NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2026-27461	Pimcore is an Open Source Data & Experience Management Platform. In versions up to and including 11.5.14.1 and 12.3.2, the filter query parameter in t...	2026-02-24	4.9	NETWORK	MEDIUM	NVD
CVE-2026-3091	An uncontrolled search path element vulnerability in Synology Presto Client before 2.1.3-0672 allows local users to read or write arbitrary files duri...	2026-02-24	6.7	LOCAL	MEDIUM	NVD
CVE-2026-3065	A vulnerability was detected in HummerRisk up to 1.5.0. This affects the function CommandUtils.commonExecCmdWithResult of the file CloudTaskService.ja...	2026-02-24	6.3	NETWORK	MEDIUM	NVD
CVE-2026-3064	A security vulnerability has been detected in HummerRisk up to 1.5.0. Affected by this issue is some unknown functionality of the file ResourceCreateS...	2026-02-24	6.3	NETWORK	MEDIUM	NVD
CVE-2026-3057	A security flaw has been discovered in a54552239 pearProjectApi up to 2.8.10. Affected is the function dateTotalForProject of the file application/com...	2026-02-24	6.3	NETWORK	MEDIUM	NVD
CVE-2026-3054	A vulnerability was identified in Alinto SOGo 5.12.3/5.12.4. This impacts an unknown function. The manipulation of the argument hint leads to cross si...	2026-02-24	4.3	NETWORK	MEDIUM	NVD
CVE-2026-27129	Craft is a content management system (CMS). In versions 4.5.0-RC1 through 4.16.18 and 5.0.0-RC1 through 5.8.22, the SSRF validation in Craft CMS’s Gra...	2026-02-24	5.7	NETWORK	MEDIUM	NVD
CVE-2026-27128	Craft is a content management system (CMS). In versions 4.5.0-RC1 through 4.16.18 and 5.0.0-RC1 through 5.8.22, a Time-of-Check-Time-of-Use (TOCTOU) r...	2026-02-24	4.8	NETWORK	MEDIUM	NVD
CVE-2026-27127	Craft is a content management system (CMS). In versions 4.5.0-RC1 through 4.16.18 and 5.0.0-RC1 through 5.8.22, the SSRF validation in Craft CMS’s Gra...	2026-02-24	6.3	NETWORK	MEDIUM	NVD
CVE-2026-27126	Craft is a content management system (CMS). In versions 4.5.0-RC1 through 4.16.18 and 5.0.0-RC1 through 5.8.22, a stored Cross-site Scripting (XSS) vu...	2026-02-24	4.8	NETWORK	MEDIUM	NVD
CVE-2026-26983	ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, the MSL inter...	2026-02-24	5.3	NETWORK	MEDIUM	NVD
CVE-2026-26981	OpenEXR provides the specification and reference implementation of the EXR file format, an image storage format for the motion picture industry. In ve...	2026-02-24	6.5	NETWORK	MEDIUM	NVD
CVE-2026-26331	yt-dlp is a command-line audio/video downloader. Starting in version 2023.06.21 and prior to version 2026.02.21, when yt-dlp's `--netrc-cmd` command-l...	2026-02-24	8.8	NETWORK	HIGH	NVD
CVE-2026-26284	ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, ImageMagick l...	2026-02-24	6.5	NETWORK	MEDIUM	NVD
CVE-2026-26283	ImageMagick is free and open-source software used for editing and manipulating digital images. Prior to versions 7.1.2-15 and 6.9.13-40, a `continue` ...	2026-02-24	6.2	LOCAL	MEDIUM	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.