Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 666— Search: RCE×

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Clear
Examples: RCE · SSRF · GHSA · log4j
Filter
Premium intel
CVSS 8.8
Vvveb CMS CVE-2024-41934 Authenticated RCE via .htaccess Override
github.com · 2026-05-07

# Vulnerability Summary: Authenticated RCE via 'editor/code/save' `.htaccess` Override ## 1. Vulnerability Overview **Vulnerability Name**: Authenticated RCE via 'editor/code/save' `.htaccess` Overrid…

Read more
CVSS 6.3
Wavlink NUS16U1 Router Remote Command Execution (RCE) via Wireless Basic Interface
github.com · 2026-05-10

# Summary of Command Injection Vulnerability in Wavlink Router ## Vulnerability Overview A command injection vulnerability was discovered in the `wireless_basic` interface of the Wavlink network print…

Read more
Craft CMS Path Traversal Vulnerability Fix Analysis
github.com · 2026-04-22

### Vulnerability Overview This vulnerability involves an issue with resource path handling in Craft CMS, specifically manifested in the `AppController.php` and `Application.php` files, where insecure…

Read more
Fix Path Traversal in file_upload Module Leading to Arbitrary File Overwrite
github.com · 2026-04-03

### Vulnerability Summary **Vulnerability Overview** * **Vulnerability Type**: Path Traversal leading to information disclosure or file overwriting. * **Detailed Description**: In the `file_upload` mo…

Read more
SOCE GXP Security Bulletin: XXE, RCE, Path Traversal, CSRF & Unauth Access (CVE-2022-5890-5898)
www.geospatialexploitationproducts.com · 2025-10-24

### Critical Vulnerability Information #### 1. XXE in SOCE GXP File Processing - **CVE**: CVE-2022-5897 - **Description**: SOCE GXP is vulnerable to XXE when processing XML files. - **Mitigation**: Up…

Read more
AlienVault OSSIM av-centered SOAP Service RCE via Unsafe Command Execution (CVE-2014-5158)
www.zerodayinitiative.com · 2025-11-09

- **CVE ID**: CVE-2014-5158 - **CVSS Score**: 10.0 - **Affected Vendors**: AlienVault - **Affected Products**: OSSIM - **Vulnerability Details**: - This vulnerability allows remote attackers to execut…

Read more
Cisco UCCX RCE and Catalyst Center Privilege Escalation/CVEs Advisory
tools.cisco.com · 2025-11-14

### Critical Vulnerability Information #### Vulnerability List - **Cisco Unified Contact Center Express Remote Code Execution Vulnerabilities** - **Impact**: Critical - **CVE**: CVE-2025-20354, CVE-20…

Read more
Premium intel
CVSS 7.3
Windows libarchive RCE Vulnerability (CVE-2024-43495)
msrc.microsoft.com · 2024-09-12

### Windows libarchive Remote Code Execution Vulnerability **CVE-2024-43495** **Security Vulnerability** **Released:** Sep 10, 2024 **Assigning CNA:** Microsoft **Impact:** Remote Code Execution **Max…

Read more
Circontrol Raption Server Pre-Auth Stack Buffer Overflow and Authenticated RCE (CVE-2020-8006/8007)
seclists.org · 2024-11-11

From this webpage screenshot, the following key vulnerability information can be extracted: 1. **Vulnerability IDs**: - CVE-2020-8006 - CVE-2020-8007 2. **Vulnerability Description**: - **CVE-2020-800…

Read more
CVSS 4.7
WonderCMS 3.5.0 RCE via Malicious ZIP Upload in installUpdateModuleAction
github.com · 2025-04-09

### Key Information #### Vulnerability Overview - **Vulnerability Type**: Remote Code Execution (RCE) - **Affected Versions**: WonderCMS 3.5.0 and possibly earlier versions - **Impact Scope**: All Won…

Read more
CVSS 4.7
WonderCMS 3.5.0 RCE via Malicious ZIP Upload in installUpdateModuleAction
github.com · 2025-04-09

