CyberIntel ⬡ News
★ Saved ◆ Cyber Reads

// Vulnerabilities & CVEs
Intel Feed

cyberintel.kalymoon.com  ·  6318 articles  ·  updated every 4 hours · grows forever

6318Total
4065Full Text
May 23, 2026Latest
◈ Women in Cyber ◉ Threat Intelligence ◎ How-To & Tutorials ⬡ Vulnerabilities & CVEs 🔍 Digital Forensics ◍ Incident Response & DFIR ◆ Security Tools & Reviews ◇ Industry News & Leadership ✉ Email Security 🛡 Active Threats ⚠ Critical CVEs ◐ Insider Threat & DLP ◌ Quantum Computing ◬ AI & Machine Learning
🔥 Trending Topics · Last 48h
⬡ Vulnerabilities & CVEs Apr 08, 2026
CVE-2026-39703 | WPBits Addons for Elementor Page Builder Plugin up to 1.8.1 on WordPress cross site scripting

A vulnerability classified as problematic was found in WPBits Addons for Elementor Page Builder Plugin up to 1.8.1 on WordPress. Affected by this vulnerability is an unknown functionality. The manipul…

VulDB Read →
⬡ Vulnerabilities & CVEs Apr 08, 2026
CVE-2026-39708 | UiCore Elements Plugin up to 1.3.14 on WordPress cross site scripting (EUVD-2026-20415)

A vulnerability, which was classified as problematic , has been found in UiCore Elements Plugin up to 1.3.14 on WordPress. Affected by this issue is some unknown functionality. This manipulation cause…

VulDB Read →
⬡ Vulnerabilities & CVEs Apr 08, 2026
CVE-2026-39710 | stmcan RT-Theme 18 Plugin up to 2.5 on WordPress cross-site request forgery (EUVD-2026-20417)

A vulnerability, which was classified as problematic , was found in stmcan RT-Theme 18 Plugin up to 2.5 on WordPress. This affects an unknown part. Such manipulation leads to cross-site request forger…

VulDB Read →
⬡ Vulnerabilities & CVEs Apr 08, 2026
CVE-2026-39671 | Dotstore Extra Fees Plugin for WooCommerce up to 4.3.3 on WordPress cross-site request forgery

A vulnerability has been found in Dotstore Extra Fees Plugin for WooCommerce up to 4.3.3 on WordPress and classified as problematic . This vulnerability affects unknown code. Performing a manipulation…

VulDB Read →
⬡ Vulnerabilities & CVEs Apr 08, 2026
CVE-2026-39695 | Podigee Plugin up to 1.4.0 on WordPress server-side request forgery

A vulnerability was found in Podigee Plugin up to 1.4.0 on WordPress and classified as critical . This issue affects some unknown processing. Executing a manipulation can lead to server-side request f…

VulDB Read →
⬡ Vulnerabilities & CVEs Apr 08, 2026
CVE-2026-39619 | priyanshumittal Busiprof Plugin up to 2.5.2 on WordPress cross-site request forgery

A vulnerability was found in priyanshumittal Busiprof Plugin up to 2.5.2 on WordPress. It has been classified as problematic . Impacted is an unknown function. The manipulation leads to cross-site req…

VulDB Read →
⬡ Vulnerabilities & CVEs Apr 08, 2026
CVE-2026-39520 | weDevs weDocs Plugin up to 2.1.18 on WordPress authorization

A vulnerability was found in weDevs weDocs Plugin up to 2.1.18 on WordPress. It has been declared as critical . The affected element is an unknown function. The manipulation results in missing authori…

VulDB Read →
⬡ Vulnerabilities & CVEs Apr 08, 2026
CVE-2026-39618 | themearile NewsExo Plugin up to 7.1 on WordPress cross-site request forgery

A vulnerability was found in themearile NewsExo Plugin up to 7.1 on WordPress. It has been rated as problematic . The impacted element is an unknown function. This manipulation causes cross-site reque…

VulDB Read →
⬡ Vulnerabilities & CVEs Apr 08, 2026
CVE-2026-39640 | mndpsingh287 Theme Editor Plugin up to 3.2 on WordPress cross-site request forgery

A vulnerability categorized as problematic has been discovered in mndpsingh287 Theme Editor Plugin up to 3.2 on WordPress. This affects an unknown function. Such manipulation leads to cross-site reque…

VulDB Read →
⬡ Vulnerabilities & CVEs Apr 08, 2026
CVE-2026-39632 | ThemeGoods Grand Blog Plugin up to 3.1 on WordPress cross-site request forgery

A vulnerability identified as problematic has been detected in ThemeGoods Grand Blog Plugin up to 3.1 on WordPress. This impacts an unknown function. Performing a manipulation results in cross-site re…

VulDB Read →
⬡ Vulnerabilities & CVEs Apr 08, 2026
CVE-2026-39641 | Skywarrior Blackfyre Plugin up to 2.5.4 on WordPress cross-site request forgery

A vulnerability labeled as problematic has been found in Skywarrior Blackfyre Plugin up to 2.5.4 on WordPress. Affected is an unknown function. Executing a manipulation can lead to cross-site request …

VulDB Read →
⬡ Vulnerabilities & CVEs Apr 08, 2026
CVE-2026-39617 | priyanshumittal Bluestreet Plugin up to 1.7.3 on WordPress cross-site request forgery

