Lucene search
K

665 matches found

GithubExploit
GithubExploit
added 2026/02/15 1:59 p.m.147 views

Exploit for Path Traversal in Rarlab Winrar

RedFramework Фреймворк для исследования методов постэксплу...

8.8CVSS7.5AI score0.80906EPSS
Exploits35
GithubExploit
GithubExploit
added 2026/02/14 2:10 a.m.161 views

Exploit for Path Traversal in Rarlab Winrar

CVE-2025-8088 Explotación WinRAR Herramienta avanzada de...

8.8CVSS7.4AI score0.80906EPSS
Exploits35
GithubExploit
GithubExploit
added 2026/02/11 12:29 a.m.154 views

Exploit for Path Traversal in Rarlab Winrar

CVE-2025-8088 Este repositorio contiene un generador de archiv...

8.8CVSS5.4AI score0.80906EPSS
Exploits35
The Hacker News
The Hacker News
added 2026/02/04 2:9 p.m.9 views

China-Linked Amaranth-Dragon Exploits WinRAR Flaw in Espionage Campaigns

Threat actors affiliated with China have been attributed to a fresh set of cyber espionage campaigns targeting government and law enforcement agencies across Southeast Asia throughout 2025. Check Point Research is tracking the previously undocumented activity cluster under the moniker...

8.8CVSS8.5AI score0.80906EPSS
Exploits35
HackRead
HackRead
added 2026/01/28 3:49 p.m.9 views

Hackers Still Using Patched WinRAR Flaw for Malware Drops, Warns Google

The Google Threat Intelligence Group GTIG warns that nation-state actors and financially motivated threat actors are exploiting a…...

5.9AI score
Exploits0
The Hacker News
The Hacker News
added 2026/01/28 9:46 a.m.12 views

Google Warns of Active Exploitation of WinRAR Vulnerability CVE-2025-8088

Google on Tuesday revealed that multiple threat actors, including nation-state adversaries and financially motivated groups, are exploiting a now-patched critical security flaw in RARLAB WinRAR to establish initial access and deploy a diverse array of payloads. "Discovered and patched in July 202...

8.8CVSS7.7AI score0.86192EPSS
Exploits43
The Hacker News
The Hacker News
added 2026/01/20 1:46 p.m.8 views

Hackers Use LinkedIn Messages to Spread RAT Malware Through DLL Sideloading

Cybersecurity researchers have uncovered a new phishing campaign that exploits social media private messages to propagate malicious payloads, likely with the intent to deploy a remote access trojan RAT. The activity delivers "weaponized files via Dynamic Link Library DLL sideloading, combined wit...

6.2AI score
Exploits0
Malwarebytes
Malwarebytes
added 2026/01/12 8:2 a.m.6 views

A week in security (January 5 – January 11)

Last week on Malwarebytes Labs: pcTattletale founder pleads guilty as US cracks down on stalkerware Are we ready for ChatGPT Health? CISA warns of active attacks on HPE OneView and legacy PowerPoint Lego’s Smart Bricks explained: what they do, and what they don’t Fake WinRAR downloads hide malwar...

7AI score
Exploits0
GithubExploit
GithubExploit
added 2026/01/09 2:14 p.m.191 views

Exploit for Insufficient Type Distinction in Rarlab Winrar

CVE-2023-38831 WinRAR Exploit PoC This repository contains a...

7.8CVSS7.1AI score0.97798EPSS
Exploits49
Malwarebytes
Malwarebytes
added 2026/01/08 10:36 a.m.7 views

Fake WinRAR downloads hide malware behind a real installer

A member of our web research team pointed me to a fake WinRAR installer that was linked from various Chinese websites. When these links start to show up, that’s usually a good indicator of a new campaign. So, I downloaded the file and started an analysis, which turned out to be something of a...

