Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 2196+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
Clear filters
Unknown
libsndfile Multiple Signed Integer Overflow Vulnerabilities
github.com · 2026-04-30

# UndefinedBehaviorSanitizer: multiple signed integer overflow #833 ## Vulnerability Overview Multiple signed integer overflow vulnerabilities were discovered in the `libsndfile` codebase. These vulne…

Read more
High
TOTOLINK A3002RUV3.0 boa Stack Overflow Vulnerability Analysis
github.com · 2026-04-29
TOTOLINK A3002RUV3.0 <= V3.0.0-B20220304.1804
Read more
Medium
CVE-2026-37750: Reflected XSS in School Management System 1.0 register.php
CVE-2026-37750 · github.com · 2026-04-29
School Management System 1.0
Read more
High
SQL Injection in school-management-system register.php
github.com · 2026-04-29
school-management-system
Read more
Critical
O2OA NodeAgent Unauthenticated RCE via Weak Auth
github.com · 2026-04-29
o2oa <=v10.0
Read more
High
Jeecg Boot <= v3.9.1 SQL Injection Vulnerability and POC
github.com · 2026-04-29
JeecgBoot <= v3.9.1
Read more
High
HTMLy v3.1.1 Stored XSS Leading to Admin Takeover (CVE-2026-38949)
CVE-2026-38949 · github.com · 2026-04-29
HTMLy v3.1.1
Read more
Unknown
JeecgBoot SQL Injection Vulnerability Fix Details
github.com · 2026-04-29
JeecgBoot
Read more
High
Authenticated SSRF in O2OA via Unrestricted File URL Fetching
github.com · 2026-04-29
O2OA <= 10.0
Read more
Unknown
WireGuard Web UI Host/Node Management Unauthenticated Access Fix
github.com · 2026-04-29

### Vulnerability Overview This vulnerability involves fixes to the host authorization function, specifically checking the validity of tokens. The fix aims to enhance system security and prevent unaut…

Read more
High
FUEL CMS 1.5.2 Stored XSS Leading to Admin Takeover (CVE-2026-38948)
CVE-2026-38948 · github.com · 2026-04-29
FUEL CMS 1.5.2
Read more
Critical
CVE-2025-67223: Aranda Service Desk Information Disclosure Vulnerability with PoC
CVE-2025-67223 · github.com · 2026-04-29
Aranda Service Desk < 8.3.12
Read more
Unknown
WebFileSys 2.31.1 Reflected XSS Vulnerability (CVE-2026-29971) with POC
CVE-2026-29971 · github.com · 2026-04-28
WebFileSys 2.31.1
Read more
Medium
MERCURY MIPC252W RTSP Auth State Machine DoS Vulnerability (CVE-2024-XXXX)
CVE-2024-XXXX · github.com · 2026-04-28
MIPC252W 1.0.5 Build 230306 Rel.79931n
Read more
Low
MERCURY IPC252W RTSP Authentication Bypass Vulnerability (CVE-2024-XXXX) with POC
CVE-2024-XXXX · github.com · 2026-04-28
MERCURY IPC252W 1.0.5 Build 230306 Rel.79931n
Read more
High
Tenda AC18 Router Command Injection Vulnerability Analysis
CVE-2024-... · github.com · 2026-04-28
Tenda AC18 V15.03.05.05_multi
Read more
Medium
MERCURY MIPC252W RTSP Null Pointer Dereference DoS Vulnerability with PoC
CVE_REQUESTS_references/MERCURY_MIPC252W/MERCURY_MIPC252W_1th · github.com · 2026-04-28
MERCURY MIPC252W 1.0.5 Build 230306 Rel.79931n
Read more
Medium
MERCURY MIPC252W IPCAM RTSP DoS Vulnerability (CVE-2024-XXXX) with PoC
CVE-2024-XXXX · github.com · 2026-04-28
MERCURY MIPC252W 1.0.5 Build 230306 Rel.79931n
Read more
High
vLLM Base Scheduler KV Cache Corruption Vulnerability Analysis
github.com · 2026-04-28
vLLM (base scheduler, without prefix caching)
Read more
High
vLLM KV Block Corruption Causing Non-Deterministic Output at Temperature=0
github.com · 2026-04-28
vllm
Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.