🛡️ مركز معلومات الثغرات
قاعدة بيانات الثغرات والتهديدات الأمنية المحدّثة
| المعرّف | الخطورة | CVSS | الوصف | الحالة | النشر |
|---|---|---|---|---|---|
| CVE-2026-4087 | متوسط | 6.5 |
The Pre* Party Resource Hints plugin for WordPress is vulnerable to SQL Injection via the 'hint_ids' parameter of the pp…
|
— | مارس 21, 2026 |
| CVE-2026-2375 | متوسط | 6.5 |
The App Builder – Create Native Android & iOS Apps On The Flight plugin for WordPress is vulnerable to Privilege Escalat…
|
— | مارس 21, 2026 |
| CVE-2026-2503 | متوسط | 6.5 |
The ElementCamp plugin for WordPress is vulnerable to time-based SQL Injection via the 'meta_query[compare]' parameter i…
|
— | مارس 21, 2026 |
| CVE-2026-32043 | متوسط | 6.5 |
OpenClaw versions prior to 2026.2.25 contain a time-of-check-time-of-use vulnerability in approval-bound system.run exec…
|
— | مارس 21, 2026 |
| CVE-2026-2720 | متوسط | 6.5 |
The Hr Press Lite plugin for WordPress is vulnerable to unauthorized access of sensitive employee data due to a missing …
|
— | مارس 21, 2026 |
| CVE-2026-32054 | متوسط | 6.5 |
OpenClaw versions prior to 2026.2.25 contain a symlink traversal vulnerability in browser trace and download output path…
|
— | مارس 21, 2026 |
| CVE-2026-32053 | متوسط | 6.5 |
OpenClaw versions prior to 2026.2.23 contain a vulnerability in Twilio webhook event deduplication where normalized even…
|
— | مارس 21, 2026 |
| CVE-2026-1806 | متوسط | 6.4 |
The Tour & Activity Operator Plugin for TourCMS plugin for WordPress is vulnerable to Stored Cross-Site Scripting via th…
|
— | مارس 21, 2026 |
| CVE-2026-1908 | متوسط | 6.4 |
The Integration with Hubspot Forms plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'hubspotfor…
|
— | مارس 21, 2026 |
| CVE-2026-1899 | متوسط | 6.4 |
The Any Post Slider plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's aps_slider shortc…
|
— | مارس 21, 2026 |
| CVE-2026-1891 | متوسط | 6.4 |
The Simple Football Scoreboard plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'ytmr_fb_scoreb…
|
— | مارس 21, 2026 |
| CVE-2026-1889 | متوسط | 6.4 |
The Outgrow plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'id' attribute of the 'outgrow' sh…
|
— | مارس 21, 2026 |
| CVE-2026-1886 | متوسط | 6.4 |
The Go Night Pro | WordPress Dark Mode Plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin'…
|
— | مارس 21, 2026 |
| CVE-2026-1854 | متوسط | 6.4 |
The Post Flagger plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'flag' shortcode in …
|
— | مارس 21, 2026 |
| CVE-2026-1851 | متوسط | 6.4 |
The iVysilani Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'width' shortcode attr…
|
— | مارس 21, 2026 |
| CVE-2026-1275 | متوسط | 6.4 |
The Multi Post Carousel by Category plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'slides' s…
|
— | مارس 21, 2026 |
| CVE-2026-0609 | متوسط | 6.4 |
The Logo Slider – Logo Carousel, Logo Showcase & Client Logo Slider Plugin plugin for WordPress is vulnerable to Stored …
|
— | مارس 21, 2026 |
| CVE-2026-1397 | متوسط | 6.4 |
The PQ Addons – Creative Elementor Widgets plugin for WordPress is vulnerable to Stored Cross-Site Scripting via widget …
|
— | مارس 21, 2026 |
| CVE-2026-1822 | متوسط | 6.4 |
The WP NG Weather plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's 'ng-weather' shortc…
|
— | مارس 21, 2026 |
| CVE-2026-1093 | متوسط | 6.4 |
The WPFAQBlock– FAQ & Accordion Plugin For Gutenberg plugin for WordPress is vulnerable to Stored Cross-Site Scripting v…
|
— | مارس 21, 2026 |