Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 54+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
Clear filters
CVSS 3.5
Stored XSS Vulnerability in educar_tipo_ocorrencia_disciplinar_cad.php with PoC
github.com · 2025-09-01

### Key Information #### Vulnerability Type - **Multiple Stored Cross-Site Scripting (XSS)** #### Vulnerability Description - Multiple stored cross-site scripting (XSS) vulnerabilities were discovered…

Read more
CVSS 3.5
Stored XSS in /intranet/educar_tipo_regime_cad.php via nm_tipo parameter
github.com · 2025-09-01

### Key Information #### Vulnerability Type - **Stored Cross-Site Scripting (XSS)** #### Vulnerability Location - **Vulnerable Endpoint**: `/intranet/educar_tipo_regime_cad.php` - **Parameter**: `nm_t…

Read more
CVSS 6.3
i-Educar BOLA Vulnerability (CVE-2025-9687) Exposes Student PII
github.com · 2025-08-31

### Key Information #### Vulnerability Type - Broken Object Level Authorization (BOLA) #### Affected System - `/module/HistoricoEscolar/processamentoApi` endpoint in the i-Educar application #### Vuln…

Read more
CVSS 6.3
i-Educar SQL Injection Vulnerability (CVE-2025-9866) Analysis
github.com · 2025-08-31

### Key Information Summary #### Vulnerability Type - **SQL Injection (Time-based Blind SQLi)** #### Affected Scope - **i-Educar application**, specifically in the `id` parameter of the `/module/AreaC…

Read more
CVSS 6.3
i-Educar SQL Injection Vulnerability (CVE-2022-9695) with PoC
github.com · 2025-08-31

### Key Information #### Vulnerability Overview - **Vulnerability Type**: SQL Injection (Time-based Blind) - **Affected Endpoint**: `/module/AreaConhecimento/view` - **Parameter**: `id` #### Vulnerabi…

Read more
CVSS 3.5
Stored XSS in educar_projeto_cad.php with PoC
github.com · 2025-08-30

### Key Information #### Vulnerability Type - **Multiple Stored Cross-Site Scripting (XSS)** #### Vulnerability Description - Multiple stored cross-site scripting (XSS) vulnerabilities exist in the `e…

Read more
CVSS 6.3
i-Educar SQL Injection Vulnerability Analysis (CVE-2025-9607)
github.com · 2025-08-30

### Key Information #### Vulnerability Type - SQL Injection (Time-based Blind) #### Affected Scope - The `/module/TabelaArredondamento/view` endpoint in the i-Educar application, specifically in the `…

Read more
CVSS 3.5
CVE-2025-9105 Stored XSS Vulnerability Analysis
github.com · 2025-08-19

### Key Information #### Vulnerability Type - **Stored Cross-Site Scripting (XSS)** #### Vulnerability Description - A stored cross-site scripting (XSS) vulnerability was discovered in the `/planos-de…

Read more
CVSS 3.5
CVE-2025-9104: Stored XSS in i-diario /planos-de-aulas-por-disciplina
github.com · 2025-08-19

From this webpage screenshot, the following key information about the vulnerability can be obtained: ### Vulnerability Overview - **Type**: Stored Cross-Site Scripting (XSS) vulnerability - **Affected…

Read more
CVSS 4.3
Reflected XSS in i-diario /alunos/search_autocomplete (CVE-2025-9107)
github.com · 2025-08-19

### Key Information #### Vulnerability Type - **Cross-Site Scripting (XSS)**: Reflected Cross-Site Scripting vulnerability #### Vulnerability Details - **Affected Endpoint**: `/alunos/search_autocompl…

Read more
CVSS 3.5
CVE-2025-9106: Stored XSS in i-diario /planos-de-ensino-por-disciplina
github.com · 2025-08-19

### Key Information #### Vulnerability Type - **Stored Cross-Site Scripting (XSS)** #### Vulnerability Description - A stored Cross-Site Scripting (XSS) vulnerability was discovered in the `/planos-de…

Read more
CVSS 2.4
CVE-2025-8920 Stored XSS Vulnerability with PoC
github.com · 2025-08-17

### Key Information #### Vulnerability Overview - **CVE ID**: CVE-2025-8920 - **Vulnerability Type**: Stored Cross-Site Scripting (XSS) - **Affected Parameter**: "Planos de ensino" input field - **Aff…

Read more
CVSS 2.4
Stored XSS Vulnerability in Planos de ensino with PoC
github.com · 2025-08-15

### Key Information #### Vulnerability Type - **Cross-Site Scripting (XSS) Storage** #### Affected Endpoints and Parameters - **Affected Endpoint**: `/dicionario-de-termos-bncc` - **Affected Parameter…

Read more
CVSS 3.5
i-diario Stored XSS Vulnerability (CVE-2025-8787)
github.com · 2025-08-11

### Key Information #### Vulnerability Type - **Cross-Site Scripting (XSS)**: Stored XSS vulnerability. #### Vulnerability Description - **Affected Endpoint**: `/registros-de-conteudos-por-disciplina/…

Read more
CVSS 3.5
CVE-2025-8788: Stored XSS in i-diario /planos-de-aula-por-areas-de-conhecimento
github.com · 2025-08-11

### Key Information #### Vulnerability Type - **Cross-Site Scripting (XSS)**: Stored XSS #### Vulnerability Description - A stored XSS vulnerability was discovered in the `/planos-de-aula-por-areas-de…

Read more
CVSS 3.5
Stored XSS in i-diario (CVE-2025-8786)
github.com · 2025-08-11

### Key Information #### Vulnerability Type - **Cross-Site Scripting (XSS)**: Stored Cross-Site Scripting. #### Vulnerability Description - **Vulnerable Endpoint**: `/registros-de-contendos-por-areas-…

Read more
CVSS 3.5
I-Educar Stored XSS Vulnerability (CVE-2025-8784) Analysis
github.com · 2025-08-11

### Key Information #### Vulnerability Type - **Stored Cross-Site Scripting (XSS)** #### Vulnerable Location - **Vulnerable Endpoint**: `/intranet/funcionario_vinculo_cad.php` - **Parameter**: `nome` …

Read more
CVSS 3.5
I-Educar Reflected XSS Vulnerability (CVE-2025-8785) with PoC
github.com · 2025-08-11

### Key Information #### Vulnerability Type - **Cross-Site Scripting (XSS)**: Reflected Cross-Site Scripting #### Vulnerable Endpoint - **URL**: `/intranet/educar_usuario_lst.php` - **Parameters**: `n…

Read more
CVSS 3.5
I-Educar Reflected XSS Vulnerability (CVE-2025-8507)
github.com · 2025-08-07

### Key Information #### Vulnerability Type - Reflected Cross-Site Scripting (XSS) #### Vulnerability Description - A reflected Cross-Site Scripting (XSS) vulnerability was discovered in the `/intrane…

Read more
CVSS 2.4
i-Educar Stored XSS Vulnerability (CVE-2025-8538) with PoC
github.com · 2025-08-07

### Key Information #### Vulnerability Overview - **CVE ID**: CVE-2025-8538 - **Vulnerability Type**: Multiple Stored Cross-Site Scripting (XSS) - **Affected Component**: `/usuarios/tipos/novo` endpoi…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.