Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

292 New today
64,923 Total advisories
Live Monitoring

Daily Security Trends (Last 14 Days)

351
Jun 10
245
Jun 11
336
Jun 12
60
Jun 13
68
Jun 14
443
Jun 15
630
Jun 16
464
Jun 17
3
Jun 18
352
Jun 19
56
Jun 20
104
Jun 21
317
Jun 22
285
Jun 23
Critical
High
Medium
Low

Recent Advisories

Severity ID Title Vendor Product Date Type
MEDIUM 5.5 CVE-2026-12163

Stored XSS in Fortra File Integrity Monitoring (FIM)_CVE-2026-12163

Fortra File Integrity Monitoring (FIM), formerly Tripwire Enterprise, versions prior to 9.4.0.1 contain a stored cross-site scripting (XSS) vulnera...

Fortra Fortra File Integrity Monitoring (FIM) CVE
HIGH 8.2 CVE-2026-11972

tarfile opened in streaming mode mishandles EOF_CVE-2026-11972

When using the "tarfile" module with a file opened in "streaming mode" (mode="r|") the tarfile module did not properly handle EOF, meaning an archi...

Python Software Foundation CPython CVE
HIGH 8.7 F3832E4F-76F3-

Exploit for CVE-2026-11834_F3832E4F-76F3-50B7-92A3-92EB0B582EB1

CVE-2026-11834 PoC TP-Link DHCP Option 66 Unauthenticated RCE CVE-2026-11834 Overview A command injection vulnerability CWE-78 in the DHCP Option 6...

N/A N/A GITHUBEXPLOIT
HIGH 7.8 C3D90422-8858-

Exploit for Use After Free in Microsoft_C3D90422-8858-5EAC-A8E5-588AF315EA86

CVE-2026-42978 PoC & Research Windows Push Notifications Use-After-Free Race condition in Windows Push Notifications service WpnService that runs a...

N/A N/A GITHUBEXPLOIT
HIGH 8.2 MSF:AUXILIARY-SCANNER-

Audiobookshelf Unauthenticated API Authentication Bypass Scanner_MSF:AUXILIARY-SCANNER-HTTP-AUDIOBOOKSHELF_AUTH_BYPASS-

This module detects Audiobookshelf servers affected by CVE-2025-25205, an unauthenticated authentication bypass. Affected versions 2.17.0 through 2...

N/A N/A METASPLOIT
NONE D00ABD7F-A3B6-

web-exploitation-lab_D00ABD7F-A3B6-5F61-A944-65E5960AB87E

🌐 Web Exploitation Lab Payloads, techniques et cheatsheet web — SQLi, XSS, LFI, SSRF — by @ibramoha2 --- 💉 SQL Injection sql -- Test basique ' OR...

N/A N/A GITHUBEXPLOIT
CRITICAL 9.8 IMPERVABLOG:CC2...

CVE-2025-54068 Laravel Livewire Credential Theft Campaign: 6,000+ Applications Compromised_IMPERVABLOG:CC22F53AF67610E01435FC711BB2B03F

## **Introduction** On May 24, 2026, Imperva observed exploitation attempts against Laravel Livewire applications, blocked by the Imperva Cloud WA...

N/A N/A IMPERVABLOG
NONE HACKREAD:40BF5A...

LastPass Confirms Customer Data Breach After Klue OAuth Token Theft_HACKREAD:40BF5AE34923B51723CA316715EF181B

LastPass has confirmed it was affected by the Klue supply chain incident, saying an unauthorised actor used stolen…

N/A N/A HACKREAD
NONE WIRED:97C27F256...

Dialog Claims It Was Hacked. A Misconfigured Website Left Its Members Exposed_WIRED:97C27F256D0F2D95C8FBD8F9552B9208

The private events group, cofounded by Peter Thiel, says a “criminal” hacker is behind a breach that exposed members’ personal details. WIRED found...

N/A N/A WIRED