CyberIntel ⬡ News
★ Saved ◆ Cyber Reads

// Vulnerabilities & CVEs
Intel Feed

cyberintel.kalymoon.com  ·  10852 articles  ·  updated every 4 hours · grows forever

10852Total
4266Full Text
Jul 06, 2026Latest
◈ Women in Cyber ◉ Threat Intelligence ◎ How-To & Tutorials ⬡ Vulnerabilities & CVEs 🔍 Digital Forensics ◍ Incident Response & DFIR ◆ Security Tools & Reviews ◇ Industry News & Leadership ✉ Email Security 🛡 Active Threats ⚠ Critical CVEs ◐ Insider Threat & DLP ◌ Quantum Computing ◬ AI & Machine Learning
🔥 Trending Topics · Last 48h
⬡ Vulnerabilities & CVEs Jun 15, 2026
CVE-2026-48969 | Really Simple Plugins Really Simple SSL Plugin up to 9.5.9 on WordPress authorization

A vulnerability was found in Really Simple Plugins Really Simple SSL Plugin up to 9.5.9 on WordPress. It has been declared as critical . This affects an unknown part. Such manipulation leads to missin…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 15, 2026
CVE-2026-49111 | ThemeGrill Masteriyo Plugin up to 2.2.0 on WordPress privileges assignment

A vulnerability was found in ThemeGrill Masteriyo Plugin up to 2.2.0 on WordPress. It has been rated as critical . This vulnerability affects unknown code. Performing a manipulation results in incorre…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 15, 2026
CVE-2026-5233 | MIA Pizzy Library prior 1.3.9.26250 improper control of interaction frequency

A vulnerability categorized as problematic has been discovered in MIA Pizzy Library . This issue affects some unknown processing. Executing a manipulation can lead to improper control of interaction f…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 15, 2026
CVE-2026-8385 | WP Go Maps Plugin up to 10.0.9 on WordPress title/category/address/description information disclosure

A vulnerability described as problematic has been identified in WP Go Maps Plugin up to 10.0.9 on WordPress. The impacted element is an unknown function. The manipulation of the argument title/categor…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 15, 2026
CVE-2026-8935 | flippercode WP MAPS PRO Plugin up to 6.1.0 on WordPress AJAX Action privileges management

A vulnerability classified as critical has been found in flippercode WP MAPS PRO Plugin up to 6.1.0 on WordPress. This affects an unknown function of the component AJAX Action Handler . This manipulat…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 15, 2026
CVE-2026-8386 | WP Go Maps Plugin up to 10.0.9 on WordPress REST Endpoint address/description information disclosure

A vulnerability classified as problematic was found in WP Go Maps Plugin up to 10.0.9 on WordPress. This impacts an unknown function of the component REST Endpoint . Such manipulation of the argument …

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 15, 2026
CVE-2026-9278 | CodePeople Form Builder CP Plugin up to 1.2.46 on WordPress Configuration cross site scripting

A vulnerability, which was classified as problematic , has been found in CodePeople Form Builder CP Plugin up to 1.2.46 on WordPress. Affected is an unknown function of the component Configuration Han…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 15, 2026
CVE-2026-2470 | Softaculous Page Builder Plugin up to 2.0.9 on WordPress authorization

A vulnerability labeled as critical has been found in Softaculous Page Builder Plugin up to 2.0.9 on WordPress. Impacted is an unknown function. Executing a manipulation can lead to incorrect authoriz…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 15, 2026
CVE-2026-47774 | Envoy HPACK Compression Slowloris denial of service

A vulnerability marked as problematic has been reported in Envoy . The affected element is an unknown function of the component HPACK Compression Handler . The manipulation leads to denial of service.…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 14, 2026
CVE-2026-54412 | LiamBindle MQTT-C up to 1.1.6 PUBLISH src/mqtt.c mqtt_unpack_publish_response out-of-bounds (EUVD-2026-36663)

A vulnerability was found in LiamBindle MQTT-C up to 1.1.6 . It has been declared as problematic . Affected by this issue is the function mqtt_unpack_publish_response of the file src/mqtt.c of the com…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 14, 2026
CVE-2026-54410 | debevv nanoMODBUS up to 1.23.0 MBAP recv_msg_header off-by-one (EUVD-2026-36661)

A vulnerability was found in debevv nanoMODBUS up to 1.23.0 . It has been rated as critical . This affects the function recv_msg_header of the component MBAP Handler . This manipulation causes off-by-…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 14, 2026
CVE-2026-54413 | driftregion iso14229 up to 0.9.0 iso14229.c Handle_0x27_SecurityAccess integer underflow (EUVD-2026-36664)

