Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

70 New today
66,429 Total advisories
Live Monitoring

Daily Security Trends (Last 14 Days)

630
Jun 16
464
Jun 17
3
Jun 18
352
Jun 19
56
Jun 20
104
Jun 21
317
Jun 22
294
Jun 23
355
Jun 24
376
Jun 25
386
Jun 26
53
Jun 27
318
Jun 28
9
Jun 29
Critical
High
Medium
Low

Recent Advisories

Severity ID Title Vendor Product Date Type
CRITICAL 10 4A147D4B-6F2A-

Safeguard-Exploit-Vault_4A147D4B-6F2A-52CA-9C2F-F20FE406DEC5

Safeguard THIS TAKES TIME TO DO HUNTING ITS AI HUNTER SO IF YOU SAID LIKE HUNT ON THIS TARGET THIS WILL TAKE TIME INSTED OF THAT FOR QUICK TEST SAY...

N/A N/A GITHUBEXPLOIT
MEDIUM 6.3 CVE-2026-13482

skypilot-org skypilot User ID server.py username.encode weak hash_CVE-2026-13482

A vulnerability was detected in skypilot-org skypilot up to 0.12.0. Impacted is the function username.encode of the file sky/users/server.py of the...

skypilot-org skypilot 0.1 CVE
HIGH 7.4 CVE-2026-10646

Use-after-return in `zsock_getaddrinfo()` when a timed-out DNS query is retried without cancellation_CVE-2026-10646

Zephyr's BSD-sockets getaddrinfo() implementation (subsys/net/lib/sockets/getaddrinfo.c) passes a pointer to a stack-allocated state object (struct...

zephyrproject zephyr 4.0.0 CVE
MEDIUM 4.2 CVE-2026-10644

Out-of-bounds write in Microchip SERCOM-G1 (PIC32CM-JH) async UART RX with 1-byte buffer_CVE-2026-10644

The Microchip SERCOM-G1 UART driver (drivers/serial/uart_mchp_sercom_g1.c), used by the PIC32CM-JH SoC family, contains an out-of-bounds write in i...

zephyrproject zephyr 4.4.0 CVE
MEDIUM 6.5 CVE-2026-10593

Remotely triggerable NULL-pointer dereference in Bluetooth LE Audio BAP unicast client QoS-state handling_CVE-2026-10593

The Zephyr Bluetooth LE Audio Basic Audio Profile (BAP) unicast client mishandles peer-supplied ASE state notifications. In unicast_client_ep_qos_s...

zephyrproject zephyr 4.3.0 CVE
NONE 522F040F-3E67-

school-buslocation-sqli-cve_522F040F-3E67-59B4-8183-025C01D1A67B

CVE-2026-XXXXX Unauthenticated SQL Injection in School Management System — Bus Location Endpoint --- Advisory Information | Field | Value | |------...

N/A N/A GITHUBEXPLOIT
HIGH 8.8 95D6A730-EFAD-

Exploit for CVE-2026-43503_95D6A730-EFAD-5C8A-A651-39A9ED5B00CB

DirtyClone DirtyClone is a C-based local privilege escalation LPE proof-of-concept targeting a kernel/XFRM-related vulnerability described in the s...

N/A N/A GITHUBEXPLOIT
CRITICAL 9.4 7A2BFD33-83FB-

Exploit for OS Command Injection in Devcode Openstamanager_7A2BFD33-83FB-5B33-86D9-0CC82F7A488C

CVE-2025-69212 PoC - OpenSTAManager P7M Command Injection RCE Exploit Proof of Concept PoC exploit for CVE-2025-69212, an authenticated OS command ...

N/A N/A GITHUBEXPLOIT
NONE 93EFF22D-54CE-

e107-comment-sqli-cve_93EFF22D-54CE-5264-8AEA-EFBB4F5B94EB

CVE-2026-XXXXX Unauthenticated Blind SQL Injection in e107 CMS Comment System via Unsafe toDB + select Chain --- Advisory Information | Field | Val...

N/A N/A GITHUBEXPLOIT