Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 8+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
Clear filters
Low
curl wolfSSH SFTP Host Verification Bypass (CVE-2025-10966)
CVE-2025-10966 · curl.se · 2025-11-09
curl 7.69.0 - 8.16.0
Read more
curl CVE-2025-10148: Predictable WebSocket Mask Leading to Cache Poisoning
curl.se · 2025-09-13

### Critical Vulnerability Information - **Vulnerability ID**: CURL-CVE-2025-10148 - **Aliases**: CVE-2025-10148 - **Summary**: Predictable WebSocket Masking - **Last Modified**: 2025-09-10T14:23:09.0…

Read more
curl wolfSSL QUIC Certificate Pinning Bypass (CVE-2025-5025)
curl.se · 2025-05-29

### Key Information #### Vulnerability Overview - **CVE ID**: CVE-2025-5025 - **Vulnerability Name**: No QUIC certificate pinning with wolfSSL - **Reward Amount**: 2540 USD #### Vulnerability Details …

Read more
curl CVE-2025-4947 QUIC Certificate Verification Bypass
curl.se · 2025-05-29

### Critical Vulnerability Information - **Vulnerability ID**: CURL-CVE-2025-4947 - **Aliases**: CVE-2025-4947 - **Summary**: QUIC certificate validation skip issue related to wolfSSL - **Modified Tim…

Read more
curl wolfSSL QUIC Certificate Pinning Bypass (CVE-2025-5025)
curl.se · 2025-05-29

### Critical Vulnerability Information - **Vulnerability ID**: CURL-CVE-2025-5025 - **Aliases**: CVE-2025-5025 - **Summary**: No QUIC certificate pinning with wolfSSL - **Modified Time**: 2025-05-28T0…

Read more
curl CVE-2024-9681 HSTS subdomain cache overwrite vulnerability
curl.se · 2024-11-09

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Vulnerability ID**: CURL-CVE-2024-9681 2. **Vulnerability Name**: HSTS subdomain overwrites pa…

Read more
curl CVE-2024-9681 HSTS subdomain overwrites parent cache entry
curl.se · 2024-11-09

### Key Information #### Vulnerability Description - **CVE ID**: CVE-2024-9681 - **Vulnerability Name**: HSTS subdomain overwrites parent cache entry - **Description**: When curl is instructed to use …

Read more
curl CVE-2024-8096 OCSP stapling bypass improper certificate validation
curl.se · 2024-09-12

From this webpage screenshot, the following key vulnerability information can be obtained: 1. **Vulnerability ID**: CURL-CVE-2024-8096 2. **Vulnerability Name**: OCSP stapling bypass with GnuTLS 3. **…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.