🛡️ مركز معلومات الثغرات
قاعدة بيانات الثغرات والتهديدات الأمنية المحدّثة
| المعرّف | الخطورة | CVSS | الوصف | الحالة | النشر |
|---|---|---|---|---|---|
| CVE-2026-32046 | متوسط | 5.3 |
OpenClaw versions prior to 2026.2.21 contain an improper sandbox configuration vulnerability that allows attackers to ex…
|
— | مارس 21, 2026 |
| CVE-2026-3546 | متوسط | 5.3 |
The e-shot form builder plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and …
|
— | مارس 21, 2026 |
| CVE-2026-4127 | متوسط | 5.3 |
The Speedup Optimization plugin for WordPress is vulnerable to Missing Authorization in all versions up to and including…
|
— | مارس 21, 2026 |
| CVE-2026-2756 | متوسط | 5.0 |
A security vulnerability has been detected in OmniPEMF NeoRhythm up to 20260308. This affects an unknown function of the…
|
— | مارس 21, 2026 |
| CVE-2025-54068 | حرج | 9.8 |
Laravel Livewire — CVE-2025-54068
Laravel Livewire contain a code injection vulnerability that could allow unauthenticat…
|
— | مارس 20, 2026 |
| CVE-2025-31277 | حرج | 9.8 |
Apple Multiple Products — CVE-2025-31277
Apple Safari, iOS, watchOS, visionOS, iPadOS, macOS, and tvOS contain a buffer …
|
— | مارس 20, 2026 |
| CVE-2025-32432 | حرج | 9.8 |
Craft CMS Craft CMS — CVE-2025-32432
Craft CMS contains a code injection vulnerability that allows a remote attacker to …
|
— | مارس 20, 2026 |
| CVE-2025-43510 | حرج | 9.8 |
Apple Multiple Products — CVE-2025-43510
Apple watchOS, iOS, iPadOS, macOS, visionOS, and tvOS contain an improper locki…
|
— | مارس 20, 2026 |
| CVE-2025-43520 | حرج | 9.8 |
Apple Multiple Products — CVE-2025-43520
Apple watchOS, iOS, iPadOS, macOS, visionOS, and tvOS contain a classic buffer …
|
— | مارس 20, 2026 |
| CVE-2026-33135 | حرج | 9.3 |
WeGIA is a web manager for charitable institutions. Versions 3.6.6 and below have a Reflected Cross-Site Scripting (XSS)…
|
⚡ Exploit ✅ Patch | مارس 20, 2026 |
| CVE-2026-33136 | حرج | 9.3 |
WeGIA is a web manager for charitable institutions. Versions 3.6.6 and below have a Reflected Cross-Site Scripting (XSS)…
|
⚡ Exploit ✅ Patch | مارس 20, 2026 |
| CVE-2026-2421 | متوسط | 6.5 |
The ilGhera Carta Docente for WooCommerce plugin for WordPress is vulnerable to Path Traversal in all versions up to, an…
|
— | مارس 20, 2026 |
| CVE-2026-4506 | متوسط | 6.3 |
A vulnerability was found in Mindinventory MindSQL up to 0.2.1. Impacted is the function ask_db of the file mindsql/core…
|
— | مارس 20, 2026 |
| CVE-2026-4505 | متوسط | 6.3 |
A vulnerability has been found in eosphoros-ai DB-GPT up to 0.7.5. This issue affects the function module_plugin.refresh…
|
— | مارس 20, 2026 |
| CVE-2026-4500 | متوسط | 6.3 |
A vulnerability was identified in bagofwords1 bagofwords up to 0.0.297. This impacts the function generate_df of the fil…
|
— | مارس 20, 2026 |
| CVE-2026-4485 | متوسط | 6.3 |
A vulnerability has been found in itsourcecode College Management System 1.0. The impacted element is an unknown functio…
|
— | مارس 20, 2026 |
| CVE-2026-4476 | متوسط | 6.3 |
A vulnerability was found in Yi Technology YI Home Camera 2 2.1.1_20171024151200. The impacted element is an unknown fun…
|
— | مارس 20, 2026 |
| CVE-2026-4472 | متوسط | 6.3 |
A security vulnerability has been detected in itsourcecode Online Frozen Foods Ordering System 1.0. This vulnerability a…
|
— | مارس 20, 2026 |
| CVE-2026-4507 | متوسط | 6.3 |
A vulnerability was determined in Mindinventory MindSQL up to 0.2.1. The affected element is the function ask_db of the …
|
— | مارس 20, 2026 |
| CVE-2026-32844 | متوسط | 6.1 |
XinLiangCoder php_api_doc through commit 1ce5bbf contains a reflected cross-site scripting vulnerability in list_method.…
|
— | مارس 20, 2026 |