🛡️ قاعدة بيانات الثغرات الأمنية

ثغرات CVE مع تحليل AI ثنائي اللغة خاص بالمملكة العربية السعودية

المعرّف	العنوان / الوصف	الخطورة	CVSS	الحالة	النشر
CVE-2026-28354	ClipBucket v5 is an open source video sharing platform. Prior to … ClipBucket v5 is an open source video sharing platform. Prior to version 5.5.3 #59, collection item …	MEDIUM	6.5	⚡	فبراير 27, 2026
CVE-2026-28407	malcontent is software for discovering supply-chain compromises t… malcontent is software for discovering supply-chain compromises through context, differential analys…	MEDIUM	5.3	✅	فبراير 27, 2026
CVE-2026-28419	Vim is an open source, command line text editor. Prior to version… Vim is an open source, command line text editor. Prior to version 9.2.0075, a heap-based buffer unde…	MEDIUM	5.3	✅	فبراير 27, 2026
CVE-2026-2880	A vulnerability in @fastify/middie versions < 9.2.0 can result in… A vulnerability in @fastify/middie versions < 9.2.0 can result in authentication/authorization bypas…	MEDIUM	—	—	فبراير 27, 2026
CVE-2026-3223	Arbitrary file write & potential privilege escalation exploiting … Arbitrary file write & potential privilege escalation exploiting zip slip vulnerability in Google We…	MEDIUM	—	—	فبراير 27, 2026
CVE-2026-3255	HTTP::Session2 versions before 1.12 for Perl for Perl may generat… HTTP::Session2 versions before 1.12 for Perl for Perl may generate weak session ids using the rand()…	MEDIUM	6.5	—	فبراير 27, 2026
CVE-2026-3277	The OpenID Connect (OIDC) authentication configuration in PowerSh… The OpenID Connect (OIDC) authentication configuration in PowerShell Universal before 2026.1.3 stor…	MEDIUM	—	—	فبراير 27, 2026
CVE-2026-3281	A vulnerability was detected in libvips 8.19.0. This affects the … A vulnerability was detected in libvips 8.19.0. This affects the function vips_bandrank_build of the…	MEDIUM	5.3	—	فبراير 27, 2026
CVE-2026-3286	A vulnerability was identified in itwanger paicoding 1.0.0/1.0.1/… A vulnerability was identified in itwanger paicoding 1.0.0/1.0.1/1.0.2/1.0.3. The impacted element i…	MEDIUM	6.3	⚡	فبراير 27, 2026
CVE-2026-3287	A security flaw has been discovered in youlaitech youlai-mall 2.0… A security flaw has been discovered in youlaitech youlai-mall 2.0.0. This affects the function listP…	MEDIUM	6.3	—	فبراير 27, 2026
CVE-2026-3289	A weakness has been identified in Sanluan PublicCMS 6.202506.d. T… A weakness has been identified in Sanluan PublicCMS 6.202506.d. This impacts the function saveMetada…	MEDIUM	6.3	—	فبراير 27, 2026
CVE-2026-3292	A security vulnerability has been detected in jizhiCMS up to 2.5.… A security vulnerability has been detected in jizhiCMS up to 2.5.6. Affected is the function findAll…	MEDIUM	6.3	⚡	فبراير 27, 2026
CVE-2026-3302	A weakness has been identified in SourceCodester Doctor Appointme… A weakness has been identified in SourceCodester Doctor Appointment System 1.0. Affected by this iss…	MEDIUM	4.3	⚡	فبراير 27, 2026
CVE-2026-3304	Multer is a node.js middleware for handling `multipart/form-data`… Multer is a node.js middleware for handling `multipart/form-data`. A vulnerability in Multer prior t…	MEDIUM	—	—	فبراير 27, 2026
CVE-2026-3327	Authenticated Iframe Injection in Dato CMS Web Previews plugin. T… Authenticated Iframe Injection in Dato CMS Web Previews plugin. This vulnerability permits a malicio…	MEDIUM	—	—	فبراير 27, 2026
CVE-2018-25160	HTTP::Session2 versions through 1.09 for Perl does not validate t… HTTP::Session2 versions through 1.09 for Perl does not validate the format of user provided session …	MEDIUM	—	—	فبراير 27, 2026
CVE-2024-10938	The OVRI Payment plugin for WordPress contains malicious .htacces… The OVRI Payment plugin for WordPress contains malicious .htaccess files in version 1.7.0. The files…	MEDIUM	6.5	—	فبراير 27, 2026
CVE-2025-11950	Improper Neutralization of Input During Web Page Generation (XSS … Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerab…	MEDIUM	6.3	—	فبراير 27, 2026
CVE-2025-13327	A flaw was found in uv. This vulnerability allows an attacker to … A flaw was found in uv. This vulnerability allows an attacker to execute malicious code during packa…	MEDIUM	6.3	—	فبراير 27, 2026
CVE-2025-14040	The Automotive Car Dealership Business WordPress Theme for WordPr… The Automotive Car Dealership Business WordPress Theme for WordPress is vulnerable to Stored Cross-S…	MEDIUM	6.4	—	فبراير 27, 2026
CVE-2025-14142	The Electric Enquiries plugin for WordPress is vulnerable to Stor… The Electric Enquiries plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'bu…	MEDIUM	6.4	—	فبراير 27, 2026
CVE-2025-14149	The Xpro Addons — 140+ Widgets for Elementor plugin for WordPress… The Xpro Addons — 140+ Widgets for Elementor plugin for WordPress is vulnerable to Stored Cross-Site…	MEDIUM	6.4	—	فبراير 27, 2026
CVE-2025-15498	Pro3W CMS if vulnerable to SQL injection attacks. Improper neutra… Pro3W CMS if vulnerable to SQL injection attacks. Improper neutralization of input provided into a l…	MEDIUM	—	—	فبراير 27, 2026
CVE-2025-15509	The SmartRemote module has insufficient restrictions on loading U… The SmartRemote module has insufficient restrictions on loading URLs, which may lead to some informa…	MEDIUM	—	—	فبراير 27, 2026
CVE-2025-15567	Insufficient protection mechanisms in the Health Module may lead … Insufficient protection mechanisms in the Health Module may lead to partial information disclosure.	MEDIUM	—	—	فبراير 27, 2026