Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

62 New today

66,415 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

294

Jun 23

355

Jun 24

376

Jun 25

386

Jun 26

Jun 27

313

Jun 28

Jun 29

Critical

High

Medium

Low

Latest

CVE CVSS 6.3

CherryHQ cherry-studio MCP OAuth Local Callback Server callback.ts improper authorization_CVE-2026-13524

A security vulnerability has been detected in CherryHQ cherry-studio up to 1.9.6. This vulnerability affects unknown code of the file src/main/services/mcp/oauth/callback.ts of the component MCP OAuth Local Callback Server. The manipulation of the argument code leads to improp...

CVE-2026-13524 CherryHQ cherry-studio 1.9.0

Jun 29, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 4.8	CVE-2026-13523	GPAC ISOBMFF base_encoding.c data amplification_CVE-2026-13523 A weakness has been identified in GPAC up to 26.02.0. This affects an unknown part of the file src/utils/base_encoding.c of the component ISOBMFF P...	n/a	GPAC 26.02	Jun 29, 2026	CVE
NONE	B21B76E5-AEA9-	openstamanager-cve-poc_B21B76E5-AEA9-5A94-B5B5-FEF27823A96D This might be an opportunity for both of these CVEs’ PoCs to be improved. https://github.com/advisories/GHSA-rm34-fg4m-39mw https://github.com/advi...	N/A	N/A	Jun 29, 2026	GITHUBEXPLOIT
NONE	HACKREAD:6CE6C4...	Top Cyber Range Providers: A Comparison of 15 Leading Platforms_HACKREAD:6CE6C44556B1DFB1F66C2B6C0EE3D3C7 Compare 15 cyber range platforms across live-fire exercises, AI testing, SOC training, OT realism, deployment options, pricing models, and data res...	N/A	N/A	Jun 28, 2026	HACKREAD
NONE	15C84537-E1A0-	customized_exploit_15C84537-E1A0-56B5-9CB0-11A9CF25D2A3 No description provided...	N/A	N/A	Jun 29, 2026	GITHUBEXPLOIT
LOW 2.3	CVE-2026-13511	VoltAgent Memory REST API memory.handlers.ts handleGetMemoryConversation improper authorization_CVE-2026-13511 A vulnerability was determined in VoltAgent up to 2.1.17. Affected by this issue is the function handleGetMemoryConversation of the file packages/s...	n/a	VoltAgent 2.1.0	Jun 28, 2026	CVE
MEDIUM 6.3	CVE-2026-13510	SimStudioAI sim Password Protection deployment.ts weak hash_CVE-2026-13510 A vulnerability was found in SimStudioAI sim up to 0.6.92. Affected by this vulnerability is an unknown functionality in the library apps/sim/lib/c...	SimStudioAI	sim 0.6.0	Jun 28, 2026	CVE
MEDIUM 5.3	CVE-2026-13512	Databend Tenant client_session_manager.rs state_key authorization_CVE-2026-13512 A vulnerability was identified in Databend up to 1.2.881 on HTTP. This affects the function ClientSessionManager::state_key of the file src/query/s...	n/a	Databend 1.2.881	Jun 28, 2026	CVE
HIGH 8.7	CVE-2026-13515	Tenda JD12L SetPptpServerCfg formSetPPTPServer stack-based overflow_CVE-2026-13515 A security vulnerability has been detected in Tenda JD12L 16.03.53.23. Impacted is the function formSetPPTPServer of the file /goform/SetPptpServer...	Tenda	JD12L 16.03.53.23	Jun 28, 2026	CVE
CRITICAL 10	8DE9243B-6A0A-	Exploit for Deserialization of Untrusted Data in Facebook React_8DE9243B-6A0A-594B-8B6F-C8166280CA2C CVE-2025-55182-React2Shell-RCE React2Shell CVE-2025-55182 PoC...	N/A	N/A	Jun 29, 2026	GITHUBEXPLOIT

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

CherryHQ cherry-studio MCP OAuth Local Callback Server callback.ts improper authorization_CVE-2026-13524

Recent Advisories

GPAC ISOBMFF base_encoding.c data amplification_CVE-2026-13523

openstamanager-cve-poc_B21B76E5-AEA9-5A94-B5B5-FEF27823A96D

Top Cyber Range Providers: A Comparison of 15 Leading Platforms_HACKREAD:6CE6C44556B1DFB1F66C2B6C0EE3D3C7

customized_exploit_15C84537-E1A0-56B5-9CB0-11A9CF25D2A3

VoltAgent Memory REST API memory.handlers.ts handleGetMemoryConversation improper authorization_CVE-2026-13511

SimStudioAI sim Password Protection deployment.ts weak hash_CVE-2026-13510

Databend Tenant client_session_manager.rs state_key authorization_CVE-2026-13512

Tenda JD12L SetPptpServerCfg formSetPPTPServer stack-based overflow_CVE-2026-13515

Exploit for Deserialization of Untrusted Data in Facebook React_8DE9243B-6A0A-594B-8B6F-C8166280CA2C

Protect Your Attack Surface with RedGem

Security Intelligence
Feed