CyberIntel ⬡ News
★ Saved ◆ Cyber Reads

// Vulnerabilities & CVEs
Intel Feed

cyberintel.kalymoon.com  ·  10793 articles  ·  updated every 4 hours · grows forever

10793Total
4266Full Text
Jul 05, 2026Latest
◈ Women in Cyber ◉ Threat Intelligence ◎ How-To & Tutorials ⬡ Vulnerabilities & CVEs 🔍 Digital Forensics ◍ Incident Response & DFIR ◆ Security Tools & Reviews ◇ Industry News & Leadership ✉ Email Security 🛡 Active Threats ⚠ Critical CVEs ◐ Insider Threat & DLP ◌ Quantum Computing ◬ AI & Machine Learning
🔥 Trending Topics · Last 48h
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-46580 | Eclipse Theia up to 1.70.x Repository inclusion of functionality from untrusted control sphere

A vulnerability was found in Eclipse Theia up to 1.70.x and classified as problematic . Affected is an unknown function of the component Repository Handler . Executing a manipulation can lead to inclu…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2025-53114 | CometD up to 5.0.22/6.0.18/7.0.18/8.0.8 resource consumption (ID 2117)

A vulnerability was found in CometD up to 5.0.22/6.0.18/7.0.18/8.0.8 . It has been classified as problematic . Affected by this vulnerability is an unknown functionality. The manipulation leads to res…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-48984 | mcdope pam_usb up to 0.9.1 on Linux Removable Media xfree compiler removal of code to clear buffers

A vulnerability was found in mcdope pam_usb up to 0.9.1 on Linux. It has been declared as problematic . Affected by this issue is the function xfree of the component Removable Media Handler . The mani…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-48985 | mcdope pam_usb up to 0.9.1 on Linux PAM Module pusb_is_loginctl_local Remote null pointer dereference

A vulnerability was found in mcdope pam_usb up to 0.9.1 on Linux. It has been rated as problematic . This affects the function pusb_is_loginctl_local of the component PAM Module . This manipulation of…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-54390 | JTL Shop up to 5.1.7/5.5.3/5.6.1/5.7.1 Encryption Key special elements used in a template engine

A vulnerability categorized as critical has been discovered in JTL Shop up to 5.1.7/5.5.3/5.6.1/5.7.1 . This vulnerability affects unknown code of the component Encryption Key Handler . Such manipulat…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2025-58175 | geoserver org.geoserver.web:gs-web-app/org.geoserver:gs-main Installation input validation (GHSA-x4r9-gmw3-hxww)

A vulnerability identified as problematic has been detected in geoserver org.geoserver.web:gs-web-app and org.geoserver:gs-main up to 2.26.3/2.27.2 . This issue affects some unknown processing of the …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-48986 | mcdope pam_usb up to 0.9.1 on Linux Removable Media usb_get_process_parent_id infinite loop

A vulnerability labeled as problematic has been found in mcdope pam_usb up to 0.9.1 on Linux. Impacted is the function usb_get_process_parent_id of the component Removable Media Handler . Executing a …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-56021 | Webmin Director prior 2.641 incorrect regex

A vulnerability marked as problematic has been reported in Webmin Director . The affected element is an unknown function. The manipulation leads to incorrect regular expression. This vulnerability is …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-56022 | Webmin up to 2.640 single-factor authentication

A vulnerability described as problematic has been identified in Webmin up to 2.640 . The impacted element is an unknown function. The manipulation results in use of single-factor authentication. This …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-11982 | Grav grav-plugin-api 1.7.52 Admin2 Pages API cross site scripting (GHSA-5wc5-7v9g-f7v6)

A vulnerability classified as problematic has been found in Grav grav-plugin-api 1.7.52 . This affects an unknown function of the component Admin2 Pages API . This manipulation causes cross site scrip…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-56024 | Saad Iqbal WP EasyPay Plugin up to 4.4.0 on WordPress cross-site request forgery

