Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 24809+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
PHP ext-mbstring NULL Pointer Dereference Crash via mb_ereg_search_init
github.com · 2026-05-10

### Vulnerability Overview A null pointer dereference vulnerability exists in the `php_mb_check_encoding()` function via `mb_ereg_search_init()`. This vulnerability leads to a segmentation fault, allo…

Read more
PHP SOAP Use-After-Free RCE Vulnerability (CVE-2026-6722) with POC
github.com · 2026-05-10

### Vulnerability Overview This vulnerability involves a Use-After-Free issue in the use of Apache maps within SOAP, which may lead to Remote Code Execution (RCE). Specifically, when `ext-soap` proces…

Read more
CVSS 6.3
Wavlink NUS16U1 Router Remote Command Execution (RCE) via Wireless Basic Interface
github.com · 2026-05-10

# Summary of Command Injection Vulnerability in Wavlink Router ## Vulnerability Overview A command injection vulnerability was discovered in the `wireless_basic` interface of the Wavlink network print…

Read more
CVSS 6.3
Wavlink NUS16U1 Printer Command Injection Vulnerability Summary
github.com · 2026-05-10

# Wavlink Vulnerability Summary ## Vulnerability Overview In the `wzdpMesn` interface of Wavlink network printers, parameters such as `ppp_username`, `ppp_passwd`, `rwan_ip`, `rwan_mask`, and `rwan_ga…

Read more
CVSS 6.3
Wavlink USB Network Printer Server Pre-Auth RCE Vulnerability Analysis
github.com · 2026-05-10

# Wavlink Vulnerability Summary ## Vulnerability Overview * **Vulnerability Type**: Command Injection (Remote Command Execution) * **Affected Products**: Wavlink USB Network Printer Server * **Affecte…

Read more
CVSS 6.3
Wavlink NU516U1 Remote Command Execution Vulnerability with POC
github.com · 2026-05-10

# Wavlink Vulnerability Summary ## Vulnerability Overview A command injection vulnerability has been identified in the Wavlink USB network printer server. This vulnerability allows remote attackers to…

Read more
CVSS 5.3
Open5GS PCF HTTP Method Confusion Leading to Session Context Clearing DoS
github.com · 2026-05-10

# [Bug]: PCF method confusion on GET /npcf-smpolicycontrol/v1/sm-policies/{smPolicyId}/delete clears the session context #4440 ## Vulnerability Overview The PCF (Policy Control Function) module in Ope…

Read more
CVSS 5.3
Open5GS PCF Crash via Malformed Flow Descriptions (DoS)
github.com · 2026-05-10

# Vulnerability Summary ## Vulnerability Overview - **Title**: [Bug]: PCF crash in flow_rx_to_gx() on malformed fDescs=["permit in"] #4441 - **Status**: Open - **Reporter**: LinZiyu - **Time**: 3 week…

Read more
PHP PDO_Firebird SQL Injection via NUL Byte (CVE-2025-14179)
github.com · 2026-05-10

### Vulnerability Overview In `pdo_firebird`, an improper handling of NUL bytes leads to an SQL injection vulnerability. Specifically, when preparing Firebird SQL queries, NUL bytes cause parts of the…

Read more
CVSS 5.3
Open5GS PCF DoS Vulnerability Analysis #4437
github.com · 2026-05-10

# Vulnerability Summary: Open5GS PCF Crash Vulnerability ## Vulnerability Overview * **Vulnerability ID**: #4437 * **Vulnerability Type**: Denial of Service (DoS) / Crash * **Affected Component**: PCF…

Read more
CVSS 5.3
Open5GS PCF PCF Crash via Invalid IPv6 Prefix Assertion Failure
github.com · 2026-05-10

# Vulnerability Summary ## Overview - **Title**: [Bug]: PCF crash on POST /npcf-smfcontrol/v1/sm-policies with non-/128 ipv6AddressPrefix #4439 - **Status**: Open - **Reporter**: LinZiyu - **Created**…

Read more
CVSS 5.3
Open5GS PCF NULL Pointer Dereference Crash via Delayed BSF Response
github.com · 2026-05-10

# [Bug]: PCF crash on delayed BSF discovery response after client disconnect during POST /npcf-smpolicycontrol/v1/sm-policies #4438 ## Vulnerability Overview In the 5G Core Network PCF (Policy Control…

Read more
CVSS 6.3
CaniasERP 8.03 Unauthenticated RCE via Java RMI IasServerRemoteInterface.doAction()
gist.github.com · 2026-05-10

### Vulnerability Overview - **Vulnerability Name**: CaniasRCEChain.java - **Vulnerability Type**: Remote Code Execution (RCE) - **Vulnerability Description**: This vulnerability allows an unauthentic…

Read more
CVSS 5.3
CanisERP Unauthenticated File Read Vulnerability POC
gist.github.com · 2026-05-10

# Vulnerability Summary ## Vulnerability Overview This vulnerability affects the file transfer functionality of the CanisERP system. Attackers can leverage unauthorized file access and transfer capabi…

Read more
CVSS 5.3
Canias ERP GetUserList Unauth Access Vulnerability and POC
gist.github.com · 2026-05-10

### Vulnerability Overview This vulnerability affects the `GetUserList` function within the Canias ERP system, allowing attackers to retrieve user list information by crafting malicious requests. ### …

Read more
CVSS 5.3
GDAL HDF-EOS size_t Underflow OOB Read Vulnerability (CVE-2026-8212) Analysis and POC
github.com · 2026-05-10

### Vulnerability Overview **CVE-2026-8212**: An out-of-bounds read vulnerability in GDAL's vendored HDF-EOS library caused by a `size_t` underflow in `SWSDflsdrch`. ### Affected Scope - **Version**: …

Read more
CVSS 5.3
GDAL Out-of-bounds Read in SWDFldscrch via size_t Underflow
github.com · 2026-05-10

# Vulnerability Summary: Out-of-bounds Read in `SWSDFldscrch` ## Overview - **Vulnerability Type**: Out-of-bounds read - **Trigger Cause**: A `size_t` underflow during the `quote-stripping` process ca…

Read more
CVSS 5.3
GDAL HDF4-EOS Heap Buffer Overflow Fix and POC Analysis
github.com · 2026-05-10

# Vulnerability Summary ## Overview - **Vulnerability Name**: HDF4-EOS: fix 2 heap-buffer-overflow - **Vulnerability Type**: Heap Buffer Overflow - **Fix Status**: Fixed ## Impact Scope - **Affected F…

Read more
CVSS 5.3
GDAL vendored HDF-EOS out-of-bounds read via size_t underflow (CVE-2026-8213)
github.com · 2026-05-10

### Vulnerability Overview **CVE-2026-8213**: An out-of-bounds read vulnerability in the vendored HDF-EOS library of GDAL, caused by a `size_t` underflow. ### Impact Scope - **Affected Version**: GDAL…

Read more
CVSS 5.3
GDAL GDSDflschr Out-of-bounds Read Vulnerability Analysis
github.com · 2026-05-10

# GDAL GDSDflschr Out-of-Bounds Read Vulnerability Summary ## Vulnerability Overview - **Vulnerability ID**: #14399 - **Vulnerability Type**: Out-of-bounds read - **Root Cause**: `size_t` underflow le…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.