CyberIntel ⬡ News
★ Saved ◆ Cyber Reads

// Vulnerabilities & CVEs
Intel Feed

cyberintel.kalymoon.com  ·  10684 articles  ·  updated every 4 hours · grows forever

10684Total
4265Full Text
Jul 04, 2026Latest
◈ Women in Cyber ◉ Threat Intelligence ◎ How-To & Tutorials ⬡ Vulnerabilities & CVEs 🔍 Digital Forensics ◍ Incident Response & DFIR ◆ Security Tools & Reviews ◇ Industry News & Leadership ✉ Email Security 🛡 Active Threats ⚠ Critical CVEs ◐ Insider Threat & DLP ◌ Quantum Computing ◬ AI & Machine Learning
🔥 Trending Topics · Last 48h
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-12784 | IM-Magic Partition Resizer up to 7.9.0 Kernel Driver MDA_NTDRV.sys access control

A vulnerability marked as critical has been reported in IM-Magic Partition Resizer up to 7.9.0 . This affects an unknown function in the library MDA_NTDRV.sys of the component Kernel Driver . This man…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-11911 | eemitch Simple File List Plugin up to 6.3.7 on WordPress Path Validation wp-config.php is_admin path traversal

A vulnerability described as critical has been identified in eemitch Simple File List Plugin up to 6.3.7 on WordPress. This impacts the function is_admin of the file wp-config.php of the component Pat…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-12119 | eemitch Simple File List Plugin up to 6.3.7 on WordPress Post Preview Endpoint ee-list-ops-bar-process.php frontmanage authorization

A vulnerability classified as critical has been found in eemitch Simple File List Plugin up to 6.3.7 on WordPress. Affected is an unknown function of the file includes/ee-list-ops-bar-process.php of t…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-11912 | eemitch Simple File List Plugin up to 6.3.7 on WordPress Setting is_admin AllowFrontManage authorization

A vulnerability classified as critical was found in eemitch Simple File List Plugin up to 6.3.7 on WordPress. Affected by this vulnerability is the function is_admin of the component Setting Handler .…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-12786 | Ezbsystems UltraISO Premium Edition up to 9.76 Kernel Driver bootpt64.sys access control

A vulnerability, which was classified as critical , has been found in Ezbsystems UltraISO Premium Edition up to 9.76 . Affected by this issue is some unknown functionality in the library bootpt64.sys …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-12787 | zhilink 智互联(深圳)科技有限公司 ADP Application Developer Platform 应用开发者平台 testConnection Endpoint deserialization

A vulnerability, which was classified as critical , was found in zhilink 智互联(深圳)科技有限公司 ADP Application Developer Platform 应用开发者平台 1.0.0 . This affects an unknown part of the component testConnection E…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-12788 | zhilink 智互联(深圳)科技有限公司 ADP Application Developer Platform 应用开发者平台 XML Parser import xml external entity reference

A vulnerability has been found in zhilink 智互联(深圳)科技有限公司 ADP Application Developer Platform 应用开发者平台 1.0.0 and classified as problematic . This vulnerability affects unknown code of the file /adpweb/a/b…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-12789 | ILIAS Learning Management System 11.0 Learning Progress Tracking class.ilTrQuery.php executeQueries troup_table_nav sql injection

A vulnerability was found in ILIAS Learning Management System 11.0 and classified as critical . This issue affects the function ilTrQuery::executeQueries of the file components/ILIAS/Tracking/classes/…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-31381, CVE-2026-31382: Gainsight Assist Information Disclosure and Cross-Site Scripting (FIXED) - Rapid7

CVE-2026-31381, CVE-2026-31382: Gainsight Assist Information Disclosure and Cross-Site Scripting (FIXED) Rapid7

Rapid7 Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-9843 | crmperks Database for Contact Form 7, WPforms, Elementor Forms Plugin JSON wp-config.php view_page path traversal

A vulnerability classified as critical was found in crmperks Database for Contact Form 7, WPforms, Elementor Forms Plugin up to 1.5.1 on WordPress. Impacted is the function view_page of the file wp-co…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-9265 | JONASBN Crypt::OpenSSL::PKCS12 up to 1.95 on Perl print_attribute out-of-bounds (Issue 55)

