Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

224 New today

65,462 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

336

Jun 12

Jun 13

Jun 14

443

Jun 15

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

294

Jun 23

355

Jun 24

175

Jun 25

Critical

High

Medium

Low

Latest

CVE CVSS 2

Stored XSS in pretix-digital_CVE-2026-13314

Malicious HTML content could be injected into the content rendered by the pretix-digital plugin.

CVE-2026-13314 pretix pretix-digital

Jun 25, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 5.3	CVE-2026-13225	Stored XSS in ticket confirmation page_CVE-2026-13225 Malicious HTML content could be injected into the email address of an order, which pretix showed without sanitization on the confirmation page fo...	pretix	pretix	Jun 25, 2026	CVE
MEDIUM 6.3	CVE-2026-13223	Insufficient validation of payment status in pretix-computop_CVE-2026-13223 Our payment integration with Computop-based payment methods did not properly validate payment status responses. An attacker could use a successfu...	pretix	pretix-computop	Jun 25, 2026	CVE
MEDIUM 6.3	CVE-2026-13222	Insufficient validation of payment status in pretix-oppwa_CVE-2026-13222 Our payment integration with Oppwa-based payment methods did not properly validate payment status responses. An attacker could use a successful p...	pretix	pretix-oppwa	Jun 25, 2026	CVE
MEDIUM 6.9	CVE-2026-9718	CVE-2026-9718_CVE-2026-9718 CWE-617 Reachable Assertion vulnerability exists that could allow an authenticated attacker to trigger a denial-of-service condition, impacting sys...	Schneider Electric	PowerLogic™ P7 Version V02.003.001.000 and prior	Jun 25, 2026	CVE
HIGH 8.6	CVE-2026-9717	CVE-2026-9717_CVE-2026-9717 CWE-78 Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability exists that could allow unauthorized executi...	Schneider Electric	PowerLogic™ P7 Version V02.003.001.000 and prior	Jun 25, 2026	CVE
HIGH 8.7	CVE-2026-9716	CVE-2026-9716_CVE-2026-9716 CWE-476 NULL Pointer Dereference vulnerability exists that could cause a denial-of-service condition, rendering the device’s HMI and configuration ...	Schneider Electric	PowerLogic™ P7 Version V02.003.001.000 and prior	Jun 25, 2026	CVE
MEDIUM 6.7	CVE-2026-9651	CVE-2026-9651_CVE-2026-9651 CWE-732 Incorrect Permission Assignment for Critical Resource vulnerability that could cause unauthorized disclosure of password hashes and potenti...	Schneider Electric	EasyLogic T150 (formerly Saitel DR) Remote Terminal Unit & Controller Version 11.06.31 and prior	Jun 25, 2026	CVE
HIGH 8.7	CVE-2026-9650	CVE-2026-9650_CVE-2026-9650 CWE-522 Insufficiently Protected Credentials vulnerability that could cause unauthorized access and exposure of sensitive information when unauthen...	Schneider Electric	EasyLogic T150 (formerly Saitel DR) Remote Terminal Unit & Controller Version 11.06.30 and prior	Jun 25, 2026	CVE
HIGH 8.4	CVE-2026-57456	Vim: Arbitrary Code Execution via Python Omni-Completion Docstrings_CVE-2026-57456 Vim is an open source, command line text editor. Prior to 9.2.0699, Vim's Python omni-completion (runtime/autoload/python3complete.vim and the lega...	vim	vim < 9.2.0699	Jun 25, 2026	CVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

Stored XSS in pretix-digital_CVE-2026-13314

Recent Advisories

Stored XSS in ticket confirmation page_CVE-2026-13225

Insufficient validation of payment status in pretix-computop_CVE-2026-13223

Insufficient validation of payment status in pretix-oppwa_CVE-2026-13222

CVE-2026-9718_CVE-2026-9718

CVE-2026-9717_CVE-2026-9717

CVE-2026-9716_CVE-2026-9716

CVE-2026-9651_CVE-2026-9651

CVE-2026-9650_CVE-2026-9650

Vim: Arbitrary Code Execution via Python Omni-Completion Docstrings_CVE-2026-57456

Protect Your Attack Surface with RedGem

Security Intelligence
Feed