CyberIntel ⬡ News
★ Saved ◆ Cyber Reads

// Vulnerabilities & CVEs
Intel Feed

cyberintel.kalymoon.com  ·  5667 articles  ·  updated every 4 hours · grows forever

5667Total
4035Full Text
May 16, 2026Latest
◈ Women in Cyber ◉ Threat Intelligence ◎ How-To & Tutorials ⬡ Vulnerabilities & CVEs 🔍 Digital Forensics ◍ Incident Response & DFIR ◆ Security Tools & Reviews ◇ Industry News & Leadership ✉ Email Security 🛡 Active Threats ⚠ Critical CVEs ◐ Insider Threat & DLP ◌ Quantum Computing ◬ AI & Machine Learning
🔥 Trending Topics · Last 48h
⬡ Vulnerabilities & CVEs May 09, 2026
CVE-2026-8230 | Wavlink NU516U1 240425 /cgi-bin/login.cgi sys_login1 ipaddr os command injection

A vulnerability classified as critical was found in Wavlink NU516U1 240425 . The impacted element is the function sys_login1 of the file /cgi-bin/login.cgi . Executing a manipulation of the argument i…

VulDB Read →
⬡ Vulnerabilities & CVEs May 09, 2026
CVE-2026-8231 | CodeAstro Online Catering Ordering System 1.0 /deleteorder.php ID sql injection

A vulnerability, which was classified as critical , has been found in CodeAstro Online Catering Ordering System 1.0 . This affects an unknown function of the file /deleteorder.php . The manipulation o…

VulDB Read →
⬡ Vulnerabilities & CVEs May 09, 2026
CVE-2026-8198 | logtivity Activity Logs, User Activity Tracking, Multisite Activity Log Plugin REST API Endpoint options verifyAuthorization information disclosure

A vulnerability identified as problematic has been detected in logtivity Activity Logs, User Activity Tracking, Multisite Activity Log Plugin up to 3.3.6 on WordPress. Impacted is the function verifyA…

VulDB Read →
⬡ Vulnerabilities & CVEs May 09, 2026
CISA: New Langflow flaw actively exploited to hijack AI workflows - BleepingComputer

CISA: New Langflow flaw actively exploited to hijack AI workflows BleepingComputer

BleepingComputer Read →
⬡ Vulnerabilities & CVEs May 09, 2026
Critical Microsoft 365 Copilot Vulnerabilities Expose sensitive Information - CyberSecurityNews

Critical Microsoft 365 Copilot Vulnerabilities Expose sensitive Information CyberSecurityNews

CyberSecurityNews Read →
⬡ Vulnerabilities & CVEs May 09, 2026
CVE-2026-8232 | Dotouch XproUPF 2.0.0-release-088aa7c4 UPF Process libvlib.so vlib_worker_loop denial of service

A vulnerability, which was classified as problematic , was found in Dotouch XproUPF 2.0.0-release-088aa7c4 . This impacts the function vlib_worker_loop in the library /usr/xpro/upf/tools/libs/libvlib.…

VulDB Read →
⬡ Vulnerabilities & CVEs May 09, 2026
CVE-2026-8233 | Dotouch XproUPF 2.0.0-release-088aa7c4 PFCP Session access control

A vulnerability has been found in Dotouch XproUPF 2.0.0-release-088aa7c4 and classified as critical . Affected is an unknown function of the component PFCP Session Handler . This manipulation causes i…

VulDB Read →
⬡ Vulnerabilities & CVEs May 09, 2026
CVE-2026-3828 | Hikvision DS-3E1310P-SI/DS-3E1318P-SI/DS-3E1326P-SI Packets input validation

A vulnerability was found in Hikvision DS-3E1310P-SI, DS-3E1318P-SI and DS-3E1326P-SI and classified as critical . Affected by this vulnerability is an unknown functionality of the component Packets H…

VulDB Read →
⬡ Vulnerabilities & CVEs May 09, 2026
CVE-2026-32683 | EZVIZ APP Legacy API Interface information disclosure

A vulnerability was found in EZVIZ APP . It has been classified as problematic . Affected by this issue is some unknown functionality of the component Legacy API Interface . Performing a manipulation …

VulDB Read →
⬡ Vulnerabilities & CVEs May 09, 2026
CVE-2026-1749 | Hikvision HikCentral Professional up to 3.0.1 access control

A vulnerability was found in Hikvision HikCentral Professional up to 3.0.1 . It has been declared as critical . This affects an unknown part. Executing a manipulation can lead to improper access contr…

VulDB Read →
⬡ Vulnerabilities & CVEs May 09, 2026
CVE-2026-8234 | EFM ipTIME A8004T 14.18.2 /goform/WifiBasicSet formWifiBasicSet security_5g stack-based overflow

