Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1020 CNY

100%
Buy Us a Coffee

Security Intel Hub 2203+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
Clear filters
Medium
OpenSourcePOS v3.4.1 Stored XSS in Items Module with PoC
CVE-2025-70094 · github.com · 2026-02-21
OpenSourcePOS v3.4.1
Read more
High
ezBookkeeping Uncontrolled Recursion (CWE-674) DoS Analysis and Mitigation
github.com · 2026-02-21
ezBookkeeping
Read more
High
OpenSourcePOS 3.4.1 Secondary SQL Injection via Currency Symbol (CVE-2026-26745)
CVE-2026-26745 · github.com · 2026-02-21
OpenSourcePOS 3.4.1
Read more
High
Monica CVE-2026-26747 Password Reset Poisoning via Host Header
CVE-2026-26747 · github.com · 2026-02-21
Monica 4.1.2
Read more
Medium
OpenSourcePOS v3.4.1 Stored XSS via Incorrect Content-Type Handling
CVE-2025-70093 · github.com · 2026-02-21
OpenSourcePOS v3.4.1
Read more
Medium
OpenSourcePOS v3.4.1 Stored XSS in Customer Module Phone Field
CVE-2025-70091 · github.com · 2026-02-21
OpenSourcePOS v3.4.1
Read more
Medium
OpenSourcePOS v3.4.1 Stored XSS Vulnerability Analysis
CVE-2025-70095 · github.com · 2026-02-21
OpenSourcePOS v3.4.1
Read more
High
bn.js DoS Vulnerability: Infinite Loop via new BN(null).toString()
github.com · 2026-02-21
bn.js
Read more
Unknown
aidiugu v1.9.1 Stored XSS Vulnerability (CVE-2025-70845)
CVE-2025-70845 · github.com · 2026-02-21
aidiugu v1.9.1
Read more
Unknown
Stored XSS in Aidigu v1.9.1 (CVE-2025-70846)
CVE-2025-70846 · github.com · 2026-02-21
Aidigu v1.9.1
Read more
Medium
OTRS AgentDashboard Subaction Reflected XSS Vulnerability
github.com · 2026-02-21
OTRS AgentDashboard
Read more
Medium
OTRS SortBy Parameter Reflected XSS Vulnerability with POC
github.com · 2026-02-21
LigeroSmart ligerosmart (GitHub Issue #283)
Read more
Critical
Smanga 3.2.7 Authentication Bypass Allows Arbitrary Password Reset
github.com · 2026-02-21
Smanga 3.2.7
Read more
Critical
Smanga 3.2.7 Unauthenticated RCE via OS Command Injection (CWE-78)
github.com · 2026-02-21
Smanga 3.2.7
Read more
Medium
phpIPAM 1.4.3 Reflected XSS via cidr Parameter in IP Calculator
CVE-2021-35438 · github.com · 2026-02-21
phpIPAM 1.4.3
Read more
Unknown
WebPageTest 3.0 Reflected XSS in view.php
CVE-2017-6537 · github.com · 2026-02-21
WebPageTest 3.0
Read more
High
RUCKUS Network Director Hardcoded Credentials RCE (CVE-2025-67304)
MCSAID-2025-009 · github.com · 2026-02-21
RUCKUS Network Director < 4.5.0.54
Read more
High
MindsDB Editor SSRF Bypass via userinfo in URL
github.com · 2026-02-21
MindsDB Editor
Read more
Medium
phpipam 1.6 Reflected XSS via ip_addr Parameter
CVE-2024-41355 · github.com · 2026-02-21
phpipam 1.6
Read more
High
RUCKUS Network Director Hardcoded SSH Keys Vulnerability (CVE-2025-67305)
CVE-2025-67305 · github.com · 2026-02-21
RUCKUS Network Director < 4.5.0.56
Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.