Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 3+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
Clear filters
Critical
Actual Sync Server Privilege Escalation via change-password Endpoint (Pre-Auth/IDOR)
github.com · 2026-04-24
@actual-app/sync-server < 26.3.0
Read more
High
Actual Budget CVE-2026-27638: Unauthorized File Access in Multi-User Mode
CVE-2026-27638 · github.com · 2026-02-27
actualbudget <= 26.2.0
Read more
Critical
ActualBudget Missing Auth on SimpleFIN/PluggyAI Endpoints (CVE-2026-27584)
GHSA-m2cq-xjgm-f668 · github.com · 2026-02-25
ActualBudget <= 26.2.0
Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.