CyberIntel ⬡ News
★ Saved ◆ Cyber Reads

// Vulnerabilities & CVEs
Intel Feed

cyberintel.kalymoon.com  ·  10571 articles  ·  updated every 4 hours · grows forever

10571Total
4242Full Text
Jul 03, 2026Latest
◈ Women in Cyber ◉ Threat Intelligence ◎ How-To & Tutorials ⬡ Vulnerabilities & CVEs 🔍 Digital Forensics ◍ Incident Response & DFIR ◆ Security Tools & Reviews ◇ Industry News & Leadership ✉ Email Security 🛡 Active Threats ⚠ Critical CVEs ◐ Insider Threat & DLP ◌ Quantum Computing ◬ AI & Machine Learning
🔥 Trending Topics · Last 48h
⬡ Vulnerabilities & CVEs Jun 24, 2026
CVE-2025-62180 | Pegasystems Pega Infinity up to Infinity 25.1.2 authorization

A vulnerability marked as critical has been reported in Pegasystems Pega Infinity up to Infinity 25.1.2 . Affected is an unknown function. The manipulation leads to authorization bypass. This vulnerab…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 24, 2026
CVE-2026-56115 | NetworkConfiguration dhcpcd up to 10.3.2 src/dhcp6.c dhcp6_makemessage out-of-bounds write

A vulnerability described as critical has been identified in NetworkConfiguration dhcpcd up to 10.3.2 . Affected by this vulnerability is the function dhcp6_makemessage of the file src/dhcp6.c . The m…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 24, 2026
CVE-2026-54515 | FasterXML jackson-databind up to 2.18.8/2.21.4/3.1.3 BeanDeserializerBase.createContextual dynamically-determined object attributes (ID 5962)

A vulnerability classified as problematic has been found in FasterXML jackson-databind up to 2.18.8/2.21.4/3.1.3 . Affected by this issue is the function BeanDeserializerBase.createContextual . This m…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 24, 2026
CVE-2026-54516 | FasterXML jackson-databind up to 2.21.3/3.1.3 POJOPropertiesCollector._renameProperties backing dynamically-determined object attributes (GHSA-9fxm-vc8v-hj55)

A vulnerability classified as problematic was found in FasterXML jackson-databind up to 2.21.3/3.1.3 . This affects the function POJOPropertiesCollector._renameProperties . Such manipulation of the ar…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 24, 2026
CVE-2026-54517 | FasterXML jackson-databind up to 2.21.3/3.1.3 SetterlessProperty.isMerging authorization (GHSA-5hh8-q8hv-fr38)

A vulnerability, which was classified as problematic , has been found in FasterXML jackson-databind up to 2.21.3/3.1.3 . This vulnerability affects the function SetterlessProperty.isMerging . Performi…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 24, 2026
CVE-2026-55255 | langflow-ai langflow up to 1.9.1 /api/v1/responses authorization (GHSA-qrpv-q767-xqq2)

A vulnerability, which was classified as critical , was found in langflow-ai langflow up to 1.9.1 . This issue affects some unknown processing of the file /api/v1/responses . Executing a manipulation …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 24, 2026
CVE-2026-55423 | langflow-ai langflow up to 1.6.x session expiration (GHSA-7hw8-6q6r-4276)

A vulnerability has been found in langflow-ai langflow up to 1.6.x and classified as problematic . Impacted is an unknown function. The manipulation leads to session expiration. This vulnerability is …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 24, 2026
CVE-2026-56117 | NetworkConfiguration dhcpcd up to 10.3.2 Control Socket Operatingmode src/control.c control_recvdata use after free

A vulnerability was found in NetworkConfiguration dhcpcd up to 10.3.2 and classified as critical . The affected element is the function control_recvdata of the file src/control.c of the component Cont…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 24, 2026
Microsoft Clarifies It Won't Sue Security Researchers Amid Nightmare-Eclipse Controversy - CyberSecurityNews

Microsoft Clarifies It Won't Sue Security Researchers Amid Nightmare-Eclipse Controversy CyberSecurityNews

CyberSecurityNews Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-27604 | FOSSBilling up to 0.7.x Reverse Proxy /api/system authorization (GHSA-57mv-jm88-66jc)

A vulnerability marked as problematic has been reported in FOSSBilling up to 0.7.x . This issue affects some unknown processing of the file /api/system of the component Reverse Proxy Handler . Perform…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2025-71337 | Flowise up to 3.0.9 Account Profile Endpoint unverified password change (GHSA-x39m-3393-3qp4)

