🛡️ مركز معلومات الثغرات
قاعدة بيانات الثغرات والتهديدات الأمنية المحدّثة
| المعرّف | الخطورة | CVSS | الوصف | الحالة | النشر |
|---|---|---|---|---|---|
| CVE-2026-33915 | متوسط | 5.4 |
OpenEMR is a free and open source electronic health records and medical practice management application. Prior to versio…
|
✅ Patch | مارس 26, 2026 |
| CVE-2026-4900 | متوسط | 5.3 |
A weakness has been identified in code-projects Online Food Ordering System 1.0. This affects an unknown part of the fil…
|
— | مارس 26, 2026 |
| CVE-2026-4281 | متوسط | 5.3 |
The FormLift for Infusionsoft Web Forms plugin for WordPress is vulnerable to Missing Authorization in all versions up t…
|
— | مارس 26, 2026 |
| CVE-2026-33017 | حرج | 9.8 |
Langflow Langflow — CVE-2026-33017
Langflow contains a code injection vulnerability that could allow building public flo…
|
— | مارس 25, 2026 |
| CVE-2026-20631 | مرتفع | 8.8 |
A logic issue was addressed with improved checks. This issue is fixed in macOS Tahoe 26.4. A user may be able to elevate…
|
— | مارس 25, 2026 |
| CVE-2026-23514 | مرتفع | 8.8 |
Kiteworks is a private data network (PDN). Versions 9.2.0 and 9.2.1 of Kiteworks Core have an access control vulnerabili…
|
— | مارس 25, 2026 |
| CVE-2026-33348 | مرتفع | 8.7 |
OpenEMR is a free and open source electronic health records and medical practice management application. Users with the …
|
⚡ Exploit ✅ Patch | مارس 25, 2026 |
| CVE-2026-20698 | مرتفع | 7.8 |
The issue was addressed with improved memory handling. This issue is fixed in iOS 26.4 and iPadOS 26.4, macOS Tahoe 26.4…
|
— | مارس 25, 2026 |
| CVE-2026-33913 | مرتفع | 7.7 |
OpenEMR is a free and open source electronic health records and medical practice management application. Prior to versio…
|
⚡ Exploit ✅ Patch | مارس 25, 2026 |
| CVE-2026-2995 | مرتفع | 7.7 |
GitLab has remediated an issue in GitLab EE affecting all versions from 15.4 before 18.8.7, 18.9 before 18.9.3, and 18.1…
|
— | مارس 25, 2026 |
| CVE-2026-24750 | مرتفع | 7.6 |
Kiteworks is a private data network (PDN). In Kiteworks Secure Data Forms prior to version 9.2.1, an authenticated attac…
|
— | مارس 25, 2026 |
| CVE-2026-33247 | مرتفع | 7.4 |
NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Prior to versions 2.11.1…
|
— | مارس 25, 2026 |
| CVE-2025-36258 | مرتفع | 7.1 |
IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 product stores user credentials and other sensitive informat…
|
— | مارس 25, 2026 |
| CVE-2026-33217 | مرتفع | 7.1 |
NATS-Server is a High-Performance server for NATS.io, a cloud and edge native messaging system. Prior to versions 2.11.1…
|
— | مارس 25, 2026 |
| CVE-2025-14917 | متوسط | 6.7 |
IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.3 IBM WebSphere Application Server Liberty could prov…
|
— | مارس 25, 2026 |
| CVE-2026-1014 | متوسط | 6.5 |
IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 is vulnerable to exposure of sensitive information via JSON …
|
— | مارس 25, 2026 |
| CVE-2026-20083 | متوسط | 6.5 |
A vulnerability in the Secure Copy Protocol (SCP) server feature of Cisco IOS XE Software could allow an authenticated, …
|
— | مارس 25, 2026 |
| CVE-2026-3119 | متوسط | 6.5 |
Under certain conditions, `named` may crash when processing a correctly signed query containing a TKEY record. The affec…
|
— | مارس 25, 2026 |
| CVE-2025-14915 | متوسط | 6.5 |
IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.3 IBM WebSphere Application Server Liberty is affecte…
|
— | مارس 25, 2026 |
| CVE-2025-14790 | متوسط | 6.5 |
IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 could allow an attacker to obtain sensitive information due …
|
— | مارس 25, 2026 |