CyberIntel ⬡ News
★ Saved ◆ Cyber Reads

// Vulnerabilities & CVEs
Intel Feed

cyberintel.kalymoon.com  ·  10315 articles  ·  updated every 4 hours · grows forever

10315Total
4237Full Text
Jul 01, 2026Latest
◈ Women in Cyber ◉ Threat Intelligence ◎ How-To & Tutorials ⬡ Vulnerabilities & CVEs 🔍 Digital Forensics ◍ Incident Response & DFIR ◆ Security Tools & Reviews ◇ Industry News & Leadership ✉ Email Security 🛡 Active Threats ⚠ Critical CVEs ◐ Insider Threat & DLP ◌ Quantum Computing ◬ AI & Machine Learning
🔥 Trending Topics · Last 48h
⬡ Vulnerabilities & CVEs Jun 27, 2026
CVE-2026-50132 | budibase up to 3.38.x Public Endpoint /api/chat-links access control

A vulnerability described as critical has been identified in budibase up to 3.38.x . The impacted element is an unknown function of the file /api/chat-links of the component Public Endpoint . Such man…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 27, 2026
CVE-2024-23581 | HCL Traveler for Microsoft Outlook up to 3.0.8 unmaintained third party components (KB0131417)

A vulnerability classified as problematic has been found in HCL Traveler for Microsoft Outlook up to 3.0.8 . This affects an unknown function. Performing a manipulation results in use of unmaintained …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 27, 2026
CVE-2026-39031 | Lansweeper lsrunase 2.0 weak password hash

A vulnerability classified as problematic was found in Lansweeper lsrunase 2.0 . This impacts an unknown function. Executing a manipulation can lead to password hash with insufficient computational ef…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 27, 2026
CVE-2026-46710 | notepad-plus-plus Notepad++ up to 8.9.5 Powershell untrusted search path

A vulnerability, which was classified as problematic , has been found in notepad-plus-plus Notepad++ up to 8.9.5 . Affected is an unknown function of the component Powershell Handler . The manipulatio…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 27, 2026
CVE-2026-38639 | relibc /time/strptime.rs parse_month denial of service

A vulnerability, which was classified as problematic , was found in relibc . Affected by this vulnerability is the function parse_month of the file /time/strptime.rs . The manipulation results in deni…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 27, 2026
CVE-2026-38641 | HashiCorp Shared Library DSO::mmap_and_copy denial of service

A vulnerability has been found in HashiCorp Shared Library and classified as problematic . Affected by this issue is the function DSO::mmap_and_copy . This manipulation causes denial of service. The i…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 27, 2026
CVE-2026-46604 | x-image-tiff up to 0.42.x on Go TIFF Decoder out-of-bounds

A vulnerability was found in x-image-tiff up to 0.42.x on Go and classified as problematic . This affects an unknown part of the component TIFF Decoder . Such manipulation leads to out-of-bounds read.…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-57657 | Noor Alam Gmail SMTP Plugin up to 1.2.3.19 on WordPress cross-site request forgery

A vulnerability labeled as problematic has been found in Noor Alam Gmail SMTP Plugin up to 1.2.3.19 on WordPress. The affected element is an unknown function. Executing a manipulation can lead to cros…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-57656 | peregrinethemes Hester Core Plugin up to 1.1.8 on WordPress cross site scripting (EUVD-2026-39771)

A vulnerability marked as problematic has been reported in peregrinethemes Hester Core Plugin up to 1.1.8 on WordPress. The impacted element is an unknown function. The manipulation leads to cross sit…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-57659 | Stranger Studios Paid Memberships Pro Plugin up to 0.7.2 on WordPress cross-site request forgery

A vulnerability described as problematic has been identified in Stranger Studios Paid Memberships Pro Plugin up to 0.7.2 on WordPress. This affects an unknown function. The manipulation results in cro…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-9699 | Mattermost Plugins up to 11.6.x OpenAI API mattermost.log log file

