151
ثغرة
15
تهديد
0
خبر
29
حرجة
24
CISA KEV
🛡 الثغرات الأمنية (CVE)
ثغرة SSRF الحرجة في Omnissa Workspace One UEM تسمح للمهاجمين بالوصول إلى الشبكة دون مصادقة وإرسال طلبات بشكل تعسفي والوصول إلى البيانات الحساسة. تؤثر هذه الثغرة على جميع المنظمات التي تستخدم هذا المنتج وتتطلب إجراء فوري.
ثغرة حرجة في SolarWinds Web Help Desk تسمح بإلغاء تسلسل البيانات غير الموثوقة عبر مكون AjaxProxy. يمكن للمهاجمين استغلال هذه الثغرة لتنفيذ أوامر تعسفية على الخادم المضيف بامتيازات عالية. هذا يشكل خطراً فوري على سرية وتكامل البيانات.
تحتوي منتجات Apple المتعددة على ثغرة تجاوز المخزن المؤقت الحرجة التي يمكن استغلالها من خلال معالجة محتوى ويب ضار. يمكن للمهاجمين استخدام هذه الثغرة لتنفيذ أكواد عشوائية والتسبب في تلف الذاكرة. يتطلب هذا الضعف تصحيحات أمان فورية من Apple لجميع الأنظمة المتأثرة.
تحتوي منصة Craft CMS على ثغرة حقن أكواد حرجة تمكن المهاجمين من تنفيذ أكواد برمجية عشوائية بشكل بعيد. الثغرة لم يتم إصدار تصحيح لها حتى الآن، مما يشكل خطراً فوري على جميع الأنظمة المستخدمة. يجب على المؤسسات اتخاذ إجراءات تخفيف فورية أو التوقف عن استخدام المنتج حسب توجيهات البائع.
تؤثر هذه الثغرة على عدة منتجات Apple بما فيها watchOS و iOS و iPadOS و macOS و visionOS و tvOS. تنشأ المشكلة من آلية قفل غير صحيحة تسمح للتطبيقات الضارة بالوصول إلى الذاكرة المشتركة بين العمليات وتعديلها بشكل غير متوقع. هذا قد يؤدي إلى تسرب البيانات الحساسة أو تنفيذ أكواد ضارة أو…
تحتوي منتجات Apple المتعددة بما فيها watchOS و iOS و iPadOS و macOS و visionOS و tvOS على ثغرة كلاسيكية في تجاوز المخزن المؤقت. يمكن لتطبيق ضار استغلال هذه الثغرة لإنهاء النظام بشكل غير متوقع أو الكتابة إلى ذاكرة النواة. تم تصنيف الثغرة بدرجة حرجة مع درجة CVSS 9.8 وهي مدرجة في قا…
يعاني خادم Wing FTP من ثغرة في معالجة ملفات تعريف الارتباط (Cookies) حيث يتم توليد رسائل خطأ تحتوي على معلومات حساسة عند إدخال قيم طويلة في حقل UID. هذه الثغرة تسمح للمهاجمين بالحصول على معلومات سرية من خلال رسائل الخطأ المفصلة. لا يتوفر حالياً تصحيح رسمي من الشركة المصنعة، مما ي…
تعتبر CVE-2025-53521 ثغرة حرجة في مكون APM (Access Policy Manager) من F5 BIG-IP تتعلق بتجاوز المخزن المؤقت على مستوى المكدس. تسمح هذه الثغرة لمهاجم بدون مصادقة بتنفيذ أوامر عشوائية على النظام المتأثر. الثغرة مدرجة في قائمة CISA للثغرات المستغلة بنشاط (KEV) مما يشير إلى وجود استغل…
تحتوي مكتبة Laravel Livewire على ثغرة حقن أكواد حرجة (CVSS 9.8) تسمح للمهاجمين غير المصرحين بتنفيذ أوامر بعيدة في سيناريوهات معينة. الثغرة مدرجة في قائمة KEV (Known Exploited Vulnerabilities) مما يشير إلى استغلالها النشط. لا توجد تصحيحات متاحة حاليًا، مما يتطلب تطبيق تدابير التخف…
CVE-2025-66376
ثغرة XSS في Zimbra Collaboration Suite عبر توجيهات CSS @import في واجهة المستخدم الكلاسيكية
01:52 KSA
تؤثر هذه الثغرة على Synacor Zimbra Collaboration Suite وتسمح للمهاجمين باستغلال معالجة CSS غير الآمنة في واجهة المستخدم الكلاسيكية. يمكن للمهاجمين إدراج توجيهات @import في HTML البريد الإلكتروني لتنفيذ أكواد JavaScript عشوائية في سياق جلسة المستخدم. لا يتوفر حالياً تصحيح رسمي من …
تعتبر هذه الثغرة الحرجة في منصة n8n خطيرة جداً حيث تسمح بتنفيذ أكواد برمجية عشوائية على خوادم المنظمة. يمكن للمهاجمين استغلال نقص التحكم في موارد الأكواد المدارة ديناميكياً في نظام تقييم التعبيرات لتنفيذ أوامر تعسفية. عدم توفر تصحيح رسمي من الشركة المصنعة يزيد من خطورة الموقف بشك…
تتعلق هذه الثغرة بضعف في معالجة البيانات المسلسلة (Deserialization) في واجهة الإدارة المستندة إلى الويب لمركز إدارة جدار الحماية الآمن من سيسكو وخدمة التحكم الأمني السحابي. يمكن للمهاجمين البعيدين استغلال هذا الضعف دون الحاجة إلى بيانات اعتماد للوصول إلى النظام وتنفيذ أكواد Java …
تؤثر هذه الثغرة على Citrix NetScaler ADC (المعروف سابقاً باسم Citrix ADC) و NetScaler Gateway و NetScaler ADC FIPS و NDcPP عند تكوينها كمزود هوية SAML. تسمح الثغرة بقراءة البيانات خارج حدود الذاكرة المخصصة مما قد يؤدي إلى الكشف عن معلومات حساسة. الثغرة مدرجة في قائمة الثغرات المع…
تحتوي منصة Langflow على ثغرة حقن أكواد حرجة (CVSS 9.8) تمكن المهاجمين من بناء وتنفيذ تدفقات عمل عامة دون الحاجة إلى بيانات اعتماد المصادقة. يمكن للمهاجمين استغلال هذه الثغرة لتنفيذ أكواد ضارة وتعديل البيانات والوصول إلى الموارد الحساسة. لا يتوفر حالياً تصحيح رسمي من المورد، مما ي…
تحتوي نسخة عميل TrueConf على ثغرة في آلية التحقق من سلامة التحديثات، مما يسمح للمهاجمين بالتأثير على مسار توصيل التحديثات واستبدال الحمولات الأصلية بنسخ معدلة. عند تنفيذ أو تثبيت الحمولة المعدلة من قبل برنامج التحديث، قد يؤدي ذلك إلى تنفيذ كود عشوائي في سياق عملية التحديث أو حساب…
تسمح هذه الثغرة الحرجة في مكتبة Google Skia للرسومات بالكتابة خارج حدود الذاكرة المخصصة، مما قد يؤدي إلى تنفيذ كود عشوائي. يمكن للمهاجمين استغلال هذه الثغرة من خلال صفحات HTML مصنوعة بعناية، مما يؤثر على جميع المنتجات التي تستخدم مكتبة Skia.
