🛡️ مركز معلومات الثغرات
قاعدة بيانات الثغرات والتهديدات الأمنية المحدّثة
| المعرّف | الخطورة | CVSS | الوصف | الحالة | النشر |
|---|---|---|---|---|---|
| CVE-2019-25577 | متوسط | 5.5 |
SeoToaster Ecommerce 3.0.0 contains a local file inclusion vulnerability that allows authenticated attackers to read arb…
|
— | مارس 21, 2026 |
| CVE-2026-3347 | متوسط | 5.5 |
The Multi Functional Flexi Lightbox plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the `arv_lb[me…
|
— | مارس 21, 2026 |
| CVE-2026-32898 | متوسط | 5.4 |
OpenClaw versions prior to 2026.2.23 contain an authorization bypass vulnerability in the ACP client that auto-approves …
|
— | مارس 21, 2026 |
| CVE-2026-32895 | متوسط | 5.4 |
OpenClaw versions prior to 2026.2.26 fail to enforce sender authorization in member and message subtype system event han…
|
— | مارس 21, 2026 |
| CVE-2026-1253 | متوسط | 5.3 |
The Group Chat & Video Chat by AtomChat plugin for WordPress is vulnerable to unauthorized modification of data due to a…
|
— | مارس 21, 2026 |
| CVE-2026-3567 | متوسط | 5.3 |
The RepairBuddy – Repair Shop CRM & Booking Plugin for WordPress is vulnerable to unauthorized access in all versions up…
|
— | مارس 21, 2026 |
| CVE-2026-3506 | متوسط | 5.3 |
The WP-Chatbot for Messenger plugin for WordPress is vulnerable to authorization bypass in all versions up to, and inclu…
|
— | مارس 21, 2026 |
| CVE-2026-3651 | متوسط | 5.3 |
The Build App Online plugin for WordPress is vulnerable to unauthorized access in all versions up to, and including, 1.0…
|
— | مارس 21, 2026 |
| CVE-2026-3570 | متوسط | 5.3 |
The Smarter Analytics plugin for WordPress is vulnerable to unauthorized access in all versions up to, and including, 2.…
|
— | مارس 21, 2026 |
| CVE-2026-3546 | متوسط | 5.3 |
The e-shot form builder plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and …
|
— | مارس 21, 2026 |
| CVE-2026-4127 | متوسط | 5.3 |
The Speedup Optimization plugin for WordPress is vulnerable to Missing Authorization in all versions up to and including…
|
— | مارس 21, 2026 |
| CVE-2026-3335 | متوسط | 5.3 |
The Canto plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 3.1.1 via th…
|
— | مارس 21, 2026 |
| CVE-2026-3641 | متوسط | 5.3 |
The Appmax plugin for WordPress is vulnerable to Improper Input Validation in all versions up to, and including, 1.0.3. …
|
— | مارس 21, 2026 |
| CVE-2026-32046 | متوسط | 5.3 |
OpenClaw versions prior to 2026.2.21 contain an improper sandbox configuration vulnerability that allows attackers to ex…
|
— | مارس 21, 2026 |
| CVE-2026-3645 | متوسط | 5.3 |
The Punnel – Landing Page Builder plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and…
|
— | مارس 21, 2026 |
| CVE-2026-3460 | متوسط | 5.3 |
The REST API TO MiniProgram plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to…
|
— | مارس 21, 2026 |
| CVE-2026-2756 | متوسط | 5.0 |
A security vulnerability has been detected in OmniPEMF NeoRhythm up to 20260308. This affects an unknown function of the…
|
— | مارس 21, 2026 |
| CVE-2025-32432 | حرج | 9.8 |
Craft CMS Craft CMS — CVE-2025-32432
Craft CMS contains a code injection vulnerability that allows a remote attacker to …
|
— | مارس 20, 2026 |
| CVE-2025-31277 | حرج | 9.8 |
Apple Multiple Products — CVE-2025-31277
Apple Safari, iOS, watchOS, visionOS, iPadOS, macOS, and tvOS contain a buffer …
|
— | مارس 20, 2026 |
| CVE-2025-43520 | حرج | 9.8 |
Apple Multiple Products — CVE-2025-43520
Apple watchOS, iOS, iPadOS, macOS, visionOS, and tvOS contain a classic buffer …
|
— | مارس 20, 2026 |