CyberIntel ⬡ News
★ Saved ◆ Cyber Reads

// Vulnerabilities & CVEs
Intel Feed

cyberintel.kalymoon.com  ·  10622 articles  ·  updated every 4 hours · grows forever

10622Total
4263Full Text
Jul 03, 2026Latest
◈ Women in Cyber ◉ Threat Intelligence ◎ How-To & Tutorials ⬡ Vulnerabilities & CVEs 🔍 Digital Forensics ◍ Incident Response & DFIR ◆ Security Tools & Reviews ◇ Industry News & Leadership ✉ Email Security 🛡 Active Threats ⚠ Critical CVEs ◐ Insider Threat & DLP ◌ Quantum Computing ◬ AI & Machine Learning
🔥 Trending Topics · Last 48h
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-44914 | Apache NiFi up to 2.9.0 missing authentication

A vulnerability described as critical has been identified in Apache NiFi up to 2.9.0 . Affected is an unknown function. Executing a manipulation can lead to missing authentication. This vulnerability …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-54009 | open-webui Open WebUI up to 0.9.5 /api/chat/completions image_url information disclosure

A vulnerability classified as problematic has been found in open-webui Open WebUI . Affected by this vulnerability is an unknown functionality of the file /api/chat/completions . The manipulation of t…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-54010 | open-webui Open WebUI up to 0.9.5 Forged Chat-File Link access control

A vulnerability classified as critical was found in open-webui Open WebUI . Affected by this issue is some unknown functionality of the component Forged Chat-File Link Handler . The manipulation resul…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-54012 | open-webui Open WebUI up to 0.9.5 access control

A vulnerability, which was classified as critical , has been found in open-webui Open WebUI . This affects an unknown part. This manipulation causes improper access controls. This vulnerability appear…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-54015 | open-webui Open WebUI up to 0.9.5 Prompt History resource injection

A vulnerability, which was classified as problematic , was found in open-webui Open WebUI . This vulnerability affects unknown code of the component Prompt History . Such manipulation leads to imprope…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-54665 | Apache NiFi up to 2.10.0 Proxy Host Header

A vulnerability has been found in Apache NiFi up to 2.10.0 and classified as problematic . This issue affects some unknown processing of the component Proxy Host Header Handler . Performing a manipula…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-54683 | NL Portal prior 3.0.3 Document improper authorization

A vulnerability was found in NL Portal and classified as critical . Impacted is an unknown function of the component Document Handler . Executing a manipulation can lead to improper authorization. Thi…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-55093 | tract-nnef NNEF dat Tensor Parser integer overflow

A vulnerability was found in tract-nnef . It has been classified as problematic . The affected element is an unknown function of the component NNEF dat Tensor Parser . The manipulation leads to intege…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-55229 | Gotenberg 8.1.0/8.30.0/8.31.0/8.32.0 LibreOffice Document server-side request forgery

A vulnerability was found in Gotenberg 8.1.0/8.30.0/8.31.0/8.32.0 . It has been declared as critical . The impacted element is an unknown function of the component LibreOffice Document Handler . The m…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-55388 | piscina prototype pollution

A vulnerability was found in piscina . It has been rated as problematic . This affects an unknown function. This manipulation causes improperly controlled modification of object prototype attributes. …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-55470 | HAPI FHIR 5.4.0/6.4.0 FHIRPathEngine.matches redos

A vulnerability categorized as problematic has been discovered in HAPI FHIR 5.4.0/6.4.0 . This impacts the function FHIRPathEngine.matches . Such manipulation leads to inefficient regular expression c…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-55770 | OpenBao ldaputil ldap injection

A vulnerability identified as problematic has been detected in OpenBao . Affected is an unknown function of the component ldaputil . Performing a manipulation results in ldap injection. This vulnerabi…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-55877 | Symfony ux-icons SVG cross site scripting

A vulnerability labeled as problematic has been found in Symfony ux-icons . Affected by this vulnerability is an unknown functionality of the component SVG Handler . Executing a manipulation can lead …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-55774 | OpenBao authorization

A vulnerability marked as problematic has been reported in OpenBao . Affected by this issue is some unknown functionality. The manipulation leads to incorrect authorization. This vulnerability is list…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-55878 | Symfony ux-toolkit Recipe Manifest path traversal

A vulnerability described as critical has been identified in Symfony ux-toolkit . This affects an unknown part of the component Recipe Manifest Handler . The manipulation results in path traversal. Th…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-55890 | getgrav Markdown Image MediaObjectTrait::style cross site scripting

A vulnerability classified as problematic has been found in getgrav grav . This vulnerability affects the function MediaObjectTrait::style of the component Markdown Image Handler . This manipulation o…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-8118 | wproyal Royal Addons for Elementor Plugin up to 1.7.1059 on WordPress file inclusion

A vulnerability classified as problematic was found in wproyal Royal Addons for Elementor Plugin up to 1.7.1059 on WordPress. This issue affects some unknown processing. Such manipulation leads to fil…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-12804 | lemonldap-ng up to 2.23.0 SAML Common Domain Cookie Endpoint CDC.pm url redirect

A vulnerability, which was classified as problematic , has been found in lemonldap-ng up to 2.23.0 . Impacted is an unknown function in the library lemonldap-ng-portal/lib/Lemonldap/NG/Portal/CDC.pm o…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-12805 | OFFIS DCMTK up to 3.7.0 ofstd/libsrc/ofxml.cc XMLNode::parseFile heap-based overflow (Issue 1208)

A vulnerability, which was classified as critical , was found in OFFIS DCMTK up to 3.7.0 . The affected element is the function XMLNode::parseFile in the library ofstd/libsrc/ofxml.cc . Executing a ma…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-12806 | Edimax BR-6478AC V2 1.23 POST Request /goform/formWlSiteSurvey selSSID buffer overflow

A vulnerability has been found in Edimax BR-6478AC V2 1.23 and classified as critical . The impacted element is the function formWlSiteSurvey of the file /goform/formWlSiteSurvey of the component POST…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-12807 | Edimax BR-6478AC V2 1.23 POST Request /goform/setWAN pppUserName/pptpUserName/L2TPUserName command injection

A vulnerability was found in Edimax BR-6478AC V2 1.23 and classified as critical . This affects the function setWAN of the file /goform/setWAN of the component POST Request Handler . The manipulation …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-12808 | Edimax BR-6478AC V2 1.23 POST Request /goform/stainfo interface command injection

A vulnerability was found in Edimax BR-6478AC V2 1.23 . It has been classified as critical . This impacts the function stainfo of the file /goform/stainfo of the component POST Request Handler . This …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-12809 | Edimax BR-6478AC V2 1.23 POST Request wiz_5in1_redirect newpass command injection

A vulnerability was found in Edimax BR-6478AC V2 1.23 . It has been declared as critical . Affected is the function wiz_5in1_redirect of the file /goform/wiz_5in1_redirect of the component POST Reques…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-12810 | Edimax BR-6478AC V2 1.23 POST Request /goform/mp command command injection

A vulnerability was found in Edimax BR-6478AC V2 1.23 . It has been rated as critical . Affected by this vulnerability is the function mp of the file /goform/mp of the component POST Request Handler .…

VulDB Read →
← Prev 55 / 443 Next →