Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

364 New today

66,027 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

Jun 14

443

Jun 15

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

294

Jun 23

355

Jun 24

376

Jun 25

364

Jun 26

Jun 27

Critical

High

Medium

Low

Latest

CVE CVSS 5.3

WordPress Blocksy Companion Pro plugin <= 2.1.46 - Insecure Direct Object References (IDOR) vulnerability_CVE-2026-57630

Unauthenticated Insecure Direct Object References (IDOR) in Blocksy Companion Pro <= 2.1.46 versions.

CVE-2026-57630 Creative Themes Blocksy Companion Pro n/a

Jun 26, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 6.5	CVE-2026-57629	WordPress StatCounter plugin <= 2.1.1 - Cross Site Scripting (XSS) vulnerability_CVE-2026-57629 Contributor Cross Site Scripting (XSS) in StatCounter	StatCounter	StatCounter n/a	Jun 26, 2026	CVE
HIGH 7.6	CVE-2026-57628	WordPress WP All Import plugin <= 4.0.1 - SQL Injection vulnerability_CVE-2026-57628 Administrator SQL Injection in WP All Import	WP All Import	WP All Import n/a	Jun 26, 2026	CVE
MEDIUM 4.9	CVE-2026-57627	WordPress Kirki plugin <= 6.0.11 - Server Side Request Forgery (SSRF) vulnerability_CVE-2026-57627 Subscriber Server Side Request Forgery (SSRF) in Kirki	Themeum	Kirki n/a	Jun 26, 2026	CVE
MEDIUM 4.3	CVE-2026-57622	WordPress WPCafe plugin <= 3.0.14 - Broken Access Control vulnerability_CVE-2026-57622 Subscriber Broken Access Control in WPCafe	Arraytics	WPCafe n/a	Jun 26, 2026	CVE
MEDIUM 6.5	CVE-2026-57618	WordPress Neve PRO theme <= 3.1.2 - Cross Site Scripting (XSS) vulnerability_CVE-2026-57618 Contributor Cross Site Scripting (XSS) in Neve PRO	Themeisle	Neve PRO n/a	Jun 26, 2026	CVE
MEDIUM 6.5	CVE-2026-57617	WordPress SeedProd Pro plugin < 6.19.5 - Cross Site Scripting (XSS) vulnerability_CVE-2026-57617 Contributor Cross Site Scripting (XSS) in SeedProd Pro < 6.19.5 versions.	SeedProd LLC.	SeedProd Pro n/a	Jun 26, 2026	CVE
HIGH 8.7	CVE-2026-57527	ZAP ViewState Add-on Insecure Deserialization via JSFViewState.decode()_CVE-2026-57527 Zed Attack Proxy (ZAP) ViewState add-on before version 4 contains an insecure deserialization vulnerability that allows attackers who control a pro...	zaproxy	zap-extensions	Jun 26, 2026	CVE
MEDIUM 6.5	CVE-2026-57431	WordPress Featured Image plugin <= 2.1 - Cross Site Scripting (XSS) vulnerability_CVE-2026-57431 Author Cross Site Scripting (XSS) in Featured Image	Mervin Praison	Featured Image n/a	Jun 26, 2026	CVE
MEDIUM 4.3	CVE-2026-57430	WordPress SEOPress PRO plugin <= 9.1.1 - Broken Access Control vulnerability_CVE-2026-57430 Contributor Broken Access Control in SEOPress PRO	SEOPress Free	SEOPress PRO n/a	Jun 26, 2026	CVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

WordPress Blocksy Companion Pro plugin <= 2.1.46 - Insecure Direct Object References (IDOR) vulnerability_CVE-2026-57630

Recent Advisories

WordPress StatCounter plugin <= 2.1.1 - Cross Site Scripting (XSS) vulnerability_CVE-2026-57629

WordPress WP All Import plugin <= 4.0.1 - SQL Injection vulnerability_CVE-2026-57628

WordPress Kirki plugin <= 6.0.11 - Server Side Request Forgery (SSRF) vulnerability_CVE-2026-57627

WordPress WPCafe plugin <= 3.0.14 - Broken Access Control vulnerability_CVE-2026-57622

WordPress Neve PRO theme <= 3.1.2 - Cross Site Scripting (XSS) vulnerability_CVE-2026-57618

WordPress SeedProd Pro plugin < 6.19.5 - Cross Site Scripting (XSS) vulnerability_CVE-2026-57617

ZAP ViewState Add-on Insecure Deserialization via JSFViewState.decode()_CVE-2026-57527

WordPress Featured Image plugin <= 2.1 - Cross Site Scripting (XSS) vulnerability_CVE-2026-57431

WordPress SEOPress PRO plugin <= 9.1.1 - Broken Access Control vulnerability_CVE-2026-57430

Protect Your Attack Surface with RedGem

Security Intelligence
Feed