Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

154 New today

62,182 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

May 31

417

Jun 1

295

Jun 2

151

Jun 3

354

Jun 4

517

Jun 5

109

Jun 6

Jun 7

255

Jun 8

658

Jun 9

351

Jun 10

245

Jun 11

336

Jun 12

Jun 13

Critical

High

Medium

Low

Latest

CVE CVSS 6.4

Canvas <= 2.5.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'tag' Block Attribute_CVE-2026-9629

The Canvas plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'tag' parameter in all versions up to, and including, 2.5.2 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with contributor-lev...

CVE-2026-9629 codesupplyco Canvas

Jun 13, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 6.4	CVE-2026-3297	Page Builder: Pagelayer – Drag and Drop website builder <= 2.0.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via Anchor Block_CVE-2026-3297 The Page Builder: Pagelayer – Drag and Drop website builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Anchor block ...	softaculous	Page Builder: Pagelayer – Drag and Drop website builder	Jun 13, 2026	CVE
MEDIUM 4.3	CVE-2026-2470	Pagelayer <= 2.0.9 - Incorrect Authorization to Authenticated (Contributor+) Mail Relay Configuration via 'contacts'_CVE-2026-2470 The Page Builder: Pagelayer – Drag and Drop website builder plugin for WordPress is vulnerable to Incorrect Authorization in all versions up to, an...	softaculous	Page Builder: Pagelayer – Drag and Drop website builder	Jun 13, 2026	CVE
HIGH 8.5	MS:CVE-2026-11824	SQLite before 3.53.2 Heap Buffer Overflow via FTS5 fts5ChunkIterate_MS:CVE-2026-11824 {“lastseen”:”2026-06-13T07:22:04″,”description”:””,”published”:”2026-06-11T08:01:...	N/A	N/A	Jun 11, 2026	MSCVE
HIGH 8.5	MS:CVE-2026-11822	SQLite before 3.53.2 Memory Corruption in FTS5 Extension_MS:CVE-2026-11822 {“lastseen”:”2026-06-13T07:22:04″,”description”:””,”published”:”2026-06-11T08:01:...	N/A	N/A	Jun 11, 2026	MSCVE
HIGH 8.2	MS:CVE-2026-10846	Insufficient verification that responses belong to a query_MS:CVE-2026-10846 {“lastseen”:”2026-06-13T07:22:04″,”description”:””,”published”:”2026-06-11T08:01:...	N/A	N/A	Jun 11, 2026	MSCVE
HIGH 7.5	MS:CVE-2026-52860	Vim: Arbitrary Code Execution via Python Omni-Completion_MS:CVE-2026-52860 {“lastseen”:”2026-06-13T07:22:04″,”description”:””,”published”:”2026-06-13T08:01:...	N/A	N/A	Jun 13, 2026	MSCVE
MEDIUM 6.9	MS:CVE-2026-52859	Vim: Out-of-bounds Read in Terminal Screen Snapshot_MS:CVE-2026-52859 {“lastseen”:”2026-06-13T07:22:04″,”description”:””,”published”:”2026-06-13T08:01:...	N/A	N/A	Jun 13, 2026	MSCVE
MEDIUM 5.1	MS:CVE-2026-47167	Vim: Vimscript Code Injection in cucumber filetype plugin via crafted step-definition regex_MS:CVE-2026-47167 {“lastseen”:”2026-06-13T07:22:04″,”description”:””,”published”:”2026-06-13T08:01:...	N/A	N/A	Jun 13, 2026	MSCVE
HIGH 8.8	MS:CVE-2026-47162	Vim: Vimscript Code Injection in netrw NetrwBookHistSave() via crafted directory name_MS:CVE-2026-47162 {“lastseen”:”2026-06-13T07:22:04″,”description”:””,”published”:”2026-06-13T08:01:...	N/A	N/A	Jun 13, 2026	MSCVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

Canvas <= 2.5.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'tag' Block Attribute_CVE-2026-9629

Recent Advisories

Page Builder: Pagelayer – Drag and Drop website builder <= 2.0.9 - Authenticated (Contributor+) Stored Cross-Site Scripting via Anchor Block_CVE-2026-3297

Pagelayer <= 2.0.9 - Incorrect Authorization to Authenticated (Contributor+) Mail Relay Configuration via 'contacts'_CVE-2026-2470

SQLite before 3.53.2 Heap Buffer Overflow via FTS5 fts5ChunkIterate_MS:CVE-2026-11824

SQLite before 3.53.2 Memory Corruption in FTS5 Extension_MS:CVE-2026-11822

Insufficient verification that responses belong to a query_MS:CVE-2026-10846

Vim: Arbitrary Code Execution via Python Omni-Completion_MS:CVE-2026-52860

Vim: Out-of-bounds Read in Terminal Screen Snapshot_MS:CVE-2026-52859

Vim: Vimscript Code Injection in cucumber filetype plugin via crafted step-definition regex_MS:CVE-2026-47167

Vim: Vimscript Code Injection in netrw NetrwBookHistSave() via crafted directory name_MS:CVE-2026-47162

Protect Your Attack Surface with RedGem

Security Intelligence
Feed