🛡️ CVE Vulnerability Database

CVE vulnerabilities with bilingual AI analysis tailored for Saudi Arabia

CVE ID	Title / Description	Severity	CVSS	Status	Published
CVE-2026-0589	Authentication Bypass in Online Product Reservation System 1.0 Ad… A vulnerability was found in code-projects Online Product Reservation System 1.0. Impacted is an unk…	HIGH	7.3	⚡ ✅ AI	Jan 5, 2026
CVE-2026-0621	ReDoS Vulnerability in Anthropic MCP TypeScript SDK URI Template … Anthropic's MCP TypeScript SDK versions up to and including 1.25.1 contain a regular expression deni…	HIGH	7.5	⚡ ✅ AI	Jan 5, 2026
CVE-2025-3646	Petlibro Smart Pet Feeder Authorization Bypass Vulnerability (CVE… Petlibro Smart Pet Feeder Platform versions up to 1.7.31 contains an authorization bypass vulnerabil…	HIGH	7.3	✅	Jan 4, 2026
CVE-2025-64124	OS Command Injection in Nuvation Energy Multi-Stack Controller (M… Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerabi…	HIGH	8.8	✅	Jan 3, 2026
CVE-2025-15426	A vulnerability was identified in jackying H-ui.admin up to 3.1. … A vulnerability was identified in jackying H-ui.admin up to 3.1. This affects an unknown function in…	HIGH	7.3	✅	Jan 2, 2026
CVE-2025-15428	A weakness has been identified in UTT 进取 512W 1.7.7-171114. Affec… A weakness has been identified in UTT 进取 512W 1.7.7-171114. Affected is the function strcpy of the f…	HIGH	8.8	⚡ ✅	Jan 2, 2026
CVE-2025-15429	A security vulnerability has been detected in UTT 进取 512W 1.7.7-1… A security vulnerability has been detected in UTT 进取 512W 1.7.7-171114. Affected by this vulnerabili…	HIGH	8.8	⚡ ✅	Jan 2, 2026
CVE-2025-52863	QNAP QTS/QuTS Hero Buffer Overflow Vulnerability Enables Memory M… A buffer overflow vulnerability has been reported to affect several QNAP operating system versions. …	HIGH	8.1	✅ AI	Jan 2, 2026
CVE-2025-52864	A buffer overflow vulnerability has been reported to affect sever… A buffer overflow vulnerability has been reported to affect several QNAP operating system versions. …	HIGH	8.1	✅	Jan 2, 2026
CVE-2025-52872	A buffer overflow vulnerability has been reported to affect sever… A buffer overflow vulnerability has been reported to affect several QNAP operating system versions. …	HIGH	8.1	✅	Jan 2, 2026
CVE-2025-59384	QNAP Qfiling Path Traversal Vulnerability Allows Unauthorized Fil… A path traversal vulnerability has been reported to affect Qfiling. The remote attackers can then ex…	HIGH	7.5	✅	Jan 2, 2026
CVE-2025-62842	QNAP HBS 3 Path Traversal Vulnerability Enables Unauthorized File… An external control of file name or path vulnerability has been reported to affect HBS 3 Hybrid Back…	HIGH	7.8	✅	Jan 2, 2026
CVE-2025-64120	Critical OS Command Injection in Nuvation Energy Multi-Stack Cont… Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerabi…	HIGH	8.8	✅	Jan 2, 2026
CVE-2025-69414	Plex Media Server Permanent Token Exposure via Transient Token Es… Plex Media Server (PMS) through 1.42.2.10156 allows retrieval of a permanent access token via a /myp…	HIGH	8.5	⚡ ✅	Jan 2, 2026
CVE-2025-69415	Plex Media Server Device Token Authentication Bypass Vulnerabilit… In Plex Media Server (PMS) through 1.42.2.10156, ability to access /myplex/account with a device tok…	HIGH	7.1	⚡ ✅	Jan 2, 2026
CVE-2025-9110	QNAP QTS/QuTS hero Sensitive System Information Exposure Vulnerab… An exposure of sensitive system information to an unauthorized control sphere vulnerability has been…	HIGH	7.5	✅	Jan 2, 2026
CVE-2026-21449	Bagisto is an open source laravel eCommerce platform. Versions pr… Bagisto is an open source laravel eCommerce platform. Versions prior to 2.3.10 are vulnerable to ser…	HIGH	8.8	⚡ ✅	Jan 2, 2026
CVE-2026-21451	Stored XSS Vulnerability in Bagisto CMS Page Editor Allows Admin … Bagisto is an open source laravel eCommerce platform. A stored Cross-Site Scripting (XSS) vulnerabil…	HIGH	8.4	⚡ ✅	Jan 2, 2026
CVE-2026-21428	cpp-httplib is a C++11 single-file header-only cross platform HTT… cpp-httplib is a C++11 single-file header-only cross platform HTTP/HTTPS library. Prior to version 0…	HIGH	7.5	⚡ ✅	Jan 1, 2026
CVE-2025-48769	Use After Free vulnerability was discovered in fs/vfs/fs_rename c… Use After Free vulnerability was discovered in fs/vfs/fs_rename code of the Apache NuttX RTOS, that …	HIGH	8.1	✅	Jan 1, 2026
CVE-2025-68619	Signal K Server Arbitrary Code Execution via Malicious npm Packag… Signal K Server is a server application that runs on a central hub in a boat. Versions prior to 2.19…	HIGH	7.2	⚡ ✅	Jan 1, 2026

← 1…80 81 82

🤖 AI Analysis Active

AI analysis includes: Arabic description, Saudi impact assessment, remediation steps, compliance mapping (NCA ECC, SAMA CSF, ISO 27001) and MITRE ATT&CK techniques.

1,706 CVEs analyzed

🔴 Recent Critical CVEs

9.8

9.8

9.8