Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1310 CNY

100%
Buy Us a Coffee

Security Intel Hub 14+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
Clear filters
Premium intel
Unknown
CubeCart v6 Smarty SSTI/RCE Vulnerability Fix (GHSA-wpjx-g989-qcg5)
GHSA-wpjx-g695-qc5j · github.com · 2026-05-22
CubeCart v6
Read more
Premium intel
Critical
Authenticated Arbitrary File Upload to RCE in CubeCart 6.x REST Files API
github.com · 2026-05-22
CubeCart 6.6.x
Read more
Premium intel
Critical
CubeCart Pre-Auth RCE: Unauthenticated Code Execution via Invoice Editor PHP Injection
github.com · 2026-05-22
CubeCart 6.6.x · CubeCart 6.7.2
Read more
High
CubeCart v6.x Authenticated Time-Based Blind SQL Injection Vulnerability and Exploitation
github.com · 2026-05-22
CubeCart v6.x.x
Read more
Premium intel
High
CubeCart Pre-Auth Password Reset Link Poisoning via HTTP Host Header (CVE-2026-4505)
CVE-2026-4505 · github.com · 2026-05-22
CubeCart <= 6.7.1
Read more
Medium
CubeCart v6 Unauthenticated Reflected XSS Vulnerability Details
github.com · 2026-05-22
CubeCart v6.x
Read more
Premium intel
Critical
SSTI in Smarty Templates leading to RCE (CVE-2026-6714)
CVE-2026-6714 · github.com · 2026-05-22
CubeCart 6.x
Read more
Medium
CubeCart v6.x Stored XSS Vulnerability Analysis with PoC
github.com · 2026-05-22
CubeCart v6.x
Read more
Premium intel
Critical
CubeCart Smarty SSTI to RCE via File Manager POC
github.com · 2026-05-22
CubeCart 6.x
Read more
Critical
Authenticated SQL Injection in CubeCart v6 Admin Orders Listing (sort[])
github.com · 2026-05-22
CubeCart v6 (versions up to 6.6.3)
Read more
High
CubeCart CVE-2025-59412 XSS Vulnerability Fix Analysis
CVE-2025-59412 · github.com · 2025-09-24
CubeCart v6
Read more
High
CubeCart CVE-2025-59411 XSS Vulnerability Fix Analysis
CVE-2025-59411 · github.com · 2025-09-24
CubeCart v6
Read more
Medium
CubeCart <=6.5.10 Stored/Reflected HTML Injection in Contact Form
github.com · 2025-09-24
CubeCart <=6.5.10
Read more
Medium
CubeCart Contact Form Logic Flaw: Unauthorized Newsletter Unsubscription via force_unsubscribe
github.com · 2025-09-24
CubeCart <=6.5.10
Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.