6.9AI score
Exploits0
GithubExploit
GithubExploit
added 2026/01/02 6:19 p.m.184 views

Exploit for Path Traversal in Rarlab Winrar

CVE-2025-8088 WinRAR path traversal tool ⚠ This tool is c...

8.8CVSS7AI score0.80906EPSS
Exploits35
GithubExploit
GithubExploit
added 2025/12/16 8:1 a.m.157 views

Exploit for Path Traversal in Rarlab Winrar

!Window...

7.8CVSS7AI score0.86192EPSS
Exploits8
The Hacker News
The Hacker News
added 2025/12/15 12:24 p.m.31 views

⚡ Weekly Recap: Apple 0-Days, WinRAR Exploit, LastPass Fines, .NET RCE, OAuth Scams & More

If you use a smartphone, browse the web, or unzip files on your computer, you are in the crosshairs this week. Hackers are currently exploiting critical flaws in the daily software we all rely on—and in some cases, they started attacking before a fix was even ready. Below, we list the urgent...

10CVSS9.3AI score0.99562EPSS
Exploits439
GithubExploit
GithubExploit
added 2025/12/15 10:8 a.m.160 views

Exploit for Path Traversal in Rarlab Winrar

CVE-2025-6218-WinRAR-RCE-POC Com...

7.8CVSS7.1AI score0.86192EPSS
Exploits8
The Hacker News
The Hacker News
added 2025/12/10 11:54 a.m.20 views

Warning: WinRAR Vulnerability CVE-2025-6218 Under Active Attack by Multiple Threat Groups

The U.S. Cybersecurity and Infrastructure Security Agency CISA on Tuesday added a security flaw impacting the WinRAR file archiver and compression utility to its Known Exploited Vulnerabilities KEV catalog, citing evidence of active exploitation. The vulnerability, tracked as CVE-2025-6218 CVSS...

8.8CVSS8AI score0.86192EPSS
Exploits43
CISA
CISA
added 2025/12/09 12:0 p.m.13 views

CISA Adds Two Known Exploited Vulnerabilities to Catalog

CISA has added two new vulnerabilities to its Known Exploited Vulnerabilities KEV Catalog, based on evidence of active exploitation. CVE-2025-6218link is external RARLAB WinRAR Path Traversal Vulnerability CVE-2025-62221link is external Microsoft Windows Use After Free Vulnerability These types o...

7.8CVSS6.8AI score0.86192EPSS
In wildExploits10References7
CISA KEV Catalog
CISA KEV Catalog
added 2025/12/09 12:0 a.m.9 views

RARLAB WinRAR Path Traversal Vulnerability

RARLAB WinRAR contains a path traversal vulnerability allowing an attacker to execute code in the context of the current user...

7.8CVSS7.3AI score0.86192EPSS
In wildExploits8
Securelist
Securelist
added 2025/12/03 10:0 a.m.13 views

Exploits and vulnerabilities in Q3 2025

In the third quarter, attackers continued to exploit security flaws in WinRAR, while the total number of registered vulnerabilities grew again. In this report, we examine statistics on published vulnerabilities and exploits, the most common security issues impacting Windows and Linux, and the...

10CVSS9.3AI score0.99982EPSS
Exploits454
Positive Technologies
Positive Technologies
added 2025/11/30 12:0 a.m.10 views

PT-2025-48392

Name of the Vulnerable Software and Affected Versions WinRAR versions prior to the fix for CVE-2025-80880 Description A wiper named GamaWiper, based on VBScript, has been identified in attacks targeting Ukraine. The initial access is gained through the exploitation of a vulnerability in WinRAR. T...

6.7AI score
Exploits0References2
GithubExploit
GithubExploit
added 2025/11/29 5:20 p.m.183 views

Exploit for Path Traversal in Rarlab Winrar

☠️ CVE-2025-8088 WinRAR Exploit Tool ☠️ SYSTEM ACCESS:...

8.8CVSS6.8AI score0.80906EPSS
Exploits35
Rows per page
Query Builder