🛡️ مركز معلومات الثغرات
قاعدة بيانات الثغرات والتهديدات الأمنية المحدّثة
| المعرّف | الخطورة | CVSS | الوصف | الحالة | النشر |
|---|---|---|---|---|---|
| CVE-2026-5244 | مرتفع | 7.3 |
A vulnerability has been found in Cesanta Mongoose up to 7.20. This affects the function mg_tls_recv_cert of the file mo…
|
— | أبريل 2, 2026 |
| CVE-2026-5346 | مرتفع | 7.3 |
A vulnerability was determined in huimeicloud hm_editor up to 2.2.3. Impacted is the function client.get of the file src…
|
— | أبريل 2, 2026 |
| CVE-2026-5418 | مرتفع | 7.3 |
A vulnerability was identified in appsmithorg appsmith up to 1.97. Impacted is the function computeDisallowedHosts of th…
|
— | أبريل 2, 2026 |
| CVE-2026-5322 | مرتفع | 7.3 |
A vulnerability has been found in AlejandroArciniegas mcp-data-vis bc597e391f184d2187062fd567599a3cb72adf51/de5a51525a69…
|
— | أبريل 2, 2026 |
| CVE-2026-5320 | مرتفع | 7.3 |
A vulnerability was detected in vanna-ai vanna up to 2.0.2. Affected by this vulnerability is an unknown functionality o…
|
— | أبريل 2, 2026 |
| CVE-2026-0686 | مرتفع | 7.2 |
The Webmention plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 5…
|
— | أبريل 2, 2026 |
| CVE-2026-33613 | مرتفع | 7.2 |
Due to the improper neutralisation of special elements used in an OS command, a remote attacker can exploit an RCE vulne…
|
— | أبريل 2, 2026 |
| CVE-2026-29782 | مرتفع | 7.2 |
OpenSTAManager is an open source management software for technical assistance and invoicing. Prior to version 2.10.2, th…
|
⚡ Exploit ✅ Patch | أبريل 2, 2026 |
| CVE-2026-34790 | مرتفع | 7.1 |
Endian Firewall version 3.3.25 and prior allow authenticated users to delete arbitrary files via directory traversal in …
|
— | أبريل 2, 2026 |
| CVE-2026-5330 | متوسط | 6.5 |
A vulnerability was found in SourceCodester/mayuri_k Best Courier Management System 1.0. Affected by this issue is some …
|
— | أبريل 2, 2026 |
| CVE-2026-0688 | متوسط | 6.4 |
The Webmention plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 5…
|
— | أبريل 2, 2026 |
| CVE-2026-34807 | متوسط | 6.4 |
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /cgi-bin/in…
|
— | أبريل 2, 2026 |
| CVE-2026-34806 | متوسط | 6.4 |
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /cgi-bin/sn…
|
— | أبريل 2, 2026 |
| CVE-2026-34803 | متوسط | 6.4 |
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the name parameter to /manage/qos/c…
|
— | أبريل 2, 2026 |
| CVE-2026-34802 | متوسط | 6.4 |
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark user ham spam parameter …
|
— | أبريل 2, 2026 |
| CVE-2026-34801 | متوسط | 6.4 |
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /manage/dhc…
|
— | أبريل 2, 2026 |
| CVE-2026-34800 | متوسط | 6.4 |
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the NAME parameter to /cgi-bin/upli…
|
— | أبريل 2, 2026 |
| CVE-2026-34799 | متوسط | 6.4 |
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /manage/dns…
|
— | أبريل 2, 2026 |
| CVE-2026-34798 | متوسط | 6.4 |
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /cgi-bin/ro…
|
— | أبريل 2, 2026 |
| CVE-2026-34804 | متوسط | 6.4 |
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the dscp parameter to /manage/qos/r…
|
— | أبريل 2, 2026 |