📄 SQLite 3.50.1 Heap Overflow

SQLite version 3.50.1 proof of concept that triggers a heap overflow in winsqlite3.dll via excessive aggregate functions. Exploit Title: SQLite 3.50.1 - Heap Overflow Date: 2025-11-05 Author: Mohammed Idrees Banyamer Author Country: Jordan Instagram: @banyamersecurity GitHub:...

AD/CS Authenticated Web Enrollment Services Module

Authenticates to the AD/CS Web enrollment service and allows the user to query templates and create certificates based on available templates. Module Options msf use auxiliary/admin/http/webenrollmentcert msf auxiliarywebenrollmentcert show actions ...actions... msf auxiliarywebenrollmentcert set...

Exploit for Improper Certificate Validation in Microsoft

CVE-2022-26923 – Certifried Exploit AD CS Abuse Automatisat...

PT-2026-6558

Name of the Vulnerable Software and Affected Versions Thales SafeNet Agent for Windows Logon versions 4.0.0 through 4.1.2 Description A flaw exists in the certificate validation process within SafeNet Agent for Windows Logon on Windows, potentially enabling signature spoofing. This issue stems fr...

EUVD-2011-1272

Malware in sbrugna...

EUVD-2022-40583

Malicious code in bioql PyPI...

EUVD-2023-39353

Malicious code in bioql PyPI...

EUVD-2023-39354

Malicious code in bioql PyPI...

EUVD-2025-14469

Malicious code in bioql PyPI...

EUVD-2022-40585

Malicious code in bioql PyPI...

Introducing: The Metasploit Pro AD CS Metamodule

Introducing the AD CS Workflows MetaModule: Now Generally Available in Metasploit Pro We're excited to announce that the AD CS Workflows MetaModule has officially moved from early access to general availability in Metasploit Pro! This powerful new feature represents a significant advancement in...

Vulnerabilities fixed in Microsoft Windows

Microsoft has fixed vulnerabilities in Windows. A malicious party can exploit the vulnerabilities to carry out attacks that can lead to the following categories of damage: - Denial-of-Service DoS - Circumvention of a security measure - Execution of arbitrary code root/admin privileges - Execution...

CVE-2025-29968

Improper input validation in Active Directory Certificate Services AD CS allows an authorized attacker to deny service over a network...

CVE-2025-29968

Improper input validation in Active Directory Certificate Services AD CS allows an authorized attacker to deny service over a network...

CVE-2025-29968 Active Directory Certificate Services (AD CS) Denial of Service Vulnerability

...

CVE-2025-29968 Active Directory Certificate Services (AD CS) Denial of Service Vulnerability

...

CVE-2025-29968

Technical details (affected product/versions, root cause, impact, exploit info, and fixes) are not provided in the connected documents. Based on the supplied sources, only the basic description and CVSS metrics are available. Monitor for updates.

Active Directory Certificate Services (AD CS) Denial of Service Vulnerability

Improper input validation in Active Directory Certificate Services AD CS allows an authorized attacker to deny service over a network...

Microsoft Active Directory Certificate Services 输入验证错误漏洞

Microsoft Active Directory Certificate Services is a Windows Server role that issues and manages Public Key Infrastructure PKI certificates used in secure communications and authentication protocols from Microsoft Corporation USA. An input validation error vulnerability exists in Microsoft Active...

PT-2025-20971 · Microsoft · Active Directory Certificate Services +1

Name of the Vulnerable Software and Affected Versions: Active Directory Certificate Services AD CS affected versions not specified Description: The issue is related to improper input validation, which allows an authorized attacker to deny service over a network. This can affect the system, leadin...