Security Intel Hub 6+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Filter

KEV only

Verified PoC

Clear filters

High

Stored XSS in UI/UX Pro Max Skill (uipro-cli) via JSON Input

#247 · github.com · 2026-05-02

UI/UX Pro Max Skill (uipro-cli) <= v2.5.0

Critical

Code Injection RCE in UI/UX Pro Max Skill (uipro-cli) via Tailwind Config Generator

github.com · 2026-05-02

UI/UX Pro Max Skill (uipro-cli) <= v2.5.0

Critical

Code Injection RCE in tailwind_config_gen.py _format_plugins

github.com · 2026-05-02

ui-ux-pro-max-skill

High

Auth Bypass & Default-Allow RBAC Vulnerability Fix

github.com · 2026-05-01

goclaw < latest_fix

High

nextlevelbuilder/goclaw Auth Bypass and RBAC Default-Permit Vulnerability Analysis

github.com · 2026-05-01

nextlevelbuilder/goclaw

Critical

GoClaw Unauthenticated RCE via Heartbeat Command Injection

GHSA-866 · github.com · 2026-05-01

GoClaw Gateway/Connect · GoClaw Authorization/RBAC …

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.

Goal Reached Thanks to every supporter — we hit 100%!

Security Intel Hub 6+

Stored XSS in UI/UX Pro Max Skill (uipro-cli) via JSON Input

Code Injection RCE in UI/UX Pro Max Skill (uipro-cli) via Tailwind Config Generator

Code Injection RCE in tailwind_config_gen.py _format_plugins

Auth Bypass & Default-Allow RBAC Vulnerability Fix

nextlevelbuilder/goclaw Auth Bypass and RBAC Default-Permit Vulnerability Analysis

GoClaw Unauthenticated RCE via Heartbeat Command Injection