Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

207 New today
66,902 Total advisories
Live Monitoring

Daily Security Trends (Last 14 Days)

464
Jun 17
3
Jun 18
352
Jun 19
56
Jun 20
104
Jun 21
317
Jun 22
294
Jun 23
355
Jun 24
376
Jun 25
386
Jun 26
53
Jun 27
318
Jun 28
284
Jun 29
198
Jun 30
Critical
High
Medium
Low
Latest
CVE CVSS 6

Snowflake CLI SQL Injection Through Improper Neutralization of Parameters in Secret Creation and SPCS Service Log Commands_CVE-2026-13752

Improper neutralization of parameters in Snowflake CLI versions prior to 3.19 allowed unintended SQL execution. An attacker could exploit this by supplying crafted values to vulnerable command paths, causing Snowflake CLI to execute unintended SQL in the context of the user’s ...

CVE-2026-13752 Snowflake Snowflake CLI 1.1.0
Read analysis

Recent Advisories

Severity ID Title Vendor Product Date Type
MEDIUM 4.1 CVE-2026-13751

Snowflake CLI Server-Side Request Forgery via Arbitrary URL Fetch in !source/!load_CVE-2026-13751

Improper handling of untrusted remote references in Snowflake CLI versions prior to 3.19 allowed server-side request forgery. The SQL statement rea...

Snowflake Snowflake CLI 3.6.0 CVE
LOW 2.3 CVE-2026-13591

DeepMyst Mysti Contact Tracking ChannelBridge.ts _isTrackedConversation improper authorization_CVE-2026-13591

A weakness has been identified in DeepMyst Mysti 0.4.0. Affected is the function _isTrackedConversation of the file src/managers/ChannelBridge.ts o...

DeepMyst Mysti 0.4.0 CVE
MEDIUM 6.3 CVE-2026-13590

seladb PcapPlusPlus Modbus Protocol ModbusLayer.h getLength heap-based overflow_CVE-2026-13590

A security flaw has been discovered in seladb PcapPlusPlus 25.05. This impacts the function pcpp::ModbusLayer::getLength in the library Packet++/he...

seladb PcapPlusPlus 25.05 CVE
MEDIUM 6.3 CVE-2026-13589

seladb PcapPlusPlus Telnet Subnegotiation Packet TelnetLayer.cpp getSubCommand heap-based overflow_CVE-2026-13589

A vulnerability was identified in seladb PcapPlusPlus 25.05. This affects the function pcpp::TelnetLayer::getSubCommand of the file Packet++/src/Te...

seladb PcapPlusPlus 25.05 CVE
MEDIUM 6.3 CVE-2026-13588

seladb PcapPlusPlus TLS Hello SSLHandshake.cpp getHandshakeVersion heap-based overflow_CVE-2026-13588

A vulnerability was determined in seladb PcapPlusPlus 25.05. The impacted element is the function pcpp::SSLClientHelloMessage::getHandshakeVersion ...

seladb PcapPlusPlus 25.05 CVE
HIGH 7.3 CVE-2026-12912

Libtiff: libtiff: heap-based buffer overflow via crafted pixarlog-compressed tiff image_CVE-2026-12912

A flaw was found in libtiff. A remote attacker could exploit this vulnerability by providing a specially crafted PixarLog-compressed TIFF image. Th...

Red Hat Red Hat Enterprise Linux 10 CVE
MEDIUM 5.3 PACKETSTORM:224503

πŸ“„ WordPress WP Full Stripe Free 8.4.3 Missing Authorization_PACKETSTORM:224503

The WP Full Stripe Free plugin for WordPress is vulnerable to missing authorization in versions up to, and including, 8.4.3 via the wpfsupdatefaile...

N/A N/A PACKETSTORM
CRITICAL 9.8 7494D4F4-A649-

Exploit for SQL Injection in Drupal_7494D4F4-A649-54A0-92A2-96DC1D8B29D1

CVE-2026-9082 Drupal PostgreSQL SQLi to RCE This repository contains a local lab and a short exploit for the Drupal JSON:API PostgreSQL SQL injecti...

N/A N/A GITHUBEXPLOIT
HIGH 8.8 5E9A2406-CBCB-

Exploit for CVE-2026-43503_5E9A2406-CBCB-52D3-84A7-1C3505E7F2B4

CVE-2026-43503 DirtyClone - PoC - SecurewithUmer POC of DirtyClone β€” a Linux kernel local privilege escalation vulnerability. This repository conta...

N/A N/A GITHUBEXPLOIT