Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 666— Search: RCE×

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Clear
Examples: RCE · SSRF · GHSA · log4j
Filter
SourceCodester Online Clearance System 1.0 Session Forgery Vulnerability Analysis
github.com · 2025-10-11

### Critical Vulnerability Information - **Vulnerability Type**: Incorrect Access Control - **Affected Product**: SourceCodester Online Clearance System 1.0 - **Attack Type**: Remote #### Description …

Read more
IceScrum ≤7.5.4 JDBC Connection String RCE via testDbConnection (CVE-2025-60785)
zdaylabs.com · 2025-11-04

### Key Information #### CVE Information - **CVE ID:** CVE-2025-60785 - **Severity:** High - **CVSS v3.1:** 8.8 - **Affected Vendor:** IceScrum - **Affected Product:** IceScrum - **Vulnerability Type:…

Read more
HP AutoPass License Server Unauthenticated File Upload RCE (CVE-2013-6221)
github.com · 2025-11-08

Based on the information in the webpage screenshot, the following key details about the vulnerability can be obtained: - **Vulnerability Name**: HP AutoPass License Server File Upload - **Vulnerabilit…

Read more
iOS 15/iPadOS 15 Security Update: Accessory Manager RCE and other CVE fixes
support.apple.com · 2025-11-08

### Vulnerability Key Information #### iOS 15 and iPadOS 15 Security Content Overview - **Release Date**: September 20, 2021 - **Affected Components**: Accessory Manager, AppleMobileFileIntegrity, App…

Read more
Advantech WebAccess/SCADA Path Traversal Leading to RCE (CVE-2020-25161)
us-cert.cisa.gov · 2025-11-09

## Vulnerability Key Information ### 1. Vulnerability Summary - **CVSSv3 Score:** 8.8 - **Exploitability:** Remote exploitation / Low skill level required - **Vendor:** Advantech - **Affected Equipmen…

Read more
RHSA-2015:2517: Red Hat Fuse Service Works fixes Commons Collections deserialization RCE (CVE-2015-7501)
rhn.redhat.com · 2025-11-09

- **Title**: RHSA-2015:2517 – Security Advisory - **Summary**: Critical: Red Hat Fuse Service Works 6.0.0 commons-collections Security Update - **Type/Severity**: Security Advisory: Critical - **Subje…

Read more
CVSS 5.5
CVE-2016-15007: SOQL Injection in Centralized-Salesforce-Dev-Framework SOQL Handler
vuldb.com · 2025-11-09

### Vulnerability Key Information - **CVE Identifier**: CVE-2016-15007 - **CVSS Meta Temp Score**: 6.9 - **Current Exploit Price**: $0-$5k - **CTI Interest Score**: 0.14 #### Summary - **Vulnerability…

Read more
CentOS-WebPanel Vulnerabilities: Pre-Auth RCE, Account Takeover, and Command Injection
github.com · 2025-11-09

### Vulnerability Overview - **Project Name**: CentOS-WebPanel - **Description**: Proof-of-Concept (PoC) script demonstrating vulnerabilities in CentOS Web Panel. ### Vulnerability Types - **Pre-Auth …

Read more
CVSS 7.2
WooCommerce Plugin Advanced Local Pickup 1.6.0 Security Fix Analysis
plugins.trac.wordpress.org · 2025-11-09

### Key Information Summary #### 1. Plugin Update - **Plugin Name**: Advanced Local Pickup for WooCommerce - **Version Update**: - 1.5.5 → 1.6.0 - Update Commit ID: [2983681] → [2986002] #### 2. Modif…

Read more
CVSS 5.3
WooCommerce Plugin CSRF Vulnerability: Missing Nonce Verification in Ajax.php
plugins.trac.wordpress.org · 2025-11-10

Key information is as follows: 1. **File Path**: - File path: `flexible-refund-and-return-order-for-woocommerce/trunk/vendor_prefixed/wpdesk/flexible-refunds-core/src/Integration/Ajax.php` 2. **File V…

