Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 24703+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
CVSS 8.2
RHSA-2026:14216 Red Hat corosync CVE-2026-35091/35092 Security Advisory
access.redhat.com · 2026-05-08

# RHSA-2026:14216 - Security Advisory ## Vulnerability Overview * **Component**: corosync * **Severity**: Moderate * **CVSS Score**: Moderate * **Vulnerability Details**: * **CVE-2026-35091**: Corosyn…

Read more
CVSS 8.2
RHSA-2026:14210: Corosync DoS and Info Leak Vulnerabilities (CVE-2026-35091/35092) Patch
access.redhat.com · 2026-05-08

# RHSA-2026:14210 - Security Advisory Summary ## Vulnerability Overview * **Affected Software**: corosync * **Security Rating**: Moderate * **Vulnerability Details**: * **CVE-2026-35091**: A denial of…

Read more
CVSS 6.1
CVE-2026-34000: X.Org X server XKB Out-of-bounds Read Vulnerability and Mitigation
access.redhat.com · 2026-05-08

# CVE-2026-34000 Vulnerability Summary ## Overview * **Vulnerability ID**: CVE-2026-34000 * **Severity**: Moderate * **CVSS Score**: 6.1 (Red Hat) / 9.1 (NVD) * **Vulnerability Type**: Out-of-bounds R…

Read more
CVSS 6.5
Apache ActiveMQ CVE-2023-46604 RCE Vulnerability and POC
www.wordfence.com · 2026-05-08

# Vulnerability Overview **Vulnerability Name**: Apache ActiveMQ Remote Code Execution Vulnerability (CVE-2023-46604) **Vulnerability Description**: Apache ActiveMQ is an open-source message broker an…

Read more
CVSS 6.4
Apache ActiveMQ CVE-2023-46604 RCE Vulnerability Analysis
www.wordfence.com · 2026-05-08

# Vulnerability Summary ## Vulnerability Overview **Vulnerability Name**: Apache ActiveMQ Remote Code Execution Vulnerability (CVE-2023-46604) **Vulnerability Type**: Remote Code Execution (RCE) **Des…

Read more
Apache ActiveMQ CVE-2023-46604 RCE Vulnerability Analysis and POC
www.wordfence.com · 2026-05-08

# Vulnerability Summary ## Overview **Vulnerability Name**: Apache ActiveMQ Remote Code Execution Vulnerability (CVE-2023-46604) **Vulnerability Type**: Remote Code Execution (RCE) **Description**: A …

Read more
CVSS 4.3
Open5GS NSSF Crash on GET /nssf-nselection/v2 with Missing Serving PLMN Config
github.com · 2026-05-08

# [Bug]: NSSF crash on GET /nssf-nselection/v2/network-slice-information with home-plmn-id and homeSnssai when serving PLMN is not configured #4432 ## Vulnerability Overview In the NSSF (Network Slice…

Read more
CVSS 4.3
Reflected XSS in Pizzafy Ecommerce System V1.0 /admin/index.php
github.com · 2026-05-08

# Vulnerability Summary ## Overview * **Vulnerability Name**: sourcecodester Pizzafy Ecommerce System Project V1.0 /admin/index.php Reflected XSS #5 * **Vulnerability Type**: Reflected Cross-Site Scri…

Read more
Premium intel
CVSS 6.3
xiaozi-mcphub Path Traversal Vulnerability (CVE-22) Analysis and POC
github.com · 2026-05-08

# Vulnerability Summary: Path Traversal Vulnerability in xiaozi-mcphub ## Vulnerability Overview * **Vulnerability Name**: Path Traversal Vulnerability in xiaozi-mcphub * **CVE ID**: CVE-22 (CWE-22) *…

Read more
CVSS 5.3
Path Traversal Vulnerability in short-video-maker: Analysis and Fix
github.com · 2026-05-08

# Vulnerability Summary: Path Traversal Vulnerability in short-video-maker ## Vulnerability Overview * **Vulnerability Name**: Path Traversal Vulnerability in short-video-maker #73 * **Vulnerability T…

