Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

163 New today

66,069 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

Jun 14

443

Jun 15

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

294

Jun 23

355

Jun 24

376

Jun 25

386

Jun 26

Jun 27

Critical

High

Medium

Low

Latest

GITHUBEXPLOIT

joomla-exploits-main_ED09B2EE-07B3-547B-93CC-D9DAC465C0D2

joomla-exploits 😸 Title: Joomla! 4.2.8 - Unauthenticated information disclosure Exploit author: HACKFUT Date: 2024-01-24 Vendor Homepage: https://www.joomla.org/ Version: 4.0.0 4.2.8 it means from 4.0.0 up to 4.2.7 Mode simple python3 exploit.py...

ED09B2EE-07B3-547B-93CC-D9DAC465C0D2

Jun 27, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 8.7	7D0D67E6-AAE8-	Exploit for CVE-2026-46331_7D0D67E6-AAE8-52CC-B577-3C66E3ECB231 cve-id ⚡ Simple Usage Use this project only in safe and authorized environments such as: - Local virtual machines - Docker containers - Isolated l...	N/A	N/A	Jun 27, 2026	GITHUBEXPLOIT
NONE	20339A1B-9C90-	testimonial-widgets-sqli-cve_20339A1B-9C90-5D17-8F25-2CA188B77EB8 CVE-2026-XXXXX Admin SQL Injection in Testimonial Widgets WordPress Plugin via Search Parameter --- Advisory Information \| Field \| Value \| \|-------...	N/A	N/A	Jun 27, 2026	GITHUBEXPLOIT
NONE	90D1D177-0CB7-	sakura-theme-sqli-cve_90D1D177-0CB7-518B-832F-B8A088EB0B9F CVE-2026-XXXXX Unauthenticated SQL Injection in Sakura WordPress Theme via Comment Markdown Parser --- Advisory Information \| Field \| Value \| \|----...	N/A	N/A	Jun 27, 2026	GITHUBEXPLOIT
NONE	5E55BB2B-EBD9-	boxmoe-dove-sqli-cve_5E55BB2B-EBD9-5DB8-8B52-3F16A438DA24 CVE-2026-XXXXX Unauthenticated SQL Injection in Boxmoe Dove WordPress Theme via AJAX Comment Handler --- Advisory Information \| Field \| Value \| \|--...	N/A	N/A	Jun 27, 2026	GITHUBEXPLOIT
MEDIUM 4.3	CVE-2026-13422	HD Quiz 2.2.0 – 2.2.1 – Cross-Site Request Forgery via Multiple AJAX Handlers_CVE-2026-13422 The HD Quiz plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions 2.2.0 to 2.2.1. This is due to missing or incorrect nonce ...	harmonic_design	HD Quiz 2.2.0	Jun 27, 2026	CVE
MEDIUM 6.4	CVE-2026-13335	CodePeople Post Map for Google Maps <= 1.2.6 - Authenticated (Contributor +) Stored Cross-Site Scripting via 'cpm_point' Post Meta_CVE-2026-13335 The CodePeople Post Map for Google Maps plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'cpm_point' Post Meta in all versions...	codepeople	CodePeople Post Map for Google Maps	Jun 27, 2026	CVE
MEDIUM 6.5	CVE-2026-13333	Groundhogg <= 4.5.5 - Authenticated (Sales Rep+) SQL Injection via 'query[select]' Parameter_CVE-2026-13333 The Groundhogg — CRM, Newsletters, and Marketing Automation plugin for WordPress is vulnerable to generic SQL Injection via 'query[select]' Paramet...	trainingbusinesspros	Groundhogg — CRM, Newsletters, and Marketing Automation	Jun 27, 2026	CVE
MEDIUM 6.5	CVE-2026-13331	Groundhogg <= 4.5.5 - Authenticated (Marketer+) SQL Injection via 'search' Parameter_CVE-2026-13331 The Groundhogg — CRM, Newsletters, and Marketing Automation plugin for WordPress is vulnerable to generic SQL Injection via the 'search' parameter ...	trainingbusinesspros	Groundhogg — CRM, Newsletters, and Marketing Automation	Jun 27, 2026	CVE
MEDIUM 4.4	CVE-2026-11356	Ivory Search <= 5.5.15 - Authenticated (Administrator+) Stored Cross-Site Scripting via 'menu_title' and 'menu_magnifier_color' Settings_CVE-2026-11356 The Ivory Search – WordPress Search Plugin plugin for WordPress is vulnerable to Stored Cross-Site Scripting via 'menu_title' and 'menu_magnifier_c...	vinod-dalvi	Ivory Search – WordPress Search Plugin	Jun 27, 2026	CVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

joomla-exploits-main_ED09B2EE-07B3-547B-93CC-D9DAC465C0D2

Recent Advisories

Exploit for CVE-2026-46331_7D0D67E6-AAE8-52CC-B577-3C66E3ECB231

testimonial-widgets-sqli-cve_20339A1B-9C90-5D17-8F25-2CA188B77EB8

sakura-theme-sqli-cve_90D1D177-0CB7-518B-832F-B8A088EB0B9F

boxmoe-dove-sqli-cve_5E55BB2B-EBD9-5DB8-8B52-3F16A438DA24

HD Quiz 2.2.0 – 2.2.1 – Cross-Site Request Forgery via Multiple AJAX Handlers_CVE-2026-13422

CodePeople Post Map for Google Maps <= 1.2.6 - Authenticated (Contributor +) Stored Cross-Site Scripting via 'cpm_point' Post Meta_CVE-2026-13335

Groundhogg <= 4.5.5 - Authenticated (Sales Rep+) SQL Injection via 'query[select]' Parameter_CVE-2026-13333

Groundhogg <= 4.5.5 - Authenticated (Marketer+) SQL Injection via 'search' Parameter_CVE-2026-13331

Ivory Search <= 5.5.15 - Authenticated (Administrator+) Stored Cross-Site Scripting via 'menu_title' and 'menu_magnifier_color' Settings_CVE-2026-11356

Protect Your Attack Surface with RedGem

Security Intelligence
Feed