🛡️ مركز معلومات الثغرات
قاعدة بيانات الثغرات والتهديدات الأمنية المحدّثة
| المعرّف | الخطورة | CVSS | الوصف | الحالة | النشر |
|---|---|---|---|---|---|
| CVE-2025-48642 | متوسط | 5.5 |
In jump_to_payload of payload.rs, there is a possible information disclosure due to a logic error in the code. This coul…
|
— | مارس 2, 2026 |
| CVE-2025-48644 | متوسط | 5.5 |
In multiple locations, there is a possible persistent denial of service due to improper input validation. This could lea…
|
— | مارس 2, 2026 |
| CVE-2026-28357 | متوسط | 5.4 |
NocoDB is software for building databases as spreadsheets. Prior to version 0.301.3, a stored XSS vulnerability exists i…
|
— | مارس 2, 2026 |
| CVE-2026-28359 | متوسط | 5.4 |
NocoDB is software for building databases as spreadsheets. Prior to version 0.301.3, an authenticated user with Editor r…
|
— | مارس 2, 2026 |
| CVE-2026-28397 | متوسط | 5.4 |
NocoDB is software for building databases as spreadsheets. Prior to version 0.301.3, comments rendered via v-html withou…
|
— | مارس 2, 2026 |
| CVE-2026-28398 | متوسط | 5.4 |
NocoDB is software for building databases as spreadsheets. Prior to version 0.301.3, user-controlled content in comments…
|
— | مارس 2, 2026 |
| CVE-2026-28401 | متوسط | 5.4 |
NocoDB is software for building databases as spreadsheets. Prior to version 0.301.3, rich text cell content rendered via…
|
— | مارس 2, 2026 |
| CVE-2026-27631 | متوسط | 5.3 |
Exiv2 is a C++ library and a command-line utility to read, write, delete and modify Exif, IPTC, XMP and ICC image metada…
|
✅ Patch | مارس 2, 2026 |
| CVE-2026-28358 | متوسط | 5.3 |
NocoDB is software for building databases as spreadsheets. Prior to version 0.301.3, the password forgot endpoint return…
|
— | مارس 2, 2026 |
| CVE-2026-28360 | متوسط | 5.3 |
NocoDB is software for building databases as spreadsheets. Prior to version 0.301.3, shared view passwords were stored i…
|
— | مارس 2, 2026 |
| CVE-2026-3404 | متوسط | 5.0 |
A flaw has been found in thinkgem JeeSite up to 5.15.1. Impacted is an unknown function of the file /com/jeesite/common/…
|
— | مارس 2, 2026 |
| CVE-2026-28557 | متوسط | 6.5 |
wpForo Forum 2.4.14 contains a missing capability check vulnerability that allows authenticated users to trigger bulk wp…
|
— | فبراير 28, 2026 |
| CVE-2026-28558 | متوسط | 6.4 |
wpForo Forum 2.4.14 contains a stored cross-site scripting vulnerability that allows authenticated subscribers to upload…
|
— | فبراير 28, 2026 |
| CVE-2026-28560 | متوسط | 5.5 |
wpForo Forum 2.4.14 contains a stored cross-site scripting vulnerability that allows script injection via forum URL data…
|
— | فبراير 28, 2026 |
| CVE-2026-28561 | متوسط | 5.5 |
wpForo Forum 2.4.14 contains a stored cross-site scripting vulnerability that allows administrators to inject persistent…
|
— | فبراير 28, 2026 |
| CVE-2026-28556 | متوسط | 5.4 |
wpForo Forum 2.4.14 contains a missing authorization vulnerability that allows authenticated subscribers to move, merge,…
|
— | فبراير 28, 2026 |
| CVE-2026-28559 | متوسط | 5.3 |
wpForo Forum 2.4.14 contains an information disclosure vulnerability that allows unauthenticated users to retrieve priva…
|
— | فبراير 28, 2026 |
| CVE-2026-2749 | حرج | 9.9 |
Vulnerability in Centreon Centreon Open Tickets on Central Server on Linux (Centroen Open Ticket modules).This issue aff…
|
✅ Patch | فبراير 27, 2026 |
| CVE-2026-28363 | حرج | 9.9 |
In OpenClaw before 2026.2.23, tools.exec.safeBins validation for sort could be bypassed via GNU long-option abbreviation…
|
✅ Patch | فبراير 27, 2026 |
| CVE-2026-2251 | حرج | 9.8 |
Improper limitation of a pathname to a restricted directory (Path Traversal) vulnerability in Xerox FreeFlow Core allows…
|
✅ Patch | فبراير 27, 2026 |