🛡️ مركز معلومات الثغرات
قاعدة بيانات الثغرات والتهديدات الأمنية المحدّثة
| المعرّف | الخطورة | CVSS | الوصف | الحالة | النشر |
|---|---|---|---|---|---|
| CVE-2026-34386 | مرتفع | 8.8 |
Fleet is open source device management software. Prior to 4.81.0, a SQL injection vulnerability in Fleet's MDM bootstrap…
|
— | مارس 27, 2026 |
| CVE-2019-25651 | مرتفع | 8.3 |
Ubiquiti UniFi Network Controller prior to 5.10.12 (excluding 5.6.42), UAP FW prior to 4.0.6, UAP-AC, UAP-AC v2, and UAP…
|
— | مارس 27, 2026 |
| CVE-2026-33941 | مرتفع | 8.2 |
Handlebars provides the power necessary to let users build semantic templates. In versions 4.0.0 through 4.7.8, the Hand…
|
⚡ Exploit ✅ Patch | مارس 27, 2026 |
| CVE-2026-4248 | مرتفع | 8.0 |
The Ultimate Member plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and incl…
|
— | مارس 27, 2026 |
| CVE-2026-27309 | مرتفع | 7.8 |
Substance3D - Stager versions 3.1.7 and earlier are affected by a Use After Free vulnerability that could result in arbi…
|
— | مارس 27, 2026 |
| CVE-2026-33867 | مرتفع | 7.5 |
WWBN AVideo is an open source video platform. In versions up to and including 26.0, AVideo allows content owners to pass…
|
⚡ Exploit ✅ Patch | مارس 27, 2026 |
| CVE-2026-33699 | مرتفع | 7.5 |
pypdf is a free and open-source pure-python PDF library. Versions prior to 6.9.2 have a vulnerability in which an attack…
|
✅ Patch | مارس 27, 2026 |
| CVE-2026-33935 | مرتفع | 7.5 |
MyTube is a self-hosted downloader and player for several video websites Prior to version 1.8.72, an unauthenticated att…
|
⚡ Exploit ✅ Patch | مارس 27, 2026 |
| CVE-2019-25652 | مرتفع | 7.5 |
UniFi Network Controller before version 5.10.22 and 5.11.x before 5.11.18 contains an improper certificate verification …
|
— | مارس 27, 2026 |
| CVE-2026-33871 | مرتفع | 7.5 |
Netty is an asynchronous, event-driven network application framework. In versions prior to 4.1.132.Final and 4.2.10.Fina…
|
— | مارس 27, 2026 |
| CVE-2026-34391 | مرتفع | 7.5 |
Fleet is open source device management software. Prior to 4.81.1, a vulnerability in Fleet's Windows MDM command process…
|
— | مارس 27, 2026 |
| CVE-2026-26061 | مرتفع | 7.5 |
Fleet is open source device management software. Prior to 4.81.0, Fleet contained multiple unauthenticated HTTP endpoint…
|
— | مارس 27, 2026 |
| CVE-2026-34388 | مرتفع | 7.5 |
Fleet is open source device management software. Prior to 4.81.0, a denial-of-service vulnerability in Fleet's gRPC Laun…
|
— | مارس 27, 2026 |
| CVE-2026-33745 | مرتفع | 7.4 |
cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to 0.39.0, the cpp-httplib HTTP …
|
⚡ Exploit | مارس 27, 2026 |
| CVE-2026-4956 | مرتفع | 7.3 |
A vulnerability was detected in Shenzhen Ruiming Technology Streamax Crocus 1.3.44. The affected element is an unknown f…
|
— | مارس 27, 2026 |
| CVE-2026-4955 | مرتفع | 7.3 |
A vulnerability was found in Shenzhen Ruiming Technology Streamax Crocus 1.3.44. This impacts an unknown function of the…
|
— | مارس 27, 2026 |
| CVE-2026-4959 | مرتفع | 7.3 |
A vulnerability was found in OpenBMB XAgent 1.0.0. This impacts the function check_user of the file XAgentServer/applica…
|
— | مارس 27, 2026 |
| CVE-2026-4908 | مرتفع | 7.3 |
A security flaw has been discovered in code-projects Simple Laundry System 1.0. This affects an unknown function of the …
|
— | مارس 27, 2026 |
| CVE-2025-15616 | متوسط | 6.7 |
Wazuh wazuh-agent and wazuh-manager versions 2.1.0 before 4.8.0 contain multiple shell injection and untrusted search pa…
|
— | مارس 27, 2026 |
| CVE-2026-3098 | متوسط | 6.5 |
The Smart Slider 3 plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 3.5.1…
|
— | مارس 27, 2026 |