🛡️ مركز معلومات الثغرات
قاعدة بيانات الثغرات والتهديدات الأمنية المحدّثة
| المعرّف | الخطورة | CVSS | الوصف | الحالة | النشر |
|---|---|---|---|---|---|
| CVE-2026-1275 | متوسط | 6.4 |
The Multi Post Carousel by Category plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'slides' s…
|
— | مارس 21, 2026 |
| CVE-2026-4077 | متوسط | 6.4 |
The Ecover Builder For Dummies plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'id' parameter …
|
— | مارس 21, 2026 |
| CVE-2026-4067 | متوسط | 6.4 |
The Ad Short plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'ad' shortcode's 'client' attribu…
|
— | مارس 21, 2026 |
| CVE-2026-4072 | متوسط | 6.4 |
The WordPress PayPal Donation plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'donate' shortco…
|
— | مارس 21, 2026 |
| CVE-2026-3516 | متوسط | 6.4 |
The Contact List plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the '_cl_map_iframe' parameter in…
|
— | مارس 21, 2026 |
| CVE-2026-3617 | متوسط | 6.4 |
The Paypal Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'amount' and 'name' short…
|
— | مارس 21, 2026 |
| CVE-2026-4084 | متوسط | 6.4 |
The fyyd podcast shortcodes plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'fyyd-podcast', 'f…
|
— | مارس 21, 2026 |
| CVE-2026-4083 | متوسط | 6.4 |
The Scoreboard for HTML5 Games Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'scoreboar…
|
— | مارس 21, 2026 |
| CVE-2026-1093 | متوسط | 6.4 |
The WPFAQBlock– FAQ & Accordion Plugin For Gutenberg plugin for WordPress is vulnerable to Stored Cross-Site Scripting v…
|
— | مارس 21, 2026 |
| CVE-2026-3996 | متوسط | 6.4 |
The WP Games Embed plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the [game] shortcode in all ver…
|
— | مارس 21, 2026 |
| CVE-2026-3350 | متوسط | 6.4 |
The Image Alt Text Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the post title in all v…
|
— | مارس 21, 2026 |
| CVE-2026-32052 | متوسط | 6.4 |
OpenClaw versions prior to 2026.2.24 contain a command injection vulnerability in the system.run shell-wrapper that allo…
|
— | مارس 21, 2026 |
| CVE-2026-3333 | متوسط | 6.4 |
The MinhNhut Link Gateway plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'linkgate' …
|
— | مارس 21, 2026 |
| CVE-2026-2352 | متوسط | 6.4 |
The Autoptimize plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'ao_post_preload' meta value i…
|
— | مارس 21, 2026 |
| CVE-2026-2430 | متوسط | 6.4 |
The Autoptimize plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the lazy-loading image processing …
|
— | مارس 21, 2026 |
| CVE-2026-2501 | متوسط | 6.4 |
The Ed's Social Share plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's `social_share` …
|
— | مارس 21, 2026 |
| CVE-2026-3554 | متوسط | 6.4 |
The Sherk Custom Post Type Displays plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'title' sh…
|
— | مارس 21, 2026 |
| CVE-2026-2496 | متوسط | 6.4 |
The Ed's Font Awesome plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's `eds_font_aweso…
|
— | مارس 21, 2026 |
| CVE-2026-4509 | متوسط | 6.3 |
A security flaw has been discovered in PbootCMS up to 3.2.12. This affects an unknown function of the file core/function…
|
— | مارس 21, 2026 |
| CVE-2026-4511 | متوسط | 6.3 |
A security vulnerability has been detected in vanna-ai vanna up to 2.0.2. Affected is the function exec of the file /src…
|
— | مارس 21, 2026 |