NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2026-27730	esm.sh is a no-build content delivery network (CDN) for web development. Versions up to and including 137 have an SSRF vulnerability (CWE-918) in esm....	2026-02-25	7.5	NETWORK	HIGH	NVD
CVE-2026-27704	The Dart and Flutter SDKs provide software development kits for the Dart programming language. In versions of the Dart SDK prior to 3.11.0 and the Flu...	2026-02-25	6.6	NETWORK	MEDIUM	NVD
CVE-2026-27702	Budibase is a low code platform for creating internal tools, workflows, and admin panels. Prior to version 3.30.4, an unsafe `eval()` vulnerability in...	2026-02-25	9.9	NETWORK	CRITICAL	NVD
CVE-2026-27701	LiveCode is an open-source, client-side code playground. Prior to commit e151c64c2bd80d2d53ac1333f1df9429fe6a1a11, LiveCode's `i18n-update-pull` GitHu...	2026-02-25	8.8	NETWORK	HIGH	NVD
CVE-2026-27700	Hono is a Web application framework that provides support for any JavaScript runtime. In versions 4.12.0 and 4.12.1, when using the AWS Lambda adapter...	2026-02-25	8.2	NETWORK	HIGH	NVD
CVE-2026-22866	Ethereum Name Service (ENS) is a distributed, open, and extensible naming system based on the Ethereum blockchain. In versions 1.6.2 and prior, the `R...	2026-02-25	2.7	NETWORK	LOW	NVD
CVE-2025-69771	An arbitrary file upload vulnerability in the subtitle loading function of asbplayer v1.13.0 allows attackers to execute arbitrary code via uploading ...	2026-02-25	9.6	NETWORK	CRITICAL	NVD
CVE-2025-50180	esm.sh is a no-build content delivery network (CDN) for web development. In version 136, esm.sh is vulnerable to a full-response SSRF, allowing an att...	2026-02-25	7.5	NETWORK	HIGH	NVD
CVE-2025-1242	The administrative credentials can be extracted through application API responses, mobile application reverse engineering, and device firmware reverse...	2026-02-25	9.1	NETWORK	CRITICAL	NVD
CVE-2026-3203	RF4CE Profile protocol dissector crash in Wireshark 4.6.0 to 4.6.3 and 4.4.0 to 4.4.13 allows denial of service	2026-02-25	5.5	LOCAL	MEDIUM	NVD
CVE-2026-3202	NTS-KE protocol dissector crash in Wireshark 4.6.0 to 4.6.3 allows denial of service	2026-02-25	4.7	LOCAL	MEDIUM	NVD
CVE-2026-3201	USB HID protocol dissector memory exhaustion in Wireshark 4.6.0 to 4.6.3 and 4.4.0 to 4.4.13 allows denial of service	2026-02-25	4.7	LOCAL	MEDIUM	NVD
CVE-2026-3187	A vulnerability was identified in feiyuchuixue sz-boot-parent up to 1.3.2-beta. Affected by this issue is some unknown functionality of the file /api/...	2026-02-25	6.3	NETWORK	MEDIUM	NVD
CVE-2026-2878	In Progress® Telerik® UI for AJAX, versions prior to 2026.1.225, an insufficient entropy vulnerability exists in RadAsyncUpload, where a predictable t...	2026-02-25	5.3	NETWORK	MEDIUM	NVD
CVE-2026-27699	The `basic-ftp` FTP client library for Node.js contains a path traversal vulnerability (CWE-22) in versions prior to 5.2.0 in the `downloadToDir()` me...	2026-02-25	9.1	NETWORK	CRITICAL	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.