CyberIntel ⬡ News
★ Saved ◆ Cyber Reads

// Vulnerabilities & CVEs
Intel Feed

cyberintel.kalymoon.com  ·  10793 articles  ·  updated every 4 hours · grows forever

10793Total
4266Full Text
Jul 05, 2026Latest
◈ Women in Cyber ◉ Threat Intelligence ◎ How-To & Tutorials ⬡ Vulnerabilities & CVEs 🔍 Digital Forensics ◍ Incident Response & DFIR ◆ Security Tools & Reviews ◇ Industry News & Leadership ✉ Email Security 🛡 Active Threats ⚠ Critical CVEs ◐ Insider Threat & DLP ◌ Quantum Computing ◬ AI & Machine Learning
🔥 Trending Topics · Last 48h
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-8049 | SignalRGB kernel driver up to 1.3.7.0 access control

A vulnerability classified as critical has been found in SignalRGB kernel driver up to 1.3.7.0 . This impacts an unknown function. The manipulation leads to improper access controls. This vulnerabilit…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-9860 | vanyukov Offload, AI & Optimize with Cloudflare Images cf-images Plugin wp-config.php sanitize_text_field unrestricted upload

A vulnerability classified as critical was found in vanyukov Offload, AI & Optimize with Cloudflare Images cf-images Plugin up to 1.10.2 on WordPress. Affected is the function sanitize_text_field of t…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-11360 | algolplus Advanced Order Export for WooCommerce Plugin up to 4.0.10 on WordPress Endpoint stripslashes_deep sort_direction sql injection

A vulnerability, which was classified as critical , has been found in algolplus Advanced Order Export for WooCommerce Plugin up to 4.0.10 on WordPress. Affected by this vulnerability is the function s…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-11357 | stellarwp Kadence Blocks Plugin up to 3.7.5 on WordPress License Key information disclosure

A vulnerability, which was classified as problematic , was found in stellarwp Kadence Blocks Plugin up to 3.7.5 on WordPress. Affected by this issue is some unknown functionality of the component Lice…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-55740 | Nur-Alam39 bus-ticket bus_info.php mysqli_query busid sql injection

A vulnerability has been found in Nur-Alam39 bus-ticket and classified as critical . This affects the function mysqli_query of the file bus_info.php . Performing a manipulation of the argument busid r…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-10623 | pressprimer PressPrimer Quiz Plugin up to 2.3.0 on WordPress rule_id authorization

A vulnerability was found in pressprimer PressPrimer Quiz Plugin up to 2.3.0 on WordPress and classified as critical . This vulnerability affects unknown code. Executing a manipulation of the argument…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-9199 | equalizedigital Equalize Digital Accessibility Checker Plugin up to 1.42.1 on WordPress Authorization Token authorization

A vulnerability was found in equalizedigital Equalize Digital Accessibility Checker Plugin up to 1.42.1 on WordPress. It has been classified as critical . This issue affects some unknown processing of…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-12120 | fireplugins FireBox Popups Plugin up to 3.1.7 on WordPress Form Submission form_id information disclosure

A vulnerability was found in fireplugins FireBox Popups Plugin up to 3.1.7 on WordPress. It has been declared as problematic . Impacted is an unknown function of the component Form Submission Handler …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-10736 | themeum Tutor LMS Plugin up to 3.9.11 on WordPress data sql injection

A vulnerability was found in themeum Tutor LMS Plugin up to 3.9.11 on WordPress. It has been rated as critical . The affected element is an unknown function. This manipulation of the argument data cau…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-11776 | 10web Form Maker Plugin up to 1.15.43 on WordPress groupids sql injection

A vulnerability categorized as critical has been discovered in 10web Form Maker Plugin up to 1.15.43 on WordPress. The impacted element is an unknown function. Such manipulation of the argument groupi…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-10029 | eventkoi Event Koi Lite Plugin up to 1.3.13.1 on WordPress Configuration authorization

