NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2025-13673	The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to SQL Injection via the 'coupon_code' parameter in all versio...	2026-02-28	7.5	NETWORK	HIGH	NVD
CVE-2026-2471	The WP Mail Logging plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 1.15.0 via deserialization of unt...	2026-02-28	7.5	NETWORK	HIGH	NVD
CVE-2026-1542	The Super Stage WP WordPress plugin through 1.0.1 unserializes user input via REQUEST, which could allow unauthenticated users to perform PHP Object I...	2026-02-28	N/A	None	None	NVD
CVE-2026-28517	openDCIM version 23.04, through commit 4467e9c4, contains an OS command injection vulnerability in report_network_map.php. The application retrieves t...	2026-02-27	9.3	NETWORK	CRITICAL	NVD
CVE-2026-28516	openDCIM version 23.04, through commit 4467e9c4, contains a SQL injection vulnerability in Config::UpdateParameter. The install.php and container-inst...	2026-02-27	9.3	NETWORK	CRITICAL	NVD
CVE-2026-28515	openDCIM version 23.04, through commit 4467e9c4, contains a missing authorization vulnerability in install.php and container-install.php. The installe...	2026-02-27	9.3	NETWORK	CRITICAL	NVD
CVE-2026-28426	Statmatic is a Laravel and Git powered content management system (CMS). Prior to versions 5.73.11 and 6.4.0, stored XSS vulnerability in svg and icon ...	2026-02-27	8.7	NETWORK	HIGH	NVD
CVE-2026-28425	Statmatic is a Laravel and Git powered content management system (CMS). Prior to versions 5.73.11 and 6.4.0, an authenticated control panel user with ...	2026-02-27	8.0	NETWORK	HIGH	NVD
CVE-2026-28424	Statmatic is a Laravel and Git powered content management system (CMS). Prior to versions 5.73.11 and 6.4.0, user email addresses were included in res...	2026-02-27	6.5	NETWORK	MEDIUM	NVD
CVE-2026-28423	Statmatic is a Laravel and Git powered content management system (CMS). Prior to versions 5.73.11 and 6.4.0, when Glide image manipulation is used in ...	2026-02-27	6.8	NETWORK	MEDIUM	NVD
CVE-2026-27759	Featured Image from Content (featured-image-from-content) WordPress plugin versions prior to 1.7 contain an authenticated server-side request forgery ...	2026-02-27	5.3	NETWORK	MEDIUM	NVD
CVE-2026-28422	Vim is an open source, command line text editor. Prior to version 9.2.0078, a stack-buffer-overflow occurs in `build_stl_str_hl()` when rendering a st...	2026-02-27	2.2	LOCAL	LOW	NVD
CVE-2026-28421	Vim is an open source, command line text editor. Versions prior to 9.2.0077 have a heap-buffer-overflow and a segmentation fault (SEGV) exist in Vim's...	2026-02-27	5.3	LOCAL	MEDIUM	NVD
CVE-2026-28420	Vim is an open source, command line text editor. Prior to version 9.2.0076, a heap-based buffer overflow WRITE and an out-of-bounds READ exist in Vim'...	2026-02-27	4.4	LOCAL	MEDIUM	NVD
CVE-2026-28419	Vim is an open source, command line text editor. Prior to version 9.2.0075, a heap-based buffer underflow exists in Vim's Emacs-style tags file parsin...	2026-02-27	5.3	LOCAL	MEDIUM	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.