Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 673— Search: RCE×

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Clear
Examples: RCE · SSRF · GHSA · log4j
Sourcecodester Covid-19 Contact Tracing System 1.0 Unrestricted File Upload RCE (CVE-2025-66802)
github.com · 2026-01-20

## Vulnerability Key Information ### Vulnerability Identifier - **CVE ID**: CVE-2025-66802 ### Vulnerability Description - **Description**: Sourcecodester Covid-19 Contact Tracing System 1.0 contains …

Read more
CVE-2023-46801: Apache Linkis DataSource Deserialization RCE
lists.apache.org · 2025-11-14

**CVE-2023-46801: Apache Linkis DataSource: Remote code execution vulnerability in Apache Linkis 1.4.0** **Severity:** Moderate **Affected Versions:** - Apache Linkis DataSource 1.4.0 before 1.6.0 **D…

Read more
Cisco Security Advisory: IOSXE RCE/Auth Bypass, ASA RCE, and Multiple Critical Vulnerabilities
tools.cisco.com · 2025-11-08

### Critical Vulnerability Information - **Cisco Secure Firewall Adaptive Security Appliance Software and Secure Firewall Threat Defense Software:** - **CVE-2025-20333**: Remote Code Execution Vulnera…

Read more
Mitsubishi Electric FA Products: CVE-2023-4699 RCE and CVE-2023-4625 Brute Force Vulnerabilities
jvn.jp · 2025-11-07

### Vulnerability Key Information #### Vulnerability ID - **JVNVD#94620134** #### Vulnerability Description - **Summary**: Multiple FA products provided by Mitsubishi Electric Corporation are affected…

Read more
Android BaseBundle Parcel Unparcel Error Logic Fix
android.googlesource.com · 2025-09-04

### Critical Vulnerability Information - **Commit ID**: ece83fb425b1e912a036e9985b710910e2e3ca37 - **Author**: Steven Moreland - **Committer**: Android Build Co-signature Worker - **Commit Time**: Dec…

Read more
Adobe Commerce/Magento Security Advisory APSB25-71: Multiple CVEs (RCE/XSS/Priv Esc)
helpx.adobe.com · 2025-08-14

### Critical Vulnerability Information #### Vulnerability Advisory - **Advisory ID**: APSB25-71 - **Release Date**: August 12, 2025 - **Priority**: 2 #### Affected Versions - **Adobe Commerce** - Vers…

Read more
ZenLoadBalancer v2/v3.0-rc1 RCE, Arbitrary File Upload, and Info Disclosure Vulnerabilities
web.archive.org · 2025-08-12

### Critical Vulnerability Information #### 1. Arbitrary Command Execution (Requires Authentication) - **Affected Versions**: v2.0 and v3.0-rc1 - **Vulnerability Description**: Attackers can execute a…

Read more
Adobe Commerce/Magento Security Advisory: RCE, Privilege Escalation & Bypass (CVE-2023-40798/40797/40796/40795)
helpx.adobe.com · 2025-06-11

### Critical Vulnerability Information #### Vulnerability Overview - **Announcement ID**: APSB23-50 - **Release Date**: June 13, 2023 - **Priority**: 1 Adobe has released security updates for Adobe Co…

Read more
Wordfence Integrated WooCommerce Payments Remote SQL Injection Vulnerabilities (CVE-2015-1600/1601/1602)
www.wordfence.com · 2026-04-02

Based on the provided screenshot, here is a summary of the vulnerability intelligence: ## Vulnerability Overview The page displays information regarding **Wordfence's Integrated WooCommerce Payments**…

Read more
HuggingFace LeRobot Unauthenticated RCE via Pickle Deserialization (CVE-2026-25874)
chocapikk.com · 2026-04-24

# CVE-2026-25874: HuggingFace LeRobot Deserialization Remote Code Execution Vulnerability ## Vulnerability Overview The asynchronous inference module of HuggingFace’s open-source robotics framework Le…

