Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

289 New today

65,553 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

336

Jun 12

Jun 13

Jun 14

443

Jun 15

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

294

Jun 23

355

Jun 24

266

Jun 25

Critical

High

Medium

Low

Latest

CVE CVSS 8.6

Cacti: Command Injection via escape_command() no-op in RRDtool execution_CVE-2026-40079

Cacti is an open source performance and fault management framework. Versions 1.2.30 and prior are vulnerable to Command Injection due to lack of sanitization in the escape_command() function. The escape_command() function at lib/rrd.php is a no-op: it returns $command unchange...

CVE-2026-40079 Cacti cacti < 1.2.31

Jun 24, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 7.6	CVE-2026-39951	Cacti: Stored SQL Injection via graph_name_regexp in Reports feature_CVE-2026-39951 Cacti is an open source performance and fault management framework. Versions 1.2.30 and prior have a Stored SQL Injection vulnerability through gra...	Cacti	cacti < 1.2.31	Jun 24, 2026	CVE
CRITICAL 9.9	1D800BD3-189F-	Exploit for CVE-2026-38526_1D800BD3-189F-5EE9-BFBA-BC99C4EB9527 No description provided...	N/A	N/A	Jun 24, 2026	GITHUBEXPLOIT
CRITICAL 10	D6143492-FDD6-	Exploit for Unrestricted Upload of File with Dangerous Type in Gvectors Wpdiscuz_D6143492-FDD6-5B65-991B-5C7A537B4D18 CVE-2020-24186 Exploit para RCE Remote Code Exec CVE de plugin vulnerable en Wordpress WP-Discuz en versión 7.0.4...	N/A	N/A	Jun 24, 2026	GITHUBEXPLOIT
NONE	HACKREAD:46764B...	Operation Endgame Disrupts StealC, Amadey and SocGholish Malware Networks_HACKREAD:46764B0DA6EC6E018AE066FA3152CC8F Operation Endgame disrupts StealC malware infrastructure, seizing millions of stolen credentials and targeting servers used in global cybercrime ca...	N/A	N/A	Jun 24, 2026	HACKREAD
HIGH 7.3	CVE-2026-7539	HP Dock Accessory WMI Provider Installer Security Update_CVE-2026-7539 A potential security vulnerability has been identified in the HP Accessory WMI Provider installer for some HP Docking Stations, which might allow e...	HP Inc.	HP Dock Accessory	Jun 24, 2026	CVE
MEDIUM 5.4	CVE-2026-52816	Gogs: Unauthenticated Jupyter Notebook (ipynb) Sanitizer allows arbitrary data: URIs leading to XSS_CVE-2026-52816 Gogs is an open source self-hosted Git service. Prior to 0.14.3, the Jupyter Notebook (ipynb) sanitizer endpoint at POST /-/api/sanitize_ipynb allo...	gogs	gogs < 0.14.3	Jun 24, 2026	CVE
MEDIUM 5.5	CVE-2026-52815	Gogs: Unauthenticated Organization Teams Information Disclosure via API_CVE-2026-52815 Gogs is an open source self-hosted Git service. Prior to 0.14.3, Gogs has an unauthenticated information disclosure vulnerability. The GET /api/v1/...	gogs	gogs < 0.14.3	Jun 24, 2026	CVE
MEDIUM 5.5	CVE-2026-52814	Gogs: Unauthenticated Asymmetric Denial of Service (DoS) via SSH Handshake Stall (File Descriptor Exhaustion)_CVE-2026-52814 Gogs is an open source self-hosted Git service. Prior to 0.14.3, the Gogs built-in Go SSH server is vulnerable to an unauthenticated, asymmetric De...	gogs	gogs < 0.14.3	Jun 24, 2026	CVE
MEDIUM 4.8	CVE-2026-52807	Gogs: DOM-based XSS via Milestone Name on New Issue Page_CVE-2026-52807 Gogs is an open source self-hosted Git service. Prior to 0.14.3, in new_form.tmpl, milestone names are rendered with Go's default auto-escaping ({{...	gogs	gogs < 0.14.3	Jun 24, 2026	CVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

Cacti: Command Injection via escape_command() no-op in RRDtool execution_CVE-2026-40079

Recent Advisories

Cacti: Stored SQL Injection via graph_name_regexp in Reports feature_CVE-2026-39951

Exploit for CVE-2026-38526_1D800BD3-189F-5EE9-BFBA-BC99C4EB9527

Exploit for Unrestricted Upload of File with Dangerous Type in Gvectors Wpdiscuz_D6143492-FDD6-5B65-991B-5C7A537B4D18

Operation Endgame Disrupts StealC, Amadey and SocGholish Malware Networks_HACKREAD:46764B0DA6EC6E018AE066FA3152CC8F

HP Dock Accessory WMI Provider Installer Security Update_CVE-2026-7539

Gogs: Unauthenticated Jupyter Notebook (ipynb) Sanitizer allows arbitrary data: URIs leading to XSS_CVE-2026-52816

Gogs: Unauthenticated Organization Teams Information Disclosure via API_CVE-2026-52815

Gogs: Unauthenticated Asymmetric Denial of Service (DoS) via SSH Handshake Stall (File Descriptor Exhaustion)_CVE-2026-52814

Gogs: DOM-based XSS via Milestone Name on New Issue Page_CVE-2026-52807

Protect Your Attack Surface with RedGem

Security Intelligence
Feed