A vulnerability classified as problematic was found in Saad Iqbal WP EasyPay Plugin up to 4.4.0 on WordPress. This impacts an unknown function. Such manipulation leads to cross-site request forgery. T…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
Microsoft Confirms It Is Urgently Working On Patch For Windows Defender Zero-Day Vulnerability - LinkedIn

Microsoft Confirms It Is Urgently Working On Patch For Windows Defender Zero-Day Vulnerability LinkedIn

LinkedIn Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-40457 | LMS Management System GET Parameter dbrecover.php cross site scripting (9c5651b / EUVD-2026-37876)

A vulnerability was found in LMS Management System and classified as problematic . This impacts an unknown function of the file dbrecover.php of the component GET Parameter Handler . Such manipulation…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-11718 | Google MCP Toolbox for Databases up to 1.3.0 iss improper authentication (EUVD-2026-37880)

A vulnerability was found in Google MCP Toolbox for Databases up to 1.3.0 . It has been classified as critical . Affected is an unknown function. Performing a manipulation of the argument iss results …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2025-10560 | Silver Leaf Worksnaps.net Worksnaps prior 1.6.202602 AWS Credential hard-coded credentials

A vulnerability was found in Silver Leaf Worksnaps.net Worksnaps . It has been declared as critical . Affected by this vulnerability is an unknown functionality of the component AWS Credential Handler…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-11717 | Google MCP Toolbox for Databases up to 1.3.0 improper authentication (EUVD-2026-37879)

A vulnerability was found in Google MCP Toolbox for Databases up to 1.3.0 . It has been rated as critical . Affected by this issue is some unknown functionality. The manipulation leads to improper aut…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-11719 | Google MCP Toolbox for Databases 1.3.0 authorization (EUVD-2026-37881)

A vulnerability categorized as critical has been discovered in Google MCP Toolbox for Databases 1.3.0 . This affects an unknown part. The manipulation results in missing authorization. This vulnerabil…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-40456 | Chilek LAN Management System System Command exec os command injection (9fcb4de / EUVD-2026-37875)

A vulnerability identified as critical has been detected in Chilek LAN Management System . This vulnerability affects the function exec of the component System Command Handler . This manipulation caus…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-2021 | contrid Slideshow Gallery LITE Plugin up to 1.8.5 on WordPress Shortcode alwaysauto cross site scripting

A vulnerability labeled as problematic has been found in contrid Slideshow Gallery LITE Plugin up to 1.8.5 on WordPress. This issue affects some unknown processing of the component Shortcode Handler .…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-8039 | dijitul Fancy Testimonials Plugin up to 1.0 on WordPress Shortcode Author cross site scripting

A vulnerability marked as problematic has been reported in dijitul Fancy Testimonials Plugin up to 1.0 on WordPress. Impacted is an unknown function of the component Shortcode Handler . Performing a m…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-8811 | SEPPmail Secure Email Gateway up to 15.0.4 Attachment File path traversal

A vulnerability described as critical has been identified in SEPPmail Secure Email Gateway up to 15.0.4 . The affected element is an unknown function of the component Attachment File Handler . Executi…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-44942 | SUSE libzypp up to 16.22.18/17.38.12 path traversal (EUVD-2026-37871)

A vulnerability classified as problematic has been found in SUSE libzypp up to 16.22.18/17.38.12 . The impacted element is an unknown function. The manipulation leads to path traversal: '../filedir'. …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-11958 | ANSSI DFIR-ORC up to 10.2.7/10.2.x DLL uncontrolled search path (EUVD-2026-37877)

A vulnerability classified as problematic was found in ANSSI DFIR-ORC up to 10.2.7/10.2.x . This affects an unknown function of the component DLL Handler . The manipulation results in uncontrolled sea…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-8024 | iba PDA/DatCoordinator up to 8.13.x deserialization (vde-2026-051 / EUVD-2026-37869)

A vulnerability, which was classified as very critical , has been found in iba PDA and DatCoordinator up to 8.13.x . This impacts an unknown function. This manipulation causes deserialization. This vu…

VulDB Read →
← Prev 72 / 450 Next →