Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 666— Search: RCE×

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Clear
Examples: RCE · SSRF · GHSA · log4j
Filter
CVSS 5.4
CVE-2025-13468: SourceCodester Alumni Management System Authorization Bypass
vuldb.com · 2025-11-20

### Key Vulnerability Information - **Vulnerability ID:** - VDB-333041 - CVE-2025-13468 - GCVE-100-333041 - **Product:** SourceCodester Alumni Management System v1.0 - **CVSS Meta Temp Score:** 4.9 - …

Read more
CVSS 5.4
SourceCodester Alumni Management System 1.0 IDOR Authorization Bypass
vuldb.com · 2025-11-20

- **Title**: SourceCodester Alumni Management System 1.0 Missing Authorization - **Description**: This report describes a critical authorization bypass vulnerability in Alumni Management System versio…

Read more
CVSS 7.3
Remote Unauthenticated SQL Injection in ITSOURCECODE HRMS 1.0 (CVE-2025-13420)
vuldb.com · 2025-11-20

### Key Information - **CVE ID**: CVE-2025-13420 - **VDB ID**: VDB-332942 - **GCVE ID**: GCVE-100-332942 - **CVSS Meta Temp Score**: 6.9 - **Current Exploit Price**: $0-$5k - **CTI Interest Score**: 5…

Read more
CVSS 7.3
CVE-2025-13451: Remote SQL Injection in SourceCodester Online Shop 1.0
vuldb.com · 2025-11-20

### Key Information - **Vulnerability ID**: CVE-2025-13451, VDB-333021 - **Vulnerability Type**: SQL injection - **Severity Level**: critical - **CVSS Meta Temp Score**: 6.6 - **Current Exploit Price*…

Read more
CVSS 7.3
SourceCodester Online Shop Project V1.0 SQL Injection in /action.php
vuldb.com · 2025-11-20

## Critical Vulnerability Information - **Title**: SourceCodester Online Shop Project V1.0 SQL Injection - **Description**: - A critical SQL injection vulnerability was discovered in the "/action.php"…

Read more
CVSS 6.3
SourceCodester Simple Subscription Website 1.0 manage_plan.php SQL Injection (CVE-2024-3015)
vuldb.com · 2025-11-20

### Key Vulnerability Information - **Vulnerability Title**: SourceCodester Simple Subscription Website 1.0 - manage_plan.php ID SQL Injection - **Identifiers**: - VDB-258301 - CVE-2024-3015 - GCVE-10…

Read more
Trend Micro Mobile Security for Enterprise SQL Injection RCE (CVE-2017-14078)
www.zerodayinitiative.com · 2025-11-20

## Vulnerability Key Information - **Vulnerability Name**: Trend Micro Mobile Security for Enterprise remove_eas_agent_info SlinkId SQL Injection Remote Code Execution Vulnerability - **Vulnerability …

Read more
CVSS 6.3
SourceCodester Musical Class Enrollment System SQL Injection (CVE-2024-6067)
github.com · 2025-11-20

## Key Information About the Vulnerability - **CVE Identifier**: CVE-2024-6067 - **Affected Software**: SourceCodester Musical Class Enrollment System - **Vulnerable URL**: ``` http://localhost/mces/?…

Read more
CVSS 3.5
SourceCodester Online Discussion Forum 1.0 Reflected XSS Vulnerability (CVE-2023-3144)
vuldb.com · 2025-11-20

- **CVE Identifier**: CVE-2023-3144 - **Severity**: Problematic - **CVSS Meta Temp Score**: 4.0 - **Location**: SourceCodester Online Discussion Forum Site 1.0 - **File Affected**: `admin\posts\manage…

Read more
WordPress Ninja Forms Unauthenticated File Upload and RCE via Path Traversal
www.onvio.nl · 2025-11-20

## Critical Vulnerability Information ### Vulnerability Type - Path Traversal - Unrestricted File Upload ### Affected Plugin - WordPress Plugin: Ninja Forms - Version: --------------------------163452…

