Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 20+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
Clear filters
Critical
Microsoft Exchange Server CVE-2021-40527 Remote Code Execution Vulnerability Advisory
CVE-2021-40527 · github.com · 2026-04-02
Microsoft Exchange Server 2013 · Microsoft Exchange Server 2016 …
Read more
High
GitLab CVE-2024-9380 Path Traversal Vulnerability Advisory
CVE-2024-9380 · github.com · 2026-04-02
GitLab 16.0.0 · GitLab 16.1.0 …
Read more
High
libwebp CVE-2021-40775 RCE Exploit Code and Remediation
CVE-2021-40775 · github.com · 2026-04-02
libwebp < 1.2.0
Read more
Unknown
aiohttp GHSA-766666 Fix request header validation to align with RFC 9110
GHSA-766666 · github.com · 2026-04-02
aiohttp
Read more
High
aiohttp fix: drop malicious Host/Origin headers on redirect to prevent SSRF
github.com · 2026-04-02
aiohttp
Read more
Medium
aiohttp HTTP Header Injection Vulnerability Fix
github.com · 2026-04-02
aiohttp
Read more
Critical
GitLab Repository.blob Command Injection Fix
github.com · 2026-04-02

Based on the provided webpage screenshot, this is a GitLab code commit (Commit) page showcasing a patch that fixes a vulnerability. Below is a summary of the key information: **Vulnerability Overview*…

Read more
High
aiohttp fix for path traversal in static files (CWE-22)
github.com · 2026-04-02
aiohttp < 3.13
Read more
Low
aiohttp C Parser Header Injection via Null Bytes (CVE-2026-34520)
CVE-2026-34520 · github.com · 2026-04-02
aiohttp <=3.13.3
Read more
Low
aiohttp CVE-2020-34825: Duplicate Host Header Allows Reverse Proxy Bypass
CVE-2020-34825 · github.com · 2026-04-02
aiohttp <=3.13.3
Read more
Low
aiohttp Cookie and Proxy-Authorization Header Leak on Cross-Origin Redirect (CVE-2020-34518)
CVE-2020-34518 · github.com · 2026-04-02
aiohttp <= 3.13.3
Read more
Medium
aihttp CVE-2026-14817 Memory DoS via Late Size Enforcement
CVE-2026-14817 · github.com · 2026-04-02
aiohttp <=3.13.3
Read more
Low
aiohttp Multipart Header Size Bypass DoS Vulnerability (CVE-2026-34516)
CVE-2026-34516 · github.com · 2026-04-02
aiohttp <=3.13.3
Read more
Low
aiohttp TCPConnector Unbounded DNS Cache DoS Vulnerability (CVE-2026-34813)
CVE-2026-34813 · github.com · 2026-04-02
aiohttp <=3.13.3
Read more
Low
aihttp CVE-2020-3419 HTTP Response Splitting via Reason Phrase
CVE-2020-3419 · github.com · 2026-04-02
aiohttp <=3.13.3
Read more
Low
aiolhttp CVE-2025-34514 CRLF Injection in Multipart Content Type
CVE-2025-34514 · github.com · 2026-04-02
aiohttp<=3.13.3
Read more
Medium
aiohttp CVE-2020-22815: Uncapped Memory Usage via Headers/Trailers
CVE-2020-22815 · github.com · 2026-04-02
aiohttp <=3.13.3
Read more
Low
aiohttp Static Resource Handler NTLMv2 Credential Theft via SSRF (CVE-2026-34115)
CVE-2026-34115 · github.com · 2026-04-02
aiohttp <3.13.3
Read more
CVE-2025-62611: PyMySQL Arbitrary File Read via Rogue MySQL Server PoC
github.com · 2025-10-23

### Key Information #### Vulnerability Overview - **Vulnerability Name**: Arbitrary Client File Access via Malicious MySQL Server - **CVE ID**: CVE-2025-62611 - **CVSS v4 Base Metrics**: - **Severity*…

Read more
pycares CVE-2025-48145 Use-After-Free Vulnerability Advisory
github.com · 2025-07-06

### Key Information #### Vulnerability Overview - **Vulnerability Type**: Use-After-Free Vulnerability - **Affected Versions**: 4.8.0 - **Fixed Version**: 4.9.0 - **Severity**: Moderate - **CVE ID**: …

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.