ثغرة CVE-2026-3910 تمثل تقييداً غير كافٍ للعمليات داخل حدود المخزن المؤقت في محرك V8 بـ Google Chromium. يمكن للمهاجمين البعيدين استغلال هذه الثغرة عبر صفحات HTML مصنعة لتنفيذ أكواد عشوائية حتى داخل بيئة الحماية (Sandbox). تؤثر الثغرة على جميع المتصفحات المبنية على Chromium بما ف…
تحتوي Google Dawn على ثغرة استخدام بعد التحرير (use-after-free) التي قد تسمح لمهاجم بعيد قام باختراق عملية العرض بتنفيذ كود عشوائي عبر صفحة HTML معدة خصيصاً. قد تؤثر هذه الثغرة على منتجات متعددة قائمة على Chromium بما في ذلك، على سبيل المثال لا الحصر، Google Chrome و Microsoft Ed…
ثغرة SSRF في Azure Custom Locations Resource Provider تسمح للمهاجمين المصرحين بتنفيذ طلبات شبكية مزيفة لرفع صلاحياتهم. تؤثر على بيئات Azure الهجينة والسحابية في المنظمات السعودية. قد تؤدي إلى وصول غير مصرح به إلى موارد حساسة.
تحتوي نسخ Vim السابقة للإصدار 9.2.0272 على ثغرة حرجة تسمح بتنفيذ أكواد عشوائية عند فتح ملف مصنوع بعناية. الثغرة تنشأ من حقن %{expr} في مكون tabpanel الذي يفتقد حماية P_MLE. المهاجمون يمكنهم استغلال هذا لتنفيذ أوامر نظام بامتيازات المستخدم.
تؤثر هذه الثغرة على إطار عمل تطوير المواقع baserCMS وتسمح للمسؤولين المصرحين بتنفيذ أوامر نظام التشغيل العشوائية على الخادم. يحدث الضعف في وظيفة التحديث الأساسية حيث لا يتم التحقق من صحة مدخلات المستخدم قبل تمريرها إلى دوال exec().
ثغرة حقن أوامر نظام التشغيل في baserCMS تسمح للمسؤولين المصرحين بتنفيذ أوامر عشوائية على خادم الويب. تؤثر الثغرة على وظيفة التحديث وتم إصلاحها في الإصدار 5.2.3. يمكن للمهاجمين الذين لديهم امتيازات إدارية استخدام هذه الثغرة للسيطرة الكاملة على النظام.
يتعلق هذا الضعف بفقدان آليات المصادقة الكافية في خادم Azure MCP، مما يسمح للمهاجمين بالوصول المباشر إلى الوظائف الحرجة دون بيانات اعتماد صحيحة. يمكن للمهاجمين استغلال هذه الثغرة للكشف عن معلومات حساسة وبيانات سرية عبر الشبكة. تصنف الثغرة بدرجة حرجة مع درجة CVSS 9.1، مما يشير إلى …
خادم Oracle WebLogic يحتوي على ثغرة أمنية حرجة تتعلق بفك تسلسل البيانات غير الموثوقة في مكتبة Apache Commons. هذه الثغرة تسمح للمهاجمين بتنفيذ أكواد برمجية بشكل بعيد على النظام المتأثر.
ثغرة أمنية حرجة في Oracle Java SE تتعلق بالتحقق من السلامة. تسمح هذه الثغرة للمهاجمين البعيدين بالوصول إلى النظام والتأثير على سلامة البيانات والتطبيقات من خلال متجهات هجوم غير محددة بشكل كامل مرتبطة بعمليات النشر والنسخ. الثغرة لم يتم تحديد تفاصيلها بشكل دقيق من قبل Oracle
توجد ثغرة استخدام الذاكرة بعد تحريرها (Use-After-Free) في فئة ActionScript 3 ByteArray ضمن Adobe Flash Player تسمح لمهاجم بتنفيذ أكواد برمجية بشكل بعيد على نظام الضحية المتأثر
ثغرة استخدام الذاكرة بعد تحريرها (Use-After-Free) في فئة DisplayObject الموجودة في تطبيق ActionScript 3 (AS3) في Adobe Flash Player تسمح للمهاجمين البعيدين بتنفيذ أكواد برمجية عشوائية أو التسبب في رفض الخدمة (DoS) على الأنظمة المتأثرة
ثغرة استخدام الذاكرة بعد تحريرها (Use-After-Free) في فئة BitmapData الموجودة في تطبيق ActionScript 3 (AS3) في Adobe Flash Player تسمح للمهاجمين البعيدين بتنفيذ أكواد برمجية عشوائية أو التسبب في رفض الخدمة (DoS) على الأنظمة المتأثرة
ثغرة كشف معلومات في واجهة مستخدم Jenkins تسمح للمستخدمين برؤية أسماء الوظائف والإصدارات التي يجب أن تكون غير متاحة لهم على صفحات البصمات. هذا يسمح بالوصول غير المصرح به إلى معلومات حساسة حول الوظائف والإصدارات في النظام.
CVE-2025-59710
An issue was discovered in Biztalk360 before 11.5. Because of incorrect access control, any user is able to request the
11:00 KSA
An issue was discovered in Biztalk360 before 11.5. Because of incorrect access control, any user is able to request the loading a DLL file. During the loading, a method is called. An attacker can craft a malicious DLL, upload it to the server, and use it to achieve remote code ex…
CVE-2026-25044
Budibase is an open-source low-code platform. Prior to version 3.33.4, the bash automation step executes user-provided c
04:54 KSA
Budibase is an open-source low-code platform. Prior to version 3.33.4, the bash automation step executes user-provided commands using execSync without proper sanitization or validation. User input is processed through processStringSync which allows template interpolation, potenti…
CVE-2026-32914
OpenClaw before 2026.3.12 contains an insufficient access control vulnerability in the /config and /debug command handle
21:26 KSA
OpenClaw before 2026.3.12 contains an insufficient access control vulnerability in the /config and /debug command handlers that allows command-authorized non-owners to access owner-only surfaces. Attackers with command authorization can read or modify privileged configuration set…
CVE-2026-32915
OpenClaw before 2026.3.11 contains a sandbox boundary bypass vulnerability allowing leaf subagents to access the subagen
21:26 KSA
OpenClaw before 2026.3.11 contains a sandbox boundary bypass vulnerability allowing leaf subagents to access the subagents control surface and resolve against parent requester scope instead of their own session tree. A low-privilege sandboxed leaf worker can steer or kill sibling…
CVE-2026-33573
OpenClaw before 2026.3.11 contains an authorization bypass vulnerability in the gateway agent RPC that allows authentica
21:26 KSA
OpenClaw before 2026.3.11 contains an authorization bypass vulnerability in the gateway agent RPC that allows authenticated operators with operator.write permission to override workspace boundaries by supplying attacker-controlled spawnedBy and workspaceDir values. Remote operato…
CVE-2026-34386
Fleet is open source device management software. Prior to 4.81.0, a SQL injection vulnerability in Fleet's MDM bootstrap
21:26 KSA
Fleet is open source device management software. Prior to 4.81.0, a SQL injection vulnerability in Fleet's MDM bootstrap package configuration allows an authenticated user with Team Admin or Global Admin privileges to modify arbitrary team configurations, exfiltrate sensitive dat…
CVE-2026-5021
A flaw has been found in Tenda F453 1.0.0.3. This affects the function fromPPTPUserSetting of the file /goform/PPTPUserS
21:26 KSA
