NVD Vulnerabilities

Severity Distribution

Publication Trend

Vulnerability Database

CVE ID	Description	Published	Base Score	Attack Vector	Severity	Actions
CVE-2026-3075	Exposure of Sensitive System Information to an Unauthorized Control Sphere vulnerability in Jeff Starr Simple Ajax Chat simple-ajax-chat allows Retrie...	2026-02-23	5.3	NETWORK	MEDIUM	NVD
CVE-2026-3027	A vulnerability was found in erzhongxmu JEEWMS up to 3.7. This affects an unknown part of the file src/main/webapp/plug-in/ueditor/jsp/getContent.jsp ...	2026-02-23	4.3	NETWORK	MEDIUM	NVD
CVE-2026-3026	A vulnerability has been found in erzhongxmu JEEWMS 3.7. Affected by this issue is some unknown functionality of the file /plug-in/ueditor/jsp/getRemo...	2026-02-23	7.3	NETWORK	HIGH	NVD
CVE-2026-3025	A flaw has been found in ShuoRen Smart Heating Integrated Management Platform 1.0.0. Affected by this vulnerability is an unknown functionality of the...	2026-02-23	7.3	NETWORK	HIGH	NVD
CVE-2026-25648	Versions of the Traccar open-source GPS tracking system starting with 6.11.1 contain an issue in which authenticated users can execute arbitrary JavaS...	2026-02-23	8.7	NETWORK	HIGH	NVD
CVE-2026-23694	Aruba HiSpeed Cache (aruba-hispeed-cache) WordPress plugin versions prior to 3.0.5 contain a cross-site request forgery (CSRF) vulnerability affecting...	2026-02-23	5.1	NETWORK	MEDIUM	NVD
CVE-2026-23693	ElementsKit Elementor Addons – Advanced Widgets & Templates Addons for Elementor (elementskit-lite) WordPress plugin versions prior to 3.7.9 expose th...	2026-02-23	10.0	NETWORK	CRITICAL	NVD
CVE-2026-23521	Versions of the Traccar open-source GPS tracking system up to and including 6.11.1 contain an issue in which authenticated users who can create or edi...	2026-02-23	6.5	NETWORK	MEDIUM	NVD
CVE-2025-71056	Improper session management in GCOM EPON 1GE ONU version C00R371V00B01 allows attackers to execute a session hijacking attack via spoofing the IP addr...	2026-02-23	8.1	NETWORK	HIGH	NVD
CVE-2025-70328	TOTOLINK X6000R v9.4.0cu.1498_B20250826 contains an OS command injection vulnerability in the NTPSyncWithHost handler of the /usr/sbin/shttpd executab...	2026-02-23	8.8	NETWORK	HIGH	NVD
CVE-2025-70327	TOTOLINK X5000R v9.1.0cu_2415_B20250515 contains an argument injection vulnerability in the setDiagnosisCfg handler of the /usr/sbin/lighttpd executab...	2026-02-23	9.8	NETWORK	CRITICAL	NVD
CVE-2025-68930	Versions of the Traccar open-source GPS tracking system up to and including 6.11.1 contain a Cross-Site WebSocket Hijacking (CSWSH) vulnerability in t...	2026-02-23	7.1	NETWORK	HIGH	NVD
CVE-2026-27623	Valkey is a distributed key-value database. Starting in version 9.0.0 and prior to version 9.0.3, a malicious actor with network access to Valkey can ...	2026-02-23	7.5	NETWORK	HIGH	NVD
CVE-2026-21863	Valkey is a distributed key-value database. Prior to versions 9.0.2, 8.1.6, 8.0.7, and 7.2.12, a malicious actor with access to the Valkey clusterbus ...	2026-02-23	7.5	NETWORK	HIGH	NVD
CVE-2025-70329	TOTOLink X5000R v9.1.0cu_2415_B20250515 contains an OS command injection vulnerability in the setIptvCfg handler of the /usr/sbin/lighttpd executable....	2026-02-23	8.0	ADJACENT_NETWORK	HIGH	NVD

Loading vulnerability details...

Description

EPSS Score

N/A

Exploit Prediction Scoring System

Dates

Published:

Last Modified:

CVSS v3.1 metrics not available for this vulnerability.

CVSS v4.0 metrics not available for this vulnerability.

CVSS v2.0 metrics not available for this vulnerability.

Weakness Information (CWE)

No CWE information available for this vulnerability.

Affected Products

No affected product information available for this vulnerability.

References

No references available for this vulnerability.