CyberIntel ⬡ News
★ Saved ◆ Cyber Reads

// Vulnerabilities & CVEs
Intel Feed

cyberintel.kalymoon.com  ·  10588 articles  ·  updated every 4 hours · grows forever

10588Total
4259Full Text
Jul 03, 2026Latest
◈ Women in Cyber ◉ Threat Intelligence ◎ How-To & Tutorials ⬡ Vulnerabilities & CVEs 🔍 Digital Forensics ◍ Incident Response & DFIR ◆ Security Tools & Reviews ◇ Industry News & Leadership ✉ Email Security 🛡 Active Threats ⚠ Critical CVEs ◐ Insider Threat & DLP ◌ Quantum Computing ◬ AI & Machine Learning
🔥 Trending Topics · Last 48h
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-10857 | AKIN e-Commerce prior 1.25.01.06 cross site scripting

A vulnerability, which was classified as problematic , was found in AKIN e-Commerce . The affected element is an unknown function. The manipulation results in cross site scripting. This vulnerability …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-12969 | dnsmasq NXDOMAIN src/rfc1035.c find_soa out-of-bounds

A vulnerability has been found in dnsmasq and classified as problematic . The impacted element is the function find_soa of the file src/rfc1035.c of the component NXDOMAIN Handler . This manipulation …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-4983 | Eclipse Open VSX up to 0.34.0 SVG File cross site scripting

A vulnerability was found in Eclipse Open VSX up to 0.34.0 and classified as problematic . This affects an unknown function of the component SVG File Handler . Such manipulation leads to cross site sc…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-30040 | FastStone Image Viewer up to 8.3.0.0 JP2 Decoder FSViewer.exe heap-based overflow

A vulnerability was found in FastStone Image Viewer up to 8.3.0.0 . It has been classified as critical . This impacts an unknown function of the file FSViewer.exe of the component JP2 Decoder . Perfor…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-30041 | FastStone Image Viewer up to 8.3.0.0 PSD Parser height integer overflow

A vulnerability was found in FastStone Image Viewer up to 8.3.0.0 . It has been declared as critical . Affected is an unknown function of the component PSD Parser . Executing a manipulation of the arg…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-28496 | FOSSBilling up to 0.7.x API Endpoint /api/system special elements used in a template engine (GHSA-57mv-jm88-66jc)

A vulnerability was found in FOSSBilling up to 0.7.x . It has been rated as problematic . Affected by this vulnerability is an unknown functionality of the file /api/system of the component API Endpoi…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-35018 | NetComm Wireless Pty NF20MESH prior R6B032 Shell Command dalStorage_addUserAccount os command injection

A vulnerability categorized as critical has been discovered in NetComm Wireless Pty NF20MESH . Affected by this issue is the function dalStorage_addUserAccount of the component Shell Command Handler .…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-35019 | NetComm Wireless Pty NF20MESH prior R6B032 Web Management Interface hard-coded key

A vulnerability identified as critical has been detected in NetComm Wireless Pty NF20MESH . This affects an unknown part of the component Web Management Interface . This manipulation causes use of har…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-56815 | rasta-mouse pwnlift Upload Home.razor symlink

A vulnerability labeled as critical has been found in rasta-mouse pwnlift . This vulnerability affects unknown code of the file Components/Pages/Home.razor of the component Upload Handler . Such manip…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-10521 | MB connect line mbCONNECT24/mymbCONNECT24 up to 2.20.1 Configuration direct request (VDE-2026-068)

A vulnerability marked as problematic has been reported in MB connect line mbCONNECT24 and mymbCONNECT24 up to 2.20.1 . The affected element is an unknown function of the component Configuration Handl…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-9733 | HAYAJO Mojolicious::Plugin::Web::Auth::OAuth2 up to 0.17 on Perl rand generation of predictable numbers or identifiers

A vulnerability described as problematic has been identified in HAYAJO Mojolicious::Plugin::Web::Auth::OAuth2 up to 0.17 on Perl. The impacted element is the function rand . Executing a manipulation c…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-11374 | Zoho ManageEngine ADSelfService Plus generation of predictable numbers or identifiers

A vulnerability classified as problematic has been found in Zoho ManageEngine ADSelfService Plus, RecoveryManager Plus, M365 Manager Plus and ADAudit Plus . This affects an unknown function. The manip…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-48514 | MessagePack-CSharp MessagePack for C# up to 2.5.300/3.1.6 T[] allocation of resources (GHSA-w567-gjr2-hm5j)

