🛡️ مركز معلومات الثغرات
قاعدة بيانات الثغرات والتهديدات الأمنية المحدّثة
| المعرّف | الخطورة | CVSS | الوصف | الحالة | النشر |
|---|---|---|---|---|---|
| CVE-2025-50652 | مرتفع | 7.5 |
An issue in D-Link DI-8003 16.07.26A1 related to improper handling of the id parameter in the /saveparm_usb.asp endpoint…
|
— | أبريل 8, 2026 |
| CVE-2026-5813 | مرتفع | 7.3 |
A weakness has been identified in PHPGurukul Online Course Registration 3.1. This vulnerability affects unknown code of …
|
— | أبريل 8, 2026 |
| CVE-2026-5805 | مرتفع | 7.3 |
A weakness has been identified in code-projects Easy Blog Site up to 1.0. The impacted element is an unknown function of…
|
— | أبريل 8, 2026 |
| CVE-2026-5802 | مرتفع | 7.3 |
A vulnerability was identified in idachev mcp-javadc up to 1.2.4. Impacted is an unknown function of the component HTTP …
|
— | أبريل 8, 2026 |
| CVE-2026-40027 | مرتفع | 7.3 |
ALEAPP (Android Logs Events And Protobuf Parser) through 3.4.0 contains a path traversal vulnerability in the NQ_Vault.p…
|
— | أبريل 8, 2026 |
| CVE-2026-4808 | مرتفع | 7.2 |
The Gerador de Certificados – DevApps plugin for WordPress is vulnerable to arbitrary file uploads due to missing file t…
|
— | أبريل 8, 2026 |
| CVE-2026-1343 | مرتفع | 7.2 |
IBM Verify Identity Access Container 11.0 through 11.0.2 and IBM Security Verify Access Container 10.0 through 10.0.9.1 …
|
— | أبريل 8, 2026 |
| CVE-2026-32589 | مرتفع | 7.1 |
A flaw was found in Red Hat Quay's container image upload process. An authenticated user with push access to any reposit…
|
— | أبريل 8, 2026 |
| CVE-2026-32590 | مرتفع | 7.1 |
A flaw was found in Red Hat Quay's handling of resumable container image layer uploads. The upload process stores interm…
|
— | أبريل 8, 2026 |
| CVE-2026-40024 | مرتفع | 7.1 |
The Sleuth Kit through 4.14.0 contains a path traversal vulnerability in tsk_recover that allows an attacker to write fi…
|
— | أبريل 8, 2026 |
| CVE-2026-39883 | مرتفع | 7.0 |
OpenTelemetry-Go is the Go implementation of OpenTelemetry. From 1.15.0 to 1.42.0, the fix for CVE-2026-24051 changed th…
|
⚡ Exploit | أبريل 8, 2026 |
| CVE-2026-5465 | مرتفع | 8.8 |
The Booking for Appointments and Events Calendar – Amelia plugin for WordPress is vulnerable to Insecure Direct Object R…
|
— | أبريل 7, 2026 |
| CVE-2026-20433 | مرتفع | 8.8 |
In Modem, there is a possible out of bounds write due to a missing bounds check. This could lead to remote escalation of…
|
— | أبريل 7, 2026 |
| CVE-2026-39342 | مرتفع | 8.8 |
ChurchCRM is an open-source church management system. Prior to 7.1.0, the searchwhat parameter via QueryView.php with th…
|
⚡ Exploit | أبريل 7, 2026 |
| CVE-2026-30460 | مرتفع | 8.8 |
Daylight Studio FuelCMS v1.5.2 was discovered to contain an authenticated remote code execution (RCE) vulnerability in t…
|
⚡ Exploit | أبريل 7, 2026 |
| CVE-2026-22683 | مرتفع | 8.8 |
Windmill versions 1.56.0 through 1.614.0 contain a missing authorization vulnerability that allows users with the Operat…
|
— | أبريل 7, 2026 |
| CVE-2026-4740 | مرتفع | 8.2 |
A flaw was found in Open Cluster Management (OCM), the technology underlying Red Hat Advanced Cluster Management (ACM). …
|
— | أبريل 7, 2026 |
| CVE-2026-5739 | مرتفع | 7.3 |
A security flaw has been discovered in PowerJob 5.1.0/5.1.1/5.1.2. The affected element is the function GroovyEvaluator.…
|
— | أبريل 7, 2026 |
| CVE-2026-5741 | مرتفع | 7.3 |
A weakness has been identified in suvarchal docker-mcp-server up to 0.1.0. The impacted element is the function stop_con…
|
— | أبريل 7, 2026 |
| CVE-2026-5736 | مرتفع | 7.3 |
A vulnerability was identified in PowerJob 5.1.0/5.1.1/5.1.2. Impacted is an unknown function of the file powerjob-serve…
|
— | أبريل 7, 2026 |