80 matches found
Exploit for CVE-2007-2447
🛡️ Metasploitable2 Vulnerability Assessment Author: Jaden Julius...
Auditing MCP Servers for Over-Privileged Tool Capabilities
The Model Context Protocol MCP has emerged as a standard for connecting Large Language Models LLMs to external tools and data. However, MCP servers often expose privileged capabilities, such as file system access, network requests, and command execution that can be exploited if not properly...
GHSA-V6C6-VQQG-W888 OpenClaw affected by potential code execution via unsafe hook module path handling in Gateway
Summary OpenClaw Gateway supports hook mappings with optional JavaScript/TypeScript transform modules. In affected versions, the gateway did not sufficiently constrain configured module paths before passing them to dynamic import. Under some configurations, a user who can modify gateway...
mcp-exploit-demo-master
!Imagehttps://github.com/user-attachments/assets/2180e098-091...
RAG-Targeted Adversarial Attack on LLM-Based Threat Detection and Mitigation Framework
The rapid expansion of the Internet of Things IoT is reshaping communication and operational practices across industries, but it also broadens the attack surface and increases susceptibility to security breaches. Artificial Intelligence has become a valuable solution in securing IoT networks, wit...
EUVD-2021-7194
Malicious code in bioql PyPI...
EUVD-2023-0291
Malicious code in bioql PyPI...
cors-anywhere vulnerable to server-side request forgery
Rob -- W / cors-anywhere instances configured as an open proxy allow unauthenticated external users to induce the server to make HTTP requests to arbitrary targets SSRF. Because the proxy forwards requests and headers, an attacker can reach internal-only endpoints and link-local metadata services...
Adversarial Bug Reports As a Security Risk in Language Model-Based Automated Program Repair
Large Language Model LLM - based Automated Program Repair APR systems are increasingly integrated into modern software development workflows, offering automated patches in response to natural language bug reports. However, this reliance on untrusted user input introduces a novel and underexplored...
Exploit for CVE-2025-47227
🔓 CVE-2025-47227 — Critical Admin Password Reset Bypass in Scr...
PT-2025-31013 · Code Projects · Exam Form Submission
Name of the Vulnerable Software and Affected Versions: code-projects Exam Form Submission version 1.0 Description: A critical issue exists due to SQL injection. The manipulation of the credits argument in the processing of the file /admin/update s1.php can lead to exploitation. The attack can be...
PT-2025-30939 · 1000 Projects · Best Courier Management System
Name of the Vulnerable Software and Affected Versions: 1000 Projects ABC Courier Management System version 1.0 Description: A critical issue exists in 1000 Projects ABC Courier Management System version 1.0. The vulnerability is located in an unknown functionality of the file /Add reciver.php...
PT-2025-29499 · Semcms · Semcms
Name of the Vulnerable Software and Affected Versions: SemCms version 5.0 Description: SemCms version 5.0 contains a SQL injection vulnerability through the ID parameter at the SEMCMS Products.php endpoint. Recommendations: As a mitigation, sanitize or validate the ID parameter at the SEMCMS...
PT-2025-28200 · Unknown · Educoder Challenges
Name of the Vulnerable Software and Affected Versions: educoder challenges version 1.0 Description: The issue is related to insufficient security mechanisms for created containers, allowing attackers to execute arbitrary code by injecting crafted content into a container. Recommendations: For...
Exploit for Inclusion of Functionality from Untrusted Control Sphere in Sudo_Project Sudo
CVE-2025-32463 – Privilege Escalation via Sudo chroot 📝 Ov...
PT-2025-27339 · Unknown · Position Department Service Quality Evaluation System
Name of the Vulnerable Software and Affected Versions: Conjure Position Department Service Quality Evaluation System versions up to 1.0.11 Description: A critical vulnerability has been found in the Conjure Position Department Service Quality Evaluation System. The issue affects the eval function...
PT-2025-23513 · Electron +2 · Electron +2
Name of the Vulnerable Software and Affected Versions: Dot versions 0.9.3 and earlier Description: The issue allows for XSS and resultant command execution. This is because user input and LLM output are appended to the DOM with innerHTML, specifically in render.js. Additionally, the Electron wind...
PHPOffice Math allows XXE when processing an XML file in the MathML format
Product: Math Version: 0.2.0 CWE-ID: CWE-611: Improper Restriction of XML External Entity Reference CVSS vector v.4.0: 8.7 AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N CVSS vector v.3.1: 7.5 AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N Description: An attacker can create a special XML file, duri...
PT-2025-19965 · Linksys · Linksys E5600
Name of the Vulnerable Software and Affected Versions: Linksys E5600 version 1.1.0.26 Description: A command injection issue was discovered in the runtime.ddnsStatus DynDNS function via the hostname parameter. This allows for potential exploitation. Recommendations: For Linksys E5600 version...
CVE-2025-1688
Milestone Systems has discovered a security vulnerability in Milestone XProtect installer that resets system configuration password after the upgrading from older versions using specific installers. The system configuration password is an additional, optional protection that is enabled on the...