Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 36+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
Clear filters
Medium
Discourse Hidden Tag Visibility Bypass Vulnerability (CVE-2026-27481)
CVE-2026-27481 · github.com · 2026-04-04
>= 0 · >= 2026.2.0-latest …
Read more
Low
Discourse CVE-2026-34847 Information Disclosure on Public Invite Pages
CVE-2026-34847 · github.com · 2026-04-04
>= 0 · >= 2026.2.0-latest …
Read more
High
Discourse Shared Topic Access Control Bypass Fix
github.com · 2026-04-02
Discourse
Read more
Unknown
GitLab DiscourseImporter DoS Vulnerability Fix
github.com · 2026-04-02
gitlab-rails
Read more
High
Discourse Category Description Update IDOR Vulnerability Fix
github.com · 2026-04-02
Discourse < 05e3da2
Read more
Medium
Discourse Group Visibility Bypass Fix
github.com · 2026-04-02
Discourse
Read more
Medium
Discourse Post-Level Authorization Bypass Leading to Metadata Disclosure Fix
github.com · 2026-04-02
Discourse
Read more
Medium
Discourse shared_conversations Plugin Stored XSS Fix
github.com · 2026-04-02
Discourse shared_conversations plugin
Read more
High
GitLab CVE-2024-38238 RCE Vulnerability Analysis and Exploitation
CVE-2024-38238 · github.com · 2026-04-02
GitLab < 16.9.0 · gitlab-ruby < 16.9.0
Read more
High
Prometheus Arbitrary File Read Vulnerability Fix in Report Export
github.com · 2026-04-02

# Prometheus Arbitrary File Read Vulnerability Fix Summary ## Vulnerability Overview * **Vulnerability Type**: Arbitrary File Read / Path Traversal. * **Description**: The `report` functionality in Pr…

Read more
High
CVE-2024-45464 django-cors-headers CORS Misconfiguration Vulnerability Analysis
CVE-2024-45464 · github.com · 2026-04-02
django-cors-headers < 3.14.0
Read more
High
Discourse CVE-2024-38178 Privilege Escalation via Category Permissions Fix
CVE-2024-38178 · github.com · 2026-04-02
Discourse < 3.2.0
Read more
Unknown
Discourse Admin IDOR Vulnerability Fix Analysis
github.com · 2026-04-02
Discourse
Read more
Medium
Discourse Open Redirect via SSO Cookie 'sso_destination_url
github.com · 2026-04-02
Discourse <= 2020.2-latest · Discourse <= 2020.3-latest
Read more
High
Discourse discourse-subscriptions Privilege Escalation via Self-Grant (CVE-2024-30074)
CVE-2024-30074 · github.com · 2026-04-02
discourse-subscriptions >= 0 · discourse-subscriptions >= 2026.2.0-latest …
Read more
Medium
Discourse CVE-2026-12619: Unauthorized Poll Manipulation in Private Categories
CVE-2026-12619 · github.com · 2026-04-02
Discourse >= 0 · Discourse >= 2026.2.0-latest …
Read more
High
Discourse discourse-subscriptions Plugin Multisite Stripe API Key Disclosure (CVE-2024-39731)
CVE-2024-39731 · github.com · 2026-04-02
>= 0 · >= 2026.2.0-latest …
Read more
Medium
Discourse SSRF in Group SMTP Test Endpoint (CVE-2026-39185)
CVE-2026-39185 · github.com · 2026-04-02
>= 0 · >= 2026.2.0 latest …
Read more
High
Discourse CVE-2026-32143: Moderators can export admin-only reports via permission bypass
CVE-2026-32143 · github.com · 2026-04-02
Discourse >= 0 · Discourse >= 2026.2.0-latest …
Read more
Medium
Discourse Authorization Bypass in Oneboxer via User-Controlled Category ID
github.com · 2026-04-02
Discourse >= 0 · Discourse >= 2026.2.0-latest …
Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.