A flaw has been found in Tenda F453 1.0.0.3. This affects the function fromPPTPUserSetting of the file /goform/PPTPUserSetting of the component httpd. This manipulation of the argument delno causes stack-based buffer overflow. Remote exploitation of the attack is possible. The ex…
CVE-2026-5024
A vulnerability was found in D-Link DIR-513 1.10. This issue affects the function formSetEmail of the file /goform/formS
21:26 KSA
A vulnerability was found in D-Link DIR-513 1.10. This issue affects the function formSetEmail of the file /goform/formSetEmail. Performing a manipulation of the argument curTime results in stack-based buffer overflow. The attack is possible to be carried out remotely. The exploi…
CVE-2026-5036
A vulnerability was found in Tenda 4G06 04.06.01.29. This vulnerability affects the function fromDhcpListClient of the f
21:26 KSA
A vulnerability was found in Tenda 4G06 04.06.01.29. This vulnerability affects the function fromDhcpListClient of the file /goform/DhcpListClient of the component Endpoint. Performing a manipulation of the argument page results in stack-based buffer overflow. The attack can be i…
CVE-2026-5042
A security flaw has been discovered in Belkin F9K1122 1.00.33. The affected element is the function formCrossBandSwitch
21:26 KSA
A security flaw has been discovered in Belkin F9K1122 1.00.33. The affected element is the function formCrossBandSwitch of the file /goform/formCrossBandSwitch of the component Parameter Handler. The manipulation of the argument webpage results in stack-based buffer overflow. The…
CVE-2026-5043
A weakness has been identified in Belkin F9K1122 1.00.33. The impacted element is the function formSetPassword of the fi
21:26 KSA
A weakness has been identified in Belkin F9K1122 1.00.33. The impacted element is the function formSetPassword of the file /goform/formSetPassword of the component Parameter Handler. This manipulation of the argument webpage causes stack-based buffer overflow. Remote exploitation…
CVE-2026-5044
A security vulnerability has been detected in Belkin F9K1122 1.00.33. This affects the function formSetSystemSettings of
21:26 KSA
A security vulnerability has been detected in Belkin F9K1122 1.00.33. This affects the function formSetSystemSettings of the file /goform/formSetSystemSettings of the component Setting Handler. Such manipulation of the argument webpage leads to stack-based buffer overflow. The at…
CVE-2026-5045
A vulnerability was detected in Tenda FH1201 1.2.0.14(408). This impacts the function WrlclientSet of the file /goform/W
21:26 KSA
A vulnerability was detected in Tenda FH1201 1.2.0.14(408). This impacts the function WrlclientSet of the file /goform/WrlclientSet of the component Parameter Handler. Performing a manipulation of the argument GO results in stack-based buffer overflow. The attack is possible to b…
CVE-2026-5046
A flaw has been found in Tenda FH1201 1.2.0.14(408). Affected is the function formWrlExtraSet of the file /goform/WrlExt
21:26 KSA
A flaw has been found in Tenda FH1201 1.2.0.14(408). Affected is the function formWrlExtraSet of the file /goform/WrlExtraSet of the component Parameter Handler. Executing a manipulation of the argument GO can lead to stack-based buffer overflow. The attack may be performed from …
CVE-2026-5130
The Debugger & Troubleshooter plugin for WordPress was vulnerable to Unauthenticated Privilege Escalation in versions up
21:26 KSA
The Debugger & Troubleshooter plugin for WordPress was vulnerable to Unauthenticated Privilege Escalation in versions up to and including 1.3.2. This was due to the plugin accepting the wp_debug_troubleshoot_simulate_user cookie value directly as a user ID without any cryptograph…
CVE-2026-5152
A vulnerability was detected in Tenda CH22 1.0.0.1. Impacted is the function formCreateFileName of the file /goform/crea
21:26 KSA
A vulnerability was detected in Tenda CH22 1.0.0.1. Impacted is the function formCreateFileName of the file /goform/createFileName. Performing a manipulation of the argument fileNameMit results in stack-based buffer overflow. The attack may be initiated remotely. The exploit is n…
CVE-2026-5154
A vulnerability has been found in Tenda CH22 1.0.0.1/1.If. The impacted element is the function fromSetCfm of the file /
21:26 KSA
A vulnerability has been found in Tenda CH22 1.0.0.1/1.If. The impacted element is the function fromSetCfm of the file /goform/setcfm of the component Parameter Handler. The manipulation of the argument funcname leads to stack-based buffer overflow. Remote exploitation of the att…
CVE-2026-5155
A vulnerability was found in Tenda CH22 1.0.0.1. This affects the function fromAdvSetWan of the file /goform/AdvSetWan o
21:26 KSA
A vulnerability was found in Tenda CH22 1.0.0.1. This affects the function fromAdvSetWan of the file /goform/AdvSetWan of the component Parameter Handler. The manipulation of the argument wanmode results in stack-based buffer overflow. The attack can be executed remotely. The exp…
CVE-2026-5156
A vulnerability was determined in Tenda CH22 1.0.0.1. This impacts the function formQuickIndex of the file /goform/Quick
21:26 KSA
A vulnerability was determined in Tenda CH22 1.0.0.1. This impacts the function formQuickIndex of the file /goform/QuickIndex of the component Parameter Handler. This manipulation of the argument mit_linktype causes stack-based buffer overflow. The attack is possible to be carrie…
CVE-2025-32957
baserCMS is a website development framework. Prior to version 5.2.3, the application's restore function allows users to
21:26 KSA
baserCMS is a website development framework. Prior to version 5.2.3, the application's restore function allows users to upload a .zip file, which is then automatically extracted. A PHP file inside the archive is included using require_once without validating or restricting the fi…
CVE-2026-32173
Improper authentication in Azure SRE Agent allows an unauthorized attacker to disclose information over a network.
03:23 KSA
Improper authentication in Azure SRE Agent allows an unauthorized attacker to disclose information over a network.
