NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2026-3264	A vulnerability was determined in go2ismail Free-CRM up to b83c40a90726d5e58f0cc680ffdcaa28a03fb5d1. Affected by this issue is some unknown functional...	2026-02-26	6.3	NETWORK	MEDIUM	NVD
CVE-2026-28280	osctrl is an osquery management solution. Prior to version 0.5.0, a stored cross-site scripting (XSS) vulnerability exists in the `osctrl-admin` on-de...	2026-02-26	6.1	NETWORK	MEDIUM	NVD
CVE-2026-28279	osctrl is an osquery management solution. Prior to version 0.5.0, an OS command injection vulnerability exists in the `osctrl-admin` environment confi...	2026-02-26	7.3	ADJACENT_NETWORK	HIGH	NVD
CVE-2026-28276	Initiative is a self-hosted project management platform. An access control vulnerability exists in Initiative versions prior to 0.32.2 where uploaded ...	2026-02-26	7.5	NETWORK	HIGH	NVD
CVE-2026-28275	Initiative is a self-hosted project management platform. Versions of the application prior to 0.32.4 do not invalidate previously issued JWT access to...	2026-02-26	8.1	NETWORK	HIGH	NVD
CVE-2026-28274	Initiative is a self-hosted project management platform. Versions of the application prior to 0.32.4 are vulnerable to Stored Cross-Site Scripting (XS...	2026-02-26	8.7	NETWORK	HIGH	NVD
CVE-2026-28269	Kiteworks is a private data network (PDN). Prior to version 9.2.0, avulnerability in Kiteworks command execution functionality allows authenticated us...	2026-02-26	5.9	NETWORK	MEDIUM	NVD
CVE-2026-28230	SteVe is an open-source EV charging station management system. In versions up to and including 3.11.0, when a charger sends a StopTransaction message,...	2026-02-26	7.1	NETWORK	HIGH	NVD
CVE-2026-28226	Phishing Club is a phishing simulation and man-in-the-middle framework. Prior to version 1.30.2, an authenticated SQL injection vulnerability exists i...	2026-02-26	6.5	NETWORK	MEDIUM	NVD
CVE-2026-28225	Manyfold is an open source, self-hosted web application for managing a collection of 3d models, particularly focused on 3d printing. Prior to version ...	2026-02-26	5.3	NETWORK	MEDIUM	NVD
CVE-2026-28217	hoppscotch is an open source API development ecosystem. Prior to version 2026.2.0, the `userCollection` GraphQL query accepts an arbitrary collection ...	2026-02-26	6.5	NETWORK	MEDIUM	NVD
CVE-2026-28216	hoppscotch is an open source API development ecosystem. Prior to version 2026.2.0, any logged-in user can read, modify or delete another user's person...	2026-02-26	8.3	NETWORK	HIGH	NVD
CVE-2026-28215	hoppscotch is an open source API development ecosystem. Prior to version 2026.2.0, an unauthenticated attacker can overwrite the entire infrastructure...	2026-02-26	9.1	NETWORK	CRITICAL	NVD
CVE-2026-28213	EverShop is a TypeScript-first eCommerce platform. Versions prior to 2.1.1 have a vulnerability in the "Forgot Password" functionality. When specifyin...	2026-02-26	9.8	NETWORK	CRITICAL	NVD
CVE-2026-28211	The NVDA Dev & Test Toolbox is an NVDA add-on for gathering tools to help NVDA development and testing. A vulnerability exists in versions 2.0 through...	2026-02-26	7.8	LOCAL	HIGH	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.