Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1336 CNY

100%

Security Intel Hub 53+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
Clear filters
High
Craft CMS Mass Duplicate Element ID Overwrite Vulnerability (CVE-2024-50281)
CVE-2024-50281 · github.com · 2026-07-03
Craft CMS >= 5.7.0, < 5.9.21
Read more
High
Craft CMS AssetsController Force Move Folder Deletes Directory Without Permission
GHSA-3w32-23wj-rgx3 · github.com · 2026-07-03
Craft CMS >= 5.0.0-RC1, < 5.9.21 · Craft CMS >= 4.0.0-RC1, < 4.17.14
Read more
High
CraftCMS EntriesController Privilege Escalation Fix (GHSA)
GHSA-43cq-c2gq-pfpw · github.com · 2026-07-02
craftcms/cms 6.0.0-alpha.9 · craftcms/cms 5.9.21
Read more
High
Craft CMS 4.x Authorization Bypass Patch Analysis
github.com · 2026-07-02
Craft CMS 4.x
Read more
Medium
Craft CMS XSS Fix: Env Var Injection via aria-label in ElementTableSorter
GHSA-xrqc-p465-2xvg · github.com · 2026-07-02
craftcms/cms < 5.9.22
Read more
High
CraftCMS CraftSupport DOM XSS via GitHub Issue Title (CVE-2026-55790)
CVE-2026-55790 · github.com · 2026-07-02
craftcms/cms >= 5.0.0RC1, < 5.9.22 · craftcms/cms >= 4.0.0RC1, < 4.17.15
Read more
Medium
CVE-2020-55792 Craft CMS Server-Side File Read via dataUri Bypass to .env
CVE-2020-55792 · github.com · 2026-07-02
Craft CMS 4.x · Craft CMS 5.x
Read more
High
Craft CMS Pre-Auth Bypass via Authorization Flaw in entries/move-to-section (CVE-2024-50280)
CVE-2024-50280 · github.com · 2026-07-02
craftcms/cms >= 5.0.0-RC1, <= 5.9.20
Read more
High
Craft CMS AssetsController Missing Peer Permission Check Vulnerability Advisory
GHSA-7h62-6v23-v8tm · github.com · 2026-07-02
craftcms/cms >= 5.0.0-RC1, < 5.9.22 · craftcms/cms >= 4.0.0-RC1, < 4.17.15
Read more
Critical
Craft CMS SSRF and Cache Poisoning leading to RCE (CVE-2024-50791)
CVE-2024-50791 · github.com · 2026-07-02
craftcms/cms >= 5.0.0-RC1, < 5.10 · craftcms/cms >= 4.0.0-RC1, < 4.18
Read more
High
CraftCMS CMS Authorization Bypass in EntriesController (GHSA-qq2c-2q8j-h27)
GHSA-qq2c-2q8j-h27 · github.com · 2026-07-02
craftcms/cms >= 5.0.0-RC1, <= 5.9.21
Read more
Medium
Stored XSS via Structure Entry Title in Craft CMS CVE-2026-55783
CVE-2026-55783 · github.com · 2026-07-02
craftcms/cms >= 5.0.0-RC1, < 5.9.22
Read more
High
CraftCMS Path Traversal Vulnerability in Assets.php and Fix Analysis
GHSA-472v-j2g4-g9h2 · github.com · 2026-06-27
craftcms/cms 6.0.0-alpha.9 to 4.17.7
Read more
Medium
Craft CMS Multiple Stored XSS Vulnerabilities with POC
github.com · 2026-06-27
Craft CMS >= 5.0.0-RC1, < 5.0.0-beta.1 · Craft CMS >= 4.0.0-RC1, < 4.17.0-beta.1
Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.