الثغرات / Vulnerabilities
بيانات CVE من NVD مع إثراء KEV من CISA وترجمة عربية. المحتوى أدناه مبني على المصادر الرسمية فقط.
| CVE | الشدة | CVSS | مستغلة فعليًا؟ | تاريخ النشر | ملخص عربي |
|---|---|---|---|---|---|
| CVE-2026-1227 | High | 7,0 | لا | 2026-02-11 | CWE-611: Improper Restriction of XML External Entity Reference vulnerability exists that could cause unauthorized discl… |
| CVE-2026-1226 | High | 7,0 | لا | 2026-02-11 | CWE‑94: Improper Control of Generation of Code vulnerability exists that could cause execution of untrusted or unintend… |
| CVE-2026-0910 | High | 8,8 | لا | 2026-02-11 | The wpForo Forum plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 2.4.1… |
| CVE-2025-8668 | Critical | 9,4 | لا | 2026-02-11 | Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in E-Kalite S… |
| CVE-2026-22894 | Low | 1,3 | لا | 2026-02-11 | A path traversal vulnerability has been reported to affect File Station 6. If a remote attacker gains a user account, t… |
| CVE-2025-8025 | Critical | 9,8 | لا | 2026-02-11 | Missing Authentication for Critical Function, Improper Access Control vulnerability in Dinosoft Business Solutions Dino… |
| CVE-2025-68406 | Low | 1,3 | لا | 2026-02-11 | A path traversal vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, th… |
| CVE-2025-66278 | Low | 1,3 | لا | 2026-02-11 | A path traversal vulnerability has been reported to affect File Station 5. If a remote attacker gains a user account, t… |
| CVE-2025-66277 | Critical | 9,2 | لا | 2026-02-11 | A link following vulnerability has been reported to affect several QNAP operating system versions. The remote attackers… |
| CVE-2025-66274 | Low | 1,2 | لا | 2026-02-11 | A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remot… |
| CVE-2025-62856 | Low | 1,3 | لا | 2026-02-11 | A path traversal vulnerability has been reported to affect File Station 5. If a local attacker gains an administrator a… |
| CVE-2025-62855 | Low | 1,3 | لا | 2026-02-11 | A path traversal vulnerability has been reported to affect File Station 5. If a local attacker gains an administrator a… |
| CVE-2025-62854 | Low | 1,3 | لا | 2026-02-11 | An uncontrolled resource consumption vulnerability has been reported to affect File Station 5. If a remote attacker gai… |
| CVE-2025-62853 | Medium | 5,2 | لا | 2026-02-11 | A path traversal vulnerability has been reported to affect File Station 5. If a remote attacker gains a user account, t… |
| CVE-2025-59386 | Low | 1,2 | لا | 2026-02-11 | A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remot… |
| CVE-2025-58472 | Low | 1,2 | لا | 2026-02-11 | A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote attacker gains an admin… |
| CVE-2025-58471 | Low | 1,2 | لا | 2026-02-11 | An allocation of resources without limits or throttling vulnerability has been reported to affect Qsync Central. If a r… |
| CVE-2025-58470 | Low | 1,3 | لا | 2026-02-11 | A path traversal vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, th… |
| CVE-2025-58467 | Low | 1,3 | لا | 2026-02-11 | A relative path traversal vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user ac… |
| CVE-2025-58466 | Low | 1,2 | لا | 2026-02-11 | A use of uninitialized variable vulnerability has been reported to affect several QNAP operating system versions. If a … |
| CVE-2025-57713 | Low | 1,3 | لا | 2026-02-11 | A weak authentication vulnerability has been reported to affect File Station 5. The remote attackers can then exploit t… |
| CVE-2025-57711 | Low | 3,6 | لا | 2026-02-11 | An allocation of resources without limits or throttling vulnerability has been reported to affect Qsync Central. If a r… |
| CVE-2025-57710 | Low | 3,6 | لا | 2026-02-11 | An allocation of resources without limits or throttling vulnerability has been reported to affect Qsync Central. If a r… |
| CVE-2025-57709 | Low | 1,3 | لا | 2026-02-11 | A buffer overflow vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, t… |
