CyberIntel ⬡ News
★ Saved ◆ Cyber Reads

// Cyber
Intel Feed

cyberintel.kalymoon.com  ·  35426 articles  ·  updated every 4 hours · grows forever

35426Total
26565Full Text
Jul 13, 2026Latest
◈ Women in Cyber ◉ Threat Intelligence ◎ How-To & Tutorials ⬡ Vulnerabilities & CVEs 🔍 Digital Forensics ◍ Incident Response & DFIR ◆ Security Tools & Reviews ◇ Industry News & Leadership ✉ Email Security 🛡 Active Threats ⚠ Critical CVEs ◐ Insider Threat & DLP ◌ Quantum Computing ◬ AI & Machine Learning
🔥 Trending Topics · Last 48h
⬡ Vulnerabilities & CVEs Jun 27, 2026
CVE-2026-54352 | budibase up to 3.39.8 /api/pwa/process-zip createReadStream path traversal (GHSA-w7mq-r738-x278 / EUVD-2026-39910)

A vulnerability marked as critical has been reported in budibase up to 3.39.8 . Affected by this issue is the function createReadStream of the file /api/pwa/process-zip . The manipulation leads to pat…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 27, 2026
CVE-2026-36908 | Axiomatic axiomatic-systems prior 1.8.9allow EnsureCapacity stack-based overflow (Issue 1005)

A vulnerability described as critical has been identified in Axiomatic axiomatic-systems . This affects the function AP4_Array::EnsureCapacity . The manipulation results in stack-based buffer overflow…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 27, 2026
CVE-2026-11356 | vinod-dalvi Ivory Search Plugin up to 5.5.15 on WordPress Setting menu_magnifier_color cross site scripting

A vulnerability classified as problematic has been found in vinod-dalvi Ivory Search Plugin up to 5.5.15 on WordPress. This vulnerability affects unknown code of the component Setting Handler . This m…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 27, 2026
CVE-2026-13422 | harmonic_design HD Quiz Plugin up to 2.2.1 on WordPress Setting hdq_validate_nonce cross-site request forgery

A vulnerability classified as problematic was found in harmonic_design HD Quiz Plugin up to 2.2.1 on WordPress. This issue affects the function hdq_validate_nonce of the component Setting Handler . Su…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 27, 2026
CVE-2026-55975 | H.VIEW HV-500S6 IP Camera IPCAM_V4.06.88.251229 Certificate os command injection

A vulnerability, which was classified as critical , has been found in H.VIEW HV-500S6 IP Camera IPCAM_V4.06.88.251229 . Impacted is an unknown function of the component Certificate Handler . Performin…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 27, 2026
CVE-2026-56414 | H.VIEW HV-500S6 IP Camera IPCAM_V4.06.88.251229 unrestricted upload

A vulnerability, which was classified as critical , was found in H.VIEW HV-500S6 IP Camera IPCAM_V4.06.88.251229 . The affected element is an unknown function. Executing a manipulation can lead to unr…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 27, 2026
CVE-2026-45807 | kestra-io kestra up to 1.0.42/1.3.18 Local Storage Backend URI.toString path traversal (GHSA-3529-p4wf-xp79)

A vulnerability has been found in kestra-io kestra up to 1.0.42/1.3.18 and classified as critical . The impacted element is the function URI.toString of the component Local Storage Backend . The manip…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 27, 2026
CVE-2026-49984 | kestra-io kestra up to 1.0.44/1.3.22 Local internal-storage Backend /api/v1 path traversal (GHSA-qw4v-6w32-xx9h)

A vulnerability was found in kestra-io kestra up to 1.0.44/1.3.22 and classified as critical . This affects an unknown function of the file /api/v1 of the component Local internal-storage Backend . Th…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 27, 2026
CVE-2026-38571 | Tenda N300 missing authentication

A vulnerability was found in Tenda N300 . It has been classified as critical . This impacts an unknown function. This manipulation causes missing authentication. The identification of this vulnerabili…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 27, 2026
CVE-2026-54350 | budibase up to 3.39.11 JSON Parser queries.ts collection.find sql injection (GHSA-8qv3-p479-cj62)

A vulnerability was found in budibase up to 3.39.11 . It has been declared as critical . Affected is the function collection.find of the file packages/server/src/sdk/workspace/queries/queries.ts of th…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 27, 2026
CVE-2026-50765 | Koha Library Management System up to 25.11 cross site scripting

