| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-22266 | Dell PowerProtect Data Manager(PPDM) 安全漏洞 | Dell | PowerProtect Data Manager | Medium | 4.7 | 2026-02-19 09:06:21 | Deep Dive |
| CVE-2026-22269 | Dell PowerProtect Data Manager 安全漏洞 | Dell | PowerProtect Data Manager | Medium | 4.7 | 2026-02-19 09:00:56 | Deep Dive |
| CVE-2026-25411 | WordPress Revision Manager TMC plugin <= 2.8.22 - Cross Site Request Forgery (CSRF) vulnerability | themastercut | Revision Manager TMC | - | - | 2026-02-19 08:27:06 | Deep Dive |
| CVE-2026-25404 | WordPress WP Job Manager plugin <= 2.4.0 - Broken Access Control vulnerability | Automattic | WP Job Manager | - | - | 2026-02-19 08:27:04 | Deep Dive |
| CVE-2026-25005 | WordPress Frontend File Manager plugin <= 23.5 - Insecure Direct Object References (IDOR) vulnerability | N-Media | Frontend File Manager | - | - | 2026-02-19 08:26:52 | Deep Dive |
| CVE-2025-12975 | CTX Feed – WooCommerce Product Feed Manager <= 6.6.11 - Missing Authorization to Authenticated (Shop Manager+) Arbitrary Plugin Installation | wahid0003 | Product Feed Manager for WooCommerce – CTX Feed – Support 220+ Shopping & Social Channels | High | 7.2 | 2026-02-19 04:36:11 | Deep Dive |
| CVE-2026-0912 | Toret Manager <= 1.2.7 - Authenticated (Subscriber+) Arbitrary Options Update via AJAX actions | toret | Toret Manager | High | 8.8 | 2026-02-19 04:36:10 | Deep Dive |
| CVE-2025-13930 | Checkout Field Manager (Checkout Manager) for WooCommerce <= 7.8.5 - Missing Authorization to Unauthenticated Arbitrary Attachment Deletion | quadlayers | Checkout Field Manager (Checkout Manager) for WooCommerce | Medium | 5.3 | 2026-02-19 04:36:09 | Deep Dive |
| CVE-2025-12500 | Checkout Field Manager (Checkout Manager) for WooCommerce <= 7.8.1 - Unauthenticated Limited File Upload | quadlayers | Checkout Field Manager (Checkout Manager) for WooCommerce | Medium | 5.3 | 2026-02-19 03:25:20 | Deep Dive |
| CVE-2025-12884 | Advanced Ads – Ad Manager & AdSense <= 2.0.14 - Missing Authorization to Authenticated (Subscriber+) Ad Placements Update | monetizemore | Advanced Ads – Ad Manager & AdSense | Medium | 4.3 | 2026-02-19 03:25:17 | Deep Dive |
| CVE-2026-1666 | Download Manager <= 3.3.46 - Reflected Cross-Site Scripting via 'redirect_to' Parameter | codename065 | Download Manager | Medium | 6.1 | 2026-02-18 06:42:41 | Deep Dive |
| CVE-2026-1296 | Frontend Post Submission Manager Lite <= 1.2.7 - Unauthenticated Open Redirect via 'requested_page' Parameter | wpshuffle | Frontend Post Submission Manager Lite – Frontend Posting WordPress Plugin | Medium | 6.1 | 2026-02-18 04:35:44 | Deep Dive |
| CVE-2026-23599 | Local Privilege Escalation Vulnerability in HPE Aruba Networking Clear Pass Policy Manager OnGuard for Linux | Hewlett Packard Enterprise (HPE) | HPE Aruba Networking ClearPass Policy Manager | High | 7.8 | 2026-02-17 23:04:36 | Deep Dive |
| CVE-2025-33135 | IBM Financial Transaction Manager for ACH Services and Check Services is impacted by multiple vulnerabilities | IBM | Financial Transaction Manager for ACH Services and Check Services for Multi-Platform | Medium | 6.1 | 2026-02-17 21:37:06 | Deep Dive |
| CVE-2024-31118 | WordPress SP Project & Document Manager plugin <= 4.70 - Broken Access Control to XSS vulnerability | Smartypants | SP Project & Document Manager | Medium | 6.5 | 2026-02-17 15:04:26 | Deep Dive |
| CVE-2026-0829 | Frontend File Manager Plugin <= 23.5 - Unauthenticated Arbitrary Email Sending | Unknown | Frontend File Manager Plugin | - | - | 2026-02-17 06:00:07 | Deep Dive |
| CVE-2026-1905 | Sphere Manager <= 1.0.2 - Authenticated (Contributor+) Cross-Site Scripting via 'width' Shortcode Attribute | devmw | Sphere Manager | Medium | 6.4 | 2026-02-14 06:42:31 | Deep Dive |
| CVE-2026-1841 | PixelYourSite <= 11.2.0 - Unauthenticated Stored Cross-Site Scripting | pixelyoursite | PixelYourSite – Your smart PIXEL (TAG) & API Manager | High | 7.2 | 2026-02-13 21:23:05 | Deep Dive |
| CVE-2026-1844 | PixelYourSite PRO <= 12.4.0.2 - Unauthenticated Stored Cross-Site Scripting | pixelyoursite | PixelYourSite Pro – Your smart PIXEL (TAG) Manager | High | 7.2 | 2026-02-13 21:23:05 | Deep Dive |
| CVE-2025-14892 | Prime Listing Manager <= 1.1 - Unauthenticated Privilege Escalation | Unknown | Prime Listing Manager | - | - | 2026-02-12 06:00:06 | Deep Dive |