Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 5+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
Clear filters
High
XOOPS date_check() SQL Injection Vulnerability Fix Analysis
GHSA-mgqc-3445-qghq · github.com · 2026-04-04
Piwigo
Read more
High
Piwigo get_activity_list SQL Injection Vulnerability Analysis
github.com · 2026-04-04
Piwigo <= 16.2
Read more
Critical
Pre-auth SQL Injection in Piwigo <16.0 via Date Filters
github.com · 2026-04-04
Piwigo < 16.0
Read more
Unknown
Fix SQL Injection in pug_user_getList via filter param (GHSA-53yq-c9jg-v3j2)
GHSA-5jwg-cr5q-vjq2 · github.com · 2026-04-04

### 漏洞关键信息总结 **漏洞概述** 该提交修复了 `pug_user_getList` 函数中存在的 **SQL注入漏洞**。漏洞源于 `filter` 参数未经过滤,直接拼接到 SQL 查询语句中,攻击者可利用此漏洞执行任意 SQL 命令。 **影响范围** - **文件:** `includes/functions/pug_users.php` - **函数:** `pug_user_…

Read more
High
Piwigo GHSA-9986-w7jf-33f6 Password Reset Vulnerability Fix
GHSA-9986-w7jf-33f6 · github.com · 2025-11-19
Piwigo < all fixed versions
Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.