Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1325 CNY

100%
Buy Us a Coffee

Security Intel Hub 29259+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
Ericsson Packet Core Gateway Security Advisory: 3 High CVSS Vulnerabilities (CVE-2026-25657/8/9)
www.ericsson.com · 2026-06-13

### Vulnerability Overview Ericsson has released a security update for the Packet Core Gateway (PCG) to address security issues that could lead to service degradation. The specific vulnerabilities are…

Read more
CVSS 3.1
Django Security Bulletin: Cookie Salt Collision, SMTP STARTTLS Failopen, and Cache Data Leakage via Vary/Header Issues (
www.djangoproject.com · 2026-06-13

### Vulnerability Overview Django has released multiple security updates addressing the following vulnerabilities: 1. **CVE-2026-6873: Signature Cookie Salt Namespace Collision** - **Description**: Th…

Read more
CVSS 6.1
Apache Tomcat JSP ClassNotFoundException Info Disclosure Vulnerability
www.ellucian.com · 2026-06-13

### Vulnerability Overview This vulnerability concerns the handling of JSP (JavaServer Pages) files in Apache Tomcat. When a JSP file contains the `` directive and the imported class does not exist, T…

Read more
CVSS 8.2
WordPress Plugin Product Catalog 8.1.2.0 SQL Injection Exploit
www.exploit-db.com · 2026-06-13

### Vulnerability Overview - **Vulnerability Name**: WordPress Plugin Product Catalog 8.1.2.0 - SQL Injection - **EDB-ID**: 40783 - **Author**: LENON LEITE - **Type**: WEBAPPS - **Platform**: PHP - **…

Read more
CVSS 6.2
WordPress Plugin WP Vault 0.8.6.6 Local File Inclusion (EDB-40850)
www.exploit-db.com · 2026-06-13

### Vulnerability Overview - **Vulnerability Name**: WordPress Plugin WP Vault 0.8.6.6 - Local File Inclusion - **Vulnerability Type**: Local File Inclusion (LFI) - **Vulnerability ID**: EDB-ID: 40850…

Read more
CVSS 7.1
WordPress Plugin Single Personal Message 1.0.3 SQL Injection Vulnerability
www.exploit-db.com · 2026-06-13

### Vulnerability Overview - **Vulnerability Name**: WordPress Plugin Single Personal Message 1.0.3 - SQL Injection - **EDB-ID**: 40870 - **Author**: LENON LEITE - **Type**: WEBAPPS - **Platform**: PH…

Read more
CVSS 8.2
WordPress Simply Poll 1.4.1 SQL Injection in pollid Parameter (POC)
www.exploit-db.com · 2026-06-13

# WordPress Plugin Simply Poll 1.4.1 - SQL Injection ## Vulnerability Overview - **EDB-ID**: 40971 - **Author**: TAD GROUP - **Type**: WEBAPPS - **Platform**: PHP - **Date**: 2016-12-28 - **Descriptio…

Read more
CVSS 7.5
WordPress Plugin Apptha Slider Gallery v1.0 Arbitrary File Download Vulnerability
www.exploit-db.com · 2026-06-13

### Vulnerability Overview - **Vulnerability Title**: WordPress Plugin Apptha Slider Gallery v1.0 - Arbitrary File Download - **EDB-ID**: 41588 - **Author**: Ihsan Sencan - **Type**: WEBAPPS - **Platf…

Read more
CVSS 9.8
WordPress Plugin Insert PHP 3.3.1 PHP Code Injection via REST API POC
www.exploit-db.com · 2026-06-13

### Vulnerability Overview - **Vulnerability Name**: WordPress Plugin Insert PHP 3.3.1 - PHP Code Injection - **EDB-ID**: 41308 - **Author**: CRASHBANDICOT - **Type**: WEBAPPS - **Platform**: PHP - **…

Read more
CVSS 8.2
WordPress Plugin Apptha Slider Gallery v1.0 SQL Injection Vulnerability POC
www.exploit-db.com · 2026-06-13

### Vulnerability Overview - **Vulnerability Name**: WordPress Plugin Apptha Slider Gallery 1.0 - SQL Injection - **EDB-ID**: 41567 - **Author**: Ihsan Sencan - **Type**: WEBAPPS - **Platform**: PHP -…

