cyberintel.kalymoon.com · 30466 articles · updated every 4 hours · grows forever
A vulnerability marked as critical has been reported in NousResearch hermes-agent up to 2026.4.16 . This vulnerability affects the function _is_blocked_device of the file tools/file_tools.py of the co…
A vulnerability described as problematic has been identified in NousResearch hermes-agent up to 2026.4.23 . This issue affects the function _make_run_env of the file tools/environments/local.py of the…
A vulnerability classified as critical has been found in NousResearch hermes-agent up to 2026.4.23 . Impacted is an unknown function of the file agent/skills_guard.py of the component Skills Guard Mul…
A vulnerability classified as critical was found in NousResearch hermes-agent up to 2026.4.16 . The affected element is an unknown function of the component Slack Agent/Mattermost Agent . The manipula…
A vulnerability, which was classified as critical , has been found in SourceCodester Hospitals Patient Records Management System 1.0 . The impacted element is an unknown function of the file /classes/…
A vulnerability, which was classified as critical , was found in SourceCodester Hospitals Patient Records Management System 1.0 . This affects an unknown function of the file /admin/patients/manage_hi…
A vulnerability has been found in vBulletin 6.x and classified as problematic . This impacts an unknown function of the component Login . Performing a manipulation results in cross site scripting. Thi…
A vulnerability was found in postcss up to 7.1.1 and classified as problematic . Affected is the function toString of the file src/selectors/container.js of the component AST Serialization . Executing…
A vulnerability was found in Edimax EW-7438RPn 1.28a . It has been classified as critical . Affected by this vulnerability is the function formHwSet of the file /goform/formHwSet of the component POST…
A vulnerability was found in Edimax EW-7438RPn 1.28a . It has been declared as critical . Affected by this issue is the function formwlencrypt24g of the file /goform/formwlencrypt24g of the component …
A vulnerability was found in Edimax EW-7438RPn 1.12 . It has been rated as critical . This affects the function formAccept of the file /goform/formAccep of the component POST Request Handler . This ma…
A vulnerability categorized as critical has been discovered in Edimax EW-7438RPn 1.12 . This vulnerability affects the function formConnectionSetting of the file /goform/formConnectionSetting of the c…
A vulnerability identified as critical has been detected in Edimax EW-7438RPn 1.12 . This issue affects the function formEZCHNwlanSetup of the file /goform/formEZCHNwlanSetu of the component POST Requ…
A vulnerability labeled as critical has been found in projectworlds Online Art Gallery Shop 1.0 . Impacted is an unknown function of the file /admin/adminHome.php . Executing a manipulation of the arg…
A vulnerability marked as critical has been reported in Ettercap up to 0.8.3 . The affected element is the function FUNC_DECODER of the file src/dissectors/ec_gg.c of the component GG Dissector . The …
A vulnerability described as critical has been identified in NousResearch hermes-agent 2026.4.23 . The impacted element is the function _scan_context_content of the file agent/prompt_builder.py . The …
A vulnerability classified as critical has been found in NousResearch hermes-agent up to 5157f5427f19488b31c6fdebbacd15d798ce7f63 . This affects the function detect_dangerous_command of the file tools…
A vulnerability classified as critical was found in NousResearch hermes-agent up to 2026.4.16 . This impacts the function execute_code of the file tools/code_execution_tool.py of the component Environ…
A vulnerability, which was classified as problematic , has been found in NousResearch hermes-agent 2026.4.23 . Affected is the function _discover_dashboard_plugins of the file hermes_cli/web_server.py…
A vulnerability, which was classified as problematic , was found in ulisesbocchio jasypt-spring-boot up to 3.0.5/4.0.4 . Affected by this vulnerability is the function getSecretKeySaltGenerator of the…
A multi-stage intrusion attack where a threat actor exploited an internet-facing F5 BIG-IP edge appliance as the entry point for a widespread, identity-focused attack that ultimately accessed Active D…
A newly disclosed flaw in one of the world’s most widely deployed web servers is forcing administrators into another emergency patch cycle. Tracked as CVE-2026-9256 and publicly nicknamed nginx-poolsl…
The stealthy vulnerability impacts roughly 88 million domains and can be exploited to bypass DNS filtering and hide command-and-control traffic. The post ‘Underminr’ Vulnerability Lets Attackers Hide …
The U.S. Cybersecurity and Infrastructure Security Agency (CISA) has added a recently patched critical security flaw impacting Drupal Core to its Known Exploited Vulnerabilities (KEV) catalog, based o…