Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

292 New today

64,923 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

351

Jun 10

245

Jun 11

336

Jun 12

Jun 13

Jun 14

443

Jun 15

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

285

Jun 23

Critical

High

Medium

Low

Latest

CVE CVSS 4.3

CVE-2026-34917_CVE-2026-34917

Low‑privileged session IDs generated for the web admin console could be reused in the XML‑RPC API, whose authentication is normally restricted to admin users. An attacker could leverage this to gain unauthorised access and exploit API‑level vulnerabilities. The session context...

CVE-2026-34917 Revive Adserver

Jun 23, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 8.8	CVE-2026-34916	CVE-2026-34916_CVE-2026-34916 A missing validation of user input when saving delivery limitations in Revive Adserver 6.0.6 and earlier could allow a low‑privileged user to use t...	Revive Adserver	Revive Adserver	Jun 23, 2026	CVE
MEDIUM 6.1	CVE-2026-34915	CVE-2026-34915_CVE-2026-34915 A missing sanitisation of user input in the zone-include.php script of Revive Adserver 6.0.6 and earlier could allow a low‑privileged user to explo...	Revive	Adserver	Jun 23, 2026	CVE
HIGH 8.3	CVE-2026-34914	CVE-2026-34914_CVE-2026-34914 A missing sanitisation of user input in the zone-include.php script of Revive Adserver 6.0.6 and earlier. A low‑privileged user could exploit the c...	Revive	Adserver	Jun 23, 2026	CVE
MEDIUM 4.3	CVE-2026-34913	CVE-2026-34913_CVE-2026-34913 A missing access control check when linking trackers to campaigns through the campaign-trackers.php script of Revive Adserver 6.0.6 and earlier cou...	Revive	Adserver	Jun 23, 2026	CVE
MEDIUM 4.3	CVE-2026-34912	CVE-2026-34912_CVE-2026-34912 A missing access control check when linking banners or campaigns to a zone through the zone-include.php script of Revive Adserver 6.0.6 and earlier...	Revive	Adserver	Jun 23, 2026	CVE
HIGH 8.8	CVE-2026-33760	Langflow: IDOR/BOLA in Monitor API — Missing Ownership Enforcement on 7 Endpoints_CVE-2026-33760 Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.0, Langflow's /api/v1/monitor router exposes 7 endpoint...	langflow-ai	langflow < 1.9.0	Jun 23, 2026	CVE
HIGH 7.5	CVE-2026-13007	Insecure Public Caching on REST API Endpoints in Tenable Identity Exposure_CVE-2026-13007 Tenable Identity Exposure contains multiple unauthenticated API endpoints under /w/api/* that expose sensitive application configuration data inclu...	tenable	Tenable Identity Exposure	Jun 23, 2026	CVE
HIGH 8.5	CVE-2026-12958	Arbitrary file write in Language Servers for AWS_CVE-2026-12958 Missing symlink validation in Language Servers for AWS may allow an arbitrary file write outside of the workspace trust boundary. This may occur wh...	Amazon Web Services	Language Servers for AWS	Jun 23, 2026	CVE
HIGH 8.5	CVE-2026-12957	Arbitrary Code Execution in Language Servers for AWS_CVE-2026-12957 Improper trust boundary enforcement in Language Servers for AWS before version 1.65.0 on all supported platforms may allow a for arbitrary code exe...	Amazon Web Services	Language Servers for AWS	Jun 23, 2026	CVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

CVE-2026-34917_CVE-2026-34917

Recent Advisories

CVE-2026-34916_CVE-2026-34916

CVE-2026-34915_CVE-2026-34915

CVE-2026-34914_CVE-2026-34914

CVE-2026-34913_CVE-2026-34913

CVE-2026-34912_CVE-2026-34912

Langflow: IDOR/BOLA in Monitor API — Missing Ownership Enforcement on 7 Endpoints_CVE-2026-33760

Insecure Public Caching on REST API Endpoints in Tenable Identity Exposure_CVE-2026-13007

Arbitrary file write in Language Servers for AWS_CVE-2026-12958

Arbitrary Code Execution in Language Servers for AWS_CVE-2026-12957

Protect Your Attack Surface with RedGem

Security Intelligence
Feed