Read more
Cisco Security Advisories: ISE XSS/Info Disclosure and ASA RCE Vulnerabilities
tools.cisco.com · 2025-11-20

From the screenshot, the following key information about the vulnerabilities can be obtained: - **Impact Level**: Each vulnerability is labeled with an impact level, including "Critical (Critical)", "…

Read more
CVE-2023-45498: RCE in VinChin Backup via HTTP API
blog.leakix.net · 2025-11-20

### CVE-2023-45498: RCE in VinChin Backup #### Key Vulnerability Information - **CVE ID**: CVE-2023-45498 - **Vulnerable Software**: VinChin Backup & Recovery - **Issue**: Remote Code Execution (RCE) …

Read more
CVSS 6.3
SQL Injection in SourceCodester AC Repair System (CVE-2023-2411)
vuldb.com · 2025-11-20

### Key Vulnerability Information - **CVE ID:** CVE-2023-2411 - **Vulnerability Type:** SQL Injection - **Product:** SourceCodester AC Repair and Services System 1.0 - **Affected File:** `/admin/inqui…

Read more
ManageEngine OpManager/IT360 RCE and Arbitrary File Deletion (CVE-2014-6034/6035)
seclists.org · 2025-11-20

### Critical Vulnerability Information #### Vulnerability Title - **Series Name**: The ManageOwnage Series, part V - **Vulnerability Type**: RCE (Remote Code Execution) / file upload / arbitrary file …

Read more
MLM Forced Matrix 2.0.9 'newid' SQL Injection Vulnerability (CVE-2017-17636)
www.exploit-db.com · 2025-11-20

## Critical Vulnerability Information - **Vulnerability Name**: MLM Forced Matrix 2.0.9 - 'newid' SQL Injection - **EDB-ID**: 43307 - **CVE**: 2017-17636 - **Author**: Ihsan Sencan - **Type**: WEBAPPS…

Read more
CVE-2021-28110: TranzWare e-Commerce Payment Gateway XML Parser Vulnerability
gist.github.com · 2025-11-20

**CVE-2021-28110** ### Description TranzWare e-Commerce Payment Gateway (TWEC PG) before version 3.1.27.5 contained a vulnerability in its XML-parser, which was resolved through a notification sent to…

Read more
SUSE inst-source-utils Local Privilege Escalation (CVE-2012-0427) Advisory
support.novell.com · 2025-11-20

### Key Information #### Upstream Information - **CVE ID**: CVE-2012-0427 - **Description**: yast2-add-on-creator in SUSE inst-source-utils version 2008.11.26 (prior to 2008.11.26-0.9.1 and 2012.9.13-…

Read more
Cisco Security Advisory: Multiple Vulnerabilities including RCE, PE, SSRF (CVE-2025-20289, CVE-2025-20363, etc.)
tools.cisco.com · 2025-11-20

## Critical Vulnerability Information | Vulnerability Description | Impact Level | CVE ID | Last Updated Date | Version | | --- | --- | --- | --- | --- | | Cisco Identity Services Engine Reflected Cro…

Read more
Premium intel
CVSS 9.8KEV
WhatsUp Gold Security Bulletin: CVE-2024-7763 Auth Bypass & CVE-2024-5008 RCE
community.progress.com · 2025-11-20

### WhatsUp Gold Security Bulletin - June 2024 **Vulnerabilities:** Referencing specific CVEs with their respective impact scores and descriptions indicates the nature of the vulnerabilities. This inc…

Read more
Premium intel
CVSS 10.0
GHSA-r7gx-h738-4w6f: RCE Fix in PDF Report Generation via URL Escaping
github.com · 2025-11-19

- **Vulnerability Type**: Remote Code Execution (RCE) - **Cause**: Insufficient escaping of URLs when generating PDF reports from custom URLs, leading to unexpected shell spawning. - **Fix**: Addresse…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.