Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

128 New today

64,732 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

351

Jun 10

245

Jun 11

336

Jun 12

Jun 13

Jun 14

443

Jun 15

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

Jun 23

Critical

High

Medium

Low

Latest

CVE CVSS 8.7

Flowise – Unverified Email Change via Account Profile Endpoint_CVE-2025-71337

Flowise before 3.0.10 (affected versions 3.0.7 and earlier) contains an unverified email change vulnerability. An authenticated user can change the account email address, used as a login identifier and password-recovery channel, via the account profile endpoint without confirm...

CVE-2025-71337 Flowise Flowise

Jun 23, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
NONE	75C34128-999D-	cybersec-cheat-sheets_75C34128-999D-5317-9E7C-9B35F3D51CC3 🛡️ Cybersecurity & Pentesting Cheat Sheets A collection of clean, practical cheat sheets for the security tools you actually use — built while work...	N/A	N/A	Jun 23, 2026	GITHUBEXPLOIT
NONE	HACKREAD:FBA757...	2 Scattered Spider-Linked Hackers Plead Guilty Over £39M TfL Cyberattack_HACKREAD:FBA7572946AB7B0A7A3BA36351A5085B Two teenagers face sentencing after admitting to a massive Scattered Spider cyberattack that hit Transport for London (TfL) and US healthcare netwo...	N/A	N/A	Jun 23, 2026	HACKREAD
NONE	MALWAREBYTES:9D...	Hackers steal passport and driver’s license data of 3 million Texans_MALWAREBYTES:9D69E222B6856BBA3932F0F2D0EB9073 You can change a password and cancel a card. But replacing a passport or driver's license number every time someone leaves yours unsecured in a ven...	N/A	N/A	Jun 23, 2026	MALWAREBYTES
NONE	SCHNEIER:50F4F7...	Anthropic’s Fable 5 Model Jailbroken Within Days_SCHNEIER:50F4F7230D43E3BC04D9A48F355AFA7C Fable 5 is the supposed safe version of Anthropic's Mythos Preview, with guardrails to ensure that it can't be used to create cyberattacks. Well, ...	N/A	N/A	Jun 23, 2026	SCHNEIER
NONE	HACKREAD:A12835...	The Evolution of iGaming Fraud: What Security Teams Should Expect in 2027_HACKREAD:A12835505DD5B7C87C9F7B3FCD193AAD Learn how AI, deepfakes, synthetic identities and fraud-as-a-service may reshape iGaming risk, and what security teams can do to detect future thre...	N/A	N/A	Jun 23, 2026	HACKREAD
NONE	THN:C8E3569189F...	Agentic AI: The Weapon That No Longer Needs a Warrior_THN:C8E3569189F8451F92B2576E7286E31A ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEg5YrdKJuy4ZmnWf_7L2RdXqS2QWC2BHJIbGsapJLmmYy1hBXfHxE7WMk-itWDkh-oCbAr8-CZOiUTyLftdM6...	N/A	N/A	Jun 23, 2026	THN
MEDIUM 4.1	CVE-2026-4983	CVE-2026-4983_CVE-2026-4983 Open VSX Registry does not sanitize SVG files uploaded as extension icons prior to storage, and serves them with Content-Type: image/svg+xml withou...	Eclipse Foundation	Eclipse Open VSX 0.1.0	Jun 23, 2026	CVE
NONE	H1:3817602	Node.js: Node –run POSIX positional argument escaping allows shell command injection_H1:3817602 # ## Summary Node.js `node --run -- ` attempts to append positional arguments to a package script after escaping each argument for the shell. ...	N/A	N/A	Jun 22, 2026	HACKERONE
NONE	2E49ED4C-95C2-	xss-popup_2E49ED4C-95C2-540D-893B-E9DF48B970B0 No description provided...	N/A	N/A	Jun 23, 2026	GITHUBEXPLOIT

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

Flowise – Unverified Email Change via Account Profile Endpoint_CVE-2025-71337

Recent Advisories

cybersec-cheat-sheets_75C34128-999D-5317-9E7C-9B35F3D51CC3

2 Scattered Spider-Linked Hackers Plead Guilty Over £39M TfL Cyberattack_HACKREAD:FBA7572946AB7B0A7A3BA36351A5085B

Hackers steal passport and driver’s license data of 3 million Texans_MALWAREBYTES:9D69E222B6856BBA3932F0F2D0EB9073

Anthropic’s Fable 5 Model Jailbroken Within Days_SCHNEIER:50F4F7230D43E3BC04D9A48F355AFA7C

The Evolution of iGaming Fraud: What Security Teams Should Expect in 2027_HACKREAD:A12835505DD5B7C87C9F7B3FCD193AAD

Agentic AI: The Weapon That No Longer Needs a Warrior_THN:C8E3569189F8451F92B2576E7286E31A

CVE-2026-4983_CVE-2026-4983

Node.js: Node –run POSIX positional argument escaping allows shell command injection_H1:3817602

xss-popup_2E49ED4C-95C2-540D-893B-E9DF48B970B0

Protect Your Attack Surface with RedGem

Security Intelligence
Feed