/

Threat Intelligence Feed

Aggregating 6315 articles from trusted cybersecurity sources

/
All General Vulnerability Disclosure CVE Campaigns Data Breach Malware Ransomware Zero-Day
LATEST CVEs
MED · CVE-2026-13512 A vulnerability was identified in Databend up to 1.2.881 on HTTP. This affects the function ClientSessionManager::state_ CVE-2026-13511 A vulnerability was determined in VoltAgent up to 2.1.17. Affected by this issue is the function handleGetMemoryConversa CVE-2026-13510 A vulnerability was found in SimStudioAI sim up to 0.6.92. Affected by this vulnerability is an unknown functionality in MED · CVE-2026-13509 A vulnerability has been found in RAGapp up to 0.1.5. Affected is the function FileHandler.upload_file/FileHandler.remov MED · CVE-2026-13508 A flaw has been found in khoj-ai khoj up to 2.0.0-beta.28. This impacts an unknown function of the file src/khoj/routers MED · CVE-2026-13507 A vulnerability was detected in volcengine OpenViking up to 0.3.21. This affects the function str_to_uint64 of the file CVE-2026-49048 The Joomla extension JoomCCK exposes a front-end controller task, that builds two SQL statements by directly concatenati CVE-2026-13504 A vulnerability has been found in code-projects Project Management System 1.0. This vulnerability affects unknown code o MED · CVE-2026-13503 A vulnerability was detected in antlr ANTLR4 up to 4.13.2. Affected by this issue is the function getImportedVocabFile o MED · CVE-2026-13502 A flaw has been found in antlr ANTLR4 up to 4.13.2. This affects the function ObjectInputStream.readObject of the file a MED · CVE-2026-13501 A security vulnerability has been detected in antlr ANTLR4 up to 4.13.2. Affected by this vulnerability is the function HIGH · CVE-2026-13500 A weakness has been identified in antlr ANTLR4 up to 4.13.2. Affected is an unknown function of the file tool/src/org/an MED · CVE-2026-13499 A security flaw has been discovered in yashpokharna2555 restaurent-management-system. This impacts an unknown function o HIGH · CVE-2026-13498 A vulnerability was identified in yashpokharna2555 restaurent-management-system. This affects an unknown function of the MED · CVE-2026-13497 A vulnerability was determined in itsourcecode Hospital Management System 1.0. The impacted element is an unknown functi MED · CVE-2026-13496 A vulnerability was found in itsourcecode Hospital Management System 1.0. The affected element is an unknown function of MED · CVE-2026-13495 A vulnerability has been found in itsourcecode Hospital Management System 1.0. Impacted is an unknown function of the fi CVE-2026-13493 A flaw has been found in AIDC-AI ComfyUI-Copilot up to 2.0.28. This issue affects some unknown processing of the file ba CVE-2026-13491 A vulnerability was detected in 78 xiaozhi-esp32 up to 2.2.6. This vulnerability affects the function Application::GetIn CVE-2026-13490 A security vulnerability has been detected in glpi-project glpi 11.0.5/11.0.6/11.0.7. This affects the function Document CVE-2026-13489 A weakness has been identified in 78 xiaozhi-esp32 up to 2.2.6. Affected by this issue is the function ParseMessage of t HIGH · CVE-2026-13488 A security flaw has been discovered in SourceCodester Class and Exam Timetabling System 1.0/7.php. Affected by this vuln HIGH · CVE-2026-13487 A vulnerability was identified in SourceCodester Class and Exam Timetabling System 1.0. Affected is an unknown function HIGH · CVE-2026-13486 A vulnerability was determined in SourceCodester Class and Exam Timetabling System 1.0/6.php. This impacts an unknown fu HIGH · CVE-2026-13485 A vulnerability was found in SourceCodester Class and Exam Timetabling System 1.0. This affects an unknown function of t MED · CVE-2026-13484 A vulnerability has been found in MLflow up to 4666cffc7912ea606d592fc38d6a75e2935f65e7. The impacted element is an unkn CVE-2026-13483 A flaw has been found in arc53 DocsGPT up to 0.18.0. The affected element is the function encrypt_credentials of the fil CVE-2026-13482 A vulnerability was detected in skypilot-org skypilot up to 0.12.0. Impacted is the function username.encode of the file HIGH · CVE-2026-10646 Zephyr's BSD-sockets getaddrinfo() implementation (subsys/net/lib/sockets/getaddrinfo.c) passes a pointer to a stack-all MED · CVE-2026-10644 The Microchip SERCOM-G1 UART driver (drivers/serial/uart_mchp_sercom_g1.c), used by the PIC32CM-JH SoC family, contains MED · CVE-2026-10593 The Zephyr Bluetooth LE Audio Basic Audio Profile (BAP) unicast client mishandles peer-supplied ASE state notifications. MED · CVE-2026-58058 Nmap through 7.99 does not keep the IPv6 extension-header walk within the captured packet in ipv6_get_data_primitive (li MED · CVE-2026-58057 Flowise before 3.1.3 validates Custom MCP stdio environment variables against a denylist using a case-sensitive comparis HIGH · CVE-2026-58056 RustDesk gates incoming control messages on per-capability flags rather than on the session's authorized connection type MED · CVE-2026-58055 nghttp2's nghttpx proxy through 1.69.0 forwards an HTTP/1.1 Upgrade request that also carries a Content-Length header an HIGH · CVE-2026-58054 MyBB 1.8.40 does not restrict which usergroup a limited Admin Control Panel user may assign when creating or editing use CRIT · CVE-2026-58053 Gitea act_runner with the Docker backend (through act 0.262.0) passes a workflow's container.options string to the Docke CVE-2026-58052 7-Zip for Windows through 26.02 fails to preserve the Mark-of-the-Web when extracting a crafted RAR5 archive, because it MED · CVE-2026-58051 libssh2 through 1.11.1 grows its publickey list with SSH2_REALLOC but does not zero-initialize new entries before parsin HIGH · CVE-2026-58050 libssh2 through 1.11.1 reads an attacker-controlled 32-bit attribute count from a publickey-subsystem response and uses
2707 General 750 Vulnerability Disclosure 729 CVE 504 Campaigns 354 Data Breach 326 Malware

Trending Vendors

Microsoft (727) Google (366) Amazon (259) Intel (206) Apple (169) Cisco (141) Linux (131) GitHub (113) Palo Alto Networks (106) Oracle (80) WordPress (59) Check Point (49) Cloudflare (45) Fortinet (44) Rapid7 (37)

Latest News

Data Breaches

FreeIntelHub · Open-source CTI platform

All articles belong to their respective owners. FreeIntelHub aggregates publicly available RSS feeds for informational purposes only. DMCA