A vulnerability, which was classified as problematic , has been found in JONASBN Crypt::OpenSSL::PKCS12 up to 1.95 on Perl. The affected element is the function print_attribute . This manipulation cau…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-11551 | wpmudev Branda Plugin up to 3.4.29 on WordPress password recovery

A vulnerability, which was classified as critical , was found in wpmudev Branda Plugin up to 3.4.29 on WordPress. The impacted element is an unknown function. Such manipulation leads to weak password …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CISA Alerts on Microsoft Windows Shell Zero-Day Under Active Exploitation - cyberpress.org

CISA Alerts on Microsoft Windows Shell Zero-Day Under Active Exploitation cyberpress.org

cyberpress.org Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-50656 RoguePlanet Zero-Day Hits Windows Defender - The Cyber Express

CVE-2026-50656 RoguePlanet Zero-Day Hits Windows Defender The Cyber Express

The Cyber Express Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-56210 | libaom Network-facing Service out-of-bounds (ID 503975)

A vulnerability described as critical has been identified in libaom . This affects an unknown function of the component Network-facing Service . The manipulation results in out-of-bounds read. This vu…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-12238 | wpgmaps WP Go Maps Plugin up to 10.1.01 on WordPress Database Table CRUD-backed phpClass authorization

A vulnerability classified as critical has been found in wpgmaps WP Go Maps Plugin up to 10.1.01 on WordPress. This impacts the function CRUD-backed of the component Database Table Handler . This mani…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-49336 | microsoft kiota-typescript up to 1.0.0-prev Request Header case sensitivity (GHSA-396q-4vc8-28x9)

A vulnerability classified as problematic was found in microsoft kiota-typescript up to 1.0.0-prev . Affected is an unknown function of the component Request Header Handler . Such manipulation leads t…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-9375 | urllib3 Brotli up to 2.6.x HTTP response.py read resource consumption

A vulnerability, which was classified as problematic , has been found in urllib3 Brotli up to 2.6.x . Affected by this vulnerability is the function read of the file response.py of the component HTTP …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-49339 | sentriz gonic up to 0.20.x ID path traversal (GHSA-2fp4-5v5c-4448)

A vulnerability, which was classified as critical , was found in sentriz gonic up to 0.20.x . Affected by this issue is some unknown functionality. Executing a manipulation of the argument ID can lead…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-49293 | sunnyadn js-toml up to 1.1.0 TOML Parser load resource consumption (GHSA-wp3c-266w-4qfq)

A vulnerability has been found in sunnyadn js-toml up to 1.1.0 and classified as problematic . This affects the function Load of the component TOML Parser . The manipulation leads to resource consumpt…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-49338 | sentriz gonic up to 0.20.x Subsonic API deletePlaylist.view improper authorization (GHSA-hmgp-w9jm-vp95)

A vulnerability was found in sentriz gonic up to 0.20.x and classified as critical . This vulnerability affects unknown code of the file /rest/deletePlaylist.view of the component Subsonic API . The m…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-12726 | Red Hat Ansible Automation Platform 2 Trusted GitHub API Endpoint pull_request.statuses_url server-side request forgery

A vulnerability was found in Red Hat Ansible Automation Platform 2 . It has been classified as critical . This issue affects some unknown processing of the component Trusted GitHub API Endpoint . This…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2026-49291 | doobidoo mcp-memory-service up to 10.65.2 HTTP MCP JSON-RPC Endpoint authorization (GHSA-2r68-g678-7qr3)

A vulnerability was found in doobidoo mcp-memory-service up to 10.65.2 . It has been declared as problematic . Impacted is an unknown function of the component HTTP MCP JSON-RPC Endpoint . Such manipu…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 20, 2026
CVE-2023-54357 | com_booking 2.4.9 on Joomla index.php getUserData ID information exposure (Exploit 51595 / EDB-51595)

A vulnerability was found in com_booking 2.4.9 on Joomla. It has been rated as problematic . The affected element is the function getUserData of the file index.php . Performing a manipulation of the a…

VulDB Read →
← Prev 61 / 446 Next →