CyberIntel ⬡ News
★ Saved ◆ Cyber Reads

// Vulnerabilities & CVEs
Intel Feed

cyberintel.kalymoon.com  ·  10588 articles  ·  updated every 4 hours · grows forever

10588Total
4259Full Text
Jul 03, 2026Latest
◈ Women in Cyber ◉ Threat Intelligence ◎ How-To & Tutorials ⬡ Vulnerabilities & CVEs 🔍 Digital Forensics ◍ Incident Response & DFIR ◆ Security Tools & Reviews ◇ Industry News & Leadership ✉ Email Security 🛡 Active Threats ⚠ Critical CVEs ◐ Insider Threat & DLP ◌ Quantum Computing ◬ AI & Machine Learning
🔥 Trending Topics · Last 48h
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-56311 | Capgo up to 12.128.1 RPC Endpoint improper authorization (GHSA-v3jp-r95g-x4mm)

A vulnerability was found in Capgo up to 12.128.1 . It has been rated as critical . Affected is an unknown function of the component RPC Endpoint . Performing a manipulation results in improper author…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-56321 | Capgo up to 12.128.1 /private/role_bindings missing authentication (GHSA-6c9f-9v99-26ww)

A vulnerability categorized as critical has been discovered in Capgo up to 12.128.1 . Affected by this vulnerability is an unknown functionality of the file /private/role_bindings . Executing a manipu…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-56314 | Capgo up to 12.128.11 operation after expiration (GHSA-hqq2-87cp-j83x)

A vulnerability identified as problematic has been detected in Capgo up to 12.128.11 . Affected by this issue is some unknown functionality. The manipulation leads to operation on a resource after exp…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-56324 | Capgo up to 12.128.1 allocation of resources (GHSA-77p2-9rcr-5w27)

A vulnerability labeled as critical has been found in Capgo up to 12.128.1 . This affects an unknown part. The manipulation results in allocation of resources. This vulnerability was named CVE-2026-56…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-56326 | Nuxt up to 3.21.6/4.4.6 Location Header redirect (GHSA-c9cv-mq2m-ppp3)

A vulnerability marked as problematic has been reported in Nuxt up to 3.21.6/4.4.6 . This vulnerability affects unknown code of the component Location Header Handler . This manipulation causes open re…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-56348 | n8n-io n8n up to 2.19.x options server-side request forgery (GHSA-3875-8gcx-7v46 / WID-SEC-2026-1519)

A vulnerability described as critical has been identified in n8n-io n8n up to 2.19.x . This issue affects some unknown processing of the file /rest/dynamic-node-parameters/options . Such manipulation …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-56697 | Nuxt up to 3.21.6/4.4.6 reloadNuxtApp redirect (GHSA-c9cv-mq2m-ppp3)

A vulnerability classified as problematic has been found in Nuxt up to 3.21.6/4.4.6 . Impacted is the function reloadNuxtApp . Performing a manipulation results in open redirect. This vulnerability is…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-56698 | Nuxt up to 3.21.6/4.4.6 cross site scripting (GHSA-c9cv-mq2m-ppp3)

A vulnerability classified as problematic was found in Nuxt up to 3.21.6/4.4.6 . The affected element is an unknown function. Executing a manipulation can lead to cross site scripting. This vulnerabil…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-56357 | n8n-io n8n up to 1.123.14/2.4.x WebHook Trigger authentication spoofing (GHSA-mqpr-49jj-32rc)

A vulnerability, which was classified as critical , has been found in n8n-io n8n up to 1.123.14/2.4.x . The impacted element is an unknown function of the component WebHook Trigger Handler . The manip…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-12866 | silentmatt expr-eval Expressions toJSFunction code injection (ID 292 / EUVD-2026-38415)

A vulnerability, which was classified as critical , was found in silentmatt expr-eval . This affects the function toJSFunction of the component Expressions Handler . The manipulation results in code i…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-8379 | Frontend File Manager Plugin up to 23.6 on WordPress File Download authorization