A vulnerability classified as problematic has been found in Mattermost Plugins up to 11.6.x . This impacts an unknown function of the file mattermost.log of the component OpenAI API . This manipulatio…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-57664 | Villame Bopo Plugin up to 1.1.6 on WordPress information expsure

A vulnerability classified as problematic was found in Villame Bopo Plugin up to 1.1.6 on WordPress. Affected is an unknown function. Such manipulation leads to exposure of sensitive system informatio…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-57665 | GravityKit GravityView Plugin up to 3.0.0 on WordPress authorization

A vulnerability, which was classified as problematic , has been found in GravityKit GravityView Plugin up to 3.0.0 on WordPress. Affected by this vulnerability is an unknown functionality. Performing …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-57667 | Adrian Tobey Groundhogg Plugin up to 4.5 on WordPress sql injection

A vulnerability, which was classified as critical , was found in Adrian Tobey Groundhogg Plugin up to 4.5 on WordPress. Affected by this issue is some unknown functionality. Executing a manipulation c…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-33646 | jdx mise up to 2026.3.9 non-paranoid Mode mise.toml exec code injection

A vulnerability has been found in jdx mise up to 2026.3.9 and classified as critical . This affects the function exec of the file mise.toml of the component non-paranoid Mode . The manipulation leads …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-54557 | jdx mise up to 2026.6.0 HTTP Backend PathBuf::join path traversal

A vulnerability was found in jdx mise up to 2026.6.0 and classified as critical . This vulnerability affects the function PathBuf::join of the component HTTP Backend . The manipulation results in path…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-55441 | jdx mise up to 2026.6.3 Config File mise.toml exec os command injection

A vulnerability was found in jdx mise up to 2026.6.3 . It has been classified as critical . This issue affects the function exec of the file mise.toml of the component Config File Handler . This manip…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-55448 | jdx mise up to 2026.6.3 Environment Variable mise.toml os command injection

A vulnerability was found in jdx mise up to 2026.6.3 . It has been declared as critical . Impacted is an unknown function of the file mise.toml of the component Environment Variable Handler . Such man…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-54341 | dragonflydb dragonfly up to 1.38.x RESTORE out-of-bounds

A vulnerability was found in dragonflydb dragonfly up to 1.38.x . It has been rated as problematic . The affected element is an unknown function of the component RESTORE Handler . Performing a manipul…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-47206 | dragonflydb dragonfly up to 1.38.8 RESP Protocol redis.error_reply escape output

A vulnerability categorized as critical has been discovered in dragonflydb dragonfly up to 1.38.8 . The impacted element is the function redis.error_reply of the component RESP Protocol . Executing a …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-56876 | max-mapper extract-zip ZIP path traversal

A vulnerability identified as critical has been detected in max-mapper extract-zip . This affects an unknown function of the component ZIP Handler . The manipulation leads to path traversal. This vuln…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-47775 | envoyproxy envoy up to 1.35.10/1.36.6/1.37.2/1.38.0 encrypt/decrypt information exposure (GHSA-396h-jpq4-vc7p)

A vulnerability labeled as problematic has been found in envoyproxy envoy up to 1.35.10/1.36.6/1.37.2/1.38.0 . This impacts the function encrypt/decrypt . The manipulation results in information expos…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-48090 | envoyproxy envoy up to 1.37.4/1.38.2 use after free

A vulnerability marked as critical has been reported in envoyproxy envoy up to 1.37.4/1.38.2 . Affected is an unknown function. This manipulation causes use after free. The identification of this vuln…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-47692 | envoyproxy envoy up to 1.35.12/1.36.8/1.37.4/1.38.2 PROXY Protocol length length parameter (GHSA-wh36-hm39-mm3r)

A vulnerability described as problematic has been identified in envoyproxy envoy up to 1.35.12/1.36.8/1.37.4/1.38.2 . Affected by this vulnerability is an unknown functionality of the component PROXY …

VulDB Read →
← Prev 17 / 430 Next →