A vulnerability identified as problematic has been detected in MessagePack-CSharp MessagePack for C# up to 2.5.300/3.1.6 . This impacts an unknown function. Performing a manipulation of the argument T…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-10645 | zephyrproject-rtos Zephyr up to 4.4 ext2_diskops.c ext2_fetch_direntry out-of-bounds (GHSA-hwrh-9h3x-vccm)

A vulnerability labeled as problematic has been found in zephyrproject-rtos Zephyr up to 4.4 . Affected is the function ext2_fetch_direntry of the file subsys/fs/ext2/ext2_diskops.c . Executing a mani…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-48510 | MessagePack-CSharp MessagePack for C# up to 2.5.300/3.1.6 Compressed Data data amplification (GHSA-v72x-2h86-7f8m)

A vulnerability marked as problematic has been reported in MessagePack-CSharp MessagePack for C# up to 2.5.300/3.1.6 . Affected by this vulnerability is an unknown functionality of the component Compr…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-48509 | MessagePack-CSharp MessagePack for C# up to 2.5.300/3.1.6 MessagePackInputFormatter insecure default initialization of resource (GHSA-2f33-pr97-265q)

A vulnerability described as problematic has been identified in MessagePack-CSharp MessagePack for C# up to 2.5.300/3.1.6 . Affected by this issue is the function MessagePackInputFormatter . The manip…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-48516 | MessagePack-CSharp MessagePack for C# up to 2.5.300/3.1.6 options.Security.GetEqualityComparer algorithmic complexity (GHSA-q2h6-ghwm-5qm8)

A vulnerability classified as problematic has been found in MessagePack-CSharp MessagePack for C# up to 2.5.300/3.1.6 . This affects the function options.Security.GetEqualityComparer . This manipulati…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-48517 | MessagePack-CSharp MessagePack for C# up to 2.5.300/3.1.6 externally-controlled input to select classes or code (GHSA-qhmf-xw27-6rqr)

A vulnerability classified as problematic was found in MessagePack-CSharp MessagePack for C# up to 2.5.300/3.1.6 . This vulnerability affects unknown code. Such manipulation leads to use of externally…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-54281 | nestjs nest up to 11.1.23 MiddlewareConsumer.forRoutes authorization (GHSA-6v32-fjc9-9qf6)

A vulnerability, which was classified as critical , has been found in nestjs nest up to 11.1.23 . This issue affects the function MiddlewareConsumer.forRoutes . Performing a manipulation results in in…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-56221 | Cap-go capgo up to 12.128.1 API Request cloudflare.ts deviceIds/search/version_name/cursor/actions sql injection (GHSA-f83x-p28r-pf74)

A vulnerability, which was classified as critical , was found in Cap-go capgo up to 12.128.1 . Impacted is an unknown function of the file cloudflare.ts of the component API Request Handler . Executin…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-55409 | filamentphp filament up to 3.3.52 cross site scripting (GHSA-m9cv-24rx-8mv7)

A vulnerability has been found in filamentphp filament up to 3.3.52 and classified as problematic . The affected element is an unknown function. The manipulation leads to cross site scripting. This vu…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-56268 | Flowise up to 3.1.1 API /api/v1/chatflows/apikey authorization (GHSA-c2c9-mfw7-p8hw)

A vulnerability was found in Flowise up to 3.1.1 and classified as problematic . The impacted element is an unknown function of the file /api/v1/chatflows/apikey of the component API . The manipulatio…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-56280 | Cap-go capgo up to 12.128.1 Endpoint /build/logs cancelBuildOnDisconnect authorization (GHSA-95g7-xwwx-j737)

A vulnerability was found in Cap-go capgo up to 12.128.1 . It has been classified as problematic . This affects the function cancelBuildOnDisconnect of the file /build/logs of the component Endpoint .…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-56266 | Crawl4AI up to 0.8.6 Cloud Metadata Endpoint /crawl/stream server-side request forgery (GHSA-365w-hqf6-vxfg)

A vulnerability was found in Crawl4AI up to 0.8.6 . It has been declared as critical . This impacts an unknown function of the file /crawl/stream of the component Cloud Metadata Endpoint . Such manipu…

VulDB Read →
← Prev 47 / 442 Next →