🛡️ CVE Vulnerability Database
CVE vulnerabilities with bilingual AI analysis tailored for Saudi Arabia
| CVE ID | Title / Description | Severity | CVSS | Status | Published |
|---|---|---|---|---|---|
| CVE-2026-22244 |
OpenMetadata Server-Side Template Injection Enables Remote Code E…
OpenMetadata is a unified metadata platform. Versions prior to 1.11.4 are vulnerable to remote code …
|
HIGH |
7.2
|
⚡ ✅ AI | Jan 8, 2026 |
| CVE-2026-22241 |
Critical File Upload Vulnerability in Open eClass Platform Enable…
The Open eClass platform (formerly known as GUnet eClass) is a complete course management system. Pr…
|
HIGH |
7.2
|
⚡ ✅ AI | Jan 8, 2026 |
| CVE-2026-22187 |
Bio-Formats Unsafe Java Deserialization Vulnerability in Memoizat…
Bio-Formats versions up to and including 8.3.0 perform unsafe Java deserialization of attacker-contr…
|
HIGH |
7.8
|
✅ AI | Jan 7, 2026 |
| CVE-2025-69262 |
Critical Command Injection in pnpm Package Manager via Environmen…
pnpm is a package manager. Versions 6.25.0 through 10.26.2 have a Command Injection vulnerability wh…
|
HIGH |
7.5
|
⚡ ✅ AI | Jan 7, 2026 |
| CVE-2025-15158 |
WP Enable WebP Plugin Arbitrary File Upload Vulnerability (CVE-20…
The WP Enable WebP plugin for WordPress is vulnerable to arbitrary file uploads due to improper file…
|
HIGH |
8.8
|
✅ AI | Jan 7, 2026 |
| CVE-2025-14997 |
Critical File Deletion Vulnerability in BuddyPress Xprofile WordP…
The BuddyPress Xprofile Custom Field Types plugin for WordPress is vulnerable to arbitrary file dele…
|
HIGH |
7.2
|
✅ AI | Jan 6, 2026 |
| CVE-2025-68455 |
Craft CMS Authenticated Remote Code Execution via Malicious Behav…
Craft is a platform for creating digital experiences. Versions 5.0.0-RC1 through 5.8.20 and 4.0.0-RC…
|
HIGH |
7.2
|
⚡ ✅ AI | Jan 5, 2026 |
| CVE-2025-68454 |
Craft CMS Authenticated Remote Code Execution via Twig SSTI (CVE-…
Craft is a platform for creating digital experiences. Versions 5.0.0-RC1 through 5.8.20 and 4.0.0-RC…
|
HIGH |
8.8
|
⚡ ✅ AI | Jan 5, 2026 |
| CVE-2025-59156 |
Critical RCE Vulnerability in Coolify Docker Compose Deployment A…
Coolify is an open-source and self-hostable tool for managing servers, applications, and databases. …
|
HIGH |
8.8
|
⚡ ✅ AI | Jan 5, 2026 |
🤖 AI Analysis Active
AI analysis includes: Arabic description, Saudi impact assessment, remediation steps, compliance mapping (NCA ECC, SAMA CSF, ISO 27001) and MITRE ATT&CK techniques.
🔴 Recent Critical CVEs
CVE-2026-20133
Apr 20, 2026
CVE-2026-20128
Apr 20, 2026
CVE-2026-20122
Apr 20, 2026
CVE-2025-48700
Apr 20, 2026
CVE-2025-32975
Apr 20, 2026
💡 Search Tips
CVE-2024-12345
Search by exact ID
apache
Search by product name
remote code execution
Search by vulnerability type
log4j
Search by common name
📡 Data Sources
NVD (NIST) · CIRCL
CISA KEV · ThreatFox
Feodo Tracker · AlienVault OTX
Auto-updated daily via cron