Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 3+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
Clear filters
Medium
Strapi @strapi/plugin-upload DoS via Improper Exception Handling (CVE-2024-31217)
CVE-2024-31217 · github.com · 2025-11-10
@strapi/plugin-upload <=4.21.0
Read more
Strapi @strapi/core Weak Password Length Validation Vulnerability (CVE-2025-25298)
github.com · 2025-10-17

### Critical Vulnerability Information #### Vulnerability Title - **Weak Password Length Validation** #### Vulnerability ID - **GHSA-2cjv-6wg9-f4f3** #### Affected Package and Versions - **Package**: …

Read more
CVSS 4.9
Strapi SSRF Vulnerability (CVE-2021-41788) Analysis and Reproduction
github.com · 2025-05-30

### Critical Vulnerability Information #### Vulnerability Type - Server-Side Request Forgery (SSRF) in Webhook function #### Affected Versions - @strapi/admin =1.25.2 #### Description In Strapi's inte…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.