Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

358 New today

66,066 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

Jun 14

443

Jun 15

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

294

Jun 23

355

Jun 24

376

Jun 25

386

Jun 26

Jun 27

Critical

High

Medium

Low

Latest

CVE CVSS 5.3

WordPress Booking and Rental Manager plugin <= 2.7.1 - Broken Access Control vulnerability_CVE-2026-57660

Unauthenticated Broken Access Control in Booking and Rental Manager <= 2.7.1 versions.

CVE-2026-57660 magepeopleteam Booking and Rental Manager n/a

Jun 26, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 8.8	CVE-2026-57659	WordPress Paid Memberships Pro – Add Member From Admin plugin <= 0.7.2 - Cross Site Request Forgery (CSRF) vulnerability_CVE-2026-57659 Unauthenticated Cross Site Request Forgery (CSRF) in Paid Memberships Pro - Add Member From Admin	Stranger Studios	Paid Memberships Pro - Add Member From Admin 0.7.2	Jun 26, 2026	CVE
CRITICAL 9.1	CVE-2026-57658	WordPress TemplateSpare plugin <= 4.2.0 - Arbitrary File Upload vulnerability_CVE-2026-57658 Administrator Arbitrary File Upload in TemplateSpare	Templatespare	TemplateSpare n/a	Jun 26, 2026	CVE
MEDIUM 4.3	CVE-2026-57657	WordPress Gmail SMTP plugin <= 1.2.3.19 - Cross Site Request Forgery (CSRF) vulnerability_CVE-2026-57657 Unauthenticated Cross Site Request Forgery (CSRF) in Gmail SMTP	Noor Alam	Gmail SMTP n/a	Jun 26, 2026	CVE
MEDIUM 5.9	CVE-2026-57656	WordPress Hester Core plugin <= 1.1.8 - Cross Site Scripting (XSS) vulnerability_CVE-2026-57656 Author Cross Site Scripting (XSS) in Hester Core	peregrinethemes	Hester Core n/a	Jun 26, 2026	CVE
HIGH 8.2	CVE-2026-57655	WordPress Child theme Wizard plugin <= 1.4 - Cross Site Request Forgery (CSRF) vulnerability_CVE-2026-57655 Unauthenticated Cross Site Request Forgery (CSRF) in Child Theme Wizard	Jay Versluis	Child Theme Wizard n/a	Jun 26, 2026	CVE
MEDIUM 6.5	CVE-2026-57654	WordPress Affiliates Manager plugin <= 2.9.49 - Broken Access Control vulnerability_CVE-2026-57654 Affiliate Broken Access Control in Affiliates Manager	wp.insider	Affiliates Manager n/a	Jun 26, 2026	CVE
HIGH 8.5	CVE-2026-57653	WordPress WP Job Portal plugin <= 2.5.2 - SQL Injection vulnerability_CVE-2026-57653 Contributor SQL Injection in WP Job Portal	wpjobportal	WP Job Portal n/a	Jun 26, 2026	CVE
MEDIUM 5.3	CVE-2026-57652	WordPress JS Help Desk plugin <= 3.1.0 - Insecure Direct Object References (IDOR) vulnerability_CVE-2026-57652 Unauthenticated Insecure Direct Object References (IDOR) in JS Help Desk	JoomSky	JS Help Desk n/a	Jun 26, 2026	CVE
MEDIUM 6.5	CVE-2026-57651	WordPress Ghost Kit plugin <= 3.6.0 - Cross Site Scripting (XSS) vulnerability_CVE-2026-57651 Contributor Cross Site Scripting (XSS) in Ghost Kit	nK	Ghost Kit n/a	Jun 26, 2026	CVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

WordPress Booking and Rental Manager plugin <= 2.7.1 - Broken Access Control vulnerability_CVE-2026-57660

Recent Advisories

WordPress Paid Memberships Pro – Add Member From Admin plugin <= 0.7.2 - Cross Site Request Forgery (CSRF) vulnerability_CVE-2026-57659

WordPress TemplateSpare plugin <= 4.2.0 - Arbitrary File Upload vulnerability_CVE-2026-57658

WordPress Gmail SMTP plugin <= 1.2.3.19 - Cross Site Request Forgery (CSRF) vulnerability_CVE-2026-57657

WordPress Hester Core plugin <= 1.1.8 - Cross Site Scripting (XSS) vulnerability_CVE-2026-57656

WordPress Child theme Wizard plugin <= 1.4 - Cross Site Request Forgery (CSRF) vulnerability_CVE-2026-57655

WordPress Affiliates Manager plugin <= 2.9.49 - Broken Access Control vulnerability_CVE-2026-57654

WordPress WP Job Portal plugin <= 2.5.2 - SQL Injection vulnerability_CVE-2026-57653

WordPress JS Help Desk plugin <= 3.1.0 - Insecure Direct Object References (IDOR) vulnerability_CVE-2026-57652

WordPress Ghost Kit plugin <= 3.6.0 - Cross Site Scripting (XSS) vulnerability_CVE-2026-57651

Protect Your Attack Surface with RedGem

Security Intelligence
Feed