🛡️ قاعدة بيانات الثغرات الأمنية

ثغرات CVE مع تحليل AI ثنائي اللغة خاص بالمملكة العربية السعودية

المعرّف	العنوان / الوصف	الخطورة	CVSS	الحالة	النشر
CVE-2026-0737	The WP Shortcodes Plugin - Shortcodes Ultimate plugin for WordPre… The WP Shortcodes Plugin - Shortcodes Ultimate plugin for WordPress is vulnerable to Stored Cross-Si…	MEDIUM	6.4	—	أبريل 4, 2026
CVE-2026-0738	The WP Shortcodes Plugin - Shortcodes Ultimate plugin for WordPre… The WP Shortcodes Plugin - Shortcodes Ultimate plugin for WordPress is vulnerable to Stored Cross-Si…	MEDIUM	6.4	—	أبريل 4, 2026
CVE-2026-2437	The WP Travel Engine – Tour Booking Plugin – Tour Operator Softwa… The WP Travel Engine – Tour Booking Plugin – Tour Operator Software plugin for WordPress is vulnerab…	MEDIUM	6.4	—	أبريل 4, 2026
CVE-2026-2600	The ElementsKit Elementor Addons and Templates plugin for WordPre… The ElementsKit Elementor Addons and Templates plugin for WordPress is vulnerable to Stored Cross-Si…	MEDIUM	6.4	—	أبريل 4, 2026
CVE-2026-2924	The Gutenverse – Ultimate WordPress FSE Blocks Addons & Ecosystem… The Gutenverse – Ultimate WordPress FSE Blocks Addons & Ecosystem plugin for WordPress is vulnerable…	MEDIUM	6.4	—	أبريل 4, 2026
CVE-2026-2949	The Xpro Addons — 140+ Widgets for Elementor plugin for WordPress… The Xpro Addons — 140+ Widgets for Elementor plugin for WordPress is vulnerable to Stored Cross-Site…	MEDIUM	6.4	—	أبريل 4, 2026
CVE-2026-3309	The Paid Membership Plugin, Ecommerce, User Registration Form, Lo… The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict C…	MEDIUM	6.5	—	أبريل 4, 2026
CVE-2026-3571	The Pie Register – User Registration, Profiles & Content Restrict… The Pie Register – User Registration, Profiles & Content Restriction plugin for WordPress is vulnera…	MEDIUM	6.5	—	أبريل 4, 2026
CVE-2026-34511	OpenClaw before 2026.4.2 reuses the PKCE verifier as the OAuth st… OpenClaw before 2026.4.2 reuses the PKCE verifier as the OAuth state parameter in the Gemini OAuth f…	MEDIUM	5.3	—	أبريل 3, 2026
CVE-2026-5470	A security vulnerability has been detected in mixelpixx Google-Re… A security vulnerability has been detected in mixelpixx Google-Research-MCP 1e062d7bd887bfe5f6e582b6…	MEDIUM	6.3	—	أبريل 3, 2026
CVE-2026-5472	A flaw has been found in ProjectsAndPrograms School Management Sy… A flaw has been found in ProjectsAndPrograms School Management System up to 6b6fae5426044f89c08d0dd1…	MEDIUM	6.3	—	أبريل 3, 2026
CVE-2026-5474	A vulnerability was found in NASA cFS up to 7.0.0. This affects t… A vulnerability was found in NASA cFS up to 7.0.0. This affects the function CFE_MSG_GetSize of the …	MEDIUM	6.3	—	أبريل 3, 2026
CVE-2026-5475	A vulnerability was determined in NASA cFS up to 7.0.0. This impa… A vulnerability was determined in NASA cFS up to 7.0.0. This impacts the function CFE_SB_TransmitMsg…	MEDIUM	5.5	—	أبريل 3, 2026
CVE-2026-5484	A weakness has been identified in BookStackApp BookStack up to 26… A weakness has been identified in BookStackApp BookStack up to 26.03. Affected is the function chapt…	MEDIUM	5.3	—	أبريل 3, 2026
CVE-2017-20233	Hirschmann HiLCOS products OpenBAT, BAT450, WLC, BAT867 contains … Hirschmann HiLCOS products OpenBAT, BAT450, WLC, BAT867 contains a firewall filtering vulnerability …	MEDIUM	5.4	—	أبريل 3, 2026
CVE-2026-0688	The Webmention plugin for WordPress is vulnerable to Server-Side … The Webmention plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up …	MEDIUM	6.4	—	أبريل 2, 2026
CVE-2026-33617	An unauthenticated remote attacker can access a configuration fil… An unauthenticated remote attacker can access a configuration file containing database credentials. …	MEDIUM	5.3	—	أبريل 2, 2026
CVE-2026-34425	OpenClaw versions prior to commit 8aceaf5 contain a preflight val… OpenClaw versions prior to commit 8aceaf5 contain a preflight validation bypass vulnerability in she…	MEDIUM	5.4	—	أبريل 2, 2026
CVE-2026-34798	Endian Firewall version 3.3.25 and prior allow stored cross-site … Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark para…	MEDIUM	6.4	—	أبريل 2, 2026
CVE-2026-34799	Endian Firewall version 3.3.25 and prior allow stored cross-site … Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark para…	MEDIUM	6.4	—	أبريل 2, 2026
CVE-2026-34800	Endian Firewall version 3.3.25 and prior allow stored cross-site … Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the NAME parame…	MEDIUM	6.4	—	أبريل 2, 2026
CVE-2026-34801	Endian Firewall version 3.3.25 and prior allow stored cross-site … Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark para…	MEDIUM	6.4	—	أبريل 2, 2026
CVE-2026-34802	Endian Firewall version 3.3.25 and prior allow stored cross-site … Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the remark user…	MEDIUM	6.4	—	أبريل 2, 2026
CVE-2026-34803	Endian Firewall version 3.3.25 and prior allow stored cross-site … Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the name parame…	MEDIUM	6.4	—	أبريل 2, 2026
CVE-2026-34804	Endian Firewall version 3.3.25 and prior allow stored cross-site … Endian Firewall version 3.3.25 and prior allow stored cross-site scripting (XSS) via the dscp parame…	MEDIUM	6.4	—	أبريل 2, 2026