Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 673— Search: RCE×

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Clear
Examples: RCE · SSRF · GHSA · log4j
Trustix net-snmp DoS and zlib CVE-2005-2096 RCE Vulnerability Fix
www.trustix.org · 2025-11-11

- **Package name**: net-snmp, zlib - **Summary**: Multiple vulnerabilities - **Date**: 2005-07-08 - **Affected versions**: - Trustix Secure Linux 2.2 - Trustix Secure Linux 3.0 - Trustix Operating Sys…

Read more
SuperAGI CVE-2025-51472 RCE via eval() in _eval_agent_config
www.gecko.security · 2025-07-26

## Key Information ### Vulnerability Description - **CVE ID**: CVE-2025-51472 - **Vulnerability Type**: RCE (Remote Code Execution) - **Affected Component**: SuperAGI's `_eval_agent_config` method - *…

Read more
WordPress Platform Theme File Upload RCE Vulnerability
raw.githubusercontent.com · 2025-07-26

From this webpage screenshot, the following key vulnerability information can be extracted: - **Vulnerability Name**: WordPress Platform Theme File Upload Vulnerability - **Description**: The WordPres…

Read more
WAS Commerce T1.6.2.05 Security Fix for T13380
plugins.trac.wordpress.org · 2025-07-20

### Critical Vulnerability Information - **Timestamp**: February 3, 2015, 3:31:17 PM (10 years ago) - **Version**: T1.6.2.05 - Version 1.3.9.6 - **Fixes**: - T13380 - Security hole fix - T13380 - Tran…

Read more
WebUI log_type Unfiltered Parameter Leads to RCE via exec
github.com · 2025-07-19

### Critical Vulnerability Information #### Vulnerability Description In the file `webui/modules/log/fx_security.md`, the `log_type` parameter is directly concatenated to the `$Stable` variable withou…

Read more
CSRF Vulnerability in E-commerce Site V1.0 cart_add.php with POC
github.com · 2025-07-19

### Critical Vulnerability Information #### Affected Product - **Product Name**: E-commerce Site Project V1.0 - **Affected File**: cart_add.php - **Version**: v1.0 #### Vulnerability Type - **Type**: …

Read more
Tenda AC23 Router Stack Overflow Vulnerability Analysis (RCE)
github.com · 2025-07-26

### Critical Vulnerability Information #### Basic Information - **Vulnerable Manufacturer**: Shenzhen Jixiang Tenda Technology Co., Ltd. - **Vulnerability Level**: High Risk - **Affected Object Type**…

Read more
Simogeo Filemanager Arbitrary File Upload RCE Vulnerability Analysis
github.com · 2025-07-19

### Critical Vulnerability Information #### Vulnerability Overview - **Vulnerability Type**: Remote Code Execution (RCE) via Arbitrary File Upload - **Affected Component**: Simogeo Filemanager's `file…

Read more
DB-GPT CVE-2025-51459 Pre-Auth RCE via Plugin Upload
www.gecko.security · 2025-07-26

## Key Information ### Vulnerability Description - **CVE ID**: CVE-2025-51459 - **Vulnerability Type**: RCE (Remote Code Execution) - **Affected System**: DB-GPT Plugin Upload System - **Issue**: An R…

Read more
CVE-2025-50460: ModelScope ms-swift PyYAML Deserialization RCE
github.com · 2025-08-02

### Critical Vulnerability Information #### Vulnerability Overview - **CVE ID**: CVE-2025-50460 - **Status**: RESERVED - **Description**: In the `modelscope/ms-swift` project, a Remote Code Execution …

Read more
WP File Manager CVE-2020-25634 Arbitrary File Upload and RCE Analysis
plugins.trac.wordpress.org · 2025-08-02

From this webpage screenshot, the following key vulnerability information can be obtained: - **Plugin Name**: WP File Manager - **Vulnerability Type**: Arbitrary File Upload and Remote Code Execution …

Read more
RCE Vulnerability Analysis: /collect/getArticle Endpoint via Unsafe Function Constructor
gitee.com · 2025-07-30

### Key Information #### Vulnerability Overview - **Vulnerability Type**: Remote Code Execution (RCE) - **Affected File**: `/collect/getArticle` - **Description**: Due to lack of blacklist/whitelist f…

Read more
FreeScout CVE-2020-5436 Unserialization RCE Vulnerability Analysis
github.com · 2025-07-30

### Critical Vulnerability Information #### Vulnerability Overview - **Vulnerability Type**: Remote Code Execution (RCE) due to deserialization of untrusted data - **CVE ID**: CVE-2020-5436 - **CVSS v…

Read more
ShardingSphere SQL Injection Vulnerability Analysis (Pre-Auth/RCE)
gitee.com · 2025-07-26

### Key Information Summary #### Vulnerability Overview - **Vulnerability Type**: SQL Injection Vulnerability - **Affected Version**: Latest version, specifically commit (2025-06-29): cafaccf - **Desc…

Read more
TOTOLINK T6 MQTT Buffer Overflow RCE (CVE-2025-7837) with POC
github.com · 2025-07-26

### Key Information #### Vulnerability Identifier - **CVE ID**: CVE-2025-7837 #### Affected Scope - **Vendor**: TOTOLINK - **Affected Product**: T6 - **Affected Firmware Version**: V4.1.5cu.748_B20211…

Read more
TOTOLINK T6 MQTT Buffer Overflow RCE (CVE-2025-7837) with POC
github.com · 2025-07-26

### Key Information #### Vulnerability Identifier - **CVE ID**: CVE-2025-7837 #### Affected Scope - **Vendor**: TOTOLINK - **Affected Product**: T6 - **Affected Firmware Version**: V4.1.5cu.748_B20211…

Read more
NVIDIA GPU Driver Memory Corruption RCE and Info Leak Vulnerabilities (CVE-2023-45678/45679)
nvidia.custhelp.com · 2025-08-07

From this webpage screenshot, the following key information about the vulnerability can be obtained: ### Vulnerability Overview - **Release Date**: July 2023 - **Update Date**: July 19, 2023 ### Vulne…

Read more
CVE-2025-52078: Unauthenticated File Upload RCE in Writebot SaaS
github.com · 2025-08-07

### Critical Vulnerability Information #### Vulnerability Metadata - **CVE ID**: CVE-2025-52078 - **CWE ID**: CWE-434 - Unrestricted Upload of File with Dangerous Type - **Severity**: Medium - **Versi…

Read more
Maxthon Browser CVE-2015-3326 Cross Context Scripting Leading to RCE
blog.malerisch.net · 2025-08-07

### Key Information - **Vulnerability Name**: Maxthon - Cross Context Scripting (XCS) - about:history - Remote Code Execution - **CVE ID**: CVE-2015-3326 - **Release Date**: December 7, 2015 - **Affec…

Read more
FreshRSS Admin Authenticated RCE via Update URL Manipulation (CVE-2025-54593)
github.com · 2025-08-04

### Critical Vulnerability Information #### Vulnerability Title Admin authenticated RCE `. If the current version is 1.26.2, it receives `UPDATE 1.26.3`, followed by PHP code which is written to `./da…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.