CyberIntel ⬡ News
★ Saved ◆ Cyber Reads

// Vulnerabilities & CVEs
Intel Feed

cyberintel.kalymoon.com  ·  10683 articles  ·  updated every 4 hours · grows forever

10683Total
4264Full Text
Jul 03, 2026Latest
◈ Women in Cyber ◉ Threat Intelligence ◎ How-To & Tutorials ⬡ Vulnerabilities & CVEs 🔍 Digital Forensics ◍ Incident Response & DFIR ◆ Security Tools & Reviews ◇ Industry News & Leadership ✉ Email Security 🛡 Active Threats ⚠ Critical CVEs ◐ Insider Threat & DLP ◌ Quantum Computing ◬ AI & Machine Learning
🔥 Trending Topics · Last 48h
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-55770 | OpenBao ldaputil ldap injection

A vulnerability identified as problematic has been detected in OpenBao . Affected is an unknown function of the component ldaputil . Performing a manipulation results in ldap injection. This vulnerabi…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-55877 | Symfony ux-icons SVG cross site scripting

A vulnerability labeled as problematic has been found in Symfony ux-icons . Affected by this vulnerability is an unknown functionality of the component SVG Handler . Executing a manipulation can lead …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-55774 | OpenBao authorization

A vulnerability marked as problematic has been reported in OpenBao . Affected by this issue is some unknown functionality. The manipulation leads to incorrect authorization. This vulnerability is list…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-55878 | Symfony ux-toolkit Recipe Manifest path traversal

A vulnerability described as critical has been identified in Symfony ux-toolkit . This affects an unknown part of the component Recipe Manifest Handler . The manipulation results in path traversal. Th…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-55890 | getgrav Markdown Image MediaObjectTrait::style cross site scripting

A vulnerability classified as problematic has been found in getgrav grav . This vulnerability affects the function MediaObjectTrait::style of the component Markdown Image Handler . This manipulation o…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-8118 | wproyal Royal Addons for Elementor Plugin up to 1.7.1059 on WordPress file inclusion

A vulnerability classified as problematic was found in wproyal Royal Addons for Elementor Plugin up to 1.7.1059 on WordPress. This issue affects some unknown processing. Such manipulation leads to fil…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-12804 | lemonldap-ng up to 2.23.0 SAML Common Domain Cookie Endpoint CDC.pm url redirect

A vulnerability, which was classified as problematic , has been found in lemonldap-ng up to 2.23.0 . Impacted is an unknown function in the library lemonldap-ng-portal/lib/Lemonldap/NG/Portal/CDC.pm o…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-12805 | OFFIS DCMTK up to 3.7.0 ofstd/libsrc/ofxml.cc XMLNode::parseFile heap-based overflow (Issue 1208)

A vulnerability, which was classified as critical , was found in OFFIS DCMTK up to 3.7.0 . The affected element is the function XMLNode::parseFile in the library ofstd/libsrc/ofxml.cc . Executing a ma…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-12806 | Edimax BR-6478AC V2 1.23 POST Request /goform/formWlSiteSurvey selSSID buffer overflow

A vulnerability has been found in Edimax BR-6478AC V2 1.23 and classified as critical . The impacted element is the function formWlSiteSurvey of the file /goform/formWlSiteSurvey of the component POST…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-12807 | Edimax BR-6478AC V2 1.23 POST Request /goform/setWAN pppUserName/pptpUserName/L2TPUserName command injection

A vulnerability was found in Edimax BR-6478AC V2 1.23 and classified as critical . This affects the function setWAN of the file /goform/setWAN of the component POST Request Handler . The manipulation …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-12808 | Edimax BR-6478AC V2 1.23 POST Request /goform/stainfo interface command injection

A vulnerability was found in Edimax BR-6478AC V2 1.23 . It has been classified as critical . This impacts the function stainfo of the file /goform/stainfo of the component POST Request Handler . This …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-12809 | Edimax BR-6478AC V2 1.23 POST Request wiz_5in1_redirect newpass command injection

