Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 36+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
Clear filters
High
Roundcube 1.5.15 Fixes XSS in HTML Attachment Preview
github.com · 2026-04-03
Roundcube Webmail < 1.5.15
Read more
Unknown
Roundcube Fix Unsafe Deserialization Arbitrary File Write and INP Injection
github.com · 2026-04-03

### Vulnerability Overview This update addresses two critical security vulnerabilities: 1. **INP Injection and CRLF Bypass**: A vulnerability exists in the mail search functionality, allowing INP inje…

Read more
Medium
Fix remote image blocking bypass via crafted body background attribute in programmatic-html
github.com · 2026-04-03
roundcubemail < 1.6.9 · roundcubemail < 1.5.7
Read more
Medium
Roundcube Webmail Remote Image Blocking Bypass Fix
github.com · 2026-04-03
Roundcube Webmail
Read more
High
Roundcube remote image blocking bypass fix via body background attribute
github.com · 2026-04-03
Roundcube Mail <= 1.5.3
Read more
Premium intel
High
Roundcube Webmail 1.7 RC5 Security Update: Fixes Pre-Auth File Write, SSRF, XSS, and CSRF
github.com · 2026-04-03
Roundcube Webmail < 1.7-RC5
Read more
High
Roundcube Webmail: Fix Arbitrary File Write via Unsafe Deserialization in Redis/Memcache Session Handler
github.com · 2026-04-03
Roundcube Webmail
Read more
High
Roundcube: Fix Arbitrary File Write via Unsafe Deserialization in redis/newcache Session Handler
github.com · 2026-04-03
roundcube/roundcubemail
Read more
High
Roundcube Redis/RedisCache Session Handler Unsafe Deserialization Arbitrary File Write Fix
github.com · 2026-04-03
Roundcube (using Redis/RedisCache session handler)
Read more
Premium intel
High
Roundcube Webmail 1.6.14 Security Update: Fixes Arbitrary File Write, IMAP Injection, XSS
github.com · 2026-04-03
Roundcube Webmail < 1.6.14
Read more
Premium intel
High
Roundcube Webmail 1.5.14 Security Update: Pre-Auth File Write via Deserialization, IMAP Injection, XSS
github.com · 2026-04-03
Roundcube Webmail < 1.5.14
Read more
High
Roundcube CSS Injection Vulnerability Fix Details
github.com · 2026-02-11
Roundcube Mail < 1.6.12
Read more
Low
Roundcube rcube_utils.php Comment Injection Fix and SVG Injection Defense
github.com · 2026-02-11
Roundcube roundcubemail
Read more
Premium intel
CVSS 9.9KEV
Roundcube Fix: Validate _from URL Parameter in upload.php to Prevent Injection
github.com · 2025-06-03

From this webpage screenshot, the following key information about the vulnerability can be obtained: - **Submission Details**: - Submission ID: `0376f69` - Submitter: `pabzm` - Submission Time: Yester…

Read more
Premium intel
CVSS 9.9KEV
Roundcube upload.php URL parameter validation fix
github.com · 2025-06-03

From this webpage screenshot, the following key information about the vulnerability can be obtained: - **Vulnerability Type**: URL parameter validation issue. - **Remediation Measures**: - Added valid…

Read more
Premium intel
CVSS 9.9KEV
Roundcube fix: Replace get_input_value with get_input_string for input validation
github.com · 2025-06-03

From this webpage screenshot, the following key vulnerability information can be obtained: - **Submission ID**: c50a07d - **Submitter**: alecpl - **Submission Time**: Yesterday - **Submission Descript…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.