A vulnerability identified as problematic has been detected in eventkoi Event Koi Lite Plugin up to 1.3.13.1 on WordPress. This affects an unknown function of the component Configuration Handler . Per…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-12093 | wpinsider-1 Simple Membership Plugin up to 4.7.5 on WordPress Setting authorization

A vulnerability labeled as critical has been found in wpinsider-1 Simple Membership Plugin up to 4.7.5 on WordPress. This impacts an unknown function of the component Setting Handler . Executing a man…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-11777 | 10web Form Maker Plugin up to 1.15.43 on WordPress Name sql injection

A vulnerability marked as critical has been reported in 10web Form Maker Plugin up to 1.15.43 on WordPress. Affected is an unknown function. The manipulation of the argument Name leads to sql injectio…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-11358 | themeisle Orbit Fox Plugin up to 3.0.6 on WordPress cross site scripting

A vulnerability described as problematic has been identified in themeisle Orbit Fox Plugin up to 3.0.6 on WordPress. Affected by this vulnerability is an unknown functionality. The manipulation result…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-11784 | optimole Optimole Plugin up to 4.2.6 on WordPress Link replace_file ID cross-site request forgery

A vulnerability classified as problematic has been found in optimole Optimole Plugin up to 4.2.6 on WordPress. Affected by this issue is the function replace_file of the component Link Handler . This …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-11402 | bplugins Services Section Block Plugin up to 1.4.4 on WordPress cross site scripting

A vulnerability classified as problematic was found in bplugins Services Section Block Plugin up to 1.4.4 on WordPress. This affects an unknown part. Such manipulation leads to cross site scripting. T…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
Microsoft Working on Patch for ‘RoguePlanet’ Zero-Day - SecurityWeek

Microsoft Working on Patch for ‘RoguePlanet’ Zero-Day SecurityWeek

SecurityWeek Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
Critical Cisco Catalyst Vulnerability Exploited in the wild (CVE-2026-20127) - Rapid7

Critical Cisco Catalyst Vulnerability Exploited in the wild (CVE-2026-20127) Rapid7

Rapid7 Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-0265: Authentication Bypass in Palo Alto Networks PAN-OS - Rapid7

CVE-2026-0265: Authentication Bypass in Palo Alto Networks PAN-OS Rapid7

Rapid7 Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-55201 | Hackplayers evil-winrm up to 3.9 Configuration download_dir path traversal (EUVD-2026-37785)

A vulnerability, which was classified as critical , has been found in Hackplayers evil-winrm up to 3.9 . Affected is the function download_dir of the component Configuration Handler . The manipulation…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-55202 | Tinyproxy up to 1.11.3 Header Host authentication spoofing (EUVD-2026-37786)

A vulnerability, which was classified as critical , was found in Tinyproxy up to 1.11.3 . Affected by this vulnerability is an unknown functionality of the component Header Handler . The manipulation …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-55199 | libssh2 up to 1.11.1 SSH_MSG_EXT_INFO src/packet.c _libssh2_get_string infinite loop (EUVD-2026-37782)

A vulnerability has been found in libssh2 up to 1.11.1 and classified as problematic . Affected by this issue is the function _libssh2_get_string of the file src/packet.c of the component SSH_MSG_EXT_…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-55200 | libssh2 up to 1.11.1 SSH ssh2_transport_read integer overflow (7acf3dfda80c91c3a8c9f2372546301d4a1a7a8 / EUVD-2026-37784)

A vulnerability was found in libssh2 up to 1.11.1 and classified as critical . This affects the function ssh2_transport_read of the component SSH Handler . Such manipulation leads to integer overflow …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 18, 2026
CVE-2026-10741 | Sonatype Nexus Repository Manager up to 3.92.x Configuration authorization (EUVD-2026-37783)

A vulnerability was found in Sonatype Nexus Repository Manager up to 3.92.x . It has been classified as problematic . This vulnerability affects unknown code of the component Configuration Handler . P…

VulDB Read →
← Prev 75 / 450 Next →