unauthorized Command Execution

CVE-2025-70328

TOTOLINK X6000R v9.4.0cu.1498_B20250826 contains an OS command injection vulnerability in the NTPSyncWithHost handler of the /usr/sbin/shttpd executab...

8.8

UTT HiPER 810G: Unsecured Buffer Overflow in Configuration Page

CVE-2026-3016

A vulnerability was identified in UTT HiPER 810G up to 1.7.7-171114. The affected element is the function strcpy of the file /goform/formP2PLimitConfi...

7.4

UTT HiPER 810G: Buffer Overflow in GroupName Input

CVE-2026-3015

A vulnerability was determined in UTT HiPER 810G up to 1.7.7-171114. Impacted is the function strcpy of the file /goform/formPolicyRouteConf. Executin...

7.4

Security Center: Privilege Escalation via Owner Parameter

CVE-2026-2697

An Indirect Object Reference (IDOR) in Security Center allows an authenticated remote attacker to escalate privileges via the 'owner' parameter....

5.3

Apache Camel Allows Malicious Data to Run Code on Your Server

CVE-2026-25747 GHSA-429q-mrc4-38fr

Deserialization of Untrusted Data vulnerability in Apache Camel LevelDB component. The Camel-LevelDB DefaultLevelDBSerializer class deserializes data...

7.1

UTT HiPER 810G allows remote code execution via buffer overflow

CVE-2026-2981

A vulnerability was found in UTT HiPER 810G up to 1.7.7-1711. The affected element is the function strcpy of the file /goform/formTaskEdit_ap. The man...

7.4

FastApiAdmin: Unrestricted File Upload in Scheduled Task API

CVE-2026-2979

A flaw has been found in FastApiAdmin up to 2.2.0. This issue affects the function user_avatar_upload_controller of the file /backend/app/api/v1/modul...

5.3

Unrestricted File Upload in FastAPIAdmin 2.2.0 Scheduled Task API

CVE-2026-2978

A vulnerability was detected in FastApiAdmin up to 2.2.0. This vulnerability affects the function upload_file_controller of the file /backend/app/api/...

5.3

FastApiAdmin allows malicious file uploads up to version 2.2.0

CVE-2026-2977

A security vulnerability has been detected in FastApiAdmin up to 2.2.0. This affects the function upload_controller of the file /backend/app/api/v1/mo...

5.3

D-Link DWR-M960 Can Be Crashed Remotely by Malicious URL

CVE-2026-2962

A vulnerability was found in D-Link DWR-M960 1.01.07. This vulnerability affects the function sub_460F30 of the file /boafrm/formDateReboot of the com...

7.4

D-Link DWR-M960: Remote Code Execution through VPN Configuration

CVE-2026-2961

A vulnerability has been found in D-Link DWR-M960 1.01.07. This affects the function sub_4196C4 of the file /boafrm/formVpnConfigSetup of the componen...

7.4

D-Link DWR-M960: Unsecured Function Can Cause Remote Crashes

CVE-2026-2960

A flaw has been found in D-Link DWR-M960 1.01.07. Affected by this issue is the function sub_468D64 of the file /boafrm/formDhcpv6s. Executing a manip...

7.4