Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

289 New today

64,942 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

245

Jun 11

336

Jun 12

Jun 13

Jun 14

443

Jun 15

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

294

Jun 23

Jun 24

Critical

High

Medium

Low

Latest

CVE CVSS 8.3

n8n: Cross-user Authorization Bypass in Dynamic Credential OAuth Endpoints_CVE-2026-45732

n8n is an open source workflow automation platform. Prior to 1.123.43, 2.22.1, and 2.20.7, the OAuth1 and OAuth2 credential reconnect endpoints authorized access using credential:read rather than credential:update. An authenticated user with read-only access to a shared creden...

CVE-2026-45732 n8n-io n8n < 1.123.43

Jun 23, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 8.8	CVE-2026-44959	CVE-2026-44959_CVE-2026-44959 A missing validation of user input exists when saving delivery limitations in Revive Adserver 6.0.6 and earlier. A low‑privileged user could add an...	Revive	Adserver	Jun 23, 2026	CVE
MEDIUM 5.4	CVE-2026-44958	CVE-2026-44958_CVE-2026-44958 An access control bypass allows an advertiser‑level user to activate or deactivate a banner in Revive Adserver 6.0.6 and earlier, even when such pe...	Revive	Adserver	Jun 23, 2026	CVE
MEDIUM 4.3	CVE-2026-44957	CVE-2026-44957_CVE-2026-44957 A missing access control check when invoking various modify methods in the XML‑RPC API of Revive Adserver 6.0.6 and earlier. The API allowed entiti...	Revive	Adserver	Jun 23, 2026	CVE
HIGH 8.9	CVE-2026-44792	n8n: Source Control Pull SQL Injection_CVE-2026-44792 n8n is an open source workflow automation platform. Prior to 1.123.43, 2.22.1, and 2.20.7, an attacker with write access to the git repository conn...	n8n-io	n8n < 1.123.43	Jun 23, 2026	CVE
CRITICAL 9.4	CVE-2026-44791	n8n: XML Node Prototype Pollution Patch Bypass_CVE-2026-44791 n8n is an open source workflow automation platform. Prior to 1.123.43, 2.22.1, and 2.20.7, an authenticated user with permission to create or modif...	n8n-io	n8n < 1.123.43	Jun 23, 2026	CVE
CRITICAL 9.4	CVE-2026-44790	n8n: Arbitrary File Read via Git Node_CVE-2026-44790 n8n is an open source workflow automation platform. Prior to 1.123.43, 2.22.1, and 2.20.7, an authenticated user with permission to create or modif...	n8n-io	n8n < 1.123.43	Jun 23, 2026	CVE
CRITICAL 9.4	CVE-2026-44789	n8n: HTTP Request Node Pagination Prototype Pollution to RCE_CVE-2026-44789 n8n is an open source workflow automation platform. Prior to 1.123.43, 2.22.1, and 2.20.7, an authenticated user with permission to create or modif...	n8n-io	n8n < 1.123.43	Jun 23, 2026	CVE
MEDIUM 6.5	CVE-2026-42867	Langflow: Path Traversal in Knowledge Bases API via Creation Endpoint_CVE-2026-42867 Langflow is a tool for building and deploying AI-powered agents and workflows. Prior to 1.9.0, Langflow is vulnerable to Path Traversal in the Know...	langflow-ai	langflow < 1.9.0	Jun 23, 2026	CVE
MEDIUM 4.3	CVE-2026-34917	CVE-2026-34917_CVE-2026-34917 Low‑privileged session IDs generated for the web admin console could be reused in the XML‑RPC API, whose authentication is normally restricted to a...	Revive	Adserver	Jun 23, 2026	CVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

n8n: Cross-user Authorization Bypass in Dynamic Credential OAuth Endpoints_CVE-2026-45732

Recent Advisories

CVE-2026-44959_CVE-2026-44959

CVE-2026-44958_CVE-2026-44958

CVE-2026-44957_CVE-2026-44957

n8n: Source Control Pull SQL Injection_CVE-2026-44792

n8n: XML Node Prototype Pollution Patch Bypass_CVE-2026-44791

n8n: Arbitrary File Read via Git Node_CVE-2026-44790

n8n: HTTP Request Node Pagination Prototype Pollution to RCE_CVE-2026-44789

Langflow: Path Traversal in Knowledge Bases API via Creation Endpoint_CVE-2026-42867

CVE-2026-34917_CVE-2026-34917

Protect Your Attack Surface with RedGem

Security Intelligence
Feed