Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

279 New today

65,322 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

336

Jun 12

Jun 13

Jun 14

443

Jun 15

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

294

Jun 23

355

Jun 24

Jun 25

Critical

High

Medium

Low

Latest

CVE CVSS 6.5

Dokan Pro <= 5.0.4 - Authenticated (Subscriber+) SQL Injection via 'orderby' Parameter_CVE-2026-12079

The Dokan Pro plugin for WordPress is vulnerable to time-based SQL Injection via the ’orderby’ parameter in all versions up to, and including, 5.0.4 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This ...

CVE-2026-12079 wedevs Dokan Pro

Jun 25, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 7.5	CVE-2026-12077	Dokan Pro <= 5.0.4 - Unauthenticated SQL Injection via 'latitude' and 'longitude' Parameters_CVE-2026-12077 The Dokan Pro plugin for WordPress is vulnerable to time-based SQL Injection via the via 'latitude' and 'longitude' parameters in all versions up t...	wedevs	Dokan Pro	Jun 25, 2026	CVE
MEDIUM 6.4	CVE-2026-10833	Gutenberg Essential Blocks – Page Builder for Gutenberg Blocks & Patterns <= 6.1.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'configurablePrefix' Block Attribute_CVE-2026-10833 The Gutenberg Essential Blocks – Page Builder for Gutenberg Blocks & Patterns plugin for WordPress is vulnerable to Stored Cross-Site Scripting via...	wpdevteam	Gutenberg Essential Blocks – Page Builder for Gutenberg Blocks & Patterns	Jun 25, 2026	CVE
CRITICAL 10	5FA37F16-CC15-	Exploit for Unprotected Alternate Channel in Rockwellautomation Allen-Bradley_Stratix_5200_Firmware_5FA37F16-CC15-5CDD-A069-012BB3F346AF Cisco Router CVE-2023-20198 Exploit...	N/A	N/A	Jun 25, 2026	GITHUBEXPLOIT
NONE	3CC4E424-5FCB-	Exploit for CVE-2026-53075_3CC4E424-5FCB-5556-844D-9369707B9AF7 CVE-2026-53075poc POC of CVE-2026-53075...	N/A	N/A	Jun 25, 2026	GITHUBEXPLOIT
MEDIUM 6	CVE-2026-8663	OS Command Injection in Rapid7 InsightConnect RPM Plugin_CVE-2026-8663 OS Command Injection vulnerability in Rapid7 InsightConnect RPM Plugin on Linux allows authenticated attackers to execute arbitrary OS commands via...	Rapid7	InsightConnect RPM Plugin	Jun 24, 2026	CVE
MEDIUM 6	CVE-2026-8659	OS Command Injection in Rapid7 InsightConnect SQLmap Plugin_CVE-2026-8659 OS Command Injection vulnerability in Rapid7 InsightConnect SQLmap Plugin on Linux allows authenticated attackers to execute arbitrary OS commands ...	Rapid7	InsightConnect SQLmap Plugin	Jun 25, 2026	CVE
HIGH 8.8	CVE-2026-9155	OS Command Injection in Rapid7 InsightConnect Sed Plugin via expression parameter._CVE-2026-9155 OS Command Injection vulnerability in Rapid7 InsightConnect Sed Plugin on Linux allows authenticated attackers to execute arbitrary OS commands via...	Rapid7	InsightConnect Sed Plugin	Jun 25, 2026	CVE
HIGH 7.1	CVE-2026-9154	Arbitrary File Write in Rapid7 InsightConnect Sed Plugin_CVE-2026-9154 Arbitrary File Write vulnerability in Rapid7 InsightConnect Sed Plugin on Linux allows authenticated attackers to write attacker-controlled content...	Rapid7	InsightConnect Sed Plugin	Jun 25, 2026	CVE
MEDIUM 6.5	CVE-2026-9153	Arbitrary File Read in Rapid7 InsightConnect Sed Plugin_CVE-2026-9153 Arbitrary File Read vulnerability in Rapid7 InsightConnect Sed Plugin on Linux allows authenticated attackers to read arbitrary files via the expre...	Rapid7	InsightConnect Sed Plugin	Jun 25, 2026	CVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

Dokan Pro <= 5.0.4 - Authenticated (Subscriber+) SQL Injection via 'orderby' Parameter_CVE-2026-12079

Recent Advisories

Dokan Pro <= 5.0.4 - Unauthenticated SQL Injection via 'latitude' and 'longitude' Parameters_CVE-2026-12077

Gutenberg Essential Blocks – Page Builder for Gutenberg Blocks & Patterns <= 6.1.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'configurablePrefix' Block Attribute_CVE-2026-10833

Exploit for Unprotected Alternate Channel in Rockwellautomation Allen-Bradley_Stratix_5200_Firmware_5FA37F16-CC15-5CDD-A069-012BB3F346AF

Exploit for CVE-2026-53075_3CC4E424-5FCB-5556-844D-9369707B9AF7

OS Command Injection in Rapid7 InsightConnect RPM Plugin_CVE-2026-8663

OS Command Injection in Rapid7 InsightConnect SQLmap Plugin_CVE-2026-8659

OS Command Injection in Rapid7 InsightConnect Sed Plugin via expression parameter._CVE-2026-9155

Arbitrary File Write in Rapid7 InsightConnect Sed Plugin_CVE-2026-9154

Arbitrary File Read in Rapid7 InsightConnect Sed Plugin_CVE-2026-9153

Protect Your Attack Surface with RedGem

Security Intelligence
Feed