7193 matches found
Exploit for Deserialization of Untrusted Data in Facebook React
Next.js React2Shell CVE-2025-55182 Exploit Tool A proof-of-...
Exploit for CVE-2025-55184
POC React2Shell - CVE-2025-55184 - CVE-2025-55184 !CAUTION Le...
Exploit for Deserialization of Untrusted Data in Facebook React
REACT2SHELL 🎯 Quick Overview What is this? This tool is...
📄 dotCMS 24.04.24 Vulnerability Scanner
dotCMS version 24.04.24 advanced exploitation python scanning script that looks for local file inclusion, data exposure, SQL injection, and more. ============================================================================================================================================= | Title :...
Scale AI Securely with Qualys TotalAI’s Streamlined Onboarding, Deeper Risk Detection, and Compliance-Ready Reporting
Executive Summary Enterprises are entering a phase where AI systems function as decision engines that shape customer interactions, operational workflows, and business outcomes. This creates a new class of risk that is behavioral, contextual, and dynamic, driven by how models interpret instruction...
cyber-security-lab-soc-vapt-beginner
Cyber Security Practice Lab — Beginner SOC + VAPT This begin...
Linux Distros Unpatched Vulnerability : CVE-2022-50674
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - riscv: vdso: fix NULL deference in vdsojointimens when vfork Testing tools/testing/selftests/timens/vforkexec.c got below kernel log: 6.838454 Unable to handle...
Automated Penetration Testing with LLM Agents and Classical Planning
While penetration testing plays a vital role in cybersecurity, achieving fully automated, hands-off-the-keyboard execution remains a significant research challenge. In this paper, we introduce the "Planner-Executor-Perceptor PEP" design paradigm and use it to systematically review existing work a...
Exploit for Deserialization of Untrusted Data in Facebook React
💥 React2Shell-POC 💥 !pythonhttps://img.shields.io/badge/py...
Exploit for CVE-2025-9074
CVE-2025-9074-POC Proof-of-Concept exploit for CVE-2025-9074...
Exploit for Deserialization of Untrusted Data in Facebook React
🚀 React2Shell Exploiter Advanced Exploitation & Server I...
CVE-2025-42878
SAP Web Dispatcher and ICM may expose internal testing interfaces that are not intended for production. If enabled, unauthenticated attackers could exploit them to access diagnostics, send crafted requests, or disrupt services. This vulnerability has a high impact on confidentiality, availability...
Trend Vision One™ Stacks Up Against Scattered Spider and Mustang Panda in 2025 MITRE ATT&CK® Evaluations
Enterprise 2025 introduces the first full cloud adversary emulation and expanded multi-platform testing, focusing on two advanced threat areas: Scattered Spider’s cloud-centric attacks and Mustang Panda’s long-term espionage operations...
Comparing AI Agents to Cybersecurity Professionals in Real-World Penetration Testing
We present the first comprehensive evaluation of AI agents against human cybersecurity professionals in a live enterprise environment. We evaluate ten cybersecurity professionals alongside six existing AI agents and ARTEMIS, our new agent scaffold, on a large university network consisting of 8,00...
Malicious code in ctosec-appsec-wb-xray-adapter (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 33176e85f6e5dce44273ddbf5be45cf64ddd36db281b50a5868851a32fb19d0c Installing the package or importing the module exfiltrates basic information about the host, and the package has no other purpose. --- Category: PROBABLYPENTES...
Malicious code in ajenti-plugin-testing-pyld (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 8f75e248c6b93183d9fb3295781e0ffda38ca1afa25cefb866205312f2a78cfd Packages that might be part of testing for pentesting / malicious activity / joy, with suspicious activity that does not present any real harm. --- Category:...
MAL-2025-192392 Malicious code in ajenti-plugin-testing-pyld (PyPI)
--- -= Per source details. Do not edit below this line.=- Source: kam193 8f75e248c6b93183d9fb3295781e0ffda38ca1afa25cefb866205312f2a78cfd Packages that might be part of testing for pentesting / malicious activity / joy, with suspicious activity that does not present any real harm. --- Category:...
EUVD-2025-202304
Malicious code in ajenti-plugin-testing-pyld PyPI...
EUVD-2025-201849
SAP Web Dispatcher and ICM may expose internal testing interfaces that are not intended for production. If enabled, unauthenticated attackers could exploit them to access diagnostics, send crafted requests, or disrupt services. This vulnerability has a high impact on confidentiality, availability...
CVE-2025-42878
SAP Web Dispatcher and ICM may expose internal testing interfaces that are not intended for production. If enabled, unauthenticated attackers could exploit them to access diagnostics, send crafted requests, or disrupt services. This vulnerability has a high impact on confidentiality, availability...