A vulnerability has been found in Frontend File Manager Plugin up to 23.6 on WordPress and classified as problematic . This impacts an unknown function of the component File Download Handler . This ma…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-7842 | Infility Global Plugin up to 2.15.19 on WordPress ImportData import_list order sql injection

A vulnerability was found in Infility Global Plugin up to 2.15.19 on WordPress and classified as critical . Affected is the function import_list of the component ImportData Module . Such manipulation …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-8163 | Infility Global Plugin up to 2.15.18 on WordPress sql injection

A vulnerability was found in Infility Global Plugin up to 2.15.18 on WordPress. It has been classified as critical . Affected by this vulnerability is an unknown functionality. Performing a manipulati…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-8172 | Simple Basic Contact Form Plugin up to 20250114 on WordPress Link cross site scripting (ID 20250114)

A vulnerability was found in Simple Basic Contact Form Plugin up to 20250114 on WordPress. It has been declared as problematic . Affected by this issue is some unknown functionality of the component L…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-8378 | Frontend File Manager Plugin up to 23.6 on WordPress file-rename Endpoint cross site scripting

A vulnerability was found in Frontend File Manager Plugin up to 23.6 on WordPress. It has been rated as problematic . This affects an unknown part of the component file-rename Endpoint . The manipulat…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-41573 | OpenIdentityPlatform OpenAM 15.0.4/16.0.0 _queryId ldap injection

A vulnerability categorized as critical has been discovered in OpenIdentityPlatform OpenAM 15.0.4/16.0.0 . This vulnerability affects unknown code. The manipulation of the argument _queryId results in…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-46611 | nicolargo glances 4.5.1/4.5.2/4.5.3/4.5.4 Header Validation dns rebinding

A vulnerability identified as problematic has been detected in nicolargo glances 4.5.1/4.5.2/4.5.3/4.5.4 . This issue affects some unknown processing of the component Header Validation Handler . This …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 23, 2026
CVE-2026-47267 | Gogs up to 0.14.2 Webhook server-side request forgery

A vulnerability labeled as critical has been found in Gogs . Impacted is an unknown function of the component Webhook Handler . Such manipulation leads to server-side request forgery. This vulnerabili…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 22, 2026
CVE-2026-54282 | Kludex starlette up to 1.2.x HTTP Request request.url name resolution (GHSA-jp82-jpqv-5vv3)

A vulnerability identified as problematic has been detected in Kludex starlette up to 1.2.x . This affects the function request.url of the component HTTP Request Handler . Performing a manipulation re…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 22, 2026
CVE-2026-54283 | Kludex starlette up to 1.3.0 request.form allocation of resources (GHSA-82w8-qh3p-5jfq)

A vulnerability labeled as problematic has been found in Kludex starlette up to 1.3.0 . This vulnerability affects the function request.form . Executing a manipulation can lead to allocation of resour…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 22, 2026
CVE-2026-54285 | open-telemetry opentelemetry-js up to 2.7.x W3CBaggagePropagator.extract allocation of resources (GHSA-8988-4f7v-96qf)

A vulnerability marked as problematic has been reported in open-telemetry opentelemetry-js up to 2.7.x . This issue affects the function W3CBaggagePropagator.extract . The manipulation leads to alloca…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 22, 2026
CVE-2026-10789 | Autodesk Fusion up to 2703.1.19 MCP Extension code injection

A vulnerability described as critical has been identified in Autodesk Fusion up to 2703.1.19 . Impacted is an unknown function of the component MCP Extension . The manipulation results in code injecti…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 22, 2026
CVE-2026-42127 | Grafana Enterprise/OSS Public Dashboard Query Endpoint denial of service

A vulnerability classified as problematic has been found in Grafana Enterprise and OSS . The affected element is an unknown function of the component Public Dashboard Query Endpoint . This manipulatio…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 22, 2026
CVE-2026-49356 | Babel up to 7.29.5 path traversal (GHSA-4x5r-pxfx-6jf8)

A vulnerability classified as critical was found in Babel up to 7.29.5 . The impacted element is an unknown function. Such manipulation leads to path traversal. This vulnerability is traded as CVE-202…

VulDB Read →
← Prev 48 / 442 Next →