Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 5+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
Clear filters
Premium intel
High
Kanboard <=1.2.49 Admin Auth Bypass Leading to RCE via Plugin Installer
github.com · 2026-02-12
Kanboard <= 1.2.49
Read more
Premium intel
CVSS 9.1
Kanboard <=1.2.46 Unsafe Deserialization RCE (CVE-2020-5070)
github.com · 2025-08-13

### Key Information #### Vulnerability Type - **Authenticated Admin Remote Code Execution via Unsafe Deserialization of Events** #### Affected Versions - **Affected versions**: <= 1.2.46 - **Patched v…

Read more
CVSS 8.1
Kanboard Password Reset Poisoning via Host Header Injection (<=1.2.45)
github.com · 2025-07-06

### Key Information #### Vulnerability Name Password Reset Poisoning via Host Header Injection #### Affected Versions - Affected Versions: <= 1.2.45 - Fixed Version: 1.2.46 #### Description Kanboard's…

Read more
CVSS 5.3
Kanboard Username Enumeration and IP Spoofing Bypass Vulnerability
github.com · 2025-07-06

### Critical Vulnerability Information #### Vulnerability Type - **Username Enumeration**: Exploited via login behavior and CAPTCHA behavior. - **IP Spoofing / Brute Force Protection Bypass**: Exploit…

Read more
Kanboard CVE-2025-46825 Stored XSS Vulnerability Analysis
github.com · 2025-05-14

### Critical Vulnerability Information #### Vulnerability Overview - **Type**: Stored Cross-Site Scripting (XSS) - **Affected Version**: 1.2.44 - **Fixed Version**: 1.2.45 - **CVE ID**: CVE-2025-46825…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.