CyberIntel ⬡ News
★ Saved ◆ Cyber Reads

// Vulnerabilities & CVEs
Intel Feed

cyberintel.kalymoon.com  ·  10315 articles  ·  updated every 4 hours · grows forever

10315Total
4237Full Text
Jul 01, 2026Latest
◈ Women in Cyber ◉ Threat Intelligence ◎ How-To & Tutorials ⬡ Vulnerabilities & CVEs 🔍 Digital Forensics ◍ Incident Response & DFIR ◆ Security Tools & Reviews ◇ Industry News & Leadership ✉ Email Security 🛡 Active Threats ⚠ Critical CVEs ◐ Insider Threat & DLP ◌ Quantum Computing ◬ AI & Machine Learning
🔥 Trending Topics · Last 48h
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-6325 | wolfSSL up to 5.9.1 Destination out-of-bounds write

A vulnerability classified as critical was found in wolfSSL up to 5.9.1 . Affected by this issue is some unknown functionality of the component Destination Handler . Executing a manipulation can lead …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2025-10268 | WooCommerce Printcart Web to Print Product Designer for WooCommerce Plugin path traversal

A vulnerability, which was classified as critical , has been found in WooCommerce Printcart Web to Print Product Designer for WooCommerce Plugin up to 2.4.8 on WordPress. This affects an unknown part.…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-8380 | Frontend File Manager Plugin up to 23.6 on WordPress Setting file inclusion

A vulnerability, which was classified as critical , was found in Frontend File Manager Plugin up to 23.6 on WordPress. This vulnerability affects unknown code of the component Setting Handler . The ma…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-10823 | YMC Filter Plugin up to 3.11.2 on WordPress REST API Endpoint information disclosure

A vulnerability has been found in YMC Filter Plugin up to 3.11.2 on WordPress and classified as problematic . This issue affects some unknown processing of the component REST API Endpoint . This manip…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-10835 | SALESmanago & Leadoo Plugin up to 3.11.2 on WordPress sql injection

A vulnerability was found in SALESmanago & Leadoo Plugin up to 3.11.2 on WordPress and classified as critical . Impacted is an unknown function. Such manipulation leads to sql injection. This vulnerab…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
Microsoft Edge Vulnerability Allows Remote Attackers to Execute Arbitrary Code - CyberSecurityNews

Microsoft Edge Vulnerability Allows Remote Attackers to Execute Arbitrary Code CyberSecurityNews

CyberSecurityNews Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
⚡ Weekly Recap: Chrome 0-Day, UniFi Exploits, macOS Stealers, VPN Flaw and More - The Hacker News

⚡ Weekly Recap: Chrome 0-Day, UniFi Exploits, macOS Stealers, VPN Flaw and More The Hacker News

The Hacker News Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2025-71338 | Flowise process file inclusion (GHSA-8vvx-qvq9-5948)

A vulnerability was found in Flowise . It has been rated as critical . Affected by this issue is some unknown functionality of the file /api/v1/document-store/loader/process . The manipulation leads t…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-12473 | Open Health Imaging Foundation DICOM Web Viewer Framework up to 3.12.0 server-side request forgery (icsma-26-176-02)

A vulnerability categorized as critical has been discovered in Open Health Imaging Foundation DICOM Web Viewer Framework up to 3.12.0 . This affects an unknown part. The manipulation results in server…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-6450 | wolfSSL up to 5.9.1 CRL certificate validation

A vulnerability identified as problematic has been detected in wolfSSL up to 5.9.1 . This vulnerability affects unknown code of the component CRL Handler . This manipulation causes improper certificat…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2025-71324 | Flowise up to 3.0.5 /api/v1/get-upload-file streamStorageFile chatId file inclusion (GHSA-99pg-hqvx-r4gf)

