Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

122 New today

66,075 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

Jun 14

443

Jun 15

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

294

Jun 23

355

Jun 24

376

Jun 25

386

Jun 26

Jun 27

Critical

High

Medium

Low

Latest

CVE CVSS 7.6

WordPress WP All Import plugin <= 4.0.1 - SQL Injection vulnerability_CVE-2026-57628

Administrator SQL Injection in WP All Import <= 4.0.1 versions.

CVE-2026-57628 WP All Import WP All Import n/a

Jun 26, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 4.9	CVE-2026-57627	WordPress Kirki plugin <= 6.0.11 - Server Side Request Forgery (SSRF) vulnerability_CVE-2026-57627 Subscriber Server Side Request Forgery (SSRF) in Kirki	Themeum	Kirki n/a	Jun 26, 2026	CVE
MEDIUM 4.3	CVE-2026-57622	WordPress WPCafe plugin <= 3.0.14 - Broken Access Control vulnerability_CVE-2026-57622 Subscriber Broken Access Control in WPCafe	Arraytics	WPCafe n/a	Jun 26, 2026	CVE
MEDIUM 6.5	CVE-2026-57618	WordPress Neve PRO theme <= 3.1.2 - Cross Site Scripting (XSS) vulnerability_CVE-2026-57618 Contributor Cross Site Scripting (XSS) in Neve PRO	Themeisle	Neve PRO n/a	Jun 26, 2026	CVE
MEDIUM 6.5	CVE-2026-57617	WordPress SeedProd Pro plugin < 6.19.5 - Cross Site Scripting (XSS) vulnerability_CVE-2026-57617 Contributor Cross Site Scripting (XSS) in SeedProd Pro < 6.19.5 versions.	SeedProd LLC.	SeedProd Pro n/a	Jun 26, 2026	CVE
HIGH 8.7	CVE-2026-57527	ZAP ViewState Add-on Insecure Deserialization via JSFViewState.decode()_CVE-2026-57527 Zed Attack Proxy (ZAP) ViewState add-on before version 4 contains an insecure deserialization vulnerability that allows attackers who control a pro...	zaproxy	zap-extensions	Jun 26, 2026	CVE
MEDIUM 6.5	CVE-2026-57431	WordPress Featured Image plugin <= 2.1 - Cross Site Scripting (XSS) vulnerability_CVE-2026-57431 Author Cross Site Scripting (XSS) in Featured Image	Mervin Praison	Featured Image n/a	Jun 26, 2026	CVE
MEDIUM 4.3	CVE-2026-57430	WordPress SEOPress PRO plugin <= 9.1.1 - Broken Access Control vulnerability_CVE-2026-57430 Contributor Broken Access Control in SEOPress PRO	SEOPress Free	SEOPress PRO n/a	Jun 26, 2026	CVE
HIGH 7.1	CVE-2026-57325	WordPress NanoMag theme <= 1.8 - Cross Site Scripting (XSS) vulnerability_CVE-2026-57325 Unauthenticated Cross Site Scripting (XSS) in NanoMag	Jellywp	NanoMag n/a	Jun 26, 2026	CVE
MEDIUM 6.5	CVE-2026-57324	WordPress GIFT4U plugin <= 1.0.10 - Broken Access Control vulnerability_CVE-2026-57324 Unauthenticated Broken Access Control in GIFT4U	VillaTheme	GIFT4U n/a	Jun 26, 2026	CVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

WordPress WP All Import plugin <= 4.0.1 - SQL Injection vulnerability_CVE-2026-57628

Recent Advisories

WordPress Kirki plugin <= 6.0.11 - Server Side Request Forgery (SSRF) vulnerability_CVE-2026-57627

WordPress WPCafe plugin <= 3.0.14 - Broken Access Control vulnerability_CVE-2026-57622

WordPress Neve PRO theme <= 3.1.2 - Cross Site Scripting (XSS) vulnerability_CVE-2026-57618

WordPress SeedProd Pro plugin < 6.19.5 - Cross Site Scripting (XSS) vulnerability_CVE-2026-57617

ZAP ViewState Add-on Insecure Deserialization via JSFViewState.decode()_CVE-2026-57527

WordPress Featured Image plugin <= 2.1 - Cross Site Scripting (XSS) vulnerability_CVE-2026-57431

WordPress SEOPress PRO plugin <= 9.1.1 - Broken Access Control vulnerability_CVE-2026-57430

WordPress NanoMag theme <= 1.8 - Cross Site Scripting (XSS) vulnerability_CVE-2026-57325

WordPress GIFT4U plugin <= 1.0.10 - Broken Access Control vulnerability_CVE-2026-57324

Protect Your Attack Surface with RedGem

Security Intelligence
Feed