🛡️ CVE Vulnerability Database

CVE vulnerabilities with bilingual AI analysis tailored for Saudi Arabia

CVE ID	Title / Description	Severity	CVSS	Status	Published
CVE-2026-34589	OpenEXR provides the specification and reference implementation of the EXR file format, an image sto…	MEDIUM	5.0	⚡	Apr 6, 2026
CVE-2026-31354	Multiple authenticated stored cross-site scripting (XSS) vulnerabilities in the Permissions module o…	MEDIUM	5.4	⚡	Apr 6, 2026
CVE-2026-31353	An authenticated stored cross-site scripting (XSS) vulnerability in the Category module of Feehi CMS…	MEDIUM	5.4	⚡	Apr 6, 2026
CVE-2026-31352	An authenticated stored cross-site scripting (XSS) vulnerability in the Role Management module of Fe…	MEDIUM	5.4	⚡	Apr 6, 2026
CVE-2026-31350	An authenticated stored cross-site scripting (XSS) vulnerability in Feehi CMS v2.1.1 allows attacker…	MEDIUM	5.4	⚡	Apr 6, 2026
CVE-2026-31313	An authenticated stored cross-site scripting (XSS) vulnerability in the creation/editing module of F…	MEDIUM	5.4	⚡	Apr 6, 2026
CVE-2026-3877	A reflected cross-site scripting (XSS) vulnerability in the dashb… A reflected cross-site scripting (XSS) vulnerability in the dashboard search functionality of the Ve…	MEDIUM	6.1	⚡	Apr 1, 2026
CVE-2026-35057	XenForo before 2.3.10 and before 2.2.19 is vulnerable to stored c… XenForo before 2.3.10 and before 2.2.19 is vulnerable to stored cross-site scripting (XSS) in struct…	MEDIUM	6.4	⚡	Apr 1, 2026
CVE-2026-30522	A Business Logic vulnerability exists in SourceCodester Loan Mana… A Business Logic vulnerability exists in SourceCodester Loan Management System v1.0 due to improper …	MEDIUM	6.5	⚡	Apr 1, 2026
CVE-2026-34716	WWBN AVideo is an open source video platform. In versions 26.0 an… WWBN AVideo is an open source video platform. In versions 26.0 and prior, the AVideo YPTSocket plugi…	MEDIUM	6.4	⚡	Mar 31, 2026
CVE-2026-34605	SiYuan is a personal knowledge management system. From version 3.… SiYuan is a personal knowledge management system. From version 3.6.0 to before version 3.6.2, the Sa…	MEDIUM	6.1	⚡	Mar 31, 2026
CVE-2026-34442	FreeScout is a free help desk and shared inbox built with PHP's L… FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version …	MEDIUM	5.4	⚡ ✅	Mar 31, 2026
CVE-2026-34396	WWBN AVideo is an open source video platform. In versions 26.0 an… WWBN AVideo is an open source video platform. In versions 26.0 and prior, the AVideo admin panel ren…	MEDIUM	6.1	⚡	Mar 31, 2026
CVE-2026-30521	A Business Logic vulnerability exists in SourceCodester Loan Mana… A Business Logic vulnerability exists in SourceCodester Loan Management System v1.0 due to improper …	MEDIUM	6.5	⚡	Mar 31, 2026
CVE-2026-33977	FreeRDP is a free implementation of the Remote Desktop Protocol. … FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, a maliciou…	MEDIUM	6.5	⚡ ✅	Mar 30, 2026
CVE-2026-33952	FreeRDP is a free implementation of the Remote Desktop Protocol. … FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, an unvalid…	MEDIUM	6.5	⚡ ✅	Mar 30, 2026
CVE-2026-33027	Nginx UI is a web user interface for the Nginx web server. Prior … Nginx UI is a web user interface for the Nginx web server. Prior to version 2.3.4, the nginx-ui conf…	MEDIUM	6.5	⚡	Mar 30, 2026
CVE-2018-25226	FTPShell Server 6.83 contains a buffer overflow vulnerability tha… FTPShell Server 6.83 contains a buffer overflow vulnerability that allows local attackers to crash t…	MEDIUM	6.2	⚡	Mar 30, 2026
CVE-2018-25216	AnyBurn 4.3 contains a local buffer overflow vulnerability that a… AnyBurn 4.3 contains a local buffer overflow vulnerability that allows local attackers to crash the …	MEDIUM	6.2	⚡	Mar 26, 2026
CVE-2018-25214	MegaPing contains a local buffer overflow vulnerability that allo… MegaPing contains a local buffer overflow vulnerability that allows local attackers to crash the app…	MEDIUM	6.2	⚡	Mar 26, 2026
CVE-2026-32120	OpenEMR is a free and open source electronic health records and m… OpenEMR is a free and open source electronic health records and medical practice management applicat…	MEDIUM	6.5	⚡ ✅	Mar 25, 2026
CVE-2026-4603	Versions of the package jsrsasign before 11.1.1 are vulnerable to… Versions of the package jsrsasign before 11.1.1 are vulnerable to Division by zero due to the RSASet…	MEDIUM	5.9	⚡ ✅	Mar 23, 2026
CVE-2019-25596	SpotAuditor 5.2.6 contains a denial of service vulnerability in t… SpotAuditor 5.2.6 contains a denial of service vulnerability in the registration dialog that allows …	MEDIUM	6.2	⚡	Mar 22, 2026
CVE-2019-25551	Sandboxie 5.30 contains a denial of service vulnerability that al… Sandboxie 5.30 contains a denial of service vulnerability that allows local attackers to crash the a…	MEDIUM	6.2	⚡	Mar 21, 2026
CVE-2019-25547	NetAware 1.20 contains a buffer overflow vulnerability in the Use… NetAware 1.20 contains a buffer overflow vulnerability in the User Blocking feature that allows loca…	MEDIUM	6.2	⚡	Mar 21, 2026

1 2 →

🤖 AI Analysis Active

AI analysis includes: Arabic description, Saudi impact assessment, remediation steps, compliance mapping (NCA ECC, SAMA CSF, ISO 27001) and MITRE ATT&CK techniques.

1,706 CVEs analyzed

🔴 Recent Critical CVEs

9.8

9.8

9.8