Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

161 New today

65,709 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

Jun 13

Jun 14

443

Jun 15

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

294

Jun 23

355

Jun 24

376

Jun 25

Jun 26

Critical

High

Medium

Low

Latest

CVE CVSS 7.5

CVE-2025-61019_CVE-2025-61019

An issue in the sqlo_key_part_best component of openlink virtuoso-opensource v7.2.11 allows attackers to cause a Denial of Service (DoS) via crafted SQL statements.

CVE-2025-61019 n/a n/a n/a

Jun 23, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 6.3	CVE-2026-48946	Joomla Extension – getk2.com – Privileged RCE vulnerability in K2 extension for Joomla < 2.26_CVE-2026-48946 The K2 frontend article-attachment upload path accepts files whose extension is `.php`, and Apache's standard mod_php matches `\.php$` and executes...	getk2.com	K2 extension for Joomla 1.0-2.26	Jun 25, 2026	CVE
MEDIUM 5.3	CVE-2026-48945	Joomla Extension – getk2.com – Privileged RCE vulnerability in K2 extension for Joomla < 2.26_CVE-2026-48945 The K2 article gallery upload path accepts a zip/tar archive, extracts it under `/media/k2/galleries//`, and only renames image files (gif/jpg/jpeg...	getk2.com	K2 extension for Joomla 1.0-2.26	Jun 25, 2026	CVE
MEDIUM 6.5	CVE-2026-48944	Joomla Extension – getk2.com – Exposure of sensitive files via attachment copy in K2 extension for Joomla < 2.26_CVE-2026-48944 The K2 frontend article-save handler accepts an `attachment[N][existing]` POST field that is concatenated with `JPATH_SITE/` and passed to `JFile::...	getk2.com	K2 extension for Joomla 1.0-2.26	Jun 25, 2026	CVE
MEDIUM 6.5	CVE-2026-48943	Joomla Extension – getk2.com – Authenticated user property mass-assignment in K2 extension for Joomla < 2.26_CVE-2026-48943 K2 ≤ 2.24 contains a mass-assignment defect in the K2 system user plugin `plg_user_k2`. A Registered Joomla user, by including the field `K2UserFor...	getk2.com	K2 extension for Joomla 1.0-2.26	Jun 25, 2026	CVE
MEDIUM 6.5	CVE-2026-48941	Joomla Extension – getk2.com – Unauthenticated folder delete in K2 extension for Joomla < 2.26_CVE-2026-48941 The K2 frontend `item.checkin` task accepts an unauthenticated `sigProFolder` query parameter and uses it directly to address a `JFolder::delete()`...	getk2.com	K2 extension for Joomla 1.0-2.26	Jun 25, 2026	CVE
LOW 3.4	CVE-2026-48940	Joomla Extension – getk2.com – Stored-XSS in K2 extension for Joomla < 2.26_CVE-2026-48940 A Joomla user with K2 "create item" rights (Author tier by default) can submit an article whose `embedVideo` POST field contains a raw `` tag; K2 s...	getk2.com	K2 extension for Joomla 1.0-2.26	Jun 25, 2026	CVE
HIGH 7.5	CVE-2026-12844	List::SomeUtils::XS versions before 0.59 for Perl have a heap buffer overflow in the pairwise function_CVE-2026-12844 List::SomeUtils::XS versions before 0.59 for Perl have a heap buffer overflow in the pairwise function. pairwise() collects the values returned by...	DROLSKY	List::SomeUtils::XS	Jun 25, 2026	CVE
HIGH 7.8	CVE-2026-54917	SeaweedFS: Path traversal in the S3 and Iceberg REST gateways allows cross-bucket access_CVE-2026-54917 SeaweedFS is a distributed storage system for object storage (S3), file systems, and Iceberg tables. Prior to 4.30, the S3 API gateway and the Iceb...	seaweedfs	seaweedfs < 4.30	Jun 25, 2026	CVE
CRITICAL 9.3	CVE-2026-50549	Cursor Desktop sandbox escape via symlink and failed path canonicalization_CVE-2026-50549 Cursor is a code editor built for programming with AI. Prior to 3.0, Cursor runs agent terminal commands in a sandbox by default. Before a Write, t...	cursor	cursor < 3.0	Jun 25, 2026	CVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

CVE-2025-61019_CVE-2025-61019

Recent Advisories

Joomla Extension – getk2.com – Privileged RCE vulnerability in K2 extension for Joomla < 2.26_CVE-2026-48946

Joomla Extension – getk2.com – Privileged RCE vulnerability in K2 extension for Joomla < 2.26_CVE-2026-48945

Joomla Extension – getk2.com – Exposure of sensitive files via attachment copy in K2 extension for Joomla < 2.26_CVE-2026-48944

Joomla Extension – getk2.com – Authenticated user property mass-assignment in K2 extension for Joomla < 2.26_CVE-2026-48943

Joomla Extension – getk2.com – Unauthenticated folder delete in K2 extension for Joomla < 2.26_CVE-2026-48941

Joomla Extension – getk2.com – Stored-XSS in K2 extension for Joomla < 2.26_CVE-2026-48940

List::SomeUtils::XS versions before 0.59 for Perl have a heap buffer overflow in the pairwise function_CVE-2026-12844

SeaweedFS: Path traversal in the S3 and Iceberg REST gateways allows cross-bucket access_CVE-2026-54917

Cursor Desktop sandbox escape via symlink and failed path canonicalization_CVE-2026-50549

Protect Your Attack Surface with RedGem

Security Intelligence
Feed