🛡️ مركز معلومات الثغرات
قاعدة بيانات الثغرات والتهديدات الأمنية المحدّثة
| المعرّف | الخطورة | CVSS | الوصف | الحالة | النشر |
|---|---|---|---|---|---|
| CVE-2026-4959 | مرتفع | 7.3 |
A vulnerability was found in OpenBMB XAgent 1.0.0. This impacts the function check_user of the file XAgentServer/applica…
|
— | مارس 27, 2026 |
| CVE-2026-4955 | مرتفع | 7.3 |
A vulnerability was found in Shenzhen Ruiming Technology Streamax Crocus 1.3.44. This impacts an unknown function of the…
|
— | مارس 27, 2026 |
| CVE-2026-4908 | مرتفع | 7.3 |
A security flaw has been discovered in code-projects Simple Laundry System 1.0. This affects an unknown function of the …
|
— | مارس 27, 2026 |
| CVE-2025-15616 | متوسط | 6.7 |
Wazuh wazuh-agent and wazuh-manager versions 2.1.0 before 4.8.0 contain multiple shell injection and untrusted search pa…
|
— | مارس 27, 2026 |
| CVE-2025-15617 | متوسط | 6.5 |
Wazuh version 4.12.0 contains an exposure vulnerability in GitHub Actions workflow artifacts that allows attackers to ex…
|
— | مارس 27, 2026 |
| CVE-2026-3098 | متوسط | 6.5 |
The Smart Slider 3 plugin for WordPress is vulnerable to Arbitrary File Read in all versions up to, and including, 3.5.1…
|
— | مارس 27, 2026 |
| CVE-2026-4970 | متوسط | 6.3 |
A security flaw has been discovered in code-projects Social Networking Site 1.0. This affects an unknown function of the…
|
— | مارس 27, 2026 |
| CVE-2026-4907 | متوسط | 6.3 |
A vulnerability was identified in Page-Replica Page Replica up to e4a7f52e75093ee318b4d5a9a9db6751050d2ad0. The impacted…
|
— | مارس 27, 2026 |
| CVE-2025-15615 | متوسط | 5.8 |
Wazuh Manager authd service in wazuh-manager packages through version 4.7.3 contains an improper restriction of client-i…
|
— | مارس 27, 2026 |
| CVE-2026-32983 | متوسط | 5.8 |
Wazuh Manager authd service in wazuh-manager packages through version 4.7.3 contains an improper restriction of client-i…
|
— | مارس 27, 2026 |
| CVE-2026-4948 | متوسط | 5.5 |
A flaw was found in firewalld. A local unprivileged user can exploit this vulnerability by mis-authorizing two runtime D…
|
— | مارس 27, 2026 |
| CVE-2026-32859 | متوسط | 5.4 |
ByteDance Deer-Flow versions prior to commit 5dbb362 contain a stored cross-site scripting vulnerability in the artifact…
|
— | مارس 27, 2026 |
| CVE-2026-34411 | متوسط | 5.3 |
Appsmith versions prior to 1.98 expose sensitive instance management API endpoints without authentication. Unauthenticat…
|
— | مارس 27, 2026 |
| CVE-2026-33670 | حرج | 9.8 |
SiYuan is a personal knowledge management system. Prior to version 3.6.2, the /api/file/readDir interface was used to tr…
|
⚡ Exploit | مارس 26, 2026 |
| CVE-2026-33669 | حرج | 9.8 |
SiYuan is a personal knowledge management system. Prior to version 3.6.2, document IDs were retrieved via the /api/file/…
|
⚡ Exploit | مارس 26, 2026 |
| CVE-2026-33152 | حرج | 9.1 |
Tandoor Recipes is an application for managing recipes, planning meals, and building shopping lists. In versions prior t…
|
⚡ Exploit | مارس 26, 2026 |
| CVE-2026-4840 | مرتفع | 8.8 |
A security flaw has been discovered in Netcore Power 15AX up to 3.0.0.6938. Affected by this issue is the function setTo…
|
— | مارس 26, 2026 |
| CVE-2026-4902 | مرتفع | 8.8 |
A vulnerability was detected in Tenda AC5 15.03.06.47. This affects the function fromAddressNat of the file /goform/addr…
|
⚡ Exploit | مارس 26, 2026 |
| CVE-2026-2931 | مرتفع | 8.8 |
The Amelia Booking plugin for WordPress is vulnerable to Insecure Direct Object References in versions up to, and includ…
|
— | مارس 26, 2026 |
| CVE-2026-4862 | مرتفع | 8.8 |
A security vulnerability has been detected in UTT HiPER 1250GW up to 3.2.7-210907-180535. This issue affects the functio…
|
— | مارس 26, 2026 |