🛡️ مركز معلومات الثغرات
قاعدة بيانات الثغرات والتهديدات الأمنية المحدّثة
| المعرّف | الخطورة | CVSS | الوصف | الحالة | النشر |
|---|---|---|---|---|---|
| CVE-2026-33634 | مرتفع | 8.8 |
Trivy is a security scanner. On March 19, 2026, a threat actor used compromised credentials to publish a malicious Trivy…
|
⚡ Exploit | مارس 23, 2026 |
| CVE-2026-33046 | مرتفع | 8.8 |
Indico is an event management system that uses Flask-Multipass, a multi-backend authentication system for Flask. In vers…
|
✅ Patch | مارس 23, 2026 |
| CVE-2026-33513 | مرتفع | 8.6 |
WWBN AVideo is an open source video platform. In versions up to and including 26.0, an unauthenticated API endpoint (`AP…
|
⚡ Exploit | مارس 23, 2026 |
| CVE-2026-33480 | مرتفع | 8.6 |
WWBN AVideo is an open source video platform. In versions up to and including 26.0, the `isSSRFSafeURL()` function in AV…
|
⚡ Exploit ✅ Patch | مارس 23, 2026 |
| CVE-2026-32845 | مرتفع | 8.4 |
cgltf version 1.15 and prior contain an integer overflow vulnerability in the cgltf_validate() function when validating …
|
— | مارس 23, 2026 |
| CVE-2026-33649 | مرتفع | 8.1 |
WWBN AVideo is an open source video platform. In versions up to and including 26.0, the `plugin/Permissions/setPermissio…
|
⚡ Exploit | مارس 23, 2026 |
| CVE-2026-33651 | مرتفع | 8.1 |
WWBN AVideo is an open source video platform. In versions up to and including 26.0, the `remindMe.json.php` endpoint pas…
|
⚡ Exploit ✅ Patch | مارس 23, 2026 |
| CVE-2026-23482 | مرتفع | 7.5 |
Blinko is an AI-powered card note-taking project. Prior to version 1.8.4, the file server endpoint does not perform perm…
|
✅ Patch | مارس 23, 2026 |
| CVE-2026-4645 | مرتفع | 7.5 |
A flaw was found in the `github.com/antchfx/xpath` component. A remote attacker could exploit this vulnerability by subm…
|
— | مارس 23, 2026 |
| CVE-2026-4306 | مرتفع | 7.5 |
The WP Job Portal plugin for WordPress is vulnerable to SQL Injection via the 'radius' parameter in all versions up to, …
|
— | مارس 23, 2026 |
| CVE-2026-2580 | مرتفع | 7.5 |
The WP Maps – Store Locator,Google Maps,OpenStreetMap,Mapbox,Listing,Directory & Filters plugin for WordPress is vulnera…
|
— | مارس 23, 2026 |
| CVE-2026-32969 | مرتفع | 7.5 |
An unauthenticated remote attacker can exploit a Pre-Auth blind SQL Injection vulnerability in the userinfo endpoint’s a…
|
— | مارس 23, 2026 |
| CVE-2026-33488 | مرتفع | 7.4 |
WWBN AVideo is an open source video platform. In versions up to and including 26.0, the `createKeys()` function in the L…
|
⚡ Exploit ✅ Patch | مارس 23, 2026 |
| CVE-2026-4594 | مرتفع | 7.3 |
A vulnerability has been found in erupts erupt up to 1.13.3. Affected by this issue is the function geneEruptHqlOrderBy …
|
— | مارس 23, 2026 |
| CVE-2026-4562 | مرتفع | 7.3 |
A security flaw has been discovered in MacCMS 2025.1000.4052. This affects an unknown part of the file application/api/c…
|
— | مارس 23, 2026 |
| CVE-2026-4581 | مرتفع | 7.3 |
A weakness has been identified in code-projects Simple Laundry System 1.0. Affected is an unknown function of the file /…
|
— | مارس 23, 2026 |
| CVE-2026-4612 | مرتفع | 7.3 |
A vulnerability has been found in itsourcecode Free Hotel Reservation System 1.0. This affects an unknown part of the fi…
|
— | مارس 23, 2026 |
| CVE-2026-4580 | مرتفع | 7.3 |
A security flaw has been discovered in code-projects Simple Laundry System 1.0. This impacts an unknown function of the …
|
— | مارس 23, 2026 |
| CVE-2026-4579 | مرتفع | 7.3 |
A vulnerability was identified in code-projects Simple Laundry System 1.0. This affects an unknown function of the file …
|
— | مارس 23, 2026 |
| CVE-2025-10679 | مرتفع | 7.3 |
The ReviewX – WooCommerce Product Reviews with Multi-Criteria, Reminder Emails, Google Reviews, Schema & More plugin for…
|
— | مارس 23, 2026 |