🛡️ مركز معلومات الثغرات
قاعدة بيانات الثغرات والتهديدات الأمنية المحدّثة
| المعرّف | الخطورة | CVSS | الوصف | الحالة | النشر |
|---|---|---|---|---|---|
| CVE-2026-0227 | مرتفع | 7.5 |
A vulnerability in Palo Alto Networks PAN-OS software enables an unauthenticated attacker to cause a denial of service (…
|
✅ Patch | يناير 15, 2026 |
| CVE-2026-0897 | مرتفع | 7.5 |
Allocation of Resources Without Limits or Throttling in the HDF5 weight loading component in Google Keras 3.0.0 through …
|
✅ Patch | يناير 15, 2026 |
| CVE-2026-21905 | مرتفع | 7.5 |
A Loop with Unreachable Exit Condition ('Infinite Loop') vulnerability in the SIP application layer gateway (ALG) of Jun…
|
✅ Patch | يناير 15, 2026 |
| CVE-2026-21906 | مرتفع | 7.5 |
An Improper Handling of Exceptional Conditions vulnerability in the packet forwarding engine (PFE) of Juniper Networks J…
|
✅ Patch | يناير 15, 2026 |
| CVE-2026-21913 | مرتفع | 7.5 |
An Incorrect Initialization of Resource vulnerability in the Internal Device Manager (IDM) of Juniper Networks Junos OS …
|
✅ Patch | يناير 15, 2026 |
| CVE-2026-21914 | مرتفع | 7.5 |
An Improper Locking vulnerability in the GTP plugin of Juniper Networks Junos OS on SRX Series allows an unauthenticated…
|
✅ Patch | يناير 15, 2026 |
| CVE-2026-21917 | مرتفع | 7.5 |
An Improper Validation of Syntactic Correctness of Input vulnerability in the Web-Filtering module of Juniper Networks J…
|
✅ Patch | يناير 15, 2026 |
| CVE-2026-21918 | مرتفع | 7.5 |
A Double Free vulnerability in the flow processing daemon (flowd) of Juniper Networks Junos OS on SRX and MX Series allo…
|
✅ Patch | يناير 15, 2026 |
| CVE-2026-21920 | مرتفع | 7.5 |
An Unchecked Return Value vulnerability in the DNS module of Juniper Networks Junos OS on SRX Series allows an unauthent…
|
✅ Patch | يناير 15, 2026 |
| CVE-2026-22803 | مرتفع | 7.5 |
SvelteKit is a framework for rapidly developing robust, performant web applications using Svelte. From 2.49.0 to 2.49.4,…
|
✅ Patch | يناير 15, 2026 |
| CVE-2026-22863 | مرتفع | 7.5 |
Deno is a JavaScript, TypeScript, and WebAssembly runtime. Before 2.6.0, node:crypto doesn't finalize cipher. The vulner…
|
⚡ Exploit ✅ Patch | يناير 15, 2026 |
| CVE-2025-59960 | مرتفع | 7.4 |
An Improper Check for Unusual or Exceptional Conditions vulnerability in the Juniper DHCP service (jdhcpd) of Juniper Ne…
|
✅ Patch | يناير 15, 2026 |
| CVE-2021-47766 | مرتفع | 7.1 |
Kmaleon 1.1.0.205 contains an authenticated SQL injection vulnerability in the 'tipocomb' parameter of kmaleonW.php that…
|
✅ Patch | يناير 15, 2026 |
| CVE-2026-21908 | مرتفع | 7.1 |
A Use After Free vulnerability was identified in the 802.1X authentication daemon (dot1xd) of Juniper Networks Junos OS …
|
✅ Patch | يناير 15, 2026 |
| CVE-2026-23512 | مرتفع | 8.6 |
SumatraPDF is a multi-format reader for Windows. In 3.5.2 and earlier, there is a Untrusted Search Path vulnerability wh…
|
⚡ Exploit ✅ Patch | يناير 14, 2026 |
| CVE-2026-22856 | مرتفع | 8.1 |
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to 3.20.1, a race in the serial channel IRP threa…
|
⚡ Exploit ✅ Patch | يناير 14, 2026 |
| CVE-2025-13455 | مرتفع | 7.8 |
A vulnerability was reported in ThinkPlus configuration software that could allow a local authenticated user to bypass T…
|
✅ Patch | يناير 14, 2026 |
| CVE-2025-12166 | مرتفع | 7.5 |
The Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin plugin for WordPress is vulnerable to bli…
|
✅ Patch | يناير 14, 2026 |
| CVE-2025-14770 | مرتفع | 7.5 |
The Shipping Rate By Cities plugin for WordPress is vulnerable to SQL Injection via the 'city' parameter in all versions…
|
✅ Patch | يناير 14, 2026 |
| CVE-2026-21889 | مرتفع | 7.5 |
Weblate is a web based localization tool. Prior to 5.15.2, the screenshot images were served directly by the HTTP server…
|
✅ Patch | يناير 14, 2026 |