Security Intel Hub 24810+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Filter

KEV only

Verified PoC

CVSS 7.3

MCP-Bases Path Traversal and Arbitrary File Write in search_papers

github.com · 2026-04-29

# MCP-Bases Path Traversal and Arbitrary File Write Vulnerability Summary ## Vulnerability Overview * **Vulnerability Type**: Path Traversal / Arbitrary File Write * **CWE ID**: CWE-22 / CWE-73 * **Ro…

TOTOLINK A3002RUV3.0 boa Stack Overflow Vulnerability Analysis

github.com · 2026-04-29

# TOTOLINK A3002RUV3.0 Vulnerability Summary ## Vulnerability Overview The `boa` service interface in the TOTOLINK A3002RUV3.0 firmware contains a stack overflow vulnerability. This vulnerability aris…

Perl CSV XS Module Stack Corruption Fix Analysis

github.com · 2026-04-29

### Vulnerability Overview - **Vulnerability Name**: Possible Stack Corruption - **Vulnerability Description**: There is a potential stack corruption issue in the `CSV XS` module, which may lead to pr…

CVE-2026-5760: SGLang rerank Jinja2 Sandbox Escape RCE

github.com · 2026-04-29

# Vulnerability Summary: CVE-2026-5760 ## Vulnerability Overview This vulnerability exists in the `rerank` module of the `sglang` project. Due to the use of an unsandboxed Jinja2 template environment …

Jenkins Security Advisory: 7 Plugin Vulnerabilities (CVE-2026-42519 to 42525)

www.jenkins.io · 2026-04-29

# Jenkins Security Advisory 2026-04-29 Vulnerability Summary ## Vulnerability Overview This advisory covers 7 security vulnerabilities, involving issues such as missing permission checks, path travers…

Jenkins Security Advisory: Multiple Plugin Vulnerabilities including RCE, XSS, and Deserialization (CVE-2026-42519 to 42

www.jenkins.io · 2026-04-29

# Jenkins Security Advisory 2026-04-29 Vulnerability Summary ## Vulnerability Overview This advisory covers security vulnerabilities in multiple Jenkins plugins, primarily including missing permission…

Jenkins Security Bulletin: Multiple Plugin Vulnerabilities (SECURITY-3662/3672/3676/3702/3704/3706/3760)

www.jenkins.io · 2026-04-29

Jenkins Security Advisory: Multiple Plugin Vulnerabilities (SECURITY-3662, 3672, 3676, 3702, 3704, 3706, 3760)

www.jenkins.io · 2026-04-29

# Jenkins Security Advisory 2026-04-29 Vulnerability Summary ## Vulnerability Overview This advisory covers security vulnerabilities in multiple Jenkins plugins, mainly including missing permission ch…

Premium intel

CVSS 9.6

TÜBİTAK Pardus Security Advisory: 5 CVEs (CVE-2026-5140, 5141, 5161, 5166, 6849)

www.usom.gov.tr · 2026-04-29

# TR-26-0131 (TÜBİTAK BİLGEM YTE - Pardus Security Advisory) ## Vulnerability Overview Vulnerabilities have been identified in the Pardus product developed by TÜBİTAK BİLGEM Software Technologies Rese…

Jenkins Security Advisory: Multiple Plugin Vulnerabilities including RCE, XSS, and Deserialization (CVE-2026-42519 to 42

www.jenkins.io · 2026-04-29

Jenkins Security Advisory: 7 Plugin Vulnerabilities (XSS, Deserialization, Path Traversal)

www.jenkins.io · 2026-04-29

# Jenkins Security Advisory 2026-04-29 Vulnerability Summary ## Vulnerability Overview This advisory covers 7 security vulnerabilities in multiple Jenkins plugins, including risks such as missing perm…

Jenkins Security Bulletin: Multiple Plugin Vulnerabilities (SECURITY-3662 to 3760)

www.jenkins.io · 2026-04-29

CVSS 3.1

CVE-2026-22741: Spring MVC/WebFlux Static Resource Cache Poisoning

spring.io · 2026-04-29

# CVE-2026-22741: Spring MVC and WebFlux Static Resource Cache Poisoning Vulnerability ## Vulnerability Overview A cache poisoning vulnerability exists in Spring MVC and WebFlux applications when pars…

CVSS 5.3

CVE-2026-22745: Spring MVC/WebFlux DoS on Windows Static Resources

spring.io · 2026-04-29

# CVE-2026-22745: Denial of Service Vulnerability in Static Resource Handling on Windows Platform ## Vulnerability Overview Spring MVC and Spring WebFlux applications contain a denial of service (DoS)…

CVSS 5.3

WordPress Plugin complianz-gdpr REST API Potential XSS Vulnerability Analysis

github.com · 2026-04-29

### Vulnerability Overview The webpage screenshot displays the REST API file `rest-api.php` of the WordPress plugin `complianz-gdpr`. A potential security vulnerability exists within this file, specif…

CVSS 7.2

CyberChef Show_Base64_offsets XSS Vulnerability Fix

github.com · 2026-04-29

# Bug report: XSS vulnerability due to unescaped value in Show_Base64_offsets recipe #2344 ## Vulnerability Overview An XSS vulnerability exists in the `Show_Base64_offsets` recipe of CyberChef. This …

CVSS 7.2

XSS Vulnerability in ShowBase64Offsets Operation and Fix Analysis

github.com · 2026-04-29

### Vulnerability Overview This vulnerability is a Cross-Site Scripting (XSS) flaw occurring within the `ShowBase64Offsets` operation. The root cause is the lack of proper escaping for user input, whi…

Starman HTTP Request Smuggling Vulnerability (CVE-2026-48560) Fix Analysis

github.com · 2026-04-29

# Vulnerability Summary: HTTP Request Smuggling (CVE-2026-48560) ## Overview This vulnerability involves HTTP Request Smuggling. According to RFC 7230 §3.3.3, when both `Transfer-Encoding` and `Conten…

Chrome 147 Stable Security Update: 30 Vulnerabilities Fixed (2 Critical)

chromereleases.googleblog.com · 2026-04-29

# Chrome Stable Release Security Vulnerability Summary ## Vulnerability Overview The Chrome stable release has been updated to version 147.0.7727.137/138 (Windows/Mac) and 147.0.7727.137 (Linux). This…

CVSS 7.7

Rate Limiter JWT Unverified Bypass Vulnerability Analysis

github.com · 2026-04-29

### Vulnerability Overview This vulnerability involves the use of unverified JWT (JSON Web Token) in rate limiting. Specifically, the rate limiting middleware uses an unverified JWT to identify users,…

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.

Goal Reached Thanks to every supporter — we hit 100%!

Security Intel Hub 24810+