Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

307 New today

65,239 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

245

Jun 11

336

Jun 12

Jun 13

Jun 14

443

Jun 15

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

294

Jun 23

307

Jun 24

Critical

High

Medium

Low

Latest

CVE CVSS 8.7

Missing authentication for critical function in Hubbell Aclara Metrum Cellular Web Interface_CVE-2026-1840

The Aclara Metrum Cellular Web Interface is vulnerable to unauthorized access due to the absence of authentication controls on critical system functions. This weakness exposes essential configuration settings, allowing attackers to alter operational parameters and trigger syst...

CVE-2026-1840 Hubbell Aclara Metrum Cellular Web Interface

Jun 24, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 4.9	CVE-2025-64719	Gogs: Denial of Service in repository/wiki file listing web pages_CVE-2025-64719 Gogs is an open source self-hosted Git service. Prior to 0.14.3, a malicious user with rights to create a new file on a repository or wiki page can...	gogs	gogs < 0.14.3	Jun 24, 2026	CVE
CRITICAL 10	CVE-2026-52813	Gogs: Path Traversal in organization name results in RCE through Git hooks_CVE-2026-52813 Gogs is an open source self-hosted Git service. Prior to 0.14.3, organization names containing path traversal sequences (../) are accepted by Gogs,...	gogs	gogs < 0.14.3	Jun 24, 2026	CVE
HIGH 7.1	CVE-2026-52812	Gogs: LFS dedupe path leaks private repo content across tenants_CVE-2026-52812 Gogs is an open source self-hosted Git service. Prior to 0.14.3, Git LFS storage is content-addressed by OID alone (///) but per-repo authorization...	gogs	gogs < 0.14.3	Jun 24, 2026	CVE
CRITICAL 9	CVE-2026-52811	Gogs: UploadRepoFiles writes outside repo working tree via committed parent sym_CVE-2026-52811 Gogs is an open source self-hosted Git service. Prior to 0.14.3, (*Repository).UploadRepoFiles checks for symlinks only on the leaf of the upload t...	gogs	gogs < 0.14.3	Jun 24, 2026	CVE
HIGH 7.1	CVE-2026-52810	Gogs: Write to readonly repositories using receive-pack + service=git-upload-pack confusion_CVE-2026-52810 Gogs is an open source self-hosted Git service. Prior to 0.14.3, Git smart HTTP authorizes POST …/git-receive-pack using the client-supplied servic...	gogs	gogs < 0.14.3	Jun 24, 2026	CVE
MEDIUM 6.8	CVE-2026-52809	Gogs: Password-reset tokens use account-activation lifetime, ignoring RESET_PASSWORD_CODE_LIVES_CVE-2026-52809 Gogs is an open source self-hosted Git service. Prior to 0.14.3, password-reset tokens are generated using conf.Auth.ActivateCodeLives (the account...	gogs	gogs < 0.14.3	Jun 24, 2026	CVE
HIGH 7.1	CVE-2026-52808	Gogs: Write-level collaborators can mutate admin-only repository settings via API_CVE-2026-52808 Gogs is an open source self-hosted Git service. Prior to 0.14.3, three API endpoints — PATCH /api/v1/repos/:owner/:repo/issue-tracker, PATCH /api/v...	gogs	gogs < 0.14.3	Jun 24, 2026	CVE
HIGH 8.5	CVE-2026-52797	Gogs: Overwriting critical files results in a denial of service_CVE-2026-52797 Gogs is an open source self-hosted Git service. Prior to 0.14.0, as an authorized user, an intruder can dictate the value which is passed to the gi...	gogs	gogs < 0.14.0	Jun 24, 2026	CVE
MEDIUM 6.7	CVE-2026-49278	Rocket.Chat: Livechat Visitor Profile Disclosure Leaks Bearer Token and Enables Visitor Impersonation_CVE-2026-49278 Rocket.Chat is an open-source, secure, fully customizable communications platform. Prior to 8.5.0, 8.4.2, 8.3.4, 8.2.4, 8.1.5, 8.0.6, 7.13.8, and 7...	RocketChat	Rocket.Chat >= 8.5.0-rc.0, < 8.5.0	Jun 24, 2026	CVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

Missing authentication for critical function in Hubbell Aclara Metrum Cellular Web Interface_CVE-2026-1840

Recent Advisories

Gogs: Denial of Service in repository/wiki file listing web pages_CVE-2025-64719

Gogs: Path Traversal in organization name results in RCE through Git hooks_CVE-2026-52813

Gogs: LFS dedupe path leaks private repo content across tenants_CVE-2026-52812

Gogs: UploadRepoFiles writes outside repo working tree via committed parent sym_CVE-2026-52811

Gogs: Write to readonly repositories using receive-pack + service=git-upload-pack confusion_CVE-2026-52810

Gogs: Password-reset tokens use account-activation lifetime, ignoring RESET_PASSWORD_CODE_LIVES_CVE-2026-52809

Gogs: Write-level collaborators can mutate admin-only repository settings via API_CVE-2026-52808

Gogs: Overwriting critical files results in a denial of service_CVE-2026-52797

Rocket.Chat: Livechat Visitor Profile Disclosure Leaks Bearer Token and Enables Visitor Impersonation_CVE-2026-49278

Protect Your Attack Surface with RedGem

Security Intelligence
Feed