Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

293 New today

66,401 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

294

Jun 23

355

Jun 24

376

Jun 25

386

Jun 26

Jun 27

299

Jun 28

Jun 29

Critical

High

Medium

Low

Latest

WIRED

Security News This Week: LastPass Users Had Their Data Stolen—Again_WIRED:8D5A42321F2214DFBCD37035AC8F205A

Plus: Former national security advisor John Bolton pleads guilty in classified-materials case, Microsoft helps take down major infostealer infrastructure, and more.

WIRED:8D5A42321F2214DFBCD37035AC8F205A

Jun 27, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	THN:84222DE80E8...	OpenAI Previews GPT-5.6 Sol With Restricted Access and Stronger Cyber Safeguards_THN:84222DE80E842511E06F77D1F93FE175 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiweorWxmIvPG8uskOe44fLur9F5OJvqVdFLV1ejFqQozXruk70nzMhRaY58n4BuMhW1sbsdSvhTrlSxM8U5S...	N/A	N/A	Jun 27, 2026	THN
MEDIUM 5.3	CED4BCD6-8E56-	Exploit for CVE-2026-12432_CED4BCD6-8E56-5FF9-A68C-174EFA9EBB61 CVE-2026-12432: WP Full Stripe Free = 8.4.4 - Published: June 26, 2026 - Last Updated: June 27, 2026 - Researcher: Netwurm - VTDR e.V.i.G. Vulnerab...	N/A	N/A	Jun 27, 2026	GITHUBEXPLOIT
CRITICAL 10	7F7749F6-023B-	Exploit for Authentication Bypass Using an Alternate Path or Channel in Traefik_7F7749F6-023B-5070-9A69-60448F7E541E CVE-2026-48020 — Traefik StripPrefix Route-Level Auth Bypass PoC A self-contained proof of concept for CVE-2026-48020, a route-level authentication...	N/A	N/A	Jun 27, 2026	GITHUBEXPLOIT
NONE	73764E05-FE56-	xss-vulnerability-scanner_73764E05-FE56-54D5-88DB-FC538242C5EB Application Security: Automated Reflected XSS Web Fuzzer 📝 Description This application security testing utility evaluates web forms against Refle...	N/A	N/A	Jun 27, 2026	GITHUBEXPLOIT
MEDIUM 6.1	CVE-2026-13245	MaxButtons <= 9.8.5 - Reflected Cross-Site Scripting via 'view' Parameter_CVE-2026-13245 The MaxButtons – Create buttons plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'view' parameter in all versions up to...	maxfoundry	MaxButtons – Create buttons	Jun 27, 2026	CVE
MEDIUM 5.3	CVE-2026-12404	NEX-Forms <= 9.2.2 - Missing Authorization to Unauthenticated Sensitive Information Disclosure via CSVExport Class_CVE-2026-12404 The NEX-Forms – Ultimate Forms Plugin for WordPress plugin for WordPress is vulnerable to authorization bypass in all versions up to, and including...	webaways	NEX-Forms – Ultimate Forms Plugin for WordPress	Jun 27, 2026	CVE
MEDIUM 5.3	CVE-2026-9242	RegistrationMagic <= 6.0.8.6 - Authenticated (Subscriber+) Authentication Bypass via Forged PayPal IPN Request_CVE-2026-9242 The RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login plugin for WordPress is vulnerable to Authentication ...	metagauss	RegistrationMagic – Custom Registration Forms, User Registration, Payment, and User Login	Jun 27, 2026	CVE
MEDIUM 4.3	CVE-2026-9233	Quiz and Survey Master (QSM) <= 11.1.4 - Missing Authorization to Authenticated (Contributor+) Arbitrary Modification via qsm_insert_quiz_template AJAX Action_CVE-2026-9233 The Quiz and Survey Master (QSM) – Easy Quiz and Survey Maker plugin for WordPress is vulnerable to authorization bypass in all versions up to, and...	expresstech	Quiz and Survey Master (QSM) – Easy Quiz and Survey Maker	Jun 27, 2026	CVE
MEDIUM 6.5	CVE-2026-3462	Frisbii Pay <= 1.8.9 - Missing Authorization to Authenticated (Subscriber+) Payment Token Modification_CVE-2026-3462 The Frisbii Pay plugin for WordPress is vulnerable to unauthorized modification of data due to missing capability checks on the 'upload_csv' and 'p...	reepaydenmark	Frisbii Pay	Jun 27, 2026	CVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

Security News This Week: LastPass Users Had Their Data Stolen—Again_WIRED:8D5A42321F2214DFBCD37035AC8F205A

Recent Advisories

OpenAI Previews GPT-5.6 Sol With Restricted Access and Stronger Cyber Safeguards_THN:84222DE80E842511E06F77D1F93FE175

Exploit for CVE-2026-12432_CED4BCD6-8E56-5FF9-A68C-174EFA9EBB61

Exploit for Authentication Bypass Using an Alternate Path or Channel in Traefik_7F7749F6-023B-5070-9A69-60448F7E541E

xss-vulnerability-scanner_73764E05-FE56-54D5-88DB-FC538242C5EB

MaxButtons <= 9.8.5 - Reflected Cross-Site Scripting via 'view' Parameter_CVE-2026-13245

NEX-Forms <= 9.2.2 - Missing Authorization to Unauthenticated Sensitive Information Disclosure via CSVExport Class_CVE-2026-12404

RegistrationMagic <= 6.0.8.6 - Authenticated (Subscriber+) Authentication Bypass via Forged PayPal IPN Request_CVE-2026-9242

Quiz and Survey Master (QSM) <= 11.1.4 - Missing Authorization to Authenticated (Contributor+) Arbitrary Modification via qsm_insert_quiz_template AJAX Action_CVE-2026-9233

Frisbii Pay <= 1.8.9 - Missing Authorization to Authenticated (Subscriber+) Payment Token Modification_CVE-2026-3462

Protect Your Attack Surface with RedGem

Security Intelligence
Feed