Lucene search
K

262 matches found

CVE
CVE
added 2026/03/05 12:0 a.m.13 views

CVE-2026-26418

The CVE-2026-26418 entry affects Tata Consultancy Services Cognix Recon Client v3.0. The vulnerability is a missing authentication and authorization flaw in the web API, enabling remote attackers to access application functionality over the network without restriction. According to the provided m...

7.5CVSS6AI score0.00411EPSS
Exploits0References3Affected Software1
Positive Technologies
Positive Technologies
added 2026/03/05 12:0 a.m.4 views

PT-2026-23478

Name of the Vulnerable Software and Affected Versions Tata Consultancy Services Cognix Recon Client version 3.0 Description A lack of proper authentication and authorization in the web API of Tata Consultancy Services Cognix Recon Client v3.0 enables remote attackers to access application...

7.5CVSS5.8AI score0.00411EPSS
Exploits0References7
GithubExploit
GithubExploit
added 2026/02/20 5:10 p.m.200 views

Kestrel

Kestrel LLM-Assisted Bug Bounty Hunting Platform for Kali L...

5.9AI score
Exploits0
GithubExploit
GithubExploit
added 2026/01/21 7:6 p.m.164 views

gotham-recon

Documentation Complete du Systeme d'Agents CrewAI Guide t...

6.2AI score
Exploits0
Positive Technologies
Positive Technologies
added 2025/12/25 1:40 p.m.5 views

PT-2025-132: Server-side Request Forgery (SSRF) in OpenPDF

The vulnerability was identified in OpenPDF, versions 2.0.3. The discovered vulnerability allows an attacker craft arbitrary HTTP requests that the vulnerable server will send to both external services and internal network endpoints. By exploiting this, the attacker can exfiltrate sensitive data...

7.7CVSS5.9AI score
Exploits0
Packet Storm
Packet Storm
added 2025/12/12 12:0 a.m.196 views

📄 dotCMS 24.04.24 Vulnerability Scanner

dotCMS version 24.04.24 advanced exploitation python scanning script that looks for local file inclusion, data exposure, SQL injection, and more. ============================================================================================================================================= | Title :...

7.4AI score
Exploits0
GithubExploit
GithubExploit
added 2025/12/09 6:41 a.m.161 views

Exploit for Deserialization of Untrusted Data in Facebook React

⚡ CVE-2025-55182 – Auto Exploit Toolkit Precision Engine...

10CVSS7.2AI score0.99562EPSS
Exploits374
CVE
CVE
added 2025/11/06 12:0 a.m.22 views

CVE-2025-63551

MetInfo CMS, up to version 8.1, contains an SSRF flaw exploitable via XXE in its XML parsing logic. An attacker can craft a malicious XML entity that makes the server issue an HTTP request to an internal or external address, potentially enabling internal network reconnaissance, port scanning, or ...

7.5CVSS6.6AI score0.0046EPSS
Exploits1References2Affected Software1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2018-13295

Malware in sbrugna...

9.8CVSS9.3AI score0.03427EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.11 views

EUVD-2021-16072

Malware in sbrugna...

9CVSS8.6AI score0.02476EPSS
Exploits0References2
NVD
NVD
added 2025/09/29 9:15 p.m.5 views

CVE-2025-34225

Vasion Print formerly PrinterLogic Virtual Appliance Host prior to version 25.1.102 and Application prior to version 25.1.1413 VA/SaaS deployments contain a server-side request forgery SSRF vulnerability. The consolerelease directory is reachable from the internet without any authentication. Insi...

8.8CVSS0.00764EPSS
Exploits1References4
GithubExploit
GithubExploit
added 2025/09/04 12:53 p.m.124 views

Exploit for Path Traversal in Igniterealtime Openfire

!Burp Suitehttps://img.shields.io/badge/Burp%20Suite-Pro%20E...

8.6CVSS7.2AI score0.99999EPSS
Exploits15
Tenable Nessus
Tenable Nessus
added 2025/08/30 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2018-20752

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in Recon-ng before 4.9.5. Lack of validation in the modules/reporting/csv.py file allows CSV injection. More specifically, when a Twitte...

9.8CVSS9AI score0.03427EPSS
Exploits0References2
OSV
OSV
added 2025/08/01 12:10 a.m.6 views

OSV-2025-589 Heap-buffer-overflow in isvcd_decode_recon_tfr_nmb_base_lyr

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=435086517 Crash type: Heap-buffer-overflow READ 1 Crash state: isvcddecoderecontfrnmbbaselyr isvcdparseinterslicedatacabac isvcdparsepslice...

7.2AI score
Exploits0References1
Gitee
Gitee
added 2025/07/27 3:38 a.m.1872 views

Exploit for CVE-2007-6750

ReconScan The purpose of this project is to develop scripts that can be useful in the pentesting workflow, be it for VulnHub VMs, CTFs, hands-on certificates, or real-world targets. The project currently consists of two major components: a script invoking and aggregating the results of existing...

10CVSS8.8AI score0.98945EPSS
Exploits94
Packet Storm News
Packet Storm News
added 2025/07/16 12:0 a.m.3 views

gimmePATz - GitHub Personal Access Token (PAT) Recon Tool 1.0.0

gimmePatz is a recon tool for GitHub PATs. Designed for bug bounty hunters, pentesters and red teams. gimmePatz will tell you what scopes a PAT has, and it will tell you what repositories or GitHub Organizations the PAT is attached to as well...

6.9AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 9:21 p.m.5 views

CVE-2021-41532

In Apache Ozone before 1.2.0, Recon HTTP endpoints provide access to OM, SCM and Datanode metadata. Due to a bug, any unauthenticated user can access the data from these endpoints...

5.3CVSS6.9AI score0.02315EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 6:29 p.m.11 views

CVE-2021-29461

Discord Recon Server is a bot that allows one to do one's reconnaissance process from one's Discord. A vulnerability in Discord Recon Server prior to 0.0.3 could be exploited to read internal files from the system and write files into the system resulting in remote code execution. This issue has...

9CVSS7.6AI score0.02476EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:19 p.m.10 views

CVE-2021-21433

Discord Recon Server is a bot that allows you to do your reconnaissance process from your Discord. Remote code execution in version 0.0.1 would allow remote users to execute commands on the server resulting in serious issues. This flaw is patched in 0.0.2...

9.9CVSS7.8AI score0.0296EPSS
Exploits1References1
Kitploit
Kitploit
added 2024/06/05 12:30 p.m.80 views

X-Recon - A Utility For Detecting Webpage Inputs And Conducting XSS Scans

A utility for identifying web page inputs and conducting XSS scanning. Features: Subdomain Discovery: Retrieves relevant subdomains for the target website and consolidates them into a whitelist. These subdomains can be utilized during the scraping process. Site-wide Link Discovery: Collects all...

6.3AI score
Exploits0References1
Rows per page
Query Builder