Read more
Premium intel
CVSS 8.8
Slider Revolution Arbitrary File Upload Vulnerability (7.0.0-7.0.10)
www.wordfence.com · 2026-05-08

# Slider Revolution 7.0.0 - 7.0.10 Arbitrary File Upload Vulnerability ## Vulnerability Overview The Slider Revolution plugin contains an arbitrary file upload vulnerability. Attackers can upload mali…

Read more
CVSS 7.3
MAXHUB Pivot Client Broken Cryptographic Algorithm Vulnerability (CVE-2026-6411)
www.cisa.gov · 2026-05-08

# MAXHUB Pivot Client Application Vulnerability Summary ## Vulnerability Overview * **Vulnerability Name**: MAXHUB Pivot Client Application Vulnerability * **CVE ID**: CVE-2026-6411 * **CVSS Score**: …

Read more
CVSS 6.3
JeecBoot <=3.9.1 SQL Injection Vulnerability (CVE-2024-9571) Analysis and PoC
github.com · 2026-05-08

# CVE-2024-9571: JeecBoot SQL Injection Vulnerability Summary ## Vulnerability Overview * **Vulnerability Type**: SQL Injection (UNION-based) * **Affected Product**: JeecBoot (versions SysDictMapper.x…

Read more
CVSS 6.3
OpenStack Cyborg ARK API Missing Project Ownership Leads to Info Disclosure and DoS (CVE-2026-40214)
bugs.launchpad.net · 2026-05-08

# Vulnerability Summary: Cyborg ARK API Lack of Project Ownership Tracking ## Vulnerability Overview * **Vulnerability ID**: CVE-2026-40214 * **Title**: [OSSA-2026-011] Cyborg ARK API lacks project ow…

Read more
CVSS 7.4
OpenStack Cyborg Authorization Bypass via rule:allow (CVE-2026-40213)
bugs.launchpad.net · 2026-05-08

# Vulnerability Summary: [OSSA-2026-011] rule:allow policy bypass exposes hardware inventory and privileged operations (CVE-2026-40213) ## Overview This vulnerability exists within the OpenStack Cybor…

Read more
CVSS 7.4
OpenStack Cyborg Access Control Bypass Vulnerabilities (CVE-2026-40213/40214)
www.openwall.com · 2026-05-08

# OpenStack Cyborg Multiple Access Control Vulnerabilities (CVE-2026-40213, CVE-2026-40214) ## Vulnerability Overview OpenStack Cyborg has multiple access control vulnerabilities: 1. **CVE-2026-40213 …

Read more
CVSS 4.3
MiniClaw Skill Script Path Traversal Vulnerability Fix Analysis
github.com · 2026-05-08

# Vulnerability Summary: Skill Script Path Traversal Vulnerability ## Overview This vulnerability exists in the MiniClaw project, allowing attackers to bypass path boundary checks during skill script …

Read more
CVSS 6.3
MiniClaw OS Command Injection Vulnerability (CWE-78) Analysis and PoC
github.com · 2026-05-08

# Vulnerability Summary: MiniClaw Heartbeat #4 (CWE-78) ## Vulnerability Overview * **Vulnerability Type**: CWE-78 Critical OS Command Injection * **Severity**: Critical * **Affected Component**: `exe…

Read more
CVSS 7.5
Microsoft Edge Copilot Chat Information Disclosure Vulnerability (CVE-2026-33111)
msrc.microsoft.com · 2026-05-08

# Vulnerability Overview * **Vulnerability Name**: Copilot Chat (Microsoft Edge) Information Disclosure Vulnerability * **CVE ID**: CVE-2026-33111 * **Publication Date**: May 7, 2026 * **Assigning Aut…

Read more
Premium intel
CVSS 8.5
SSRF Bypass via IPv6 Validation Flaw in validateUrlSync
github.com · 2026-05-08

### Vulnerability Overview This vulnerability involves the `validateUrlSync` function, where flaws in the validation logic for IPv6 address mapping and private IPv6 addresses allow attackers to bypass…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.