Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 673— Search: RCE×

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Clear
Examples: RCE · SSRF · GHSA · log4j
Explorance Blue Authenticated Unrestricted File Upload RCE (CVE-2025-57794)
github.com · 2026-01-29

Below is the list of key information about vulnerability `MNDT-2026-0003` obtained through analysis of the webpage content: - **Vulnerability Description**: In versions of `Explorance Blue` prior to `…

Read more
CSRF Vulnerability in SourceCodester Medical Certificate Generator App (CVE-2026-1745)
github.com · 2026-02-02

## Critical Vulnerability Information ### Vulnerability Overview - **CVE ID**: CVE-2026-1745 - **Vulnerability Type**: Cross-Site Request Forgery (CSRF) - **Impact**: Arbitrary Medical Certificate Del…

Read more
ZSPACE Z4Pro+ NAS Command Injection Vulnerability (RCE)
vuldb.com · 2026-01-03

- **Title**: ZSPACE Z4Pro+ v1.0.0440024 Command Injection - **Description**: A binary vulnerability exists in the ZSPACE Z4pro+ NAS device (Firmware v1.0.0440024), leading to Remote Command Execution …

Read more
Tencent WeKnora CVE-2026-22688 Command Injection Leading to RCE
github.com · 2026-01-20

### Key Information Summary #### Vulnerability Overview - **Vulnerability Type**: Command Injection (CWE-78) - **Affected Scope**: Tencent/WeKnora project's `internal/mcp/client.go` file, versions < 0…

Read more
InvoicePlane Multiple High-Severity Vulnerabilities: Unauth File Read, SQLi, and RCE via PHP Upload (CVE-2025-67082/6708
www.helx.io · 2026-01-20

### Critical Vulnerability Information - **CVEs**: - CVE-2025-67082 - CVE-2025-67083 - CVE-2025-67084 - **Product**: InvoicePlane - **Severity**: High - **Affected Version(s)**: ≤ 1.6.3 - **Fixed Vers…

Read more
Tencent NeuralNLP-NeuralClassifier Untrusted Data Deserialization RCE (CVE-2025-13708)
www.zerodayinitiative.com · 2025-12-29

Key vulnerability information extracted from the web screenshot: - **Vulnerability Title**: - Tencent NeuralNLP-NeuralClassifier _load_ checkpoint Deserialization of Untrusted Data Remote Code Executi…

Read more
XWiki Confluence Bridges RCE via Velocity Execution (CVE-2025-65036)
github.com · 2025-12-06

### Vulnerability Key Information #### Title - **Remote code execution using the confluence details summary macro** #### Reference - **GHSA-472x-fwh9-r82f** #### Severity - **Severity: High 8.3 / 10**…

Read more
Hugging Face Transformers SEW-D convert_config RCE Vulnerability (CVE-2025-14927)
www.zerodayinitiative.com · 2025-12-29

# Vulnerability Key Information - **Title**: (0Day) Hugging Face Transformers SEW-D convert_config Code Injection Remote Code Execution Vulnerability - **Vulnerability ID**: - ZDI-25-1148 - ZDI-CAN-28…

Read more
Hugging Face Transformers CVE-2025-14930 Deserialization RCE Advisory
www.zerodayinitiative.com · 2025-12-29

### Critical Vulnerability Information #### Vulnerability Overview - **Title**: (0Day) Hugging Face Transformers GLM4 Deserialization of Untrusted Data Remote Code Execution Vulnerability - **ID**: - …

Read more
Advanced School Management System v1.0 Arbitrary File Upload RCE
github.com · 2025-11-20

Key vulnerability information obtained from the webpage screenshot: ### Vulnerability Overview **Name**: Advanced School Management System v1.0 Remote Code Execution (RCE) ### Vulnerability Details - …

Read more
AudioCodes Fax/IVR Appliance Unauthenticated File Upload RCE (CVE-2025-34328)
www.vulncheck.com · 2025-11-20

