Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

287 New today

64,643 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

351

Jun 10

245

Jun 11

336

Jun 12

Jun 13

Jun 14

443

Jun 15

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

Jun 23

Critical

High

Medium

Low

Latest

CVE CVSS 4.8

Libsoup: incomplete fix for cve-2026-2443: range suffix overflow in libsoup soupserver_CVE-2026-12549

The fix for CVE-2026-2443 was regressed by a subsequent rework commit that replaced specific overflow checks with a general signed comparison. When a client sends a Range request with a suffix length exceeding the content size, the resulting negative start value is not properl...

CVE-2026-12549 Red Hat Red Hat Enterprise Linux 10

Jun 22, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 6.1	CVE-2026-12479	Path Traversal in keras-team/keras_CVE-2026-12479 A path traversal vulnerability exists in keras-team/keras version 3.14.0, specifically in the `DiskIOStore.make` method within the Keras 3 model sa...	keras-team	keras-team/keras unspecified	Jun 22, 2026	CVE
MEDIUM 4.8	CVE-2026-11943	Akaunting 3.1.21 – Authenticated stored XSS in document timeline_CVE-2026-11943 Akaunting 3.1.21 contains an authenticated stored cross-site scripting vulnerability in the document timeline shown on invoice and bill detail page...	Akaunting	Akaunting 3.1.21	Jun 22, 2026	CVE
MEDIUM 4.8	CVE-2026-11942	Akaunting 3.1.21 – Stored XSS in delete confirmation modal_CVE-2026-11942 Akaunting 3.1.21 contains an authenticated stored cross-site scripting vulnerability in the reusable delete confirmation flow. A user with permissi...	Akaunting	Akaunting 3.1.21	Jun 22, 2026	CVE
MEDIUM 5.4	CVE-2026-11372	IBM TRIRIGA Cross-Site Scripting Vulnerability_CVE-2026-11372 IBM TRIRIGA Application Platform 5.0.2 through 5.0.3 is vulnerable to cross-site scripting. This vulnerability allows an authenticated user to embe...	IBM	TRIRIGA Application Platform 5.0.2	Jun 22, 2026	CVE
NONE	THN:6EDDB510298...	29-Year-Old Squid Proxy Bug ‘Squidbleed’ Can Leak Cleartext HTTP Requests_THN:6EDDB51029888D4C2E2682D0407BD7BC ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEiA4IfKMjQxVhpOYdrcCC4ty0vlGBDg_qCZuuvSTvyVWXYPXQlli7qyCZkPdHHuGJp-HVH1s-HGmf_Zqn97o2...	N/A	N/A	Jun 22, 2026	THN
HIGH 8.8	MS:CVE-2026-12466	Chromium: CVE-2026-12466 Heap buffer overflow in WebRTC_MS:CVE-2026-12466 This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Rel...	N/A	N/A	Jun 19, 2026	MSCVE
HIGH 8.3	MS:CVE-2026-12468	Chromium: CVE-2026-12468 Inappropriate implementation in Updater_MS:CVE-2026-12468 This CVE was assigned by Chrome. Microsoft Edge (Chromium-based) ingests Chromium, which addresses this vulnerability. Please see Google Chrome Rel...	N/A	N/A	Jun 19, 2026	MSCVE
NONE	IMPERVABLOG:7EE...	On-Premises API Security on Kubernetes: What It Actually Looks Like in Practice_IMPERVABLOG:7EE2F10AC3EAE78AF944E8104F323628 ## Let’s Talk About Where Your APIs Actually Run Quick answer: On-premises API security keeps API discovery, detection, and enforcement inside...	N/A	N/A	Jun 22, 2026	IMPERVABLOG
NONE	HACKREAD:7F9E2B...	Scammers Use Fake GitHub Stars, VirusTotal Reviews to Spread Crypto Clipper_HACKREAD:7F9E2B8D9C7C3249BBB6DCA19290C526 A multi-platform malware campaign abuses fake trust signals to infect Windows and Mac users with a crypto clipper packed with 15,500 attacker wallets.	N/A	N/A	Jun 22, 2026	HACKREAD

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

Libsoup: incomplete fix for cve-2026-2443: range suffix overflow in libsoup soupserver_CVE-2026-12549

Recent Advisories

Path Traversal in keras-team/keras_CVE-2026-12479

Akaunting 3.1.21 – Authenticated stored XSS in document timeline_CVE-2026-11943

Akaunting 3.1.21 – Stored XSS in delete confirmation modal_CVE-2026-11942

IBM TRIRIGA Cross-Site Scripting Vulnerability_CVE-2026-11372

29-Year-Old Squid Proxy Bug ‘Squidbleed’ Can Leak Cleartext HTTP Requests_THN:6EDDB51029888D4C2E2682D0407BD7BC

Chromium: CVE-2026-12466 Heap buffer overflow in WebRTC_MS:CVE-2026-12466

Chromium: CVE-2026-12468 Inappropriate implementation in Updater_MS:CVE-2026-12468

On-Premises API Security on Kubernetes: What It Actually Looks Like in Practice_IMPERVABLOG:7EE2F10AC3EAE78AF944E8104F323628

Scammers Use Fake GitHub Stars, VirusTotal Reviews to Spread Crypto Clipper_HACKREAD:7F9E2B8D9C7C3249BBB6DCA19290C526

Protect Your Attack Surface with RedGem

Security Intelligence
Feed