Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

308 New today

65,585 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

336

Jun 12

Jun 13

Jun 14

443

Jun 15

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

294

Jun 23

355

Jun 24

298

Jun 25

Critical

High

Medium

Low

Latest

CVE CVSS 2.1

CVE-2026-57535_CVE-2026-57535

Content injected to PDF rendering contexts could, in many places, include HTML content including <img> tags. If the src attribute of these images pointed to an URL, the PDF rendering engine would download the image from that place and display it, thereby leaking information...

CVE-2026-57535 pretix pretix

Jun 25, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
LOW 2.1	CVE-2026-57534	Stored XSS in pretix-pages_CVE-2026-57534 Malicious HTML content could be injected into the content of a page in the pretix-pages plugin.	pretix	pretix-pages	Jun 25, 2026	CVE
LOW 2.1	CVE-2026-57533	CVE-2026-57533_CVE-2026-57533 Malicious HTML content could be injected into the page pretix shows when redirection to an untrusted page occurs. Since this page has a Content-S...	pretix	pretix	Jun 25, 2026	CVE
HIGH 8.8	CVE-2026-57532	CVE-2026-57532_CVE-2026-57532 Malicious HTML content contained in the layout specification of a PDF ticket or badge layout was executed when the PDF editor is opened in the br...	pretix	pretix	Jun 25, 2026	CVE
LOW 1.7	CVE-2026-57437	Nokogiri: Possible Use-After-Free when directly using `NokogirI::XML::XPathContext` beyond document lifetime_CVE-2026-57437 Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, Nokogiri::XML::XPathContext did not keep its so...	sparklemotion	nokogiri < 1.19.4	Jun 25, 2026	CVE
LOW 1.7	CVE-2026-57436	Nokogiri: Possible Use-After-Free when setting `Document#root=` to an invalid node type_CVE-2026-57436 Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, Nokogiri::XML::Document#root= validated only th...	sparklemotion	nokogiri < 1.19.4	Jun 25, 2026	CVE
LOW 1.7	CVE-2026-57435	Nokogiri: Possible Use-After-Free when setting an attribute value via `Nokogiri::XML::Attr#value=` or `#content=`_CVE-2026-57435 Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, Nokogiri’s CRuby native extension could leave a...	sparklemotion	nokogiri < 1.19.4	Jun 25, 2026	CVE
LOW 1.7	CVE-2026-57434	Nokogiri: Null Pointer Dereference calling methods on uninitialized wrapper classes_CVE-2026-57434 Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, Nokogiri contains a bug when calling certain me...	sparklemotion	nokogiri < 1.19.4	Jun 25, 2026	CVE
LOW 1.7	CVE-2026-57236	Nokogiri: Possible Use-After-Free when `Nokogiri::XML::Document#encoding=` raises an exception_CVE-2026-57236 Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, calling Document#encoding= with an invalid enco...	sparklemotion	nokogiri < 1.19.4	Jun 25, 2026	CVE
MEDIUM 6.3	CVE-2026-57235	Nokogiri: Possible Out-of-Bounds Read in `Nokogiri::XML::NodeSet#[]`_CVE-2026-57235 Nokogiri is an open source XML and HTML library for the Ruby programming language. Prior to 1.19.4, Nokogiri::XML::NodeSet#[] (and its alias #slice...	sparklemotion	nokogiri < 1.19.4	Jun 25, 2026	CVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

CVE-2026-57535_CVE-2026-57535

Recent Advisories

Stored XSS in pretix-pages_CVE-2026-57534

CVE-2026-57533_CVE-2026-57533

CVE-2026-57532_CVE-2026-57532

Nokogiri: Possible Use-After-Free when directly using `NokogirI::XML::XPathContext` beyond document lifetime_CVE-2026-57437

Nokogiri: Possible Use-After-Free when setting `Document#root=` to an invalid node type_CVE-2026-57436

Nokogiri: Possible Use-After-Free when setting an attribute value via `Nokogiri::XML::Attr#value=` or `#content=`_CVE-2026-57435

Nokogiri: Null Pointer Dereference calling methods on uninitialized wrapper classes_CVE-2026-57434

Nokogiri: Possible Use-After-Free when `Nokogiri::XML::Document#encoding=` raises an exception_CVE-2026-57236

Nokogiri: Possible Out-of-Bounds Read in `Nokogiri::XML::NodeSet#[]`_CVE-2026-57235

Protect Your Attack Surface with RedGem

Security Intelligence
Feed