Security Intel Hub 2+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Filter

KEV only

Verified PoC

Clear filters

Sort: Latest
Sort: Premium

Critical

CVE-2025-24293: Rails Active Storage Command Injection via Image Processing

CVE-2025-24293 · github.com · 2026-01-31

activestorage >= 8.0, < 8.0.2.1 · activestorage >= 7.2, < 7.2.2.2 …

Low

Ruby on Rails ActionView escape_javascript XSS Vulnerability (CVE-2020-5267) and Patch

CVE-2020-5267 · github.com · 2025-11-12

ActionView in Ruby on Rails < 6.0.2.2 · ActionView in Ruby on Rails < 5.2.4.2

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.

Goal Reached Thanks to every supporter — we hit 100%!

Security Intel Hub 2+

CVE-2025-24293: Rails Active Storage Command Injection via Image Processing

Ruby on Rails ActionView escape_javascript XSS Vulnerability (CVE-2020-5267) and Patch