PT-2026-34622

Name of the Vulnerable Software and Affected Versions Paperclip versions prior to 2026.416.0 Description An unauthenticated attacker can achieve full remote code execution on any network-accessible instance running in authenticated mode with default configuration. The issue involves an import...

Dir-Listing-Auto-Exploit

Dir...

A Multi-Agent Framework for Automated Exploit Generation with Constraint-Guided Comprehension and Reflection

Open-source libraries are widely used in modern software development, introducing significant security vulnerabilities. While static analysis tools can identify potential vulnerabilities at scale, they often generate overwhelming reports with high false positive rates. Automated Exploit Generatio...

AutoEG: Exploiting Known Third-Party Vulnerabilities in Black-Box Web Applications

Large-scale web applications are widely deployed with complex third-party components, inheriting security risks arising from component vulnerabilities. Security assessment is therefore required to determine whether such known vulnerabilities remain practically exploitable in real applications...

Exploit for Path Traversal in Apache Http_Server

Apache 2.4.49 Path Traversal Lab — CVE-2021-41773 Clone...

Breaking Isolation: A New Perspective on Hypervisor Exploitation Via Cross-Domain Attacks

Hypervisors are under threat by critical memory safety vulnerabilities, with pointer corruption being one of the most prevalent and severe forms. Existing exploitation frameworks depend on identifying highly-constrained structures in the host machine and accurately determining their runtime...

Exploit for CVE-2025-59287

CVE-2025-59287 WSUS RCE Exploit Automated exploit for Windows...

Good News for Script Kiddies? Evaluating Large Language Models for Automated Exploit Generation

Large Language Models LLMs have demonstrated remarkable capabilities in code-related tasks, raising concerns about their potential for automated exploit generation AEG. This paper presents the first systematic study on LLMs' effectiveness in AEG, evaluating both their cooperativeness and technica...

Exploit for Path Traversal in Grafana

Automated Exploit Tool for Grafana CVE-2021-43798 !Previewi...

Exploit for Improper Input Validation in Cacti

CVE-2024-25641-RCE-Automated-Exploit-Cacti-1.2.26 Fully auto...

Exploit for Special Element Injection in Google Android

EvilDroid: Automated Exploit for CVE-2024-0044 EvilDroid...

Exploit for Path Traversal in Jenkins

🤵🏻 CVE-2024-23897 Arbitrary-file-read 🤵🏻 ============= ---------...

Travel Management System 1.0 Remote Code Execution

Exploit Title: Travel Management System v1.0 - Unauthenticated Remote Code Execution Exploit Author: Adeeb Shah @hyd3sec & Bobby Cooke boku Vulnerability Discovery: Adeeb Shah @hyd3sec Date: August 10, 2020 Vendor Homepage: https://projectworlds.in/ Software Link:...

ROPGenerator - Tool That Helps You Building ROP Exploits By Finding And Chaining Gadgets Together

ROPGenerator is a tool that makes ROP exploits easy. It enables you to automatically find gadgets or build ROP chains. The current version supports x86 and x64 binaries. Overview ROPGenerator uses the tool ROPgadget https://github.com/JonathanSalwan/ROPgadget to extract gadgets from binaries and...

Cisco Multiple Products Automated Exploit Tool

No description provided by source. !/usr/bin/perl Written by hypoclear - http://hypoclear.cjb.net Thong-th-thong-th-thong.pl AKA thong.pl is a PERL script which automates several attacks against various Cisco products. To be specific: 12-13-00 - Cisco Catalyst ssh Protocol Mismatch DoS...

dune[0.6.7+-]: remote buffer overflow exploit. (httpd)

automated exploit for dune0.6.7+- webserver, source comments explain... original source: http://fakehalo.deadpig.org/xdune.c Vade79 - [email protected] - fakehalo. ----------------- example usage ----------------- v9@localhost v9$ ./xdune localhost dune0.6.7+-: remote buffer overflow exploi...