| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-1344 | Insecure file permissions in Enforce Recovery Key Portal | Tanium | Enforce Recovery Key Portal | Medium | 6.5 | 2026-02-17 23:43:30 | Deep Dive |
| CVE-2026-2225 | itsourcecode News Portal Project Administrator Login index.php sql injection | itsourcecode | News Portal Project | High | 7.3 | 2026-02-09 09:02:08 | Deep Dive |
| CVE-2026-2162 | itsourcecode News Portal Project aboutus.php sql injection | itsourcecode | News Portal Project | Medium | 4.7 | 2026-02-08 16:02:10 | Deep Dive |
| CVE-2026-2158 | code-projects Student Web Portal check_user.php sql injection | code-projects | Student Web Portal | High | 7.3 | 2026-02-08 15:02:12 | Deep Dive |
| CVE-2026-2059 | SourceCodester Medical Center Portal Management System emp_edit1.php sql injection | SourceCodester | Medical Center Portal Management System | High | 7.3 | 2026-02-06 17:02:07 | Deep Dive |
| CVE-2026-2057 | SourceCodester Medical Center Portal Management System login.php sql injection | SourceCodester | Medical Center Portal Management System | High | 7.3 | 2026-02-06 15:32:07 | Deep Dive |
| CVE-2026-1429 | WellChoose|Single Sign-On Portal System - Reflected Cross-site Scripting | WellChoose | Single Sign-On Portal System | Medium | 5.4 | 2026-01-26 08:20:47 | Deep Dive |
| CVE-2026-1428 | WellChoose|Single Sign-On Portal System - OS Command Injection | WellChoose | Single Sign-On Portal System | High | 8.8 | 2026-01-26 08:14:59 | Deep Dive |
| CVE-2026-1427 | WellChoose|Single Sign-On Portal System - OS Command Injection | WellChoose | Single Sign-On Portal System | High | 8.8 | 2026-01-26 08:06:50 | Deep Dive |
| CVE-2026-1424 | PHPGurukul News Portal Profile Pic unrestricted upload | PHPGurukul | News Portal | Medium | 4.7 | 2026-01-26 07:02:07 | Deep Dive |
| CVE-2026-24379 | WordPress WP Job Portal plugin <= 2.4.3 - Insecure Direct Object References (IDOR) vulnerability | wpjobportal | WP Job Portal | Medium | 6.5 | 2026-01-22 16:52:46 | Deep Dive |
| CVE-2026-1142 | PHPGurukul News Portal cross-site request forgery | PHPGurukul | News Portal | Medium | 4.3 | 2026-01-19 06:32:08 | Deep Dive |
| CVE-2026-1141 | PHPGurukul News Portal Add Sub-Admin add-subadmins.php improper authorization | PHPGurukul | News Portal | Medium | 6.3 | 2026-01-19 06:02:08 | Deep Dive |
| CVE-2026-20965 | Windows Admin Center Elevation of Privilege Vulnerability | Microsoft | Windows Admin Center in Azure Portal | High | 7.5 | 2026-01-13 17:56:07 | Deep Dive |
| CVE-2026-0499 | Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Enterprise Portal | SAP_SE | SAP NetWeaver Enterprise Portal | Medium | 6.1 | 2026-01-13 01:13:47 | Deep Dive |
| CVE-2026-22234 | OPEXUS eCasePortal unauthenticated IDOR | OPEXUS | eCase Portal | Critical | 9.8 | 2026-01-08 17:12:39 | Deep Dive |
| CVE-2025-15170 | Advaya Softech GEMS ERP Portal Error Message home.jsp cross site scripting | Advaya Softech | GEMS ERP Portal | Medium | 4.3 | 2025-12-29 03:32:08 | Deep Dive |
| CVE-2025-14467 | WP Job Portal <= 2.4.4 - Authenticated (Editor+) Stored Cross-Site Scripting via Job Description Field | wpjobportal | WP Job Portal – AI-Powered Recruitment System for Company or Job Board website | Medium | 4.4 | 2025-12-12 03:20:39 | Deep Dive |
| CVE-2025-14293 | WP Job Portal <= 2.4.0 - Authenticated (Subscriber+) Arbitrary File Read | wpjobportal | WP Job Portal – AI-Powered Recruitment System for Company or Job Board website | Medium | 6.5 | 2025-12-11 20:22:09 | Deep Dive |
| CVE-2025-42872 | Cross-Site Scripting (XSS) vulnerability in SAP NetWeaver Enterprise Portal | SAP_SE | SAP NetWeaver Enterprise Portal | Medium | 6.1 | 2025-12-09 02:13:56 | Deep Dive |