CyberIntel ⬡ News
★ Saved ◆ Cyber Reads

// Vulnerabilities & CVEs
Intel Feed

cyberintel.kalymoon.com  ·  11514 articles  ·  updated every 4 hours · grows forever

11514Total
4295Full Text
Jul 10, 2026Latest
◈ Women in Cyber ◉ Threat Intelligence ◎ How-To & Tutorials ⬡ Vulnerabilities & CVEs 🔍 Digital Forensics ◍ Incident Response & DFIR ◆ Security Tools & Reviews ◇ Industry News & Leadership ✉ Email Security 🛡 Active Threats ⚠ Critical CVEs ◐ Insider Threat & DLP ◌ Quantum Computing ◬ AI & Machine Learning
🔥 Trending Topics · Last 48h
⬡ Vulnerabilities & CVEs Jun 08, 2026
CVE-2026-47430 | Apache Cordova Plugin InAppBrowser up to 6.0.0 on iOS

A vulnerability categorized as problematic has been discovered in Apache Cordova Plugin InAppBrowser up to 6.0.0 on iOS. Affected by this vulnerability is an unknown functionality. Executing a manipul…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 08, 2026
CVE-2026-11552 | SourceCodester Onlne Examination & Learning Management System 1.0 import_users.php raw_password hard-coded password

A vulnerability identified as critical has been detected in SourceCodester Onlne Examination & Learning Management System and Syllabus-aligned Learning Management and Examination System 1.0 . Affected…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 08, 2026
CVE-2026-11553 | Tenda HG7HG9/HG10 300001138_en_xpon /boaform/formPPPEdit encodename stack-based overflow

A vulnerability labeled as critical has been found in Tenda HG7HG9 and HG10 300001138_en_xpon . This affects the function formPPPEdit of the file /boaform/formPPPEdit . The manipulation of the argumen…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 08, 2026
CVE-2026-11554 | TOTOLINK CP450 4.1.0cu.747 vsftpd /etc/vsftpd.conf least privilege violation

A vulnerability marked as critical has been reported in TOTOLINK CP450 4.1.0cu.747 . This vulnerability affects unknown code of the file /etc/vsftpd.conf of the component vsftpd . This manipulation ca…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 08, 2026
CVE-2026-11555 | D-Link DGS-1100-08PD 1.00.006 Web Interface /etc/boa.conf least privilege violation

A vulnerability described as critical has been identified in D-Link DGS-1100-08PD 1.00.006 . This issue affects some unknown processing of the file /etc/boa.conf of the component Web Interface . Such …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 08, 2026
CVE-2026-11556 | Tenda F451 1.0.0.7/1.0.0.9 Web Management Interface /goform/WriteFacMac formWriteFacMac mac os command injection

A vulnerability classified as critical has been found in Tenda F451 1.0.0.7/1.0.0.9 . Impacted is the function formWriteFacMac of the file /goform/WriteFacMac of the component Web Management Interface…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 08, 2026
CVE-2026-11557 | Tenda F451 1.0.0.7/1.0.0.9 Web Management Interface /goform/Natlimit fromNatlimit page stack-based overflow

A vulnerability classified as critical was found in Tenda F451 1.0.0.7/1.0.0.9 . The affected element is the function fromNatlimit of the file /goform/Natlimit of the component Web Management Interfac…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 08, 2026
CVE-2026-11558 | CodeAstro Payroll System 1.0 /home_salary.php rate/salary_rate sql injection

A vulnerability, which was classified as critical , has been found in CodeAstro Payroll System 1.0 . The impacted element is an unknown function of the file /home_salary.php . The manipulation of the …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 08, 2026
CVE-2026-11559 | CodeAstro Payroll System 1.0 /view_account.php ID sql injection

A vulnerability, which was classified as critical , was found in CodeAstro Payroll System 1.0 . This affects an unknown function of the file /view_account.php . The manipulation of the argument ID res…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 08, 2026
CVE-2026-11528 | Tenda AC18 15.03.05.05 Web Management Interface /goform/getRebootStatus sub_45304 callback stack-based overflow

A vulnerability was found in Tenda AC18 15.03.05.05 . It has been declared as critical . The affected element is the function sub_45304 of the file /goform/getRebootStatus of the component Web Managem…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 08, 2026
CVE-2026-11529 | designcomputer mysql-mcp-server up to 0.2.2 mysql URI server.py read_resource uri_str sql injection (Issue 89)

A vulnerability was found in designcomputer mysql-mcp-server up to 0.2.2 . It has been rated as critical . The impacted element is the function read_resource of the file src/mysql_mcp_server/server.py…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 08, 2026
CVE-2026-11530 | imvks786 student_management_system up to 9599b560ad3c3b83e75d328b76bedcd489ef1f46 Login /index.ph usr/pwd sql injection

