Threat Intelligence Database
Comprehensive database of the latest cyber threats affecting organizations worldwide. Filter and search to find specific threat intelligence relevant to your organization.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threat Intelligence
Click on any threat for detailed analysis and mitigation recommendations
CVE-2026-50127: CWE-918: Server-Side Request Forgery (SSRF) in WeblateOrg weblateCVE-2026-50127 0 Weblate is a web based localization tool. From version 5.15 to before version 2026.6, Weblate's VCS_RESTRICT_PRIVATE did not properly account for some transitional IPv6 ranges, multicast addresses, or some semi-private IPv4 ranges, which allowed some addresses to bypass private range restrictions. This issue has been patched in version 2026.6. Join the discussion | CVE Database V5 | 06/10/2026, 19:56:37 UTC Added: 06/10/2026, 20:00:50 UTC |
CVE-2026-45106: CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in WeblateOrg weblateCVE-2026-45106 0 Weblate is a web based localization tool. Prior to version 2026.5, Weblate's live search preview renders unit source and context as HTML without escaping. Any contributor whose content reaches those fields stores HTML and CSS that runs inside the authenticated editor of every user who runs a matching search. This issue has been patched in version 2026.5. Join the discussion | CVE Database V5 | 06/10/2026, 19:56:49 UTC Added: 06/10/2026, 20:00:50 UTC |
Showing 1 to 2 of 2 results