Latest Security News

Recently analyzed articles from 41 RSS feeds across official advisories, government CERTs, security research, and community sources.

Tier A: Official

Tier B: Gov CERT

Tier C: Research

Tier D: News

Tier E: Community

Status:

All Analyzed Queued Signal Only

CVE-2026-13504 | code-projects Project Management System 1.0 Mail Compose Page /mail.php cross site scripting

VulDB·8h ago·cve_linking

CVE-2026-13502 | antlr ANTLR4 up to 4.13.2 Maven Plugin GrammarDependencies.java ObjectInputStream.readObject toctou

VulDB·8h ago·cve_linking

CVE-2026-13503 | antlr ANTLR4 up to 4.13.2 tokenVocab Grammar Option TokenVocabParser.java getImportedVocabFile path traversal

VulDB·8h ago·cve_linking

CVE-2026-13501 | antlr ANTLR4 up to 4.13.2 gofmt GoTarget.java GoTarget command injection

VulDB·8h ago·cve_linking

CVE-2026-13500 | antlr ANTLR4 up to 4.13.2 Grammar Action Block OutputFile.java code injection

VulDB·8h ago·cve_linking

CVE-2026-13499 | yashpokharna2555 restaurent-management-system Registration login_register.php Username cross site scripting

VulDB·8h ago·cve_linking

CVE-2026-13498 | yashpokharna2555 restaurent-management-system POST Parameter /forgotpassword.php email sql injection

VulDB·8h ago·cve_linking

CVE-2026-13497 | itsourcecode Hospital Management System 1.0 /appointment.php editid sql injection

VulDB·8h ago·cve_linking

CVE-2026-13496 | itsourcecode Hospital Management System 1.0 /ajaxmedicine.php medicineid sql injection

VulDB·8h ago·cve_linking

CVE-2026-13495 | itsourcecode Hospital Management System 1.0 /adminprofile.php loginid sql injection

VulDB·8h ago·cve_linking

CVE-2026-13493 | AIDC-AI ComfyUI-Copilot up to 2.0.28 Workflow Checkpoint Restore conversation_api.py resource injection (Issue 149)

VulDB·9h ago·cve_linking

CVE-2026-13491 | 78 xiaozhi-esp32 up to 2.2.6 MQTT Goodbye mqtt_protocol.cc Application::GetInstance session_id denial of service (Issue 2022)

VulDB·10h ago·cve_linking

CVE-2026-13490 | glpi-project glpi 11.0.5/11.0.6/11.0.7 Document front/document.send.php Document::canViewFile docid authorization

VulDB·10h ago·cve_linking

CVE-2026-13489 | 78 xiaozhi-esp32 up to 2.2.6 MCP Response main/mcp_server.cc ParseMessage improper synchronization (Issue 2020)

VulDB·10h ago·cve_linking

CVE-2026-13488 | SourceCodester Class and Exam Timetabling System 1.0/7.php /preview7.php course_year_section sql injection

VulDB·10h ago·cve_linking

CVE-2026-13487 | SourceCodester Class and Exam Timetabling System 1.0 /archive.php sy sql injection

VulDB·10h ago·cve_linking

CVE-2026-13486 | SourceCodester Class and Exam Timetabling System 1.0/6.php /preview6.php course_year_section sql injection

VulDB·10h ago·cve_linking

CVE-2026-13485 | SourceCodester Class and Exam Timetabling System 1.0 /preview.php course_year_section sql injection

VulDB·10h ago·cve_linking

CVE-2026-13484 | MLflow up to 4666cffc7912ea606d592fc38d6a75e2935f65e7 Experiment-scoped Label Schema CRUD API authorization (Issue 23608)

VulDB·10h ago·cve_linking

CVE-2026-13483 | arc53 DocsGPT up to 0.18.0 Credential Storage encryption.py encrypt_credentials data authenticity (Issue 2503)

VulDB·11h ago·cve_linking

CVE-2026-13482 | skypilot-org skypilot up to 0.12.0 User ID sky/users/server.py username.encode weak hash (Issue 9194)

VulDB·12h ago·cve_linking

Incident Report: CVE-2026-LGTM

Lobsters Security·1d ago·cve_linking

[NEU] [hoch] Fluentd: Mehrere Schwachstellen

BSI Advisories·1d ago·cve_linking

[NEU] [mittel] Digium Certified Asterisk: Mehrere Schwachstellen

BSI Advisories·1d ago·cve_linking

[NEU] [mittel] OpenCTI: Schwachstelle ermöglicht Umgehen von Sicherheitsvorkehrungen

BSI Advisories·1d ago·cve_linking

[NEU] [hoch] Coolify: Mehrere Schwachstellen

BSI Advisories·1d ago·cve_linking

Synology issues critical fix for MailPlus Server vulnerabilities

Help Net Security·1d ago·cve_linking

Netzwerkbetriebssystem Arista EOS: Angreifer können Systemdaten manipulieren

Heise Security·1d ago·cve_linking

Multiples vulnérabilités dans Asterisk (26 juin 2026)

CERT-FR·2d ago·cve_linking

ThreatsDay Bulletin: Smart TV Proxyware, 24-Year curl Bug, AI Crime Forums + 13 More Stories

The Hacker News·2d ago·cve_linking

[NEU] [mittel] Drupal: Mehrere Schwachstellen

BSI Advisories·2d ago·cve_linking

[NEU] [hoch] RabbitMQ: Mehrere Schwachstellen

BSI Advisories·2d ago·cve_linking

[NEU] [niedrig] PowerDNS Authoritative Server: Schwachstelle ermöglicht Denial of Service

BSI Advisories·2d ago·cve_linking

[NEU] [mittel] Snipe-IT: Mehrere Schwachstellen

BSI Advisories·2d ago·cve_linking

25-Year-Old Vulnerability Patched in Curl

SecurityWeek·2d ago·cve_linking

[NEU] [mittel] cURL: Mehrere Schwachstellen

BSI Advisories·2d ago·cve_linking

[NEU] [mittel] Podman: Schwachstelle ermöglicht Offenlegung von Informationen

BSI Advisories·2d ago·cve_linking

CVE-2026-53169: accel/ethosu: reject NPU_OP_RESIZE commands from userspace

Linux Kernel CVEs·2d ago·cve_linking

CVE-2026-53144: drm/amdkfd: fix NULL dereference in get_queue_ids()

Linux Kernel CVEs·2d ago·cve_linking

Sicherheitsupdate: Kritische Client-Handshake-Lücke bedroht IBM Db2

Heise Security·2d ago·cve_linking

Re: Squid CVE-2026-47729 and CVE-2026-50012

oss-security·3d ago·cve_linking

Re: Squid CVE-2026-47729 and CVE-2026-50012

oss-security·3d ago·cve_linking

CVE-2026-53127: block: fix zones_cond memory leak on zone revalidation error paths