Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 11+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
Clear filters
High
Nix Fixed-Output Derivations File Descriptor Leak Leading to Store Path Tampering Fix
github.com · 2026-04-09
Nix < latest commit 4bc5a35
Read more
High
NixOS Build Sandbox File Descriptor Leak Allows Store Path Tampering Fix
github.com · 2026-04-09
NixOS < 2.25
Read more
Critical
Nix Sandbox Escape Vulnerability Fix Analysis
github.com · 2026-04-09
NixOS/nix
Read more
Medium
NixOS programs.captive-browser Local Privilege Escalation (CVE-2026-25740)
CVE-2026-25740 · github.com · 2026-02-10
NixOS <= 25.05
Read more
Premium intel
Medium
NixOS Odoo: Disable database manager by default for security
github.com · 2026-02-03
Odoo
Read more
Premium intel
Critical
Odoo Database Manager Unauthenticated Access Vulnerability (CVE-2026-25137)
CVE-2026-25137 · github.com · 2026-02-03
NixOS/nixpkgs 21.11 · NixOS/nixpkgs 22.05 …
Read more
High
NixOS Tandoor Recipes Module SQLite Database Leak Vulnerability (CVE-2026-23838)
CVE-2026-23838 · github.com · 2026-01-20
Tandoor Recipes NixOS module
Read more
High
NixOS Tandoor Recipes Default Config Exposes SQLite DB via HTTP (CVE-2026-23838)
CVE-2026-23838 · github.com · 2026-01-20
NixOS 23.05 · NixOS 23.11 …
Read more
Hydra CVE-2025-54864 Missing Authentication Vulnerability Advisory
github.com · 2025-08-13

### Critical Vulnerability Information #### Vulnerability Overview - **Title**: Missing authentication when triggering evaluations through GitHub and Gitea plugins - **Severity**: Moderate (CVSS v4: 6…

Read more
CVSS 7.9
Nix 2.30.0 macOS Privilege Escalation via Build User Dropping Failure (CVE-2025-53819)
github.com · 2025-07-15

### Critical Vulnerability Information #### Vulnerability Title - **Privilege dropping to build user broke for macOS** #### Affected Versions - **Affected versions**: 2.30.0 - **Patched versions**: 2.…

Read more
CVSS 9.1
Nix Unsafe NAR Unpacking Arbitrary File Write (CVE-2024-45593)
github.com · 2024-09-11

From this webpage screenshot, the following key vulnerability information can be obtained: 1. **Vulnerability Name**: Unsafe NAR unpacking 2. **Severity**: Critical (9.1/10) 3. **Publisher**: edolstra…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.