🛡️ مركز معلومات الثغرات
قاعدة بيانات الثغرات والتهديدات الأمنية المحدّثة
| المعرّف | الخطورة | CVSS | الوصف | الحالة | النشر |
|---|---|---|---|---|---|
| CVE-2018-25205 | مرتفع | 8.2 |
ASP.NET jVideo Kit 1.0 contains an SQL injection vulnerability that allows unauthenticated attackers to inject SQL comma…
|
— | مارس 26, 2026 |
| CVE-2018-25206 | مرتفع | 8.2 |
KomSeo Cart 1.3 contains an SQL injection vulnerability that allows attackers to inject SQL commands through the 'my_ite…
|
— | مارس 26, 2026 |
| CVE-2018-25208 | مرتفع | 8.2 |
qdPM 9.1 contains an SQL injection vulnerability that allows unauthenticated attackers to extract database information b…
|
— | مارس 26, 2026 |
| CVE-2018-25209 | مرتفع | 8.2 |
OpenBiz Cubi Lite 3.0.8 contains a SQL injection vulnerability in the login form that allows unauthenticated attackers t…
|
— | مارس 26, 2026 |
| CVE-2018-25210 | مرتفع | 8.2 |
WebOfisi E-Ticaret 4.0 contains an SQL injection vulnerability in the 'urun' GET parameter of the endpoint that allows u…
|
⚡ Exploit | مارس 26, 2026 |
| CVE-2025-41368 | مرتفع | 8.1 |
Problem in the Small HTTP Server v3.06.36 service. An authenticated path traversal vulnerability in '/' allows remote us…
|
— | مارس 26, 2026 |
| CVE-2025-12805 | مرتفع | 8.1 |
A flaw was found in Red Hat OpenShift AI (RHOAI) llama-stack-operator. This vulnerability allows unauthorized access to …
|
— | مارس 26, 2026 |
| CVE-2026-34055 | مرتفع | 8.1 |
OpenEMR is a free and open source electronic health records and medical practice management application. Prior to versio…
|
✅ Patch | مارس 26, 2026 |
| CVE-2026-3108 | مرتفع | 8.0 |
Mattermost versions 11.2.x <= 11.2.2, 10.11.x <= 10.11.10, 11.4.x <= 11.4.0, 11.3.x <= 11.3.1 fail to sanitize user-cont…
|
— | مارس 26, 2026 |
| CVE-2018-25211 | مرتفع | 7.8 |
Allok Video Splitter 3.1.1217 contains a buffer overflow vulnerability that allows local attackers to cause a denial of …
|
⚡ Exploit | مارس 26, 2026 |
| CVE-2025-41359 | مرتفع | 7.8 |
Vulnerability related to an unquoted service path in Small HTTP Server 3.06.36, specifically affecting the executable lo…
|
— | مارس 26, 2026 |
| CVE-2026-33711 | مرتفع | 7.8 |
Incus is a system container and virtual machine manager. Incus provides an API to retrieve VM screenshots. That API reli…
|
⚡ Exploit | مارس 26, 2026 |
| CVE-2026-34056 | مرتفع | 7.7 |
OpenEMR is a free and open source electronic health records and medical practice management application. A Broken Access…
|
⚡ Exploit | مارس 26, 2026 |
| CVE-2026-33932 | مرتفع | 7.6 |
OpenEMR is a free and open source electronic health records and medical practice management application. Prior to versio…
|
✅ Patch | مارس 26, 2026 |
| CVE-2026-3622 | مرتفع | 7.5 |
The vulnerability exists in the UPnP component of TL-WR841N v14, where improper input validation leads to an out-of-boun…
|
— | مارس 26, 2026 |
| CVE-2023-7338 | مرتفع | 7.5 |
Ruckus Unleashed contains a remote code execution vulnerability in the web-based management interface that allows authen…
|
— | مارس 26, 2026 |
| CVE-2026-2511 | مرتفع | 7.5 |
The JS Help Desk – AI-Powered Support & Ticketing System plugin for WordPress is vulnerable to SQL Injection via the `mu…
|
— | مارس 26, 2026 |
| CVE-2026-27828 | مرتفع | 7.5 |
EVerest is an EV charging software stack. Prior to version 2026.02.0, ISO15118_chargerImpl::handle_session_setup uses v2…
|
— | مارس 26, 2026 |
| CVE-2026-26008 | مرتفع | 7.5 |
EVerest is an EV charging software stack. Versions prior to 2026.02.0 have an out-of-bounds access (std::vector) that le…
|
— | مارس 26, 2026 |
| CVE-2026-27664 | مرتفع | 7.5 |
A vulnerability has been identified in CPCI85 Central Processing/Communication (All versions < V26.10), SICORE Base syst…
|
— | مارس 26, 2026 |