🛡️ مركز معلومات الثغرات
قاعدة بيانات الثغرات والتهديدات الأمنية المحدّثة
| المعرّف | الخطورة | CVSS | الوصف | الحالة | النشر |
|---|---|---|---|---|---|
| CVE-2026-20104 | متوسط | 6.1 |
A vulnerability in the bootloader of Cisco IOS XE Software for Cisco Catalyst 9200 Series Switches, Cisco Catalyst ESS93…
|
— | مارس 25, 2026 |
| CVE-2025-64648 | متوسط | 5.9 |
IBM Concert 1.0.0 through 2.2.0 transmits data in clear text that could allow an attacker to obtain sensitive informatio…
|
— | مارس 25, 2026 |
| CVE-2026-27656 | متوسط | 5.7 |
Mattermost versions 11.4.x <= 11.4.0, 11.3.x <= 11.3.1, 11.2.x <= 11.2.3, 10.11.x <= 10.11.11 fail to properly validate …
|
— | مارس 25, 2026 |
| CVE-2026-2483 | متوسط | 5.4 |
IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 is vulnerable to cross-site scripting. This vulnerability al…
|
— | مارس 25, 2026 |
| CVE-2025-14912 | متوسط | 5.4 |
IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 is vulnerable to server-side request forgery (SSRF). This ma…
|
— | مارس 25, 2026 |
| CVE-2026-3591 | متوسط | 5.4 |
A use-after-return vulnerability exists in the `named` server when handling DNS queries signed with SIG(0). Using a spec…
|
— | مارس 25, 2026 |
| CVE-2026-4816 | متوسط | 5.4 |
A Reflected Cross Site Scripting (XSS) vulnerability has been found in Support Board v3.7.7. This vulnerability allows a…
|
— | مارس 25, 2026 |
| CVE-2026-20114 | متوسط | 5.4 |
A vulnerability in the Lobby Ambassador web-based management API of Cisco IOS XE Software could allow an authenticated, …
|
— | مارس 25, 2026 |
| CVE-2026-1015 | متوسط | 5.4 |
IBM InfoSphere Information Server 11.7.0.0 through 11.7.1.6 is vulnerable to server-side request forgery (SSRF). This ma…
|
— | مارس 25, 2026 |
| CVE-2026-20108 | متوسط | 5.4 |
A vulnerability in the web-based management interface of Cisco Catalyst SD-WAN Manager could allow an authenticated, rem…
|
— | مارس 25, 2026 |
| CVE-2026-1561 | متوسط | 5.4 |
IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.3 IBM WebSphere Application Server Liberty is vulnera…
|
— | مارس 25, 2026 |
| CVE-2026-33722 | متوسط | 5.3 |
n8n is an open source workflow automation platform. Prior to versions 2.6.4 and 1.123.23, an authenticated user without …
|
— | مارس 25, 2026 |
| CVE-2026-20113 | متوسط | 5.3 |
A vulnerability in the web-based Cisco IOx application hosting environment management interface of Cisco IOS XE Software…
|
— | مارس 25, 2026 |
| CVE-2025-36440 | متوسط | 5.1 |
IBM Concert 1.0.0 through 2.2.0 could allow a local user to obtain sensitive information due to missing function level a…
|
— | مارس 25, 2026 |
| CVE-2025-36438 | متوسط | 5.1 |
IBM Concert 1.0.0 through 2.2.0 could allow a privileged user to perform unauthorized actions due to improper restrictio…
|
— | مارس 25, 2026 |
| CVE-2026-30932 | مرتفع | 8.8 |
Froxlor is open source server administration software. Prior to version 2.3.5, the DomainZones.add API endpoint (accessi…
|
⚡ Exploit ✅ Patch | مارس 24, 2026 |
| CVE-2019-25647 | مرتفع | 8.8 |
PhreeBooks ERP 5.2.3 contains a remote code execution vulnerability in the image manager that allows authenticated attac…
|
⚡ Exploit | مارس 24, 2026 |
| CVE-2026-4639 | مرتفع | 8.8 |
Vitals ESP developed by Galaxy Software Services has a Incorrect Authorization vulnerability, allowing authenticated rem…
|
— | مارس 24, 2026 |
| CVE-2026-33336 | مرتفع | 8.8 |
Vikunja is an open-source self-hosted task management platform. Starting in version 0.21.0 and prior to version 2.2.0, t…
|
⚡ Exploit | مارس 24, 2026 |
| CVE-2025-41660 | مرتفع | 8.8 |
A low-privileged remote attacker may be able to replace the boot application of the CODESYS Control runtime system, enab…
|
— | مارس 24, 2026 |