NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2026-28418	Vim is an open source, command line text editor. Prior to version 9.2.0074, a heap-based buffer overflow out-of-bounds read exists in Vim's Emacs-styl...	2026-02-27	4.4	LOCAL	MEDIUM	NVD
CVE-2026-28417	Vim is an open source, command line text editor. Prior to version 9.2.0073, an OS command injection vulnerability exists in the `netrw` standard plugi...	2026-02-27	4.4	LOCAL	MEDIUM	NVD
CVE-2026-28416	Gradio is an open-source Python package designed for quick prototyping. Prior to version 6.6.0, a Server-Side Request Forgery (SSRF) vulnerability in ...	2026-02-27	8.2	NETWORK	HIGH	NVD
CVE-2026-28415	Gradio is an open-source Python package designed for quick prototyping. Prior to version 6.6.0, the _redirect_to_target() function in Gradio's OAuth f...	2026-02-27	4.3	NETWORK	MEDIUM	NVD
CVE-2026-28414	Gradio is an open-source Python package designed for quick prototyping. Prior to version 6.7, Gradio apps running on Window with Python 3.13+ are vuln...	2026-02-27	7.5	NETWORK	HIGH	NVD
CVE-2026-28411	WeGIA is a web manager for charitable institutions. Prior to version 3.6.5, an unsafe use of the `extract()` function on the `$_REQUEST` superglobal a...	2026-02-27	9.8	NETWORK	CRITICAL	NVD
CVE-2026-28409	WeGIA is a web manager for charitable institutions. Prior to version 3.6.5, a critical Remote Code Execution (RCE) vulnerability exists in the WeGIA a...	2026-02-27	10.0	NETWORK	CRITICAL	NVD
CVE-2026-28408	WeGIA is a web manager for charitable institutions. Prior to version 3.6.5, the script in adicionar_tipo_docs_atendido.php does not go through the pro...	2026-02-27	9.8	NETWORK	CRITICAL	NVD
CVE-2026-28407	malcontent is software for discovering supply-chain compromises through context, differential analysis, and YARA. Prior to version 1.21.0, malcontent ...	2026-02-27	6.9	NETWORK	MEDIUM	NVD
CVE-2026-28406	kaniko is a tool to build container images from a Dockerfile, inside a container or Kubernetes cluster. Starting in version 1.25.4 and prior to versio...	2026-02-27	8.2	NETWORK	HIGH	NVD
CVE-2026-28402	nimiq/core-rs-albatross is a Rust implementation of the Nimiq Proof-of-Stake protocol based on the Albatross consensus algorithm. Prior to version 1.2...	2026-02-27	7.1	NETWORK	HIGH	NVD
CVE-2026-28400	Docker Model Runner (DMR) is software used to manage, run, and deploy AI models using Docker. Versions prior to 1.0.16 expose a POST `/engines/_confi...	2026-02-27	7.5	LOCAL	HIGH	NVD
CVE-2026-27939	Statmatic is a Laravel and Git powered content management system (CMS). Starting in version 6.0.0 and prior to version 6.4.0, Authenticated Control Pa...	2026-02-27	8.8	NETWORK	HIGH	NVD
CVE-2026-27167	Gradio is an open-source Python package designed for quick prototyping. Starting in version 4.16.0 and prior to version 6.6.0, Gradio applications run...	2026-02-27	N/A	NETWORK	NONE	NVD
CVE-2026-28355	Canarytokens help track activity and actions on a network. Versions prior to `sha-7ff0e12` have a Self Cross-Site Scripting vulnerability in the "PWA"...	2026-02-27	1.3	NETWORK	LOW	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.