Security Intel Hub 6+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Filter

KEV only

Verified PoC

Clear filters

High

NocoBase plugin-workflow-request SSRF Vulnerability Fix

github.com · 2026-04-18

nocobase plugin-workflow-request

High

NocoBase SSRF Vulnerability (CVE-2025-40346) Analysis and Fix

CVE-2025-40346 · github.com · 2026-04-18

@nocobase/plugin-workflow-request <= 1.7.0

High

NocoBase plugin-workflow-javascript JavaScript VM Sandbox Escape (CVE Draft)

null · github.com · 2026-04-18

@nocobase/plugin-workflow-javascript < unspecified version · nocobase/nocobase:2.0.23-full

Critical

Directus workflow-sql Template Variable SQL Injection (CVSS 9.8)

github.com · 2026-04-03

directus-workflow-sql < 2.0.29

High

n8n v2.0.30 Security Update: SQL Node Vulnerability Fix and JS Engine Isolation

github.com · 2026-04-03

n8n < 2.0.30

Premium intel

Critical

NocoBase CVE-2024-84150 VM Sandbox Escape to RCE via Prototype Chain Traversal

CVE-2024-84150 · github.com · 2026-04-02

@nocobase/plugin-workflow-javascript <= 2.0.27

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.

Goal Reached Thanks to every supporter — we hit 100%!

Security Intel Hub 6+

NocoBase plugin-workflow-request SSRF Vulnerability Fix

NocoBase SSRF Vulnerability (CVE-2025-40346) Analysis and Fix

NocoBase plugin-workflow-javascript JavaScript VM Sandbox Escape (CVE Draft)

Directus workflow-sql Template Variable SQL Injection (CVSS 9.8)

n8n v2.0.30 Security Update: SQL Node Vulnerability Fix and JS Engine Isolation

NocoBase CVE-2024-84150 VM Sandbox Escape to RCE via Prototype Chain Traversal