A vulnerability marked as problematic has been reported in priyanshumittal Bluestreet Plugin up to 1.7.3 on WordPress. Affected by this vulnerability is an unknown functionality. The manipulation lead…

VulDB Read →
⬡ Vulnerabilities & CVEs Apr 08, 2026
CISA Adds Aquasecurity Trivy Scanner Vulnerability to KEV Catalog - CyberSecurityNews

CISA Adds Aquasecurity Trivy Scanner Vulnerability to KEV Catalog CyberSecurityNews

CyberSecurityNews Read →
⬡ Vulnerabilities & CVEs Apr 08, 2026
CVE-2026-27140 | cmd-go up to 1.25.8/1.26.1 on Go SWIG File Parser trust boundary violation

A vulnerability, which was classified as critical , has been found in cmd-go up to 1.25.8/1.26.1 on Go. This vulnerability affects unknown code of the component SWIG File Parser . Performing a manipul…

VulDB Read →
⬡ Vulnerabilities & CVEs Apr 08, 2026
CVE-2026-32289 | html-template up to 1.25.8/1.26.1 on Go cross site scripting

A vulnerability, which was classified as problematic , was found in html-template up to 1.25.8/1.26.1 on Go. This issue affects some unknown processing. Executing a manipulation can lead to cross site…

VulDB Read →
⬡ Vulnerabilities & CVEs Apr 08, 2026
CVE-2026-4003 | felixmartinez Users manager Plugin up to 1.1.15 on WordPress AJAX Endpoint userspn_ajax_nopriv_server userspn_secret_token authorization

A vulnerability has been found in felixmartinez Users manager Plugin up to 1.1.15 on WordPress and classified as critical . Impacted is the function userspn_ajax_nopriv_server of the component AJAX En…

VulDB Read →
⬡ Vulnerabilities & CVEs Apr 08, 2026
CVE-2026-39935 | Wikimedia The CampaignEvents Extension 1.43.7/1.44.4/1.45.2 on The cross site scripting

A vulnerability was found in Wikimedia The CampaignEvents Extension 1.43.7/1.44.4/1.45.2 on The and classified as problematic . The affected element is an unknown function. The manipulation results in…

VulDB Read →
⬡ Vulnerabilities & CVEs Apr 08, 2026
CVE-2026-39933 | Wikimedia GlobalWatchlist Extension up to 1.43.6/1.44.3/1.45.1 on Mediawiki cross site scripting

A vulnerability was found in Wikimedia GlobalWatchlist Extension up to 1.43.6/1.44.3/1.45.1 on Mediawiki. It has been classified as problematic . The impacted element is an unknown function. This mani…

VulDB Read →
⬡ Vulnerabilities & CVEs Apr 08, 2026
CVE-2026-39936 | Wikimedia Score Extension up to 1.43.6/1.44.3/1.45.1 on Mediawiki cross site scripting

A vulnerability was found in Wikimedia Score Extension up to 1.43.6/1.44.3/1.45.1 on Mediawiki. It has been declared as problematic . This affects an unknown function. Such manipulation leads to cross…

VulDB Read →
⬡ Vulnerabilities & CVEs Apr 08, 2026
CVE-2026-5726 | DeltaWW ASDA-Soft up to 7.2.2.0 stack-based overflow (PCSA-2026-00007)

A vulnerability was found in DeltaWW ASDA-Soft up to 7.2.2.0 . It has been rated as critical . This impacts an unknown function. Performing a manipulation results in stack-based buffer overflow. This …

VulDB Read →
⬡ Vulnerabilities & CVEs Apr 08, 2026
CVE-2026-33551 | Keystone up to 26.1.0/27.0.0/28.0.0/29.0.0 EC2 Credential Creation Endpoint improper authorization

A vulnerability categorized as critical has been discovered in Keystone up to 26.1.0/27.0.0/28.0.0/29.0.0 . Affected is an unknown function of the component EC2 Credential Creation Endpoint . Executin…

VulDB Read →
⬡ Vulnerabilities & CVEs Apr 08, 2026
CVE-2026-4878 | libcap up to 2.77 cap_set_file allocation of resources (Nessus ID 305106)

A vulnerability identified as critical has been detected in libcap up to 2.77 . Affected by this vulnerability is the function cap_set_file . The manipulation leads to allocation of resources. This vu…

VulDB Read →
⬡ Vulnerabilities & CVEs Apr 08, 2026
CVE-2026-3311 | posimyththemes The Plus Addons for Elementor Plugin up to 6.4.9 on WordPress Shortcode Progress Bar cross site scripting

A vulnerability labeled as problematic has been found in posimyththemes The Plus Addons for Elementor Plugin up to 6.4.9 on WordPress. Affected by this issue is the function Progress Bar of the compon…

VulDB Read →
⬡ Vulnerabilities & CVEs Apr 08, 2026
CVE-2026-5083 | BEROV Ado::Sessions up to 0.935 on Perl rand generation of predictable numbers or identifiers (Issue 112)

A vulnerability marked as problematic has been reported in BEROV Ado::Sessions up to 0.935 on Perl. This affects the function rand . This manipulation causes generation of predictable numbers or ident…

VulDB Read →
← Prev 146 / 264 Next →