Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

251 New today

66,900 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

294

Jun 23

355

Jun 24

376

Jun 25

386

Jun 26

Jun 27

318

Jun 28

284

Jun 29

196

Jun 30

Critical

High

Medium

Low

Latest

CVE CVSS 4.4

Foreman: ssrf to cloud metada service through unvalidated test_url parameters in foreman config_CVE-2026-13316

A flaw has been found in foreman when HTTP parameters are modified in http_proxies_controller and http_proxy files. Attackers can perform an SSRF attack and steal cloud metadata service on AWS/GCP/Azure environment through foreman component.

CVE-2026-13316 Red Hat Red Hat Satellite 6

Jun 30, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 7.3	201DCF14-1AAA-	wp-exploit_201DCF14-1AAA-5BD3-BC87-3A8A7BBBCF54 🚀 FULLCVE-2026-6433 Advanced WordPress Exploitation Framework --- 📖 Overview FULLCVE-2026-6433 is a modular, high-performance toolkit designed to...	N/A	N/A	Jun 30, 2026	GITHUBEXPLOIT
HIGH 7.8	54DE62F9-A0CE-	Exploit for Use After Free in Google Android_54DE62F9-A0CE-554B-A9D1-FCB05FE5250D Root Sonim XP3800 Root access for the Sonim XP3800 XP3plus. Two paths are available — choose whichever fits your situation. Two paths to root Optio...	N/A	N/A	Jun 30, 2026	GITHUBEXPLOIT
NONE	THN:7F75382DA65...	AirDrop and Quick Share Flaws Let Nearby Attackers Trigger Crashes and Bypass Checks_THN:7F75382DA651A5ECDEF282D4E511FDDF ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEhCyrr25-wXst4kOLIEi1-Q1d5XMVDCvWqUacEoSRsLn6C5CbKoXGLb4nzTB-DVr9cLOkyuIT5wyMrQICAVhQ...	N/A	N/A	Jun 30, 2026	THN
NONE	THN:27E06C2F7B7...	New BioShocking Attack Tricks AI Browsers Into Leaking User Credentials_THN:27E06C2F7B7D18B0ABBE148809FF4D82 ![](https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEitNDarGF3uRKXTWC12cbM97uJW3DxiLuQwmplVLHEqdrUZJdzbkMz6Wc524z5Xu2GGSyNYhMT_m9kGqqGjRm...	N/A	N/A	Jun 30, 2026	THN
CRITICAL 9.8	FBFF27F7-8ED1-	Exploit for CVE-2026-56121_FBFF27F7-8ED1-5776-9326-EF2D07BF0586 CVE-2026-56121 — Feast Unauthenticated RCE via gRPC Registry Deserialization The Feast function of an OnDemandFeatureView as soon as a spec arrives...	N/A	N/A	Jun 30, 2026	GITHUBEXPLOIT
CRITICAL 9.4	8276B0B0-A504-	Exploit for OS Command Injection in Devcode Openstamanager_8276B0B0-A504-5BFB-96EF-E9535076655D CVE-2025-69212-PoC https://github.com/advisories/GHSA-25fp-8w8p-mx36 A critical OS Command Injection vulnerability exists in the P7M signed XML fil...	N/A	N/A	Jun 30, 2026	GITHUBEXPLOIT
CRITICAL 9.8	2EC91A8F-3FD4-	CVE-2026-XXXX-silverpeak-webgms-9.5.6-exposed-admin_2EC91A8F-3FD4-54B9-8741-6AC2418907A9 CVE-2026-XXXX: NVIDIA/SilverPeak SD-WAN webGMS - Exposed Admin Interface Product NVIDIA SilverPeak SD-WAN webGMS Global Management System - Version...	N/A	N/A	Jun 30, 2026	GITHUBEXPLOIT
CRITICAL 9.8	A372C56F-D8B3-	Exploit for CVE-2026-10580_A372C56F-D8B3-5DAE-BD3F-1EB6467679D8 CVE-2026-10580 - WordPress - Hippoo Mobile App for WooCommerce 1.9.4. Additionally: - Regularly audit user accounts for unauthorized changes - Moni...	N/A	N/A	Jun 30, 2026	GITHUBEXPLOIT
MEDIUM 5.3	CVE-2026-12349	Premium Addons for KingComposer <= 1.1.1 - Missing Authorization to Unauthenticated Arbitrary Custom Sidebar Creation and Deletion via 'add_custom_sidebar' and 'remove_custom_sidebar' AJAX actions_CVE-2026-12349 The Premium Addons for KingComposer plugin for WordPress is vulnerable to unauthorized modification and loss of data in versions up to, and includi...	octagonwebstudio	Premium Addons for KingComposer	Jun 30, 2026	CVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

Foreman: ssrf to cloud metada service through unvalidated test_url parameters in foreman config_CVE-2026-13316

Recent Advisories

wp-exploit_201DCF14-1AAA-5BD3-BC87-3A8A7BBBCF54

Exploit for Use After Free in Google Android_54DE62F9-A0CE-554B-A9D1-FCB05FE5250D

AirDrop and Quick Share Flaws Let Nearby Attackers Trigger Crashes and Bypass Checks_THN:7F75382DA651A5ECDEF282D4E511FDDF

New BioShocking Attack Tricks AI Browsers Into Leaking User Credentials_THN:27E06C2F7B7D18B0ABBE148809FF4D82

Exploit for CVE-2026-56121_FBFF27F7-8ED1-5776-9326-EF2D07BF0586

Exploit for OS Command Injection in Devcode Openstamanager_8276B0B0-A504-5BFB-96EF-E9535076655D

CVE-2026-XXXX-silverpeak-webgms-9.5.6-exposed-admin_2EC91A8F-3FD4-54B9-8741-6AC2418907A9

Exploit for CVE-2026-10580_A372C56F-D8B3-5DAE-BD3F-1EB6467679D8

Premium Addons for KingComposer <= 1.1.1 - Missing Authorization to Unauthenticated Arbitrary Custom Sidebar Creation and Deletion via 'add_custom_sidebar' and 'remove_custom_sidebar' AJAX actions_CVE-2026-12349

Protect Your Attack Surface with RedGem

Security Intelligence
Feed