Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

319 New today

65,904 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

Jun 13

Jun 14

443

Jun 15

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

294

Jun 23

355

Jun 24

376

Jun 25

241

Jun 26

Critical

High

Medium

Low

Latest

CVE CVSS 8.3

Unauthenticated Server-Side Request Forgery via WS-Addressing in WSO2 API Manager_CVE-2026-2053

The WSO2 API Manager's message flow component, when processing WS-Addressing headers, does not sufficiently validate or restrict user-controlled input within these headers. This omission allows an attacker to manipulate WS-Addressing headers to specify arbitrary destinations f...

CVE-2026-2053 WSO2 WSO2 API Manager

Jun 26, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 6.5	CVE-2026-1869	User Registration & Membership <= 5.2.0 - Missing Authorization to Unauthenticated Payment Bypass_CVE-2026-1869 The User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login Bu...	wpeverest	User Registration & Membership – Free & Paid Memberships, Subscriptions, Content Restriction, User Profile, Custom User Registration & Login Builder	Jun 26, 2026	CVE
MEDIUM 5.5	MS:CVE-2026-4367	Libxpm: libxpm: denial of service via out-of-bounds read in xpm file parsing_MS:CVE-2026-4367 {“lastseen”:”2026-06-26T07:47:53″,”description”:””,”published”:”2026-06-25T08:03:...	N/A	N/A	Jun 25, 2026	MSCVE
HIGH 8.8	THN:3AF4D7A4A25...	Google Details Turla’s New STOCKSTAY Backdoor Used in Ukraine Espionage Attacks_THN:3AF4D7A4A2521E78D5A57F5ED9C21560 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi9SthtlfUvEkaX0iZanYdYTAOV5hgm44yCwHu_3GCaoa11rO-GkO9oc0_qN9JGw2n86dsEsN_sdaYt2ra_4I...	N/A	N/A	Jun 26, 2026	THN
CRITICAL 9.8	BECF4517-38B6-	Exploit for Authentication Bypass Using an Alternate Path or Channel in Nvidia Triton_Inference_Server_BECF4517-38B6-5DC3-97A0-FDF34F1763C0 CVE-2026-24207 / 24206 — NVIDIA Triton Inference Server SageMaker & Vertex AI auth bypass Unauthenticated attackers can reach the model-management ...	N/A	N/A	Jun 26, 2026	GITHUBEXPLOIT
CRITICAL 9.8	8C0976A0-3F8E-	Exploit for Authentication Bypass Using an Alternate Path or Channel in Nvidia Triton_Inference_Server_8C0976A0-3F8E-508D-8CD5-6A5A5D01F118 CVE-2026-24207 / 24206 — NVIDIA Triton Inference Server SageMaker & Vertex AI auth bypass Unauthenticated attackers can reach the model-management ...	N/A	N/A	Jun 26, 2026	GITHUBEXPLOIT
HIGH 8.8	75D8AF60-1BE7-	Exploit for Use After Free in Google Chrome_75D8AF60-1BE7-5841-A5AC-CC59A30D14EB CVE-2026-13036 — Use-After-Free in Blink WidgetBase::UpdateSurfaceAndScreenInfo A use-after-free vulnerability in Google Chrome's Blink rendering e...	N/A	N/A	Jun 26, 2026	GITHUBEXPLOIT
HIGH 8.8	0AEC5CEA-1ACD-	Exploit for Path Traversal in Rarlab Winrar_0AEC5CEA-1ACD-55C4-80FC-250F80922CE5 Amaranth Project A multi-stage backdoor implantation attack chain is implemented using CVE-2025-8088 WinRAR path traversal vulnerability, ≤ 7.11. F...	N/A	N/A	Jun 26, 2026	GITHUBEXPLOIT
NONE	D5ADB7F6-7152-	offensive-craft_D5ADB7F6-7152-5D68-81DA-EFE5FF60F5AF offensive-craft 🛠️ A forge for offensive security research — exploit development, tooling, tradecraft, and proof-of-concept work across the red tea...	N/A	N/A	Jun 26, 2026	GITHUBEXPLOIT
HIGH 8.5	CVE-2026-8797	CVE-2026-8797_CVE-2026-8797 An access control deficiency vulnerability exists in ExpressUpdate Agent for Windows. If a malicious user gains access to the product, arbitrary co...	NEC Corporation	ExpressUpdate Agent for Windows 3.24 and prior	Jun 26, 2026	CVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

Unauthenticated Server-Side Request Forgery via WS-Addressing in WSO2 API Manager_CVE-2026-2053

Recent Advisories

User Registration & Membership <= 5.2.0 - Missing Authorization to Unauthenticated Payment Bypass_CVE-2026-1869

Libxpm: libxpm: denial of service via out-of-bounds read in xpm file parsing_MS:CVE-2026-4367

Google Details Turla’s New STOCKSTAY Backdoor Used in Ukraine Espionage Attacks_THN:3AF4D7A4A2521E78D5A57F5ED9C21560

Exploit for Authentication Bypass Using an Alternate Path or Channel in Nvidia Triton_Inference_Server_BECF4517-38B6-5DC3-97A0-FDF34F1763C0

Exploit for Authentication Bypass Using an Alternate Path or Channel in Nvidia Triton_Inference_Server_8C0976A0-3F8E-508D-8CD5-6A5A5D01F118

Exploit for Use After Free in Google Chrome_75D8AF60-1BE7-5841-A5AC-CC59A30D14EB

Exploit for Path Traversal in Rarlab Winrar_0AEC5CEA-1ACD-55C4-80FC-250F80922CE5

offensive-craft_D5ADB7F6-7152-5D68-81DA-EFE5FF60F5AF

CVE-2026-8797_CVE-2026-8797

Protect Your Attack Surface with RedGem

Security Intelligence
Feed