A vulnerability was found in EFM ipTIME A8004T 14.18.2 . It has been rated as critical . This vulnerability affects the function formWifiBasicSet of the file /goform/WifiBasicSet . The manipulation of…

VulDB Read →
⬡ Vulnerabilities & CVEs May 09, 2026
CVE-2026-8235 | 8421bit MiniClaw 0.8.0/0.9.0 System Command src/kernel.ts resolveSkillScriptPath os command injection

A vulnerability categorized as critical has been discovered in 8421bit MiniClaw 0.8.0/0.9.0 . This issue affects the function resolveSkillScriptPath of the file src/kernel.ts of the component System C…

VulDB Read →
⬡ Vulnerabilities & CVEs May 09, 2026
Critical Marimo Python Notebook RCE Vulnerability (CVE-2026-39987) Exploited Within 10 Hours of Disclosure - Rescana

Critical Marimo Python Notebook RCE Vulnerability (CVE-2026-39987) Exploited Within 10 Hours of Disclosure Rescana

Rescana Read →
⬡ Vulnerabilities & CVEs May 09, 2026
Microsoft Patches the Exploited SharePoint Zero-Day Vulnerability - SQ Magazine

Microsoft Patches the Exploited SharePoint Zero-Day Vulnerability SQ Magazine

SQ Magazine Read →
⬡ Vulnerabilities & CVEs May 09, 2026
Active Attacks Exploit Critical Ivanti EPMM Zero-Day, Corporate Networks At Risk - cyberpress.org

Active Attacks Exploit Critical Ivanti EPMM Zero-Day, Corporate Networks At Risk cyberpress.org

cyberpress.org Read →
⬡ Vulnerabilities & CVEs May 09, 2026
CVE-2026-33825 BlueHammer: Defender Zero-Day Grants SYSTEM — Patch Now - abhs.in

CVE-2026-33825 BlueHammer: Defender Zero-Day Grants SYSTEM — Patch Now abhs.in

abhs.in Read →
⬡ Vulnerabilities & CVEs May 08, 2026
PoC Exploit Released for FortiSandbox Vulnerability that Allows Attacker to Execute Commands - CyberSecurityNews

PoC Exploit Released for FortiSandbox Vulnerability that Allows Attacker to Execute Commands CyberSecurityNews

CyberSecurityNews Read →
⬡ Vulnerabilities & CVEs May 08, 2026
Ivanti Neurons for ITSM Vulnerabilities Allow Remote Attacker to Obtain User Sessions - CyberSecurityNews

Ivanti Neurons for ITSM Vulnerabilities Allow Remote Attacker to Obtain User Sessions CyberSecurityNews

CyberSecurityNews Read →
⬡ Vulnerabilities & CVEs May 08, 2026
Ivanti EPMM vulnerability exploited in zero-day attacks (CVE-2026-6973) - Help Net Security

Ivanti EPMM vulnerability exploited in zero-day attacks (CVE-2026-6973) Help Net Security

Help Net Security Read →
⬡ Vulnerabilities & CVEs May 08, 2026
CISA Warns of Fortinet SQL Injection Vulnerability Actively Exploited in Attacks - CyberSecurityNews

CISA Warns of Fortinet SQL Injection Vulnerability Actively Exploited in Attacks CyberSecurityNews

CyberSecurityNews Read →
⬡ Vulnerabilities & CVEs May 08, 2026
New Chrome Zero-Day Vulnerability Under Active Exploitation – Patch Now - cyberpress.org

New Chrome Zero-Day Vulnerability Under Active Exploitation – Patch Now cyberpress.org

cyberpress.org Read →
⬡ Vulnerabilities & CVEs May 07, 2026
CVE-2026-8010 | Google Chrome up to 147.0.7727.138 SiteIsolation sandbox (ID 496624 / EUVD-2026-28124)

A vulnerability, which was classified as critical , was found in Google Chrome . Affected by this issue is some unknown functionality of the component SiteIsolation . The manipulation results in sandb…

VulDB Read →
⬡ Vulnerabilities & CVEs May 07, 2026
CVE-2026-8022 | Google Chrome up to 147.0.7727.138 MHTML cross-domain policy (ID 499194 / EUVD-2026-28147)

A vulnerability has been found in Google Chrome and classified as problematic . This affects an unknown part of the component MHTML . This manipulation causes permissive cross-domain policy with untru…

VulDB Read →
⬡ Vulnerabilities & CVEs May 07, 2026
CVE-2026-8008 | Google Chrome up to 147.0.7727.138 DevTools ui layer (ID 496426 / EUVD-2026-28119)

A vulnerability was found in Google Chrome and classified as problematic . This vulnerability affects unknown code of the component DevTools . Such manipulation leads to improper restriction of render…

VulDB Read →
← Prev 31 / 237 Next →