Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

26 matches found

GithubExploit
GithubExploitadded 2026/05/24 1:13 p.m.50 views

sql-injection

sql-injection python tool that...

5.9AI score
Exploits0
GithubExploit
GithubExploitadded 2026/03/15 8:21 a.m.88 views

web-attack-payloads

Web Attack Payloads Collection !Cybersecurityhttps://img.s...

6.3AI score
Exploits0
Positive Technologies
Positive Technologiesadded 2026/03/15 12:0 a.m.2 views

PT-2026-25586

Summary Prior to Memray 1.19.2, Memray rendered the command line of the tracked process directly into generated HTML reports without escaping. Because there was no escaping, attacker-controlled command line arguments were inserted as raw HTML into the generated report. This allowed JavaScript...

6.1CVSS5.9AI score0.00022EPSS
Exploits2References8
GithubExploit
GithubExploitadded 2026/03/08 2:31 a.m.169 views

Plasma

Plasma !Pythonhttps://img.shields.io/badge/python-3.10%2B-...

6.3AI score
Exploits0
Packet Storm News
Packet Storm Newsadded 2026/02/09 12:0 a.m.3 views

SoK: The Pitfalls of Deep Reinforcement Learning for Cybersecurity

Deep Reinforcement Learning DRL has achieved remarkable success in domains requiring sequential decision-making, motivating its application to cybersecurity problems. However, transitioning DRL from laboratory simulations to bespoke cyber environments can introduce numerous issues. This is furthe...

5.6AI score
Exploits0
GithubExploit
GithubExploitadded 2025/12/18 11:20 p.m.121 views

web-security-vulnerability-labs

web-security-vulnerability-labs This repository documents han...

7.3AI score
Exploits0
GithubExploit
GithubExploitadded 2025/12/17 10:7 a.m.169 views

Exploit for CVE-2015-1427

Penetration Testing Framework !License: MIThttps://img.sh...

10CVSS8.4AI score0.94469EPSS
Exploits115
GithubExploit
GithubExploitadded 2025/10/02 4:38 p.m.225 views

pentest-automation-suite

Penetration Testing Automation Tools 🔴 Automated Penetratio...

7.6AI score
Exploits0
Gitee
Giteeadded 2025/09/20 12:14 a.m.144 views

Janusec-Application-Gateway

It is an offensive tool for web application security testing. The repository contains a tool for testing web application security, specifically for identifying vulnerabilities in web applications. The tool is designed to test for various types of vulnerabilities, including SQL injection, cross-si...

7.2AI score
Exploits0
Packet Storm
Packet Stormadded 2024/09/12 12:0 a.m.289 views

3DSecure 2.0 3DS Authorization Challenge Cross Site Scripting

Product: 3DSecure 2.0 Manufacturer: Redsys Affected Versions: 3DSecure 2.0 3DS Authorization Challenge Tested Versions: 3DSecure 2.0 3DS Authorization Challenge Vulnerability Type: Cross-Site Scripting XSS Risk Level: Medium Solution Status: Not yet fixed Manufacturer Notification: 2024-01-17...

7.4AI score
Exploits1
Packet Storm
Packet Stormadded 2024/09/12 12:0 a.m.350 views

3DSecure 2.0 3DS Method Authentication Cross Site Scripting

Product: 3DSecure 2.0 Manufacturer: Redsys Affected Versions: 3DSecure 2.0 3DS Method Authentication Tested Versions: 3DSecure 2.0 3DS Method Authentication Vulnerability Type: Cross-Site Scripting XSS Risk Level: Medium Solution Status: Not yet fixed Manufacturer Notification: 2024-01-17 Solutio...

7.4AI score
Exploits1
Gitee
Giteeadded 2023/02/08 4:9 p.m.3 views

vulhub

This is a collection of vulnerable web applications and tools for testing and learning about web application security. The repository contains a variety of applications, including CouchDB, FFmpeg, Git, and Jenkins, each with its own set of vulnerabilities. The applications are designed to be used...

7AI score
Exploits0
Gitee
Giteeadded 2021/04/26 1:22 p.m.3 views

vulhub

This is an open-source collection of pre-built vulnerable docker environments. It is an offensive tool for web application security testing. The primary vulnerability is not specified, but the repository contains various vulnerable environments, including ones for CouchDB, FFmpeg, Git, InfluxDB,...

7.1AI score
Exploits0
CNVD
CNVDadded 2020/10/21 12:0 a.m.5 views

Unspecified Vulnerability in HCL AppScan (CNVD-2021-13713)

HCL AppScan is a suite of dynamic analysis testing tools from HCL India. The tool is mainly used for web security testing. A security vulnerability exists in HCL AppScan Enterprise that stems from the use of broken or risky encryption algorithms to store REST API user details. No detailed...

5.3CVSS6.8AI score0.00111EPSS
Exploits0References1
CNVD
CNVDadded 2020/10/21 12:0 a.m.3 views

Unspecified Vulnerability in HCL AppScan

HCL AppScan is a suite of dynamic analysis testing tools from HCL India. The tool is mainly used for web security testing. A security vulnerability exists in HCL AppScan Enterprise, which stems from the lack of HTTP Strict-Transport-Security header in the Management section of the Enterprise...

7.5CVSS6.9AI score0.00322EPSS
Exploits0References1
Gitee
Giteeadded 2020/09/02 3:34 p.m.2 views

vulhub

It is an offensive tool for web application security training. The repository contains a collection of pre-built vulnerable docker environments, allowing users to practice web application security testing without requiring prior knowledge of docker. The tool is designed to be easy to use, with a...

7.2AI score
Exploits0
CNVD
CNVDadded 2020/07/08 12:0 a.m.9 views

Unspecified Vulnerability in HCL AppScan Enterprise advisory API

HCL AppScan Enterprise is a suite of dynamic analysis and testing tools from HCL India, which is primarily used for web security testing. A security vulnerability exists in the Advisory API documentation in HCL AppScan Enterprise 10.0.0 and earlier versions. The vulnerability can be exploited by ...

4.3CVSS6.8AI score0.0018EPSS
Exploits0References1
CNVD
CNVDadded 2020/07/08 12:0 a.m.7 views

HCL AppScan Cross-Site Scripting Vulnerability

HCL AppScan is a suite of dynamic analysis testing tools from HCL India, which is primarily used for web security testing. A cross-site scripting vulnerability exists in HCL AppScan Enterprise Edition version 10.0.0 and earlier. The vulnerability stems from the lack of proper validation of...

6.1CVSS6.4AI score0.00312EPSS
Exploits0References1
CNVD
CNVDadded 2020/04/08 12:0 a.m.1 views

Unspecified Vulnerability in HCL Technologies AppScan Standard Edition

HCL Technologies AppScan Standard Edition is a suite of dynamic analysis testing tools from HCL Technologies, India, which is primarily used for web security testing. HCL Technologies AppScan Standard Edition suffers from an unspecified vulnerability that stems from an incorrect account lockout...

9.8CVSS6.9AI score0.00351EPSS
Exploits0References1
CNVD
CNVDadded 2020/04/08 12:0 a.m.1 views

HCL Technologies AppScan Standard Edition XXE Vulnerability

HCL Technologies AppScan Standard Edition is a suite of dynamic analysis testing tools from HCL Technologies, India, which is primarily used for web security testing. HCL Technologies AppScan Standard Edition suffers from an XXE vulnerability. An attacker can exploit this vulnerability to disclos...

8.2CVSS6.5AI score0.00547EPSS
Exploits0References1
Rows per page
Query Builder