تقرير الأمن السيبراني

📊 توزيع الخطورة

🔴 Critical

160

🟠 High

445

🟡 Medium

821

🟢 Low

300

📡 توزيع المصادر

NVD

433

VulnCheck

310

Microsoft MSRC

269

MITRE CVE High

161

GHSA

157

Vulners

63

Ubuntu Security

33

Cyber Security News

28

Exploit-DB

28

BleepingComputer

24

🌐 المجالات الأكثر تأثراً

Exploit

360

Web

305

Vulnerability

245

General

200

Browser

117

Linux

113

Microsoft

68

OT/ICS

44

DDoS

33

iOS

32

⚠️ أنواع التهديدات

Exploit

1455

AI Attack

63

DDoS

46

APT

30

ICS/OT

29

Malware

24

PoC Research

19

IOC

15

🔴 أخطر الثغرات Critical

الحدث / CVE	المصدر	الخطورة	الاستغلال	الأنظمة	الحل
CVE-2026-47131 CVE-2026-47131 — GHSA: vm2 has a Sandbox Escape issue ← تفاصيل	GHSA	🔴 Critical	No
CVE-2026-47140 CVE-2026-47140 — GHSA: NodeVM builtin denylist bypass via process… ← تفاصيل	GHSA	🔴 Critical	No
CVE-2026-47137 CVE-2026-47137 — GHSA: vm2 has a CVE-2023-37903 patch bypass: nes… ← تفاصيل	GHSA	🔴 Critical	No
CVE-2026-47208 CVE-2026-47208 — GHSA: vm2 is Vulnerable to Sandbox Breakout Thro… ← تفاصيل	GHSA	🔴 Critical	No
CVE-2026-45618 CVE-2026-45618 — GHSA: LiquidJS is Vulnerable to Remote Code Exec… ← تفاصيل	GHSA	🔴 Critical	PoC Only	Multiple Systems	Refer to CVE-2026-45618 NVD advisory
CVE-2026-45102 CVE-2026-45102 — OneUptime is an open-source monitoring and obser… ← تفاصيل	NVD	🔴 Critical	No	Multiple Systems	Refer to CVE-2026-45102 NVD advisory
CVE-2026-9559 CVE-2026-9559 — VulnCheck: A path traversal vulnerability exists … ← تفاصيل	VulnCheck	🔴 Critical	No	PHP	Refer to CVE-2026-9559 NVD advisory
CVE-2026-9558 CVE-2026-9558 — VulnCheck: A Server-Side Template Injection (SSTI… ← تفاصيل	VulnCheck	🔴 Critical	No		Refer to CVE-2026-9558 NVD advisory
CVE-2026-47065 CVE-2026-47065 — GHSA: ZDRES-232: resolveProxyClass Not Overridde… ← تفاصيل	GHSA	🔴 Critical	No
CVE-2026-35075 CVE-2026-35075 — VulnCheck: An unauthenticated remote attacker ca… ← تفاصيل	VulnCheck	🔴 Critical	No		Refer to CVE-2026-35075 NVD advisory

⚡ CISA KEV — مستغَلّة رسمياً

الحدث / CVE	المصدر	الخطورة	الاستغلال	الأنظمة	الحل
CVE-2026-41089 Windows Netlogon 0-Click RCE Vulnerability Now Actively Exploited… ← تفاصيل	Cyber Security News	🔴 Critical	Yes	Windows Server (2019/2022)	Microsoft Patch Tuesday
CISA gives feds 4 days to patch actively exploited cPanel plugin … ← تفاصيل	BleepingComputer	🔴 Critical	Yes	Multiple Systems	Apply vendor security patch
Five OpenClaw 0-Days let Attackers to Hijack Trusted AI Agent Acc… ← تفاصيل	Cyber Security News	🟠 High	Yes		Microsoft Patch Tuesday
Attackers exploit Palo Alto GlobalProtect flaw days after disclos… ← تفاصيل	CSO Online	🟠 High	Yes	Palo Alto Networks	Apply vendor security patch
Microsoft says it will not pursue security researchers after zero… ← تفاصيل	The Record	🟠 High	Yes	Multiple Systems	Microsoft Patch Tuesday
Critical WP Maps Pro Flaw Actively Exploited to Create Admin Acco… ← تفاصيل	THN	🟠 High	Yes	WordPress 6.5.x	Apply vendor security patch
Critical WP Maps Pro Flaw Actively Exploited to Create Admin Acco… ← تفاصيل	THN Direct	🟠 High	Yes	WordPress 6.5.x	Apply vendor security patch
OTX: Sapphire Sleet Targets macOS ← تفاصيل	AlienVault OTX	🟠 High	Yes	Multiple Systems	Block IOCs — see OTX pulse for indicators
New Gogs zero-day flaw lets hackers get remote code execution ← تفاصيل	BleepingComputer	🟠 High	Yes	Multiple Systems	Apply vendor security patch
Microsoft Slams Public Zero-Day Disclosures Amid GitHub Researche… ← تفاصيل	THN	🟠 High	Yes	Multiple Systems	Microsoft Patch Tuesday

🔥 الثغرات المستغَلّة فعلياً

الحدث / CVE	المصدر	الخطورة	الاستغلال	الأنظمة	الحل
CVE-2026-41089 Windows Netlogon 0-Click RCE Vulnerability Now Actively Exploited… ← تفاصيل	Cyber Security News	🔴 Critical	Yes	Windows Server (2019/2022)	Microsoft Patch Tuesday
CISA gives feds 4 days to patch actively exploited cPanel plugin … ← تفاصيل	BleepingComputer	🔴 Critical	Yes	Multiple Systems	Apply vendor security patch
Five OpenClaw 0-Days let Attackers to Hijack Trusted AI Agent Acc… ← تفاصيل	Cyber Security News	🟠 High	Yes		Microsoft Patch Tuesday
Attackers exploit Palo Alto GlobalProtect flaw days after disclos… ← تفاصيل	CSO Online	🟠 High	Yes	Palo Alto Networks	Apply vendor security patch
Microsoft says it will not pursue security researchers after zero… ← تفاصيل	The Record	🟠 High	Yes	Multiple Systems	Microsoft Patch Tuesday
Critical WP Maps Pro Flaw Actively Exploited to Create Admin Acco… ← تفاصيل	THN	🟠 High	Yes	WordPress 6.5.x	Apply vendor security patch
Critical WP Maps Pro Flaw Actively Exploited to Create Admin Acco… ← تفاصيل	THN Direct	🟠 High	Yes	WordPress 6.5.x	Apply vendor security patch
OTX: Sapphire Sleet Targets macOS ← تفاصيل	AlienVault OTX	🟠 High	Yes	Multiple Systems	Block IOCs — see OTX pulse for indicators
New Gogs zero-day flaw lets hackers get remote code execution ← تفاصيل	BleepingComputer	🟠 High	Yes	Multiple Systems	Apply vendor security patch
Microsoft Slams Public Zero-Day Disclosures Amid GitHub Researche… ← تفاصيل	THN	🟠 High	Yes	Multiple Systems	Microsoft Patch Tuesday