Security Intel Hub 8+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Filter

KEV only

Verified PoC

Clear filters

High

Code Audit: SQLi, IDOR, and XSS Vulnerabilities in Ruby App

github.com · 2026-02-07

spree/storefront

High

Rabbit/Shopify Address Management Bypass Vulnerability Fix (GHSA-address-fix)

GHSA-address-fix · github.com · 2026-02-07

spree

Unknown

Spree E-commerce Platform Order Checkout Logic Vulnerability Analysis

github.com · 2026-02-07

- **Spree Code Repository**: The screenshot displays the code repository of the open-source e-commerce platform (Spree), specifically the file `app/models/spree/order/checkout.rb`, which is a core bus…

High

Spree Commerce GHSA-3310 Address Handling Vulnerability Fix

GHSA-3310 · github.com · 2026-02-07

- **Commits** - Commit `ff7cfcf` was made to address a vulnerability GHSA-3310 related to address data handling in the Spree Commerce platform. - Fix included additional application or third-party app…

Medium

Spree Authenticated IDOR Fix (GHSA-g268-72p7-9j6j)

GHSA-g268-72p7-9j6j · github.com · 2026-02-07

Spree Commerce

High

Spree Commerce IDOR Vulnerability (CVE-2026-25758) Analysis

CVE-2026-25758 · github.com · 2026-02-07

spree_api <4.10.3 · spree_api <5.0.8 …

Medium

Spree IDOR Fix: Unauthorized Address Modification in Order Updates

GHSA-g268-72p7-9j6j · github.com · 2026-01-20

Spree v5.2.6 · Spree v5.2.5

Critical

Spree API IDOR Vulnerability (CVE-2026-22588): Stealing User Addresses via Order Modification

CVE-2026-22588 · github.com · 2026-01-20

spree_api <4.10.2 · spree_api <5.0.7 …

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.

Goal Reached Thanks to every supporter — we hit 100%!

Security Intel Hub 8+