Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 666— Search: RCE×

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Clear
Examples: RCE · SSRF · GHSA · log4j
Filter
CVSS 7.1
WooCommerce Plugin Search order by product SKU <= 0.2 XSS Vulnerability
patchstack.com · 2024-11-11

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Vulnerability Description**: - **Title**: WordPress Search order by product SKU for WooCommerc…

Read more
Premium intel
CVSS 8.1
Cisco RCM Debug RCE and Info Disclosure Vulnerabilities (CVE-2022-20649/20648) Advisory
sec.cloudapps.cisco.com · 2024-11-17

From this webpage screenshot, the following key information about the vulnerabilities can be obtained: 1. **Vulnerability Type**: - **CVE-2022-20649**: Cisco RCM Debug Remote Code Execution Vulnerabil…

Read more
CVSS 7.3
Codezips E-commerce Site 1.0 search.php SQL Injection Vulnerability
vuldb.com · 2024-11-26

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Vulnerability Description**: - **Title**: Codezips E-commerce Site Using PHP With Source Code …

Read more
CVSS 6.3
Fastjson Deserialization RCE in SysGeneratorController
github.com · 2025-04-09

### Critical Vulnerability Information #### Vulnerability Location - In the `SysGeneratorController.java` class, at the `@RequestMapping("/code")` endpoint, specifically at the `JSON.parseArray(tables…

Read more
Premium intel
CVSS 8.8
Elasticsearch 7.14.x Security Bulletin: Multiple CVEs (RCE/LPE)
docs.suitecrm.com · 2025-08-08

From this webpage screenshot, the following key vulnerability information can be obtained: ### 7.14.x Releases #### 7.14.7 - **CVEs** - CVE-2023-25689: Privilege escalation vulnerability in Elasticsea…

Read more
osCommerce 2.2 RC2a File Manager Arbitrary Code Execution (EDB-9556)
www.exploit-db.com · 2025-09-18

### Key Information - **Vulnerability Name**: osCommerce Online Merchant 2.2 RC2a - Code Execution - **EDB-ID**: 9556 - **CVE**: None - **Author**: FLYH4T - **Type**: WEBAPPS - **Platform**: PHP - **D…

Read more
PyTorch Multiple CVEs Advisory: RCE, Buffer Overflow, and Incorrect Calculation
gist.github.com · 2025-09-26

### Critical Vulnerability Information #### Vulnerability IDs - CVE-2022-46184 - CVE-2022-46185 - CVE-2022-46186 - CVE-2022-46187 - CVE-2022-46188 - CVE-2022-46189 - CVE-2022-46190 #### Affected Produ…

Read more
CVSS 4.7
ChurchCRM <=5.18.0 Path Traversal Leading to RCE Analysis
github.com · 2025-10-19

### Key Information #### Vulnerability Overview - **Vulnerability Type**: Path traversal leading to remote code execution - **Affected Product**: ChurchCRM versions <= 5.18.0 - **Disclosure Status**: …

Read more
StarCharge Artemis AC Charger Vulnerabilities: RCE, Stack Overflow, Hardcoded Key
github.com · 2025-10-27

From this webpage screenshot, the following key vulnerability information can be extracted: 1. **Vulnerability Description**: - First vulnerability: An issue in the Web Configuration module allows aut…

Read more
SEC Consult Vulnerability List: GiroWeb NFC, MPDV LFI, CleverControl RCE
www.sec-consult.com · 2025-11-08

## Key Information Summary - **Vulnerability Lab**: SEC Consult operates its internal security lab to ensure international excellence in network and application security. - **Responsible Disclosure Po…

Read more
pdfforge PDF Architect CBZ Parsing Directory Traversal RCE (CVE-2025-14420)
www.zerodayinitiative.com · 2025-12-29

### Vulnerability Key Information #### Basic Information - **Title**: (0Day) pdfforge PDF Architect CBZ File Parsing Directory Traversal Remote Code Execution Vulnerability - **ID**: - ZDI-25-1077 - Z…

Read more
PickleScan <0.0.23 ZIP Flag Bypass Leading to PyTorch Model RCE (CVE-2025-1945)
www.sonatype.com · 2026-01-03

## CVE-2025-1945 ### Summary PickleScan before 0.0.23 fails to detect malicious pickle files inside PyTorch model archives when certain ZIP file flag bits are modified. By flipping specific bits in th…

Read more
Datart v1.0.0-rc.3 SSTI to RCE via Freemarker (CVE-2025-70830) with PoC
github.com · 2026-02-21

### Vulnerability Overview - **CVE ID:** CVE-2025-70830 - **Affected Product:** Datart - **Affected Version:** v1.0.0-rc.3 - **Vulnerability Type:** Server-Side Template Injection (SSTI) - **Severity …

Read more
CVSS 7.3
Unauthenticated RCE in gpt-researcher via MCP Command Injection
github.com · 2026-04-06

# Vulnerability Summary: Unauthenticated Remote Code Execution (RCE) in gpt-researcher ## Vulnerability Overview * **Vulnerability Name**: Unauthenticated Remote Code Execution via MCP Command Injecti…

Read more
Premium intel
CVSS 10.0
ChurchCRM <=7.0.5 Unauthenticated RCE in Install Wizard with POC
github.com · 2026-04-08

### Vulnerability Key Information Summary **Vulnerability Overview** An unauthenticated remote code execution (RCE) vulnerability exists in the ChurchCRM installation wizard. During the initial instal…

Read more
Premium intel
CVSS 9.1
ChurchCRM Path Traversal to RCE via Backup Restore
github.com · 2026-04-08

### Vulnerability Summary **Vulnerability Overview** A path traversal vulnerability exists in the backup restoration functionality of ChurchCRM. An authenticated administrator can exploit this vulnera…

Read more
Premium intel
CVSS 9.1
ChurchCRM Backup Restore Path Traversal RCE Fix
github.com · 2026-04-18

### Vulnerability Overview This vulnerability involves insufficient validation of extracted image files during the backup restoration process, which may allow malicious files (such as PHP scripts) to …

Read more
CVSS 7.5
libarchive CVE-2026-5121 Integer Overflow RCE Vulnerability Advisory
github.com · 2026-04-18

# CVE-2026-5121 Vulnerability Summary ## Overview A vulnerability has been discovered in `libarchive`. On 32-bit systems, there is an integer overflow flaw in the allocation logic of `zsufs` block poi…

Read more
CVSS 7.5
libarchive CVE-2026-5121 Integer Overflow RCE Vulnerability Analysis
bugzilla.redhat.com · 2026-04-18

# Vulnerability Summary: CVE-2026-5121 ## Overview - **CVE ID**: CVE-2026-5121 - **Component**: libarchive - **Type**: Remote Code Execution (RCE) - **Cause**: Integer Overflow - **Trigger Scenario**:…

Read more
CVSS 8.4
Adobe Commerce/Magento Security Advisory: RCE, Privilege Escalation & Bypass (CVE-2023-40798/40797/40796/40795)
helpx.adobe.com · 2025-06-11

### Critical Vulnerability Information #### Vulnerability Overview - **Announcement ID**: APSB23-50 - **Release Date**: June 13, 2023 - **Priority**: 1 Adobe has released security updates for Adobe Co…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.