CyberIntel ⬡ News
★ Saved ◆ Cyber Reads

// Vulnerabilities & CVEs
Intel Feed

cyberintel.kalymoon.com  ·  11809 articles  ·  updated every 4 hours · grows forever

11809Total
4299Full Text
Jul 13, 2026Latest
◈ Women in Cyber ◉ Threat Intelligence ◎ How-To & Tutorials ⬡ Vulnerabilities & CVEs 🔍 Digital Forensics ◍ Incident Response & DFIR ◆ Security Tools & Reviews ◇ Industry News & Leadership ✉ Email Security 🛡 Active Threats ⚠ Critical CVEs ◐ Insider Threat & DLP ◌ Quantum Computing ◬ AI & Machine Learning
🔥 Trending Topics · Last 48h
⬡ Vulnerabilities & CVEs Jun 03, 2026
CVE-2026-49144 | browserstack browserstack-runner up to 0.9.5 HTTP lib/server.js path traversal (GHSA-8rpw-6cqh-2v9h)

A vulnerability, which was classified as critical , has been found in browserstack browserstack-runner up to 0.9.5 . The affected element is an unknown function in the library lib/server.js of the com…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 03, 2026
CVE-2026-49443 | goauthentik up to 2025.12.5/2026.2.3/2026.5.0 improper authentication (GHSA-wr38-7xg8-fqxr)

A vulnerability, which was classified as critical , was found in goauthentik authentik up to 2025.12.5/2026.2.3/2026.5.0 . The impacted element is an unknown function. The manipulation results in impr…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 03, 2026
CVE-2026-10718 | Seagate openSeaChest up to 26.03.0 out-of-bounds write

A vulnerability has been found in Seagate openSeaChest up to 26.03.0 and classified as critical . This affects an unknown function. This manipulation causes out-of-bounds write. This vulnerability is …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 03, 2026
CVE-2026-31942 | danny-avila LibreChat up to 0.7.6/0.8.2 API Keys Management Endpoint /api/keys userId authorization (GHSA-5jcj-rh68-cgj7)

A vulnerability was found in danny-avila LibreChat up to 0.7.6/0.8.2 and classified as problematic . This impacts an unknown function of the file /api/keys of the component API Keys Management Endpoin…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 03, 2026
CVE-2026-32625 | danny-avila LibreChat up to 0.8.3 information disclosure (GHSA-4pcc-j6m6-wcwx)

A vulnerability was found in danny-avila LibreChat up to 0.8.3 . It has been classified as problematic . Affected is an unknown function. Performing a manipulation results in information disclosure. T…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 03, 2026
CVE-2026-41412 | alfio-event alf.io up to 2.0-M5-2605 postFileAndSaveResponse path traversal (GHSA-6m62-53cw-4373)

A vulnerability was found in alfio-event alf.io up to 2.0-M5-2605 . It has been declared as critical . Affected by this vulnerability is the function postFileAndSaveResponse . Executing a manipulation…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 03, 2026
CVE-2026-45289 | CloudburstMC Protocol up to 3.0.0.Beta12-20260420.182526-14 EncryptionUtils improper authentication (GHSA-g2fr-c75x-4hf9)

A vulnerability was found in CloudburstMC Protocol up to 3.0.0.Beta12-20260420.182526-14 . It has been rated as critical . Affected by this issue is the function EncryptionUtils . The manipulation lea…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 03, 2026
CVE-2026-10717 | Seagate openSeaChest up to 25.05.3/26.03.0 SCSI out-of-bounds write

A vulnerability categorized as critical has been discovered in Seagate openSeaChest up to 25.05.3/26.03.0 . This affects an unknown part of the component SCSI Handler . The manipulation results in out…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 03, 2026
CVE-2026-27145 | crypto-x509 up to 1.25.10/1.26.3 on Go VerifyHostname algorithmic complexity

A vulnerability identified as problematic has been detected in crypto-x509 up to 1.25.10/1.26.3 on Go. This vulnerability affects the function VerifyHostname . This manipulation causes inefficient alg…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 02, 2026
CISA Urges Stronger Security for Automatic Tank Gauge Systems
CISA Read →
⬡ Vulnerabilities & CVEs Jun 02, 2026
CISA Warns of Attacks Exploiting Recent SharePoint Vulnerability - SecurityWeek

