Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1325 CNY

100%
Buy Us a Coffee

Security Intel Hub 29434+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
Premium intel
CVSS 8.4
Meltdown and Spectre Hardware Vulnerabilities Overview and Mitigation
static.draeger.com · 2026-06-13

### Vulnerability Overview - **Vulnerability Name**: Meltdown and Spectre - **Release Date**: January 4, 2018 - **Description**: Meltdown and Spectre are severe hardware vulnerabilities that affect th…

Read more
CVSS 7.6
Apache HTTP Server CVE-2024-23897: mod_proxy Location header mishandling advisory
static.draeger.com · 2026-06-13

### Vulnerability Overview This vulnerability concerns `CVE-2024-23897`, which affects Apache HTTP Server version 2.4.59. The vulnerability description states that when the `mod_proxy` module is used,…

Read more
Premium intel
CVSS 8.2
FFmpeg libavcodec H264 Integer Overflow in ff_h264_decode_slice_header with PoC
static.draeger.com · 2026-06-13

### Vulnerability Overview This vulnerability involves an integer overflow occurring in the `ff_h264_decode_slice_header` function due to improper validation of the `slice_type` value when processing …

Read more
CVSS 4.0
Spring Framework Unvalidated Redirect Vulnerability Advisory and Fix
static.draeger.com · 2026-06-13

### Vulnerability Overview This vulnerability involves an unvalidated URL redirection issue, which may result in users being redirected to malicious websites. ### Affected Versions - **Affected Compon…

Read more
Premium intel
CVSS 8.0
VMware Multiple Stored XSS Vulnerabilities Security Advisory CVE-2026-41722/23/24
support.broadcom.com · 2026-06-13

### Vulnerability Overview VMware Cloud Foundation Operations updates address multiple vulnerabilities (CVE-2026-41722, CVE-2026-41723, and CVE-2026-41724). These vulnerabilities include multiple stor…

Read more
Premium intel
KEV
Check Point VPN Authentication Bypass Vulnerability CVE-2026-50751 Advisory
support.checkpoint.com · 2026-06-13

# CVE-2026-50751 - Bypass of User Authentication for Remote Access and Mobile Access in Deprecated IKEv1 Key Exchange ## Vulnerability Overview - **Vulnerability ID**: CVE-2026-50751 - **Severity**: H…

Read more
LPE Vulnerability in Symantec CleanWipe Removal Tool for macOS (CVE-2026-11626)
support.broadcom.com · 2026-06-13

### Vulnerability Overview - **Vulnerability Name**: CleanWipe Removal Tool for ESA SEP 16 (macOS) - **CVE Number**: CVE-2026-11626 - **Severity**: Medium - **CVSS Score**: Not provided - **Publicatio…

Read more
CVSS 7.5
Unauthenticated API Endpoint Leaks Database Credentials and AWS Keys
static.draeger.com · 2026-06-13

### Vulnerability Overview This vulnerability involves an unauthorized API endpoint that allows attackers to retrieve sensitive information by sending specific HTTP requests. Specifically, attackers c…

Read more
Premium intel
CVSS 7.4
Check Point CVE-2026-50752: VPN Site-to-Site Certificate Bypass via IKEv1
support.checkpoint.com · 2026-06-13

### Vulnerability Overview - **Vulnerability Name**: CVE-2026-50752 - **Vulnerability Type**: VPN site-to-site certificate bypass vulnerability - **Affected Versions**: Check Point Security Gateways a…

Read more
Premium intel
CVSS 7.8
Check Point Identity Agent Local Privilege Escalation Vulnerability (CVE-2026-10847)
support.checkpoint.com · 2026-06-13

### Vulnerability Overview - **Vulnerability Name**: CVE-2026-10847 - Identity Agent Local Privilege Escalation Vulnerability - **Vulnerability Description**: Local authenticated users running Check P…

Read more
CVSS 8.1
HCL Hive Telco Observability CSP Bypass Vulnerability (CVE-2025-59874) Advisory
support.hcl-software.com · 2026-06-13

# Vulnerability Overview - **Vulnerability Name**: HCL Hive Telco Observability is affected by CSP vulnerability (CVE-2025-59874) - **Vulnerability ID**: CVE-2025-59874 - **CVSS Base Score**: 8.1 - **…

Read more
CVSS 6.1
HCL Digital Experience OS Command Injection, Host Header Injection, XSS and Multer DoS Vulnerabilities (CVE-2026-21827/2
support.hcl-software.com · 2026-06-13

### Vulnerability Overview HCL Digital Experience and Digital Experience Compose are potentially affected by multiple vulnerabilities. These include: 1. **CVE-2026-21827** - **Description**: HCL Digit…

Read more
Premium intel
CVSS 7.8
Lenovo LanSchool Classic CVE-2026-86 Privilege Escalation Advisory
support.lenovo.com · 2026-06-13

### Vulnerability Overview - **Vulnerability Name**: Lenovo Security Advisory: LPS2026-86 - **CVE ID**: CVE-2026-86 - **Severity**: High - **Potential Impact**: Privilege Escalation - **Summary Descri…

Read more
CVE-2026-6338 Kong Gateway HTTP Request Smuggling Advisory
support.konghq.com · 2026-06-13

### Vulnerability Overview - **CVE ID**: CVE-2026-6338 - **Vulnerability Name**: kong-enterprise-gateway: HTTP Request Smuggling - **Vulnerability Description**: This vulnerability affects Kong Gatewa…

Read more
Premium intel
CVSS 6.7
Lenovo ThinkPad/ThinkSystem BIOS Firmware Security Bulletin (CVE-2025-10237/10238)
support.lenovo.com · 2026-06-13

### Vulnerability Overview - **CVE Identifier**: CVE-2025-10237, CVE-2025-10238 - **Severity**: High - **Scope**: Industry-wide - **Abstract Description**: Arbitrary read or write operations are permi…

Read more
Premium intel
CVSS 8.8
Blocksy WordPress Theme meta-boxes.php Unvalidated Input Analysis
themes.trac.wordpress.org · 2026-06-13

### Vulnerability Overview The screenshot displays the source code for the `meta-boxes.php` file of the `blocksy` WordPress theme. A potential security vulnerability exists within the file, specifical…

Read more
Premium intel
CVSS 8.8
Blocksy WordPress Theme Product Variation Meta Data Vulnerability
themes.trac.wordpress.org · 2026-06-13

### Vulnerability Overview The webpage screenshot displays the code for a WordPress theme file named `meta-boxes.php` belonging to the `blocksy` theme. The code involves processing WooCommerce product…

Read more
Premium intel
CVSS 8.8
WordPress Blocksy Theme validator.php Security Check Bypass Logic Flaw Analysis
themes.trac.wordpress.org · 2026-06-13

### Vulnerability Overview This webpage screenshot displays the `validator.php` code file within the WordPress theme named `blocksy`. The file contains a function named `blocksy_is_value_suspicious`, …

Read more
Premium intel
CVSS 8.8
Blocksy Theme SearchReplacer Class Potential Security Risk and Mitigation Guide
themes.trac.wordpress.org · 2026-06-13

### Vulnerability Overview The web page screenshot displays a file named `db-search-replacer.php`, which is part of the `blocksy` theme. The file contains a class named `SearchReplacer`, designed to s…

Read more
Premium intel
CVSS 8.8
WordPress blocksy Theme XSS Vulnerability Analysis and Fix Guide
themes.trac.wordpress.org · 2026-06-13

### Vulnerability Overview This vulnerability affects the `admin/helpers/validator.php` file within the `blocksy` WordPress theme. The specific issue lies in the `blocksy_is_value_suspicious` function…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.