### Key Information #### Vulnerability Overview - **Vulnerability Type**: Remote Code Execution (RCE) - **Affected Version**: WonderCMS 3.5.0 - **Vulnerable Location**: `installUpdateModuleAction()` f…

Read more
Arcserve UDP Multiple Vulnerabilities Advisory: RCE, XSS, and HTTP Header Injection (CVE-2023-34520/34521/34522/34523)
support.arcserve.com · 2025-08-29

### Critical Vulnerability Information #### Vulnerability Overview - **Announcement Date**: August 29, 2023 - **Title**: Important Security Advisory: All Arcserve UDP Customers Must Read - **Product**…

Read more
WonderCMS v3.5.0 Authenticated RCE via Malicious Theme Installation (CVE-2025-57055)
github.com · 2025-09-18

### Key Information #### Vulnerability Overview - **CVE ID**: CVE-2025-57055 - **Vulnerability Type**: Authentication Bypass Remote Code Execution (RCE) - **Affected Software**: WonderCMS v3.5.0 #### …

Read more
CVE-2015-3253: Apache Groovy/Elasticsearch Deserialization RCE Vulnerability
www.zerodayinitiative.com · 2025-11-07

- **CVE ID**: CVE-2015-3253 - **CVSS Score**: 7.5, AV:N/AC:L/Au:N/C:P/I:P/A:P - **Affected Vendors**: - Apache - Elastic - **Affected Products**: - Groovy - Elasticsearch - **Vulnerability Details**: …

Read more
SoftArtisans SAFileUp 5.0.14 viewsrc.asp Script Source Disclosure via Path Traversal (CVE-2006-6865)
www.exploit-db.com · 2025-11-08

### Key Information - **Vulnerability Name**: SoftArtisans SAFileUp 5.0.14 - 'viewsrc.asp' Script Source Disclosure - **Edb-ID**: 3046 - **CVE**: 2006-6865 - **Author**: Inge Henriksen - **Vulnerabili…

Read more
Apache Archiva Vulnerability Summary: RCE, XSS, LDAP Injection (CVE-2023-28158, CVE-2013-2251)
archiva.apache.org · 2025-11-09

### Key Vulnerability Information Summary #### 1. **CVE-2023-28158: Privilege escalation via stored XSS** - **Description**: Malicious content uploaded via file upload service can exploit stored XSS t…

Read more
SoftArtisans FileUp viewsrc.asp Remote Script Source Disclosure (CVE-2006-6865)
securityreason.com · 2025-11-10

### Key Information - **Vulnerability Title**: SoftArtisans FileUp(TM) viewsrc.asp remote script source disclosure exploit - **Submission Date**: 2007.01.05 - **Discoverer**: Inge Henriksen - **Risk L…

Read more
Multiple Vulnerabilities in WRC/WAB Routers: CSRF, RCE, Weak Credentials, Buffer Overflow (CVE-2026-20704/22550/24449/24
jvn.jp · 2026-02-03

### Critical Vulnerability Information #### Vulnerability ID - JVN#94012927 #### Affected Products - WRC-X1500GS-B v1.12 and earlier versions - WRC-X1500GSA-B v1.12 and earlier versions - All versions…

Read more
Percora PMM 3.7.0 Critical RCE Vulnerability Fix Advisory
docs.percona.com · 2026-04-03

### Vulnerability Overview * **Affected Product**: Percora Monitoring and Management (PMM) * **Affected Version**: 3.7.0 * **Vulnerability Type**: Remote Code Execution (RCE) * **Risk Level**: Critica…

Read more
Premium intel
CVSS 9.1
ChurchCRM Authenticated RCE via Unrestricted PHP File Write in Database Restore (CVE-2026-40484)
github.com · 2026-04-18

# Vulnerability Summary: Remote Code Execution Vulnerability in ChurchCRM Database Restore Function ## Overview - **Vulnerability Name**: Authenticated Remote Code Execution via Unrestricted PHP File …

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.