Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 7+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
Clear filters
High
Unauthenticated Blind SSRF in PTT Server /loadimg Endpoint
github.com · 2026-04-02
PTT Server
Read more
Premium intel
High
HAPI Framework @Inject Redirect URL Prefix Match Flaw Leads to Credential Leakage
GHSA-3h42-73x7-g9m6 · github.com · 2026-04-02
hapi < 20.0.0
Read more
Premium intel
Critical
Unauthenticated SSRF via /loadImg bypassing startWith whitelist to steal auth tokens
github.com · 2026-04-02
org.hl7.fhir.core
Read more
CVSS 8.6
Saxon-HE XmlParsers XEE/XSS Vulnerability and Fix
github.com · 2024-11-11

From this webpage screenshot, we can extract the following key information about the vulnerability: 1. **Issue Description**: - Issue Title: `Insecure Transformer used in XmlParsers #1571` - Descripti…

Read more
CVSS 8.6
XXE Vulnerability in org.hl7.fhir.core XSLT Parsing (CVE-2024-52007)
github.com · 2024-11-11

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Vulnerability Name**: XXE vulnerability in XSLT parsing in `org.hl7.fhir.core` 2. **Severity**…

Read more
CVSS 8.6
XXE Vulnerability in org.hl7.fhir.publisher XSLT Transforms
github.com · 2024-09-08

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Vulnerability Name**: XXE vulnerability in XSLT transforms in `org.hl7.fhir.publisher` 2. **Se…

Read more
CVSS 8.6
XXE Vulnerability in XSLT Transforms of org.hl7.fhir.core (< 6.3.23)
github.com · 2024-09-07

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Vulnerability Name**: XXE vulnerability in XSLT transforms in `org.hl7.fhir.core` 2. **Severit…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.