Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 673— Search: RCE×

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Clear
Examples: RCE · SSRF · GHSA · log4j
GoSign Desktop TLS Certificate Verification Bypass and RCE Vulnerability Analysis
securityaffairs.com · 2025-11-18

## Vulnerability Key Information ### Vulnerability Overview - **Software**: GoSign Desktop - **Version**: 2.4.0 (Windows, Linux, macOS) - **Discovery Date**: November 2025 ### Vulnerability Details ##…

Read more
tvOS 16 Security Update: Kernel Privilege Escalation and Accelerate Framework RCE Fixes
support.apple.com · 2025-11-14

### Key Information about tvOS 16 Vulnerabilities **Release Date**: September 12, 2022 #### Vulnerability Details - **Accelerate Framework** - **Impact**: Processing maliciously crafted images may lea…

Read more
InHand Networks InRouter Vulnerability Advisory: RCE, Command Injection, and Improper Access Control
www.cisa.gov · 2025-11-13

- **CVSS v3 Score:** 10.0 - **Attention:** Exploitable remotely/low attack complexity - **Vendor:** InHand Networks - **Equipment:** InRouter302, InRouter615 - **Vulnerabilities:** - Clear Text Transm…

Read more
Human Resource Information System 1.0 login_process.php SQL Injection
vuldb.com · 2025-11-14

### Key Information - **Title**: https://www.sourcecodester.com Human Resource Information System 1.0 SQL Injection - **Description**: - SQL injection vulnerability in the `initialize/login_process.ph…

Read more
CA Total Defense Suite DeleteReports Stored Procedure SQL Injection Leads to RCE (CVE-2011-1653)
www.zerodayinitiative.com · 2025-11-11

``` - **Date**: April 13th, 2011 - **ID (ZDI)**: - ZDI-11-133 - ZDI-CAN-1043 - **CVE ID**: CVE-2011-1653 - **CVSS Score**: 10.0, AV:N/AC:L/Au:N/C:C/I:C/A:C - **Affected Vendors**: CA - **Affected Prod…

Read more
KERUI K259 Camera TF Card Physical Access RCE via update.nor.sh
gist.github.com · 2025-11-11

## Vulnerability Key Information ### Summary KERUI K259 5MP Wi-Fi / Tuya Smart Security Camera firmware v33.53.87 contains a code execution vulnerability located in the boot/update logic. During start…

Read more
Gladinet Trifox Improper Access Control Leads to RCE (CVE-2025-12480)
github.com · 2025-11-11

## MNDT-2025-0008 ### Description Trifox versions prior to 16.7.10368.56560 are vulnerable to an Improper Access Control flaw that allows access to initial setup pages even after setup is complete. ##…

Read more
SQL Injection in itsourcecode Society Management System admin/get_price.php
github.com · 2025-11-11

## Key Information ### Vendor - itsourcecode ### Product - Society Management System ### Version - 1.0 ### Download Source Code - [Download Link](https://itsourcecode.com/wp-content/uploads/2021/04/So…

Read more
CVE-2015-3214: QEMU-KVM PIT Out-of-Bounds Memory Access Leading to RCE
bugzilla.redhat.com · 2025-11-09

### Key Information - **Vulnerability ID**: - Red Hat Bugzilla: Bug 1229640 - CVE ID: CVE-2015-3214 - **Vulnerability Description**: - `qemu-kvm: i8254: out-of-bounds memory access in pit_ioport_read …

Read more
Cisco Security Advisory: Critical RCE, SSRF, DoS Vulnerabilities in ASA, ISE, Contact Center (CVE-2025-20333, etc.)
tools.cisco.com · 2025-11-09

### Critical Vulnerability Information - **Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software VPN Web Server Remote Code Execution Vulnerability** -…

Read more
Toshiba HDD Password Tool Unquoted Service Path RCE (CVE-2020-5569)
jvn.jp · 2025-11-07

### Vulnerability Overview - **Vulnerability ID**: JVN#13467854 - **Vulnerability Description**: Toshiba Electric Devices & Storage software uses unquoted file paths when registering Windows services …

Read more
BA Panel6/FA-Engine Service ImagePath Unquoted Path Vulnerability Leading to SYSTEM RCE
www.roboticsware.com · 2025-11-05

### Critical Vulnerability Information #### Vulnerability Overview - **Date**: October 28, 2025 - **Products**: BA Panel6, FA-Engine, FA-Panel6, FA-Server6, PA-Panel6 - **Issue**: Vulnerability in ser…

Read more
Moxa Network Devices Vulnerability Advisory: CVE-2025-6892 to 6950 (RCE/Auth Bypass)
www.moxa.com · 2025-10-17

### Critical Vulnerability Information #### Vulnerability Overview - **CVE IDs**: CVE-2025-6892, CVE-2025-6893, CVE-2025-6894, CVE-2025-6949, CVE-2025-6950 - **Affected Products**: Moxa network securi…

Read more
SOCT GXP Vulnerability Advisory: XXE, RCE, Unauth Access (CVE-2022-5937 to 5944)
www.geospatialexploitationproducts.com · 2025-10-24

### Critical Vulnerability Information #### 1. XXE in SOCT GXP File Processing (CVE-2022-5937) - **Description**: XXE vulnerability in SOCT GXP file processing, allowing attackers to execute arbitrary…

Read more
Linux Kernel ksmbd CVE-2025-38561 Preauth Race Condition RCE
www.zerodayinitiative.com · 2025-10-11

### Critical Vulnerability Information - **Vulnerability Name**: Linux Kernel ksmbd smb2_sess_setup Preauth_HashValue Race Condition Remote Code Execution Vulnerability - **Vulnerability IDs**: - ZDI-…

Read more
SQL Injection in isourcecode Online Public Access Catalog OPAC
github.com · 2025-09-18

### Key Information #### Vulnerability Type - SQL Injection #### Affected File - mysearch.php #### Parameters - search_field (POST) - search_text (POST) #### Vendor - isourcecode #### Product - Online…

Read more
CVE-2025-43953: Authenticated RCE in 2wcom IP-4c Web Interface via Command Injection
github.com · 2025-09-24

### Critical Vulnerability Information #### Vulnerability ID CVE-2025-43953 #### Vulnerability Description The web interface of 2wcom IP-4c allows authenticated attackers to perform remote code execut…

Read more
Stored XSS in SourceCodester Advanced School Management System V1.0 with POC
github.com · 2025-08-23

### Critical Vulnerability Information #### Affected Product - **Name**: SourceCodester Advanced School Management System with Complete Features V1.0 - **Version**: V1.0 - **Link**: [SourceCodester](h…

Read more
Stored XSS in SourceCodester Advanced School Management System v1.0
github.com · 2025-08-23

### Critical Vulnerability Information #### Affected Product - **Name**: SourceCodester Advanced School Management System with Complete Features V1.0 - **Version**: v1.0 - **Link**: https://www.source…

Read more
Tianti v2.3 CSV Injection Leading to RCE via Excel Formula
github.com · 2025-08-11

### Critical Vulnerability Information #### Vulnerability Type - CSV Injection #### Affected Product - Tianti v2.3 #### Vulnerability Description - Tianti supports exporting user lists in CSV format. …

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.