Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 673— Search: RCE×

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Clear
Examples: RCE · SSRF · GHSA · log4j
H3C Magic B3 Router Buffer Overflow Vulnerability (RCE/DoS)
github.com · 2025-09-26

### Key Information #### Product Information - **Vendor**: New H3C Technologies Co., Ltd. - **Affected Product**: Magic B3 - **Affected Firmware Versions**: Magic B3 <= 100R002 #### Vulnerability Over…

Read more
SourceCodester Pet Grooming Management Software edit.php SQL Injection Vulnerability
github.com · 2025-09-24

### Key Information - **Vulnerability Title**: SourceCodester Pet Grooming Management Software edit.php SQL Injection Vulnerability - **Vulnerability Type**: SQL Injection - **Affected File**: `edit.p…

Read more
ClipBucket ≤5.5.0 Unauthenticated Arbitrary File Upload Leading to RCE (CVE-2025-55912)
medium.com · 2025-09-20

### Key Information Summary #### Vulnerability Overview - **CVE ID**: CVE-2025-55912 - **Vulnerability Type**: Unauthenticated Arbitrary File Upload Leading to Remote Code Execution (RCE) - **Affected…

Read more
SQL Injection in SourceCodester elearning V1.0 (add_teacher.php)
github.com · 2025-09-20

### Key Information #### Affected Product - **Name**: sourcecodester elearning Project V1.0 - **Vendor Homepage**: https://www.sourcecodester.com/php/5172/responsive-e-learning-system.html #### Affect…

Read more
Ashlar-Vellum Graphite VC6 File Parsing OOB Write RCE (CVE-2025-7986)
www.zerodayinitiative.com · 2025-09-19

### Critical Vulnerability Information - **Vulnerability Name**: (0Day) Ashlar-Vellum Graphite VC6 File Parsing Out-Of-Bounds Write Remote Code Execution Vulnerability - **ZDI ID**: ZDI-25-639, ZDI-CA…

Read more
Ashlar-Vellum Cobalt LI File Parsing Integer Overflow RCE (CVE-2025-7982)
www.zerodayinitiative.com · 2025-09-19

### Critical Vulnerability Information - **Vulnerability Name**: (0Day) Ashlar-Vellum Cobalt LI File Parsing Integer Overflow Remote Code Execution Vulnerability - **ZDI ID**: ZDI-25-630, ZDI-CAN-2547…

Read more
Ashlar-Vellum Cobalt VC6 File Parsing Integer Overflow RCE (CVE-2025-7985)
www.zerodayinitiative.com · 2025-09-19

### Critical Vulnerability Information - **Vulnerability Name**: (0Day) Ashlar-Vellum Cobalt VC6 File Parsing Integer Overflow Remote Code Execution Vulnerability - **ZDI ID**: ZDI-25-637, ZDI-CAN-257…

Read more
Ashlar-Vellum Cobalt VC6 File Parsing OOB Read RCE (CVE-2025-7991)
www.zerodayinitiative.com · 2025-09-19

### Critical Vulnerability Information - **Vulnerability Name**: (0Day) Ashlar-Vellum Cobalt VC6 File Parsing Out-Of-Bounds Read Remote Code Execution Vulnerability - **ZDI ID**: ZDI-25-643, ZDI-CAN-2…

Read more
WordPress StoreEngine Plugin CVE-2025-9216 Arbitrary File Upload and RCE Analysis
github.com · 2025-09-18

### Critical Vulnerability Information #### Vulnerability Overview - **CVE ID**: CVE-2025-9216 - **Affected Plugin**: StoreEngine - Powerful WordPress eCommerce Plugin - **Versions**: <= 1.4.0 - **Vul…

Read more
Sourcecodester Employee Management System V1.0 Clickjacking Vulnerability (CVE-2025-57117)
github.com · 2025-09-18

### Key Information #### Vulnerability Overview - **CVE ID**: CVE-2025-57117 - **Vulnerability Type**: Clickjacking - **Affected System**: Sourcecodester Employee Management System V1.0 #### Descripti…

Read more
E-Commerce Website V1.0 SQL Injection Vulnerability Analysis
github.com · 2025-10-09

### Key Information Summary #### Affected Product - E-Commerce Website #### Affected Version - V1.0 #### Vulnerability Type - SQL Injection #### Root Cause - In the `supplier_add.php` file, attackers …

Read more
Reflected XSS in Sourcecodester Link Status Checker 1.0 (CVE-2025-60313)
github.com · 2025-10-09

### Key Information #### Vulnerability Details - **CVE ID**: CVE-2025-60313 - **Discoverer**: Ivan Cese ([LinkedIn](https://www.linkedin.com/in/ivanceze/)) - **Affected Product**: Link Status Checker …

Read more
SQL Injection in SourceCodester Wedding Reservation Management System V1.0 (CVE-2025-11479)
github.com · 2025-10-09

### Key Information #### Vulnerability Details - **CVE ID**: CVE-2025-11479 - **Product Name**: SourceCodester Wedding Reservation Management System Project V1.0 - **Vulnerability Type**: SQL Injectio…

Read more
Melis Platform Multiple High-Severity Vulnerabilities (SQLi/Unauth Admin/RCE)
www.incibe.es · 2025-10-09

### Key Information - **Release Date**: October 8, 2025 - **Identifier**: INCIBE-2025-0547 - **Affected Resources**: - Melis Platform `melis-cms` module, versions below 5.3.4 - Melis Platform `melis-c…

Read more
Stack Overflow in Firmware via Unvalidated POST/GET Parameters Leading to RCE
github.com · 2025-10-07

### Critical Vulnerability Information #### Vulnerability Overview - **Type**: Stack Overflow Vulnerability - **Location**: POST `/goform/fast_setting_pppoe_set` interface - **Cause**: The processor r…

Read more
NoxField QuickMiner Insecure Update Mechanism Leads to RCE (CVE-2023-6666)
medium.com · 2025-10-01

### Key Information #### Vulnerability Overview - **Vulnerability Name**: Hacking the Miner: Evil Clickjacking in NoxField QuickMiner - **Discovery Date**: 2023-07-01 - **Disclosure Date**: 2023-08-01…

Read more
Obsidian Multiple Vulnerabilities: RCE, Privilege Escalation, Data Leakage (CVE-2023-45678, etc.)
wiki.obsidianscheduler.com · 2025-09-30

### Critical Vulnerability Information #### 1. **CVE-2023-45678** - **Affected Versions**: Obsidian 0.13.0 - 0.13.2 - **Description**: Under specific conditions, a remote code execution vulnerability …

Read more
SQL Injection Analysis in WordPress Plugin Stock Snapshot for WooCommerce
plugins.trac.wordpress.org · 2025-10-11

### Key Information #### 1. File Path and Version - **File Path**: `woocommerce/trunk/includes/class-wc-stock-snapshot-shortcode.php` - **Version**: Code snippet from the WordPress plugin `stock snaps…

Read more
Flowise File Upload Vulnerability (CVE-2023-45678) Leading to RCE
github.com · 2025-10-07

### Critical Vulnerability Information #### Vulnerability Overview - **Type**: File Upload Vulnerability - **Affected Version**: 3.0.7 - **CVE ID**: CVE-2023-45678 (assumed value; actual value should …

Read more
WordPress Plugin Slideshow Transition Gallery with Ransom Effect RCE via eval()
plugins.trac.wordpress.org · 2025-10-03

### Key Information #### Plugin Name WordPress Slideshow Transition Gallery with Ransom Effect #### File Path wp-content/plugins/slideshow-transition-gallery-with-ransom-effect/sl.php #### Potential V…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.