CVE Vulnerabilities - 25 February 2026

A security weakness in Chia Blockchain 2.1.0 makes it possible for a malicious website to trick users into making unwanted transactions from their account. This is a serious issue because it could res...

A security weakness in Feiyuchuixue sz-boot-parent's download feature allows hackers to potentially trick the server into doing something it shouldn't. This can be fixed by upgrading to version 1.3.3-...

The Talishar fan game has a security weakness that allows hackers to trick users into performing unauthorized actions in their games, potentially disrupting their experience. This can happen when a us...

A vulnerability in Craft CMS allows an attacker to inject malicious code into table headers, which can be executed when another user views the table. To fix this, ensure that 'allowAdminChanges' is di...

A security issue in JetBrains TeamCity versions before 2025.11.3 can expose sensitive credentials to unauthorized access if versioned settings are disabled. To protect your team's data, update to the ...

A rare combination of events can allow an attacker with admin access to delete a datasource again after it's been recreated, even if they're no longer an admin. This only works if the attacker acted w...

A bug in the CircuitBreaker module of KrakenD can cause the program to leave behind open connections or resources when it shuts down, potentially leading to performance issues or resource leaks. This ...

A flaw in ImageMagick's handling of TXT files can cause memory to be leaked when reading metrics. This can happen if a TXT file contains a 'texture' attribute that fails to be read. To avoid this issu...

If you use ImageMagick to process user-submitted SVG files, an attacker could inject malicious commands that execute when the file is opened. This could lead to unintended actions on your system. Upda...

This security issue was incorrectly reported and has been removed to prevent mistakes. It's no longer a concern. No action is required.