NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2026-3149	A weakness has been identified in itsourcecode College Management System 1.0. Affected by this issue is some unknown functionality of the file /admin/...	2026-02-25	6.3	NETWORK	MEDIUM	NVD
CVE-2026-3148	A vulnerability was determined in SourceCodester Simple and Nice Shopping Cart Script 1.0. This impacts an unknown function of the file /signup.php. T...	2026-02-25	7.3	NETWORK	HIGH	NVD
CVE-2026-27696	changedetection.io is a free open source web page change detection tool. In versions prior to 0.54.1, changedetection.io is vulnerable to Server-Side ...	2026-02-25	8.6	NETWORK	HIGH	NVD
CVE-2026-27645	changedetection.io is a free open source web page change detection tool. In versions prior to 0.54.1, the RSS single-watch endpoint reflects the UUID ...	2026-02-25	6.1	NETWORK	MEDIUM	NVD
CVE-2026-27624	Coturn is a free open source implementation of TURN and STUN Server. Coturn is commonly configured to block loopback and internal ranges using "denied...	2026-02-25	7.2	NETWORK	HIGH	NVD
CVE-2025-0976	Information Exposure Vulnerability in Hitachi Ops Center API Configuration Manager, Hitachi Configuration Manager.This issue affects Hitachi Ops Cente...	2026-02-25	4.7	LOCAL	MEDIUM	NVD
CVE-2026-3147	A vulnerability was found in libvips up to 8.18.0. This affects the function vips_foreign_load_csv_build of the file libvips/foreign/csvload.c. The ma...	2026-02-25	5.3	LOCAL	MEDIUM	NVD
CVE-2026-27747	The SPIP interface_traduction_objets plugin versions prior to 2.2.2 contain an authenticated SQL injection vulnerability in interface_traduction_objet...	2026-02-25	6.5	NETWORK	MEDIUM	NVD
CVE-2026-27746	The SPIP jeux plugin versions prior to 4.1.1 contain a reflected cross-site scripting (XSS) vulnerability in the pre_propre pipeline. The plugin incor...	2026-02-25	6.1	NETWORK	MEDIUM	NVD
CVE-2026-27745	The SPIP interface_traduction_objets plugin versions prior to 2.2.2 contain an authenticated remote code execution vulnerability in the translation in...	2026-02-25	8.8	NETWORK	HIGH	NVD
CVE-2026-27744	The SPIP tickets plugin versions prior to 4.3.3 contain an unauthenticated remote code execution vulnerability in the forum preview handling for publi...	2026-02-25	9.8	NETWORK	CRITICAL	NVD
CVE-2026-27743	The SPIP referer_spam plugin versions prior to 1.3.0 contain an unauthenticated SQL injection vulnerability in the referer_spam_ajouter and referer_sp...	2026-02-25	9.8	NETWORK	CRITICAL	NVD
CVE-2026-27641	Flask-Reuploaded provides file uploads for Flask. A critical path traversal and extension bypass vulnerability in versions prior to 1.5.0 allows remot...	2026-02-25	9.8	NETWORK	CRITICAL	NVD
CVE-2026-27640	tfplan2md is software for converting Terraform plan JSON files into human-readable Markdown reports. Prior to version 1.26.1, a bug in tfplan2md affec...	2026-02-25	7.5	NETWORK	HIGH	NVD
CVE-2026-27639	Mercator is an open source web application designed to enable mapping of information systems. A stored Cross-Site Scripting (XSS) vulnerability exists...	2026-02-25	5.4	NETWORK	MEDIUM	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.