🛡️ مركز معلومات الثغرات
قاعدة بيانات الثغرات والتهديدات الأمنية المحدّثة
| المعرّف | الخطورة | CVSS | الوصف | الحالة | النشر |
|---|---|---|---|---|---|
| CVE-2026-2503 | متوسط | 6.5 |
The ElementCamp plugin for WordPress is vulnerable to time-based SQL Injection via the 'meta_query[compare]' parameter i…
|
— | مارس 21, 2026 |
| CVE-2026-4087 | متوسط | 6.5 |
The Pre* Party Resource Hints plugin for WordPress is vulnerable to SQL Injection via the 'hint_ids' parameter of the pp…
|
— | مارس 21, 2026 |
| CVE-2026-1806 | متوسط | 6.4 |
The Tour & Activity Operator Plugin for TourCMS plugin for WordPress is vulnerable to Stored Cross-Site Scripting via th…
|
— | مارس 21, 2026 |
| CVE-2026-1093 | متوسط | 6.4 |
The WPFAQBlock– FAQ & Accordion Plugin For Gutenberg plugin for WordPress is vulnerable to Stored Cross-Site Scripting v…
|
— | مارس 21, 2026 |
| CVE-2026-0609 | متوسط | 6.4 |
The Logo Slider – Logo Carousel, Logo Showcase & Client Logo Slider Plugin plugin for WordPress is vulnerable to Stored …
|
— | مارس 21, 2026 |
| CVE-2026-1889 | متوسط | 6.4 |
The Outgrow plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'id' attribute of the 'outgrow' sh…
|
— | مارس 21, 2026 |
| CVE-2026-1397 | متوسط | 6.4 |
The PQ Addons – Creative Elementor Widgets plugin for WordPress is vulnerable to Stored Cross-Site Scripting via widget …
|
— | مارس 21, 2026 |
| CVE-2026-1851 | متوسط | 6.4 |
The iVysilani Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'width' shortcode attr…
|
— | مارس 21, 2026 |
| CVE-2026-1275 | متوسط | 6.4 |
The Multi Post Carousel by Category plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'slides' s…
|
— | مارس 21, 2026 |
| CVE-2026-2352 | متوسط | 6.4 |
The Autoptimize plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'ao_post_preload' meta value i…
|
— | مارس 21, 2026 |
| CVE-2026-1914 | متوسط | 6.4 |
The FuseDesk plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's fusedesk_newcase shortco…
|
— | مارس 21, 2026 |
| CVE-2026-1886 | متوسط | 6.4 |
The Go Night Pro | WordPress Dark Mode Plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin'…
|
— | مارس 21, 2026 |
| CVE-2026-1822 | متوسط | 6.4 |
The WP NG Weather plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'ng-weather' shortc…
|
— | مارس 21, 2026 |
| CVE-2026-1575 | متوسط | 6.4 |
The Schema Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's `itemscope` shor…
|
— | مارس 21, 2026 |
| CVE-2026-1911 | متوسط | 6.4 |
The Twitter Feeds plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'tweet_title' parameter in t…
|
— | مارس 21, 2026 |
| CVE-2026-2496 | متوسط | 6.4 |
The Ed's Font Awesome plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's `eds_font_aweso…
|
— | مارس 21, 2026 |
| CVE-2026-1908 | متوسط | 6.4 |
The Integration with Hubspot Forms plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'hubspotfor…
|
— | مارس 21, 2026 |
| CVE-2026-1899 | متوسط | 6.4 |
The Any Post Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's aps_slider shortc…
|
— | مارس 21, 2026 |
| CVE-2026-1854 | متوسط | 6.4 |
The Post Flagger plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'flag' shortcode in …
|
— | مارس 21, 2026 |
| CVE-2026-1891 | متوسط | 6.4 |
The Simple Football Scoreboard plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'ytmr_fb_scoreb…
|
— | مارس 21, 2026 |