Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 666— Search: RCE×

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Clear
Examples: RCE · SSRF · GHSA · log4j
Filter
CVSS 7.3
CVE-2026-3046: SQL Injection in itsourcecode E-Logbook Health Monitoring System
vuldb.com · 2026-02-24

Thinking Process: 1. **Analyze the Request:** * **Task:** Translate a Chinese vulnerability intelligence summary to English. * **Role:** Professional translator specializing in cybersecurity. * **Inpu…

Read more
CVSS 7.3
itsourcecode Event Management System V1.0 SQL Injection in /admin/index.php
vuldb.com · 2026-02-24

Thinking Process: 1. **Analyze the Request:** * **Task:** Translate a Chinese vulnerability intelligence summary to English. * **Role:** Professional translator specializing in cybersecurity. * **Inpu…

Read more
CVSS 7.3
SourceCodester SRMS 1.0 Unauthenticated File Upload to Account Takeover
vuldb.com · 2026-02-23

- **Title**: SourceCodester Student Result Management System 1.0 1.0 Improper Access Controls - **Description**: A critical vulnerability was found in SourceCodester Student Result Management System 1…

Read more
Premium intel
CVSS 6.3
FastapiAdmin <=2.2.0 Unrestricted File Upload Leading to RCE
github.com · 2026-02-23

## Vulnerability Key Information ### Vulnerability Title - Unrestricted File Upload Vulnerability Leading to RCE in FastapiAdmin ### Affected Software and Versions - FastapiAdmin JSONResponse: result_…

Read more
CVSS 6.3
fastapi-admin <=2.2.0 Unrestricted File Upload Leading to RCE
vuldb.com · 2026-02-23

### Critical Vulnerability Information #### Title - Vulnerability Name: fastapiadmin <= 2.2.0 Unrestricted Upload #### Description - **Issues**: - Arbitrary file upload vulnerability - Located at path…

Read more
CVSS 6.3
FastapiAdmin <=2.2.0 Unrestricted File Upload Leading to RCE
vuldb.com · 2026-02-23

- **Title**: fastapiadmin <= 2.2.0 Unrestricted Upload - **Description**: - An unrestricted file upload vulnerability in FastapiAdmin versions up to 2.2.0. - Authenticated users with the `system:uploa…

Read more
CVSS 4.6
datapizza-ai Redis Cache Unsafe Deserialization RCE via pickle.loads()
github.com · 2026-02-23

### Summary - **Vulnerability:** Unsafe Deserialization via pickle.loads() in datapizza-ai Redis cache. - **Impact:** Allows Remote Command Execution on the server host. - **CVSSv3:** HIGH 7.9/10 - **…

Read more
CVSS 7.3
VaelSys V4 4.1.0 Command Injection RCE via tree_server.php
vuldb.com · 2026-02-22

### Key Information **Title:** VaelSys V4 4.1.0 Command Injection / Remote Code Execution **Description:** - A critical vulnerability in VaelSys V4 Platform v4.1.0 enables Remote Code Execution (RCE) …

Read more
CVSS 7.3
Vaelsys V4 Platform Remote Command Execution (RCE) Analysis
github.com · 2026-02-22

From the screenshot, the following key vulnerability information can be extracted: - **Affected Product Name**: Vaelsys V4 Platform - **Vulnerability Type**: Remote Command Execution (RCE) - **Affecte…

Read more
CVSS 2.4
ITSOURCECODE Student Management System 1.0 Stored XSS via SVG Upload
vuldb.com · 2026-02-22

Title: ITSOURCECODE Student Management System 1.0 Improper Neutralization of Alternate XSS Syntax Description: - The ITSOURCECODE Student Management System version 1.0 is affected by a Stored Cross-Si…

Read more
CVSS 7.3
SourceCodester SRMS 1.0 Unauthenticated SMTP Hijacking Leading to Admin Account Takeover
vuldb.com · 2026-02-22

### Critical Vulnerability Information - **Title**: SourceCodester Student Result Management System 1.0 Improper Access Controls - **Description**: A critical vulnerability in SourceCodester Student R…

Read more
CVSS 2.5
libvips Heap Buffer Overflow in vips_source_read_to_memory via Integer Truncation
github.com · 2026-02-22

## Vulnerability Key Information ### Vulnerability Summary - **Type**: Heap Buffer Overflow - **Function**: `vips_source_read_to_memory()` - **Cause**: Integer truncation leading to incorrect read len…

Read more
CVSS 2.5
Vips Heap-buffer-overflow via Integer Truncation in vips_source_read_to_memory
github.com · 2026-02-22

### Key Information Summary - **Vulnerability Type**: - Heap-buffer-overflow - **Affected Function**: - `vips_source_read_to_memory()` - **Root Cause**: - Integer truncation leading to heap buffer ove…

Read more
CVSS 8.8
Tenda A21 Firmware Stack Buffer Overflow Vulnerability Analysis (RCE)
github.com · 2026-02-22

## Critical Vulnerability Information ### Affected Product - **Vendor**: Tenda (Shenzhen Tenda Technology Co., Ltd.) - **Product**: Tenda A21 - **Affected Version**: Firmware V1.0.0.0 - **Vulnerabilit…

Read more
CVSS 8.8
Tenda A21 Router Stack Buffer Overflow Vulnerability Analysis (RCE)
github.com · 2026-02-22

### Key Vulnerability Information #### Affected Product - Tenda Router A21 V1.0.0.0 #### Vulnerability Details - **Type**: Stack-based Buffer Overflow (Binary) - **Trigger Point**: `set_device_name` f…

Read more
CVSS 7.3
itsourcecode Agri-Trading Online Shopping System v1.0 SQL Injection
vuldb.com · 2026-02-21

### Critical Vulnerability Information - **Title**: itsourcecode Agri-Trading Online Shopping System Project v1.0 SQL Injection - **Description**: - SQL Injection vulnerability in version 1.0 located …

Read more
CVSS 6.4
WooCommerce Printful Plugin REST API Parameter Validation Issues
plugins.trac.wordpress.org · 2026-02-21

- **Plugin Name**: Printful Shipping for WooCommerce - **Version**: 2.2.11 - **File Path**: class-printful-rest-api-controller.php - **File Size**: 7.9 KB - **Last Modified**: 19 months ago by user pr…

Read more
Dynamicweb Unauthenticated RCE and Customer Data Exposure Vulnerabilities
doc.dynamicweb.dev · 2026-02-21

### January 19th, 2026 - Unauthenticated RCE in Dynamicweb 9 and Dynamicweb 8 #### Severity - **CVSS v3.1**: 10.0 - **Affected products**: Dynamicweb 9 and Dynamicweb 8 #### Description A security vul…

Read more
CVSS 6.3
K CMS RCE via Command Injection in VideoResize.class.php
gist.github.com · 2026-02-21

## Vulnerability Key Information **Vulnerability Title**: K RCE Vulnerability via VideoResize.class.php **Affected Versions**: <= 1.64.05 (Linux) **Vulnerability Description**: - **Vulnerability Type*…

Read more
Boltz Insecure Deserialization RCE (CVE-2025-70560)
github.com · 2026-02-21

### Key Information - **Vulnerability Title** - Boltz contains an insecure deserialization vulnerability in its molecule loading functionality - **CVE ID** - CVE-2025-70560 - **GHSA ID** - GHSA-fjm6-8…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.