cyberintel.kalymoon.com · 20524 articles · updated every 4 hours · grows forever
After a year and one million messages, Elastic's Field Technology team shares five lessons from building production AI agents: why logs matter most, how retrieval thresholds shape quality, and what hi…
Hackers Targeted PraisonAI Vulnerability Hours After Disclosure Attackers began probing for CVE-2026-44338, a PraisonAI authentication bypass flaw, less than four hours after public disclosure. The is…
Dr Fazeelat Duran explores how repeated exposure to distressing material affects law enforcement staff over time—and what organisations can do to better support them.
PJPROJECT 2.16 - Heap Bufferoverflow
ePati Antikor NGFW 2.0.1301 - Authentication Bypass
Apache HertzBeat 1.8.0 - Remote Code Execution
WordPress Plugin Supsystic Contact Form 1.7.36 - SSTI
A vulnerability was found in HCL AION 2.1.0 . It has been declared as problematic . This impacts an unknown function. Executing a manipulation can lead to insertion of sensitive information into sent …
A vulnerability was found in reconurge flowsint up to 1.2.2 . It has been rated as problematic . Affected is an unknown function of the component Description Handler . The manipulation leads to cross …
A vulnerability categorized as critical has been discovered in MagicMirrorOrg MagicMirror up to 2.35.x . Affected by this vulnerability is an unknown functionality of the file /cors of the component E…
A vulnerability identified as critical has been detected in Cisco Catalyst SD-WAN Manager . Affected by this issue is some unknown functionality of the component Web UI . This manipulation causes logg…
A vulnerability labeled as critical has been found in Cisco Catalyst SD-WAN Manager . This affects an unknown part of the component Web UI . Such manipulation leads to logging of excessive data. This …
A vulnerability marked as problematic has been reported in premailer css_parser up to 1.21.x/2.0.x . This vulnerability affects unknown code. Performing a manipulation results in inclusion of function…
A vulnerability described as problematic has been identified in Microsoft kiota-java, Microsoft.Kiota.Abstractions, kiota-http-go, kiota-typescript, -kiota-abstractions and microsoft-kiota-http . This…
A vulnerability classified as critical has been found in huggingface diffusers up to 0.37.x . Impacted is the function DiffusionPipeline.from_pretrained of the file pipeline_loading_utils.py . The man…
A vulnerability classified as problematic was found in Cisco Catalyst SD-WAN Manager . The affected element is an unknown function of the component XML File Parser . The manipulation results in xml ex…
A vulnerability, which was classified as problematic , has been found in Microsoft Exchange Server . The impacted element is an unknown function. This manipulation causes cross site scripting. This vu…
A vulnerability, which was classified as problematic , was found in PoDoFo up to 1.0.3 . This affects the function compute_hash_to_sign of the file src/podofo/private/OpenSSLInternal_Ripped.cpp . Such…
A vulnerability has been found in Microsoft Authenticator on Android/iOS and classified as problematic . This impacts an unknown function. Performing a manipulation results in information disclosure. …
A vulnerability was found in valtimo com.ritense.valtimo:document up to 13.22.x and classified as critical . Affected is an unknown function of the component Spring Expression Language Handler . Execu…
A vulnerability was found in Schneider Electric Ecostruxure Machine Expert HVAC up to 1.9.x . It has been classified as problematic . Affected by this vulnerability is an unknown functionality. The ma…
A vulnerability was found in valtimo up to 12.32.x/13.25.x . It has been declared as problematic . Affected by this issue is some unknown functionality of the component LoggingRestClientCustomizerweb …
A vulnerability was found in huggingface diffusers up to 0.37.x . It has been rated as critical . This affects the function DiffusionPipeline.download . This manipulation causes code injection. This v…
A vulnerability categorized as critical has been discovered in Gotenberg up to 8.31.x . This vulnerability affects unknown code of the file /forms/chromium/convert/url of the component URL-to-PDF Endp…