Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 13+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
Clear filters
High
Weblate HTML Injection Vulnerability Fix and Test Code Analysis
github.com · 2026-05-08
Weblate
Read more
Medium
wlc HTML Output Unescaped XSS Vulnerability Fix
github.com · 2026-05-08
wlc
Read more
Medium
Weblate Password Reset Triggers Unintended API Token Reset Vulnerability Analysis
github.com · 2026-05-07
Weblate 3.7.1
Read more
Medium
Weblate Project Backup Restore SSRF Vulnerability Analysis
github.com · 2026-05-07
Weblate 5.17.1 and earlier
Read more
High
Weblate Component File Path Validation Vulnerability Analysis
github.com · 2026-04-18
Weblate
Read more
High
Weblate Asset URL Redirect Validation Bypass Analysis
github.com · 2026-04-18
Weblate (asset URL validation)
Read more
High
Weblate GroupSerializer Privilege Escalation via defining_project Field
github.com · 2026-04-18
Weblate
Read more
Medium
Weblate API Unauthorized Access to Pending Task Metadata Vulnerability
github.com · 2026-04-18
Weblate
Read more
High
Weblate SSRF Vulnerability Analysis and Fix Guide
github.com · 2026-04-18
Weblate < 5.5
Read more
Medium
Weblate Translation Memory API Improper Access Control Fix
NixOS/nixpkgs#510520 · github.com · 2026-04-18
Weblate <= 5.17
Read more
High
Weblate Symlink Validation Bypass Leading to Path Traversal Fix
github.com · 2026-04-18
Weblate < commit e30dbcb
Read more
Medium
Weblate SSH Key Management Input Validation Enhancement
github.com · 2026-02-21
Weblate (versions prior to commit 78773cc)
Read more
Weblate <5.12 Audit Log IP Address Exposure via Email (CVE-2025-49134)
github.com · 2025-06-18

### Critical Vulnerability Information #### Vulnerability Title - **Exposure of personal IP address via e-mail** #### Affected Versions - **Affected versions**: <5.12 #### Patched Versions - **Patched…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.