Threat Intelligence Database
Comprehensive database of the latest cyber threats affecting organizations worldwide. Filter and search to find specific threat intelligence relevant to your organization.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threat Intelligence
Click on any threat for detailed analysis and mitigation recommendations
CVE-2026-36214: n/aCVE-2026-36214 0 osTicket versions from 1.10 up to 1.17.7 and from 1.18.0 up to 1.18.3 are vulnerable to a stored XSS due to a vulnerable Bootstrap Tooltip component and insufficient HTML sanitization, allowing remote attackers to execute arbitrary JavaScript in Agent or Admin sessions. Join the discussion | CVE Database V5 | 07/14/2026, 00:00:00 UTC Added: 07/14/2026, 16:48:07 UTC |
CVE-2026-9507: CWE-38 Path traversal: '\absolute\pathname\here' in Enhancesoft osTicketCVE-2026-9507 0 osTicket version 1.18.2 contains a session fixation vulnerability that allows an attacker to hijack a user's account by reusing the initial session identifier (OSTSESSID) after login. The application fails to invalidate or regenerate the session ID upon authentication, enabling unauthorized access if an attacker sets a known session ID in the victim's browser. Join the discussion | CVE Database V5 | 06/16/2026, 11:47:56 UTC Added: 06/16/2026, 13:15:51 UTC |
Showing 1 to 2 of 2 results