A vulnerability labeled as problematic has been found in Flowise up to 3.0.5 . This issue affects the function streamStorageFile of the file /api/v1/get-upload-file . Such manipulation of the argument…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2025-71327 | Flowise 3.0.1 /api/v1/account/register missing authentication (GHSA-v5w9-prxf-w882)

A vulnerability marked as critical has been reported in Flowise 3.0.1 . Impacted is an unknown function of the file /api/v1/account/register . Performing a manipulation results in missing authenticati…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-7532 | wolfSSL up to 5.9.1 Configuration certificate validation

A vulnerability described as problematic has been identified in wolfSSL up to 5.9.1 . The affected element is an unknown function of the component Configuration Handler . Executing a manipulation can …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-57522 | bitwarden server 1.35.1/2026.4.0/2026.4.1 Datadog Endpoint IntegrationTemplateProcessor.ReplaceTokens injection

A vulnerability classified as critical has been found in bitwarden server 1.35.1/2026.4.0/2026.4.1 . The impacted element is the function IntegrationTemplateProcessor.ReplaceTokens of the component Da…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-55960 | wolfSSL up to 5.9.1 X.509 Certificate ParseCertRelative certificate validation

A vulnerability classified as problematic was found in wolfSSL up to 5.9.1 . This affects the function ParseCertRelative of the component X.509 Certificate Handler . The manipulation results in improp…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2025-71328 | Flowise up to 3.0.9 unverified password change (GHSA-fjh6-8679-9pch)

A vulnerability, which was classified as critical , has been found in Flowise up to 3.0.9 . This impacts an unknown function. This manipulation causes unverified password change. This vulnerability ap…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-56445 | pydicom pynetdicom Library up to 3.0.4 STORE os.path.join path traversal

A vulnerability, which was classified as critical , was found in pydicom pynetdicom Library up to 3.0.4 . Affected is the function os.path.join of the component STORE Handler . Such manipulation leads…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-6679 | wolfSSL up to 5.9.0 out-of-bounds write

A vulnerability has been found in wolfSSL up to 5.9.0 and classified as critical . Affected by this vulnerability is an unknown functionality. Performing a manipulation results in out-of-bounds write.…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-6681 | wolfSSL up to 5.9.0 out-of-bounds write

A vulnerability was found in wolfSSL up to 5.9.0 and classified as critical . Affected by this issue is some unknown functionality. Executing a manipulation can lead to out-of-bounds write. This vulne…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2026-2299 | Mattermost Google Drive Plugin up to 1.0.0/1.0.x File Creation Endpoint authorization

A vulnerability was found in Mattermost Google Drive Plugin up to 1.0.0/1.0.x . It has been classified as problematic . This affects an unknown part of the component File Creation Endpoint . The manip…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2021-47986 | parse-community parse-server up to 4.9.x code download (GHSA-593v-wcqx-hq2w)

A vulnerability was found in parse-community parse-server up to 4.9.x . It has been declared as problematic . This vulnerability affects unknown code. The manipulation results in download of code with…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2021-47987 | parse-community parse-server up to 4.9.x code download (GHSA-593v-wcqx-hq2w)

A vulnerability was found in parse-community parse-server up to 4.9.x . It has been rated as problematic . This issue affects some unknown processing. This manipulation causes download of code without…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2025-71335 | Flowise up to 3.0.9 Password Change session expiration (GHSA-x7rp-qj2h-ghgw)

A vulnerability categorized as critical has been discovered in Flowise up to 3.0.9 . Impacted is an unknown function of the component Password Change Handler . Such manipulation leads to session expir…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 26, 2026
CVE-2025-71333 | Flowise up to 2.2.4 /api/v1/attachments chatflowId file inclusion (GHSA-h42x-xx2q-6v6g)

A vulnerability identified as critical has been detected in Flowise up to 2.2.4 . The affected element is an unknown function of the file /api/v1/attachments . Performing a manipulation of the argumen…

VulDB Read →
← Prev 21 / 430 Next →