📅 Weekly CVE Roundup
February 9 - February 15, 2026
🔴 Critical & High Severity Vulnerabilities
These are the most dangerous vulnerabilities disclosed this week. Prioritize patching these.
This SQL injection vulnerability in code-projects Online Reviewer System 1.0 allows attackers to manipulate database queries through the ID parameter ...
Feb 9This SQL injection vulnerability in code-projects Online Reviewer System 1.0 allows attackers to manipulate database queries through the test_id param...
Feb 9This SQL injection vulnerability in code-projects Online Reviewer System 1.0 allows remote attackers to execute arbitrary SQL commands via the test_id...
Feb 9This SQL injection vulnerability in code-projects Online Reviewer System 1.0 allows attackers to manipulate database queries through the difficulty_id...
Feb 9This CVE describes a SQL injection vulnerability in code-projects Online Reviewer System 1.0. Attackers can remotely exploit the user-delete.php file ...
Feb 9🐛 Common Vulnerability Types
📋 All CVEs This Week
This SQL injection vulnerability in code-projects Online Reviewer System 1.0 allows attackers to manipulate database que...
This SQL injection vulnerability in code-projects Online Reviewer System 1.0 allows attackers to manipulate database que...
This SQL injection vulnerability in code-projects Online Reviewer System 1.0 allows remote attackers to execute arbitrar...
This SQL injection vulnerability in code-projects Online Reviewer System 1.0 allows attackers to manipulate database que...
This CVE describes a SQL injection vulnerability in code-projects Online Reviewer System 1.0. Attackers can remotely exp...
This CVE describes a command injection vulnerability in D-Link DI-7100G C1 routers that allows remote attackers to execu...
This vulnerability allows remote attackers to inject malicious scripts via the /admin/admin/save API endpoint in heyewei...
This CVE describes a cross-site scripting (XSS) vulnerability in ZeroWdd studentmanager's leave request functionality. A...
