🛡️ CVE Intelligence Center
Common Vulnerabilities & Exposures — Security Intelligence Database
| CVE ID | Severity | CVSS | Description | Status | Published |
|---|---|---|---|---|---|
| CVE-2026-22877 | Low | 3.7 |
An arbitrary file-read vulnerability exists in XWEB Pro version 1.12.1
and prior, enabling unauthenticated attackers to…
|
— | Feb 27, 2026 |
| CVE-2026-3293 | Low | 3.3 |
A weakness has been identified in snowflakedb snowflake-jdbc up to 4.0.1. Impacted is the function SdkProxyRoutePlanner …
|
— | Feb 27, 2026 |
| CVE-2026-3285 | Low | 3.3 |
A vulnerability was determined in berry-lang berry up to 1.1.0. The affected element is the function scan_string of the …
|
— | Feb 27, 2026 |
| CVE-2026-3284 | Low | 3.3 |
A vulnerability was found in libvips 8.19.0. Impacted is the function vips_extract_area_build of the file libvips/conver…
|
— | Feb 27, 2026 |
| CVE-2026-3283 | Low | 3.3 |
A vulnerability has been found in libvips 8.19.0. This issue affects the function vips_extract_band_build of the file li…
|
— | Feb 27, 2026 |
| CVE-2026-3282 | Low | 3.3 |
A flaw has been found in libvips 8.19.0. This vulnerability affects the function vips_unpremultiply_build of the file li…
|
— | Feb 27, 2026 |
| CVE-2025-12150 | Low | 3.1 |
A flaw was found in Keycloak’s WebAuthn registration component. This vulnerability allows an attacker to bypass the conf…
|
— | Feb 27, 2026 |
| CVE-2026-22717 | Low | 2.7 |
Out-of-bound read vulnerability in VMware Workstation 25H1 and below on any platform allows an actor with non-administra…
|
— | Feb 27, 2026 |
| CVE-2026-27150 | Low | 3.8 |
Discourse is an open source discussion platform. Prior to versions 2025.12.2, 2026.1.1, and 2026.2.0, missing `validate_…
|
— | Feb 26, 2026 |
| CVE-2026-27152 | Low | 3.8 |
Discourse is an open source discussion platform. Prior to versions 2025.12.2, 2026.1.1, and 2026.2.0, DM communication-p…
|
— | Feb 26, 2026 |
| CVE-2026-23747 | Low | 3.7 |
Golioth Firmware SDK version 0.10.0 prior to 0.22.0, fixed in commit 48f521b, contain a stack-based buffer overflow in P…
|
— | Feb 26, 2026 |
| CVE-2026-23748 | Low | 3.7 |
Golioth Firmware SDK version 0.10.0 prior to 0.22.0, fixed in commit d7f55b38, contain an out-of-bounds read in LightDB …
|
— | Feb 26, 2026 |
| CVE-2026-26227 | Low | 3.7 |
VideoLAN VLC for Android prior to version 3.7.0 contains an authentication bypass in the Remote Access Server feature du…
|
— | Feb 26, 2026 |
| CVE-2026-27838 | Low | 3.1 |
wger is a free, open-source workout and fitness manager. Five routine detail action endpoints check a cache before calli…
|
⚡ Exploit ✅ Patch | Feb 26, 2026 |
| CVE-2026-23749 | Low | 2.9 |
Golioth Firmware SDK version 0.19.1 prior to 0.22.0, fixed in commit 0e788217, contain an out-of-bounds read due to impr…
|
— | Feb 26, 2026 |
| CVE-2026-27151 | Low | 2.7 |
Discourse is an open source discussion platform. Prior to versions 2025.12.2, 2026.1.1, and 2026.2.0, the `move_posts` a…
|
— | Feb 26, 2026 |
| CVE-2026-26979 | Low | 2.7 |
Discourse is an open source discussion platform. Prior to versions 2025.12.2, 2026.1.1, and 2026.2.0, TL4 users are able…
|
— | Feb 26, 2026 |
| CVE-2026-28227 | Low | 2.7 |
Discourse is an open source discussion platform. Prior to versions 2025.12.2, 2026.1.1, and 2026.2.0, TL4 users can publ…
|
— | Feb 26, 2026 |
| CVE-2026-27153 | Low | 2.7 |
Discourse is an open source discussion platform. Prior to versions 2025.12.2, 2026.1.1, and 2026.2.0, moderators could e…
|
— | Feb 26, 2026 |
| CVE-2026-2946 | Low | 3.5 |
A security vulnerability has been detected in rymcu forest up to 0.0.5. Affected by this issue is the function XssUtils.…
|
⚡ Exploit | Feb 22, 2026 |