🛡️ مركز معلومات الثغرات
قاعدة بيانات الثغرات والتهديدات الأمنية المحدّثة
| المعرّف | الخطورة | CVSS | الوصف | الحالة | النشر |
|---|---|---|---|---|---|
| CVE-2021-22054 | حرج | 9.8 |
Omnissa Workspace One UEM — CVE-2021-22054
Omnissa Workspace One UEM formerly known as VMware Workspace One UEM contains…
|
— | مارس 9, 2026 |
| CVE-2025-26399 | حرج | 9.8 |
SolarWinds Web Help Desk — CVE-2025-26399
SolarWinds Web Help Desk contain a deserialization of untrusted data vulnerabi…
|
— | مارس 9, 2026 |
| CVE-2017-7921 | حرج | 9.0 |
Hikvision Multiple Products Improper Authentication Vulnerability — Multiple Hikvision products contain an improper auth…
|
⚡ Exploit ✅ Patch | مارس 5, 2026 |
| CVE-2021-22681 | حرج | 9.0 |
Rockwell Multiple Products Insufficient Protected Credentials Vulnerability — Multiple Rockwell products contain an insu…
|
⚡ Exploit ✅ Patch | مارس 5, 2026 |
| CVE-2021-30952 | حرج | 9.0 |
Apple Multiple Products Integer Overflow or Wraparound Vulnerability — Apple tvOS, macOS, Safari, iPadOS and watchOS con…
|
⚡ Exploit ✅ Patch | مارس 5, 2026 |
| CVE-2023-41974 | حرج | 9.0 |
Apple iOS and iPadOS Use-After-Free Vulnerability — Apple iOS and iPadOS contain a use-after-free vulnerability. An app …
|
⚡ Exploit ✅ Patch | مارس 5, 2026 |
| CVE-2023-43000 | حرج | 9.0 |
Apple Multiple products Use-After-Free Vulnerability — Apple macOS, iOS, iPadOS, and Safari 16.6 contain a use-after-fre…
|
⚡ Exploit ✅ Patch | مارس 5, 2026 |
| CVE-2026-1487 | متوسط | 6.5 |
The LatePoint – Calendar Booking Plugin for Appointments and Events plugin for WordPress is vulnerable to SQL Injection …
|
— | مارس 3, 2026 |
| CVE-2026-3343 | متوسط | 6.1 |
A reflected cross-site scripting (XSS) vulnerability in the Fireware OS Web UI enabled execution of malicious JavaScript…
|
— | مارس 3, 2026 |
| CVE-2026-1336 | متوسط | 5.3 |
The AI ChatBot with ChatGPT and Content Generator by AYS plugin for WordPress is vulnerable to unauthorized access and m…
|
— | مارس 3, 2026 |
| CVE-2025-52468 | مرتفع | 8.8 |
Chamilo is a learning management system. Prior to version 1.11.30, an input validation vulnerability exists when importi…
|
⚡ Exploit ✅ Patch | مارس 2, 2026 |
| CVE-2026-21385 | مرتفع | 7.8 |
Memory corruption while using alignments for memory allocation.
|
⚡ Exploit ✅ Patch | مارس 2, 2026 |
| CVE-2025-64427 | مرتفع | 7.1 |
ZimaOS is a fork of CasaOS, an operating system for Zima devices and x86-64 systems with UEFI. In version 1.5.0 and prio…
|
⚡ Exploit ✅ Patch | مارس 2, 2026 |
| CVE-2025-47371 | متوسط | 6.5 |
Transient DOS when an LTE RLC packet with invalid TB is received by UE.
|
— | مارس 2, 2026 |
| CVE-2025-47384 | متوسط | 6.5 |
Transient DOS when MAC configures config id greater than supported maximum value.
|
— | مارس 2, 2026 |
| CVE-2026-28396 | متوسط | 6.5 |
NocoDB is software for building databases as spreadsheets. Prior to version 0.301.3, the password reset flow did not rev…
|
— | مارس 2, 2026 |
| CVE-2026-2583 | متوسط | 6.4 |
The Blocksy theme for WordPress is vulnerable to Stored Cross-Site Scripting via the `blocksy_meta` metadata fields in a…
|
— | مارس 2, 2026 |
| CVE-2026-28361 | متوسط | 6.3 |
NocoDB is software for building databases as spreadsheets. Prior to version 0.301.3, the MCP token service did not valid…
|
— | مارس 2, 2026 |
| CVE-2025-15597 | متوسط | 6.3 |
A vulnerability has been found in Dataease SQLBot up to 1.4.0. This affects an unknown function of the file backend/apps…
|
⚡ Exploit ✅ Patch | مارس 2, 2026 |
| CVE-2026-0005 | متوسط | 6.2 |
In onServiceDisconnected of KeyguardServiceDelegate.java, there is a possible partial bypass of app pinning allowing lim…
|
— | مارس 2, 2026 |