683 matches found
Security_Testing_Task3
No d...
📄 SPIP Gadget Chain Insecure Deserialization
SPIP Gadget Chain versions prior to 4.4.9 suffer from a potential PHP object deserialization vulnerability. ============================================================================================================================================= | Title : SPIP Gadget Chain before 4.4.9...
VibeCode-injectproof
🛡️ VibeCode-InjectProof Deep SQLi verification engine for...
Exploit for Incorrect Privilege Assignment in Themewinter Eventin
CVE-2025-47539 Exploit Overview This repository contains a...
Malicious code in npm-security-testing (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7bf7ca4cfc33128c3d392d0df3b413365624b0e28a8215a7f0226ca4ec459730 The package npm-security-testing was found to contain malicious code. Source: ghsa-malware...
Malicious Package
Overview npm-security-testing is a malicious package. This package contains malicious code, and its content was removed from the official package manager. While this package might be attempting to impersonate a valid organization, there is no connection between that organization and this package...
MAL-2026-997 Malicious code in npm-security-testing (npm)
--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 7bf7ca4cfc33128c3d392d0df3b413365624b0e28a8215a7f0226ca4ec459730 The package npm-security-testing was found to contain malicious code. Source: ghsa-malware...
From Exposure to Exploitation: How AI Collapses Your Response Window
We’ve all seen this before: a developer deploys a new cloud workload and grants overly broad permissions just to keep the sprint moving. An engineer generates a "temporary" API key for testing and forgets to revoke it. In the past, these were minor operational risks, debts you’d eventually pay do...
poc-test-vulnerability
poc-test-vulnerab...
📄 n8n Workflow Automation Remote Configuration / Admin Data Extraction
This Metasploit module exploits multiple vulnerabilities in n8n workflow automation tool. It leverages a file read vulnerability to steal encryption keys and database, then uses stolen credentials to authenticate and execute arbitrary commands via the Execute Command node...
vulnerability-assessment-lab
vulnerability-assessment-lab Controlled security test...
Exploit for OS Command Injection in Docker
HATCH Host Access Testing for Container Hardening A com...
Ryan Liles, master of technical diplomacy
Cisco Talos is back with another inside look at the people who keep the internet safe. This time, Amy chats with Ryan Liles, who bridges the gap between Cisco's product teams and the third-party testing labs that put Cisco products through their paces. Ryan pulls back the curtain on the delicate...
creepytrix
🔒 CREEPYTRIX - Bitrix Pentest Tool v1.1 !Versionhttps://i...
SoK: The Pitfalls of Deep Reinforcement Learning for Cybersecurity
Deep Reinforcement Learning DRL has achieved remarkable success in domains requiring sequential decision-making, motivating its application to cybersecurity problems. However, transitioning DRL from laboratory simulations to bespoke cyber environments can introduce numerous issues. This is furthe...
Exploit for CVE-2025-49132
CVE-2025-49132-POC I made this poc for my personal cha...
📄 Online Grievance Redressal Software 2.6 SQL Injection
Online Grievance Redressal Software version 2.6 suffers from a remote SQL injection vulnerability. ============================================================================================================================================= | Title : Online Grievance Redressal Software 2.6 SQL...
Exploit for Race Condition in Canonical Ubuntu_Linux
Privilege Escalation Analyzer v4.0 A comprehensive Linux priv...
Exploit for Improper Input Validation in Boa Boa_Webserver
BOA Router Exploit Framework !Python Versionhttps://img...
Exploit for CVE-2023-39848
DAMN VULNERABLE WEB APPLICATION Damn Vulnerable Web Applicati...