CyberIntel ⬡ News
★ Saved ◆ Cyber Reads

// Vulnerabilities & CVEs
Intel Feed

cyberintel.kalymoon.com  ·  10652 articles  ·  updated every 4 hours · grows forever

10652Total
4263Full Text
Jul 03, 2026Latest
◈ Women in Cyber ◉ Threat Intelligence ◎ How-To & Tutorials ⬡ Vulnerabilities & CVEs 🔍 Digital Forensics ◍ Incident Response & DFIR ◆ Security Tools & Reviews ◇ Industry News & Leadership ✉ Email Security 🛡 Active Threats ⚠ Critical CVEs ◐ Insider Threat & DLP ◌ Quantum Computing ◬ AI & Machine Learning
🔥 Trending Topics · Last 48h
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-12805 | OFFIS DCMTK up to 3.7.0 ofstd/libsrc/ofxml.cc XMLNode::parseFile heap-based overflow (Issue 1208)

A vulnerability, which was classified as critical , was found in OFFIS DCMTK up to 3.7.0 . The affected element is the function XMLNode::parseFile in the library ofstd/libsrc/ofxml.cc . Executing a ma…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-12806 | Edimax BR-6478AC V2 1.23 POST Request /goform/formWlSiteSurvey selSSID buffer overflow

A vulnerability has been found in Edimax BR-6478AC V2 1.23 and classified as critical . The impacted element is the function formWlSiteSurvey of the file /goform/formWlSiteSurvey of the component POST…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-12807 | Edimax BR-6478AC V2 1.23 POST Request /goform/setWAN pppUserName/pptpUserName/L2TPUserName command injection

A vulnerability was found in Edimax BR-6478AC V2 1.23 and classified as critical . This affects the function setWAN of the file /goform/setWAN of the component POST Request Handler . The manipulation …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-12808 | Edimax BR-6478AC V2 1.23 POST Request /goform/stainfo interface command injection

A vulnerability was found in Edimax BR-6478AC V2 1.23 . It has been classified as critical . This impacts the function stainfo of the file /goform/stainfo of the component POST Request Handler . This …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-12809 | Edimax BR-6478AC V2 1.23 POST Request wiz_5in1_redirect newpass command injection

A vulnerability was found in Edimax BR-6478AC V2 1.23 . It has been declared as critical . Affected is the function wiz_5in1_redirect of the file /goform/wiz_5in1_redirect of the component POST Reques…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-12810 | Edimax BR-6478AC V2 1.23 POST Request /goform/mp command command injection

A vulnerability was found in Edimax BR-6478AC V2 1.23 . It has been rated as critical . Affected by this vulnerability is the function mp of the file /goform/mp of the component POST Request Handler .…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-12811 | kortix-ai suna up to 0.8.38 Auth Endpoint page.tsx router.replace/router.push returnURL cross site scripting

A vulnerability categorized as problematic has been discovered in kortix-ai suna up to 0.8.38 . Affected by this issue is the function router.replace/router.push of the file apps/frontend/src/app/auth…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-12812 | Radware Cyber Controller up to 10.11.0 HTML Report Generation HTML injection

A vulnerability identified as problematic has been detected in Radware Cyber Controller up to 10.11.0 . This affects an unknown part of the component HTML Report Generation . The manipulation leads to…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-12813 | activepieces up to 0.83.0 File URL file.ts handleUrlFile server-side request forgery

A vulnerability labeled as critical has been found in activepieces up to 0.83.0 . This vulnerability affects the function handleUrlFile in the library packages/server/engine/src/lib/variables/processo…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-12814 | Comfast CF-WR631AX V3 up to 2.7.0.8 API Endpoint mbox-config?section=ping_config system destination os command injection

A vulnerability marked as critical has been reported in Comfast CF-WR631AX V3 up to 2.7.0.8 . This issue affects the function system of the file /cgi-bin/mbox-config?section=ping_config of the compone…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-12815 | coollabsio coolify 4.0.0 Image Name os command injection

A vulnerability described as critical has been identified in coollabsio coolify 4.0.0 . Impacted is an unknown function of the component Image Name Handler . Such manipulation leads to os command inje…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-48909 | joomshaper.net SP LMS Extension 1.0.0-4.1.3 deserialization (EUVD-2026-38108)

