🛡️ مركز معلومات الثغرات
قاعدة بيانات الثغرات والتهديدات الأمنية المحدّثة
| المعرّف | الخطورة | CVSS | الوصف | الحالة | النشر |
|---|---|---|---|---|---|
| CVE-2026-39911 | مرتفع | 8.8 |
Hashgraph Guardian through version 3.5.0 contains an unsandboxed JavaScript execution vulnerability in the Custom Logic …
|
— | أبريل 9, 2026 |
| CVE-2026-5982 | مرتفع | 8.8 |
A vulnerability was found in D-Link DIR-605L 2.13B01. This vulnerability affects the function formAdvNetwork of the file…
|
— | أبريل 9, 2026 |
| CVE-2026-5830 | مرتفع | 8.8 |
A vulnerability was identified in Tenda AC15 15.03.05.18. This affects the function websGetVar of the file /goform/SysTo…
|
— | أبريل 9, 2026 |
| CVE-2026-5979 | مرتفع | 8.8 |
A vulnerability was detected in D-Link DIR-605L 2.13B01. Affected by this vulnerability is the function formVirtualServ …
|
— | أبريل 9, 2026 |
| CVE-2026-33785 | مرتفع | 8.8 |
A Missing Authorization vulnerability in the CLI of Juniper Networks Junos OS on MX Series allows a local, authenticated…
|
— | أبريل 9, 2026 |
| CVE-2026-5983 | مرتفع | 8.8 |
A vulnerability was determined in D-Link DIR-605L 2.13B01. This issue affects the function formSetDDNS of the file /gofo…
|
— | أبريل 9, 2026 |
| CVE-2026-5980 | مرتفع | 8.8 |
A flaw has been found in D-Link DIR-605L 2.13B01. Affected by this issue is the function formSetMACFilter of the file /g…
|
— | أبريل 9, 2026 |
| CVE-2025-13914 | مرتفع | 8.7 |
A Key Exchange without Entity Authentication vulnerability in the SSH implementation of Juniper Networks Apstra allows a…
|
— | أبريل 9, 2026 |
| CVE-2026-39942 | مرتفع | 8.5 |
Directus is a real-time API and App dashboard for managing SQL database content. Prior to 11.17.0, the PATCH /files/{id}…
|
— | أبريل 9, 2026 |
| CVE-2023-54359 | مرتفع | 8.2 |
WordPress adivaha Travel Plugin 2.3 contains a time-based blind SQL injection vulnerability that allows unauthenticated …
|
— | أبريل 9, 2026 |
| CVE-2026-35645 | مرتفع | 8.1 |
OpenClaw before 2026.3.25 contains a privilege escalation vulnerability in the gateway plugin subagent fallback deleteSe…
|
— | أبريل 9, 2026 |
| CVE-2026-34512 | مرتفع | 8.1 |
OpenClaw before 2026.3.25 contains an improper access control vulnerability in the HTTP /sessions/:sessionKey/kill route…
|
— | أبريل 9, 2026 |
| CVE-2026-35625 | مرتفع | 7.8 |
OpenClaw before 2026.3.25 contains a privilege escalation vulnerability where silent local shared-auth reconnects auto-a…
|
— | أبريل 9, 2026 |
| CVE-2026-33788 | مرتفع | 7.8 |
A Missing Authentication for Critical Function vulnerability in the Flexible PIC Concentrators (FPCs) of Juniper Network…
|
— | أبريل 9, 2026 |
| CVE-2026-33793 | مرتفع | 7.8 |
An Execution with Unnecessary Privileges vulnerability in the User Interface (UI) of Juniper Networks Junos OS and Junos…
|
— | أبريل 9, 2026 |
| CVE-2026-33778 | مرتفع | 7.5 |
An Improper Validation of Syntactic Correctness of Input vulnerability in the IPsec library used by kmd and iked of Jun…
|
— | أبريل 9, 2026 |
| CVE-2026-33790 | مرتفع | 7.5 |
An Improper Check for Unusual or Exceptional Conditions vulnerability in the flow daemon (flowd) of Juniper Networks Jun…
|
— | أبريل 9, 2026 |
| CVE-2026-1584 | مرتفع | 7.5 |
A flaw was found in gnutls. A remote, unauthenticated attacker can exploit this vulnerability by sending a specially cra…
|
— | أبريل 9, 2026 |
| CVE-2026-35629 | مرتفع | 7.4 |
OpenClaw before 2026.3.25 contains a server-side request forgery vulnerability in multiple channel extensions that fail …
|
— | أبريل 9, 2026 |
| CVE-2026-33771 | مرتفع | 7.4 |
A Weak Password Requirements vulnerability in the password management function of Juniper Networks CTP OS might allow an…
|
— | أبريل 9, 2026 |