Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1020 CNY

100%
Buy Us a Coffee

Security Intel Hub 39+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
Clear filters
Premium intel
High
GHSA-cwp8-rm8g-q5c9: Fix Public API Login Bypassing 2FA and Account Lockout via Incomplete Auth Logic
GHSA-cwp8-rm8g-q5c9 · github.com · 2026-05-22
ChurchCRM/CRM
Read more
Premium intel
Critical
ChurchCRM 2FA Bypass Vulnerability (CVE-2026-40582) Analysis and PoC
CVE-2026-40582 · github.com · 2026-05-22
ChurchCRM 7.2.0 · ChurchCRM 7.2.1 …
Read more
Premium intel
High
ChurchCRM CSRF Privilege Escalation in UserEditor.php (GHSA-3xp8-c86x-cwpp)
GHSA-3xp8-c86x-cwpp · github.com · 2026-05-22
ChurchCRM < 7.3.2
Read more
Premium intel
Critical
ChurchCRM Unauthenticated RCE Vulnerability Analysis (CVE-2026-39337)
CVE-2026-39337 · github.com · 2026-05-22
ChurchCRM <= 7.1.2
Read more
Premium intel
High
ChurchCRM <= 7.2.2 CSRF via GET-delete pages Analysis
github.com · 2026-05-22
ChurchCRM <= 7.2.2
Read more
High
ChurchCRM CSRF Vulnerability Fix and POC Analysis
GHSA-8613 · github.com · 2026-04-18
ChurchCRM CRM
Read more
High
ChurchCRM IDOR Vulnerability Fix: API Permission Bypass
github.com · 2026-04-18
ChurchCRM
Read more
High
ChurchCRM SQLi Fix in FinancialService & API Login Hardening
github.com · 2026-04-18
ChurchCRM (version prior to commit 214694e)
Read more
High
ChurchCRM SQL Injection Fix in FinancialService.php
github.com · 2026-04-18
ChurchCRM/CRM
Read more
High
ChurchCRM IDOR and Privilege Escalation Vulnerability Fix Analysis
github.com · 2026-04-18
ChurchCRM
Read more
Premium intel
Critical
ChurchCRM Backup Restore Path Traversal RCE Fix
github.com · 2026-04-18
ChurchCRM CRM
Read more
Premium intel
High
ChurchCRM Backup Restore RCE Fix: Validate Extracted Images
github.com · 2026-04-18
ChurchCRM/CRM < 7.2.0
Read more
Medium
Stored XSS in ChurchCRM PledgeEditor.php via Donation Comment Field (CVE-2025-40483)
CVE-2025-40483 · github.com · 2026-04-18
ChurchCRM
Read more
Medium
Stored XSS in ChurchCRM UserEditor.php via Login Name Field
github.com · 2026-04-18
ChurchCRM <= 7.1.2
Read more
High
ChurchCRM PledgeEditor SQL Injection Vulnerability Fix Analysis
github.com · 2026-04-18
ChurchCRM CRM <= b3da72a
Read more
Critical
ChurchCRM CVE-2025-40582 Authentication Bypass via /api/public/user/login
CVE-2025-40582 · github.com · 2026-04-18
ChurchCRM <= 7.1.2
Read more
Premium intel
Critical
ChurchCRM Authenticated RCE via Unrestricted PHP File Write in Database Restore (CVE-2026-40484)
CVE-2026-40484 · github.com · 2026-04-18
ChurchCRM/CRM <= 7.1.2
Read more
High
ChurchCRM IDOR Vulnerability in /api/person Endpoint
github.com · 2026-04-18
ChurchCRM <= 7.1.2
Read more
High
ChurchCRM IDOR Vulnerability Fix Analysis
github.com · 2026-04-18
ChurchCRM
Read more
Medium
ChurchCRM Username Enumeration Vulnerability (CVE-2024-40485) with POC
CVE-2024-40485 · github.com · 2026-04-18
ChurchCRM/CRM <= 7.1.2
Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.