Lucene search
+L

122175 matches found

GithubExploit
GithubExploit
added 1 hour ago4 views

Exploit for Use After Free in Linux Linux_Kernel

GhostLock — OnePlus Kernel exploit targeting locked-bootloade...

7.8CVSS7.3AI score0.00125EPSS
Exploits26
GithubExploit
GithubExploit
added 6 hours ago14 views

Exploit for CVE-2026-63030

WordPress REST API Batch Route Confusion + SQL Injection → RCE...

9.1CVSS6.2AI score
Exploits9
GithubExploit
GithubExploit
added 7 hours ago17 views

Exploit for Deserialization of Untrusted Data in Siemens 6Bk1602-0Aa12-0Tp0_Firmware

log4shell-scanner A dependency-free, defensive scanner for...

10CVSS7.6AI score0.99999EPSS
Exploits359
GithubExploit
GithubExploit
added yesterday15 views

Exploit for OS Command Injection in Hikvision Ds-2Cd2026G2-Iu\/Sl_Firmware

HIKRAVEN 🛡️ Advanced Hikvision Security Assessmen...

9.8CVSS9.1AI score0.99869EPSS
Exploits25
GithubExploit
GithubExploit
added yesterday18 views

Exploit for OS Command Injection in Zoneminder

CVE-2023-26039 Description ZoneMinder is a free, open sou...

8.8CVSS8.2AI score0.01246EPSS
Exploits1
NVD
NVD
added yesterday5 views

CVE-2026-48049

@hapi/inert provides static file and directory handlers for hapi.js. From 4.0.0 to 7.1.0, @hapi/inert serves static files from a directory configured with path in the directory or file handlers or relativeTo for h.file, with confinement enforced by the confine option, but the confinement check...

5.3CVSS0.00062EPSS
Exploits0References4
EUVD
EUVD
added yesterday4 views

EUVD-2026-45341

@hapi/inert provides static file and directory handlers for hapi.js. From 4.0.0 to 7.1.0, @hapi/inert serves static files from a directory configured with path in the directory or file handlers or relativeTo for h.file, with confinement enforced by the confine option, but the confinement check...

5.3CVSS5.5AI score0.00062EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added yesterday3 views

CVE-2026-48049

@hapi/inert provides static file and directory handlers for hapi.js. From 4.0.0 to 7.1.0, @hapi/inert serves static files from a directory configured with path in the directory or file handlers or relativeTo for h.file, with confinement enforced by the confine option, but the confinement check...

5.3CVSS5.4AI score0.00062EPSS
Exploits0References5Affected Software1
Cvelist
Cvelist
added yesterday10 views

CVE-2026-48049 @hapi/inert: Static-file confinement bypass via sibling-prefix path

@hapi/inert provides static file and directory handlers for hapi.js. From 4.0.0 to 7.1.0, @hapi/inert serves static files from a directory configured with path in the directory or file handlers or relativeTo for h.file, with confinement enforced by the confine option, but the confinement check...

5.3CVSS0.00062EPSS
Exploits0References4
CVE
CVE
added yesterday28 views

CVE-2026-48049

The CVE-2026-48049 issue affects @hapi/inert (versions 4.0.0–7.1.0). A confinement bypass was caused by a flawed raw string-prefix path check, allowing an unauthenticated remote attacker to read files via traversal (e.g., /..%2fstatic-secret/secret.txt). The vulnerability is mitigated by upgradin...

5.3CVSS5.4AI score0.00062EPSS
Exploits0References4
Github Security Blog
Github Security Blog
added yesterday7 views

PRoot-Distro has Path Traversal in proot-distro copy — Arbitrary Read, Write, and Persistent Code Execution Outside Container Rootfs

Path Traversal in proot-distro copy — Arbitrary Read, Write, and Persistent Code Execution Outside Container Rootfs Repository https://github.com/termux/proot-distro Maintainer: @sylirre Affected Component Package: proot-distro Affected command: copy Attack surface: Host-side Termux CLI — this is...