Read more
CVE-2026-26210: RCE via Unsafe Pickle Deserialization in gRPC PolicyServer balance_serve Module
github.com · 2026-04-24

### Vulnerability Overview - **Vulnerability Name**: CVE-2026-26210 - **Description**: In the `balance_serve` module of gRPC PolicyServer, due to the use of the insecure `pickle.loads()` method, an at…

Read more
ResourceSpace 8.6 collection_edit.php SQL Injection Vulnerability
www.exploit-db.com · 2026-04-18

# ResourceSpace 8.6 'collection_edit.php' SQL Injection Vulnerability ## Overview - **Vulnerability Type**: SQL Injection - **Affected File**: `collection_edit.php` - **Platform**: PHP - **Release Dat…

Read more
itsourcecode Online Cellphone System V1.0 /cp/available.php SQL Injection Vulnerability
github.com · 2026-04-05

# itsourcecode Online Cellphone System V1.0 "/cp/available.php" SQL Injection Vulnerability ## Vulnerability Overview - **Vulnerability Type**: SQL Injection - **Affected File**: `/cp/available.php` -…

Read more
CVE-2026-26738: SpaceSniffer Stack Buffer Overflow RCE via .sns Files
www.gruppotim.it · 2026-04-02

### Vulnerability Summary **Vulnerability Overview** * **CVE ID**: CVE-2026-26738 * **Affected Software**: Uderzo Software SpaceSniffer * **Affected Version**: 2.0.5.18 * **Vulnerability Type**: Stack…

Read more
SPIP interface_traduction_objets Authenticated RCE via Code Injection (CVE-2026-27745)
www.vulncheck.com · 2026-02-25

- **Advisories**: SPIP interface_traduction_objets < 2.2.2 Authenticated RCE - **Severity**: High - **Date**: 2/24/2026 - **Affected Versions**: Versions of the SPIP interface_traduction_objets plugin…

Read more
Advanced Woo Labels Plugin Vulnerability Analysis (XSS/SSRF/RCE)
plugins.trac.wordpress.org · 2026-02-25

### Critical Vulnerability Information - **Plugin Name**: Advanced Woo Labels - **File**: `/includes/admin/class-awl-admin-ajax.php` - **Version**: 2.34 - **Last Modified**: Modified in changeset 3443…

Read more
WordPress Advanced Woo Labels RCE via call_user_func_array (CVE-2026-1929)
www.wordfence.com · 2026-02-25

### Critical Vulnerability Information **Vulnerability Details** - **Vulnerability ID**: CVE-2026-1929 - **CVSS Score**: 8.8 (High) - **Vulnerability Type**: Code Injection - **Publication Date**: Feb…

Read more
InvoicePlane <=1.7.0 Log Poisoning to RCE via CVE-2026-25548
github.com · 2026-02-21

## Critical Vulnerability Information ### Vulnerability Details - **CVE ID**: CVE-2026-25548 - **CVSS 3.1 Score**: 9.1 (Critical) - **Affected Versions**: <=1.7.0 - **Patched Versions**: None ### Vuln…

Read more
Alfresco Transform Service Vulnerabilities: CVE-2026-26337/338/339 (RCE, SSRF, Path Traversal)
connect.hyland.com · 2026-02-21

- **CVE-2026-26337**: Absolute Path Traversal (Arbitrary File Read + SSRF) - Impact: Arbitrary file read and server-side request forgery (SSRF) - Affected Components: Alfresco Transform Service (ATS),…

Read more
WordPress Plugin KirilKirkovPDFInvoices 1.6 Code Audit: RCE/LFI/SQLi Risks
plugins.trac.wordpress.org · 2026-02-11

## Critical Vulnerability Information ### 1. **Plugin Name** - KirilKirkovPDFInvoices ### 2. **Version** - 1.6 ### 3. **Potential Vulnerabilities** - **Remote Code Execution Risk** - The code contains…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.