A vulnerability classified as critical has been found in joomshaper.net SP LMS Extension 1.0.0-4.1.3 . This affects an unknown part. The manipulation leads to deserialization. This vulnerability is tr…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-56228 | Capgo up to 12.128.1 Password Policy denial of service (GHSA-vhjp-62qf-33mx / EUVD-2026-38116)

A vulnerability classified as problematic was found in Capgo up to 12.128.1 . This vulnerability affects unknown code of the component Password Policy Handler . The manipulation results in denial of s…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2020-37255 | Wptimecapsule Time Capsule Plugin up to 1.21.15 authentication bypass (Exploit 47941 / EUVD-2020-31256)

A vulnerability, which was classified as critical , has been found in Wptimecapsule Time Capsule Plugin up to 1.21.15 . This issue affects some unknown processing. This manipulation causes authenticat…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-12673 | LiquidFiles up to 4.2.11 improper authorization (EUVD-2026-38111)

A vulnerability, which was classified as critical , was found in LiquidFiles up to 4.2.11 . Impacted is an unknown function. Such manipulation leads to improper authorization. This vulnerability is un…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-56325 | Capgo up to 12.128.1 missing initialization (GHSA-cw88-ch2j-8vqj / EUVD-2026-38113)

A vulnerability has been found in Capgo up to 12.128.1 and classified as problematic . The affected element is an unknown function. Performing a manipulation results in missing initialization of a var…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-56267 | Flowise up to 3.0.12 forgot-password information disclosure (GHSA-jc5m-wrp2-qq38 / EUVD-2026-38118)

A vulnerability was found in Flowise up to 3.0.12 and classified as problematic . The impacted element is an unknown function of the file /api/v1/account/forgot-password . Executing a manipulation can…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-56276 | Flowise up to 3.1.1 /api/v1/user credential dynamically-determined object attributes (GHSA-59fh-9f3p-7m39 / EUVD-2026-38119)

A vulnerability was found in Flowise up to 3.1.1 . It has been classified as problematic . This affects an unknown function of the file /api/v1/user . The manipulation of the argument credential leads…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-56294 | capacitor-native-biometric up to 12.128.1 onAuthenticationSucceeded improper authentication (GHSA-vx5f-vmr6-32wf / EUVD-2026-38121)

A vulnerability was found in capacitor-native-biometric up to 12.128.1 . It has been declared as critical . This impacts the function onAuthenticationSucceeded . The manipulation results in improper a…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-56218 | Capgo up to 12.128.1 information disclosure (GHSA-c5w9-886p-9j2x / EUVD-2026-38114)

A vulnerability was found in Capgo up to 12.128.1 . It has been rated as problematic . Affected is an unknown function. This manipulation causes information disclosure. This vulnerability is tracked a…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-56317 | Nuxt up to 3.21.6/4.4.6 cross site scripting (GHSA-m3q2-p4fw-w38m / EUVD-2026-38112)

A vulnerability categorized as problematic has been discovered in Nuxt up to 3.21.6/4.4.6 . Affected by this vulnerability is an unknown functionality. Such manipulation leads to cross site scripting.…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-56227 | Capgo up to 12.128.1 Outbound Requests server-side request forgery (GHSA-48hc-53hv-6x3f / EUVD-2026-38115)

A vulnerability identified as critical has been detected in Capgo up to 12.128.1 . Affected by this issue is some unknown functionality of the component Outbound Requests Handler . Performing a manipu…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2025-71331 | Flowise up to 3.0.7 Chat Message cross site scripting (GHSA-4fr9-3x69-36wv / EUVD-2025-210289)

A vulnerability labeled as problematic has been found in Flowise up to 3.0.7 . This affects an unknown part of the component Chat Message Handler . Executing a manipulation can lead to basic cross sit…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-56304 | picklescan up to 1.0.0 logging.FileHandler deserialization (GHSA-m7j5-r2p5-c39r / EUVD-2026-38123)

A vulnerability marked as critical has been reported in picklescan up to 1.0.0 . This vulnerability affects the function logging.FileHandler . The manipulation leads to deserialization. This vulnerabi…

VulDB Read →
← Prev 57 / 444 Next →