Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

224 New today

65,343 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

336

Jun 12

Jun 13

Jun 14

443

Jun 15

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

294

Jun 23

355

Jun 24

Jun 25

Critical

High

Medium

Low

Latest

CVE CVSS 8

Warp branch selector command injection via Git branch names_CVE-2026-48719

Warp is an agentic development environment. From 0.2025.08.06.08.12.stable_00 until 0.2026.05.06.15.42.stable_01, Warp contains a command injection in the prompt branch selector. A user who can publish a branch to a Git repository opened in Warp can cause a crafted branch name...

CVE-2026-48719 warpdotdev warp >= 0.2025.08.06.08.12.stable_00, < 0.2026.05.13.09.15.stable_01

Jun 24, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 8.8	CVE-2026-48704	Warp Markdown notebook links may open executable local files_CVE-2026-48704 Warp is an agentic development environment. From 0.2023.10.24.08.03.stable_00 until 0.2026.05.06.15.42.stable_01, Warp may open executable local fi...	warpdotdev	warp >= 0.2023.10.24.08.03.stable_00, < 0.2026.05.13.09.15.stable_01	Jun 24, 2026	CVE
HIGH 7.8	CVE-2026-48703	Warp: Command Injection via Warp code search tool arguments_CVE-2026-48703 Warp is an agentic development environment. From 0.2025.04.09.08.11.stable_00 until 0.2026.05.06.15.42.stable_01, Warp contains a command execution...	warpdotdev	warp >= 0.2025.04.09.08.11.stable_00, < 0.2026.05.13.09.15.stable_01	Jun 24, 2026	CVE
MEDIUM 5.5	CVE-2026-44022	Docling: Potential Path Traversal via LaTeX \includegraphics and \input Commands_CVE-2026-44022 Docling simplifies document processing by parsing diverse formats and providing integrations with the generative AI ecosystem. From 2.73.0 until 2....	docling-project	docling >= 2.73.0, < 2.91.0	Jun 24, 2026	CVE
HIGH 7.5	CVE-2026-44020	Docling: Unsafe XML Entity Expansion in USPTO Patent Backend_CVE-2026-44020 Docling simplifies document processing by parsing diverse formats and providing integrations with the generative AI ecosystem. From 2.13.0 until 2....	docling-project	docling >= 2.13.0, < 2.74.0	Jun 24, 2026	CVE
HIGH 7.5	CVE-2026-44017	Docling: Unsafe Zip Extraction in EasyOCR Model Download_CVE-2026-44017 Docling simplifies document processing by parsing diverse formats and providing integrations with the generative AI ecosystem. Prior to 2.91.0, the...	docling-project	docling < 2.91.0	Jun 24, 2026	CVE
HIGH 8.2	CVE-2026-44016	Docling: Unsafe Playwright-based HTML Rendering_CVE-2026-44016 Docling simplifies document processing by parsing diverse formats and providing integrations with the generative AI ecosystem. FIn versions >= 2.82...	docling-project	docling >= 2.82.0, < 2.91.0	Jun 24, 2026	CVE
HIGH 7.5	PACKETSTORM:224227	📄 HTTP.sys HTTP/2 Denial of Service_PACKETSTORM:224227 This advisory provides simple proof of concept details to trigger the HTTP/2 denial of service condition related to malformed Accept-Encoding heade...	N/A	N/A	Jun 24, 2026	PACKETSTORM
HIGH 10	DC8CF54B-5E0D-	pentest-metasploit_DC8CF54B-5E0D-55F4-B5C1-920406A0FF9F Penetration Testing with Metasploit A structured penetration testing automation framework developed by Aadarsh Bonthula as part of a cybersecurity ...	N/A	N/A	Jun 24, 2026	GITHUBEXPLOIT
CRITICAL 10	THN:36AE22FA31D...	CISA Warns Critical Lantronix EDS5000 Flaw Is Being Actively Exploited_THN:36AE22FA31D6D2AC6781F7FB8DEED534 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgjZtIkR9YS2fMY5MvIzgyEShmJAP1bgHqhBdU115iSY7WZ2EcBAbFKb1OQP6Nq8hoF4HlnRifxW890ztCcne...	N/A	N/A	Jun 24, 2026	THN

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

Warp branch selector command injection via Git branch names_CVE-2026-48719

Recent Advisories

Warp Markdown notebook links may open executable local files_CVE-2026-48704

Warp: Command Injection via Warp code search tool arguments_CVE-2026-48703

Docling: Potential Path Traversal via LaTeX \includegraphics and \input Commands_CVE-2026-44022

Docling: Unsafe XML Entity Expansion in USPTO Patent Backend_CVE-2026-44020

Docling: Unsafe Zip Extraction in EasyOCR Model Download_CVE-2026-44017

Docling: Unsafe Playwright-based HTML Rendering_CVE-2026-44016

📄 HTTP.sys HTTP/2 Denial of Service_PACKETSTORM:224227

pentest-metasploit_DC8CF54B-5E0D-55F4-B5C1-920406A0FF9F

CISA Warns Critical Lantronix EDS5000 Flaw Is Being Actively Exploited_THN:36AE22FA31D6D2AC6781F7FB8DEED534

Protect Your Attack Surface with RedGem

Security Intelligence
Feed