Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 29+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
Clear filters
Critical
SQL Injection Vulnerability in codeastro Online Catering Ordering System V1.0
github.com · 2026-05-10
Online Catering Ordering System V1.0
Read more
Critical
SQL Injection in codeastro Leave Management System V1.0
CVE-2024-64 · github.com · 2026-05-08
Leave Management System V1.0
Read more
High
codeastro Online Classroom V1.0 SQL Injection Vulnerability and POC
github.com · 2026-05-08
codeastro Online Classroom V1.0
Read more
High
SQL Injection in codeastro Online Classroom V1.0 (guestdetails)
github.com · 2026-04-28
codeastro Online Classroom V1.0
Read more
High
codeastro Online Classroom V1.0 SQL Injection Vulnerability (CVE-2024-XXXX)
CVE-2024-XXXX · github.com · 2026-04-28
Online Classroom V1.0
Read more
High
CodeAstro Online Job Portal Unauthorized Resume Access (Improper Access Control)
CVE-2026-7071 · github.com · 2026-04-27
CodeAstro Online Job Portal 1.0
Read more
High
CodeAstro Online Job Portal IDOR Vulnerability Analysis (CVE-2026-6201)
CVE-2026-6201-IDOR · github.com · 2026-04-18
CodeAstro Online Job Portal Project (PHP MySQL 版本)
Read more
Critical
Online Classroom V1.0 SQL Injection in videotitle Parameter
github.com · 2026-04-06
Online Classroom V1.0
Read more
High
Online Classroom V1.0 SQL Injection Vulnerability with POC and Fix
github.com · 2026-04-06
Online Classroom V1.0
Read more
Critical
codeastro Online Classroom V1.0 SQL Injection Vulnerability Analysis
github.com · 2026-04-06
Online Classroom V1.0
Read more
High
Simple Inventory System V1.0 SQL Injection Vulnerability
github.com · 2025-11-17
Simple Inventory System V1.0
Read more
High
SQL Injection in Gym Management System (codeastro) with PoC
github.com · 2025-11-15
Gym Management System V1.0
Read more
CVSS 6.3
Gym Management System V1.0 SQL Injection in delete-member.php
github.com · 2025-10-11

### Critical Vulnerability Information #### Affected Product - **Product Name**: Gym Management System - **Vendor Homepage**: https://codeastro.com/gym-management-system-in-php-mysql-with-source-code/…

Read more
CVSS 3.5
Reflected XSS in CodeAstro Real Estate Management System v1.0 /feature.php
github.com · 2025-09-05

### Key Information #### Vulnerability Overview - **Vulnerability Type**: Reflected Cross-Site Scripting (XSS) - **Affected System**: CodeAstro Real Estate Management System v1.0 - **Vulnerable File**…

Read more
CVSS 3.5
Stored XSS in doctor.html via addrss parameter with PoC and mitigation
github.com · 2025-07-12

### Critical Vulnerability Information #### Vulnerability Overview - **Type**: Stored Cross-Site Scripting (XSS) - **Affected File**: doctor.html - **Attack Vector**: Injection of malicious JavaScript…

Read more
CVSS 3.5
Stored XSS in CodeAstro Simple Hospital Management System v1.0 (patient.html)
github.com · 2025-07-12

### Key Information #### Vulnerability Overview - **Vulnerability Type**: Stored Cross-Site Scripting (XSS) - **Affected System**: CodeAstro Simple Hospital Management System in Python - **Affected Fi…

Read more
CVSS 7.3
Time-based Blind SQLi in PRMS Login Portal (Patient Record Management System)
github.com · 2025-07-12

### Key Information Summary #### Vulnerability Overview - **Vulnerability Type**: Time-based Blind SQL Injection - **Affected System**: Patient Record Management System (PRMS) Login Portal - **Discove…

Read more
CVSS 4.3
CSRF Vulnerability in Flask Login Endpoint with PoC
github.com · 2025-07-12

### Key Information #### Vulnerability Type - CSRF (Cross-Site Request Forgery) #### Affected Endpoint - URL: `http://127.0.0.1:5000/login` - HTTP Method: POST #### Vulnerable Parameters - `username` …

Read more
CVSS 4.3
PRMS-php Patient Record Management CSRF Vulnerability Analysis
github.com · 2025-07-06

### Key Information Summary #### Vulnerability Type - CSRF (Cross-Site Request Forgery) #### Affected Endpoint - URL: `https://localhost/PRMS-php/admin/viewRecord.php` - HTTP Method: POST - Vulnerable…

Read more
CVSS 4.3
PRMS-php CSRF Vulnerability in viewRecord.php with PoC
github.com · 2025-07-06

### Key Information Summary #### Vulnerability Type - CSRF (Cross-Site Request Forgery) #### Affected Endpoint - URL: `https://localhost/PRMS-php/admin/viewRecord.php` - HTTP Method: POST - Vulnerable…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.