Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 16+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
Clear filters
High
File Browser Hook Runner Command Injection Vulnerability (RCE) with PoC
github.com · 2026-04-08
Filebrowser >= 2.X
Read more
High
filebrowser Proxy Auth Auto-Provisioned Users Inherit Execute Permission
github.com · 2026-04-08
filebrowser <= 2.6.2
Read more
High
Seafile <=2.62.2 Permission Revocation Bypass via Public Share Download Handler
github.com · 2026-04-08
filebrowser <= 2.62.2
Read more
Medium
Filebrowser <=2.62.2 /api/resources Permission Bypass via Missing Download Check
github.com · 2026-04-08
github.com/filebrowser/filebrowser/v2 <= 2.62.2
Read more
High
CVE-2026-35025: Filebrowser Path Prefix Matching Bypass Leads to Unauthorized Access
CVE-2026-35025 · github.com · 2026-04-08
filebrowser <= 2.6.2
Read more
High
Stored XSS in WordPress epub Plugin via Crafted EPUB File
github.com · 2026-04-02
epub plugin 1.0.0
Read more
Premium intel
Medium
Feedbook v2.62.2 Fixes Self-Signed Certificate Reverse Permit Vulnerability
github.com · 2026-04-02
filebrowser < 2.62.2
Read more
Premium intel
High
Argo Workflows Signup Default Permissions Execution Vulnerability (CVSS 8.8)
github.com · 2026-04-02
filebrowser >= 0.6.0
Read more
High
Stored XSS via textParameter Branding Injection with PoC
github.com · 2026-04-02

# Stored Cross-Site Scripting via textParameter Branding Injection ## Vulnerability Overview This vulnerability allows an attacker to inject malicious scripts into the `textParameter` parameter, enabl…

Read more
High
Filebrowser CVE-2026-25889 Authentication Bypass via Case Sensitivity Flaw
CVE-2026-25889 · github.com · 2026-02-10
Filebrowser <= 2.57.0
Read more
High
FileBrowser IDOR Vulnerability in Share Deletion (CVE-2025-64523)
GHSA-6cqf-cfhv-659g · github.com · 2025-11-14
FileBrowser <= 2.45.0
Read more
CVSS 4.5
Filebrowser <=2.33.8 JWT Information Disclosure via URL (CVE-2025-52901)
github.com · 2025-08-07

### Critical Vulnerability Information #### Vulnerability Overview - **Identifier**: SBA-ADV-20250327-03 - **Vulnerability Type**: Information Disclosure - **Software/Product Name**: Filebrowser - **V…

Read more
CVSS 8.1
Filebrowser CVE-2021-32003 Arbitrary Code Execution via Shell Command Bypass
github.com · 2025-07-06

### Key Information #### Vulnerability Overview - **Vulnerability Name**: Shell Commands Can Spawn Other Commands - **CVE ID**: CVE-2021-32003 - **Severity**: High (CVSS v3.0: 8.1/10) - **Affected Ver…

Read more
CVSS 7.6
File Browser <=2.33.6 Stored XSS via Markdown Preview
github.com · 2025-07-06

### Critical Vulnerability Information #### Vulnerability Type - **Stored Cross-Site Scripting (XSS)** #### Affected Versions - **Affected Versions**: foo bar ``` The bold and italic text will be rend…

Read more
CVSS 5.9
Insecure Password Handling: Weak Passwords, Default Credentials, and Brute Force (CVE)
github.com · 2025-07-06

### Key Information #### Vulnerability Name - Insecure Password Handling #### Affected Versions - <= 2.34.0 #### Fixed Version - 2.34.1 #### Vulnerability Description - **Issue 1**: Users can set weak…

Read more
CVSS 8.1
Filebrowser CVE-2020-52504 Command Execution Bypassing Scope Restrictions
github.com · 2025-07-06

### Critical Vulnerability Information #### Vulnerability Overview - **Vulnerability Name**: Command Execution not Limited to Scope - **CVE ID**: CVE-2020-52504 - **CVSS v3 Base Metrics**: - Severity:…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.