CyberIntel ⬡ News
★ Saved ◆ Cyber Reads

// Vulnerabilities & CVEs
Intel Feed

cyberintel.kalymoon.com  ·  10842 articles  ·  updated every 4 hours · grows forever

10842Total
4266Full Text
Jul 05, 2026Latest
◈ Women in Cyber ◉ Threat Intelligence ◎ How-To & Tutorials ⬡ Vulnerabilities & CVEs 🔍 Digital Forensics ◍ Incident Response & DFIR ◆ Security Tools & Reviews ◇ Industry News & Leadership ✉ Email Security 🛡 Active Threats ⚠ Critical CVEs ◐ Insider Threat & DLP ◌ Quantum Computing ◬ AI & Machine Learning
🔥 Trending Topics · Last 48h
⬡ Vulnerabilities & CVEs Jun 16, 2026
CVE-2026-54190 | Awesomemotive Envira Photo Gallery Plugin up to 1.12.5 on WordPress authorization

A vulnerability marked as critical has been reported in Awesomemotive Envira Photo Gallery Plugin up to 1.12.5 on WordPress. Impacted is an unknown function. Performing a manipulation results in missi…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 16, 2026
CVE-2026-54197 | Wpmet GetGenie Plugin up to 4.4.1 on WordPress insertion of sensitive information into sent data

A vulnerability described as problematic has been identified in Wpmet GetGenie Plugin up to 4.4.1 on WordPress. The affected element is an unknown function. Executing a manipulation can lead to insert…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 16, 2026
CVE-2026-52714 | SEO Squirrly SEO Plugin up to 12.4.16 on WordPress authorization

A vulnerability classified as problematic has been found in SEO Squirrly SEO Plugin up to 12.4.16 on WordPress. The impacted element is an unknown function. The manipulation leads to missing authoriza…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 16, 2026
CVE-2026-39437 | WPFactory Min Max Step Quantity Limits Manager for WooCommerce Plugin cross site scripting

A vulnerability classified as problematic was found in WPFactory Min Max Step Quantity Limits Manager for WooCommerce Plugin up to 5.2.2 on WordPress. This affects an unknown function. The manipulatio…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 16, 2026
CVE-2026-54191 | Pods Framework Pods Plugin up to 3.3.8 on WordPress cross site scripting

A vulnerability, which was classified as problematic , has been found in Pods Framework Pods Plugin up to 3.3.8 on WordPress. This impacts an unknown function. This manipulation causes cross site scri…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 16, 2026
CVE-2026-54198 | David Lingren Media LIbrary Assistant Plugin up to 3.35 on WordPress cross site scripting

A vulnerability, which was classified as problematic , was found in David Lingren Media LIbrary Assistant Plugin up to 3.35 on WordPress. Affected is an unknown function. Such manipulation leads to cr…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 16, 2026
CVE-2026-8442 | WP Review Slider Pro Plugin up to 12.6.8 on WordPress AJAX wpfb_hidereview_ajax path traversal

A vulnerability has been found in WP Review Slider Pro Plugin up to 12.6.8 on WordPress and classified as critical . Affected by this vulnerability is the function wpfb_hidereview_ajax of the componen…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 16, 2026
Patch Tuesday - April 2026 - Rapid7

Patch Tuesday - April 2026 Rapid7

Rapid7 Read →
⬡ Vulnerabilities & CVEs Jun 16, 2026
CVE-2026-50890 | Bernd Bestel grocy 4.6.0 /stockreports/spendings product-group sql injection

A vulnerability was found in Bernd Bestel grocy 4.6.0 . It has been classified as critical . Affected by this issue is some unknown functionality of the file /stockreports/spendings . Performing a man…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 16, 2026
CVE-2026-52718 | GStreamer AV1 Codec Parser gst_av1_parser_parse_tile_list_obu assertion (WID-SEC-2026-1919)

A vulnerability was found in GStreamer . It has been declared as problematic . This affects the function gst_av1_parser_parse_tile_list_obu of the component AV1 Codec Parser . Executing a manipulation…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 16, 2026
CVE-2026-53704 | GStreamer FILEINFO re_skip_pascal_string out-of-bounds (WID-SEC-2026-1919)

