Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 14+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
Clear filters
Premium intel
Critical
FastGPT Unauthenticated RCE via code-server Component
github.com · 2026-05-09
FastGPT v4.14.13 to v4.14.18
Read more
Medium
FastGPT DNS Rebinding TOCTOU Bypass Leading to SSRF Vulnerability Analysis
github.com · 2026-05-09
@fastgpt/service <= 4.14.11
Read more
High
FastGPT SSRF Bypass Cloud Metadata Endpoint via URL Encoding
CVE-2026-42345 · github.com · 2026-05-09
@fastgpt/service <= 4.14.11
Read more
Medium
CVE-2024-42143: FastGPT code-sandbox Uncontrolled Resource Consumption DoS PoC
CVE-2024-42143 · github.com · 2026-05-09
FastGPT <= 4.14.13
Read more
High
FastGPT/Laf SSRF Vulnerability (CWE-918) Analysis and POC
github.com · 2026-05-09
FastGPT <= 4.14.16
Read more
Medium
FastGPT SSRF Vulnerability in MCP Tool URL Validation
github.com · 2026-05-09
FastGPT
Read more
High
FastGPT MCP Tool URL SSRF Vulnerability Fix
github.com · 2026-05-09
FastGPT
Read more
Medium
FastGPT Stored SSRF in MCP Tool URL Handling
github.com · 2026-05-09
FastGPT <= 4.14.16
Read more
Premium intel
Critical
FastGPT NoSQL Injection in loginByPassword leads to Authentication Bypass
github.com · 2026-04-18
FastGPT <= 4.14.8.3
Read more
Premium intel
Unknown
Fix Path Traversal in HTTP Request Validation (Go)
github.com · 2026-04-02
FastGPT
Read more
High
FastGPT MCP Tools Endpoint SSRF Vulnerability Analysis
github.com · 2026-04-02
FastGPT
Read more
Premium intel
Critical
Unauthenticated SSRF in GoJSF httpTools Endpoint Leading to API Key Theft
github.com · 2026-04-02
FastGPT
Read more
Fastgpt <4.9.12 Open Redirect and DOM-based XSS via LastRoute Parameter
github.com · 2025-07-06

### Critical Vulnerability Information #### Vulnerability Title LastRoute Parameter on Login Page Vulnerable to Open Redirect and DOM-based XSS #### Affected Versions - Affected Versions: <4.9.12 - Fi…

Read more
CVSS 6.3
Python Sandbox Escape Vulnerability CVE-2025-49131 Analysis and Exploitation
github.com · 2025-06-10

### Critical Vulnerability Information #### Vulnerability Description - **Vulnerability Type**: Python Sandbox Bypass - **Affected Versions**: <4.9.11 - **Fixed Version**: 4.9.11 - **Severity**: Mediu…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.