🛡️ مركز معلومات الثغرات
قاعدة بيانات الثغرات والتهديدات الأمنية المحدّثة
| المعرّف | الخطورة | CVSS | الوصف | الحالة | النشر |
|---|---|---|---|---|---|
| CVE-2026-5813 | مرتفع | 7.3 |
A weakness has been identified in PHPGurukul Online Course Registration 3.1. This vulnerability affects unknown code of …
|
— | أبريل 8, 2026 |
| CVE-2026-1343 | مرتفع | 7.2 |
IBM Verify Identity Access Container 11.0 through 11.0.2 and IBM Security Verify Access Container 10.0 through 10.0.9.1 …
|
— | أبريل 8, 2026 |
| CVE-2026-4808 | مرتفع | 7.2 |
The Gerador de Certificados – DevApps plugin for WordPress is vulnerable to arbitrary file uploads due to missing file t…
|
— | أبريل 8, 2026 |
| CVE-2026-32590 | مرتفع | 7.1 |
A flaw was found in Red Hat Quay's handling of resumable container image layer uploads. The upload process stores interm…
|
— | أبريل 8, 2026 |
| CVE-2026-40024 | مرتفع | 7.1 |
The Sleuth Kit through 4.14.0 contains a path traversal vulnerability in tsk_recover that allows an attacker to write fi…
|
— | أبريل 8, 2026 |
| CVE-2026-32589 | مرتفع | 7.1 |
A flaw was found in Red Hat Quay's container image upload process. An authenticated user with push access to any reposit…
|
— | أبريل 8, 2026 |
| CVE-2026-39883 | مرتفع | 7.0 |
OpenTelemetry-Go is the Go implementation of OpenTelemetry. From 1.15.0 to 1.42.0, the fix for CVE-2026-24051 changed th…
|
⚡ Exploit | أبريل 8, 2026 |
| CVE-2025-30650 | متوسط | 6.7 |
A Missing Authentication for Critical Function vulnerability in command processing of Juniper Networks Junos OS allows a…
|
— | أبريل 8, 2026 |
| CVE-2026-1672 | متوسط | 6.5 |
The BEAR – Bulk Editor and Products Manager Professional for WooCommerce by Pluginus.Net plugin for WordPress is vulnera…
|
— | أبريل 8, 2026 |
| CVE-2026-2377 | متوسط | 6.5 |
A flaw was found in mirror-registry. Authenticated users can exploit the log export feature by providing a specially cra…
|
— | أبريل 8, 2026 |
| CVE-2026-3480 | متوسط | 6.5 |
The WP Blockade plugin for WordPress is vulnerable to Missing Authorization in all versions up to and including 0.9.14. …
|
— | أبريل 8, 2026 |
| CVE-2026-1865 | متوسط | 6.5 |
The User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom U…
|
— | أبريل 8, 2026 |
| CVE-2026-40037 | متوسط | 6.5 |
OpenClaw before 2026.3.31 (patched in 2026.4.8) contains a request body replay vulnerability in fetchWithSsrFGuard that …
|
— | أبريل 8, 2026 |
| CVE-2026-2509 | متوسط | 6.4 |
The Page Builder: Pagelayer plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Button widget's Cu…
|
— | أبريل 8, 2026 |
| CVE-2026-3311 | متوسط | 6.4 |
The The Plus Addons for Elementor – Addons for Elementor, Page Templates, Widgets, Mega Menu, WooCommerce plugin for Wor…
|
— | أبريل 8, 2026 |
| CVE-2026-2988 | متوسط | 6.4 |
The Blubrry PowerPress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'powerpress' and 'podca…
|
— | أبريل 8, 2026 |
| CVE-2026-1396 | متوسط | 6.4 |
The Magic Conversation For Gravity Forms plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'magi…
|
— | أبريل 8, 2026 |
| CVE-2026-2481 | متوسط | 6.4 |
The Beaver Builder Page Builder – Drag and Drop Website Builder plugin for WordPress is vulnerable to Stored Cross-Site …
|
— | أبريل 8, 2026 |
| CVE-2026-3513 | متوسط | 6.4 |
The TableOn – WordPress Posts Table Filterable plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the…
|
— | أبريل 8, 2026 |
| CVE-2026-3239 | متوسط | 6.4 |
The Strong Testimonials plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's testimonial_v…
|
— | أبريل 8, 2026 |