🛡️ CVE Vulnerability Database

CVE vulnerabilities with bilingual AI analysis tailored for Saudi Arabia

CVE ID	Title / Description	Severity	CVSS	Status	Published
CVE-2026-6490	A weakness has been identified in QueryMine sms up to 7ab5a9ea196209611134525ffc18de25c57d9593. Impa…	HIGH	7.3	—	Apr 17, 2026
CVE-2026-6483	A vulnerability was found in Wavlink WL-WN530H4 20220721. This vulnerability affects the function st…	HIGH	7.2	—	Apr 17, 2026
CVE-2026-6421	A vulnerability has been found in Mobatek MobaXterm Home Edition up to 26.1. This affects an unknown…	HIGH	7.0	—	Apr 17, 2026
CVE-2026-5718	The Drag and Drop Multiple File Upload for Contact Form 7 plugin for WordPress is vulnerable to arbi…	HIGH	8.1	—	Apr 17, 2026
CVE-2026-5710	The Drag and Drop Multiple File Upload for Contact Form 7 plugin for WordPress is vulnerable to Path…	HIGH	7.5	—	Apr 17, 2026
CVE-2026-5231	The WP Statistics plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'utm_sou…	HIGH	7.2	—	Apr 17, 2026
CVE-2026-4659	The Unlimited Elements for Elementor plugin for WordPress is vulnerable to Arbitrary File Read via t…	HIGH	7.5	—	Apr 17, 2026
CVE-2026-40518	ByteDance DeerFlow before commit 2176b2b contains a path traversal and arbitrary file write vulnerab…	HIGH	7.1	—	Apr 17, 2026
CVE-2026-40516	OpenHarness before commit bd4df81 contains a server-side request forgery vulnerability in the web_fe…	HIGH	8.3	—	Apr 17, 2026
CVE-2026-40515	OpenHarness before commit bd4df81 contains a permission bypass vulnerability that allows attackers t…	HIGH	7.5	—	Apr 17, 2026
CVE-2026-40459	PAC4J is vulnerable to LDAP Injection in multiple methods. A low-privileged remote attacker can inje…	HIGH	8.8	—	Apr 17, 2026
CVE-2026-3464	The WP Customer Area plugin for WordPress is vulnerable to arbitrary file read and deletion due to i…	HIGH	8.8	—	Apr 17, 2026
CVE-2026-23776	Dell PowerProtect Data Domain with Data Domain Operating System (DD OS) of Feature Release versions …	HIGH	7.2	✅	Apr 17, 2026
CVE-2025-36568	Dell PowerProtect Data Domain BoostFS for client of Feature Release versions 7.7.1.0 through 8.5, LT…	HIGH	7.8	—	Apr 17, 2026
CVE-2026-6351	MailGates/MailAudit developed by Openfind has a CRLF Injection vulnerability, allowing unauthenticat…	HIGH	7.5	—	Apr 16, 2026
CVE-2026-6348	WinMatrix agent developed by Simopro Technology has a Missing Authentication vulnerability, allowing…	HIGH	8.8	—	Apr 16, 2026
CVE-2026-5050	The Payment Gateway for Redsys & WooCommerce Lite plugin for WordPress is vulnerable to Improper Ver…	HIGH	7.5	—	Apr 16, 2026
CVE-2026-40901	DataEase is an open-source data visualization and analytics platform. Versions 2.10.20 and below shi…	HIGH	8.8	⚡	Apr 16, 2026
CVE-2026-40900	DataEase is an open-source data visualization and analytics platform. Versions 2.10.20 and below con…	HIGH	8.8	⚡	Apr 16, 2026
CVE-2026-40502	OpenHarness prior to commit dd1d235 contains a command injection vulnerability that allows remote ga…	HIGH	8.8	—	Apr 16, 2026
CVE-2026-40247	free5GC is an open-source implementation of the 5G core network. In versions 4.2.1 and below of the …	HIGH	7.5	⚡	Apr 16, 2026
CVE-2026-40246	free5GC is an open-source implementation of the 5G core network. In versions 1.4.2 and below of the …	HIGH	7.5	⚡	Apr 16, 2026
CVE-2026-3876	The Prismatic plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'prismatic_e…	HIGH	7.2	—	Apr 16, 2026
CVE-2026-3614	The AcyMailing plugin for WordPress is vulnerable to privilege escalation in all versions From 9.11.…	HIGH	8.8	—	Apr 16, 2026
CVE-2026-3599	The Riaxe Product Customizer plugin for WordPress is vulnerable to SQL Injection via the 'options' p…	HIGH	7.5	—	Apr 16, 2026

1 2 3…82 →

🤖 AI Analysis Active

AI analysis includes: Arabic description, Saudi impact assessment, remediation steps, compliance mapping (NCA ECC, SAMA CSF, ISO 27001) and MITRE ATT&CK techniques.

1,706 CVEs analyzed

🔴 Recent Critical CVEs

9.8

9.8

9.8