PHPGurukul Human Metapneumovirus Testing Management System 注入漏洞

Human Metapneumovirus Testing Management System is a human subpneumovirus testing management system. The Human Metapneumovirus Testing Management System suffers from a SQL injection vulnerability that originates from a lack of validation of externally-entered SQL statements in the parameter...

The vulnerability of microprogrammed software in Intel NUC laptops arises from insufficient testing of input data, allowing attackers to exploit this weakness to gain increased privileges.

The vulnerability of Intel NUC laptop microprogramming software exists due to insufficient testing of input data. Exploiting this vulnerability can allow attackers to enhance their privileges...

Exploit for OS Command Injection in Php

PHP-CGI Injector 🚀 CVE-2024-4577 & CVE-2024-8926 Exploit To...

[SECURITY] Fedora 42 Update: python3.6-3.6.15-43.fc42

Python 3.6 package for developers. This package exists to allow developers to test their code against an older version of Python. This is not a full Python stack and if you wish to run your applications with Python 3.6, see other distributions that support it, such as CentOS or RHEL with Software...

Loaded Commerce 6.6 Client-Side Template Injection

Loaded Commerce version 6.6 suffers from a client-side template injection vulnerability. Exploit Title: Loaded Commerce 6.6 Client-Side Template InjectionCSTI AngularJS Date: 03/13/2025 Exploit Author: tmrswrr Vendor Homepage: https://loadedcommerce.com/ Version: 6.6 Tested on:...

Microsoft Security Update Validation Report March 2025

Microsoft’s March 2025 security updates have passed Citrix testing the updates are listed below. The testing is not all-inclusive; all tests are executed against English only environments and issues may still be found upon implementation. Follow best practices for testing and installing software...

Penetration Testing Steps and Tools

This whitepaper goes over reconnaissance of a target, various types of attacks leveraged during penetration testing, and provides examples of the commands used in the process...

The vulnerability of the profapi.dll file, a software component used for creating, testing, documenting, publishing, and maintaining the API of an application’s software interface, allows a perpetrator to execute arbitrary code.

The vulnerability of the profapi.dll file, which is used in software for creating, testing, documenting, publishing, and maintaining the API of an application, is related to the use of an insecure path for searching. Exploiting this vulnerability allows an attacker to execute arbitrary code...

CVE-2025-25568

SoftEtherVPN 5.02.5187 is vulnerable to Use after Free in the Command.c file via the CheckNetworkAcceptThread function. NOTE: the Supplier disputes this because the use-after-free is not in the VPN software, but is instead in a separate tool that has no untrusted input and runs under the user's o...

MAL-2025-2445 Malicious code in malwaretesting1 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 0dfabd3ff2ac6ca412b085988e3c2afdc4d44178dba2cfa134d851c159ccb7f3 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...

Exploit for Improper Restriction of Excessive Authentication Attempts in Fortinet Fortimail

CVE-2022-29056 Exploit Automation Para Fins Educacionais 🚨 📌...

Fedora 41 : thunderbird (2025-bd6664e83b)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-bd6664e83b advisory. Update to 128.8.0 https://www.mozilla.org/en-US/security/advisories/mfsa2025-18/...

CBL Mariner 2.0 Security Update: xorg-x11-server / xorg-x11-server-Xwayland (CVE-2025-26600)

The version of xorg-x11-server / xorg-x11-server-Xwayland installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-26600 advisory. - A use-after-free flaw was found in X.Org and Xwayland. When a device is...

ABB Cylon Aspect 3.08.01 Shell Upload

ABB Cylon Aspect version 3.08.01 proof of concept remote shell upload exploit. Original discovery of this issue is attributed to LiquidWorm. ============================================================================================================================================= | Title : ABB...

io.github.robothy:local-s3-jupiter (>=1.2 <=1.20), org.sdase.commons:sda-commons-server-s3-testing (>=6.0.0 <=7.3.7) potentially affected by CVE-2025-27136 via io.github.robothy:local-s3-rest (>=1.10 <=1.20)

io.github.robothy:local-s3-rest MAVEN version =1.10, =1.2, =6.0.0, =7.3.7 Source cves: CVE-2025-27136 Source advisory: SNYK:JAVA-IOGITHUBROBOTHY-9396840...

io.github.robothy:local-s3-jupiter (>=1.2 <=1.20), org.sdase.commons:sda-commons-server-s3-testing (>=6.0.0 <=7.3.7) potentially affected by unknown CVE via io.github.robothy:local-s3-rest (>=1.10 <=1.20)

io.github.robothy:local-s3-rest MAVEN version =1.10, =1.2, =6.0.0, =7.3.7 Source cves: unknown CVE Source advisory: OSV:GHSA-47QW-CCJM-9C2C...

io.github.robothy:local-s3-jupiter (>=1.2 <=1.20), org.sdase.commons:sda-commons-server-s3-testing (>=6.0.0 <=7.3.7) potentially affected by unknown CVE via io.github.robothy:local-s3-rest (>=1.10 <=1.20)

io.github.robothy:local-s3-rest MAVEN version =1.10, =1.2, =6.0.0, =7.3.7 Source cves: unknown CVE Source advisory: SNYK:JAVA-IOGITHUBROBOTHY-9399373...

io.github.robothy:local-s3-jupiter (>=1.2 <=1.20), org.sdase.commons:sda-commons-server-s3-testing (>=6.0.0 <=7.3.7) potentially affected by unknown CVE via io.github.robothy:local-s3-rest (>=1.10 <=1.20)

io.github.robothy:local-s3-rest MAVEN version =1.10, =1.2, =6.0.0, =7.3.7 Source cves: unknown CVE Source advisory: OSV:GHSA-2466-4485-4PXJ...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-56739)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-56739 advisory. - In the Linux kernel, the following vulnerability has been resolved: rtc: check if rtcreadtime was successful...

CBL Mariner 2.0 Security Update: kernel (CVE-2024-56778)

The version of kernel installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-56778 advisory. - In the Linux kernel, the following vulnerability has been resolved: drm/sti: avoid potential dereference of...