Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

140 New today

59,291 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

202

May 22

May 23

111

May 24

204

May 25

336

May 26

455

May 27

326

May 28

451

May 29

206

May 30

May 31

417

Jun 1

295

Jun 2

151

Jun 3

Jun 4

Critical

High

Medium

Low

Latest

PACKETSTORM CVSS 9.8

📄 MCPJam Inspector 1.4.2 Command Injection_PACKETSTORM:222614

This is an advanced Python proof of concept for CVE-2026-23744 demonstrating command injection through a vulnerable MCP API endpoint, leading to remote code execution and reverse shell access. The script supports multiple payload types, endpoint...

PACKETSTORM:222614

Jun 3, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
CRITICAL 9.8	7FE5A510-990A-	Exploit for Prototype Pollution in Cure53 Dompurify_7FE5A510-990A-5CCB-9427-6AA5D7B10937 No description provided...	N/A	N/A	Jun 3, 2026	GITHUBEXPLOIT
CRITICAL 9.8	393A755A-8E32-	Exploit for Stack-based Buffer Overflow in Microsoft_393A755A-8E32-59DA-B6AC-2DE1A68B3BB0 LongLogon · CVE-2026-41089 LongLogon is an unauthenticated, non-destructive precondition checker for CVE-2026-41089, a pre-auth stack buffer overfl...	N/A	N/A	Jun 3, 2026	GITHUBEXPLOIT
HIGH 8.8	472EEC26-F9C7-	coruna_472EEC26-F9C7-50CA-A4D6-2E1879CAC2F3 iOS Orchestrator — Coruna Web server, C2 listener, and interactive shell for the Coruna exploit chain CVE-2024-23222. Targets Safari on iOS 13–17.2...	N/A	N/A	Jun 3, 2026	GITHUBEXPLOIT
NONE	PACKETSTORM:222620	📄 Gogs Git Rebase Argument Injection / Remote Code Execution_PACKETSTORM:222620 This Metasploit module exploits an argument injection vulnerability in the pull request merge flow of Gogs versions less than or equal to 0.14.2 an...	N/A	N/A	Jun 3, 2026	PACKETSTORM
CRITICAL 9.8	93EFFA1D-01DF-	Exploit for Eval Injection in Geoserver_93EFFA1D-01DF-57C9-9826-139DBF9FD985 CVE-2024-36401 — Unauthenticated RCE in GeoServer A complete, reproducible study of CVE-2024-36401, an unauthenticated remote code execution flaw i...	N/A	N/A	Jun 3, 2026	GITHUBEXPLOIT
HIGH 8.8	CVE-2026-30650	CVE-2026-30650_CVE-2026-30650 A post-authentication remote buffer overflow vulnerability exists in the /cgi-bin/admin/eventtask.cgi endpoint of the admin interface of Vivotek FD...	Vivotek	Vivotek FD8136 FD8136-VVTK-0300a	Jun 2, 2026	CVE
MEDIUM 4.3	CVE-2026-10702	JIT miscompilation in the JavaScript Engine: JIT component_CVE-2026-10702 JIT miscompilation in the JavaScript Engine: JIT component. This vulnerability was fixed in Firefox 151.0.3.	Mozilla	Firefox 151.0.3	Jun 2, 2026	CVE
HIGH 7.5	CVE-2026-42504	Quadratic complexity in WordDecoder.DecodeHeader in mime_CVE-2026-42504 Decoding a maliciously-crafted MIME header containing many invalid encoded-words can consume excessive CPU.	Go standard library	mime	Jun 2, 2026	CVE
MEDIUM 6.1	CVE-2026-6657	CORS Origin Validation Bypass in jupyter-server_CVE-2026-6657 A vulnerability in jupyter-server versions 1.12.0 through 2.17.0 allows an attacker to bypass CORS origin validation when the `allow_origin_pat` co...	jupyter	jupyter/jupyter unspecified	Jun 3, 2026	CVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

📄 MCPJam Inspector 1.4.2 Command Injection_PACKETSTORM:222614

Recent Advisories

Exploit for Prototype Pollution in Cure53 Dompurify_7FE5A510-990A-5CCB-9427-6AA5D7B10937

Exploit for Stack-based Buffer Overflow in Microsoft_393A755A-8E32-59DA-B6AC-2DE1A68B3BB0

coruna_472EEC26-F9C7-50CA-A4D6-2E1879CAC2F3

📄 Gogs Git Rebase Argument Injection / Remote Code Execution_PACKETSTORM:222620

Exploit for Eval Injection in Geoserver_93EFFA1D-01DF-57C9-9826-139DBF9FD985

CVE-2026-30650_CVE-2026-30650

JIT miscompilation in the JavaScript Engine: JIT component_CVE-2026-10702

Quadratic complexity in WordDecoder.DecodeHeader in mime_CVE-2026-42504

CORS Origin Validation Bypass in jupyter-server_CVE-2026-6657

Protect Your Attack Surface with RedGem

Security Intelligence
Feed