🛡️ مركز معلومات الثغرات
قاعدة بيانات الثغرات والتهديدات الأمنية المحدّثة
| المعرّف | الخطورة | CVSS | الوصف | الحالة | النشر |
|---|---|---|---|---|---|
| CVE-2023-38950 | حرج | 9.0 |
ZKTeco BioTime Path Traversal Vulnerability — ZKTeco BioTime contains a path traversal vulnerability in the iclock API t…
|
⚡ Exploit ✅ Patch | مايو 19, 2025 |
| CVE-2024-11182 | حرج | 9.0 |
MDaemon Email Server Cross-Site Scripting (XSS) Vulnerability — MDaemon Email Server contains a cross-site scripting (XS…
|
⚡ Exploit ✅ Patch | مايو 19, 2025 |
| CVE-2024-27443 | حرج | 9.0 |
Synacor Zimbra Collaboration Suite (ZCS) Cross-Site Scripting (XSS) Vulnerability — Zimbra Collaboration contains a cros…
|
⚡ Exploit ✅ Patch | مايو 19, 2025 |
| CVE-2025-27920 | حرج | 9.0 |
Srimax Output Messenger Directory Traversal Vulnerability — Srimax Output Messenger contains a directory traversal vulne…
|
⚡ Exploit ✅ Patch | مايو 19, 2025 |
| CVE-2025-4427 | حرج | 9.0 |
Ivanti Endpoint Manager Mobile (EPMM) Authentication Bypass Vulnerability — Ivanti Endpoint Manager Mobile (EPMM) contai…
|
⚡ Exploit ✅ Patch | مايو 19, 2025 |
| CVE-2025-4428 | حرج | 9.0 |
Ivanti Endpoint Manager Mobile (EPMM) Code Injection Vulnerability — Ivanti Endpoint Manager Mobile (EPMM) contains a co…
|
⚡ Exploit ✅ Patch | مايو 19, 2025 |
| CVE-2024-12987 | حرج | 9.0 |
DrayTek Vigor Routers OS Command Injection Vulnerability — DrayTek Vigor2960, Vigor300B, and Vigor3900 routers contain a…
|
⚡ Exploit ✅ Patch | مايو 15, 2025 |
| CVE-2025-42999 | حرج | 9.0 |
SAP NetWeaver Deserialization Vulnerability — SAP NetWeaver Visual Composer Metadata Uploader contains a deserialization…
|
⚡ Exploit ✅ Patch | مايو 15, 2025 |
| CVE-2025-32756 | حرج | 9.0 |
Fortinet Multiple Products Stack-Based Buffer Overflow Vulnerability — Fortinet FortiFone, FortiVoice, FortiNDR and Fort…
|
⚡ Exploit ✅ Patch | مايو 14, 2025 |
| CVE-2025-30397 | حرج | 9.0 |
Microsoft Windows Scripting Engine Type Confusion Vulnerability — Microsoft Windows Scripting Engine contains a type con…
|
⚡ Exploit ✅ Patch | مايو 13, 2025 |
| CVE-2025-30400 | حرج | 9.0 |
Microsoft Windows DWM Core Library Use-After-Free Vulnerability — Microsoft Windows DWM Core Library contains a use-afte…
|
⚡ Exploit ✅ Patch | مايو 13, 2025 |
| CVE-2025-32701 | حرج | 9.0 |
Microsoft Windows Common Log File System (CLFS) Driver Use-After-Free Vulnerability — Microsoft Windows Common Log File …
|
⚡ Exploit ✅ Patch | مايو 13, 2025 |
| CVE-2025-32706 | حرج | 9.0 |
Microsoft Windows Common Log File System (CLFS) Driver Heap-Based Buffer Overflow Vulnerability — Microsoft Windows Comm…
|
⚡ Exploit ✅ Patch | مايو 13, 2025 |
| CVE-2025-32709 | حرج | 9.0 |
Microsoft Windows Ancillary Function Driver for WinSock Use-After-Free Vulnerability — Microsoft Windows Ancillary Funct…
|
⚡ Exploit ✅ Patch | مايو 13, 2025 |
| CVE-2025-47729 | حرج | 9.0 |
TeleMessage TM SGNL Hidden Functionality Vulnerability — TeleMessage TM SGNL contains a hidden functionality vulnerabili…
|
⚡ Exploit ✅ Patch | مايو 12, 2025 |
| CVE-2024-11120 | حرج | 9.0 |
GeoVision Devices OS Command Injection Vulnerability — Multiple GeoVision devices contain an OS command injection vulner…
|
⚡ Exploit ✅ Patch | مايو 7, 2025 |
| CVE-2024-6047 | حرج | 9.0 |
GeoVision Devices OS Command Injection Vulnerability — Multiple GeoVision devices contain an OS command injection vulner…
|
⚡ Exploit ✅ Patch | مايو 7, 2025 |
| CVE-2025-27363 | حرج | 9.0 |
FreeType Out-of-Bounds Write Vulnerability — FreeType contains an out-of-bounds write vulnerability when attempting to p…
|
⚡ Exploit ✅ Patch | مايو 6, 2025 |
| CVE-2025-3248 | حرج | 9.0 |
Langflow Missing Authentication Vulnerability — Langflow contains a missing authentication vulnerability in the /api/v1/…
|
⚡ Exploit ✅ Patch | مايو 5, 2025 |
| CVE-2024-58136 | حرج | 9.0 |
Yiiframework Yii Improper Protection of Alternate Path Vulnerability — Yii Framework contains an improper protection of …
|
⚡ Exploit ✅ Patch | مايو 2, 2025 |