NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2026-1697	The Secure and SameSite attribute are missing in the GraphicalData web services and WebClient web app of PcVue in version 12.0.0 through 16.3.3 includ...	2026-02-26	5.3	NETWORK	MEDIUM	NVD
CVE-2026-1696	Some HTTP security headers are not properly set by the web server when sending responses to the client application.	2026-02-26	2.3	NETWORK	LOW	NVD
CVE-2026-1695	An XSS vulnerability affects the OAuth web services used by the WebVue, WebScheduler, TouchVue and SnapVue features of PcVue in version 12.0.0 through...	2026-02-26	5.3	NETWORK	MEDIUM	NVD
CVE-2026-1694	HTTP headers are added by the default configuration of IIS and ASP.net, and are not removed at the deployment phase of the webservices used by the Web...	2026-02-26	2.3	NETWORK	LOW	NVD
CVE-2026-1693	The OAuth grant type Resource Owner Password Credentials (ROPC) flow is still used by the werbservices used by the WebVue, WebScheduler, TouchVue and ...	2026-02-26	5.3	NETWORK	MEDIUM	NVD
CVE-2026-1692	A missing origin validation in WebSockets vulnerability affects the GraphicalData web services used by the WebVue, WebScheduler, TouchVue and SnapVue ...	2026-02-26	5.3	NETWORK	MEDIUM	NVD
CVE-2026-25191	The installer of FinalCode Client provided by Digital Arts Inc. contains an issue with the DLL search path. If a user is directed to place a malicious...	2026-02-26	8.4	LOCAL	HIGH	NVD
CVE-2026-23703	The installer of FinalCode Client provided by Digital Arts Inc. contains an incorrect default permissions vulnerability. A non-administrative user may...	2026-02-26	8.5	LOCAL	HIGH	NVD
CVE-2026-1311	The Worry Proof Backup plugin for WordPress is vulnerable to Path Traversal in all versions up to, and including, 0.2.4 via the backup upload function...	2026-02-26	8.8	NETWORK	HIGH	NVD
CVE-2026-2356	The User Registration & Membership – Custom Registration Form, Login Form, and User Profile plugin for WordPress is vulnerable to Insecure Direct Obje...	2026-02-26	5.3	NETWORK	MEDIUM	NVD
CVE-2026-27975	Ajenti is a Linux and BSD modular server admin panel. Prior to version 2.2.13, an unauthenticated user could gain access to a server to execute arbitr...	2026-02-26	8.1	NETWORK	HIGH	NVD
CVE-2026-27974	Audiobookshelf is a self-hosted audiobook and podcast server. A cross-site scripting (XSS) vulnerability exists in versions prior to 0.12.0-beta of th...	2026-02-26	4.8	NETWORK	MEDIUM	NVD
CVE-2026-27963	Audiobookshelf is a self-hosted audiobook and podcast server. A stored cross-site scripting (XSS) vulnerability exists in versions prior to 2.32.0 of ...	2026-02-26	4.8	NETWORK	MEDIUM	NVD
CVE-2026-27465	Fleet is open source device management software. In versions prior to 4.80.1, a vulnerability in Fleet’s configuration API could expose Google Calenda...	2026-02-26	1.3	NETWORK	LOW	NVD
CVE-2026-25963	Fleet is open source device management software. In versions prior to 4.80.1, a broken authorization check in Fleet’s certificate template deletion AP...	2026-02-26	6.5	NETWORK	MEDIUM	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.