Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 673— Search: RCE×

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Clear
Examples: RCE · SSRF · GHSA · log4j
Node.js vm Module Sandbox Escape Leading to RCE Analysis
socket.dev · 2025-08-03

### Key Information #### Vulnerability Overview - **Vulnerability Type**: Remote Code Execution (RCE) - **Affected Component**: Node.js `eval` function - **Root Cause**: Sandbox Escape #### Technical …

Read more
JimuReport PostgreSQL JDBC RCE via Malicious SocketFactory
github.com · 2025-08-15

From this webpage screenshot, the following key information about the vulnerability can be obtained: ### Vulnerability Overview - **Vulnerability Name**: Jigsaw Report Contains PostgreSQL JDBC RCE Vul…

Read more
Tenda AC20 Router Buffer Overflow Vulnerability (RCE/DoS) with POC
github.com · 2025-08-15

### Key Information #### Product Information - **Vendor**: Shenzhen Tenda Technology Co., Ltd. - **Affected Product**: AC20 - **Affected Firmware Versions**: <= V16.03.08.12 (latest) - **Firmware Down…

Read more
Kanboard <=1.2.46 Unsafe Deserialization RCE (CVE-2020-5070)
github.com · 2025-08-13

### Key Information #### Vulnerability Type - **Authenticated Admin Remote Code Execution via Unsafe Deserialization of Events** #### Affected Versions - **Affected versions**: <= 1.2.46 - **Patched v…

Read more
PHP-Based CMS v5 Stored XSS Leading to RCE via Template Editor (CVE-2025-50754)
github.com · 2025-08-07

### Key Information #### Vulnerability Overview - **Vulnerability Type**: Stored Cross-Site Scripting (XSS) - **Affected Product**: PHP-Based CMS Platform v5 - **Attack Type**: Remote - **Impact**: - …

Read more
Pyload CVE-2025-54802 Path Traversal Leading to RCE
github.com · 2025-08-07

### Key Information #### Vulnerability Overview - **Vulnerability Type**: Path Traversal and Remote Code Execution (RCE) - **Affected Version**: 0.5.0b3.dev89 - **Fixed Version**: 0.5.0b3.dev90 - **CV…

Read more
F Lester 1.0 Plugin Arbitrary File Inclusion, Upload, and RCE Vulnerability Analysis
plugins.trac.wordpress.org · 2025-08-14

From this webpage screenshot, the following key vulnerability information can be obtained: - **Plugin Name and Version**: F Lester, version 1.0. - **Author**: tadgadget. - **Timestamp**: May 2, 2023, …

Read more
eBlog Site V1.0 Arbitrary File Upload Leading to RCE Analysis
github.com · 2025-08-13

### Critical Vulnerability Information #### Vulnerability Overview - **Product Name**: eBlog Site - **Version**: V1.0 - **Vulnerability Type**: Arbitrary File Upload Leading to Arbitrary Code Executio…

Read more
GStreamer Multiple CVEs Advisory: RCE, Info Leak, Crash
github.com · 2025-08-09

### Key Vulnerability Information #### Vulnerability Overview - **CVE IDs**: Multiple CVEs, including CVE-2025-47182, CVE-2025-47191, CVE-2025-47361, etc. - **Affected Products**: GStreamer and relate…

Read more
NVIDIA NeMo Path Traversal Leading to RCE (CVE-2025-23304)
nvd.nist.gov · 2025-08-15

## Critical Vulnerability Information ### CVE-2025-23304 Detail #### Description The NVIDIA NeMo library for all platforms contains a vulnerability in the model loading component. An attacker could tr…

Read more
Java RCE via File Upload: Bypassing Blacklist to Execute Malicious Code
github.com · 2025-08-11

From this webpage screenshot, the following key information about the vulnerability can be obtained: - **Vulnerability Type**: Remote Code Execution (RCE). - **Exploitation Method**: - Java files can …

Read more
Project Pier CVE-2012-5961 Arbitrary File Upload and RCE Vulnerability Analysis
raw.githubusercontent.com · 2025-08-10

## Critical Vulnerability Information - **Vulnerability Name**: Project Pier Arbitrary File Upload Vulnerability - **Description**: This module exploits a vulnerability in Project Pier that allows mal…

Read more
Openfiler v2.x Vulnerability Analysis: RCE, Info Disclosure, CSRF, XSS
web.archive.org · 2025-08-12

### Critical Vulnerability Information #### 1. Arbitrary Command Execution (#0x00) - **Description**: Authenticated users can remotely execute arbitrary commands by injecting commands into the `device…

Read more
RUCKUS vSZ/RND Vulnerabilities: RCE, Auth Bypass, Hardcoded Keys (CVE-2025-44955 et al.)
kb.cert.org · 2025-08-07

### Key Information #### Vulnerability Overview - **Product**: RUCKUS Virtual SmartZone (vSZ) and RUCKUS Network Director (RND) - **Vulnerability Type**: Multiple vulnerabilities, including authentica…

Read more
Autodesk 3ds Max Multiple CVEs Advisory (RCE/Memory Corruption)
www.autodesk.com · 2025-08-08

### Critical Vulnerability Information #### Vulnerability Overview - **Autodesk ID**: ASGK-SA-2025-0015 - **Product/Service/Component**: Autodesk 3ds Max - **Impact**: Out-of-Bounds Read, Out-of-Bound…

Read more
Zenoss 3.x-4.1.70 Vulnerability Analysis: RCE, XSS, CSRF, Path Traversal
web.archive.org · 2025-08-10

### Critical Vulnerability Information #### Vulnerability Overview - **Product**: Zenoss 3.2.1 - **Affected Versions**: 3.x to 4.1.70 1402 - **Severity**: Multiple security vulnerabilities could allow…

Read more
Grav CMS v1.7.48 Admin RCE Vulnerability (CVE-2025-50286) with PoC
github.com · 2025-08-07

### Critical Vulnerability Information #### Vulnerability Overview - **CVE ID**: CVE-2025-50286 - **Type**: Authenticated Remote Code Execution (RCE) - **Location**: /admin/tools/direct-install (Admin…

Read more
Linksys Router Firmware Command Injection Vulnerability (RCE) Analysis
github.com · 2025-08-12

## Key Information Summary ### Vulnerability Overview - **Vendor**: Linksys - **Affected Products**: RE6500, RE6300, RE3500, RE7000, RE9000, etc. - **Versions**: RE6500(1.0.1.3001), RE6300(2.0.4.001),…

Read more
Path Traversal Auth Bypass and Log4Shell RCE in Spring-Shiro-Training
gitee.com · 2025-08-12

### Critical Vulnerability Information #### Vulnerability Type - **Incorrect Access Control / Unsafe Deserialization** #### Product Vendor - [https://gitee.com/wangzhixuan/spring-shiro-training](https…

Read more
EGallery 1.2 Unauthenticated File Upload RCE (CVE-2012-5464)
raw.githubusercontent.com · 2025-08-10

## Critical Vulnerability Information - **Vulnerability Name**: EGallery PHP File Upload Vulnerability - **Description**: In EGallery 1.2, malicious users can exploit the `uploadify.php` file to uploa…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.