NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2026-27959	Koa is middleware for Node.js using ES2017 async functions. Prior to versions 3.1.2 and 2.16.4, Koa's `ctx.hostname` API performs naive parsing of the...	2026-02-26	7.5	NETWORK	HIGH	NVD
CVE-2026-27954	Live Helper Chat is an open-source application that enables live support websites. In versions up to and including 4.52, three chat action endpoints ...	2026-02-26	6.5	NETWORK	MEDIUM	NVD
CVE-2026-27952	Agenta is an open-source LLMOps platform. In Agenta-API prior to version 0.48.1, a Python sandbox escape vulnerability existed in Agenta's custom code...	2026-02-26	8.8	NETWORK	HIGH	NVD
CVE-2026-27948	Copyparty is a portable file server. In versions prior to 1.20.9, an XSS allows for reflected cross-site scripting via URL-parameter `?setck=...`. Ver...	2026-02-26	5.4	NETWORK	MEDIUM	NVD
CVE-2026-27943	OpenEMR is a free and open source electronic health records and medical practice management application. In versions up to and including 8.0.0, the ey...	2026-02-26	6.5	NETWORK	MEDIUM	NVD
CVE-2026-27942	fast-xml-parser allows users to validate XML, parse XML to JS object, or build XML from JS object without C/C++ based libraries and no callback. Prior...	2026-02-26	7.5	NETWORK	HIGH	NVD
CVE-2026-27941	OpenLIT is an open source platform for AI engineering. Prior to version 1.37.1, several GitHub Actions workflows in OpenLIT's GitHub repository use th...	2026-02-26	9.9	NETWORK	CRITICAL	NVD
CVE-2026-27938	WPGraphQL provides a GraphQL API for WordPress sites. Prior to version 2.9.1, the `wp-graphql/wp-graphql` repository contains a GitHub Actions workflo...	2026-02-26	7.7	NETWORK	HIGH	NVD
CVE-2026-27904	minimatch is a minimal matching utility for converting glob expressions into JavaScript RegExp objects. Prior to version 10.2.3, 9.0.7, 8.0.6, 7.4.8, ...	2026-02-26	7.5	NETWORK	HIGH	NVD
CVE-2026-27903	minimatch is a minimal matching utility for converting glob expressions into JavaScript RegExp objects. Prior to version 10.2.3, 9.0.7, 8.0.6, 7.4.8, ...	2026-02-26	7.5	NETWORK	HIGH	NVD
CVE-2026-27902	Svelte performance oriented web framework. Prior to version 5.53.5, errors from `transformError` were not correctly escaped prior to being embedded in...	2026-02-26	5.3	NETWORK	MEDIUM	NVD
CVE-2026-27901	Svelte performance oriented web framework. Prior to version 5.53.5, the contents of `bind:innerText` and `bind:textContent` on `contenteditable` eleme...	2026-02-26	5.3	NETWORK	MEDIUM	NVD
CVE-2026-27900	The Terraform Provider for Linode versions prior to v3.9.0 logged sensitive information including some passwords, StackScript content, and object stor...	2026-02-26	5.0	NETWORK	MEDIUM	NVD
CVE-2026-27899	WireGuard Portal (or wg-portal) is a web-based configuration portal for WireGuard server management. Prior to version 2.1.3, any authenticated non-adm...	2026-02-26	8.8	NETWORK	HIGH	NVD
CVE-2026-27887	Spin is an open source developer tool for building and running serverless applications powered by WebAssembly. When Spin is configured to allow connec...	2026-02-26	6.9	NETWORK	MEDIUM	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.