CVE-2026-32918
OpenClaw before 2026.3.11 contains a session sandbox escape vulnerability in the session_status tool that allows sandbox
21:26 KSA
OpenClaw before 2026.3.11 contains a session sandbox escape vulnerability in the session_status tool that allows sandboxed subagents to access parent or sibling session state. Attackers can supply arbitrary sessionKey values to read or modify session data outside their sandbox sc…
CVE-2026-32920
OpenClaw before 2026.3.12 automatically discovers and loads plugins from .OpenClaw/extensions/ without explicit trust ve
21:26 KSA
OpenClaw before 2026.3.12 automatically discovers and loads plugins from .OpenClaw/extensions/ without explicit trust verification, allowing arbitrary code execution. Attackers can execute malicious code by including crafted workspace plugins in cloned repositories that execute w…
CVE-2026-0562
A critical security vulnerability in parisneo/lollms versions up to 2.2.0 allows any authenticated user to accept or rej
21:26 KSA
A critical security vulnerability in parisneo/lollms versions up to 2.2.0 allows any authenticated user to accept or reject friend requests belonging to other users. The `respond_request()` function in `backend/routers/friends.py` does not implement proper authorization checks, e…
CVE-2015-10148
Hirschmann HiLCOS devices OpenBAT, WLC, BAT300, BAT54 prior to 8.80 and OpenBAT prior to 9.10 are shipped with identical
09:36 KSA
Hirschmann HiLCOS devices OpenBAT, WLC, BAT300, BAT54 prior to 8.80 and OpenBAT prior to 9.10 are shipped with identical default SSH and SSL keys that cannot be changed, allowing unauthenticated remote attackers to decrypt or intercept encrypted management communications. Attacke…
CVE-2016-15058
Hirschmann HiLCOS Classic Platform switches Classic L2E, L2P, L3E, L3P versions prior to 09.0.06 and Classic L2B prior t
09:36 KSA
Hirschmann HiLCOS Classic Platform switches Classic L2E, L2P, L3E, L3P versions prior to 09.0.06 and Classic L2B prior to 05.3.07 contain a credential exposure vulnerability where user passwords are synchronized with SNMPv1/v2 community strings and transmitted in plaintext when t…
CVE-2026-22661
prompts.chat prior to commit 0f8d4c3 contains a path traversal vulnerability in skill file handling that allows attacker
09:36 KSA
prompts.chat prior to commit 0f8d4c3 contains a path traversal vulnerability in skill file handling that allows attackers to write arbitrary files to the client system by crafting malicious ZIP archives with unsanitized filenames containing path traversal sequences. Attackers can…
CVE-2026-22665
prompts.chat prior to commit 1464475 contains an identity confusion vulnerability due to inconsistent case-sensitive and
09:36 KSA
prompts.chat prior to commit 1464475 contains an identity confusion vulnerability due to inconsistent case-sensitive and case-insensitive handling of usernames across write and read paths, allowing attackers to create case-variant usernames that bypass uniqueness checks. Attacker…
CVE-2026-2370
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 14.3 before 18.8.7, 18.9 before 18.9.3, and 1
21:26 KSA
GitLab has remediated an issue in GitLab CE/EE affecting all versions from 14.3 before 18.8.7, 18.9 before 18.9.3, and 18.10 before 18.10.1 affecting Jira Connect installations that could have allowed an authenticated user with minimal workspace permissions to obtain installation…
CVE-2026-4350
The Perfmatters plugin for WordPress is vulnerable to arbitrary file deletion via path traversal in all versions up to,
04:54 KSA
The Perfmatters plugin for WordPress is vulnerable to arbitrary file deletion via path traversal in all versions up to, and including, 2.5.9.1. This is due to the `PMCS::action_handler()` method processing the `$_GET['delete']` parameter without any sanitization, authorization ch…
CVE-2026-4415
Gigabyte Control Center developed by GIGABYTE has an Arbitrary File Write vulnerability. When the pairing feature is ena
21:26 KSA
Gigabyte Control Center developed by GIGABYTE has an Arbitrary File Write vulnerability. When the pairing feature is enabled, unauthenticated remote attackers can write arbitrary files to any location on the underlying operating system, leading to arbitrary code execution or priv…
CVE-2026-32978
OpenClaw before 2026.3.11 contains an approval integrity vulnerability where system.run approvals fail to bind mutable f
21:26 KSA
OpenClaw before 2026.3.11 contains an approval integrity vulnerability where system.run approvals fail to bind mutable file operands for certain script runners like tsx and jiti. Attackers can obtain approval for benign script commands, rewrite referenced scripts on disk, and exe…
CVE-2026-4416
The Performance Library component of Gigabyte Control Center has an Insecure Deserialization vulnerability. Authenticate
21:26 KSA
The Performance Library component of Gigabyte Control Center has an Insecure Deserialization vulnerability. Authenticated local attackers can send a malicious serialized payload to the EasyTune Engine service, resulting in privilege escalation.
CVE-2026-22664
prompts.chat prior to commit 30a8f04 contains a server-side request forgery vulnerability in Fal.ai media status polling
09:36 KSA
prompts.chat prior to commit 30a8f04 contains a server-side request forgery vulnerability in Fal.ai media status polling that allows authenticated users to perform arbitrary outbound requests by supplying attacker-controlled URLs in the token parameter. Attackers can exploit the …
CVE-2019-25654
Core FTP/SFTP Server 1.2 contains a buffer overflow vulnerability that allows attackers to crash the service by supplyin
21:26 KSA
Core FTP/SFTP Server 1.2 contains a buffer overflow vulnerability that allows attackers to crash the service by supplying an excessively long string in the User domain field. Attackers can paste a malicious payload containing 7000 bytes of data into the domain configuration to tr…
CVE-2020-37216
Hirschmann HiOS devices versions prior to 08.1.00 and 07.1.01 contain a denial of service vulnerability in the EtherNet
04:54 KSA
Hirschmann HiOS devices versions prior to 08.1.00 and 07.1.01 contain a denial of service vulnerability in the EtherNet/IP stack where improper handling of packet length fields allows remote attackers to crash or hang the device. Attackers can send specially crafted UDP EtherNet…
CVE-2026-0560
A Server-Side Request Forgery (SSRF) vulnerability exists in parisneo/lollms versions prior to 2.2.0, specifically in th
21:26 KSA
A Server-Side Request Forgery (SSRF) vulnerability exists in parisneo/lollms versions prior to 2.2.0, specifically in the `/api/files/export-content` endpoint. The `_download_image_to_temp()` function in `backend/routers/files.py` fails to validate user-controlled URLs, allowing …
CVE-2026-22663
prompts.chat prior to commit 7b81836 contains multiple authorization bypass vulnerabilities due to missing isPrivate che
09:36 KSA
prompts.chat prior to commit 7b81836 contains multiple authorization bypass vulnerabilities due to missing isPrivate checks across API endpoints and page metadata generation that allow unauthorized users to access sensitive data associated with private prompts. Attackers can expl…
CVE-2026-2328
An unauthenticated remote attacker can exploit insufficient input validation to access backend components beyond their i
21:26 KSA
An unauthenticated remote attacker can exploit insufficient input validation to access backend components beyond their intended scope via path traversal, resulting in exposure of sensitive information.
CVE-2026-3124
The Download Monitor plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and i
21:26 KSA
The Download Monitor plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 5.1.7 via the executePayment() function due to missing validation on a user controlled key. This makes it possible for unauthenticated attackers to co…
CVE-2026-31831
Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Prior to version 2.17.0, the /newsletter/
21:26 KSA
Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Prior to version 2.17.0, the /newsletter/image/images API endpoint is vulnerable to path traversal, allowing unauthenticated attackers to read arbitrary files from the application server's filesystem. …
CVE-2026-32980
OpenClaw before 2026.3.13 reads and buffers Telegram webhook request bodies before validating the x-telegram-bot-api-sec
21:26 KSA
OpenClaw before 2026.3.13 reads and buffers Telegram webhook request bodies before validating the x-telegram-bot-api-secret-token header, allowing unauthenticated attackers to exhaust server resources. Attackers can send POST requests to the webhook endpoint to force memory consu…
CVE-2026-32982
OpenClaw before 2026.3.13 contains an information disclosure vulnerability in the fetchRemoteMedia function that exposes
21:26 KSA
OpenClaw before 2026.3.13 contains an information disclosure vulnerability in the fetchRemoteMedia function that exposes Telegram bot tokens in error messages. When media downloads fail, the original Telegram file URLs containing bot tokens are embedded in MediaFetchError strings…
CVE-2026-32988
OpenClaw before 2026.3.11 contains a sandbox boundary bypass vulnerability in fs-bridge staged writes where temporary fi
21:26 KSA
OpenClaw before 2026.3.11 contains a sandbox boundary bypass vulnerability in fs-bridge staged writes where temporary file creation and population are not pinned to a verified parent directory. Attackers can exploit a race condition in parent-path alias changes to write attacker-…
CVE-2026-33028
Nginx UI is a web user interface for the Nginx web server. Prior to version 2.3.4, the nginx-ui application is vulnerabl
21:26 KSA
Nginx UI is a web user interface for the Nginx web server. Prior to version 2.3.4, the nginx-ui application is vulnerable to a Race Condition. Due to the complete absence of synchronization mechanisms (Mutex) and non-atomic file writes, concurrent requests lead to the severe corr…
CVE-2026-34388
Fleet is open source device management software. Prior to 4.81.0, a denial-of-service vulnerability in Fleet's gRPC Laun
21:26 KSA
Fleet is open source device management software. Prior to 4.81.0, a denial-of-service vulnerability in Fleet's gRPC Launcher endpoint allows an authenticated host to crash the entire Fleet server process by sending an unexpected log type value. The server terminates immediately, …
CVE-2026-34391
Fleet is open source device management software. Prior to 4.81.1, a vulnerability in Fleet's Windows MDM command process
21:26 KSA
Fleet is open source device management software. Prior to 4.81.1, a vulnerability in Fleet's Windows MDM command processing allows a malicious enrolled device to access MDM commands intended for other devices, potentially exposing sensitive configuration data such as WiFi credent…
CVE-2026-4020
The Gravity SMTP plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and includi
21:26 KSA
The Gravity SMTP plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.1.4. This is due to a REST API endpoint registered at /wp-json/gravitysmtp/v1/tests/mock-data with a permission_callback that unconditionally returns true…
CVE-2026-5201
A flaw was found in the gdk-pixbuf library. This heap-based buffer overflow vulnerability occurs in the JPEG image loade
21:26 KSA
A flaw was found in the gdk-pixbuf library. This heap-based buffer overflow vulnerability occurs in the JPEG image loader due to improper validation of color component counts when processing a specially crafted JPEG image. A remote attacker can exploit this flaw without user inte…
CVE-2022-4987
Hirschmann Industrial HiVision version 08.1.03 prior to 08.1.04 and 08.2.00 contains a vulnerability in the execution of
04:54 KSA
Hirschmann Industrial HiVision version 08.1.03 prior to 08.1.04 and 08.2.00 contains a vulnerability in the execution of user-configured external applications that allows a local attacker to execute arbitrary binaries. Due to insufficient path sanitization, an attacker can place …
CVE-2026-27655
Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are vulnerable to Stored XSS in Permissions Based on M
19:04 KSA
Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are vulnerable to Stored XSS in Permissions Based on Mailboxes report.
