Lucene search
K

12957 matches found

GithubExploit
GithubExploit
added 2026/02/07 9:8 p.m.152 views

fuzzing-portfolio-project

Fuzzing Portfolio Project: Heap Overflow Discovery Author:...

6.1AI score
Exploits0
GithubExploit
GithubExploit
added 2026/02/07 5:53 p.m.168 views

kog-bonds-poc

KOG Bonds POC Agent Complete proof-of-concept demonstrating e...

5.5AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/02/07 12:0 a.m.4 views

SoK: DARPA'S AI Cyber Challenge (AIxCC): Competition Design, Architectures, and Lessons Learned

DARPA's AI Cyber Challenge AIxCC, 2023--2025 is the largest competition to date for building fully autonomous cyber reasoning systems CRSs that leverage recent advances in AI -- particularly large language models LLMs -- to discover and remediate vulnerabilities in real-world open-source software...

5.8AI score
Exploits0
Schneier on Security
Schneier on Security
added 2026/02/06 12:0 p.m.8 views

iPhone Lockdown Mode Protects Washington Post Reporter

404Media is reporting that the FBI could not access a reporter's iPhone because it had Lockdown Mode enabled: The court record shows what devices and data the FBI was able to ultimately access, and which devices it could not, after raiding the home of the reporter, Hannah Natanson, in January as...

5.5AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/02/06 3:57 a.m.8 views

Malicious code in @sporting-life/sportinglife-betslip-sdk (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 03ea37f49a71528d3b04ca0f85062647957839058cc40ad9ce8d1a60a1dd51c6 The package @sporting-life/sportinglife-betslip-sdk was found to contain malicious code. Source: ghsa-malware...

5.4AI score
Exploits0References1
OSV
OSV
added 2026/02/06 3:46 a.m.4 views

MAL-2026-786 Malicious code in @rsgweb/locale-tools (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b1882e2ffa769f9383127f2bfc582935b3bb1145e172eb6941a0276989a983f The package @rsgweb/locale-tools was found to contain malicious code. Source: ghsa-malware...

5.6AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/02/06 3:46 a.m.6 views

Malicious code in @rsgweb/locale-tools (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 6b1882e2ffa769f9383127f2bfc582935b3bb1145e172eb6941a0276989a983f The package @rsgweb/locale-tools was found to contain malicious code. Source: ghsa-malware...

5.4AI score
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/02/06 1:25 a.m.5 views

CVE-2024-40685

IBM Operations Analytics – Log Analysis versions 1.3.5.0 through 1.3.8.3 and IBM SmartCloud Analytics – Log Analysis are vulnerable to a cross-site request forgery CSRF vulnerability that could allow an attacker to trick a trusted user into performing unauthorized actions...

4.3CVSS5.2AI score0.00128EPSS
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/02/05 9:21 p.m.8 views

Malicious code in ethers-lint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 315365a10d9e3322792c18bdb8c5a8e620bbcc2a9ad8d5a1d5ef139ef6e47777 The package ethers-lint was found to contain malicious code. Source: ossf-package-analysis...

5.4AI score
Exploits0
OSV
OSV
added 2026/02/05 9:21 p.m.5 views

MAL-2026-773 Malicious code in ethers-lint (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 315365a10d9e3322792c18bdb8c5a8e620bbcc2a9ad8d5a1d5ef139ef6e47777 The package ethers-lint was found to contain malicious code. Source: ossf-package-analysis...

5.4AI score
Exploits0
GithubExploit
GithubExploit
added 2026/02/05 7:41 p.m.144 views

Ethical-Hacking-Tools-Level2

🛡️ Cybersecurity & Python Portfolio - Level 2 Author: Pa...

5.3AI score
Exploits0
OSV
OSV
added 2026/02/05 6:36 p.m.4 views

MAL-2026-770 Malicious code in xpack-per-user (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector fd02e72044e1a432dd520594d89d568cdd80feaef160f24160f04cc549662c08 The package xpack-per-user was found to contain malicious code. Source: ghsa-malware 1182af58fca66833bb4a361e986f5ba960d9e9ab320cd787464bda92246392fb...

5.9AI score
Exploits0References1
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/02/05 8:16 a.m.10 views

Malicious code in conp-dats-editor (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector adac2b3e811707a0113ec1484330ebada12a632966c81143eab49233e87cabbf The package conp-dats-editor was found to contain malicious code. Source: ossf-package-analysis...

5.4AI score
Exploits0
EUVD
EUVD
added 2026/02/05 12:31 a.m.4 views

EUVD-2024-55398

IBM Operations Analytics – Log Analysis versions 1.3.5.0 through 1.3.8.3 and IBM SmartCloud Analytics – Log Analysis are vulnerable to a cross-site request forgery CSRF vulnerability that could allow an attacker to trick a trusted user into performing unauthorized actions...

4.3CVSS5.2AI score0.00128EPSS
Exploits0References2
Packet Storm News
Packet Storm News
added 2026/02/05 12:0 a.m.3 views

Identifying Adversary Tactics and Techniques in Malware Binaries with an LLM Agent

Understanding TTPs Tactics, Techniques, and Procedures in malware binaries is essential for security analysis and threat intelligence, yet remains challenging in practice. Real-world malware binaries are typically stripped of symbols, contain large numbers of functions, and distribute malicious...

5.4AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/02/05 12:0 a.m.5 views

Persistent Human Feedback, LLMs, and Static Analyzers for Secure Code Generation and Vulnerability Detection

Existing literature heavily relies on static analysis tools to evaluate LLMs for secure code generation and vulnerability detection. We reviewed 1,080 LLM-generated code samples, built a human-validated ground-truth, and compared the outputs of two widely used static security tools, CodeQL and...

5.5AI score
Exploits0
Packet Storm News
Packet Storm News
added 2026/02/05 12:0 a.m.3 views

Semi-Device-Independent Quantum Random Number Generator Resistant to General Attacks

Quantum random number generators QRNGs produce true random numbers based on the inherent randomness of quantum theory, rendering them a foundational segment of quantum cryptography. Distinguished from trusted-device QRNGs whose security depends on characterized devices, semi-device-independent...

5.5AI score
Exploits0
NVD
NVD
added 2026/02/04 10:15 p.m.3 views

CVE-2024-40685

IBM Operations Analytics – Log Analysis versions 1.3.5.0 through 1.3.8.3 and IBM SmartCloud Analytics – Log Analysis are vulnerable to a cross-site request forgery CSRF vulnerability that could allow an attacker to trick a trusted user into performing unauthorized actions...

4.3CVSS0.00128EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/02/04 9:12 p.m.24 views

CVE-2024-40685 IBM Operations Analytics - Log Analysis is affected by CSRF Token Replay Attack

IBM Operations Analytics – Log Analysis versions 1.3.5.0 through 1.3.8.3 and IBM SmartCloud Analytics – Log Analysis are vulnerable to a cross-site request forgery CSRF vulnerability that could allow an attacker to trick a trusted user into performing unauthorized actions...

4.3CVSS0.00128EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/04 9:12 p.m.4 views

CVE-2024-40685 IBM Operations Analytics - Log Analysis is affected by CSRF Token Replay Attack

IBM Operations Analytics – Log Analysis versions 1.3.5.0 through 1.3.8.3 and IBM SmartCloud Analytics – Log Analysis are vulnerable to a cross-site request forgery CSRF vulnerability that could allow an attacker to trick a trusted user into performing unauthorized actions...

4.3CVSS5.2AI score0.00128EPSS
Exploits0References1
Rows per page
Query Builder