Threat Intelligence Database
Comprehensive database of the latest cyber threats affecting organizations worldwide. Filter and search to find specific threat intelligence relevant to your organization.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threat Intelligence
Click on any threat for detailed analysis and mitigation recommendations
CVE-2026-56696: Missing Authorization in HKUDS OpenHarnessCVE-2026-56696 0 OpenHarness /issue and /pr_comments slash commands lack remote_invocable=False protection, allowing remote channel senders to write attacker-controlled Markdown into project context files. Admitted remote attackers can inject malicious content into .openharness/issue.md and .openharness/pr_comments.md files, which are subsequently injected into runtime system prompts, persistently influencing local agent behavior. Join the discussion | CVE Database V5 | 06/23/2026, 15:36:24 UTC Added: 06/23/2026, 16:09:21 UTC |
CVE-2026-56695: Missing Authorization in HKUDS OpenHarnessCVE-2026-56695 0 CVE-2026-56695 is a high-severity vulnerability in HKUDS OpenHarness versions up to 0.1.9. The ohmo gateway's /resume and /summary commands have their remote_invocable setting defaulted to True, which allows authorized remote users to enumerate and load arbitrary session snapshots by ID. This can expose private prompts, credentials, tool outputs, and file paths through shared gateway channels. Join the discussion | CVE Database V5 | 06/23/2026, 15:36:01 UTC Added: 06/23/2026, 16:09:21 UTC |
Showing 1 to 2 of 2 results