Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1020 CNY

100%
Buy Us a Coffee

Security Intel Hub 2200+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
Clear filters
Critical
GCOM EPON 1GE Router Privilege Escalation via Access Control Bypass and Unencrypted Backup (CVE-2025-63409)
CVE-2025-63409 · github.com · 2026-02-25
GCOM EPON 1GE C00R371V00B01
Read more
Critical
HummerRisk <=1.5.0 Path Traversal Vulnerability Analysis
github.com · 2026-02-24
HummerRisk <=1.5.0
Read more
Critical
HummerRisk <=1.5.0 OS Command Injection in Cloud Task dryRun
github.com · 2026-02-24
HummerRisk <=1.5.0
Read more
Critical
HummerRisk <=1.5.0 Stored OS Command Injection via regionId
github.com · 2026-02-24
HummerRisk <=1.5.0
Read more
Critical
HummerRisk <=1.5.0 Command Injection in Cloud Compliance Scanning Module
github.com · 2026-02-24
HummerRisk <=1.5.0
Read more
High
TOTOLink X5000R CVE-2025-70327 Parameter Injection Leading to DoS Analysis
CVE-2025-70327 · github.com · 2026-02-24
TOTOLink X5000R v9.1.0cu_2415_B20250515
Read more
Critical
Tencent PC Manager CVE-2025-63946 Local Privilege Escalation via Symlink Attack
CVE-2025-63946 · github.com · 2026-02-24
Tencent PC Manager ≤ 17.10.28554.205
Read more
High
CVE-2025-63945: Tencent iOA Local Privilege Escalation via Symlink Attack
CVE-2025-63945 · github.com · 2026-02-24
Tencent iOA before 210.9.28693.62001
Read more
High
TOTOLink X5000R CVE-2025-70329 OS Command Injection Vulnerability Analysis
CVE-2025-70329 · github.com · 2026-02-24
TOTOLink X5000R v9.1.0cu_2415_B20250515
Read more
Premium intel
Critical
FastapiAdmin <=2.2.0 Unrestricted File Upload Leading to RCE
github.com · 2026-02-23
FastapiAdmin <= 2.2.0
Read more
High
Unrestricted File Download in FastapiAdmin <=2.2.0
github.com · 2026-02-23
FastapiAdmin <= 2.2.0
Read more
Unknown
AliasVault 0.26.0 Release Notes: Fixes Hosted Self-XSS and Auth Issues
github.com · 2026-02-23
aliasvault 0.25.0
Read more
Critical
Vaelsys V4 Platform Remote Command Execution (RCE) Analysis
github.com · 2026-02-22
Vaelsys V4 Platform v4.1.0
Read more
High
libvips Heap Buffer Overflow in vips_source_read_to_memory via Integer Truncation
github.com · 2026-02-22
libvips 8.19.0
Read more
High
Vips Heap-buffer-overflow via Integer Truncation in vips_source_read_to_memory
github.com · 2026-02-22
libvips 8.19.0
Read more
Critical
FunAdmin v7.1.0-rc4 Insecure Deserialization Leads to Arbitrary File Write
github.com · 2026-02-22
FunAdmin v7.1.0-rc4
Read more
Critical
FunAdmin v7.1.0-rc4 Unsafe Deserialization Leading to Arbitrary File Write
github.com · 2026-02-22
FunAdmin v7.1.0-rc4
Read more
High
FunAdmin v7.1.0-rc4 Unauthorized Configuration Modification Vulnerability
github.com · 2026-02-22
FunAdmin v7.1.0-rc4
Read more
High
FunAdmin v7.1.0-rc4 Unauthenticated Configuration Modification Vulnerability
github.com · 2026-02-22
FunAdmin v7.1.0-rc4
Read more
High
TOTOLINK A3002RU boa formDnsV6 Stack Overflow Vulnerability Analysis
github.com · 2026-02-21
TOTOLINK A3002RU <= V2.1.1-B20211108.1455
Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.