CVE-2026-28703
Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are vulnerable to Stored XSS in Mails Exchanged Betwee
19:04 KSA
Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are vulnerable to Stored XSS in Mails Exchanged Between Users report.
CVE-2026-28754
Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are vulnerable to Stored XSS in Distribution Lists rep
19:04 KSA
Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are vulnerable to Stored XSS in Distribution Lists report.
CVE-2026-28756
Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are vulnerable to Stored XSS in Permissions based on D
19:04 KSA
Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are vulnerable to Stored XSS in Permissions based on Distribution Groups report.
CVE-2026-3879
Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are vulnerable to Stored XSS in Equipment Mailbox Deta
19:04 KSA
Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are vulnerable to Stored XSS in Equipment Mailbox Details report.
CVE-2026-3880
Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are vulnerable to Stored XSS in Public Folder Client P
19:04 KSA
Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are vulnerable to Stored XSS in Public Folder Client Permissions report.
CVE-2026-4107
Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are vulnerable to Stored XSS in Folder Message Count a
19:04 KSA
Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are vulnerable to Stored XSS in Folder Message Count and Size report.
CVE-2026-4108
Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are vulnerable to Stored XSS in Non-Owner Mailbox Perm
19:04 KSA
Zohocorp ManageEngine Exchange Reporter Plus versions before 5802 are vulnerable to Stored XSS in Non-Owner Mailbox Permission report.
CVE-2026-5016
A vulnerability was identified in elecV2 elecV2P up to 3.8.3. This affects the function eAxios of the file /mock of the
21:26 KSA
A vulnerability was identified in elecV2 elecV2P up to 3.8.3. This affects the function eAxios of the file /mock of the component URL Handler. Such manipulation of the argument req leads to server-side request forgery. It is possible to launch the attack remotely. The exploit is …
CVE-2026-5147
A security flaw has been discovered in YunaiV yudao-cloud up to 2026.01. This affects an unknown part of the file /admin
21:26 KSA
A security flaw has been discovered in YunaiV yudao-cloud up to 2026.01. This affects an unknown part of the file /admin-api/system/tenant/get-by-website. The manipulation of the argument Website results in sql injection. It is possible to launch the attack remotely. The exploit …
CVE-2026-5150
A security vulnerability has been detected in code-projects Accounting System 1.0. This issue affects some unknown proce
21:26 KSA
A security vulnerability has been detected in code-projects Accounting System 1.0. This issue affects some unknown processing of the file /viewin_costumer.php of the component Parameter Handler. Such manipulation of the argument cos_id leads to sql injection. The attack can be la…
CVE-2026-5176
A security flaw has been discovered in Totolink A3300R 17.0.0cu.557_b20221024. Affected is the function setSyslogCfg of
21:26 KSA
A security flaw has been discovered in Totolink A3300R 17.0.0cu.557_b20221024. Affected is the function setSyslogCfg of the file /cgi-bin/cstecgi.cgi. Performing a manipulation of the argument provided results in command injection. The attack may be initiated remotely. The exploi…
CVE-2026-5179
A vulnerability was detected in SourceCodester Simple Doctors Appointment System 1.0. This affects an unknown part of th
21:26 KSA
A vulnerability was detected in SourceCodester Simple Doctors Appointment System 1.0. This affects an unknown part of the file /admin/login.php. The manipulation of the argument Username results in sql injection. The attack can be executed remotely. The exploit is now public and …
CVE-2026-5180
A flaw has been found in SourceCodester Simple Doctors Appointment System 1.0. This vulnerability affects unknown code o
21:26 KSA
A flaw has been found in SourceCodester Simple Doctors Appointment System 1.0. This vulnerability affects unknown code of the file /admin/ajax.php?action=login2. This manipulation of the argument email causes sql injection. The attack is possible to be carried out remotely. The e…
CVE-2026-5182
A vulnerability was found in SourceCodester Teacher Record System 1.0. Impacted is an unknown function of the file Teach
21:26 KSA
A vulnerability was found in SourceCodester Teacher Record System 1.0. Impacted is an unknown function of the file Teacher Record System of the component Parameter Handler. Performing a manipulation of the argument searchteacher results in sql injection. It is possible to initiat…
CVE-2026-5195
A flaw has been found in code-projects Student Membership System 1.0. This issue affects some unknown processing of the
21:26 KSA
A flaw has been found in code-projects Student Membership System 1.0. This issue affects some unknown processing of the component User Registration Handler. Executing a manipulation can lead to sql injection. The attack can be launched remotely.
CVE-2017-20238
Hirschmann Industrial HiVision versions 06.0.00 and 07.0.00 prior to 06.0.06 and 07.0.01 contains an improper authorizat
09:36 KSA
Hirschmann Industrial HiVision versions 06.0.00 and 07.0.00 prior to 06.0.06 and 07.0.01 contains an improper authorization vulnerability that allows read-only users to gain write access to managed devices by bypassing access control mechanisms. Attackers can exploit alternative …
CVE-2026-32971
OpenClaw before 2026.3.11 contains an approval-integrity vulnerability in node-host system.run approvals that displays e
21:26 KSA
OpenClaw before 2026.3.11 contains an approval-integrity vulnerability in node-host system.run approvals that displays extracted shell payloads instead of the executed argv. Attackers can place wrapper binaries and induce wrapper-shaped commands to execute local code after operat…
CVE-2026-32972
OpenClaw before 2026.3.11 contains an authorization bypass vulnerability allowing authenticated operators with only oper
21:26 KSA
OpenClaw before 2026.3.11 contains an authorization bypass vulnerability allowing authenticated operators with only operator.write permission to access admin-only browser profile management routes through browser.request. Attackers can create or modify browser profiles and persis…
CVE-2026-33982
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, there is a heap-buffer-overflo
21:26 KSA
FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, there is a heap-buffer-overflow READ vulnerability at 24 bytes before the allocation, in winpr_aligned_offset_recalloc(). This issue has been patched in version 3.24.2.
