NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2026-27624	Coturn is a free open source implementation of TURN and STUN Server. Coturn is commonly configured to block loopback and internal ranges using "denied...	2026-02-25	7.2	NETWORK	HIGH	NVD
CVE-2025-0976	Information Exposure Vulnerability in Hitachi Ops Center API Configuration Manager, Hitachi Configuration Manager.This issue affects Hitachi Ops Cente...	2026-02-25	4.7	LOCAL	MEDIUM	NVD
CVE-2026-3147	A vulnerability was found in libvips up to 8.18.0. This affects the function vips_foreign_load_csv_build of the file libvips/foreign/csvload.c. The ma...	2026-02-25	5.3	LOCAL	MEDIUM	NVD
CVE-2026-27747	The SPIP interface_traduction_objets plugin versions prior to 2.2.2 contain an authenticated SQL injection vulnerability in interface_traduction_objet...	2026-02-25	6.5	NETWORK	MEDIUM	NVD
CVE-2026-27746	The SPIP jeux plugin versions prior to 4.1.1 contain a reflected cross-site scripting (XSS) vulnerability in the pre_propre pipeline. The plugin incor...	2026-02-25	6.1	NETWORK	MEDIUM	NVD
CVE-2026-27745	The SPIP interface_traduction_objets plugin versions prior to 2.2.2 contain an authenticated remote code execution vulnerability in the translation in...	2026-02-25	8.8	NETWORK	HIGH	NVD
CVE-2026-27744	The SPIP tickets plugin versions prior to 4.3.3 contain an unauthenticated remote code execution vulnerability in the forum preview handling for publi...	2026-02-25	9.8	NETWORK	CRITICAL	NVD
CVE-2026-27743	The SPIP referer_spam plugin versions prior to 1.3.0 contain an unauthenticated SQL injection vulnerability in the referer_spam_ajouter and referer_sp...	2026-02-25	9.8	NETWORK	CRITICAL	NVD
CVE-2026-27641	Flask-Reuploaded provides file uploads for Flask. A critical path traversal and extension bypass vulnerability in versions prior to 1.5.0 allows remot...	2026-02-25	9.8	NETWORK	CRITICAL	NVD
CVE-2026-27640	tfplan2md is software for converting Terraform plan JSON files into human-readable Markdown reports. Prior to version 1.26.1, a bug in tfplan2md affec...	2026-02-25	7.5	NETWORK	HIGH	NVD
CVE-2026-27639	Mercator is an open source web application designed to enable mapping of information systems. A stored Cross-Site Scripting (XSS) vulnerability exists...	2026-02-25	5.4	NETWORK	MEDIUM	NVD
CVE-2026-27637	FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.206, FreeScout's `TokenAuth` middleware uses a...	2026-02-25	9.8	NETWORK	CRITICAL	NVD
CVE-2026-27636	FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.206, FreeScout's file upload restriction list ...	2026-02-25	8.8	NETWORK	HIGH	NVD
CVE-2026-27627	Karakeep is a elf-hostable bookmark-everything app. In version 0.30.0, when the Reddit metascraper plugin returns `readableContentHtml`, the HTML pars...	2026-02-25	8.2	NETWORK	HIGH	NVD
CVE-2026-27597	Enclave is a secure JavaScript sandbox designed for safe AI agent code execution. Prior to version 2.11.1, it is possible to escape the security bound...	2026-02-25	10.0	NETWORK	CRITICAL	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.