CVE-2025-42878 Sensitive Data Exposure in SAP Web Dispatcher and Internet Communication Manager (ICM)

SAP Web Dispatcher and ICM may expose internal testing interfaces that are not intended for production. If enabled, unauthenticated attackers could exploit them to access diagnostics, send crafted requests, or disrupt services. This vulnerability has a high impact on confidentiality, availability...

CVE-2025-42878

Technical details about CVE-2025-42878 are not publicly provided in the supplied documents; monitor SAP advisories and vendor updates for specifics and patches.

CVE-2025-42878 Sensitive Data Exposure in SAP Web Dispatcher and Internet Communication Manager (ICM)

SAP Web Dispatcher and ICM may expose internal testing interfaces that are not intended for production. If enabled, unauthenticated attackers could exploit them to access diagnostics, send crafted requests, or disrupt services. This vulnerability has a high impact on confidentiality, availability...

CVE-2022-50666

In the Linux kernel, the following vulnerability has been resolved: RDMA/siw: Fix QP destroy to wait for all references dropped. Delay QP destroy completion until all siw references to QP are dropped. The calling RDMA core will free QP structure after successful return from siwqpdestroy call, so...

CVE-2022-50666

CVE-2022-50666 relates to the Linux kernel’s RDMA/siw subsystem. The issue arises in QP destruction: the destroy path did not wait for all siw references to the QP to be dropped, allowing a use-after-free when delayed siw_cm_work_handler references a QP already freed after the destroy call. Repor...

PT-2025-49768

SAP Web Dispatcher and ICM may expose internal testing interfaces that are not intended for production. If enabled, unauthenticated attackers could exploit them to access diagnostics, send crafted requests, or disrupt services. This vulnerability has a high impact on confidentiality, availability...

Exploit for Deserialization of Untrusted Data in Facebook React

React2Shell Vulnerability Scanner A safe, non-invasive scanne...

Exploit for Deserialization of Untrusted Data in Facebook React

RSC Surface & Crash Detector This tool is a non-intrusive sec...

Exploit for CVE-2025-66478

CVE-2025-66478 Vulnerability Demo This repository contains a...

Exploit for Deserialization of Untrusted Data in Facebook React

CVE-202...

Linux Distros Unpatched Vulnerability : CVE-2025-40227

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mm/damon/sysfs: dealloc commit test ctx always The damonctx for testing online DAMON parameters commit inputs is deallocated only when the test fails. This mean...

📄 ClipBucket 5.5.2 Build 90 Practical Exploitation Tool

An enhanced Python penetration testing tool designed specifically for ClipBucket video sharing platform vulnerability assessment and exploitation. It checks for remote command execution, file upload, SQL injection, local file inclusion, and more. It affects ClipBucket version 5.5.2 Build 90...

📄 Django 5.1.13 SQL Injection

Django version 5.1.13 remote SQL injection vulnerability scanning script. ============================================================================================================================================= | Title : Django 5.1.13 SQL Injection Scanner | | Author : indoushka | | Tested o...

Exploit for Deserialization of Untrusted Data in Facebook React

React2Shell - CVE-2025-55182 Exploit PoC !Securityhttps://...

Exploit for Deserialization of Untrusted Data in Facebook React

React2Shell CVE-2025-55182 PoC Usage bash Interacti...

wshawk

WSHawk v2.0 - Professional WebSocket Security Scanner !Pyth...

CVE-2025-40271

In the Linux kernel, the following vulnerability has been resolved: fs/proc: fix uaf in procreaddirde Pde is erased from subdir rbtree through rberase, but not set the node to EMPTY, which may result in uaf access. We should use RBCLEARNODE set the erased node to EMPTY, then pdesubdirnext will...

CVE-2025-40271

CVE-2025-40271 affects the Linux kernel fs/proc code. The vulnerability arises in proc_readdir_de() where a node erased from the subdir red-black tree is not cleared (RB_CLEAR_NODE), leaving the pde_subdir_next() path able to return a freed node (UAF). Affected code path: proc_readdir(), pde_get(...

Exploit for Deserialization of Untrusted Data in Facebook React

CVE-2025-55182 - React2Shell ██████╗ ███████╗ █████╗ █...

Exploit for Deserialization of Untrusted Data in Facebook React

React2Shell R2S - CVE-2025-55182 Testing Tool !R2S Banne...