Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1325 CNY

100%
Buy Us a Coffee

Security Intel Hub 29079+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
CVSS 8.2
Listing Hub CMS 1.0 'pages.php id' SQL Injection Vulnerability with POC
www.exploit-db.com · 2026-06-13

### Vulnerability Overview - **Vulnerability Name**: Listing Hub CMS 1.0 - 'pages.php id' SQL Injection - **EDB-ID**: 46419 - **Author**: Deyaa Muhammad - **Type**: WEBAPPS - **Platform**: PHP - **Dat…

Read more
CVSS 6.1
Zuz Music 2.1 'zuzconsole/___contact' Persistent XSS PoC and Analysis
www.exploit-db.com · 2026-06-13

### Vulnerability Overview Zuz Music 2.1 contains a persistent Cross-Site Scripting (XSS) vulnerability. This vulnerability allows attackers to execute malicious JavaScript code in the user's browser.…

Read more
CVSS 8.4
NetShareWatcher 1.5.8.0 Local SEH Buffer Overflow Vulnerability POC
www.exploit-db.com · 2026-06-13

### Vulnerability Overview - **Vulnerability Name**: NetShareWatcher 1.5.8.0 - Local SEH Buffer Overflow - **EDB-ID**: 46578 - **Author**: Peyman Forouzandeh - **Type**: Local - **Platform**: Windows …

Read more
CVSS 4.0
WordPress Contact Form Maker 1.13.1 CSRF Leading to Local File Inclusion
www.exploit-db.com · 2026-06-13

### Vulnerability Overview A Cross-Site Request Forgery (CSRF) vulnerability exists in the Contact Form Maker 1.13.1 WordPress plugin, which attackers can exploit to perform Local File Inclusion (LFI)…

Read more
CVSS 8.4
AllPlayer V7.4 Local SEH Buffer Overflow (Unicode) Vulnerability & PoC
www.exploit-db.com · 2026-06-13

### Vulnerability Overview - **Vulnerability Name**: AllPlayer 7.4 - SEH Buffer Overflow (Unicode) - **EDB-ID**: 46668 - **Author**: Chris Au - **Type**: Local - **Platform**: Windows - **Date**: 2019…

Read more
CVSS 8.4
LaBF nfsAxe 3.7 Ping Client 'Host IP' Buffer Overflow (Local RCE) PoC
www.exploit-db.com · 2026-06-13

# LaBF nfsAxe 3.7 Ping Client - 'Host IP' Buffer Overflow (Direct Ret) ## Vulnerability Overview - **EDB-ID**: 46737 - **CVE**: N/A - **Author**: Dino Covotsos - **Type**: LOCAL - **Platform**: WINDOW…

Read more
CVSS 6.1
WordPress Plugin Live Chat Unlimited v2.8.3 Stored XSS Vulnerability and PoC
www.exploit-db.com · 2026-06-13

### Vulnerability Overview - **Vulnerability Name**: WordPress Plugin Live Chat Unlimited 2.8.3 - Cross-Site Scripting - **EDB-ID**: 47037 - **Author**: M02E - **Type**: WEBAPPS - **Platform**: PHP - …

Read more
Premium intel
CVSS 9.8
WordPress Hybrid Composer <= 1.4.6 Unauthenticated Configuration Access (Admin Takeover)
www.exploit-db.com · 2026-06-13

### Vulnerability Overview The WordPress plugin Hybrid Composer 1.4.6 contains an improper access control vulnerability allowing unauthorized access. Attackers can change plugin settings by sending sp…

Read more
CVSS 5.4
GigToDo 1.3 Persistent and Reflected XSS Vulnerability Report
www.exploit-db.com · 2026-06-13

# GigToDo 1.3 - Cross-Site Scripting ## Vulnerability Overview - **EDB-ID**: 47185 - **CVE**: N/A - **Author**: M0ZE - **Type**: WEBAPPS - **Platform**: PHP - **Date**: 2019-07-29 - **Vulnerable App**…

Read more
Premium intel
CVSS 9.8
MobaXterm 12.1 SEH Buffer Overflow POC for Local Code Execution
www.exploit-db.com · 2026-06-13

### Vulnerability Overview - **Vulnerability Name**: Mobatek MobaXterm 12.1 - Buffer Overflow (SEH) - **EDB-ID**: 47429 - **CVE**: N/A - **Author**: Xavi Beltran - **Type**: LOCAL - **Platform**: WIND…

