Security Intel Hub 9+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Filter

KEV only

Verified PoC

Critical

Rucio postgres_meta Plugin SQL Injection Vulnerability (CVE-2026-29090) Analysis

CVE-2026-29090 · github.com · 2026-05-07

rucio >= 1.30.0

Critical

SQL Injection in Rucio FilterEngine Oracle JSON Path (CVE-2026-26080)

null · github.com · 2026-05-07

Rucio >= 1.27.0

High

Rucio WebUI Stored XSS Vulnerability (CVE-2026-25733)

CVE-2026-25733 · github.com · 2026-02-26

rucio-webui < 39.3.1

Medium

Rucio WebUI Stored XSS Vulnerability (CVE-2026-25736)

CVE-2026-25736 · github.com · 2026-02-26

rucio-webui < 39.3.1

Medium

Rucio WebUI Stored XSS Vulnerability (CVE-2026-25735) Advisory

CVE-2026-25735 · github.com · 2026-02-26

Rucio < 39.3.1

High

Rucio WebUI Security Fixes: Username Enumeration & Stored XSS (GHSA-38wq, GHSA-h79m, etc.)

github.com · 2026-02-26

Rucio WebUI

Medium

Rucio WebUI Username Enumeration via Login Error Message (GHSA-38wq-6q2w-hcf9)

GHSA-38wq-6q2w-hcf9 · github.com · 2026-02-26

Rucio < 39.3.1

High

Rucio WebUI Reflected XSS Vulnerability (CVE-2026-25136) Advisory

CVE-2026-25136 · github.com · 2026-02-26

Rucio < 39.3.1

Rucio Helm Charts Log Information Disclosure of Auth Token (CVE-2025-54064)

github.com · 2025-07-19

### Critical Vulnerability Information #### Vulnerability Title - **Insertion of X-Rucio-Auth-Token in apache access logfiles** #### Severity - **Moderate** #### CVE ID - **CVE-2025-54064** #### Affec…

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.