Security Intelligence
Feed

Real-time CVE tracking, exploit analysis, and vulnerability intelligence curated for security professionals.

90 New today

66,464 Total advisories

Live Monitoring

Daily Security Trends (Last 14 Days)

630

Jun 16

464

Jun 17

Jun 18

352

Jun 19

Jun 20

104

Jun 21

317

Jun 22

294

Jun 23

355

Jun 24

376

Jun 25

386

Jun 26

Jun 27

318

Jun 28

Jun 29

Critical

High

Medium

Low

Latest

CVE CVSS 6.9

CVE-2026-9267_CVE-2026-9267

Eclipse tinydtls before commit b3efd41ad111a4920f599f51ffa4f5e9f1e72221 contains an out-of-bounds read vulnerability in the check_server_certificate() function that allows unauthenticated attackers to trigger reads beyond valid buffer boundaries by crafting a Certificate hands...

CVE-2026-9267 Eclipse Foundation Eclipse tinydtls

Jun 29, 2026

Read analysis

Recent Advisories

Severity	ID	Title	Vendor	Product	Date	Type
MEDIUM 4.4	CVE-2026-57966	Spice-vdagent: path traversal in file transfer via unsanitized filename_CVE-2026-57966 A path traversal vulnerability was found in spice-vdagent. This flaw allows a malicious or compromised SPICE host to write arbitrary files to any l...	Red Hat	Red Hat Enterprise Linux 10	Jun 29, 2026	CVE
MEDIUM 5.1	CVE-2026-57965	Spice-vdagent: integer overflow in udscs_write() leading to heap buffer overflow_CVE-2026-57965 A flaw was found in spice-vdagent. A malicious or compromised SPICE host can trigger an integer overflow by sending a specially crafted message. Th...	Red Hat	Red Hat Enterprise Linux 10	Jun 29, 2026	CVE
MEDIUM 4.3	CVE-2026-57676	WordPress Simple User Avatar plugin <= 4.9 - Insecure Direct Object References (IDOR) vulnerability_CVE-2026-57676 Authorization Bypass Through User-Controlled Key vulnerability in Matteo Manna Simple User Avatar allows Exploiting Incorrectly Configured Access C...	Matteo Manna	Simple User Avatar n/a	Jun 29, 2026	CVE
HIGH 7.3	CVE-2026-22078	O+ Connect’s lack of authentication for IPC channels led to a local privilege escalation vulnerability._CVE-2026-22078 Because O+ Connect's IPC service does not authenticate clients, external applications can escalate privileges and perform sensitive actions through...	OPPO	O+ Connect 16.0.33	Jun 29, 2026	CVE
MEDIUM 6.8	CVE-2026-13595	Util-linux: util-linux: heap use-after-free in libblkid nested partition probing_CVE-2026-13595 A flaw was found in the libblkid library of util-linux. During nested partition probing, the BSD, Minix, Solaris x86, and UnixWare partition prober...	Red Hat	Red Hat Enterprise Linux 10	Jun 29, 2026	CVE
MEDIUM 6.9	CVE-2026-13551	itsourcecode Baptism Information Management System editBaptism.php sql injection_CVE-2026-13551 A security vulnerability has been detected in itsourcecode Baptism Information Management System 1.0. This affects an unknown function of the file ...	itsourcecode	Baptism Information Management System 1.0	Jun 29, 2026	CVE
MEDIUM 6.9	CVE-2026-13550	itsourcecode Baptism Information Management System delbaptism.php sql injection_CVE-2026-13550 A weakness has been identified in itsourcecode Baptism Information Management System 1.0. The impacted element is an unknown function of the file /...	itsourcecode	Baptism Information Management System 1.0	Jun 29, 2026	CVE
MEDIUM 5.3	CVE-2026-13549	CodeAstro Complaint Management System Report Endpoint Report.php deletereport authorization_CVE-2026-13549 A security flaw has been discovered in CodeAstro Complaint Management System 1.0. The affected element is the function deletereport of the file app...	CodeAstro	Complaint Management System 1.0	Jun 29, 2026	CVE
MEDIUM 5.3	CVE-2026-13548	itsourcecode Hospital Management System doctortimings.php sql injection_CVE-2026-13548 A vulnerability was identified in itsourcecode Hospital Management System 1.0. Impacted is an unknown function of the file /doctortimings.php. The ...	itsourcecode	Hospital Management System 1.0	Jun 29, 2026	CVE

Security IntelligenceFeed

Daily Security Trends (Last 14 Days)

CVE-2026-9267_CVE-2026-9267

Recent Advisories

Spice-vdagent: path traversal in file transfer via unsanitized filename_CVE-2026-57966

Spice-vdagent: integer overflow in udscs_write() leading to heap buffer overflow_CVE-2026-57965

WordPress Simple User Avatar plugin <= 4.9 - Insecure Direct Object References (IDOR) vulnerability_CVE-2026-57676

O+ Connect’s lack of authentication for IPC channels led to a local privilege escalation vulnerability._CVE-2026-22078

Util-linux: util-linux: heap use-after-free in libblkid nested partition probing_CVE-2026-13595

itsourcecode Baptism Information Management System editBaptism.php sql injection_CVE-2026-13551

itsourcecode Baptism Information Management System delbaptism.php sql injection_CVE-2026-13550

CodeAstro Complaint Management System Report Endpoint Report.php deletereport authorization_CVE-2026-13549

itsourcecode Hospital Management System doctortimings.php sql injection_CVE-2026-13548

Protect Your Attack Surface with RedGem

Security Intelligence
Feed