📄 MISP 2.5.27 Workflow Engine Cross Site Scripting

This Metasploit auxiliary module targets a potential stored cross site scripting vulnerability in the MISP Workflow Engine. It is designed to interact with the MISP API, create workflows, and inject malicious payloads into workflow data fields...

Luban-2040

Luban 2040 v1 Advanced CVE & Exploit Finder Author: m...

Exploit for Argument Injection in Gnu Inetutils

Telnet Vulnerability Scanner CVE-2026-24061 & CVE-2026-32746...

Exploit for CVE-2026-0709

Hikvision Wireless AP – CVE-2026-0709 Authenticated RCE Tool...

Exploit for OS Command Injection in Frigate

⚠️ CVE-2026-25643 - Detect and Analyze Remote Code Execution...

SploitGPT

🤖 SploitGPT - Your Penetration Testing Companion 🚀 Getting...

Exploit for Deserialization of Untrusted Data in Facebook React

🔍 Next.js Security Testing Tool Professiona...

Exploit for Deserialization of Untrusted Data in Facebook React

🛡️ CVE-2025-55184Testing - Simple Tool for Security Scanning...

Exploit for Deserialization of Untrusted Data in Facebook React

React2Shell R2S - CVE-2025-55182 Testing Tool !R2S Banne...

XSS-

It is an offensive tool for web application security testing. Th...

xss.yaml

It is an offensive tool for web application security testing. Th...

PT-2025-35522

Name of the Vulnerable Software and Affected Versions: MobSF version 4.4.0 Description: MobSF is a mobile application security testing tool. An authenticated user who uploaded a specially prepared one.a file could write arbitrary files to any directory writable by the user of the MobSF process...

Exploit for Authentication Bypass by Primary Weakness in Crushftp

CVE-2025-31161 - CrushFTP User Creation Authentication Bypass...

GHSA-C5VG-26P8-Q8CR Mobile Security Framework (MobSF) Allows Web Server Resource Exhaustion via ZIP of Death Attack

Vulnerable MobSF Versions: = v4.3.2 Details: MobSF is a widely adopted mobile application security testing tool used by security teams across numerous organizations. Typically, MobSF is deployed on centralized internal or cloud-based servers that also host other security tools and web application...

Exploit for Unrestricted Upload of File with Dangerous Type in Sap Netweaver

CVE-2025-31324-File-Upload A totally unauthenticated file-uplo...

vulhub

It is an offensive tool for web application security testing. The repository contains a collection of pre-built vulnerable docker environments, allowing users to test web application security without requiring prior knowledge of docker. The tool is designed to be easy to use, with a simple...

Exploit for Injection in Oracle Agile_Plm

CNTA-2019-0014-CVE-2019-2725 Disclaimer: This tool...

IBM Security AppScan 9.0.2 remote code execution vulnerability-vulnerability warning-the black bar safety net

IBM Security AppScan Standard is the United States, IBM company a Web application security testing tool. The tool is available in the application development life cycle for automated static and dynamic security vulnerability scanning. The vulnerability is based on the Windows OLE Automation array...

[CGE] Cisco Global Exploiter

Cisco Global Exploiter CGE, is an advanced, simple and fast security testing tool/ exploit engine, that is able to exploit 14 vulnerabilities in disparate Cisco switches and routers. CGE is command-line driven perl script which has a simple and easy to use front-end. CGE can exploit the following...

IBM Rational AppScan企业平台验证代码执行漏洞

Bugtraq ID: 53247 CVE ID：CVE-2012-0736 IBM Rational AppScan是一款Web应用的安全测试工具，可以在开发生命周期中进行自动化动态和静态安全漏洞扫描。 IBM Rational AppScan企业版在某些配置下创建扫描作业时存在错误，允许远程攻击者执行任意代码。诱使用户扫描恶意WEB站，可在目标用户系统上执行任意代码。 0 IBM Rational Policy Tester 8.5 IBM Rational AppScan Reporting Console 8.0.1.1 IBM Rational AppScan Reportin...