Monitor vulnerabilities that affect your stack.
Sign up free to get alerts when software you use is affected.
CVE Vulnerabilities - 26 February 2026
RSS186 vulnerabilities published on 26 February 2026
Severity:
Discourse: Moderators can export user chat messages without permission
CVE-2026-27153
Discourse is an open source discussion platform. Prior to versions 2025.12.2, 2026.1.1, and 2026.2.0, moderators could export user Chat DMs via the CS...
1.3
Discourse: Unprivileged users can move posts into restricted categories
CVE-2026-27151
Discourse is an open source discussion platform. Prior to versions 2025.12.2, 2026.1.1, and 2026.2.0, the `move_posts` action only checked `can_move_p...
1.3
Discourse allows unauthorized access to private category management
CVE-2026-26979
Discourse is an open source discussion platform. Prior to versions 2025.12.2, 2026.1.1, and 2026.2.0, TL4 users are able to close, archive and pin top...
0.0
CVE Rejected: No Known Vulnerability in This Software
CVE-2025-11384
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority....
CVE Removed, No Longer Considered a Security Threat
CVE-2025-11383
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority....
CVE Rejected: No Longer a Valid Risk
CVE-2025-11382
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority....
Adobe Flash Player: Unspecified vulnerability, remote code execution risk
CVE-2025-11381
Rejected reason: This CVE ID has been rejected or withdrawn by its CVE Numbering Authority....
CGA-9996-3fqh-33r8
CGA-9996-3fqh-33r8
CGA-9996-3fqh-33r8
Apache HTTP Server Fails to Validate Hostnames
UBUNTU-CVE-2026-3184
[Access control bypass due to improper hostname canonicalization]...
Valkey: Malicious Lua scripts can crash or alter data
ALSA-2026:3443
Valkey is an advanced key-value store. It is often referred to as a data structure server since keys can contain strings, hashes, lists, sets and sort...