Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

Security Intel Hub 2316+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
Clear filters
High
SQL Injection in Personnel Property Equipment System v1.0 (advance_search.php)
github.com · 2026-03-03
Personnel Property Equipment System v1.0
Read more
High
CVE-2026-24115: Buffer Overflow in Tenda W20E guestWifiRuleRefresh
CVE-2026-24115 · github.com · 2026-03-03
Tenda W20E V4.0br_V15.11.0.6
Read more
High
CVE-2026-24114: Tenda W20E formDelPortMapping Buffer Overflow Vulnerability
CVE-2026-24114 · github.com · 2026-03-03
Tenda W20E V4.0br_V15.11.0.6
Read more
High
CVE-2026-24108: Buffer Overflow in Tenda W20E formWiFiFilterRulesAdd Function
CVE-2026-24108 · github.com · 2026-03-03
Tenda W20E V4.0br_V15.11.0.6
Read more
High
Tenda W20E Buffer Overflow Vulnerability Analysis (CVE-2026-24109)
CVE-2026-24109 · github.com · 2026-03-03
Tenda W20E V4.0br_V15.11.0.6
Read more
High
OpenBabel: Fix for 3 CVEs including Heap-buffer-overflow and NULL Dereference
CVE-2026-2704 · github.com · 2026-03-01
openbabel
Read more
Medium
ChaiScript Segmentation Fault in Boxed_Number::get_as via Async Result Interpolation
github.com · 2026-03-01
ChaiScript
Read more
High
CleverTap SDK DOM-XSS via postMessage Origin Bypass (<=v1.15.2)
github.com · 2026-02-28
clevertap-web-sdk <= v1.15.2
Read more
Unknown
CleverTap Web SDK DOM-XSS via postMessage Bypass
github.com · 2026-02-28
CleverTap Web SDK <=1.15.2
Read more
High
CleverTap Web SDK HTML Injection Vulnerability Analysis
github.com · 2026-02-28
CleverTap CleverTap Web SDK
Read more
High
libvips extract_band signed integer overflow leading to out-of-bounds read
github.com · 2026-02-27
libvips (Master @ 7fab325d2)
Read more
High
libvips extract_area signed integer overflow bypass leading to crash
GHSA-4879 · github.com · 2026-02-27
libvips master @ 7fab325d2
Read more
High
FastCMS Plugin Upload RCE Vulnerability Analysis and Exploitation
github.com · 2026-02-27
FastCMS (Plugin System)
Read more
Medium
CVE-2025-56605: Reflected XSS in Event Management System 1.0
CVE-2025-56605 · github.com · 2026-02-27
event-management 1.0
Read more
Medium
OpenFUN Richie Timing Side-Channel Vulnerability (CVE-2026-26717)
CVE-2026-26717 · github.com · 2026-02-26
OpenFUN Richie (all versions prior to commit a1b5bbd)
Read more
High
libvips stack underflow via signed-to-unsigned conversion in matrixload.c
github.com · 2026-02-25
libvips master
Read more
Critical
GCOM EPON 1GE Router Privilege Escalation via Access Control Bypass and Unencrypted Backup (CVE-2025-63409)
CVE-2025-63409 · github.com · 2026-02-25
GCOM EPON 1GE C00R371V00B01
Read more
Critical
HummerRisk <=1.5.0 Path Traversal Vulnerability Analysis
github.com · 2026-02-24
HummerRisk <=1.5.0
Read more
Critical
HummerRisk <=1.5.0 OS Command Injection in Cloud Task dryRun
github.com · 2026-02-24
HummerRisk <=1.5.0
Read more
Critical
HummerRisk <=1.5.0 Stored OS Command Injection via regionId
github.com · 2026-02-24
HummerRisk <=1.5.0
Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.