🛡️ مركز معلومات الثغرات
قاعدة بيانات الثغرات والتهديدات الأمنية المحدّثة
| المعرّف | الخطورة | CVSS | الوصف | الحالة | النشر |
|---|---|---|---|---|---|
| CVE-2025-52691 | حرج | 9.0 |
SmarterTools SmarterMail Unrestricted Upload of File with Dangerous Type Vulnerability — SmarterTools SmarterMail contai…
|
⚡ Exploit ✅ Patch | يناير 26, 2026 |
| CVE-2026-1428 | مرتفع | 8.8 |
Single Sign-On Portal System developed by WellChoose has a OS Command Injection vulnerability, allowing authenticated re…
|
✅ Patch | يناير 26, 2026 |
| CVE-2026-24428 | مرتفع | 8.8 |
Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.19(5037) contain an authorization flaw in the user…
|
✅ Patch | يناير 26, 2026 |
| CVE-2026-24440 | مرتفع | 8.8 |
Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.19(5037) allow account passwords to be changed thr…
|
✅ Patch | يناير 26, 2026 |
| CVE-2025-14459 | مرتفع | 8.5 |
A flaw was found in KubeVirt Containerized Data Importer (CDI). This vulnerability allows a user to clone PersistentVolu…
|
✅ Patch | يناير 26, 2026 |
| CVE-2020-36952 | مرتفع | 7.8 |
IObit Uninstaller 10 Pro contains an unquoted service path vulnerability that allows local users to potentially execute …
|
✅ Patch | يناير 26, 2026 |
| CVE-2020-36953 | مرتفع | 7.8 |
MiniTool ShadowMaker 3.2 contains an unquoted service path vulnerability in the MTAgentService that allows local attacke…
|
✅ Patch | يناير 26, 2026 |
| CVE-2020-36957 | مرتفع | 7.8 |
PDF Complete 3.5.310.2002 contains an unquoted service path vulnerability in its pdfsvc.exe service configuration. Attac…
|
✅ Patch | يناير 26, 2026 |
| CVE-2020-36958 | مرتفع | 7.8 |
Kite 1.2020.1119.0 contains an unquoted service path vulnerability in the KiteService Windows service that allows local …
|
✅ Patch | يناير 26, 2026 |
| CVE-2020-36959 | مرتفع | 7.8 |
IDT PC Audio 1.0.6499.0 contains an unquoted service path vulnerability that allows local users to potentially execute a…
|
✅ Patch | يناير 26, 2026 |
| CVE-2026-24430 | مرتفع | 7.5 |
Shenzhen Tenda W30E V2 firmware versions up to and including V16.01.0.19(5037) disclose sensitive account credentials in…
|
✅ Patch | يناير 26, 2026 |
| CVE-2025-59473 | مرتفع | 7.2 |
SQL Injection vulnerability in the Structure for Admin authenticated user
|
✅ Patch | يناير 26, 2026 |
| CVE-2026-0810 | مرتفع | 7.1 |
A flaw was found in gix-date. The `gix_date::parse::TimeBuf::as_str` function can generate strings containing invalid no…
|
⚡ Exploit ✅ Patch | يناير 26, 2026 |
| CVE-2020-36933 | مرتفع | 7.8 |
HTC IPTInstaller 4.0.9 contains an unquoted service path vulnerability in the PassThru Service configuration. Attackers …
|
✅ Patch | يناير 25, 2026 |
| CVE-2020-36934 | مرتفع | 7.8 |
Deep Instinct Windows Agent 1.2.24.0 contains an unquoted service path vulnerability in the DeepNetworkService that allo…
|
✅ Patch | يناير 25, 2026 |
| CVE-2020-36935 | مرتفع | 7.8 |
KMSpico 17.1.0.0 contains an unquoted service path vulnerability in the Service KMSELDI configuration that allows local …
|
✅ Patch | يناير 25, 2026 |
| CVE-2020-36936 | مرتفع | 7.8 |
Magic Mouse 2 Utilities 2.20 contains an unquoted service path vulnerability in its Windows service configuration. Attac…
|
✅ Patch | يناير 25, 2026 |
| CVE-2020-36937 | مرتفع | 7.8 |
Microvirt MEMU Play 3.7.0 contains an unquoted service path vulnerability in the MEmusvc Windows service that allows loc…
|
✅ Patch | يناير 25, 2026 |
| CVE-2025-71162 | مرتفع | 7.8 |
In the Linux kernel, the following vulnerability has been resolved:
dmaengine: tegra-adma: Fix use-after-free
A use-af…
|
✅ Patch | يناير 25, 2026 |
| CVE-2026-0911 | مرتفع | 7.5 |
The Hustle – Email Marketing, Lead Generation, Optins, Popups plugin for WordPress is vulnerable to arbitrary file uploa…
|
✅ Patch | يناير 24, 2026 |