Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Security Intel Hub 7+

Curated security advisories, vulnerability analyses, and exploit write-ups — auto-cleaned and translated to English. Updated continuously.

Examples: RCE · SSRF · GHSA · log4j
Filter
Clear filters
Medium
Symfony Process Windows Argument Escaping Vulnerability Leading to Destructive File Operations
github.com · 2026-01-29
symfony/process <5.4.51 · symfony/process >=6.4 <6.4.33 …
Read more
High
Symfony CVE-2025-64500: Authorization Bypass via Incorrect PATH_INFO Parsing
CVE-2025-64500 · github.com · 2025-11-14
Symfony >=2.0.0, <3.0.0 · Symfony >=3.0.0, <4.0.0 …
Read more
High
Symfony CVE-2025-64500: Authorization Bypass via Incorrect PATH_INFO Parsing
CVE-2025-64500 · github.com · 2025-11-14
symfony/http-foundation 2.0.0 to 3.0.0 · symfony/http-foundation 3.0.0 to 4.0.0 …
Read more
High
Symfony PATH_INFO Parsing Flaw Leads to Authorization Bypass (CVE-2025-64500)
CVE-2025-64500 · github.com · 2025-11-14
symfony/http-foundation <5.4.50, >=6, <6.4.29, >=7, <7.3.7 · symfony/symfony <5.4.50, >=6, <6.4.29, >=7, <7.3.7
Read more
CVSS 6.1
Symfony UX ComponentAttributes HTML Attribute Injection (CVE-2025-47946)
github.com · 2025-05-21

### Critical Vulnerability Information #### Vulnerability Title Unsanitized HTML attribute injection via ComponentAttributes #### Severity - **Level**: Moderate (6.1/10) - **CVSS v3 Base Metrics**: - …

Read more
Premium intel
CVSS 7.5
Symfony Security Http Persistent Remember-Me Cookie Owner Validation Fix
github.com · 2024-11-17

From this webpage screenshot, we can extract the following key information about the vulnerability: 1. **Vulnerability Description**: - **Title**: [security-http] Check owner of persisted remember-me …

Read more
CVSS 3.1
Symfony HttpClient SSRF Fix: Enhanced Private IP Filtering in NoPrivateNetworkHttpClient
github.com · 2024-11-09

From this webpage screenshot, the following key information about the vulnerability can be obtained: 1. **Code Changes**: - The code changes occurred in the file `src/Symfony/Component/HttpClient/NoPr…

Read more

All articles are auto-cleaned (markdown extraction + LLM noise removal) and translated to English by our offline pipeline. Source URL is always preserved at the bottom of each article.

Want a specific source covered? Email us — we add new feeds weekly.