A vulnerability categorized as critical has been discovered in driftregion iso14229 up to 0.9.0 . This vulnerability affects the function Handle_0x27_SecurityAccess of the file iso14229.c . Such manip…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 14, 2026
CVE-2026-54411 | Linux-PAM up to 1.7.2 pam_userdb.c strncmp timing discrepancy (EUVD-2026-36662)

A vulnerability identified as problematic has been detected in Linux-PAM up to 1.7.2 . This issue affects the function strncmp of the file modules/pam_userdb/pam_userdb.c . Performing a manipulation r…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 14, 2026
CVE-2026-12202 | Intelliants Subrion CMS up to 4.0.3 Blocks Endpoint CSS class name cross site scripting

A vulnerability described as problematic has been identified in Intelliants Subrion CMS up to 4.0.3 . Affected by this issue is some unknown functionality of the component Blocks Endpoint . Such manip…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 14, 2026
CVE-2026-12203 | HKUDS AI-Trader up to 74caf996f78dcc0c657df8365c8544678a16e215 Research Export /api/research/agents.csv information disclosure (Issue 242)

A vulnerability classified as problematic has been found in HKUDS AI-Trader up to 74caf996f78dcc0c657df8365c8544678a16e215 . This affects an unknown part of the file /api/research/agents.csv of the co…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 14, 2026
CVE-2026-12206 | Grit42 Grit up to 0.11.0 data_table_entity.rb DataTableEntity sql injection

A vulnerability, which was classified as critical , has been found in Grit42 Grit up to 0.11.0 . This issue affects the function Grit::Assays::DataTableEntity of the file modules/assays/backend/app/mo…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 14, 2026
CVE-2026-12207 | medkey-org medkey up to fc09b7ba9441ff590b72d428d5380834216b09ed HTTP REST API PatientController.php actionGetPatientById ID resource injection

A vulnerability, which was classified as critical , was found in medkey-org medkey up to fc09b7ba9441ff590b72d428d5380834216b09ed . Impacted is the function actionGetPatientById of the file app\module…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 14, 2026
CVE-2026-12208 | jsonata-js jsonata up to 2.2.0 Function Binding Frame System src/jsonata.js createFrame prototype pollution

A vulnerability has been found in jsonata-js jsonata up to 2.2.0 and classified as critical . The affected element is the function createFrame of the file src/jsonata.js of the component Function Bind…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 14, 2026
CVE-2026-12209 | RubyLouvre avalon up to 2.2.10 Template Filter src/filters/index.js prototype pollution

A vulnerability was found in RubyLouvre avalon up to 2.2.10 and classified as critical . The impacted element is an unknown function of the file src/filters/index.js of the component Template Filter H…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 14, 2026
CVE-2026-12210 | universal-tool-calling-protocol python-utcp 1.1.0 utcp-gql/utcp-websocket server-side request forgery (Issue 86)

A vulnerability was found in universal-tool-calling-protocol python-utcp 1.1.0 . It has been classified as critical . This affects an unknown function of the component utcp-gql/utcp-websocket . Perfor…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 14, 2026
CVE-2026-12211 | Intelbras iNVU 7016 FT 3.004.00IB000.0.T Build 2025-09-26 Web Interface /RPC2_Loadfile/syslog/ path traversal

A vulnerability was found in Intelbras iNVU 7016 FT 3.004.00IB000.0.T Build 2025-09-26 . It has been declared as critical . This impacts an unknown function of the file /RPC2_Loadfile/syslog/ of the c…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 14, 2026
CVE-2026-12212 | hcengineering Huly Platform up to 0.7.0 RPC Interface operations.ts getMailboxSecret access control

A vulnerability was found in hcengineering Huly Platform up to 0.7.0 . It has been rated as critical . Affected is the function getMailboxSecret of the file server/account/src/operations.ts of the com…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 14, 2026
CVE-2026-12213 | hcengineering Huly Platform up to 0.7.0 User Information operations.ts getAccountInfo improper authorization

A vulnerability categorized as critical has been discovered in hcengineering Huly Platform up to 0.7.0 . Affected by this vulnerability is the function getAccountInfo of the file server/account/src/op…

VulDB Read →
⬡ Vulnerabilities & CVEs Jun 14, 2026
CVE-2026-11526 | RURBAN GD up to 2.85 on Perl open filename os command injection

A vulnerability identified as critical has been detected in RURBAN GD up to 2.85 on Perl. Affected by this issue is the function Open . This manipulation of the argument filename causes os command inj…

VulDB Read →
← Prev 93 / 453 Next →