Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 26+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
Clear filters
CVSS 4.6
Tuleap Tracker Administration CSRF Protection Fix
github.com · 2025-04-01

From this webpage screenshot, the following key information about the vulnerability can be obtained: - **Commit Information**: This is a Git commit record with ID `d0ce814`, titled “Fix request: MZOSG…

Read more
CVSS 4.6
Tuleap CVE-2025-29766 Missing CSRF Protection Advisory
github.com · 2025-04-01

### Key Information #### Vulnerability Title - **Missing CSRF protections on artifact submission & edition from the tracker view** #### Severity - **Moderate** - **CVSS v3 base metrics: 4.6 / 10** ###…

Read more
CVSS 4.9
Tuleap Cross-Tracker Search Authorization Bypass Vulnerability
github.com · 2024-10-16

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Vulnerability Description**: - **Vulnerability Name**: Permission validation error — project a…

Read more
CVSS 4.3
Tuleap GHSA-j342-v27q Unauthorized Tracker Access
github.com · 2024-10-16

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Vulnerability Description**: - **Vulnerability Name**: Trackers are listed in the quick add ac…

Read more
CVSS 4.8
Tuleap GHSA-g76g-hc92-96xw Improper Privilege Check Vulnerability Advisory
github.com · 2024-10-16

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Vulnerability Description**: - **Vulnerability Name**: Incorrect permission check for tracker …

Read more
CVSS 4.8
Tuleap GHSA-9fc9-47h6-82jj HTML Mail Content XSS Vulnerability
github.com · 2024-10-16

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Vulnerability Name**: XSS in the HTML mail content of the cross reference field 2. **Publisher…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.