Read more
CVSS 6.5
Joomla com_jsjobs Arbitrary File Deletion Vulnerability and POC
www.exploit-db.com · 2026-06-13

### Vulnerability Overview A path traversal/任意 file deletion vulnerability exists in the Joomla! component `com_jsjobs` version 1.2.6. This vulnerability occurs when processing custom user fields, all…

Read more
CVSS 5.4
WordPress Theme Zoner Real Estate 4.1.1 Persistent XSS and IDOR Exploit Details
www.exploit-db.com · 2026-06-13

### Vulnerability Overview **Vulnerability Name**: WordPress Theme Zoner Real Estate - 4.1.1 Persistent Cross-Site Scripting (XSS) **EDB-ID**: 47438 **CVE**: N/A **Author**: M0ze **Type**: Webapps **P…

Read more
CVSS 5.4
WordPress Plugin Soliloquy Lite 2.5.6 Persistent XSS Vulnerability
www.exploit-db.com · 2026-06-13

### Vulnerability Overview - **Vulnerability Name**: WordPress Plugin Soliloquy Lite 2.5.6 - Persistent Cross-Site Scripting - **EDB-ID**: 47517 - **Author**: UNK9VWN - **Type**: WEBAPPS - **Platform*…

Read more
CVSS 8.2
WordPress Plugin Google Review Slider 6.1 'tid' Time-based Blind SQL Injection
www.exploit-db.com · 2026-06-13

# WordPress Plugin Google Review Slider 6.1 - 'tid' SQL Injection ## Vulnerability Overview - **Vulnerability Title**: WordPress Plugin Google Review Slider 6.1 - 'tid' SQL Injection - **EDB-ID**: 475…

Read more
CVSS 5.4
WordPress Popup Builder 3.49 Persistent XSS Vulnerability and POC
www.exploit-db.com · 2026-06-13

### Vulnerability Overview - **Vulnerability Name**: WordPress Plugin Popup Builder 3.49 - Persistent Cross-Site Scripting - **EDB-ID**: 47618 - **Author**: UNK9vN - **Type**: WEBAPPS - **Platform**: …

Read more
CVSS 6.4
WordPress Plugin Stripe Payments 2.0.39 Stored XSS Vulnerability (EDB-49354)
www.exploit-db.com · 2026-06-13

### Vulnerability Overview - **Vulnerability Name**: WordPress Plugin Stripe Payments 2.0.39 - 'AcceptStripePayments-settings[currency_code]' Stored XSS - **EDB-ID**: 49354 - **Author**: Park Won Seok…

Read more
CVSS 6.4
WordPress Plugin WP24 Domain Check 1.6.2 Stored XSS Vulnerability
www.exploit-db.com · 2026-06-13

### Vulnerability Overview WordPress plugin WP24 Domain Check 1.6.2 contains a stored cross-site scripting (XSS) vulnerability named `fieldnameDomain`. This vulnerability allows attackers to inject ma…

Read more
CVSS 6.4
WordPress Plugin WP-Paginate 2.1.3 Stored XSS Vulnerability and POC
www.exploit-db.com · 2026-06-13

# WordPress Plugin WP-Paginate 2.1.3 - 'preset' Stored XSS ## Vulnerability Overview - **EDB-ID**: 49355 - **Published Date**: 2021-01-05 - **Author**: Park Won Seok - **Type**: Webapps - **Platform**…

Read more
CVSS 6.2
WordPress Plugin admin-word-count-column 2.2 Local File Read Vulnerability (EDB-ID: 50645)
www.exploit-db.com · 2026-06-13

### Vulnerability Overview - **Vulnerability Name**: WordPress Plugin admin-word-count-column 2.2 - Local File Read - **EDB-ID**: 50645 - **Author**: Hassan Khan Yusufzai - **Type**: WEBAPPS - **Platf…

Read more
Premium intel
CVSS 7.5
WordPress Augmented-Reality Plugin Unauthenticated RCE Vulnerability and POC
www.exploit-db.com · 2026-06-13

### Vulnerability Overview - **Vulnerability Name**: WordPress Augmented-Reality - Unauthenticated Remote Code Execution - **EDB-ID**: 51788 - **Author**: Milad Karimi - **Type**: WEBAPPS - **Platform…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.