### Key Information - **Vulnerability Title**: AudioCodes Fax/IVR Appliance <= 2.6.23 Unauthenticated File Upload RCE via ajaxScript.php - **Severity**: CRITICAL - **Release Date**: September 19, 2025…

Read more
SQL Injection in Sourcecodester Online Student Clearance System V1.0
github.com · 2025-11-24

### Name - **Vulnerability Name**: Sourcecodester Online Student Clearance System Project V1.0 /Admin/changepassword.php SQL injection ### Affected Product - **Product Name**: Online Student Clearance…

Read more
Debian DSA-1671-1: iceweasel multiple vulnerabilities fix (RCE/SOP bypass)
www.debian.org · 2025-11-19

### Key Information - **Announcement ID**: DSA-1671-1 - **Date**: November 24, 2008 - **Affected Software**: iceweasel - **Vulnerability Type**: Remote #### Vulnerability Details - **CVE IDs**: - CVE-…

Read more
SQL Injection in SourceCodester Vehicle Service Management System 1.0 (CVE-2023-2097)
vuldb.com · 2025-11-13

### Vulnerability Key Information Summary - **Vulnerability ID**: - VDB-226105 - CVE-2023-2097 - GCVE-100-226105 - **System and Version**: - SourceCodester Vehicle Service Management System 1.0 - **Vu…

Read more
Iceape Security Update: Multiple UAF/Integer Overflow RCE Vulnerabilities (CVE-2011-0083, CVE-2011-2371, etc.)
www.debian.org · 2025-11-14

- **Package**: Iceape - **Vulnerability Type**: Several - **Problem Type**: Remote - **Debian-specific**: No - **CVE IDs**: CVE-2011-0083, CVE-2011-0085, CVE-2011-2362, CVE-2011-2363, CVE-2011-2365, C…

Read more
CentOS Web Panel ajax_mod_security Command Injection RCE (CVE-2020-15421)
www.zerodayinitiative.com · 2025-11-13

### Key Information on the Vulnerability - **Date**: June 25th, 2020 - **Title**: (0Day) CentOS Web Panel ajax_mod_security check_ip Command Injection Remote Code Execution Vulnerability - **IDs**: - …

Read more
Crater Invoice CVE-2023-46865 Post-Auth Unrestricted File Upload RCE
notes.netbytesec.com · 2025-11-13

### Critical Vulnerability Information #### Vulnerability Overview - **CVE ID**: CVE-2023-46865 - **Title**: Post-Auth Unrestricted File Upload and Code Execution via IDAT in Crater Invoice - **Securi…

Read more
Cisco ASA/FTD/IOS Web Services RCE and Unauthorized Access Vulnerabilities (CVE-2025-20333)
tools.cisco.com · 2025-11-11

### Critical Vulnerability Information #### Vulnerability Overview - **Title**: Cisco Security Advisories - **Source**: Cisco Security #### Specific Vulnerability Details - **CVE-2025-20333** - **Desc…

Read more
Ceph Multiple Vulnerabilities Summary (CVE-2019-10222 etc): RCE/Privilege Escalation/Info Disclosure
lists.debian.org · 2025-11-11

### Vulnerability Key Information - **CVE IDs**: - CVE-2019-10222, CVE-2020-1700, CVE-2020-1760, CVE-2020-10753, CVE-2020-12059, CVE-2020-25678, CVE-2020-27781, CVE-2021-3524, CVE-2021-3531, CVE-2021-…

Read more
QuickBox CE/Pro Authenticated RCE and Privilege Escalation Analysis (CVE-2020-13448/13694/13695)
s1gh.sh · 2025-11-10

### Vulnerability Overview - **CVE IDs**: CVE-2020-13448, CVE-2020-13694, CVE-2020-13695 - **Affected Versions**: - QuickBox CE /inc/config.php?id=88&servicestart=a;; ``` #### Privilege Escalation - *…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.