CyberIntel ⬡ News
★ Saved ◆ Cyber Reads

// Vulnerabilities & CVEs
Intel Feed

cyberintel.kalymoon.com  ·  11090 articles  ·  updated every 4 hours · grows forever

11090Total
4287Full Text
Jul 08, 2026Latest
◈ Women in Cyber ◉ Threat Intelligence ◎ How-To & Tutorials ⬡ Vulnerabilities & CVEs 🔍 Digital Forensics ◍ Incident Response & DFIR ◆ Security Tools & Reviews ◇ Industry News & Leadership ✉ Email Security 🛡 Active Threats ⚠ Critical CVEs ◐ Insider Threat & DLP ◌ Quantum Computing ◬ AI & Machine Learning
🔥 Trending Topics · Last 48h
⬡ Vulnerabilities & CVEs Jun 09, 2026
CVE-2026-24064 | Waves Audio Waves Central up to 16.5.5 Trusted XPC Client untrusted search path

A vulnerability, which was classified as problematic , has been found in Waves Audio Waves Central up to 16.5.5 . This vulnerability affects unknown code of the component Trusted XPC Client . This man…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 09, 2026
CVE-2026-10523 | Ivanti Sentry up to R10.5.1/R10.6.1/R10.7.0 authentication bypass

A vulnerability, which was classified as critical , was found in Ivanti Sentry up to R10.5.1/R10.6.1/R10.7.0 . This issue affects some unknown processing. Such manipulation leads to authentication byp…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 09, 2026
CVE-2026-25089 | Fortinet FortiSandbox/FortiSandbox Cloud/FortiSandbox PaaS HTTP os command injection (FG-IR-26-141)

A vulnerability has been found in Fortinet FortiSandbox, FortiSandbox Cloud and FortiSandbox PaaS and classified as critical . Impacted is an unknown function of the component HTTP Handler . Performin…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 09, 2026
CVE-2026-49938 | Fortinet FortiPortal up to 7.0.14/7.2.8/7.4.7 access control (FG-IR-26-140)

A vulnerability was found in Fortinet FortiPortal up to 7.0.14/7.2.8/7.4.7 and classified as critical . The affected element is an unknown function. Executing a manipulation can lead to improper acces…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 09, 2026
CVE-2026-24065 | Waves Audio Waves Central up to 16.5.5 Helper Service toctou

A vulnerability was found in Waves Audio Waves Central up to 16.5.5 . It has been classified as critical . The impacted element is an unknown function of the component Helper Service . The manipulatio…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 09, 2026
CVE-2026-8025 | MOSK CBS Platform sql injection (ID 09062026)

A vulnerability was found in MOSK CBS Platform . It has been declared as critical . This affects an unknown function. The manipulation results in sql injection. This vulnerability only affects product…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 09, 2026
CVE-2026-10727 | Ivanti Endpoint Manager Mobile 12.7.0.2/12.8.0.3/12.9.0.1 os command injection

A vulnerability was found in Ivanti Endpoint Manager Mobile 12.7.0.2/12.8.0.3/12.9.0.1 . It has been rated as critical . This impacts an unknown function. This manipulation causes os command injection…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 09, 2026
CVE-2026-8045 | Schneider Electric EcoStruxure IT Data Center Expert SOAP Service xml external entity reference (SEVD-2026-160-01)

A vulnerability categorized as problematic has been discovered in Schneider Electric EcoStruxure IT Data Center Expert . Affected is an unknown function of the component SOAP Service . Such manipulati…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 09, 2026
CISA Announces Winners of the 2026 President’s Cup Cybersecurity Competition
CISA Read →
⬡ Vulnerabilities & CVEs Jun 09, 2026
Apple patches zero-day flaw that could let attackers take control of devices - Malwarebytes

Apple patches zero-day flaw that could let attackers take control of devices Malwarebytes

Malwarebytes Read →
⬡ Vulnerabilities & CVEs Jun 09, 2026
Ivanti, Fortinet, SAP, VMware, n8n Patch RCE, SQL Injection, Privilege Escalation Flaws - The Hacker News

Ivanti, Fortinet, SAP, VMware, n8n Patch RCE, SQL Injection, Privilege Escalation Flaws The Hacker News

The Hacker News Read →
⬡ Vulnerabilities & CVEs Jun 09, 2026
Chrome V8 Zero-Day CVE-2026-11645 Exploited in the Wild - Patch Now - The Hacker News

Chrome V8 Zero-Day CVE-2026-11645 Exploited in the Wild - Patch Now The Hacker News

