Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 36+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
Clear filters
High
PrismaAI A2U Unauthenticated Information Disclosure (CVE-2026-34952)
CVE-2026-34952 · github.com · 2026-04-09
A2U Server < 4.5.114
Read more
Critical
Template Injection in Agent Tool Definitions Leading to RCE
github.com · 2026-04-09
PraisonAI <= 4.5.114
Read more
Premium intel
Critical
praisonal CVE-2025-39890 YAML Deserialization RCE Vulnerability and PoC
CVE-2025-39890 · github.com · 2026-04-09
praisonal <= 4.5.114
Read more
Critical
praisonai Path Traversal Vulnerability (CVE-2026-2015) Analysis and Fix
CVE-2026-2015 · github.com · 2026-04-08
praisonai <= 1.5.112
Read more
High
PraisOnAI Template Installation Zip Slip Arbitrary File Write (CVE-2026-39307)
CVE-2026-39307 · github.com · 2026-04-08
PraisonAI <= 4.5.112
Read more
High
PrisonAI Recipe Registry Path Traversal Vulnerability Analysis
github.com · 2026-04-08
PraisonAI
Read more
High
PraisonAI Recipe Registry Path Traversal Arbitrary File Write
github.com · 2026-04-08
praisonal <= 4.5.112
Read more
Premium intel
Critical
PraisalAI SubprocessSandbox Sandbox Escape via Bypassable Blocklist
github.com · 2026-04-04
PraisonAI < 4.5.36
Read more
Unknown
PraisonAI SSRF via Unvalidated api_base in passthrough() Fallback
github.com · 2026-04-04
praisonai < 4.5.89
Read more
Premium intel
High
SSRF in PraisonAI praisonagents FileTools.download_file via Unvalidated URL
github.com · 2026-04-04
praisonagents <= 1.5.94
Read more
Premium intel
High
PraisonAI WebSocket Gateway Missing Authentication Vulnerability
github.com · 2026-04-04
PraisonAI <= 4.3.96
Read more
Premium intel
High
Shell Injection in praisonaiagents run_python() (CVE-2024-38837)
CVE-2024-38837 · github.com · 2026-04-04
praisonaiagents < 1.5.9
Read more
Premium intel
High
Second-Order SQL Injection in praisonai (CVE-2024-38304)
CVE-2024-38304 · github.com · 2026-04-04
praisonai <= 4.5.89
Read more
Premium intel
High
CVE-2024-34035: OS Command Injection in praiseinai MCPHandler
CVE-2024-34035 · github.com · 2026-04-04
praisalnai < 4.5.1 · praisalnai >= 4.5.1 < 4.5.68
Read more
Premium intel
High
praisonai Sandbox Escape via str Subclass Override
github.com · 2026-04-04
praisonai <= 1.5.8
Read more
High
Stored XSS in WordPress Featured Image Plugin (<=2.1)
github.com · 2025-11-11
Featured Image <=2.1
Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.