Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

234 New today

65,164 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

245

Jun 11

336

Jun 12

Jun 13

Jun 14

443

Jun 15

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

294

Jun 23

232

Jun 24

Critical

High

Medium

Low

Latest

CVE CVSS 6.9

Poweradmin: CSV Injection in log export endpoints allows formula execution in spreadsheet applications_CVE-2026-47693

Poweradmin is a web-based DNS administration tool for PowerDNS server. Versions prior to 4.2.4 and 4.3.3 are vulnerable to CSV Injection (Formula Injection) in its log export functionality. User-controlled data — specifically the username field — is written to exported CSV fil...

CVE-2026-47693 poweradmin poweradmin < 4.2.4

Jun 23, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 4.9	CVE-2026-12164	Privilege Escalation in Fortra File Integrity Monitoring (FIM)_CVE-2026-12164 Fortra File Integrity Monitoring (FIM), formerly Tripwire Enterprise, versions prior to 9.4.0 may assign incorrect or elevated effective permission...	Fortra	File Integrity Monitoring (FIM)	Jun 23, 2026	CVE
MEDIUM 5.5	CVE-2026-12163	Stored XSS in Fortra File Integrity Monitoring (FIM)_CVE-2026-12163 Fortra File Integrity Monitoring (FIM), formerly Tripwire Enterprise, versions prior to 9.4.0.1 contain a stored cross-site scripting (XSS) vulnera...	Fortra	Fortra File Integrity Monitoring (FIM)	Jun 23, 2026	CVE
HIGH 8.2	CVE-2026-11972	tarfile opened in streaming mode mishandles EOF_CVE-2026-11972 When using the "tarfile" module with a file opened in "streaming mode" (mode="r\|") the tarfile module did not properly handle EOF, meaning an archi...	Python Software Foundation	CPython	Jun 23, 2026	CVE
HIGH 8.7	F3832E4F-76F3-	Exploit for CVE-2026-11834_F3832E4F-76F3-50B7-92A3-92EB0B582EB1 CVE-2026-11834 PoC TP-Link DHCP Option 66 Unauthenticated RCE CVE-2026-11834 Overview A command injection vulnerability CWE-78 in the DHCP Option 6...	N/A	N/A	Jun 23, 2026	GITHUBEXPLOIT
HIGH 7.8	C3D90422-8858-	Exploit for Use After Free in Microsoft_C3D90422-8858-5EAC-A8E5-588AF315EA86 CVE-2026-42978 PoC & Research Windows Push Notifications Use-After-Free Race condition in Windows Push Notifications service WpnService that runs a...	N/A	N/A	Jun 23, 2026	GITHUBEXPLOIT
HIGH 8.2	MSF:AUXILIARY-SCANNER-	Audiobookshelf Unauthenticated API Authentication Bypass Scanner_MSF:AUXILIARY-SCANNER-HTTP-AUDIOBOOKSHELF_AUTH_BYPASS- This module detects Audiobookshelf servers affected by CVE-2025-25205, an unauthenticated authentication bypass. Affected versions 2.17.0 through 2...	N/A	N/A	Jun 23, 2026	METASPLOIT
NONE	D00ABD7F-A3B6-	web-exploitation-lab_D00ABD7F-A3B6-5F61-A944-65E5960AB87E 🌐 Web Exploitation Lab Payloads, techniques et cheatsheet web — SQLi, XSS, LFI, SSRF — by @ibramoha2 --- 💉 SQL Injection sql -- Test basique ' OR...	N/A	N/A	Jun 23, 2026	GITHUBEXPLOIT
CRITICAL 9.8	IMPERVABLOG:CC2...	CVE-2025-54068 Laravel Livewire Credential Theft Campaign: 6,000+ Applications Compromised_IMPERVABLOG:CC22F53AF67610E01435FC711BB2B03F ## Introduction On May 24, 2026, Imperva observed exploitation attempts against Laravel Livewire applications, blocked by the Imperva Cloud WA...	N/A	N/A	Jun 23, 2026	IMPERVABLOG
NONE	HACKREAD:40BF5A...	LastPass Confirms Customer Data Breach After Klue OAuth Token Theft_HACKREAD:40BF5AE34923B51723CA316715EF181B LastPass has confirmed it was affected by the Klue supply chain incident, saying an unauthorised actor used stolen…	N/A	N/A	Jun 23, 2026	HACKREAD

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

Poweradmin: CSV Injection in log export endpoints allows formula execution in spreadsheet applications_CVE-2026-47693

Recent Advisories

Privilege Escalation in Fortra File Integrity Monitoring (FIM)_CVE-2026-12164

Stored XSS in Fortra File Integrity Monitoring (FIM)_CVE-2026-12163

tarfile opened in streaming mode mishandles EOF_CVE-2026-11972

Exploit for CVE-2026-11834_F3832E4F-76F3-50B7-92A3-92EB0B582EB1

Exploit for Use After Free in Microsoft_C3D90422-8858-5EAC-A8E5-588AF315EA86

Audiobookshelf Unauthenticated API Authentication Bypass Scanner_MSF:AUXILIARY-SCANNER-HTTP-AUDIOBOOKSHELF_AUTH_BYPASS-

web-exploitation-lab_D00ABD7F-A3B6-5F61-A944-65E5960AB87E

CVE-2025-54068 Laravel Livewire Credential Theft Campaign: 6,000+ Applications Compromised_IMPERVABLOG:CC22F53AF67610E01435FC711BB2B03F

LastPass Confirms Customer Data Breach After Klue OAuth Token Theft_HACKREAD:40BF5AE34923B51723CA316715EF181B

Protect Your Attack Surface with RedGem

Security Intelligence
Feed