A vulnerability was found in Edimax BR-6478AC V2 1.23 . It has been declared as critical . Affected is the function wiz_5in1_redirect of the file /goform/wiz_5in1_redirect of the component POST Reques…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-12810 | Edimax BR-6478AC V2 1.23 POST Request /goform/mp command command injection

A vulnerability was found in Edimax BR-6478AC V2 1.23 . It has been rated as critical . Affected by this vulnerability is the function mp of the file /goform/mp of the component POST Request Handler .…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-12811 | kortix-ai suna up to 0.8.38 Auth Endpoint page.tsx router.replace/router.push returnURL cross site scripting

A vulnerability categorized as problematic has been discovered in kortix-ai suna up to 0.8.38 . Affected by this issue is the function router.replace/router.push of the file apps/frontend/src/app/auth…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-12812 | Radware Cyber Controller up to 10.11.0 HTML Report Generation HTML injection

A vulnerability identified as problematic has been detected in Radware Cyber Controller up to 10.11.0 . This affects an unknown part of the component HTML Report Generation . The manipulation leads to…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-12813 | activepieces up to 0.83.0 File URL file.ts handleUrlFile server-side request forgery

A vulnerability labeled as critical has been found in activepieces up to 0.83.0 . This vulnerability affects the function handleUrlFile in the library packages/server/engine/src/lib/variables/processo…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-12814 | Comfast CF-WR631AX V3 up to 2.7.0.8 API Endpoint mbox-config?section=ping_config system destination os command injection

A vulnerability marked as critical has been reported in Comfast CF-WR631AX V3 up to 2.7.0.8 . This issue affects the function system of the file /cgi-bin/mbox-config?section=ping_config of the compone…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 21, 2026
CVE-2026-12815 | coollabsio coolify 4.0.0 Image Name os command injection

A vulnerability described as critical has been identified in coollabsio coolify 4.0.0 . Impacted is an unknown function of the component Image Name Handler . Such manipulation leads to os command inje…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-48909 | joomshaper.net SP LMS Extension 1.0.0-4.1.3 deserialization (EUVD-2026-38108)

A vulnerability classified as critical has been found in joomshaper.net SP LMS Extension 1.0.0-4.1.3 . This affects an unknown part. The manipulation leads to deserialization. This vulnerability is tr…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-56228 | Capgo up to 12.128.1 Password Policy denial of service (GHSA-vhjp-62qf-33mx / EUVD-2026-38116)

A vulnerability classified as problematic was found in Capgo up to 12.128.1 . This vulnerability affects unknown code of the component Password Policy Handler . The manipulation results in denial of s…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2020-37255 | Wptimecapsule Time Capsule Plugin up to 1.21.15 authentication bypass (Exploit 47941 / EUVD-2020-31256)

A vulnerability, which was classified as critical , has been found in Wptimecapsule Time Capsule Plugin up to 1.21.15 . This issue affects some unknown processing. This manipulation causes authenticat…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-12673 | LiquidFiles up to 4.2.11 improper authorization (EUVD-2026-38111)

A vulnerability, which was classified as critical , was found in LiquidFiles up to 4.2.11 . Impacted is an unknown function. Such manipulation leads to improper authorization. This vulnerability is un…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-56325 | Capgo up to 12.128.1 missing initialization (GHSA-cw88-ch2j-8vqj / EUVD-2026-38113)

A vulnerability has been found in Capgo up to 12.128.1 and classified as problematic . The affected element is an unknown function. Performing a manipulation results in missing initialization of a var…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-56267 | Flowise up to 3.0.12 forgot-password information disclosure (GHSA-jc5m-wrp2-qq38 / EUVD-2026-38118)

A vulnerability was found in Flowise up to 3.0.12 and classified as problematic . The impacted element is an unknown function of the file /api/v1/account/forgot-password . Executing a manipulation can…

VulDB Read →
← Prev 58 / 446 Next →