Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

296 New today

65,460 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

336

Jun 12

Jun 13

Jun 14

443

Jun 15

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

294

Jun 23

355

Jun 24

173

Jun 25

Critical

High

Medium

Low

Latest

CVE CVSS 7.5

CVE-2025-61028_CVE-2025-61028

An issue in the time_t_to_dt component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.

CVE-2025-61028 n/a n/a n/a

Jun 23, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 5.5	CVE-2025-60468	CVE-2025-60468_CVE-2025-60468 GPAC Multimedia Open Source Project GPAC Project/MP4Box 2.5-DEV-rev1593-gfe88c3545-master is affected by: Buffer Overflow. The impact is: cause a d...	n/a	n/a n/a	Jun 24, 2026	CVE
HIGH 7.5	CVE-2025-60474	CVE-2025-60474_CVE-2025-60474 A buffer overflow in the gf_media_import function (/media_tools/av_parsers.c) of GPAC Project/MP4Box before 26.02.0 allows attackers to cause a Den...	n/a	n/a n/a	Jun 24, 2026	CVE
HIGH 7.5	CVE-2025-60467	CVE-2025-60467_CVE-2025-60467 A use-after-free in the gf_filter_pid_inst_swap_delete_task function (/filter_core/filter_pid.c) of GPAC Project/MP4Box before 26.02.0 allows attac...	n/a	n/a n/a	Jun 24, 2026	CVE
MEDIUM 5.5	CVE-2025-60473	CVE-2025-60473_CVE-2025-60473 A NULL pointer dereference in the gf_filter_in_parent_chain function (/filter_core/filter_pid.c) of GPAC Project/MP4Box before 26.02.0 allows attac...	n/a	n/a n/a	Jun 24, 2026	CVE
MEDIUM 5	CVE-2025-60466	CVE-2025-60466_CVE-2025-60466 A use-after-free in the gf_filter_pid_get_packet function (/filter_core/filter_pid.c) of GPAC Project/MP4Box before 26.02.0 allows attackers to cau...	n/a	n/a n/a	Jun 24, 2026	CVE
HIGH 7.5	CVE-2026-9702	InPost PL < 1.9.1 - Unauthenticated WooCommerce Order Parcel-Locker Hijacking_CVE-2026-9702 The InPost PL WordPress plugin before 1.9.1 does not verify that the request originates from the legitimate buyer before allowing the WooCommerce o...	Unknown	InPost PL	Jun 25, 2026	CVE
HIGH 8.8	CVE-2026-5305	Email Address Encoder (Free < 1.0.25, Premium < 0.3.12) - Unauthenticated Stored XSS_CVE-2026-5305 The Email Address Encoder WordPress plugin before 1.0.25, email-encoder-premium WordPress plugin before 0.3.12 does not properly handle email repla...	Unknown	Email Address Encoder	Jun 25, 2026	CVE
MEDIUM 6.5	CVE-2026-10824	Masteriyo LMS < 2.2.1 - Unauthenticated Course Progress Disclosure and Deletion_CVE-2026-10824 The Masteriyo LMS WordPress plugin before 2.2.1 does not perform authorization checks in a course-progress REST API controller, allowing unauthent...	Unknown	Masteriyo LMS	Jun 25, 2026	CVE
LOW 3.7	CVE-2026-42004	EDNS options smuggling_CVE-2026-42004 An attacker can send a crafted EDNS OPT record that will be ignored by DNSdist’s filtering rules, but will be rewritten as a valid OPT record when ...	PowerDNS	DNSdist 1.9.0	Jun 25, 2026	CVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

CVE-2025-61028_CVE-2025-61028

Recent Advisories

CVE-2025-60468_CVE-2025-60468

CVE-2025-60474_CVE-2025-60474

CVE-2025-60467_CVE-2025-60467

CVE-2025-60473_CVE-2025-60473

CVE-2025-60466_CVE-2025-60466

InPost PL < 1.9.1 - Unauthenticated WooCommerce Order Parcel-Locker Hijacking_CVE-2026-9702

Email Address Encoder (Free < 1.0.25, Premium < 0.3.12) - Unauthenticated Stored XSS_CVE-2026-5305

Masteriyo LMS < 2.2.1 - Unauthenticated Course Progress Disclosure and Deletion_CVE-2026-10824

EDNS options smuggling_CVE-2026-42004

Protect Your Attack Surface with RedGem

Security Intelligence
Feed