The Hacker News Read →
⬡ Vulnerabilities & CVEs Jun 09, 2026
CVE-2026-10738 | weaverlancegmailcom jQuery Hover Footnotes Plugin up to 1.4 on WordPress wp_kses_post cross site scripting

A vulnerability categorized as problematic has been discovered in weaverlancegmailcom jQuery Hover Footnotes Plugin up to 1.4 on WordPress. This affects the function wp_kses_post . The manipulation re…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 09, 2026
CVE-2026-40983 | Vmware Spring Micrometer up to 1.15.11/1.16.5 gRPC resource consumption

A vulnerability identified as problematic has been detected in Vmware Spring Micrometer up to 1.15.11/1.16.5 . This vulnerability affects unknown code of the component gRPC Handler . This manipulation…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 09, 2026
CVE-2026-40984 | Vmware Spring Micrometer up to 1.16.5 HTTP resource consumption

A vulnerability labeled as problematic has been found in Vmware Spring Micrometer up to 1.9.17/1.13.18/1.14.15/1.15.11/1.16.5 . This issue affects some unknown processing of the component HTTP Handler…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 09, 2026
CVE-2026-41715 | Vmware Spring Reactor Netty up to 1.0.51/1.1.35/1.2.17/1.3.5 HTTP Redirect insufficiently protected credentials

A vulnerability marked as critical has been reported in Vmware Spring Reactor Netty up to 1.0.51/1.1.35/1.2.17/1.3.5 . Impacted is an unknown function of the component HTTP Redirect Handler . Performi…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 09, 2026
CVE-2026-7662 | joshin85 Plugin Name Plugin up to 1 on WordPress Shortcode epaperflip_embed publicationid cross site scripting

A vulnerability described as problematic has been identified in joshin85 Plugin Name Plugin up to 1 on WordPress. The affected element is the function epaperflip_embed of the component Shortcode Handl…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 09, 2026
CVE-2026-8841 | andrewabarber Extra Settings for RocketChat Plugin up to 0.1 on WordPress Setting rxstg_shortcode Title cross site scripting

A vulnerability classified as problematic has been found in andrewabarber Extra Settings for RocketChat Plugin up to 0.1 on WordPress. The impacted element is the function rxstg_shortcode of the compo…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 09, 2026
CVE-2026-8882 | jdm-labs WP ApplicantStack Jobs Display Plugin up to 1.1.1 on WordPress Shortcode cross site scripting

A vulnerability classified as problematic was found in jdm-labs WP ApplicantStack Jobs Display Plugin up to 1.1.1 on WordPress. This affects an unknown function of the component Shortcode Handler . Th…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 09, 2026
CVE-2026-8902 | tierrainnovation AJAX Report Comments Plugin up to 2.0.4 on WordPress Setting already-reported rc_options_page cross-site request forgery

A vulnerability, which was classified as problematic , has been found in tierrainnovation AJAX Report Comments Plugin up to 2.0.4 on WordPress. This impacts the function rc_options_page of the file /f…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 09, 2026
CVE-2026-8907 | rahulbhangale WP-Ultimate-Map Plugin up to 1.1 on WordPress Setting process_init save-setting cross-site request forgery

A vulnerability, which was classified as problematic , was found in rahulbhangale WP-Ultimate-Map Plugin up to 1.1 on WordPress. Affected is the function process_init of the component Setting Handler …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 09, 2026
CVE-2026-8909 | rahulbhangale WpMobi Plugin up to 0.0.3 on WordPress Setting handleSaveGeneralSettings app_name cross-site request forgery

A vulnerability has been found in rahulbhangale WpMobi Plugin up to 0.0.3 on WordPress and classified as problematic . Affected by this vulnerability is the function handleSaveGeneralSettings of the c…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 09, 2026
CVE-2026-8910 | rahulbhangale WP Emoticon Rating Plugin up to 1.0.1 on WordPress Setting cross-site request forgery

A vulnerability was found in rahulbhangale WP Emoticon Rating Plugin up to 1.0.1 on WordPress and classified as problematic . Affected by this issue is some unknown functionality of the component Sett…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 09, 2026
CVE-2026-8977 | techjewel WP GDPR Cookie Consent Plugin up to 1.0.0 on WordPress Configuration handleAjaxCalls gdprConfig cross site scripting

A vulnerability was found in techjewel WP GDPR Cookie Consent Plugin up to 1.0.0 on WordPress. It has been classified as problematic . This affects the function handleAjaxCalls of the component Config…

VulDB Read →
← Prev 123 / 463 Next →