cyberintel.kalymoon.com · 6116 articles · updated every 4 hours · grows forever
A vulnerability identified as problematic has been detected in SilverStripe Assets Module up to 2.4.4/3.1.2 . The impacted element is the function DBFile::getURL/DBFile::getSourceURL . The manipulatio…
A vulnerability labeled as critical has been found in DataEase up to 2.10.20 . This affects an unknown function of the file /de2api/datasetTree/exportDataset . The manipulation of the argument express…
A vulnerability marked as critical has been reported in DataEase up to 2.10.20 . This impacts the function Order2SQLObj of the file /de2api/datasetData/enumValueDs . This manipulation causes sql injec…
A vulnerability described as critical has been identified in DataEase up to 2.10.20 . Affected is an unknown function of the file /de2api/datasetData/enumValueObj of the component DatasetDataManage Se…
A vulnerability classified as critical has been found in DataEase up to 2.10.20 . Affected by this vulnerability is an unknown functionality of the component API . Performing a manipulation of the arg…
A vulnerability classified as problematic was found in Microchip IStaX up to 2026.2 . Affected by this issue is some unknown functionality. Executing a manipulation of the argument webstax_auth can le…
A vulnerability, which was classified as problematic , has been found in Dell PowerScale OneFS up to 9.12.0.0 . This affects an unknown part. The manipulation leads to denial of service. This vulnerab…
Weekly Vulnerabilities Report: AI, VMware, ICS & EV Flaws Cyble
A vulnerability was found in goodoneuz pay-uz up to 2.2.24 and classified as critical . The impacted element is the function Route::any of the file /payment/api/editable/update of the component Endpoi…
A vulnerability was found in OneSignal Plugin up to 3.8.0 on WordPress. It has been classified as problematic . This affects an unknown function. Performing a manipulation results in missing authoriza…
A vulnerability was found in designinvento DirectoryPress Plugin up to 3.6.26 on WordPress. It has been declared as critical . This impacts an unknown function. Executing a manipulation of the argumen…
A vulnerability was found in fastify static up to 9.1.0 . It has been rated as problematic . Affected is an unknown function. The manipulation leads to improper handling of url encoding. This vulnerab…
A vulnerability categorized as problematic has been discovered in codesolz Better Find and Replace Plugin up to 1.7.9 on WordPress. Affected by this vulnerability is an unknown functionality of the co…
A vulnerability identified as problematic has been detected in Sparx Systems Sparx Enterprise Architect up to 16.1.1627/17.1.1713 . Affected by this issue is some unknown functionality of the componen…
A vulnerability labeled as critical has been found in techjewel Fluent Forms Plugin 6.1.21 on WordPress. This affects an unknown part of the component AJAX Endpoint . Such manipulation of the argument…
A vulnerability marked as critical has been reported in fastify static up to 9.1.0 . This vulnerability affects the function dirList.path of the component Directory Listing Handler . Performing a mani…
A vulnerability described as problematic has been identified in Apache Airflow up to 3.1.x . This issue affects some unknown processing of the component JWT Token Handler . Executing a manipulation ca…
A vulnerability classified as critical has been found in Zoho ManageEngine PAM360 and ManageEngine Password Manager Pro . Impacted is an unknown function of the component Query Report Module . The man…
A vulnerability classified as problematic was found in onlineoptimisation Email Encoder Plugin up to 2.4.4 on WordPress. The affected element is the function eeb_mailto . The manipulation results in c…
A vulnerability, which was classified as problematic , has been found in fastify middie up to 9.3.1 . The impacted element is an unknown function. This manipulation causes interpretation conflict. Thi…
A vulnerability, which was classified as critical , was found in fastify middie up to 9.3.1 . This affects an unknown function. Such manipulation leads to interpretation conflict. This vulnerability i…
A vulnerability has been found in Daylight Studio FuelCMS 1.5.2 and classified as problematic . This impacts an unknown function of the component Forgot Password Feature . Performing a manipulation re…
Microsoft Office CVE-2026-21509 Zero-Day: Emergency Patch Released to Counter Active Exploitation Rescana
⚡ Weekly Recap: Fiber Optic Spying, Windows Rootkit, AI Vulnerability Hunting and More The Hacker News