CVSS: 8.6EPSS: %CPEs: -EXPL: 0CVE-2026-0847 – Path Traversal in nltk/nltk
https://notcve.org/view.php?id=CVE-2026-0847
04 Mar 2026 — A vulnerability in NLTK versions up to and including 3.9.2 allows arbitrary file read via path traversal in multiple CorpusReader classes, including WordListCorpusReader, TaggedCorpusReader, and BracketParseCorpusReader. ... Exploitation of this vulnerability can lead to unauthorized access to sensitive files, including system files, SSH private keys, and API tokens, and may potentially escalate to remote code execution when combined with other vulnerabilities. • https://huntr.com/bounties/fc69914f-36a9-4c18-8503-10013b39f966 • CWE-22: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') •
CVSS: 10.0EPSS: %CPEs: 71EXPL: 0CVE-2026-20131
https://notcve.org/view.php?id=CVE-2026-20131
04 Mar 2026 — A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software could allow an unauthenticated, remote attacker to execute arbitrary Java code as root on an affected device. ... A successful exploit could allow the attacker to execute arbitrary code on the device and elevate privileges to root. • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-rce-NKhnULJh • CWE-502: Deserialization of Untrusted Data •
CVSS: 6.0EPSS: %CPEs: 222EXPL: 0CVE-2026-20008 – Cisco Secure Firewall Adaptive Security Appliance and Secure Firewall Threat Defense Software Lua Code Injection Vulnerability
https://notcve.org/view.php?id=CVE-2026-20008
04 Mar 2026 — A vulnerability in a small subset of CLI commands that are used on Cisco Secure Firewall Adaptive Security Appliance (ASA) Software and Cisco Secure Firewall Threat Defense (FTD) Software could allow an authenticated, local attacker to craft Lua code that could be used on the underlying operating system as root. ... An attacker could exploit this vulnerability by crafting valid Lua code and submitting it as a malicious parameter for a CLI command. A successful exploit could allow the atta... • https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-asaftd-luainject-VescqgmS • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 8.6EPSS: %CPEs: 2EXPL: 0CVE-2026-28784 – Craft is affected by potential authenticated Remote Code Execution via Twig SSTI
https://notcve.org/view.php?id=CVE-2026-28784
04 Mar 2026 — Prior to 5.8.22 and 4.16.18, it is possible to craft a malicious payload using the Twig map filter in text fields that accept Twig input under Settings in the Craft control panel or using the System Messages utility, which could lead to a RCE. For this to work, you must have administrator access to the Craft Control Panel, and allowAdminChanges must be enabled for this to work, which is against our recommendations for any non-dev environment. • https://craftcms.com/knowledge-base/securing-craft#set-allowAdminChanges-to-false-in-production • CWE-1336: Improper Neutralization of Special Elements Used in a Template Engine •
CVSS: 9.4EPSS: %CPEs: 2EXPL: 0CVE-2026-28783 – Craft has a Twig Function Blocklist Bypass
https://notcve.org/view.php?id=CVE-2026-28783
04 Mar 2026 — Several PHP functions are not included in the blocklist, which could allow malicious actors with the required permissions to execute various types of payloads, including RCEs, arbitrary file reads, SSRFs, and SSTIs. • https://github.com/craftcms/cms/pull/18208 • CWE-94: Improper Control of Generation of Code ('Code Injection') CWE-184: Incomplete List of Disallowed Inputs CWE-1336: Improper Neutralization of Special Elements Used in a Template Engine •
CVSS: 9.4EPSS: %CPEs: 2EXPL: 0CVE-2026-28697 – Craft Affected by Authenticated RCE via "craft.app.fs.write()" in Twig Templates
https://notcve.org/view.php?id=CVE-2026-28697
04 Mar 2026 — Prior to 4.17.0-beta.1 and 5.9.0-beta.1, an authenticated administrator can achieve Remote Code Execution (RCE) by injecting a Server-Side Template Injection (SSTI) payload into Twig template fields (e.g., Email Templates). By calling the craft.app.fs.write() method, an attacker can write a malicious PHP script to a web-accessible directory and subsequently access it via the browser to execute arbitrary system commands. • https://github.com/craftcms/cms/commit/9dc2a4a3ec8e9cd5e8c0d1129f36371437519197 • CWE-1336: Improper Neutralization of Special Elements Used in a Template Engine •
CVSS: 7.5EPSS: %CPEs: 2EXPL: 0CVE-2026-28695 – Craft affected by authenticated RCE via Twig SSTI - create() function + Symfony Process gadget
https://notcve.org/view.php?id=CVE-2026-28695
04 Mar 2026 — There is an authenticated admin RCE in Craft CMS 5.8.21 via Server-Side Template Injection using the create() Twig function combined with a Symfony Process gadget chain. The create() Twig function exposes Craft::createObject(), which allows instantiation of arbitrary PHP classes with constructor arguments. Combined with the bundled symfony/process dependency, this enables RCE. This bypasses the fix implemented for CVE-2025-57811 (patched in 5.8.7). • https://github.com/craftcms/cms/commit/e31e50849ad71638e11ea55fbd1ed90ae8f8f6e0 • CWE-1336: Improper Neutralization of Special Elements Used in a Template Engine •
CVSS: 5.4EPSS: %CPEs: 5EXPL: 0CVE-2026-23808 – Client Isolation Bypass via GTK Manipulation
https://notcve.org/view.php?id=CVE-2026-23808
04 Mar 2026 — A vulnerability has been identified in a standardized wireless roaming protocol that could enable a malicious actor to install an attacker-controlled Group Temporal Key (GTK) on a client device. Successful exploitation of this vulnerability could allow a remote malicious actor to perform unauthorized frame injection, bypass client isolation, interfere with cross-client traffic, and compromise network segmentation, integrity, and confidentiality. • https://support.hpe.com/hpesc/public/docDisplay?docId=hpesbnw05026en_us&docLocale=en_US • CWE-94: Improper Control of Generation of Code ('Code Injection') •
CVSS: 9.5EPSS: 0%CPEs: 1EXPL: 0CVE-2026-27441 – PDF Password CMDi
https://notcve.org/view.php?id=CVE-2026-27441
04 Mar 2026 — SEPPmail Secure Email Gateway before version 15.0.1 insufficiently neutralizes the PDF encryption password, allowing OS command execution. • https://downloads.seppmail.com/extrelnotes/150/ERN15.0.html#seppmail-vulnerability-disclosure • CWE-78: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') •
CVSS: 7.9EPSS: 0%CPEs: -EXPL: 0CVE-2026-28778 – Hardcoded FTP Credentials and LPE(via Insecure Permissions) for `xd` Local Account on IDC SFX2100
https://notcve.org/view.php?id=CVE-2026-28778
04 Mar 2026 — Because the `xd` user has write permissions to their home directory where root-executed binaries and symlinks (such as those invoked by `xdstartstop`) are stored, the attacker can overwrite these files or manipulate symlinks to achieve arbitrary code execution as the root user. • https://www.abdulmhsblog.com/posts/spfx-vulnrabilities • CWE-798: Use of Hard-coded Credentials •