Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 231+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
Clear filters
WordPress Visual Sound Plugin CSRF Vulnerability (CVE-2024-8047) Advisory
wpscan.com · 2024-09-18

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Plugin Name**: Visual Sound (old) <= 1.06 2. **Vulnerability Type**: CSRF (Cross-Site Request …

Read more
WordPress Plugin infolinks Ad Wrap CSRF Vulnerability (CVE-2024-8044)
wpscan.com · 2024-09-18

From this webpage screenshot, the following key vulnerability information can be obtained: 1. **Plugin Name**: infolinks Ad Wrap <= 1.0.2 2. **Vulnerability Type**: CSRF (Cross-Site Request Forgery) 3…

Read more
Stored XSS in WordPress Plugin Accordion Image Menu <=3.1.3 (CVE-2024-8092)
wpscan.com · 2024-09-18

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Plugin Name**: Accordion Image Menu <= 3.1.3 2. **Vulnerability Type**: XSS (Cross-Site Script…

Read more
WordPress Special Feed Items <= 1.0.1 Stored XSS via CSRF (CVE-2024-8051)
wpscan.com · 2024-09-18

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Vulnerability Name**: Special Feed Items <= 1.0.1 - Stored XSS via CSRF 2. **Description**: Th…

Read more
WordPress Review Ratings <= 1.6 Stored XSS Vulnerability (CVE-2024-8052)
wpscan.com · 2024-09-18

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Plugin Name**: Review Ratings <= 1.6 2. **Vulnerability Type**: XSS (Cross-Site Scripting) 3. …

Read more
CVE-2024-8043: Vikinghammer Tweet Plugin CSRF and Stored XSS Vulnerability
wpscan.com · 2024-09-18

From this webpage screenshot, the following key vulnerability information can be obtained: 1. **Plugin Name**: Vikinghammer Tweet <= 0.2.4 2. **Vulnerability Type**: CSRF (Cross-Site Request Forgery) …

Read more
WordPress Posts Reminder CSRF Vulnerability (CVE-2024-8093) Advisory
wpscan.com · 2024-09-18

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Vulnerability Name**: `Posts reminder <= 0.20 - Settings Update via CSRF` 2. **Description**: …

Read more
WordPress Enhanced Search Box <= 0.6.1 CSRF Vulnerability (CVE-2024-8091)
wpscan.com · 2024-09-18

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Plugin Name**: `Enhanced Search Box ``` 6. **Affected Plugin**: `extendedsb` 7. **Reference Li…

Read more
Stored XSS in WordPress Plugin NinjaTeam Header Footer Custom Code <= 1.2
wpscan.com · 2024-09-14

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Plugin Name**: NinjaTeam Header Footer Custom Code <= 1.2 2. **Vulnerability Type**: Admin+ St…

Read more
Stored XSS in WordPress Plugin NinjaTeam Header Footer Custom Code < 1.2
wpscan.com · 2024-09-14

From this webpage screenshot, the following key vulnerability information can be obtained: 1. **Plugin Name**: NinjaTeam Header Footer Custom Code ` in the header code - Visit the website 5. **Affecte…

Read more
WordPress Carousel Slider <2.2.14 Stored XSS Vulnerability (CVE-2024-6866)
wpscan.com · 2024-09-14

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Plugin Name**: Carousel Slider < 2.2.14 2. **Vulnerability Type**: Editor+ Stored XSS 3. **Des…

Read more
WordPress AI Engine Plugin SQL Injection Vulnerability (CVE-2024-6723)
wpscan.com · 2024-09-14

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Plugin Name**: AI Engine < 2.4.8 2. **Vulnerability Type**: SQL Injection (SQLi) 3. **Affected…

Read more
WordPress Favicon Generator <2.1 Arbitrary File Upload via CSRF (CVE-2024-7863)
wpscan.com · 2024-09-14

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Plugin Name**: Favicon Generator < 2.1 2. **Vulnerability Type**: Arbitrary File Upload via CS…

Read more
WordPress Favicon Generator CSRF Arbitrary File Deletion (CVE-2024-7864)
wpscan.com · 2024-09-14

From this webpage screenshot, the following key vulnerability information can be obtained: 1. **Plugin Name**: Favicon Generator < 2.1 2. **Vulnerability Type**: Arbitrary File Deletion via CSRF 3. **…

Read more
WordPress My Sticky Bar <2.7.3 Admin Stored XSS Vulnerability
wpscan.com · 2024-09-14

From this webpage screenshot, the following key vulnerability information can be extracted: 1. **Plugin Name**: My Sticky Bar < 2.7.3 2. **Vulnerability Type**: Admin+ Stored XSS 3. **Description**: T…

Read more
WordPress MM-Breaking News CSRF to Stored XSS Vulnerability (CVE-2024-8054)
wpscan.com · 2024-09-13

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Plugin Name**: MM-Breaking News <= 0.7.9 2. **Vulnerability Type**: CSRF (Cross-Site Request F…

Read more
WordPress MM-Breaking News Reflected XSS Vulnerability (CVE-2024-8056)
wpscan.com · 2024-09-13

From this webpage screenshot, the following key vulnerability information can be obtained: 1. **Plugin Name**: MM-Breaking News alert(1)' ``` 5. **Affected Plugin**: mm-breaking-news 6. **CVE ID**: CV…

Read more
WordPress Music Request Manager <=1.3 Stored XSS Vulnerability (CVE-2024-6017)
wpscan.com · 2024-09-13

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Plugin Name**: Music Request Manager <= 1.3 2. **Vulnerability Type**: XSS (Cross-Site Scripti…

Read more
WordPress Music Request Manager Reflected XSS Vulnerability (CVE-2024-6018)
wpscan.com · 2024-09-13

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Plugin Name**: Music Request Manager <= 1.3 2. **Vulnerability Type**: Reflected Cross-Site Sc…

Read more
Unauthenticated Stored XSS in WordPress Music Request Manager Plugin (CVE-2024-6019)
wpscan.com · 2024-09-13

From this webpage screenshot, the following key vulnerability information can be extracted: 1. **Plugin Name**: Music Request Manager alert(1)"`. - View the page as an administrator and observe the XS…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.