MaraDNS_1

This is a repository for MaraDNS, a small open-source DNS server. The repository contains various files and scripts for building and testing MaraDNS, including a Dockerfile for creating a Docker image to test installing MaraDNS on a fresh Ubuntu 22.04 virtual machine. The repository includes a...

Exploit for Expression Language Injection in Atlassian Confluence_Data_Center

This repository is a collection of proof-of-concept PoC exploits from Datadog Security Labs. The exploits are designed to demonstrate vulnerabilities in various software products, including Confluence, OpenSSL, and Spring. The repository contains code and instructions for running the exploits, as...

kubei

Kubei is a flexible Kubernetes runtime scanner that scans worker nodes and Kubernetes nodes' images, providing accurate vulnerability assessments. It is a vulnerability scanner and CIS Docker scanner. The repository contains various files, including .dockerignore, .families.yaml,...

La MaraDNS

MaraDNS is a small open-source DNS server. It is an authoritative DNS server that handles recursion using the included "Deadwood" program. The MaraDNS repository contains various files, including a README, CHANGELOG, and Dockerfile, which provide information on how to compile and run MaraDNS, as...

Exploit for CVE-2025-57833

Django SQL Injection Test Environment CVE-2025-57833 This i...

Exploit for SQL Injection in Sangoma Freepbx

Work in Progress FreePBX CVE-2025-57819 Lab - Unauth SQLi →...

Exploit for Unrestricted Upload of File with Dangerous Type in Codedropz Drag_And_Drop_Multiple_File_Upload_-_Contact_Form_7

CVE-2025-3515 WordPress Lab Drag and Drop Multiple File Uploa...

CVE-2025-55473

CVE-2025-55473 affects Asian Arts Talents Foundation (AATF) Website v5.1.x and its Docker image 2024.12.8.1. The vulnerability is a Cross-Site Scripting (XSS) in the /ip.php endpoint, where the X-Forwarded-For HTTP header is parsed and displayed without proper sanitization or output encoding. Thi...

[SECURITY] Fedora 41 Update: docker-buildx-0.27.0-1.fc41

Docker CLI plugin for extended build capabilities with BuildKit...

Fedora: Security Advisory (FEDORA-2025-aeb4a7b52f)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fedora 41 : docker-buildx (2025-4e0d9fb468)

The remote Fedora 41 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-4e0d9fb468 advisory. - Update to release v0.27.0 - Resolves: rhvz2388453, rhbz2384137, rhbz2384154 - Upstream new features and fixes Tenable has extracted the preceding descripti...

Fedora: Security Advisory (FEDORA-2025-4e0d9fb468)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

[SECURITY] Fedora 42 Update: docker-buildx-0.27.0-1.fc42

Docker CLI plugin for extended build capabilities with BuildKit...

Fedora 42 : docker-buildx (2025-aeb4a7b52f)

The remote Fedora 42 host has a package installed that is affected by a vulnerability as referenced in the FEDORA-2025-aeb4a7b52f advisory. - Update to release v0.27.0 - Resolves: rhvz2388453, rhbz2384137, rhbz2384154 - Upstream new features and fixes Tenable has extracted the preceding descripti...

CVE-2025-34159

Coolify versions prior to v4.0.0-beta.420.6 are vulnerable to a remote code execution vulnerability in the application deployment workflow. The platform allows authenticated users, with low-level member privileges, to inject arbitrary Docker Compose directives during project creation. By crafting...

Linux Distros Unpatched Vulnerability : CVE-2021-21285

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In Docker before versions 9.03.15, 20.10.3 there is a vulnerability in which pulling an intentionally malformed Docker image manifest crashes the dockerd daemon...

Docker Desktop < 4.44.3 Container Escape

The version of Docker Desktop is prior to 4.44.3. It is therefore affected by a container escape vulnerability. The vulnerability allows local running Linux containers to access the Docker Engine API via the configured Docker subnet, at 192.168.65.7:2375 by default. This vulnerability occurs with...

CVE-2025-34159

Coolify versions prior to v4.0.0-beta.420.6 are vulnerable to a remote code execution vulnerability in the application deployment workflow. The platform allows authenticated users, with low-level member privileges, to inject arbitrary Docker Compose directives during project creation. By crafting...

CVE-2025-34159

Coolify versions prior to v4.0.0-beta.420.6 are vulnerable to a remote code execution vulnerability in the application deployment workflow. The platform allows authenticated users, with low-level member privileges, to inject arbitrary Docker Compose directives during project creation. By crafting...

CVE-2025-34159

CVE-2025-34159 affects Coolify