🛡️ CVE Vulnerability Database

CVE vulnerabilities with bilingual AI analysis tailored for Saudi Arabia

CVE ID	Title / Description	Severity	CVSS	Status	Published
CVE-2026-3581	The Basic Google Maps Placemarks plugin for WordPress is vulnerable to authorization bypass in versi…	MEDIUM	5.3	—	Apr 16, 2026
CVE-2026-3369	The Better Find and Replace – AI-Powered Suggestions plugin for WordPress is vulnerable to Stored Cr…	MEDIUM	5.4	—	Apr 16, 2026
CVE-2026-3355	The Customer Reviews for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scri…	MEDIUM	6.1	—	Apr 16, 2026
CVE-2026-3299	The WP YouTube Lyte plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin…	MEDIUM	6.4	—	Apr 16, 2026
CVE-2026-2840	The Email Encoder – Protect Email Addresses and Phone Numbers plugin for WordPress is vulnerable to …	MEDIUM	6.4	—	Apr 16, 2026
CVE-2026-1572	The Livemesh Addons for Elementor plugin for WordPress is vulnerable to unauthorized modification of…	MEDIUM	6.4	—	Apr 16, 2026
CVE-2026-0718	The Post Grid Gutenberg Blocks for News, Magazines, Blog Websites – PostX plugin for WordPress is vu…	MEDIUM	5.3	—	Apr 16, 2026
CVE-2025-13364	The WP Maps – Store Locator,Google Maps,OpenStreetMap,Mapbox,Listing,Directory & Filters plugin for …	MEDIUM	6.4	—	Apr 16, 2026
CVE-2026-6385	A flaw was found in FFmpeg. A remote attacker could exploit this vulnerability by providing a specia…	MEDIUM	6.5	—	Apr 15, 2026
CVE-2026-6383	A flaw was found in KubeVirt's Role-Based Access Control (RBAC) evaluation logic. The authorization …	MEDIUM	5.4	—	Apr 15, 2026
CVE-2026-6245	A flaw was found in the System Security Services Daemon (SSSD). The pam_passkey_child_read_data() fu…	MEDIUM	5.5	—	Apr 15, 2026
CVE-2026-5717	The VI: Include Post By plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'c…	MEDIUM	6.4	—	Apr 15, 2026
CVE-2026-4812	The Advanced Custom Fields (ACF) plugin for WordPress is vulnerable to Missing Authorization to Arbi…	MEDIUM	5.3	—	Apr 15, 2026
CVE-2026-4135	During an internal security assessment, a potential vulnerability was discovered in Lenovo Software …	MEDIUM	6.6	—	Apr 15, 2026
CVE-2026-40919	A flaw was found in GIMP. This vulnerability, a buffer overflow in the `file-seattle-filmworks` plug…	MEDIUM	6.1	—	Apr 15, 2026
CVE-2026-40918	A flaw was found in GIMP. Processing a specially crafted PVR image file with large dimensions can le…	MEDIUM	5.5	—	Apr 15, 2026
CVE-2026-40917	A flaw was found in GIMP. This vulnerability, a heap buffer over-read in the `icns_slurp()` function…	MEDIUM	5.0	—	Apr 15, 2026
CVE-2026-40916	A flaw was found in GIMP. A stack buffer overflow vulnerability in the TIM image loader's 4BPP decod…	MEDIUM	5.0	—	Apr 15, 2026
CVE-2026-40915	A flaw was found in GIMP. A remote attacker could exploit an integer overflow vulnerability in the F…	MEDIUM	5.5	—	Apr 15, 2026
CVE-2026-4091	The OPEN-BRAIN plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up t…	MEDIUM	6.1	—	Apr 15, 2026
CVE-2026-40500	ProcessWire CMS version 3.0.255 and prior contain a server-side request forgery vulnerability in the…	MEDIUM	6.8	—	Apr 15, 2026
CVE-2026-4011	The Power Charts Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'id'…	MEDIUM	6.4	—	Apr 15, 2026
CVE-2026-4005	The Coachific Shortcode plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'u…	MEDIUM	6.4	—	Apr 15, 2026
CVE-2026-3998	The WM JqMath plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'style' shor…	MEDIUM	6.4	—	Apr 15, 2026
CVE-2026-3659	The WP Circliful plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'id' shor…	MEDIUM	6.4	—	Apr 15, 2026

← 1 2 3 4 5 6…43 →

🤖 AI Analysis Active

AI analysis includes: Arabic description, Saudi impact assessment, remediation steps, compliance mapping (NCA ECC, SAMA CSF, ISO 27001) and MITRE ATT&CK techniques.

1,706 CVEs analyzed

🔴 Recent Critical CVEs

9.8

9.8

9.8