CVE-2026-5330
A vulnerability was found in SourceCodester/mayuri_k Best Courier Management System 1.0. Affected by this issue is some
21:30 KSA
A vulnerability was found in SourceCodester/mayuri_k Best Courier Management System 1.0. Affected by this issue is some unknown functionality of the file /ajax.php?action=delete_user of the component User Delete Handler. Performing a manipulation of the argument ID results in imp…
CVE-2026-0688
The Webmention plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 5
21:30 KSA
The Webmention plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 5.6.2 via the 'Tools::read' function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to make web requests to arbitra…
CVE-2026-34798
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /cgi-bin/ro
21:30 KSA
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /cgi-bin/routing.cgi. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.
CVE-2026-34799
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /manage/dns
21:30 KSA
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /manage/dnsmasq/hosts/. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.
CVE-2026-34800
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the NAME parameter to /cgi-bin/upli
21:30 KSA
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the NAME parameter to /cgi-bin/uplinkeditor.cgi. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.
CVE-2026-34801
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /manage/dhc
21:30 KSA
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /manage/dhcp/fixed_leases/. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.
CVE-2026-34802
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark user ham spam parameter
21:30 KSA
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark user ham spam parameter to /cgi-bin/salearn.cgi. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.
CVE-2026-34803
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the name parameter to /manage/qos/c
21:30 KSA
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the name parameter to /manage/qos/classes/. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.
CVE-2026-34804
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the dscp parameter to /manage/qos/r
21:30 KSA
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the dscp parameter to /manage/qos/rules/. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.
CVE-2026-34805
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /cgi-bin/dn
21:30 KSA
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /cgi-bin/dnat.cgi. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.
CVE-2026-34806
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /cgi-bin/sn
21:30 KSA
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /cgi-bin/snat.cgi. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.
CVE-2026-34807
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /cgi-bin/in
21:30 KSA
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /cgi-bin/incoming.cgi. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.
CVE-2026-34808
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /cgi-bin/ou
21:30 KSA
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /cgi-bin/outgoingfw.cgi. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.
CVE-2026-34809
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /cgi-bin/zo
21:30 KSA
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /cgi-bin/zonefw.cgi. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.
CVE-2026-34810
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /cgi-bin/vp
21:30 KSA
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /cgi-bin/vpnfw.cgi. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.
CVE-2026-34811
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /cgi-bin/xt
21:30 KSA
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /cgi-bin/xtaccess.cgi. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.
CVE-2026-34812
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the mimetypes parameter to /cgi-bin
21:30 KSA
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the mimetypes parameter to /cgi-bin/proxypolicy.cgi. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.
CVE-2026-34813
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the user parameter to /cgi-bin/prox
21:30 KSA
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the user parameter to /cgi-bin/proxyuser.cgi. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.
CVE-2026-34814
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the group parameter to /cgi-bin/pro
21:30 KSA
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the group parameter to /cgi-bin/proxygroup.cgi. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.
CVE-2026-34815
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the DOMAIN parameter to /cgi-bin/sm
21:30 KSA
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the DOMAIN parameter to /cgi-bin/smtpdomains.cgi. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.
CVE-2026-34816
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the domain parameter to /manage/smt
21:30 KSA
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the domain parameter to /manage/smtpscan/domainrouting/. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.
CVE-2026-34817
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the ADDRESS BCC parameter to /cgi-b
21:30 KSA
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the ADDRESS BCC parameter to /cgi-bin/smtprouting.cgi. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.
CVE-2026-34818
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /manage/dns
21:30 KSA
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /manage/dnsmasq/localdomains/. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.
CVE-2026-34819
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the REMARK parameter to /cgi-bin/op
21:30 KSA
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the REMARK parameter to /cgi-bin/openvpnclient.cgi. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.
CVE-2026-34820
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /manage/ips
21:30 KSA
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /manage/ipsec/. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.
CVE-2026-34821
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /manage/vpn
21:30 KSA
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /manage/vpnauthentication/user/. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.
CVE-2026-34822
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the new_cert_name parameter to /man
21:30 KSA
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the new_cert_name parameter to /manage/ca/certificate/. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.
CVE-2026-34823
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /manage/pas
21:30 KSA
Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark parameter to /manage/password/web/. An authenticated attacker can inject arbitrary JavaScript that is stored and executed when other users view the affected page.
CVE-2026-5327
A security flaw has been discovered in efforthye fast-filesystem-mcp up to 3.5.1. The affected element is the function h
21:30 KSA
