Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

286 New today
64,930 Total advisories
Live Monitoring

Daily Security Trends (Last 14 Days)

245
Jun 11
336
Jun 12
60
Jun 13
68
Jun 14
443
Jun 15
630
Jun 16
464
Jun 17
3
Jun 18
352
Jun 19
56
Jun 20
104
Jun 21
317
Jun 22
292
Jun 23
Jun 24
Critical
High
Medium
Low
Latest
CVE CVSS 6.4

ProfileGrid <= 5.9.9.2 - Authenticated (Subscriber+) Stored Cross-Site Scripting via Message Content_CVE-2026-4610

The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'pm_author_message' parameter in the pm_send_message_to_author function in all versions up to, and including, 5.9.9.2 due to insufficient input san...

CVE-2026-4610 metagauss ProfileGrid – User Profiles, Groups and Communities
Read analysis

Recent Advisories

Severity ID Title Vendor Product Date Type
CRITICAL 9.4 CVE-2026-44089

Buffer Overflow in Totolink EX1200L router_CVE-2026-44089

Totolink EX1200L router is vulnerable to Buffer Overflow in the login functionality in cgi-bin/cstecgi.cgi endpoint. This vulnerability could be ex...

Totolink EX1200L 9.3.5u.6146_B20201023 CVE
MEDIUM 6.1 CVE-2026-10857

Reflected XSS in Akinsoft’s e-Commerce_CVE-2026-10857

Improper neutralization of input during web page generation ('cross-site scripting') vulnerability in AKIN Software Computer Import Export Industry...

AKIN Software Computer Import Export Industry and Trade Ltd. e-Commerce CVE
HIGH 8.8 CVE-2026-10711

RCE in Akınsoft’s CafePlus_CVE-2026-10711

Missing authentication for critical function vulnerability in AKIN Software Computer Import Export Industry and Trade Ltd. CafePlus allows Accessin...

AKIN Software Computer Import Export Industry and Trade Ltd. CafePlus 12.05.03 CVE
HIGH 7.6 CVE-2025-71376

picklescan – Arbitrary Code Execution via Undetected idlelib.autocomplete.AutoComplete.fetch_completions_CVE-2025-71376

picklescan before 0.0.29 fails to detect malicious pickle files using idlelib.autocomplete.AutoComplete.fetch_completions in reduce methods. Attack...

picklescan picklescan CVE
HIGH 7.6 CVE-2025-71370

picklescan – Remote Code Execution via torch.jit.unsupported_tensor_ops.execWrapper_CVE-2025-71370

picklescan before 0.0.28 fails to detect malicious torch.jit.unsupported_tensor_ops.execWrapper function calls embedded in pickle files. Attackers ...

picklescan picklescan CVE
HIGH 7.6 CVE-2025-71365

picklescan – Arbitrary Code Execution via numpy.f2py.crackfortran.myeval Detection Bypass_CVE-2025-71365

picklescan before 0.0.33 fails to detect malicious pickle files that invoke numpy.f2py.crackfortran.myeval function through the reduce method. Atta...

picklescan picklescan CVE
HIGH 7.6 CVE-2025-71341

picklescan – Remote Code Execution via Undetected profile.Profile.runctx_CVE-2025-71341

picklescan before 0.0.29 fails to detect the profile.Profile.runctx function when analyzing pickle files, allowing attackers to embed undetected ma...

picklescan picklescan CVE
HIGH 8.7 CVE-2025-71337

Flowise – Unverified Email Change via Account Profile Endpoint_CVE-2025-71337

Flowise before 3.0.10 (affected versions 3.0.7 and earlier) contains an unverified email change vulnerability. An authenticated user can change the...

Flowise Flowise CVE
NONE 75C34128-999D-

cybersec-cheat-sheets_75C34128-999D-5317-9E7C-9B35F3D51CC3

🛡️ Cybersecurity & Pentesting Cheat Sheets A collection of clean, practical cheat sheets for the security tools you actually use — built while work...

N/A N/A GITHUBEXPLOIT