A vulnerability categorized as critical has been discovered in imvks786 student_management_system up to 9599b560ad3c3b83e75d328b76bedcd489ef1f46 . This affects an unknown function of the file /index.p…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 08, 2026
CVE-2026-11531 | imvks786 student_management_system up to 9599b560ad3c3b83e75d328b76bedcd489ef1f46 Administrator Login Endpoint admin/admin_login.php a_usr/a_pwd sql injection

A vulnerability identified as critical has been detected in imvks786 student_management_system up to 9599b560ad3c3b83e75d328b76bedcd489ef1f46 . This impacts an unknown function of the file admin/admin…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 08, 2026
CVE-2026-11532 | imvks786 student_management_system up to 9599b560ad3c3b83e75d328b76bedcd489ef1f46 Student Record /add.php access control

A vulnerability labeled as critical has been found in imvks786 student_management_system up to 9599b560ad3c3b83e75d328b76bedcd489ef1f46 . Affected is an unknown function of the file /add.php of the co…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 08, 2026
CVE-2026-11533 | imvks786 student_management_system up to 9599b560ad3c3b83e75d328b76bedcd489ef1f46 Student Deletion Endpoint /see.php del improper authorization

A vulnerability marked as critical has been reported in imvks786 student_management_system up to 9599b560ad3c3b83e75d328b76bedcd489ef1f46 . Affected by this vulnerability is an unknown functionality o…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 08, 2026
CVE-2026-11534 | imvks786 student_management_system up to 9599b560ad3c3b83e75d328b76bedcd489ef1f46 /add.php name/address/fname cross site scripting

A vulnerability described as problematic has been identified in imvks786 student_management_system up to 9599b560ad3c3b83e75d328b76bedcd489ef1f46 . Affected by this issue is some unknown functionality…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 07, 2026
CVE-2026-11511 | Bolt CMS up to 3.7.5 HTML Attribute TextType.php style HTML injection

A vulnerability was found in Bolt CMS up to 3.7.5 . It has been declared as problematic . This vulnerability affects unknown code of the file src/Storage/Field/Type/TextType.php of the component HTML …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 07, 2026
CVE-2026-11512 | itsourcecode Hospital Management System 1.0 /billing.php patientid cross site scripting

A vulnerability was found in itsourcecode Hospital Management System 1.0 . It has been rated as problematic . This issue affects some unknown processing of the file /billing.php . The manipulation of …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 07, 2026
CVE-2026-11516 | UTT HiPER 2610G up to 3.0.0-171107 /goform/formNatStaticMap strcpy NatBinds buffer overflow

A vulnerability marked as critical has been reported in UTT HiPER 2610G up to 3.0.0-171107 . This affects the function strcpy of the file /goform/formNatStaticMap . Performing a manipulation of the ar…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 07, 2026
CVE-2026-11517 | UTT HiPER 2610G up to 3.0.0-171107 formConfigDnsFilterGlobal strcpy GroupName buffer overflow

A vulnerability described as critical has been identified in UTT HiPER 2610G up to 3.0.0-171107 . This impacts the function strcpy of the file /goform/formConfigDnsFilterGlobal . Executing a manipulat…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 07, 2026
CVE-2026-11518 | SourceCodester Inventory System 1.0 User Management Page /users.php fullname/username cross site scripting

A vulnerability classified as problematic has been found in SourceCodester Inventory System 1.0 . Affected is an unknown function of the file /users.php of the component User Management Page . The man…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 07, 2026
CVE-2026-11519 | SourceCodester Inventory System 1.0 Account Creation users_handler.php ROLE improper authorization

A vulnerability classified as critical was found in SourceCodester Inventory System 1.0 . Affected by this vulnerability is an unknown functionality of the file /Product_Inventory/api/users_handler.ph…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 07, 2026
CVE-2026-11520 | SourceCodester Inventory System 1.0 header.php cross site scripting

A vulnerability, which was classified as problematic , has been found in SourceCodester Inventory System 1.0 . Affected by this issue is some unknown functionality of the file header.php . This manipu…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 07, 2026
CVE-2026-11521 | Mohammed-eid35 bank-management-system-springboot up to 7b9bcc65ad7df3db29af71aed9bb500e5f24d948 Transaction Endpoint TransactionController.java improper authorization

A vulnerability, which was classified as critical , was found in Mohammed-eid35 bank-management-system-springboot up to 7b9bcc65ad7df3db29af71aed9bb500e5f24d948 . This affects an unknown part of the f…

VulDB Read →
← Prev 146 / 480 Next →