A security flaw has been discovered in efforthye fast-filesystem-mcp up to 3.5.1. The affected element is the function handleGetDiskUsage of the file src/index.ts. Performing a manipulation results in command injection. The attack is possible to be carried out remotely. The explo…
CVE-2026-5328
A weakness has been identified in shsuishang modulithshop up to 829bac71f507e84684c782b9b062b8bf3b5585d6. The impacted e
21:30 KSA
A weakness has been identified in shsuishang modulithshop up to 829bac71f507e84684c782b9b062b8bf3b5585d6. The impacted element is the function listItem of the file src/main/java/com/suisung/shopsuite/pt/service/impl/ProductIndexServiceImpl.java of the component ProductItemDao Int…
CVE-2026-5344
A security vulnerability has been detected in Textpattern up to 4.9.1. Affected by this vulnerability is the function mt
21:30 KSA
A security vulnerability has been detected in Textpattern up to 4.9.1. Affected by this vulnerability is the function mt_uploadImage of the file rpc/TXP_RPCServer.php of the component XML-RPC Handler. The manipulation of the argument file.name leads to path traversal. Remote expl…
CVE-2026-5351
A weakness has been identified in Trendnet TEW-657BRM 1.00.1. This affects the function add_wps_client of the file /setu
23:32 KSA
A weakness has been identified in Trendnet TEW-657BRM 1.00.1. This affects the function add_wps_client of the file /setup.cgi. This manipulation of the argument wl_enrolee_pin causes os command injection. The attack may be initiated remotely. The exploit has been made available t…
CVE-2026-5352
A security vulnerability has been detected in Trendnet TEW-657BRM 1.00.1. This impacts the function Edit of the file /se
01:52 KSA
A security vulnerability has been detected in Trendnet TEW-657BRM 1.00.1. This impacts the function Edit of the file /setup.cgi. Such manipulation of the argument pcdb_list leads to os command injection. The attack may be launched remotely. The exploit has been disclosed publicly…
CVE-2026-5353
A vulnerability was detected in Trendnet TEW-657BRM 1.00.1. Affected is the function ping_test of the file /setup.cgi. P
01:52 KSA
A vulnerability was detected in Trendnet TEW-657BRM 1.00.1. Affected is the function ping_test of the file /setup.cgi. Performing a manipulation of the argument c4_IPAddr results in os command injection. Remote exploitation of the attack is possible. The exploit is now public and…
CVE-2026-5354
A flaw has been found in Trendnet TEW-657BRM 1.00.1. Affected by this vulnerability is the function vpn_connect of the f
01:52 KSA
A flaw has been found in Trendnet TEW-657BRM 1.00.1. Affected by this vulnerability is the function vpn_connect of the file /setup.cgi. Executing a manipulation of the argument policy_name can lead to os command injection. The attack can be executed remotely. The exploit has been…
CVE-2026-5355
A vulnerability has been found in Trendnet TEW-657BRM 1.00.1. Affected by this issue is the function vpn_drop of the fil
01:52 KSA
A vulnerability has been found in Trendnet TEW-657BRM 1.00.1. Affected by this issue is the function vpn_drop of the file /setup.cgi. The manipulation of the argument policy_name leads to os command injection. The attack is possible to be carried out remotely. The exploit has bee…
CVE-2026-5470
A security vulnerability has been detected in mixelpixx Google-Research-MCP 1e062d7bd887bfe5f6e582b6cc288bb897b35cf2/ca6
19:04 KSA
A security vulnerability has been detected in mixelpixx Google-Research-MCP 1e062d7bd887bfe5f6e582b6cc288bb897b35cf2/ca613b736ab787bc926932f59cddc69457185a83. This issue affects the function extractContent of the file src/services/content-extractor.service.ts of the component Mod…
CVE-2026-5472
A flaw has been found in ProjectsAndPrograms School Management System up to 6b6fae5426044f89c08d0dd101c7fa71f9042a59. Th
19:04 KSA
A flaw has been found in ProjectsAndPrograms School Management System up to 6b6fae5426044f89c08d0dd101c7fa71f9042a59. The affected element is an unknown function of the file /admin_panel/settings.php of the component Profile Picture Handler. This manipulation of the argument File…
CVE-2026-5474
A vulnerability was found in NASA cFS up to 7.0.0. This affects the function CFE_MSG_GetSize of the file apps/to_lab/fsw
19:04 KSA
A vulnerability was found in NASA cFS up to 7.0.0. This affects the function CFE_MSG_GetSize of the file apps/to_lab/fsw/src/to_lab_passthru_encode.c of the component CCSDS Packet Header Handler. Performing a manipulation results in heap-based buffer overflow. The attacker must h…
CVE-2026-34605
SiYuan is a personal knowledge management system. From version 3.6.0 to before version 3.6.2, the SanitizeSVG function i
23:32 KSA
SiYuan is a personal knowledge management system. From version 3.6.0 to before version 3.6.2, the SanitizeSVG function introduced in version 3.6.0 to fix XSS in the unauthenticated /api/icon/getDynamicIcon endpoint can be bypassed by using namespace-prefixed element names such as…
CVE-2026-3877
A reflected cross-site scripting (XSS) vulnerability in the dashboard search functionality of the VertiGIS FM solution a
21:30 KSA
A reflected cross-site scripting (XSS) vulnerability in the dashboard search functionality of the VertiGIS FM solution allows attackers to craft a malicious URL, that if visited by an authenticated victim, will execute arbitrary JavaScript in the victim's context. Such a URL coul…
CVE-2026-5245
A vulnerability was found in Cesanta Mongoose up to 7.20. This impacts the function handle_mdns_record of the file mongo
21:30 KSA
A vulnerability was found in Cesanta Mongoose up to 7.20. This impacts the function handle_mdns_record of the file mongoose.c of the component mDNS Record Handler. Performing a manipulation of the argument buf results in stack-based buffer overflow. Remote exploitation of the att…
CVE-2026-5246
A vulnerability was determined in Cesanta Mongoose up to 7.20. Affected is the function mg_tls_verify_cert_signature of
21:30 KSA
A vulnerability was determined in Cesanta Mongoose up to 7.20. Affected is the function mg_tls_verify_cert_signature of the file mongoose.c of the component P-384 Public Key Handler. Executing a manipulation can lead to authorization bypass. The attack can be executed remotely. A…
CVE-2026-5475
A vulnerability was determined in NASA cFS up to 7.0.0. This impacts the function CFE_SB_TransmitMsg of the file cfe_sb_
19:04 KSA
A vulnerability was determined in NASA cFS up to 7.0.0. This impacts the function CFE_SB_TransmitMsg of the file cfe_sb_priv.c of the component CCSDS Header Size Handler. Executing a manipulation can lead to memory corruption. The project was informed of the problem early through…
CVE-2017-20233
Hirschmann HiLCOS products OpenBAT, BAT450, WLC, BAT867 contains a firewall filtering vulnerability that fails to correc
21:14 KSA
Hirschmann HiLCOS products OpenBAT, BAT450, WLC, BAT867 contains a firewall filtering vulnerability that fails to correctly filter IPv4 multicast and broadcast traffic when management IP address filtering is disabled, allowing configured filter rules to be bypassed. Attackers wit…
CVE-2026-33617
An unauthenticated remote attacker can access a configuration file containing database credentials. This can result in a
21:30 KSA
An unauthenticated remote attacker can access a configuration file containing database credentials. This can result in a some loss of confidentiality, but there is no endpoint exposed to use these credentials.