Read more
QuickBox CE/Pro Authenticated RCE and Privilege Escalation Analysis (CVE-2020-13448/13694/13695)
s1gh.sh · 2025-11-10

### Vulnerability Overview - **CVE IDs**: CVE-2020-13448, CVE-2020-13694, CVE-2020-13695 - **Affected Versions**: - QuickBox CE /inc/config.php?id=88&servicestart=a;; ``` #### Privilege Escalation - *…

Read more
Cisco ASA/FTD/IOS Web Services RCE and Unauthorized Access Vulnerabilities (CVE-2025-20333)
tools.cisco.com · 2025-11-11

### Critical Vulnerability Information #### Vulnerability Overview - **Title**: Cisco Security Advisories - **Source**: Cisco Security #### Specific Vulnerability Details - **CVE-2025-20333** - **Desc…

Read more
CVSS 6.5
Ceph Multiple Vulnerabilities Summary (CVE-2019-10222 etc): RCE/Privilege Escalation/Info Disclosure
lists.debian.org · 2025-11-11

### Vulnerability Key Information - **CVE IDs**: - CVE-2019-10222, CVE-2020-1700, CVE-2020-1760, CVE-2020-10753, CVE-2020-12059, CVE-2020-25678, CVE-2020-27781, CVE-2021-3524, CVE-2021-3531, CVE-2021-…

Read more
CentOS Web Panel ajax_mod_security Command Injection RCE (CVE-2020-15421)
www.zerodayinitiative.com · 2025-11-13

### Key Information on the Vulnerability - **Date**: June 25th, 2020 - **Title**: (0Day) CentOS Web Panel ajax_mod_security check_ip Command Injection Remote Code Execution Vulnerability - **IDs**: - …

Read more
Crater Invoice CVE-2023-46865 Post-Auth Unrestricted File Upload RCE
notes.netbytesec.com · 2025-11-13

### Critical Vulnerability Information #### Vulnerability Overview - **CVE ID**: CVE-2023-46865 - **Title**: Post-Auth Unrestricted File Upload and Code Execution via IDAT in Crater Invoice - **Securi…

Read more
CVSS 6.3
SQL Injection in SourceCodester Vehicle Service Management System 1.0 (CVE-2023-2097)
vuldb.com · 2025-11-13

### Vulnerability Key Information Summary - **Vulnerability ID**: - VDB-226105 - CVE-2023-2097 - GCVE-100-226105 - **System and Version**: - SourceCodester Vehicle Service Management System 1.0 - **Vu…

Read more
Iceape Security Update: Multiple UAF/Integer Overflow RCE Vulnerabilities (CVE-2011-0083, CVE-2011-2371, etc.)
www.debian.org · 2025-11-14

- **Package**: Iceape - **Vulnerability Type**: Several - **Problem Type**: Remote - **Debian-specific**: No - **CVE IDs**: CVE-2011-0083, CVE-2011-0085, CVE-2011-2362, CVE-2011-2363, CVE-2011-2365, C…

Read more
Debian DSA-1671-1: iceweasel multiple vulnerabilities fix (RCE/SOP bypass)
www.debian.org · 2025-11-19

### Key Information - **Announcement ID**: DSA-1671-1 - **Date**: November 24, 2008 - **Affected Software**: iceweasel - **Vulnerability Type**: Remote #### Vulnerability Details - **CVE IDs**: - CVE-…

Read more
Advanced School Management System v1.0 Arbitrary File Upload RCE
github.com · 2025-11-20

Key vulnerability information obtained from the webpage screenshot: ### Vulnerability Overview **Name**: Advanced School Management System v1.0 Remote Code Execution (RCE) ### Vulnerability Details - …

Read more
AudioCodes Fax/IVR Appliance Unauthenticated File Upload RCE (CVE-2025-34328)
www.vulncheck.com · 2025-11-20

### Key Information - **Vulnerability Title**: AudioCodes Fax/IVR Appliance <= 2.6.23 Unauthenticated File Upload RCE via ajaxScript.php - **Severity**: CRITICAL - **Release Date**: September 19, 2025…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.