🛡️ مركز معلومات الثغرات
قاعدة بيانات الثغرات والتهديدات الأمنية المحدّثة
| المعرّف | الخطورة | CVSS | الوصف | الحالة | النشر |
|---|---|---|---|---|---|
| CVE-2025-41077 | مرتفع | 8.1 |
IDOR vulnerability has been found in Viafirma Inbox v4.5.13 that allows any authenticated user without privileges in the…
|
✅ Patch | يناير 12, 2026 |
| CVE-2025-41078 | مرتفع | 8.1 |
Weaknesses in the authorization mechanisms of Viafirma Documents v3.7.129 allow an authenticated user without privileges…
|
✅ Patch | يناير 12, 2026 |
| CVE-2024-14021 | مرتفع | 7.8 |
LlamaIndex (run-llama/llama_index) versions up to and including 0.11.6 contain an unsafe deserialization vulnerability i…
|
⚡ Exploit ✅ Patch | يناير 12, 2026 |
| CVE-2024-58339 | مرتفع | 7.5 |
LlamaIndex (run-llama/llama_index) versions up to and including 0.12.2 contain an uncontrolled resource consumption vuln…
|
⚡ Exploit ✅ Patch | يناير 12, 2026 |
| CVE-2024-58340 | مرتفع | 7.5 |
LangChain versions up to and including 0.3.1 contain a regular expression denial-of-service (ReDoS) vulnerability in the…
|
⚡ Exploit ✅ Patch | يناير 12, 2026 |
| CVE-2025-15514 | مرتفع | 7.5 |
Ollama 0.11.5-rc0 through current version 0.13.5 contain a null pointer dereference vulnerability in the multi-modal mod…
|
⚡ Exploit ✅ Patch | يناير 12, 2026 |
| CVE-2025-69271 | مرتفع | 7.5 |
Insufficiently Protected Credentials vulnerability in Broadcom DX NetOps Spectrum on Windows, Linux allows Sniffing Atta…
|
✅ Patch | يناير 12, 2026 |
| CVE-2025-69272 | مرتفع | 7.5 |
Cleartext Transmission of Sensitive Information vulnerability in Broadcom DX NetOps Spectrum on Windows, Linux allows Sn…
|
✅ Patch | يناير 12, 2026 |
| CVE-2025-69273 | مرتفع | 7.5 |
Improper Authentication vulnerability in Broadcom DX NetOps Spectrum on Windows, Linux allows Authentication Bypass.This…
|
✅ Patch | يناير 12, 2026 |
| CVE-2026-22200 | مرتفع | 7.5 |
Enhancesoft osTicket versions 1.18.x prior to 1.18.3 and 1.17.x prior to 1.17.7 contain an arbitrary file read vulnerabi…
|
⚡ Exploit ✅ Patch | يناير 12, 2026 |
| CVE-2026-22776 | مرتفع | 7.5 |
cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to version 0.30.1, a Denial of S…
|
⚡ Exploit ✅ Patch | يناير 12, 2026 |
| CVE-2026-0836 | مرتفع | 8.8 |
A vulnerability was determined in UTT 进取 520W 1.7.7-180627. The impacted element is the function strcpy of the file /gof…
|
⚡ Exploit ✅ Patch | يناير 11, 2026 |
| CVE-2026-0837 | مرتفع | 8.8 |
A vulnerability was identified in UTT 进取 520W 1.7.7-180627. This affects the function strcpy of the file /goform/formFir…
|
⚡ Exploit ✅ Patch | يناير 11, 2026 |
| CVE-2026-0838 | مرتفع | 8.8 |
A security flaw has been discovered in UTT 进取 520W 1.7.7-180627. This impacts the function strcpy of the file /goform/Co…
|
⚡ Exploit ✅ Patch | يناير 11, 2026 |
| CVE-2026-0839 | مرتفع | 8.8 |
A weakness has been identified in UTT 进取 520W 1.7.7-180627. Affected is the function strcpy of the file /goform/APSecuri…
|
⚡ Exploit ✅ Patch | يناير 11, 2026 |
| CVE-2026-0840 | مرتفع | 8.8 |
A security vulnerability has been detected in UTT 进取 520W 1.7.7-180627. Affected by this vulnerability is the function s…
|
⚡ Exploit ✅ Patch | يناير 11, 2026 |
| CVE-2026-0841 | مرتفع | 8.8 |
A vulnerability was detected in UTT 进取 520W 1.7.7-180627. Affected by this issue is the function strcpy of the file /gof…
|
⚡ Exploit ✅ Patch | يناير 11, 2026 |
| CVE-2025-68493 | مرتفع | 8.1 |
Missing XML Validation vulnerability in Apache Struts, Apache Struts.
This issue affects Apache Struts: from 2.0.0 befo…
|
✅ Patch | يناير 11, 2026 |
| CVE-2026-22688 | حرج | 9.9 |
WeKnora is an LLM-powered framework designed for deep document understanding and semantic retrieval. Prior to version 0.…
|
⚡ Exploit ✅ Patch | يناير 10, 2026 |
| CVE-2026-22606 | مرتفع | 7.8 |
Fickling is a Python pickling decompiler and static analyzer. Fickling versions up to and including 0.1.6 do not treat P…
|
⚡ Exploit ✅ Patch | يناير 10, 2026 |