Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

227 New today

64,835 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

351

Jun 10

245

Jun 11

336

Jun 12

Jun 13

Jun 14

443

Jun 15

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

197

Jun 23

Critical

High

Medium

Low

Latest

CVE CVSS 9.4

n8n: HTTP Request Node Pagination Prototype Pollution to RCE_CVE-2026-44789

n8n is an open source workflow automation platform. Prior to 1.123.43, 2.22.1, and 2.20.7, an authenticated user with permission to create or modify workflows could achieve global prototype pollution via an unvalidated pagination parameter in the HTTP Request node. Combined wi...

CVE-2026-44789 n8n-io n8n < 1.123.43

Jun 23, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 6.5	CVE-2026-42867	Langflow: Path Traversal in Knowledge Bases API via Creation Endpoint_CVE-2026-42867 Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.0, Langflow is vulnerable to Path Traversal in the Know...	langflow-ai	langflow < 1.9.0	Jun 23, 2026	CVE
MEDIUM 4.3	CVE-2026-34917	CVE-2026-34917_CVE-2026-34917 Low‑privileged session IDs generated for the web admin console could be reused in the XML‑RPC API, whose authentication is normally restricted to a...	Revive	Adserver	Jun 23, 2026	CVE
HIGH 8.8	CVE-2026-34916	CVE-2026-34916_CVE-2026-34916 A missing validation of user input when saving delivery limitations in Revive Adserver 6.0.6 and earlier could allow a low‑privileged user to use t...	Revive Adserver	Revive Adserver	Jun 23, 2026	CVE
MEDIUM 6.1	CVE-2026-34915	CVE-2026-34915_CVE-2026-34915 A missing sanitisation of user input in the zone-include.php script of Revive Adserver 6.0.6 and earlier could allow a low‑privileged user to explo...	Revive	Adserver	Jun 23, 2026	CVE
HIGH 8.3	CVE-2026-34914	CVE-2026-34914_CVE-2026-34914 A missing sanitisation of user input in the zone-include.php script of Revive Adserver 6.0.6 and earlier. A low‑privileged user could exploit the c...	Revive	Adserver	Jun 23, 2026	CVE
MEDIUM 4.3	CVE-2026-34913	CVE-2026-34913_CVE-2026-34913 A missing access control check when linking trackers to campaigns through the campaign-trackers.php script of Revive Adserver 6.0.6 and earlier cou...	Revive	Adserver	Jun 23, 2026	CVE
MEDIUM 4.3	CVE-2026-34912	CVE-2026-34912_CVE-2026-34912 A missing access control check when linking banners or campaigns to a zone through the zone-include.php script of Revive Adserver 6.0.6 and earlier...	Revive	Adserver	Jun 23, 2026	CVE
HIGH 8.8	CVE-2026-33760	Langflow: IDOR/BOLA in Monitor API — Missing Ownership Enforcement on 7 Endpoints_CVE-2026-33760 Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.0, Langflow's /api/v1/monitor router exposes 7 endpoint...	langflow-ai	langflow < 1.9.0	Jun 23, 2026	CVE
HIGH 7.5	CVE-2026-13007	Insecure Public Caching on REST API Endpoints in Tenable Identity Exposure_CVE-2026-13007 Tenable Identity Exposure contains multiple unauthenticated API endpoints under /w/api/* that expose sensitive application configuration data inclu...	tenable	Tenable Identity Exposure	Jun 23, 2026	CVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

n8n: HTTP Request Node Pagination Prototype Pollution to RCE_CVE-2026-44789

Recent Advisories

Langflow: Path Traversal in Knowledge Bases API via Creation Endpoint_CVE-2026-42867

CVE-2026-34917_CVE-2026-34917

CVE-2026-34916_CVE-2026-34916

CVE-2026-34915_CVE-2026-34915

CVE-2026-34914_CVE-2026-34914

CVE-2026-34913_CVE-2026-34913

CVE-2026-34912_CVE-2026-34912

Langflow: IDOR/BOLA in Monitor API — Missing Ownership Enforcement on 7 Endpoints_CVE-2026-33760

Insecure Public Caching on REST API Endpoints in Tenable Identity Exposure_CVE-2026-13007

Protect Your Attack Surface with RedGem

Security Intelligence
Feed