Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

218 New today

59,509 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

May 23

111

May 24

204

May 25

336

May 26

455

May 27

326

May 28

451

May 29

206

May 30

May 31

417

Jun 1

295

Jun 2

151

Jun 3

225

Jun 4

Jun 5

Critical

High

Medium

Low

Latest

CVE CVSS 5.3

mjperpinosa stumasy add_post.php unrestricted upload_CVE-2026-10806

A vulnerability was found in mjperpinosa stumasy. The affected element is an unknown function of the file application/PHP/objects/updates/add_post.php. Performing a manipulation of the argument up_file_to_post results in unrestricted upload. The attack may be initiated remotel...

CVE-2026-10806 mjperpinosa stumasy 25d695901fbb586bf184b8ba73456d8e5311656c

Jun 4, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
LOW 3.3	CVE-2025-62338	The HCL BigFix Cloud Lifecycle Management is affected by Lack of Input Validation._CVE-2025-62338 The HCL BigFix Cloud Lifecycle Management is affected by Lack Of Input Validation. It may leads to an information exposure vulnerability. This low-...	HCL	BigFix Cloud Lifecycle Management 10.9.1 and 10.9.2	Jun 4, 2026	CVE
HIGH 8.1	CVE-2025-59874	HCL Hive Telco Observability is affected by a Required directives missing from the CSP ._CVE-2025-59874 HCL Hive Telco Observability is affected by a Required directives missing from the CSP issue is detected in keycloak component of the web applicat...	HCL	Hive 1.0	Jun 4, 2026	CVE
HIGH 7.5	CVE-2025-46638	CVE-2025-46638_CVE-2025-46638 Dell BSAFE SSL-J contains an allocation of resources without limits or throttling vulnerability. An unauthenticated remote attacker could potential...	Dell	BSAFE SSL-J	Jun 4, 2026	CVE
MEDIUM 5.3	CVE-2026-47707	Strawberry GraphQL’s Bypass of MaxAliasesLimiter via Fragment Spreads leading to GraphQL Alias Amplification_CVE-2026-47707 Strawberry GraphQL is a library for creating GraphQL APIs. In versions 0.172.0 through0.315.6, the MaxAliasesLimiter extension in Strawberry fails ...	strawberry-graphql	strawberry >= 0.172.0, < 0.315.7	Jun 4, 2026	CVE
MEDIUM 5.3	CVE-2026-47706	Strawberry GraphQL has a Circular Fragment Reference DOS_CVE-2026-47706 Strawberry GraphQL is a library for creating GraphQL APIs. In versions 0.71.0 through 0.315.6, the QueryDepthLimiter extension is vulnerable to an ...	strawberry-graphql	strawberry >= 0.71.0, < 0.315.7	Jun 4, 2026	CVE
LOW 3.1	CVE-2026-45739	Strawberry GraphQL: Default GraphiQL may expose HTTP headers in URLs_CVE-2026-45739 Strawberry GraphQL is a library for creating GraphQL APIs. In versions 0.288.4 through 0.315.3, Strawberry's bundled GraphiQL template wrote values...	strawberry-graphql	strawberry >= 0.288.4, < 0.315.4	Jun 4, 2026	CVE
HIGH 8.9	CVE-2026-41065	Tautulli Vulnerable to Unauthenticated/Authenticated Remote Code Execution via Newsletter Custom Template Directory_CVE-2026-41065 Tautulli is a Python based monitoring and tracking tool for Plex Media Server. Versions prior to 2.17.1 are vulnerable to remote code execution via...	Tautulli	Tautulli < 2.17.1	Jun 4, 2026	CVE
HIGH 7.5	CVE-2026-28318	SolarWinds Serv-U Unauthenticated Denial of Service Vulnerability_CVE-2026-28318 SolarWinds Serv-U is susceptible to specially crafted POST requests that crash the Serv-U service without authentication using Content-Encoding: de...	SolarWinds	Serv-U 15.5.4 and previous versions	Jun 4, 2026	CVE
MEDIUM 5.3	CVE-2026-10864	MISP Dashboard widget field selection may expose restricted user and organisation data_CVE-2026-10864 A vulnerability in the MISP dashboard widgets allowed an authenticated user to manipulate the fields option and influence which fields were returne...	misp	misp	Jun 4, 2026	CVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

mjperpinosa stumasy add_post.php unrestricted upload_CVE-2026-10806

Recent Advisories

The HCL BigFix Cloud Lifecycle Management is affected by Lack of Input Validation._CVE-2025-62338

HCL Hive Telco Observability is affected by a Required directives missing from the CSP ._CVE-2025-59874

CVE-2025-46638_CVE-2025-46638

Strawberry GraphQL’s Bypass of MaxAliasesLimiter via Fragment Spreads leading to GraphQL Alias Amplification_CVE-2026-47707

Strawberry GraphQL has a Circular Fragment Reference DOS_CVE-2026-47706

Strawberry GraphQL: Default GraphiQL may expose HTTP headers in URLs_CVE-2026-45739

Tautulli Vulnerable to Unauthenticated/Authenticated Remote Code Execution via Newsletter Custom Template Directory_CVE-2026-41065

SolarWinds Serv-U Unauthenticated Denial of Service Vulnerability_CVE-2026-28318

MISP Dashboard widget field selection may expose restricted user and organisation data_CVE-2026-10864

Protect Your Attack Surface with RedGem

Security Intelligence
Feed