Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

364 New today
66,027 Total advisories
Live Monitoring

Daily Security Trends (Last 14 Days)

68
Jun 14
443
Jun 15
630
Jun 16
464
Jun 17
3
Jun 18
352
Jun 19
56
Jun 20
104
Jun 21
317
Jun 22
294
Jun 23
355
Jun 24
376
Jun 25
364
Jun 26
Jun 27
Critical
High
Medium
Low

Recent Advisories

Severity ID Title Vendor Product Date Type
MEDIUM 5.3 CVE-2026-57660

WordPress Booking and Rental Manager plugin <= 2.7.1 - Broken Access Control vulnerability_CVE-2026-57660

Unauthenticated Broken Access Control in Booking and Rental Manager

magepeopleteam Booking and Rental Manager n/a CVE
HIGH 8.8 CVE-2026-57659

WordPress Paid Memberships Pro – Add Member From Admin plugin <= 0.7.2 - Cross Site Request Forgery (CSRF) vulnerability_CVE-2026-57659

Unauthenticated Cross Site Request Forgery (CSRF) in Paid Memberships Pro - Add Member From Admin

Stranger Studios Paid Memberships Pro - Add Member From Admin 0.7.2 CVE
CRITICAL 9.1 CVE-2026-57658

WordPress TemplateSpare plugin <= 4.2.0 - Arbitrary File Upload vulnerability_CVE-2026-57658

Administrator Arbitrary File Upload in TemplateSpare

Templatespare TemplateSpare n/a CVE
MEDIUM 4.3 CVE-2026-57657

WordPress Gmail SMTP plugin <= 1.2.3.19 - Cross Site Request Forgery (CSRF) vulnerability_CVE-2026-57657

Unauthenticated Cross Site Request Forgery (CSRF) in Gmail SMTP

Noor Alam Gmail SMTP n/a CVE
MEDIUM 5.9 CVE-2026-57656

WordPress Hester Core plugin <= 1.1.8 - Cross Site Scripting (XSS) vulnerability_CVE-2026-57656

Author Cross Site Scripting (XSS) in Hester Core

peregrinethemes Hester Core n/a CVE
HIGH 8.2 CVE-2026-57655

WordPress Child theme Wizard plugin <= 1.4 - Cross Site Request Forgery (CSRF) vulnerability_CVE-2026-57655

Unauthenticated Cross Site Request Forgery (CSRF) in Child Theme Wizard

Jay Versluis Child Theme Wizard n/a CVE
MEDIUM 6.5 CVE-2026-57654

WordPress Affiliates Manager plugin <= 2.9.49 - Broken Access Control vulnerability_CVE-2026-57654

Affiliate Broken Access Control in Affiliates Manager

wp.insider Affiliates Manager n/a CVE
HIGH 8.5 CVE-2026-57653

WordPress WP Job Portal plugin <= 2.5.2 - SQL Injection vulnerability_CVE-2026-57653

Contributor SQL Injection in WP Job Portal

wpjobportal WP Job Portal n/a CVE
MEDIUM 5.3 CVE-2026-57652

WordPress JS Help Desk plugin <= 3.1.0 - Insecure Direct Object References (IDOR) vulnerability_CVE-2026-57652

Unauthenticated Insecure Direct Object References (IDOR) in JS Help Desk

JoomSky JS Help Desk n/a CVE