Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

364 New today

66,027 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

Jun 14

443

Jun 15

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

294

Jun 23

355

Jun 24

376

Jun 25

364

Jun 26

Jun 27

Critical

High

Medium

Low

Latest

PACKETSTORM CVSS 7.6

📄 TypeBot Server-Side Request Forgery_PACKETSTORM:224380

TypeBot versions prior to 3.16.0 suffer from a server-side request forgery vulnerability...

PACKETSTORM:224380

Jun 26, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 5.4	PACKETSTORM:224388	📄 Docmost 0.70.x Authorization Bypass_PACKETSTORM:224388 A low-privileged Docmost user could supply a victim attachmentId to the generic upload endpoint and overwrite another page's stored attachment insi...	N/A	N/A	Jun 26, 2026	PACKETSTORM
HIGH 8.6	PACKETSTORM:224376	📄 Yeoman Environment 6.0.0 Code Execution_PACKETSTORM:224376 Yeoman Environment versions 2.9.0 through 6.0.0 have an issue where missing generators can be installed without user confirmation, turning attacker...	N/A	N/A	Jun 26, 2026	PACKETSTORM
NONE	PACKETSTORM:224373	📄 Penpot Server-Side Request Forgery_PACKETSTORM:224373 Penpot's remote image import let an authenticated file editor turn a normal media convenience feature into backend-origin server-side request forge...	N/A	N/A	Jun 26, 2026	PACKETSTORM
HIGH 8.3	PACKETSTORM:224372	📄 Plane Improper Authorization_PACKETSTORM:224372 Plane's asset subsystem trusted workspace slugs and asset UUIDs without enforcing the right membership checks, which let one authenticated user rea...	N/A	N/A	Jun 26, 2026	PACKETSTORM
MEDIUM 4.3	PACKETSTORM:224390	📄 Docmost 0.70.2 Authorization Bypass_PACKETSTORM:224390 In Docmost versions 0.70.0 through 0.70.2, restricted child pages hidden from public share viewers could still leak through public share search res...	N/A	N/A	Jun 26, 2026	PACKETSTORM
NONE	PACKETSTORM:224403	📄 phpSysInfo 3.4.5 IP Allowlist Bypass_PACKETSTORM:224403 phpSysInfo versions 3.4.5 and below suffer from an IP Allowlist bypass vulnerability...	N/A	N/A	Jun 26, 2026	PACKETSTORM
NONE	PACKETSTORM:224409	📄 Peyara Remote Mouse 1.0.1 Unauthenticated Remote Code Execution_PACKETSTORM:224409 This Metasploit module exploits an unauthenticated remote code execution vulnerability in Peyara Remote Mouse 1.0.1. The application exposes a Sock...	N/A	N/A	Jun 26, 2026	PACKETSTORM
CRITICAL 10	B351E803-26D7-	Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Microsoft_B351E803-26D7-5CFC-8727-D423591F86F5 SMBGhost Scanner — CVE-2020-0796 SMBv3 vulnerability scanner SMBGhost. Detects vulnerable Windows hosts by sending a malformed SMBv3 negotiation pa...	N/A	N/A	Jun 26, 2026	GITHUBEXPLOIT
CRITICAL 9.4	ED8AC01D-C112-	Exploit for SQL Injection in Ghost_ED8AC01D-C112-5F2F-86B2-002DDA813E82 CVE-2026-26980 — Ghost CMS Content API Blind SQL Injection Affected: Ghost 3.24.0 – 6.19.0 Fixed in: Ghost 6.19.1 Auth required: None — Content API...	N/A	N/A	Jun 26, 2026	GITHUBEXPLOIT

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

📄 TypeBot Server-Side Request Forgery_PACKETSTORM:224380

Recent Advisories

📄 Docmost 0.70.x Authorization Bypass_PACKETSTORM:224388

📄 Yeoman Environment 6.0.0 Code Execution_PACKETSTORM:224376

📄 Penpot Server-Side Request Forgery_PACKETSTORM:224373

📄 Plane Improper Authorization_PACKETSTORM:224372

📄 Docmost 0.70.2 Authorization Bypass_PACKETSTORM:224390

📄 phpSysInfo 3.4.5 IP Allowlist Bypass_PACKETSTORM:224403

📄 Peyara Remote Mouse 1.0.1 Unauthenticated Remote Code Execution_PACKETSTORM:224409

Exploit for Improper Restriction of Operations within the Bounds of a Memory Buffer in Microsoft_B351E803-26D7-5CFC-8727-D423591F86F5

Exploit for SQL Injection in Ghost_ED8AC01D-C112-5F2F-86B2-002DDA813E82

Protect Your Attack Surface with RedGem

Security Intelligence
Feed