Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 24810+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
Premium intel
CVSS 9.6
OpenClaw sandbox CDP source range restriction bypass fix
github.com · 2026-05-07

### Vulnerability Overview This vulnerability involves a CDP (Chrome DevTools Protocol) source range restriction issue in the `sandbox` module of the OpenClaw project. By default, the CDP source range…

Read more
CVSS 7.7
openclaw CDP WebSocket SSRF Vulnerability Fix
github.com · 2026-05-07

### Vulnerability Overview This vulnerability involves hardening the direct CDP (Chrome DevTools Protocol) WebSocket validation in the `openclaw` project. The specific issue is that the CDP WebSocket …

Read more
CVSS 7.7
OpenClaw SSRF Bypass Vulnerability Fix Analysis
github.com · 2026-05-07

# Vulnerability Summary ## Overview A security vulnerability exists in the OpenClaw browser automation framework, allowing attackers to bypass SSRF (Server-Side Request Forgery) policy restrictions. T…

Read more
Premium intel
CVSS 9.8
Fix: noVNC Sandbox Auth Bypass Leaking Sensitive Info
github.com · 2026-05-07

# Vulnerability Summary ## Vulnerability Overview This vulnerability involves the exposure of the `noVNC` observer's URL within the model-visible prompt context in a sandbox environment. An attacker c…

Read more
CVSS 8.1
OpenClaw Gateway Auth Token Rotation Bypass Fix Analysis
github.com · 2026-05-07

| Item | Content | | :--- | :--- | | **Vulnerability Overview** | The OpenClaw Gateway fails to correctly re-parse authentication credentials on every HTTP request. When authentication tokens are rota…

Read more
CVSS 8.1
OpenClaw Gateway Bearer Auth Not Refreshed After SecretRef Rotation
github.com · 2026-05-07

# Vulnerability Summary: Gateway HTTP endpoints re-resolve bearer auth after SecretRef rotation ## Vulnerability Overview OpenClaw's Gateway HTTP and WebSocket processors captured the resolved bearer-…

Read more
Premium intel
CVSS 9.6
openclaw CDP relay exposes DevTools on 0.0.0.0 (GHSA-525j-hqq2-66r4)
github.com · 2026-05-07

# Vulnerability Summary: Sandbox browser CDP relay could expose DevTools protocol on 0.0.0.0 ## Vulnerability Overview - **Title**: Sandbox browser CDP relay could expose DevTools protocol on 0.0.0.0 …

Read more
CVSS 7.7
Fix for SSRBypass via Delayed JS Redirect in Playwright Tools
github.com · 2026-05-07

### Vulnerability Overview This vulnerability involves the implementation of a three-stage interaction navigation guard in the browser to prevent bypassing delayed JS redirection via `pressKey` and `t…

Read more
CVSS 5.3
OpenClaw Outbound Message Queue Session Context Loss Fix
github.com · 2026-05-07

# Vulnerability Summary ## Vulnerability Overview The outbound message queue in OpenClaw fails to correctly preserve session context during recovery, resulting in the loss of media policy information.…

Read more
CVSS 5.3
Sandbox File Read Bypass Vulnerability Summary and Fix
github.com · 2026-05-07

# Vulnerability Summary ## Overview This vulnerability involves a security check issue regarding file reads within a sandbox environment. Specifically: - File reads in the sandbox may bypass checks on…

Read more
Incus OVN Client SSL/TLS Misconfiguration and Certificate Verification Bypass Analysis
github.com · 2026-05-07

### Vulnerability Overview The provided webpage screenshot displays a code file named `ovn_icsgo_b.go` from the `incus` project. The code involves the initialization process of the OVN (Open Virtual N…

Read more
Incus OVN SB Client SSL/TLS Configuration and Certificate Verification Flaw Analysis
github.com · 2026-05-07

### Vulnerability Overview The provided webpage screenshot displays a code file named `ovn_sb.go` from the `incus` project. This file implements the Open vSwitch (OVS) Southbound (SB) client, includin…

Read more
Incus OVN TLS Verification Bypass via Custom Peer Cert Logic (CVE-2024-40243)
github.com · 2026-05-07

# OVN TLS Verification Accepts Root Certificate Provided by Peer (CVE-2024-40243) ## Vulnerability Overview There is a flaw in the TLS verification logic for OVN database connections in Incus. Incus d…

Read more
Incus OVN Client SSL/TLS Certificate Verification Issue Analysis
github.com · 2026-05-07

### Vulnerability Overview The provided screenshot displays the code file `ovn_nb.go` from the `incus` project. The file involves interactions with the OVN (Open Virtual Network) client, specifically …

Read more
MasaCMS Trash Management CSRF Vulnerability (CVE-2024-40320) Advisory
github.com · 2026-05-07

# MasaCMS Trash Management CSRF Vulnerability Summary ## Vulnerability Overview * **Vulnerability Name**: CSRF vulnerability in trash management * **CVE ID**: CVE-2024-40320 * **Severity**: High (8.1 …

Read more
CVSS 5.8
qgbot SSRF Vulnerability Fix and Defense Code Analysis
github.com · 2026-05-07

# Vulnerability Summary ## Vulnerability Overview This vulnerability involves a lack of SSRF (Server-Side Request Forgery) protection for directly uploaded URL paths in the `upload2C2Media` and `uploa…

Read more
Premium intel
CVSS 10.0
gotenberg exiftool Command Injection Vulnerability and Fix
github.com · 2026-05-07

# Vulnerability Summary ## Vulnerability Overview A security vulnerability exists in the `exiftool` module of the `gotenberg` project. This vulnerability allows attackers to inject control characters …

Read more
Premium intel
CVSS 8.8
OpenClaw exec Module Heredoc Command Injection Vulnerability and Fix
github.com · 2026-05-07

# Vulnerability Summary ## Vulnerability Overview A security vulnerability exists in the `exec` module of the OpenClaw project regarding **heredoc parameter expansion**. This vulnerability allows atta…

Read more
Premium intel
CVSS 7.8
OpenClaw Gateway Privilege Escalation: Bypassing Owner Verification via Header Parsing Flaw
github.com · 2026-05-07

# Vulnerability Summary: OpenClaw Loopback Privilege Escalation Vulnerability ## Vulnerability Overview The Gateway module of OpenClaw contains a privilege escalation vulnerability. Attackers can bypa…

Read more
CVE-2024-0231: Incus Snapshot Bounds Check Missing Leads to DoS
github.com · 2026-05-07

# Vulnerability Summary: Panic via Snapshot Bounds Check ## Vulnerability Overview - **CVE ID**: CVE-2024-0231 - **CVSS Score**: 6.5/10 (Medium) - **Severity**: Medium - **Description**: Missing valid…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.