Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

204 New today

66,829 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

294

Jun 23

355

Jun 24

376

Jun 25

386

Jun 26

Jun 27

318

Jun 28

284

Jun 29

125

Jun 30

Critical

High

Medium

Low

Latest

CVE CVSS 3.7

CryptX versions before 0.088_001 for Perl compare AEAD authentication tags in non-constant time in the streaming decrypt_done path_CVE-2026-13758

CryptX versions before 0.088_001 for Perl compare AEAD authentication tags in non-constant time in the streaming decrypt_done path. The decrypt_done($tag) form compares it against the computed tag with memNE (memcmp() != 0), which short-circuits on the first differing byte, s...

CVE-2026-13758 MIK CryptX

Jun 29, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
HIGH 7.5	CVE-2026-51221	CVE-2026-51221_CVE-2026-51221 A buffer overflow in the Get_Attribute_List function of EIPStackGroup OpENer commit 76b95c allows attackers to cause a Denial of Service (DoS) via ...	n/a	n/a n/a	Jun 29, 2026	CVE
MEDIUM 6.5	CVE-2026-51218	CVE-2026-51218_CVE-2026-51218 A heap buffer overflow in the TS7Worker::PerformFunctionWrite() function (/core/s7_server.cpp) of snap7 v1.4.3 allows attackers to cause a Denial o...	n/a	n/a n/a	Jun 29, 2026	CVE
MEDIUM 4.9	CVE-2026-9576	Fluent Booking < 2.1.2 - Calendar Manager+ Sensitive Information Disclosure via Attendee Export_CVE-2026-9576 The Fluent Booking WordPress plugin before 2.1.2 does not verify ownership of the requested group_id before exporting attendee data via the export...	Unknown	Fluent Booking	Jun 30, 2026	CVE
HIGH 8.8	CVE-2026-11589	WP Support Plus Responsive Ticket System <= 9.1.2 - Unauthenticated Stored XSS via File Upload_CVE-2026-11589 The WP Support Plus Responsive Ticket System WordPress plugin through 9.1.2 does not properly validate uploaded files, allowing unauthenticated use...	Unknown	WP Support Plus Responsive Ticket System	Jun 30, 2026	CVE
MEDIUM 5.9	CVE-2026-11581	Kali Forms < 2.4.13 - Contributor+ Stored XSS via Form Field Caption_CVE-2026-11581 The Kali Forms — Contact Form & Drag-and-Drop Builder WordPress plugin before 2.4.13 does not sanitise a form field's caption before outputting it ...	Unknown	Kali Forms — Contact Form & Drag-and-Drop Builder	Jun 30, 2026	CVE
HIGH 7.8	CVE-2025-7406	A Sudo Privilege Escalation Vulnerability in Nokia MantaRay NM_CVE-2025-7406 Nokia MantaRay NM is vulnerable to a sudo privilege escalation vulnerability where a local attacker possessing administrative (local admin) privile...	Nokia	MantaRay NM <NM 25R1-NM	Jun 30, 2026	CVE
MEDIUM 6.5	CVE-2025-24816	An Improper Access Control vulnerability in Nokia MantaRay NM_CVE-2025-24816 Nokia MantaRay is subject to an Improper Access Control vulnerability due to insufficient authorization within the API. Successful exploitation cou...	Nokia	MantaRay NM <25R2-NM	Jun 30, 2026	CVE
HIGH 7.8	CVE-2025-24815	An unrestricted file upload vulnerability in Nokia MantaRay NM_CVE-2025-24815 Nokia MantaRay NM is subject to an unrestricted file upload vulnerability due to insufficient file type validation. Successful exploitation could a...	Nokia	MantaRay NM <25R2-NM	Jun 30, 2026	CVE
HIGH 7.5	CVE-2026-50750	Apache ActiveMQ Broker, Apache ActiveMQ, Apache ActiveMQ All: Pre-authentication OpenWire DoS following fix for CVE-2026-49270_CVE-2026-50750 Denial of Service via Out of Memory vulnerability in Apache ActiveMQ Broker, Apache ActiveMQ, Apache ActiveMQ All. Following the fix for CVE-2026...	Apache Software Foundation	Apache ActiveMQ Broker 5.19.7	Jun 30, 2026	CVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

CryptX versions before 0.088_001 for Perl compare AEAD authentication tags in non-constant time in the streaming decrypt_done path_CVE-2026-13758

Recent Advisories

CVE-2026-51221_CVE-2026-51221

CVE-2026-51218_CVE-2026-51218

Fluent Booking < 2.1.2 - Calendar Manager+ Sensitive Information Disclosure via Attendee Export_CVE-2026-9576

WP Support Plus Responsive Ticket System <= 9.1.2 - Unauthenticated Stored XSS via File Upload_CVE-2026-11589

Kali Forms < 2.4.13 - Contributor+ Stored XSS via Form Field Caption_CVE-2026-11581

A Sudo Privilege Escalation Vulnerability in Nokia MantaRay NM_CVE-2025-7406

An Improper Access Control vulnerability in Nokia MantaRay NM_CVE-2025-24816

An unrestricted file upload vulnerability in Nokia MantaRay NM_CVE-2025-24815

Apache ActiveMQ Broker, Apache ActiveMQ, Apache ActiveMQ All: Pre-authentication OpenWire DoS following fix for CVE-2026-49270_CVE-2026-50750

Protect Your Attack Surface with RedGem

Security Intelligence
Feed