Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

207 New today

66,902 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

294

Jun 23

355

Jun 24

376

Jun 25

386

Jun 26

Jun 27

318

Jun 28

284

Jun 29

198

Jun 30

Critical

High

Medium

Low

Latest

GITHUBEXPLOIT CVSS 9.8

Exploit for CVE-2026-10580_A372C56F-D8B3-5DAE-BD3F-1EB6467679D8

CVE-2026-10580 - WordPress - Hippoo Mobile App for WooCommerce 1.9.4. Additionally: - Regularly audit user accounts for unauthorized changes - Monitor logs for unexpected API requests to /wp-json/wc-hippoo/v1/ext/wp/v2/users - Consider restricting...

A372C56F-D8B3-5DAE-BD3F-1EB6467679D8

Jun 30, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 5.3	CVE-2026-12349	Premium Addons for KingComposer <= 1.1.1 - Missing Authorization to Unauthenticated Arbitrary Custom Sidebar Creation and Deletion via 'add_custom_sidebar' and 'remove_custom_sidebar' AJAX actions_CVE-2026-12349 The Premium Addons for KingComposer plugin for WordPress is vulnerable to unauthorized modification and loss of data in versions up to, and includi...	octagonwebstudio	Premium Addons for KingComposer	Jun 30, 2026	CVE
CRITICAL 9.8	CVE-2026-12073	ProfileGrid – User Profiles, Groups and Communities <= 5.9.9.5 - Unauthenticated Privilege Escalation via Email Overwrite_CVE-2026-12073 The ProfileGrid – User Profiles, Groups and Communities plugin for WordPress is vulnerable to privilege escalation via account takeover in all vers...	metagauss	ProfileGrid – User Profiles, Groups and Communities	Jun 30, 2026	CVE
MEDIUM 6.5	CVE-2026-11367	PixMagix <= 1.7.2 - Authenticated (Author+) Path Traversal in 'layers[].id' Parameter_CVE-2026-11367 The PixMagix – WordPress Image Editor plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 1.7.2 via the...	andrasweb	PixMagix – WordPress Image Editor	Jun 30, 2026	CVE
MEDIUM 6.1	CVE-2026-56809	CVE-2026-56809_CVE-2026-56809 Multiple laser printers and MFPs (multifunction printers) which implement Ricoh Web Image Monitor contain a reflected cross-site scripting vulnerab...	Ricoh Company, Ltd.	Multiple laser printers and MFPs which implement Ricoh Web Image Monitor see the information provided by the vendor	Jun 30, 2026	CVE
HIGH 7.2	CVE-2026-56808	CVE-2026-56808_CVE-2026-56808 DGM3103SCT provided by AVTECH Security Corporation contains an OS command injection vulnerability, which may lead to arbitrary command execution wi...	AVTECH Security Corporation	DGM3103SCT firmware version 3.2.5.4 and prior	Jun 30, 2026	CVE
HIGH 7.8	CVE-2026-56137	CVE-2026-56137_CVE-2026-56137 RPG MAKER MV and MZ provided by Gotcha Gotcha Games Inc. contain an OS command injection vulnerability. If a user loads a specially crafted save-fi...	Gotcha Gotcha Games Inc.	RPG MAKER MV 1.6.3 and earlier	Jun 30, 2026	CVE
HIGH 7.5	CVE-2026-14164	Libarchive: double-free vulnerability in rar5 decompression logic via dangling filtered_buf pointer in init_unpack()_CVE-2026-14164 A double free issue has been identified in libarchive's RAR5 reader. During parsing of a specially crafted RAR5 archive, the filtered_buf pointer m...	Red Hat	Red Hat Enterprise Linux 10	Jun 30, 2026	CVE
CRITICAL 9.3	CVE-2026-12819	DVP-12SE Missing Authentication and Unauthorized Write access Vulnerability_CVE-2026-12819 Delta Electronics DVP12SE PLC exposes a Modbus TCP service over a specified port without authentication or access control, permitting unauthenticat...	deltaww	DVP-12SE *	Jun 30, 2026	CVE
CRITICAL 9.3	CVE-2026-12818	DVP-12SE Exposure of Sensitive Information Vulnerability_CVE-2026-12818 Delta Electronics DVP12SE PLCs are susceptible to a resource allocation vulnerability without limits or throttling (CWE-770) within their Modbus TC...	deltaww	DVP-12SE *	Jun 30, 2026	CVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

Exploit for CVE-2026-10580_A372C56F-D8B3-5DAE-BD3F-1EB6467679D8

Recent Advisories

Premium Addons for KingComposer <= 1.1.1 - Missing Authorization to Unauthenticated Arbitrary Custom Sidebar Creation and Deletion via 'add_custom_sidebar' and 'remove_custom_sidebar' AJAX actions_CVE-2026-12349

ProfileGrid – User Profiles, Groups and Communities <= 5.9.9.5 - Unauthenticated Privilege Escalation via Email Overwrite_CVE-2026-12073

PixMagix <= 1.7.2 - Authenticated (Author+) Path Traversal in 'layers[].id' Parameter_CVE-2026-11367

CVE-2026-56809_CVE-2026-56809

CVE-2026-56808_CVE-2026-56808

CVE-2026-56137_CVE-2026-56137

Libarchive: double-free vulnerability in rar5 decompression logic via dangling filtered_buf pointer in init_unpack()_CVE-2026-14164

DVP-12SE Missing Authentication and Unauthorized Write access Vulnerability_CVE-2026-12819

DVP-12SE Exposure of Sensitive Information Vulnerability_CVE-2026-12818

Protect Your Attack Surface with RedGem

Security Intelligence
Feed