Security Intel Hub 2+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Filter

KEV only

Verified PoC

Clear filters

Sort: Latest
Sort: Premium

High

Cross-Portfolio Privilege Escalation in manage.get.gov (Missing Portfolio Validation)

github.com · 2026-05-08

manage.get.gov < v1.176.0

CVSS 5.4

Thorium Security Fixes: LDAP Injection, Path Traversal, DoS, and Token Rotation

github.com · 2025-09-19

### Critical Vulnerability Information #### 1. Result File Path Normalization - **Issue**: The API does not validate whether the uploaded result file path is an absolute path or contains any '..' comp…

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.

Goal Reached Thanks to every supporter — we hit 100%!

Security Intel Hub 2+

Cross-Portfolio Privilege Escalation in manage.get.gov (Missing Portfolio Validation)

Thorium Security Fixes: LDAP Injection, Path Traversal, DoS, and Token Rotation