A vulnerability was found in GStreamer . It has been rated as critical . This vulnerability affects the function re_skip_pascal_string of the component FILEINFO Handler . The manipulation leads to out…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 16, 2026
CVE-2026-53705 | GStreamer WavPack File gst_wavpack_dec_handle_frame integer overflow (WID-SEC-2026-1919)

A vulnerability categorized as critical has been discovered in GStreamer . This issue affects the function gst_wavpack_dec_handle_frame of the component WavPack File Handler . The manipulation results…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 16, 2026
CVE-2026-50892 | Nginx Proxy Manager 2.14.0 Let's Encrypt Certificate Download Endpoint certificate validation

A vulnerability identified as problematic has been detected in Nginx Proxy Manager 2.14.0 . Impacted is an unknown function of the component Let's Encrypt Certificate Download Endpoint . This manipula…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 16, 2026
CVE-2026-52721 | GStreamer PCAP File out-of-bounds

A vulnerability labeled as critical has been found in GStreamer . The affected element is an unknown function of the component PCAP File Handler . Such manipulation leads to out-of-bounds read. This v…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 16, 2026
CVE-2026-50889 | LLDAP 0.6.2 Refresh Token denial of service

A vulnerability marked as problematic has been reported in LLDAP 0.6.2 . The impacted element is an unknown function of the component Refresh Token Handler . Performing a manipulation results in denia…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 16, 2026
CVE-2026-50891 | Filestash 0.4.0 /admin/api/config access control

A vulnerability described as critical has been identified in Filestash 0.4.0 . This affects an unknown function of the file /admin/api/config . Executing a manipulation can lead to improper access con…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 16, 2026
CVE-2026-48966 | FunnelKit Funnel Builder Plugin up to 3.15.0.2 on WordPress cross site scripting

A vulnerability classified as problematic has been found in FunnelKit Funnel Builder Plugin up to 3.15.0.2 on WordPress. This impacts an unknown function. The manipulation leads to cross site scriptin…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 16, 2026
CVE-2026-49043 | WP Engine WP Migrate Lite Plugin up to 2.7.8 on WordPress cross-site request forgery

A vulnerability classified as problematic was found in WP Engine WP Migrate Lite Plugin up to 2.7.8 on WordPress. Affected is an unknown function. The manipulation results in cross-site request forger…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 16, 2026
CVE-2026-49055 | Glen Don Mongaya Drag and Drop Multiple File Upload Plugin up to 1.3.9.7 on WordPress cross site scripting

A vulnerability, which was classified as problematic , has been found in Glen Don Mongaya Drag and Drop Multiple File Upload Plugin up to 1.3.9.7 on WordPress. Affected by this vulnerability is an unk…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 16, 2026
CVE-2026-49773 | FolioVision FV Flowplayer Video Player Plugin 7.5.49.7212 on WordPress cross site scripting

A vulnerability, which was classified as problematic , was found in FolioVision FV Flowplayer Video Player Plugin 7.5.49.7212 on WordPress. Affected by this issue is some unknown functionality. Such m…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 16, 2026
CVE-2026-52702 | wp-buy SEO Redirection Plugin up to 9.17 on WordPress cross site scripting

A vulnerability has been found in wp-buy SEO Redirection Plugin up to 9.17 on WordPress and classified as problematic . This affects an unknown part. Performing a manipulation results in cross site sc…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 16, 2026
CVE-2026-50876 | Deck9 Input 2.0.1 cross site scripting

A vulnerability was found in Deck9 Input 2.0.1 and classified as problematic . This vulnerability affects unknown code. Executing a manipulation can lead to cross site scripting. This vulnerability is…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 16, 2026
CVE-2026-37216 | RuoYi 4.8.2 /system/notice/add cross site scripting (Issue 320)

A vulnerability was found in RuoYi 4.8.2 . It has been classified as problematic . This issue affects some unknown processing of the file /system/notice/add . The manipulation leads to cross site scri…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 16, 2026
CVE-2026-36521 | Sanluan PublicCMS 5.202506.d Site Configuration Management cross site scripting

A vulnerability was found in Sanluan PublicCMS 5.202506.d . It has been declared as problematic . Impacted is an unknown function of the component Site Configuration Management Module . The manipulati…

VulDB Read →
← Prev 89 / 452 Next →