Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

153 New today

66,071 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

Jun 14

443

Jun 15

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

294

Jun 23

355

Jun 24

376

Jun 25

386

Jun 26

Jun 27

Critical

High

Medium

Low

Latest

CVE CVSS 6.7

CVE-2026-53914_CVE-2026-53914

In JetBrains Kotlin before 2.4.20 code execution was possible via unsafe deserialization in the build cache metadata

CVE-2026-53914 JetBrains Kotlin

Jun 26, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 5.4	CVE-2026-13426	Client4 fails to validate path parameters_CVE-2026-13426 The Mattermost Go module github.com/mattermost/mattermost/server/public versions < v0.1.22 fail to validate path parameters when constructing API r...	Mattermost	github.com/mattermost/mattermost/server/public v0.0.0	Jun 26, 2026	CVE
NONE	AKAMAIBLOG:978E...	The Cloud Giants Are Architecting an Agentic Future They Can’t Run_AKAMAIBLOG:978E7ED61CD644037FCD4A69D3E06906 {“lastseen”:”2026-06-26T13:36:50″,”description”:””,”published”:”2026-06-26T12:00:...	N/A	N/A	Jun 26, 2026	AKAMAIBLOG
NONE	MALWAREBYTES:78...	Malware steals Chrome session cookies to take over your accounts_MALWAREBYTES:788C013A9E21914EAA8C63074A6CEDAB An email attachment leads to the installation of a malicious Chrome extension. Researchers say it is part of a Windows backdoor delivered via a phi...	N/A	N/A	Jun 26, 2026	MALWAREBYTES
NONE	HACKREAD:93DAA7...	macOS Flaw Allowed Standard Users to Disable CrowdStrike and Kandji Security Tools_HACKREAD:93DAA706F3622B28554D356980224D24 A macOS XPC flaw let regular users disable CrowdStrike and Kandji tools, exposing security gaps that vendors patched after XM Cyber reported the se...	N/A	N/A	Jun 26, 2026	HACKREAD
HIGH 8.5	THN:E8D8161AFE5...	Amazon Q Developer Flaw Could Let Malicious Repos Run Code via MCP Configs_THN:E8D8161AFE599365E1D9D2A719B2C65B ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEig3gygt20RdznayWN2yru6wSgNt8CSdr16F8I-naxtPn837cr6v0uV0bXdhz36P1XYrpnjmzDXTAtH0wa43M...	N/A	N/A	Jun 26, 2026	THN
MEDIUM 5.4	0D5ACD84-8796-	Exploit for Cross-site Scripting in Docmost_0D5ACD84-8796-5644-A05C-46FADC4B35D4 CVE-2026-34212 Docmost accepted a javascript: URL inside an attachment node, preserved it through storage and rendering, and turned it back into a ...	N/A	N/A	Jun 26, 2026	GITHUBEXPLOIT
MEDIUM 5.4	0A738D4C-E642-	Exploit for Authorization Bypass Through User-Controlled Key in Docmost_0A738D4C-E642-58D3-988B-4E964946EC66 CVE-2026-34213 A low-privileged Docmost user could supply a victim attachmentId to the generic upload endpoint and overwrite another page's stored ...	N/A	N/A	Jun 26, 2026	GITHUBEXPLOIT
HIGH 7.6	E61DF141-B3A8-	Exploit for CVE-2026-34207_E61DF141-B3A8-537B-8845-233051D12F82 CVE-2026-34207 The SSRF filter checked hostname text, but the actual destination was decided later by DNS. That gap let attacker-controlled Webhook...	N/A	N/A	Jun 26, 2026	GITHUBEXPLOIT
HIGH 8.3	22CFEBF4-738A-	Exploit for Missing Authorization in Plane_22CFEBF4-738A-52AD-B1A9-E066D3D33C80 CVE-2026-46558 Plane’s V2 asset subsystem trusted workspace slugs and asset UUIDs without enforcing the right membership checks, which let one auth...	N/A	N/A	Jun 26, 2026	GITHUBEXPLOIT

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

CVE-2026-53914_CVE-2026-53914

Recent Advisories

Client4 fails to validate path parameters_CVE-2026-13426

The Cloud Giants Are Architecting an Agentic Future They Can’t Run_AKAMAIBLOG:978E7ED61CD644037FCD4A69D3E06906

Malware steals Chrome session cookies to take over your accounts_MALWAREBYTES:788C013A9E21914EAA8C63074A6CEDAB

macOS Flaw Allowed Standard Users to Disable CrowdStrike and Kandji Security Tools_HACKREAD:93DAA706F3622B28554D356980224D24

Amazon Q Developer Flaw Could Let Malicious Repos Run Code via MCP Configs_THN:E8D8161AFE599365E1D9D2A719B2C65B

Exploit for Cross-site Scripting in Docmost_0D5ACD84-8796-5644-A05C-46FADC4B35D4

Exploit for Authorization Bypass Through User-Controlled Key in Docmost_0A738D4C-E642-58D3-988B-4E964946EC66

Exploit for CVE-2026-34207_E61DF141-B3A8-537B-8845-233051D12F82

Exploit for Missing Authorization in Plane_22CFEBF4-738A-52AD-B1A9-E066D3D33C80

Protect Your Attack Surface with RedGem

Security Intelligence
Feed