Read more
CVSS 7.5
WordPress Plugin Mac Photo Gallery v3.0 Arbitrary File Download Vulnerability (EDB-41566)
www.exploit-db.com · 2026-06-13

### Vulnerability Overview - **Vulnerability Title**: WordPress Plugin Mac Photo Gallery 3.0 - Arbitrary File Download - **EDB-ID**: 41566 - **Author**: Ihsan Sencan - **Type**: WEBAPPS - **Platform**…

Read more
CVSS 8.2
WordPress Plugin PICA Photo Gallery v1.0 SQL Injection
www.exploit-db.com · 2026-06-13

# WordPress Plugin PICA Photo Gallery 1.0 - SQL Injection ## Vulnerability Overview - **Vulnerability Type**: SQL Injection - **EDB-ID**: 41589 - **Author**: Ihsan Sencan - **Platform**: PHP - **Date*…

Read more
CVSS 8.2
WordPress Plugin Wow Forms v2.1 SQL Injection Vulnerability
www.exploit-db.com · 2026-06-13

### Vulnerability Overview - **Vulnerability Name**: WordPress Plugin Wow Forms 2.1 - SQL Injection - **EDB-ID**: 41922 - **Author**: TAD GROUP - **Type**: WEBAPPS - **Platform**: PHP - **Date**: 2017…

Read more
CVSS 8.2
WordPress Plugin KittyCatfish 2.2 SQL Injection Vulnerability Advisory with POC
www.exploit-db.com · 2026-06-13

### Vulnerability Overview - **Vulnerability Name**: WordPress Plugin KittyCatfish 2.2 - SQL Injection - **Vulnerability Type**: SQL Injection - **Vulnerability Description**: An unescaped parameter w…

Read more
CVSS 8.2
Wow Viral Signups v2.1 WordPress Plugin SQL Injection (EDB-ID: 41921)
www.exploit-db.com · 2026-06-13

### Vulnerability Overview - **Vulnerability Title**: Wow Viral Signups v2.1 WordPress Plugin SQL Injection - **EDB-ID**: 41921 - **Author**: TAD GROUP - **Type**: WEBAPPS - **Platform**: PHP - **Date…

Read more
CVSS 8.2
WordPress Car Park Booking Plugin SQL Injection (EDB-ID: 43012)
www.exploit-db.com · 2026-06-13

### Vulnerability Overview - **Vulnerability Name**: WordPress Plugin Car Park Booking - SQL Injection - **EDB-ID**: 43012 - **Author**: 8BitSec - **Type**: WEBAPPS - **Platform**: PHP - **Date**: 201…

Read more
CVSS 8.2
Pre-Auth SQL Injection in Care2x 2.7 HIS via ck_config Cookie
www.exploit-db.com · 2026-06-13

### Vulnerability Overview The Care2x 2.7 (HIS) Hospital Information System contains multiple SQL injection vulnerabilities. Attackers can execute arbitrary SQL commands by sending unauthenticated req…

Read more
CVSS 8.2
Authenticated SQL Injection in All in One Video Downloader 1.2 (EDB-46077)
www.exploit-db.com · 2026-06-13

### Vulnerability Overview - **Vulnerability Name**: All in One Video Downloader 1.2 - (Authenticated) SQL Injection - **EDB-ID**: 46077 - **Author**: Deyaa Muhammad - **Type**: WEBAPPS - **Platform**…

Read more
CVSS 9.8
WordPress Plugin Ad Manager WD v1.0.11 Arbitrary File Download via Path Traversal
www.exploit-db.com · 2026-06-13

### Vulnerability Overview - **Vulnerability Title**: WordPress Plugin Ad Manager WD 1.0.11 - Arbitrary File Download - **Vulnerability Type**: Arbitrary File Download - **Vulnerability ID**: EDB-ID: …

Read more
Premium intel
CVSS 9.8
PDF Signer v3.0 Server-Side Template Injection to RCE via CSRF Cookie Exploit
www.exploit-db.com · 2026-06-13

### Vulnerability Overview PDF Signer 3.0 contains a Server-Side Template Injection (SSTI) vulnerability, leading to Remote Command Execution (RCE) via Cross-Site Request Forgery (CSRF) cookies. ### I…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.