Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 23— Search: log4j×

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Clear
Examples: RCE · SSRF · GHSA · log4j
Apache Log4j2 JNDI Injection RCE Vulnerability (CVE-2021-44228) Analysis and POC
plugins.trac.wordpress.org · 2026-04-02

**Vulnerability Summary** * **Vulnerability Name**: Apache Log4j2 Remote Code Execution Vulnerability (CVE-2021-44228) * **Vulnerability Description**: A remote code execution vulnerability exists in …

Read more
Apache Log4j2 JNDI Injection RCE Vulnerability (CVE-2021-44228) Analysis and Exploitation
github.com · 2026-04-02

**Vulnerability Overview** * **Vulnerability Name**: Apache Log4j2 Remote Code Execution Vulnerability (CVE-2021-44228) * **Description**: Apache Log4j2 is a widely used Java logging library. This vul…

Read more
Apache Log4j2 RCE (CVE-2021-44228) POC Code and Remediation Guide
github.com · 2026-04-03

**Vulnerability Summary** * **Vulnerability Name**: Apache Log4j2 Remote Code Execution Vulnerability (CVE-2021-44228) * **Description**: Apache Log4j2 is a widely used Java logging library. This vuln…

Read more
Apache Log4j2 JNDI Injection RCE Vulnerability Analysis (CVE-2021-44228)
plugins.trac.wordpress.org · 2026-04-02

Based on the provided webpage screenshot, here is a summary of this vulnerability: **Vulnerability Overview** * **Vulnerability Name**: Apache Log4j2 Remote Code Execution Vulnerability (CVE-2021-4422…

Read more
NetApp Apache Log4j RCE Vulnerability Advisory (CVE-2021-44832)
security.netapp.com · 2025-11-13

## Vulnerability Information from NetApp Security Portal ### Summary - **CVE ID**: CVE-2021-44832 - **Advisory ID**: NTAP-20220104-0001 - **Version**: 7.0 - **Last Updated**: 01/31/2022 - **Status**: …

Read more
Apache Archiva Vulnerability Summary: RCE, XSS, LDAP Injection (CVE-2023-28158, CVE-2013-2251)
archiva.apache.org · 2025-11-09

### Key Vulnerability Information Summary #### 1. **CVE-2023-28158: Privilege escalation via stored XSS** - **Description**: Malicious content uploaded via file upload service can exploit stored XSS t…

Read more
Brother Printer/Software Multiple Vulnerabilities Summary (CVE-2024-21824, CVE-2024-22475, CVE-2023-51064)
support.brother.com · 2025-07-06

### Critical Vulnerability Information #### Inkjet Printer / MFC - **Privilege Escalation Vulnerability**: Brother Software (Windows) - **Web-Based Management Vulnerabilities**: CVE-2024-21824 and CVE…

Read more
Red Hat JBoss EAP 7.1 Security Advisory RHSA-2024:10208: Multiple CVEs (RCE, SSRF, DoS)
access.redhat.com · 2024-11-27

From this webpage screenshot, the following key vulnerability information can be obtained: 1. **Vulnerability ID**: RHSA-2024:10208 2. **Release Date**: November 25, 2024 3. **Update Date**: November …

Read more
Kasm Technologies Security Advisories: Browser Argument Injection, NGINX Config Injection, and Phishing Campaign
kasmweb.atlassian.net · 2025-11-20

### Critical Vulnerability Information - **[Cybersecurity Notice] REF: Spoofed Phishing Mail (Kasm Shared File)** - **Description**: A phishing campaign targeting Kasm Technologies customers, spoofing…

Read more
Red Hat JBoss EAP 7.3 Security Advisory (RHSA-2024:10207) Fixing Multiple CVEs
access.redhat.com · 2024-11-27

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Vulnerability ID**: RHSA-2024:10207 2. **Release Date**: November 25, 2024 3. **Update Date**:…

Read more
Metabase CVE-2025-32382 Snowflake Credentials Logged in Backend
github.com · 2025-04-11

### Critical Vulnerability Information #### Vulnerability Title Snowflake credentials logged by the Metabase backend #### Affected Versions - **Affected Versions**: 0.52.12-0.52.17.1, 0.52.12-1.52.17.…

Read more
Brother Printers & Peripherals Multiple Vulnerabilities Summary (CVE-2024-21824/22475/2023-51654)
support.brother.com · 2024-11-11

From this webpage screenshot, the following key information about vulnerabilities can be obtained: 1. **Vulnerability List**: - **Web Based Management Vulnerabilities on Brother Machines**: Includes C…

Read more
CISA ICS Advisory: Vulnerabilities in WebCTRL, Vitogate, MOVEit, OpenSSL
www.corporate.carrier.com · 2024-11-24

From this webpage screenshot, the following key vulnerability information can be obtained: 1. **Vulnerability ID and Date**: - Vulnerability ID: CARR-PSA-2024-04 - Release Date: November 21, 2024 2. *…

Read more
Druid Dependency Update Fixing Multiple CVEs (CVE-2018-17767, CVE-2018-12402, etc.)
lists.apache.org · 2025-07-12

From this webpage screenshot, the following key information about the vulnerability can be obtained: - **Pull Request #8878**: Used to fix security vulnerabilities. - **Fixed Issues**: #4798 and #6347…

Read more
Apache Drill 1.10.0 Dependency Vulnerability Advisory (CVE-2016-10383, CVE-2016-10592)
lists.apache.org · 2025-07-12

### Key Information - **Vulnerability ID**: DRILL-7416 - **Project**: Apache Drill - **Affected Version**: 1.10.0 - **Reporter**: Bradley Parker #### Vulnerability Details - **Summary**: Dependencies …

Read more
CWE-917: Expression Language Injection Vulnerability Analysis and Mitigation
cwe.mitre.org · 2025-11-12

- **Weakness ID**: 917 - **Vulnerability Mapping**: ALLOWED - **Description**: - The product constructs all or part of an expression language (EL) statement in a framework such as a Java Server Page (…

Read more
Path Traversal Auth Bypass and Log4Shell RCE in Spring-Shiro-Training
gitee.com · 2025-08-12

### Critical Vulnerability Information #### Vulnerability Type - **Incorrect Access Control / Unsafe Deserialization** #### Product Vendor - [https://gitee.com/wangzhixuan/spring-shiro-training](https…

Read more
Ritense Valtimo InboxHandlingService Sensitive Data Exposure via Logging (CVE-2026-34164)
github.com · 2026-04-18

# Vulnerability Overview **Title**: Sensitive data exposure through inbox message logging in InboxHandlingService **Publisher**: theo-ritense **Published**: 2 days ago **Severity**: Moderate (4.9 / 10…

Read more
OWASP CRS v4.25.0 Fixes File Upload Detection Bypass via Whitespace Padding
github.com · 2026-04-03

# OWASP Core Rule Set (CRS) v4.25.0 Vulnerability Fix Summary ## Vulnerability Overview This update primarily addresses multiple **file upload detection bypass** vulnerabilities, specifically targetin…

Read more
RHSA-2024:51 JBoss EAP 7.4 Security Advisory: CVE-2024-27316 DoS and Marvin Attack Fixes
access.redhat.com · 2024-08-10

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Vulnerability ID**: RHSA-2024:51 2. **Release Date**: 2024-08-08 3. **Type/Severity**: Securit…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.