Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 666— Search: RCE×

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Clear
Examples: RCE · SSRF · GHSA · log4j
Filter
Cisco Security Advisories: Multiple Vulnerabilities including RCE, PE, SSRF (CVE-2025-20289, etc.)
tools.cisco.com · 2025-11-19

### Cisco Security Advisories | Advisory | Impact | CVE | Last Updated | Version | | --- | --- | --- | --- | --- | | Cisco Identity Services Engine Reflected Cross-Site Scripting and Information Discl…

Read more
mojoPortal 2.7.0.0 File Upload RCE via Skin Management (CVE-2023-44009)
github.com · 2025-11-19

## Vulnerability Information for CVE-2023-44009 ### Basic Information - **Date**: 29/09/2023 - **Affected Version**: mojoPortal 2.7.0.0 - **Vendor Homepage**: https://www.mojoptoral.com/ - **Exploit A…

Read more
HP Storage Essentials CVE-2017-10992 Java Deserialization RCE Advisory
labs.integrity.pt · 2025-11-19

## Critical Vulnerability Information ### 1. Vulnerability Attributes - **Title**: HP Storage Essentials Remote Code Execution via Java deserialization - **CVE ID**: CVE-2017-10992 - **CVSSv3 Base Sco…

Read more
NetApp OnCommand Unified Manager CVE-2018-5487 Unauthenticated RCE Advisory
security.netapp.com · 2025-11-19

### Key Information - **Vulnerability ID**: CVE-2018-5487 - **NetApp Advisory ID**: NTAP-20180523-0001 - **Version**: 2.0 - **Last Updated**: 11/30/2018 - **Status**: Final - **Affected Products**: On…

Read more
Barangay Management System v1.0 Arbitrary File Upload Leading to RCE
github.com · 2025-11-19

# Key Information Summary ## Vulnerability Overview - **Vulnerability Type**: Remote Code Execution (RCE) - **Affected System**: Barangay Management System v1.0 by itsourcecode.com - **Login Credentia…

Read more
Premium intel
KEV
ImageMagick CVE-2016-3714 RCE Vulnerability Analysis and Mitigation
imagetragick.com · 2025-11-19

**Key Information:** - **CVE-2016-3714**: Multiple vulnerabilities in ImageMagick's image decoder can lead to remote code execution (RCE). Attackers can exploit these vulnerabilities to execute arbitr…

Read more
Foxit Reader saveAs Arbitrary File Write RCE Vulnerability (CVE-2017-10952)
zerodayinitiative.com · 2025-11-19

### Vulnerability Overview - **Title**: (0Day) Foxit Reader saveAs Arbitrary File Write Remote Code Execution Vulnerability - **Vulnerability ID**: ZDI-17-692, ZDI-CAN-4518 - **CVE ID**: CVE-2017-1095…

Read more
Foxit Reader XFAScriptObject Type Confusion RCE (CVE-2017-14825)
zerodayinitiative.com · 2025-11-19

# Vulnerability Key Information ## Vulnerability Overview - **Name**: Foxit Reader XFAScriptObject remove Type Confusion Remote Code Execution Vulnerability - **ID**: - ZDI-17-869 - ZDI-CAN-5017 - **C…

Read more
Foxit Reader XFA Node Type Confusion RCE (CVE-2017-14827) Advisory
zerodayinitiative.com · 2025-11-19

## Critical Vulnerability Information ### Vulnerability Details - **Vulnerability Name**: Foxit Reader XFA Nodes append Type Confusion Remote Code Execution Vulnerability - **Vulnerability IDs**: - ZD…

Read more
Foxit Reader FormCalc closeDoc Type Confusion RCE (CVE-2017-16572)
zerodayinitiative.com · 2025-11-19

### Critical Vulnerability Information **Title**: Foxit Reader FormCalc closeDoc Type Confusion Remote Code Execution Vulnerability **ID**: - ZDI-17-883 - ZDI-CAN-5073 **CVE ID**: CVE-2017-16572 **Sco…

Read more
NetGain Enterprise Manager Directory Traversal RCE (CVE-2017-16603)
zerodayinitiative.com · 2025-11-19

## Critical Vulnerability Information ### Vulnerability Title NetGain Systems Enterprise Manager settings.upload_file_jsp filename Directory Traversal Remote Code Execution Vulnerability ### ZDI ID - …

Read more
CVSS 8.8
D-Link DWR-M960 Buffer Overflow Vulnerability Analysis (RCE/DoS)
github.com · 2025-11-18

## Key Information Summary ### Affected Product - **Name**: D-Link DWR-M960 B1 V1.01.07 - **Hardware Version**: B1 - **Firmware Version**: V1.01.07 ### Vulnerability Details - **Vendor**: D-Link - **P…

Read more
OpenSourcePOS v3.4.1 Stored XSS in Customer Module Phone Field
github.com · 2026-02-21

From the webpage screenshot, the following key vulnerability information can be extracted: - **Affected Product**: OpenSourcePOS v3.4.1 - **Vulnerability Type**: Stored Cross-Site Scripting (XSS), CWE…

Read more
Trend Micro Mobile Security for Enterprise SQL Injection RCE (CVE-2017-14078)
www.zerodayinitiative.com · 2025-11-14

From the webpage screenshot, the following key vulnerability information can be extracted: - **Vulnerability Title**: Trend Micro Mobile Security for Enterprise move_group Id SQL Injection Remote Code…

Read more
Chrome 124 Security Update: 24 CVEs Fixed (V8 UAF/RCE)
chromereleases.googleblog.com · 2025-11-14

## Key Information Summary - **Version Updates**: - Stable Channel: 124.0.6367.60/.61 - Extended Stable Channel: 124.0.6367.60/.61 - **Security Fixes & Rewards**: - 24 security vulnerabilities have be…

Read more
Premium intel
CVSS 6.8
Red Hat Keycloak CVE-2025-11538 Debug Mode RCE Vulnerability Advisory
access.redhat.com · 2025-11-14

## Critical Vulnerability Information - **CVE ID**: CVE-2025-11538 - **Disclosure Date**: November 13, 2025 - **Severity**: Medium - **CVSS v3 Base Score**: 6.8 ### Description A vulnerability exists …

Read more
CVE-2025-59118: Apache OFBiz Critical RCE via Unrestricted File Upload
lists.apache.org · 2025-11-14

**CVE-2025-59118: Apache OFBiz: Critical Remote Command Execution via Unrestricted File Upload** - **Severity:** Important - **Affected versions:** - Apache OFBiz before 24.09.03 - **Description:** - …

Read more
CVSS 8.1
CVE-2025-59840: Vega XSS via expressions leading to RCE
github.com · 2025-11-14

--- ### Vulnerability Summary - **Vulnerability Name**: Vega Cross-Site Scripting (XSS) via expressions abusing toString calls in environments using the VEGA_DEBUG global variable - **GHSA ID**: GHSA-…

Read more
CVSS 7.3
SourceCodester PQMS SQL Injection Vulnerability (EXTRACTVALUE) with POC
vuldb.com · 2025-11-14

### Key Information - **Title**: SourceCodester User-Management-PHP-MYSQL web v1 SQL Injection - **Description**: - The vulnerability exists in the open-source project (PQMS) file `patients-waiting-ar…

Read more
CVSS 6.3
Sourcecodester Alumni Management System 1.0 SQL Injection Vulnerability
vuldb.com · 2025-11-14

### Key Information - **Title**: Sourcecodester Alumni Management System 1.0 SQL Injection - **Description**: - During the security review of "Alumni Management System", a critical SQL injection vulne…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.