CVE-2026-34511
OpenClaw before 2026.4.2 reuses the PKCE verifier as the OAuth state parameter in the Gemini OAuth flow, exposing it thr
21:14 KSA
OpenClaw before 2026.4.2 reuses the PKCE verifier as the OAuth state parameter in the Gemini OAuth flow, exposing it through the redirect URL. Attackers who capture the redirect URL can obtain both the authorization code and PKCE verifier, defeating PKCE protection and enabling t…
CVE-2026-5323
A vulnerability was found in priyankark a11y-mcp up to 1.0.5. This vulnerability affects the function A11yServer of the
21:30 KSA
A vulnerability was found in priyankark a11y-mcp up to 1.0.5. This vulnerability affects the function A11yServer of the file src/index.js. The manipulation results in server-side request forgery. The attack must be initiated from a local position. The exploit has been made public…
CVE-2026-5326
A vulnerability was identified in SourceCodester Leave Application System 1.0. Impacted is an unknown function of the fi
21:30 KSA
A vulnerability was identified in SourceCodester Leave Application System 1.0. Impacted is an unknown function of the file /index.php?page=manage_user of the component User Information Handler. Such manipulation of the argument ID leads to authorization bypass. The attack can be …
CVE-2026-5342
A flaw has been found in LibRaw up to 0.22.0. This affects the function LibRaw::nikon_load_padded_packed_raw of the file
21:30 KSA
A flaw has been found in LibRaw up to 0.22.0. This affects the function LibRaw::nikon_load_padded_packed_raw of the file src/decoders/decoders_libraw.cpp of the component TIFF/NEF. Executing a manipulation of the argument load_flags/raw_width can lead to out-of-bounds read. It is…
CVE-2026-5414
A security flaw has been discovered in Newgen OmniDocs up to 12.0.00. Affected by this issue is some unknown functionali
02:54 KSA
A security flaw has been discovered in Newgen OmniDocs up to 12.0.00. Affected by this issue is some unknown functionality of the file /omnidocs/WebApiRequestRedirection. The manipulation of the argument DocumentId results in improper control of resource identifiers. The attack m…
CVE-2026-5484
A weakness has been identified in BookStackApp BookStack up to 26.03. Affected is the function chapterToMarkdown of the
21:14 KSA
A weakness has been identified in BookStackApp BookStack up to 26.03. Affected is the function chapterToMarkdown of the file app/Exports/ExportFormatter.php of the component Chapter Export Handler. Executing a manipulation of the argument pages can lead to improper access control…
⚠️ استخبارات التهديدات
15 تهديد
rss:The Hacker News
—
12:36 KSA
<strong>Drift تخسر 285 مليون دولار في هجوم هندسة اجتماعية مرتبط بكوريا الشمالية</strong>
خسرت منصة Drift للتبادل اللامركزي على شبكة سولانا حوالي 285 مليون دولار في هجوم هندسة اجتماعية متطور بتاريخ 1 أبريل 2026، يتضمن استغلال تقنية durable nonce. الهجوم مرتبط بجهات تهديد كورية شم…
rss:The Hacker News
—
11:32 KSA
<strong>الهندسة الاجتماعية من UNC1069 لمشرف Axios أدت إلى هجوم سلسلة التوريد على npm</strong>
نجحت جهات التهديد الكورية الشمالية UNC1069 في اختراق حزمة Axios على npm من خلال هجوم هندسة اجتماعية متطور استهدف مشرفها جيسون سايمان. يُظهر هجوم سلسلة التوريد هذا التهديد المتزايد من ال…
rss:The Hacker News
—
11:32 KSA
<strong>لماذا تعتبر مخاطر الأطراف الثالثة أكبر فجوة في الوضع الأمني لعملائك</strong>
يمثل موردو الأطراف الثالثة وتطبيقات SaaS والمقاولون من الباطن أكبر فجوة أمنية للمؤسسات، حيث تنشأ معظم الاختراقات الآن من شركاء خارجيين موثوقين بدلاً من الأنظمة الداخلية. تظل المؤسسات غير مستعدة …
rss:The Hacker News
—
11:32 KSA
<strong>نسخة جديدة من SparkCat في تطبيقات iOS وأندرويد تسرق صور عبارات استرداد محافظ العملات المشفرة</strong>
تم اكتشاف نسخة جديدة من برمجية SparkCat الخبيثة على متجر آبل ومتجر جوجل بلاي، تستهدف مستخدمي العملات المشفرة من خلال سرقة صور عبارات الاسترداد من الأجهزة المحمولة. تخفي …
rss:Dark Reading
—
10:22 KSA
<strong>الجيوسياسة والذكاء الاصطناعي والأمن السيبراني: رؤى من مؤتمر RSAC 2026</strong>
سلط مؤتمر RSAC 2026 الضوء على التهديدات السيبرانية المدفوعة بالذكاء الاصطناعي وتقاطعها مع التحولات الجيوسياسية. ركزت المناقشات على كيفية إعادة تشكيل الذكاء الاصطناعي لمشهد التهديدات والحاجة إل…
rss:The Hacker News
—
10:22 KSA
<strong>مجموعة TA416 الصينية تستهدف حكومات أوروبية بـ PlugX وهجمات تصيد عبر OAuth</strong>
استأنفت مجموعة التهديدات المتقدمة الصينية TA416 (المرتبطة بـ DarkPeony وRedDelta) استهداف المؤسسات الحكومية والدبلوماسية الأوروبية منذ منتصف 2025 بعد عامين من النشاط المحدود. تستخدم الحملة…
rss:The Hacker News
—
10:22 KSA
<strong>مايكروسوفت تكشف تفاصيل أصداف ويب PHP متحكم بها عبر ملفات تعريف الارتباط تستمر عبر Cron على خوادم لينكس</strong>
اكتشفت مايكروسوفت جهات تهديد تنشر أصداف ويب PHP على خوادم لينكس تستخدم ملفات تعريف الارتباط HTTP كقنوات تحكم بدلاً من معاملات URL للتخفي. تحقق هذه الأصداف الاس…
rss:Dark Reading
—
09:16 KSA
<strong>تسريب الكود المصدري لـ Claude يسلط الضوء على أخطاء كبيرة في سلسلة التوريد</strong>
كشف تسريب الكود المصدري لـ Claude عن ثغرات خطيرة في أمن سلسلة توريد البرمجيات. يؤكد الحادث على الحاجة الملحة لمعاملة سلاسل توريد البرمجيات كبنية تحتية حيوية تتطلب ضوابط أمنية شاملة في كل ط…
rss:Dark Reading
—
09:16 KSA
<strong>Chainguard تكشف عن Factory 2.0 لأتمتة تعزيز أمن سلسلة توريد البرمجيات</strong>
أطلقت Chainguard منصة Factory 2.0 بقدرات أمنية محسّنة للأتمتة. يوفر الحل المطور مطابقة مستمرة لمكونات المصادر المفتوحة عبر الحاويات والمكتبات ومهارات الوكلاء وإجراءات GitHub لتعزيز أمن سلسلة ا…
rss:Dark Reading
—
09:16 KSA
<strong>نظام SIEM من الجيل التالي من CrowdStrike يدعم الآن بيانات Microsoft Defender</strong>
تدعم منصة SIEM من الجيل التالي من CrowdStrike الآن بيانات القياس عن بُعد من Microsoft Defender، مما يمثل تعاوناً مهماً بين منافسين سابقين. يعزز التكامل قدرات اكتشاف التهديدات من خلال ال…
rss:Dark Reading
—
08:01 KSA
<strong>آبل تكسر السابقة وتصدر تحديثات أمنية لـ DarkSword على iOS 18</strong>
أصدرت شركة آبل تحديثات أمنية لنظام iOS 18 للحماية من أداة DarkSword الخطيرة لاختراق أنظمة التشغيل المحمولة. هذه الخطوة غير المسبوقة تتيح للمؤسسات التي لديها مستخدمون على إصدارات iOS القديمة الدفاع ضد ا…
rss:Dark Reading
—
08:01 KSA
<strong>توسع نطاق هجمات TeamPCP وسط صراعات بين المخترقين</strong>
تكشف عدة مؤسسات عن اختراقات مرتبطة بهجمات سلسلة التوريد من TeamPCP. الوضع يزداد تعقيداً بسبب مجموعتي ShinyHunters وLapsus$ اللتين تدعيان المشاركة، مما يخلق تحديات في تحديد المسؤولية للمؤسسات المتضررة.
rss:Dark Reading
—
08:01 KSA
<strong>التقاط 'اهتزازات الجمجمة'؟ قد تكون مصادقة لسماعات الواقع الممتد</strong>
تُظهر الأبحاث الناشئة أن اهتزازات الجمجمة الناتجة عن العلامات الحيوية يمكن استخدامها للمصادقة البيومترية في سماعات الواقع الافتراضي والمعزز والمختلط. هذه الطريقة المبتكرة للمصادقة قد تعزز …
rss:Malwarebytes Lab
—
02:28 KSA
<strong>حظر الأطفال من وسائل التواصل الاجتماعي فكرة جيدة لكن تنفيذها سيء</strong>
تحليل القيود العمرية التي تفرضها الحكومات على منصات التواصل الاجتماعي وتداعياتها على الأمن السيبراني. يناقش مخاوف الخصوصية والمخاطر الأمنية المحتملة المرتبطة بأنظمة التحقق من العمر وآليات التنفيذ.
rss:Recorded Future
—
21:50 KSA
<strong>يوم في الحياة: مدير منتج في Recorded Future</strong>
مقابلة مع مدير منتج في شركة Recorded Future يناقش المسؤوليات اليومية. هذا المقال ليس له قيمة استخباراتية للتهديدات السيبرانية وهو محتوى ترويجي/توظيفي بحت دون صلة بعمليات الأمن السيبراني السعودية.
📰 أخبار الأمن السيبراني
0 مقال
لا توجد أخبار مجمّعة اليوم حتى الآن
يتم تحديث هذه النشرة تلقائياً يومياً — آخر تحديث: 03 Apr 2026
أرشيف الثغرات ·
التهديدات ·
الأخبار