🛡️ مركز معلومات الثغرات
قاعدة بيانات الثغرات والتهديدات الأمنية المحدّثة
| المعرّف | الخطورة | CVSS | الوصف | الحالة | النشر |
|---|---|---|---|---|---|
| CVE-2026-27465 | متوسط | 6.5 |
Fleet is open source device management software. In versions prior to 4.80.1, a vulnerability in Fleet’s configuration A…
|
— | فبراير 26, 2026 |
| CVE-2026-28083 | متوسط | 6.5 |
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in UX-themes Flatsome…
|
— | فبراير 26, 2026 |
| CVE-2026-28131 | متوسط | 6.5 |
Insertion of Sensitive Information Into Sent Data vulnerability in WPVibes Elementor Addon Elements addon-elements-for-e…
|
— | فبراير 26, 2026 |
| CVE-2026-3262 | متوسط | 6.3 |
A vulnerability has been found in go2ismail Asp.Net-Core-Inventory-Order-Management-System up to 9.20250118. Affected is…
|
⚡ Exploit | فبراير 26, 2026 |
| CVE-2026-3263 | متوسط | 6.3 |
A vulnerability was found in go2ismail Asp.Net-Core-Inventory-Order-Management-System up to 9.20250118. Affected by this…
|
⚡ Exploit | فبراير 26, 2026 |
| CVE-2026-22722 | متوسط | 6.1 |
A malicious actor with authenticated user privileges on a Windows based Workstation host may be able to cause a null poi…
|
— | فبراير 26, 2026 |
| CVE-2026-2677 | متوسط | 6.1 |
Reflected Cross-Site Scripting (XSS) on the A3factura web platform, in parameter 'name', in 'a3factura-app.wolterskluwer…
|
— | فبراير 26, 2026 |
| CVE-2026-2678 | متوسط | 6.1 |
Reflected Cross-Site Scripting (XSS) on the A3factura web platform, in parameter 'name', parameter 'name', in 'a3factura…
|
— | فبراير 26, 2026 |
| CVE-2026-2679 | متوسط | 6.1 |
Reflected Cross-Site Scripting (XSS) on the A3factura web platform, in parameter 'customerName', in 'a3factura-app.wolte…
|
— | فبراير 26, 2026 |
| CVE-2026-2680 | متوسط | 6.1 |
Reflected Cross-Site Scripting (XSS) on the A3factura web platform, in parameter 'customerVATNumber', in 'a3factura-app.…
|
— | فبراير 26, 2026 |
| CVE-2026-27154 | متوسط | 6.1 |
Discourse is an open source discussion platform. Prior to versions 2025.12.2, 2026.1.1, and 2026.2.0, a user full name c…
|
— | فبراير 26, 2026 |
| CVE-2026-22715 | متوسط | 5.9 |
VMWare Workstation and Fusion contain a logic flaw in the management of network packets.
Known attack vectors: A malic…
|
— | فبراير 26, 2026 |
| CVE-2026-28208 | متوسط | 5.9 |
Junrar is an open source java RAR archive library. Prior to version 7.5.8, a backslash path traversal vulnerability in `…
|
⚡ Exploit ✅ Patch | فبراير 26, 2026 |
| CVE-2026-26932 | متوسط | 5.7 |
Improper Validation of Array Index (CWE-129) in the PostgreSQL protocol parser in Packetbeat can lead Denial of Service …
|
— | فبراير 26, 2026 |
| CVE-2026-23999 | متوسط | 5.5 |
Fleet is open source device management software. In versions prior to 4.80.1, Fleet generated device lock and wipe PINs …
|
— | فبراير 26, 2026 |
| CVE-2026-26207 | متوسط | 5.4 |
Discourse is an open source discussion platform. Prior to versions 2025.12.2, 2026.1.1, and 2026.2.0, `discourse-policy`…
|
— | فبراير 26, 2026 |
| CVE-2026-28218 | متوسط | 5.4 |
Discourse is an open source discussion platform. Prior to versions 2025.12.2, 2026.1.1, and 2026.2.0, fail-open access c…
|
— | فبراير 26, 2026 |
| CVE-2025-56605 | متوسط | 5.4 |
A reflected Cross-Site Scripting (XSS) vulnerability exists in the register.php backend script of PuneethReddyHC Event M…
|
— | فبراير 26, 2026 |
| CVE-2025-64999 | متوسط | 5.4 |
Improper neutralization of input in Checkmk versions 2.4.0 before 2.4.0p22, and 2.3.0 before 2.3.0p43 allows an attacker…
|
— | فبراير 26, 2026 |
| CVE-2026-2356 | متوسط | 5.3 |
The User Registration & Membership – Custom Registration Form, Login Form, and User Profile plugin for WordPress is vuln…
|
— | فبراير 26, 2026 |