| CVE-2025-57708 | Low | 2,3 | لا | 2026-02-11 | An allocation of resources without limits or throttling vulnerability has been reported to affect Qsync Central. If a r… |
| CVE-2025-57707 | Low | 1,1 | لا | 2026-02-11 | An improper neutralization of directives in statically saved code ('Static Code Injection') vulnerability has been repo… |
| CVE-2025-54170 | Medium | 4,9 | لا | 2026-02-11 | An out-of-bounds read vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user accoun… |
| CVE-2025-54169 | Medium | 4,9 | لا | 2026-02-11 | An out-of-bounds read vulnerability has been reported to affect File Station 5. If a remote attacker gains a user accou… |
| CVE-2025-54163 | Low | 1,2 | لا | 2026-02-11 | A NULL pointer dereference vulnerability has been reported to affect File Station 5. If a remote attacker gains an admi… |
| CVE-2025-54162 | Medium | 4,8 | لا | 2026-02-11 | A path traversal vulnerability has been reported to affect File Station 5. If a remote attacker gains an administrator … |
| CVE-2025-54161 | Low | 3,6 | لا | 2026-02-11 | An allocation of resources without limits or throttling vulnerability has been reported to affect File Station 5. If a … |
| CVE-2025-54155 | Low | 3,6 | لا | 2026-02-11 | An allocation of resources without limits or throttling vulnerability has been reported to affect File Station 5. If a … |
| CVE-2025-54152 | Low | 1,3 | لا | 2026-02-11 | A use of out-of-range pointer offset vulnerability has been reported to affect Qsync Central. If a remote attacker gain… |
| CVE-2025-54151 | Medium | 4,9 | لا | 2026-02-11 | An uncontrolled resource consumption vulnerability has been reported to affect Qsync Central. If a local attacker gains… |
| CVE-2025-54150 | Medium | 4,9 | لا | 2026-02-11 | An uncontrolled resource consumption vulnerability has been reported to affect Qsync Central. If a local attacker gains… |
| CVE-2025-54149 | Medium | 4,9 | لا | 2026-02-11 | An uncontrolled resource consumption vulnerability has been reported to affect Qsync Central. If a local attacker gains… |
| CVE-2025-54148 | Low | 1,3 | لا | 2026-02-11 | A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user a… |
| CVE-2025-54147 | Low | 1,3 | لا | 2026-02-11 | A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user a… |
| CVE-2025-54146 | Low | 1,3 | لا | 2026-02-11 | A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user a… |
| CVE-2025-53598 | Low | 0,6 | لا | 2026-02-11 | A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user a… |
| CVE-2025-52870 | Low | 0,6 | لا | 2026-02-11 | A buffer overflow vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, t… |
| CVE-2025-52869 | Low | 0,6 | لا | 2026-02-11 | A buffer overflow vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, t… |
| CVE-2025-52868 | Low | 0,6 | لا | 2026-02-11 | A buffer overflow vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, t… |
| CVE-2025-48725 | Low | 0,6 | لا | 2026-02-11 | A buffer overflow vulnerability has been reported to affect several QNAP operating system versions. If a remote attacke… |
| CVE-2025-48724 | Low | 0,6 | لا | 2026-02-11 | A buffer overflow vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, t… |
| CVE-2025-48723 | Low | 0,6 | لا | 2026-02-11 | A buffer overflow vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user account, t… |
| CVE-2025-48722 | Low | 1,3 | لا | 2026-02-11 | A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user a… |
| CVE-2025-47209 | Low | 1,3 | لا | 2026-02-11 | A NULL pointer dereference vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user a… |
| CVE-2025-47205 | Medium | 5,1 | لا | 2026-02-11 | A NULL pointer dereference vulnerability has been reported to affect several QNAP operating system versions. If a remot… |
| CVE-2025-30276 | Medium | 4,9 | لا | 2026-02-11 | An out-of-bounds write vulnerability has been reported to affect Qsync Central. If a remote attacker gains a user accou… |