Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1020 CNY

100%
Buy Us a Coffee

Security Intel Hub 2203+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
Clear filters
High
Out-of-Bounds Write in HuffTabelle::initval (#794)
github.com · 2026-04-02
LibRaw (versions prior to fix for issue #794)
Read more
Unknown
Hurl Ftables::initval Out-of-Bounds Write Vulnerability Analysis
github.com · 2026-04-02
LibRaw
Read more
High
libjpeg-turbo nufftable::initval Out-of-Bounds Write Vulnerability Analysis
github.com · 2026-04-02
libjpeg-turbo
Read more
Unknown
TALOS-2026-2339: Fix for oxidecompressor losslessjpeg.cpp vulnerability
TALOS-2026-2339 · github.com · 2026-04-02
LibRaw
Read more
High
Maria Schema SQL Injection Vulnerability (CVE-2020-20643) Analysis and Exploitation
CVE-2020-20643 · github.com · 2026-04-02
Maria Schema SQL All versions
Read more
Unknown
kubePlus ResourceController S2RF and Header Injection Vulnerability Analysis
CVE-2026-29954 · github.com · 2026-04-02
kubePlus ResourceController
Read more
High
CVE-2026-30082: Stored XSS in IngeStage Server Package List API
CVE-2026-30082 · github.com · 2026-04-02
IngeStage Server 11.1.4.0
Read more
High
Invoiciera CheckDatabaseRequest Authorization Bypass via Fail-Open Logic
github.com · 2026-04-02
InvoiceNinja v5-stable
Read more
Critical
TP-Link Archer C20i Unauthorized Access Vulnerability (CVE-2023-38178)
CVE-2023-38178 · github.com · 2026-04-02
Archer C20i v1.0 · Archer C20i v2.0 …
Read more
High
CVE-2024-28876 Path Traversal in application-creator-engine with PoC
CVE-2024-28876 · github.com · 2026-04-02
application-creator-engine
Read more
High
CVE-2026-2872: Cross-Session Credential Exposure in Streamlit GitHub MCP Agent
CVE-2026-2872 · github.com · 2026-04-02
Streamlit GitHub MCP Agent 1.0.0-2.0.0
Read more
High
Reflected XSS in Inventory System 1.0 add_category.php
github.com · 2026-04-02
Inventory System 1.0
Read more
Unknown
Reflected XSS in Inventory System 1.0 (add_customer.php) with PoC
github.com · 2026-04-02
Inventory System 1.0
Read more
Unknown
Reflected XSS in Inventory System 1.8 (Add Sales)
github.com · 2026-04-02
Inventory System 1.8
Read more
Critical
Business Logic Flaw: Negative Interest Rate Parameter Tampering in Loan Management System
github.com · 2026-04-02
Loan Management System
Read more
High
Business Logic Flaw: Negative Penalty Rate in Loan Management System
github.com · 2026-04-02
Loan Management System (LMS)
Read more
Unknown
Stored XSS in SourceControl Inventory System 1.0 (update_details.php)
github.com · 2026-04-02
Inventory System 1.0
Read more
Medium
SQL Injection (Time-based Blind) in Loan Management System v1.0 with PoC
github.com · 2026-04-02
Loan Management System v1.0
Read more
Unknown
SecureLend Loan Management System Business Logic Flaw: Negative Duration Input Validation Bypass
github.com · 2026-04-02
Loan Management System v1.0
Read more
High
Business Logic Vulnerability: Negative Price Bypass in Pharmacy Management System
github.com · 2026-04-02
Pharmacy Product Management System 1.0
Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.