A vulnerability identified as critical has been detected in Flowise up to 3.0.9 . The impacted element is an unknown function of the component Account Profile Endpoint . Performing a manipulation resu…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2025-71370 | picklescan up to 0.0.27 torch.jit.unsupported_tensor_ops.execWrapper deserialization (GHSA-vr7h-p6mm-wpmh)

A vulnerability labeled as critical has been found in picklescan up to 0.0.27 . This affects the function torch.jit.unsupported_tensor_ops.execWrapper . Executing a manipulation can lead to deserializ…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2025-71376 | picklescan up to 0.0.28 Autocomplete deserialization (GHSA-7cq8-mj8x-j263)

A vulnerability marked as critical has been reported in picklescan up to 0.0.28 . This impacts the function idlelib.autocomplete.AutoComplete.fetch_completions of the component Autocomplete Handler . …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-10711 | AKIN CafePlus 12.05.03 missing authentication

A vulnerability described as critical has been identified in AKIN CafePlus 12.05.03 . Affected is an unknown function. The manipulation results in missing authentication. This vulnerability was named …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-56376 | ImageMagick up to 7.1.2-14 Image File use after free (GHSA-2gq3-ww97-wfjm)

A vulnerability classified as critical has been found in ImageMagick up to 7.1.2-14 . Affected by this vulnerability is an unknown functionality of the component Image File Handler . This manipulation…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-56784 | OpenRemote Manager up to 1.24.1 Bulk Deletion Endpoint removeAlarms authorization (GHSA-h3m5-97jq-qjrf)

A vulnerability classified as critical was found in OpenRemote Manager up to 1.24.1 . Affected by this issue is the function removeAlarms of the component Bulk Deletion Endpoint . Such manipulation le…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-4610 | metagauss ProfileGrid Plugin up to 5.9.9.2 on WordPress User Profile pm_send_message_to_author pm_author_message cross site scripting

A vulnerability, which was classified as problematic , has been found in metagauss ProfileGrid Plugin up to 5.9.9.2 on WordPress. This affects the function pm_send_message_to_author of the component U…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-56315 | picklescan up to 1.0.3 _osx_support/_aix_support/_pyrepl.pager/imaplib incomplete blacklist (GHSA-g38g-8gr9-h9xp)

A vulnerability, which was classified as critical , was found in picklescan up to 1.0.3 . This vulnerability affects unknown code of the component _osx_support/_aix_support/_pyrepl.pager/imaplib . Exe…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-56222 | Capgo up to 12.128.1 Organization /private/role_bindings authorization (GHSA-5r52-m8r9-7f8x)

A vulnerability has been found in Capgo up to 12.128.1 and classified as problematic . This issue affects some unknown processing of the file /private/role_bindings of the component Organization Handl…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-56322 | Capgo up to 12.128.1 Private Channel defaultChannel information disclosure (GHSA-pgmr-gw53-7f77)

A vulnerability was found in Capgo up to 12.128.1 and classified as problematic . Impacted is an unknown function of the component Private Channel Handler . The manipulation of the argument defaultCha…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-56379 | ImageMagick up to 7.1.2-14 SVG Decoder escape output (GHSA-xpg8-7m6m-jf56)

A vulnerability was found in ImageMagick up to 7.1.2-14 . It has been classified as critical . The affected element is an unknown function of the component SVG Decoder . This manipulation causes escap…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-56762 | Hono up to 4.12.11 Cookie Header setCookie response splitting (GHSA-26pp-8wgv-hjvm)

A vulnerability was found in Hono up to 4.12.11 . It has been declared as problematic . The impacted element is the function setCookie of the component Cookie Header Handler . Such manipulation leads …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-56371 | ImageMagick up to 7.1.2-14 TXT File coders/txt.c texture memory leak (GHSA-3q5f-gmjc-38r8)

A vulnerability was found in ImageMagick up to 7.1.2-14 . It has been rated as problematic . This affects an unknown function of the file coders/txt.c of the component TXT File Handler . Performing a …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-56263 | Crawl4AI up to 0.8.6 Crawl cross site scripting (GHSA-365w-hqf6-vxfg)

A vulnerability categorized as problematic has been discovered in Crawl4AI up to 0.8.6 . This impacts an unknown function of the component Crawl Handler . Executing a manipulation can lead to cross si…

VulDB Read →
← Prev 45 / 441 Next →