🛡️ مركز معلومات الثغرات
قاعدة بيانات الثغرات والتهديدات الأمنية المحدّثة
| المعرّف | الخطورة | CVSS | الوصف | الحالة | النشر |
|---|---|---|---|---|---|
| CVE-2026-4021 | مرتفع | 8.1 |
The Contest Gallery plugin for WordPress is vulnerable to an authentication bypass leading to admin account takeover in …
|
— | مارس 24, 2026 |
| CVE-2026-32853 | مرتفع | 8.1 |
LibVNCServer versions 0.9.15 and prior (fixed in commit 009008e) contain a heap out-of-bounds read vulnerability in the …
|
⚡ Exploit ✅ Patch | مارس 24, 2026 |
| CVE-2026-33335 | مرتفع | 8.0 |
Vikunja is an open-source self-hosted task management platform. Starting in version 0.21.0 and prior to version 2.2.0, t…
|
⚡ Exploit | مارس 24, 2026 |
| CVE-2026-24152 | مرتفع | 7.8 |
NVIDIA Megatron-LM contains a vulnerability in checkpoint loading where an Attacker may cause an RCE by convincing a use…
|
— | مارس 24, 2026 |
| CVE-2025-33248 | مرتفع | 7.8 |
NVIDIA Megatron-LM contains a vulnerability in the hybrid conversion script where an Attacker may cause an RCE by convin…
|
— | مارس 24, 2026 |
| CVE-2025-33247 | مرتفع | 7.8 |
NVIDIA Megatron LM contains a vulnerability in quantization configuration loading, which could allow remote code executi…
|
— | مارس 24, 2026 |
| CVE-2026-32647 | مرتفع | 7.8 |
NGINX Open Source and NGINX Plus have a vulnerability in the ngx_http_mp4_module module, which might allow an attacker t…
|
— | مارس 24, 2026 |
| CVE-2026-27784 | مرتفع | 7.8 |
The 32-bit implementation of NGINX Open Source has a vulnerability in the ngx_http_mp4_module module, which might allow …
|
— | مارس 24, 2026 |
| CVE-2026-4775 | مرتفع | 7.8 |
A flaw was found in the libtiff library. A remote attacker could exploit a signed integer overflow vulnerability in the …
|
— | مارس 24, 2026 |
| CVE-2026-24150 | مرتفع | 7.8 |
NVIDIA Megatron-LM contains a vulnerability in checkpoint loading where an Attacker may cause an RCE by convincing a use…
|
— | مارس 24, 2026 |
| CVE-2026-24151 | مرتفع | 7.8 |
NVIDIA Megatron-LM contains a vulnerability in inferencing where an Attacker may cause an RCE by convincing a user to lo…
|
— | مارس 24, 2026 |
| CVE-2026-32948 | مرتفع | 7.8 |
sbt is a build tool for Scala, Java, and others. From version 0.9.5 to before version 1.12.7, on Windows, sbt uses Proce…
|
⚡ Exploit ✅ Patch | مارس 24, 2026 |
| CVE-2026-4697 | مرتفع | 7.5 |
Incorrect boundary conditions in the Audio/Video: Web Codecs component. This vulnerability affects Firefox < 149, Firefo…
|
— | مارس 24, 2026 |
| CVE-2026-3509 | مرتفع | 7.5 |
An unauthenticated remote attacker may be able to control the format string of messages processed by the Audit Log of th…
|
— | مارس 24, 2026 |
| CVE-2026-4695 | مرتفع | 7.5 |
Incorrect boundary conditions in the Audio/Video: Web Codecs component. This vulnerability affects Firefox < 149, Firefo…
|
— | مارس 24, 2026 |
| CVE-2026-4694 | مرتفع | 7.5 |
Incorrect boundary conditions, integer overflow in the Graphics component. This vulnerability affects Firefox < 149, Fir…
|
— | مارس 24, 2026 |
| CVE-2026-4685 | مرتفع | 7.5 |
Incorrect boundary conditions in the Graphics: Canvas2D component. This vulnerability affects Firefox < 149, Firefox ESR…
|
— | مارس 24, 2026 |
| CVE-2026-4693 | مرتفع | 7.5 |
Incorrect boundary conditions in the Audio/Video: Playback component. This vulnerability affects Firefox < 149, Firefox …
|
— | مارس 24, 2026 |
| CVE-2026-4662 | مرتفع | 7.5 |
The JetEngine plugin for WordPress is vulnerable to SQL Injection via the `listing_load_more` AJAX action in all version…
|
— | مارس 24, 2026 |
| CVE-2026-4686 | مرتفع | 7.5 |
Incorrect boundary conditions in the Graphics: Canvas2D component. This vulnerability affects Firefox < 149, Firefox ESR…
|
— | مارس 24, 2026 |