A vulnerability was found in Koha Library Management System up to 25.11 . It has been rated as problematic . Affected by this vulnerability is an unknown functionality. Performing a manipulation resul…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 27, 2026
CVE-2026-50766 | Koha Library Management System up to 25.11 cross site scripting

A vulnerability categorized as problematic has been discovered in Koha Library Management System up to 25.11 . Affected by this issue is some unknown functionality. Executing a manipulation can lead t…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 27, 2026
CVE-2026-50767 | Koha Library Management System up to 25.11 cross site scripting

A vulnerability identified as problematic has been detected in Koha Library Management System up to 25.11 . This affects an unknown part. The manipulation leads to cross site scripting. This vulnerabi…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 27, 2026
CVE-2026-36907 | Axiomatic axiomatic-systems prior 1.8.9 AP4_StsdAtom stack-based overflow (Issue 1005)

A vulnerability labeled as critical has been found in Axiomatic axiomatic-systems . This vulnerability affects the function AP4_StsdAtom::AP4_StsdAtom . The manipulation results in stack-based buffer …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 27, 2026
CVE-2026-10820 | Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content Plugin authorization

A vulnerability marked as critical has been reported in Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content Plugin up to 4.16.16 on WordPress. This i…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 27, 2026
CVE-2026-12404 | webaways NEX-Forms Plugin up to 9.2.2 on WordPress authorization

A vulnerability described as problematic has been identified in webaways NEX-Forms Plugin up to 9.2.2 on WordPress. Impacted is an unknown function. Such manipulation leads to missing authorization. T…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 27, 2026
CVE-2026-13245 | maxfoundry MaxButtons Plugin up to 9.8.5 on WordPress view cross site scripting

A vulnerability classified as problematic has been found in maxfoundry MaxButtons Plugin up to 9.8.5 on WordPress. The affected element is an unknown function. Performing a manipulation of the argumen…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 27, 2026
CVE-2026-9677 | Shariff for WordPress Plugin up to 1.0.11 on WordPress Setting generateshariff shariff_infourl cross site scripting

A vulnerability classified as problematic was found in Shariff for WordPress Plugin up to 1.0.11 on WordPress. The impacted element is the function generateshariff of the component Setting Handler . E…

VulDB Read →
◌ Quantum Computing Jun 27, 2026
IBM’s Krishna Predicts First Real-World Quantum Advantage in 2026 - The Quantum Insider

IBM’s Krishna Predicts First Real-World Quantum Advantage in 2026 The Quantum Insider

The Quantum Insider Read →
🛡 Active Threats Jun 27, 2026
Global Cyber Attacks Rise in January 2026 Amid Increasing Ransomware Activity and Expanding GenAI Risks - Check Point Blog

Global Cyber Attacks Rise in January 2026 Amid Increasing Ransomware Activity and Expanding GenAI Risks Check Point Blog

Check Point Blog Read →
🛡 Active Threats Jun 27, 2026
Global Cyber Attacks Remain Near Record Highs in February 2026 Despite Ransomware Decline - Check Point Blog

Global Cyber Attacks Remain Near Record Highs in February 2026 Despite Ransomware Decline Check Point Blog

Check Point Blog Read →
◇ Industry News & Leadership Jun 27, 2026
Redwood AI Announces Definitive Agreement with Quantum.IQ and Expands into Quantum Resistant Cyber Security - TradingView

Redwood AI Announces Definitive Agreement with Quantum.IQ and Expands into Quantum Resistant Cyber Security TradingView

TradingView Read →
⬡ Vulnerabilities & CVEs Jun 27, 2026
Attackers exploit critical flaw in Cisco Catalyst SD-WAN Controller - Cybersecurity Dive

Attackers exploit critical flaw in Cisco Catalyst SD-WAN Controller Cybersecurity Dive

Cybersecurity Dive Read →
◇ Industry News & Leadership Jun 27, 2026
New Bucket Hijacking Attack Allows Hackers to Reroute Cloud Data Streams to External Storage

A critical cloud storage attack technique dubbed “bucket hijacking” a method that enables threat actors to silently redirect an organization’s active cloud data streams, including audit logs and telem…

Cybersecurity News Read →
← Prev 164 / 1477 Next →