🛡️ مركز معلومات الثغرات
قاعدة بيانات الثغرات والتهديدات الأمنية المحدّثة
| المعرّف | الخطورة | CVSS | الوصف | الحالة | النشر |
|---|---|---|---|---|---|
| CVE-2026-25859 | مرتفع | 8.8 |
Wekan versions prior to 8.20 allow non-administrative users to access migration functionality due to insufficient permis…
|
✅ Patch | فبراير 7, 2026 |
| CVE-2020-37141 | مرتفع | 8.2 |
AMSS++ version 4.31 contains a SQL injection vulnerability in the mail module's maildetail.php script through the 'id' p…
|
✅ Patch | فبراير 7, 2026 |
| CVE-2020-37163 | مرتفع | 8.2 |
QuickDate 1.3.2 contains a SQL injection vulnerability that allows remote attackers to manipulate database queries throu…
|
✅ Patch | فبراير 7, 2026 |
| CVE-2020-37107 | مرتفع | 7.5 |
Core FTP LE 2.2 contains a denial of service vulnerability that allows attackers to crash the application by overwriting…
|
✅ Patch | فبراير 7, 2026 |
| CVE-2020-37109 | مرتفع | 7.5 |
aSc TimeTables 2020.11.4 contains a denial of service vulnerability that allows attackers to crash the application by ov…
|
✅ Patch | فبراير 7, 2026 |
| CVE-2020-37122 | مرتفع | 7.5 |
SpotFTP-FTP Password Recover 2.4.8 contains a denial of service vulnerability that allows attackers to crash the applica…
|
✅ Patch | فبراير 7, 2026 |
| CVE-2020-37135 | مرتفع | 7.5 |
AMSS++ 4.7 contains an authentication bypass vulnerability that allows attackers to access administrative accounts using…
|
✅ Patch | فبراير 7, 2026 |
| CVE-2020-37146 | مرتفع | 7.5 |
ACE Security WiP-90113 HD Camera contains a configuration disclosure vulnerability that allows unauthenticated attackers…
|
✅ Patch | فبراير 7, 2026 |
| CVE-2020-37155 | مرتفع | 7.5 |
Core FTP Lite 1.3 contains a buffer overflow vulnerability in the username input field that allows attackers to crash th…
|
✅ Patch | فبراير 7, 2026 |
| CVE-2020-37157 | مرتفع | 7.5 |
DBPower C300 HD Camera contains a configuration disclosure vulnerability that allows unauthenticated attackers to retrie…
|
✅ Patch | فبراير 7, 2026 |
| CVE-2026-25561 | مرتفع | 7.5 |
WeKan versions prior to 8.19 contain an authorization weakness in the attachment upload API. The API does not fully vali…
|
✅ Patch | فبراير 7, 2026 |
| CVE-2026-25563 | مرتفع | 7.5 |
WeKan versions prior to 8.19 contain an insecure direct object reference (IDOR) in checklist creation and related checkl…
|
✅ Patch | فبراير 7, 2026 |
| CVE-2026-25564 | مرتفع | 7.5 |
WeKan versions prior to 8.19 contain an insecure direct object reference (IDOR) in checklist creation and related checkl…
|
✅ Patch | فبراير 7, 2026 |
| CVE-2026-2113 | مرتفع | 7.3 |
A security vulnerability has been detected in yuan1994 tpadmin up to 1.3.12. This affects an unknown part in the library…
|
✅ Patch | فبراير 7, 2026 |
| CVE-2026-2080 | مرتفع | 7.2 |
A vulnerability has been found in UTT HiPER 810 1.7.4-141218. This issue affects the function setSysAdm of the file /gof…
|
⚡ Exploit ✅ Patch | فبراير 7, 2026 |
| CVE-2026-2084 | مرتفع | 7.2 |
A weakness has been identified in D-Link DIR-823X 250416. This impacts an unknown function of the file /goform/set_langu…
|
⚡ Exploit ✅ Patch | فبراير 7, 2026 |
| CVE-2026-2085 | مرتفع | 7.2 |
A security vulnerability has been detected in D-Link DWR-M921 1.1.50. Affected is the function sub_419F20 of the file /b…
|
⚡ Exploit ✅ Patch | فبراير 7, 2026 |
| CVE-2020-37147 | مرتفع | 7.1 |
ATutor 2.2.4 contains a SQL injection vulnerability in the admin user deletion page that allows authenticated attackers …
|
✅ Patch | فبراير 7, 2026 |
| CVE-2020-37154 | مرتفع | 7.1 |
eLection 2.0 contains an authenticated SQL injection vulnerability in the candidate management endpoint that allows atta…
|
✅ Patch | فبراير 7, 2026 |
| CVE-2025-64175 | مرتفع | 8.8 |
Gogs is an open source self-hosted Git service. In version 0.13.3 and prior, Gogs’ 2FA recovery code validation does not…
|
✅ Patch | فبراير 6, 2026 |