CISA Warns of Attacks Exploiting Recent SharePoint Vulnerability SecurityWeek

SecurityWeek Read →
⬡ Vulnerabilities & CVEs Jun 02, 2026
CVE-2026-39553 | Select-Themes WaveRide Plugin up to 1.4 on WordPress filename control

A vulnerability classified as problematic has been found in Select-Themes WaveRide Plugin up to 1.4 on WordPress. Impacted is an unknown function. This manipulation causes improper control of filename…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 02, 2026
CVE-2026-32250 | NamelessMC Nameless 2.2.4 user ID cross site scripting (GHSA-343f-c4gf-rxc7)

A vulnerability classified as problematic was found in NamelessMC Nameless 2.2.4 . The affected element is an unknown function of the file /index.php?route=/queries/user/ . Such manipulation of the ar…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 02, 2026
CVE-2026-35717 | Vivotek FD8136 FD8136-VVTK-0300a export_language.cgi fread stack-based overflow

A vulnerability, which was classified as critical , has been found in Vivotek FD8136 FD8136-VVTK-0300a . The impacted element is the function fread of the file export_language.cgi . Performing a manip…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 02, 2026
CVE-2026-7195 | Progress Sitefinity up to 15.4.8629 Web Services input validation

A vulnerability, which was classified as critical , was found in Progress Sitefinity up to 15.4.8629 . This affects an unknown function of the component Web Services . Executing a manipulation can lea…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 02, 2026
CVE-2026-7198 | Progress Sitefinity up to 15.4.8629 Web Services access control

A vulnerability has been found in Progress Sitefinity up to 15.4.8629 and classified as critical . This impacts an unknown function of the component Web Services . The manipulation leads to improper a…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 02, 2026
CVE-2026-7201 | Progress Sitefinity up to 15.2.8440/15.3.8530/15.4.8629 Web Services authorization

A vulnerability was found in Progress Sitefinity up to 15.2.8440/15.3.8530/15.4.8629 and classified as critical . Affected is an unknown function of the component Web Services . The manipulation resul…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 02, 2026
CVE-2026-7312 | Progress Sitefinity up to 15.4.8629 Web Services insufficiently protected credentials

A vulnerability was found in Progress Sitefinity up to 15.4.8629 . It has been classified as critical . Affected by this vulnerability is an unknown functionality of the component Web Services . This …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 02, 2026
CVE-2026-7313 | Progress Sitefinity up to 13.3.7651 Web Services insufficiently protected credentials

A vulnerability was found in Progress Sitefinity up to 13.3.7651 . It has been declared as problematic . Affected by this issue is some unknown functionality of the component Web Services . Such manip…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 02, 2026
CVE-2026-10621 | Collibra Platform up to 2026.03.3 Restore path traversal

A vulnerability was found in Collibra Platform up to 2024.04.4/2025.10.8/2025.11.6/2026.02.5/2026.03.3 . It has been rated as critical . This affects an unknown part of the component Restore Handler .…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 02, 2026
CVE-2026-27351 | Sekander Badsha Crew HRM Plugin up to 1.2.2 on WordPress authorization

A vulnerability categorized as problematic has been discovered in Sekander Badsha Crew HRM Plugin up to 1.2.2 on WordPress. This vulnerability affects unknown code. Executing a manipulation can lead t…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 02, 2026
CVE-2026-41918 | Siemens RUGGEDCOM RST2428P up to 3.x Configuration web browser cache containing sensitive information (ssa-253495)

A vulnerability identified as problematic has been detected in Siemens RUGGEDCOM RST2428P up to 3.x . This issue affects some unknown processing of the component Configuration Handler . The manipulati…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 02, 2026
CVE-2026-43965 | Gleam up to 1.16.x packages.toml paths.build_packages_package path traversal (GHSA-jqvf-f6p2-wrv3)

A vulnerability labeled as critical has been found in Gleam up to 1.16.x . Impacted is the function paths.build_packages_package of the file build/packages/packages.toml . The manipulation results in …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 02, 2026
CVE-2026-49782 | Elementor Website Builder Plugin up to 4.1.0 on WordPress authorization

A vulnerability marked as critical has been reported in Elementor Website Builder Plugin up to 4.1.0 on WordPress. The affected element is an unknown function. This manipulation causes missing authori…

VulDB Read →
← Prev 180 / 493 Next →