🛡️ CVE Vulnerability Database

CVE vulnerabilities with bilingual AI analysis tailored for Saudi Arabia

CVE ID	Title / Description	Severity	CVSS	Status	Published
CVE-2026-34588	OpenEXR provides the specification and reference implementation of the EXR file format, an image sto…	HIGH	7.8	⚡	Apr 6, 2026
CVE-2026-34217	SandboxJS is a JavaScript sandboxing library. Prior to 0.8.36, a scope modification vulnerability ex…	HIGH	7.2	⚡	Apr 6, 2026
CVE-2026-33510	Homarr is an open-source dashboard. Prior to 1.57.0, a DOM-based Cross-Site Scripting (XSS) vulnerab…	HIGH	8.8	⚡	Apr 6, 2026
CVE-2019-25690	Kados R10 GreenBee contains an SQL injection vulnerability that allows attackers to manipulate datab…	HIGH	8.2	⚡	Apr 5, 2026
CVE-2019-25686	Core FTP 2.0 build 653 contains a denial of service vulnerability in the PBSZ command that allows un…	HIGH	7.5	⚡	Apr 5, 2026
CVE-2019-25685	phpBB contains an arbitrary file upload vulnerability that allows authenticated attackers to upload …	HIGH	8.8	⚡	Apr 5, 2026
CVE-2019-25684	OpenDocMan 1.3.4 contains an SQL injection vulnerability that allows unauthenticated attackers to ma…	HIGH	8.2	⚡	Apr 5, 2026
CVE-2019-25681	Xlight FTP Server 3.9.1 contains a structured exception handler (SEH) overwrite vulnerability that a…	HIGH	8.4	⚡	Apr 5, 2026
CVE-2019-25672	PilusCart 1.4.1 contains a SQL injection vulnerability that allows unauthenticated attackers to mani…	HIGH	8.2	⚡	Apr 5, 2026
CVE-2019-25669	qdPM 9.1 contains an SQL injection vulnerability that allows attackers to manipulate database querie…	HIGH	8.2	⚡	Apr 5, 2026
CVE-2018-25248	MyBB Downloads Plugin 2.0.3 contains a persistent cross-site scripting vulnerability that allows reg…	HIGH	7.2	⚡	Apr 4, 2026
CVE-2026-5350	A security flaw has been discovered in Trendnet TEW-657BRM 1.00.1. The impacted element is the funct…	HIGH	8.8	⚡	Apr 2, 2026
CVE-2026-5349	A vulnerability was identified in Trendnet TEW-657BRM 1.00.1. The affected element is the function a…	HIGH	8.8	⚡	Apr 2, 2026
CVE-2026-34752	Haraka is a Node.js mail server. Prior to version 3.1.4, sending an email with __proto__: as a heade…	HIGH	7.5	⚡	Apr 2, 2026
CVE-2026-34728	phpMyFAQ is an open source FAQ web application. Prior to version 4.1.1, the MediaBrowserController::…	HIGH	8.7	⚡	Apr 2, 2026
CVE-2026-34576	Postiz is an AI social media scheduling tool. Prior to version 2.21.3, the POST /public/v1/upload-fr…	HIGH	7.7	⚡	Apr 2, 2026
CVE-2026-29782	OpenSTAManager is an open source management software for technical assistance and invoicing. Prior t…	HIGH	7.2	⚡ ✅	Apr 2, 2026
CVE-2026-5271	pymanager included the current working directory in sys.path meaning modules could be shadowed by mo…	HIGH	7.8	⚡	Apr 1, 2026
CVE-2026-35092	A flaw was found in Corosync. An integer overflow vulnerability i… A flaw was found in Corosync. An integer overflow vulnerability in Corosync's join message sanity va…	HIGH	7.5	⚡	Apr 1, 2026
CVE-2026-35091	A flaw was found in Corosync. A remote unauthenticated attacker c… A flaw was found in Corosync. A remote unauthenticated attacker can exploit a wrong return value vul…	HIGH	8.2	⚡	Apr 1, 2026
CVE-2026-34570	CI4MS is a CodeIgniter 4-based CMS skeleton that delivers a production-ready, modular architecture w…	HIGH	8.8	⚡	Apr 1, 2026
CVE-2026-34545	OpenEXR provides the specification and reference implementation of the EXR file format, an image sto…	HIGH	7.3	⚡ ✅	Apr 1, 2026
CVE-2026-34544	OpenEXR provides the specification and reference implementation of the EXR file format, an image sto…	HIGH	7.3	⚡ ✅	Apr 1, 2026
CVE-2026-34543	OpenEXR provides the specification and reference implementation of the EXR file format, an image sto…	HIGH	7.5	⚡ ✅	Apr 1, 2026
CVE-2026-27489	Open Neural Network Exchange (ONNX) is an open standard for machine learning interoperability. Prior…	HIGH	7.5	⚡ ✅	Apr 1, 2026

← 1 2 3 4…17 →

🤖 AI Analysis Active

AI analysis includes: Arabic description, Saudi impact assessment, remediation steps, compliance mapping (NCA ECC, SAMA CSF, ISO 27001) and MITRE ATT&CK techniques.

1,706 CVEs analyzed

🔴 Recent Critical CVEs

9.8

9.8

9.8