6.2AI score
Exploits0References3Affected Software1
OSV
OSV
added yesterday5 views

GHSA-MFR4-MQ8W-VMG6 PRoot-Distro has Path Traversal in proot-distro copy — Arbitrary Read, Write, and Persistent Code Execution Outside Container Rootfs

Path Traversal in proot-distro copy — Arbitrary Read, Write, and Persistent Code Execution Outside Container Rootfs Repository https://github.com/termux/proot-distro Maintainer: @sylirre Affected Component Package: proot-distro Affected command: copy Attack surface: Host-side Termux CLI — this is...

6.6CVSS6.2AI score
Exploits0References3
Github Security Blog
Github Security Blog
added yesterday8 views

ExifReader HEIC/AVIF ISO-BMFF parser throws uncaught RangeError on truncated boxes

Summary ExifReader 4.40.0 can throw an uncaught RangeError: Offset is outside the bounds of the DataView while parsing crafted HEIC/AVIF files. The file only needs a valid leading ftyp box with a HEIC/AVIF major brand followed by a malformed ISO-BMFF box, such as an empty 8-byte free box or a...

5.6AI score
Exploits0References3Affected Software1
OSV
OSV
added yesterday5 views

GHSA-G77H-45RF-HCX4 ExifReader HEIC/AVIF ISO-BMFF parser throws uncaught RangeError on truncated boxes

Summary ExifReader 4.40.0 can throw an uncaught RangeError: Offset is outside the bounds of the DataView while parsing crafted HEIC/AVIF files. The file only needs a valid leading ftyp box with a HEIC/AVIF major brand followed by a malformed ISO-BMFF box, such as an empty 8-byte free box or a...

5.3CVSS5.6AI score
Exploits0References3
OSV
OSV
added yesterday6 views

GHSA-937X-GPQR-72GG Flask-Reuploaded: Extension-denylist bypass via case-folding asymmetry in name-override path (incomplete-fix variant of CVE-2026-27641)

Header | Field | Value | |---|---| | Title | Extension-denylist bypass via case-folding asymmetry in name-override path incomplete-fix variant of CVE-2026-27641 | | Project | Flask-Reuploaded flaskuploads | | Affected | extension"shell.php" = "php" - extensionallowed"php" - DENY correct...

7.5CVSS5.9AI score
Exploits0References3
Github Security Blog
Github Security Blog
added yesterday9 views

Flask-Reuploaded: Extension-denylist bypass via case-folding asymmetry in name-override path (incomplete-fix variant of CVE-2026-27641)

Header | Field | Value | |---|---| | Title | Extension-denylist bypass via case-folding asymmetry in name-override path incomplete-fix variant of CVE-2026-27641 | | Project | Flask-Reuploaded flaskuploads | | Affected | extension"shell.php" = "php" - extensionallowed"php" - DENY correct...

9.8CVSS5.8AI score0.01046EPSS
Exploits1References3Affected Software1
GithubExploit
GithubExploit
added yesterday16 views

Exploit for Deserialization of Untrusted Data in Snakeyaml_Project Snakeyaml

Sean's Surf & Skate Co. — Seal Security Demo Maven / Java A...

9.8CVSS7.8AI score0.99615EPSS
Exploits10
GithubExploit
GithubExploit
added yesterday17 views

Exploit for Deserialization of Untrusted Data in Snakeyaml_Project Snakeyaml

yaml-payload A SnakeYAML deserialization exploit payload for...

9.8CVSS7.4AI score0.99615EPSS
Exploits10
OSV
OSV
added yesterday5 views

GHSA-2V2F-MVFG-PH56 meta-ads-mcp: X-Pipeboard-Token Header Auth Bypass Reuses Operator Meta Token

X-Pipeboard-Token Header Auth Bypass Reuses Operator Meta Token Summary AuthInjectionMiddleware in meta-ads-mcp rejects HTTP MCP requests only when both authtoken and pipeboardtoken are absent. Because extracttokenfromheaders does not recognise the X-Pipeboard-Token header, an attacker who sends...

7.4CVSS5.7AI score
Exploits0References3
Github Security Blog
Github Security Blog
added yesterday5 views

meta-ads-mcp: X-Pipeboard-Token Header Auth Bypass Reuses Operator Meta Token

X-Pipeboard-Token Header Auth Bypass Reuses Operator Meta Token Summary AuthInjectionMiddleware in meta-ads-mcp rejects HTTP MCP requests only when both authtoken and pipeboardtoken are absent. Because extracttokenfromheaders does not recognise the X-Pipeboard-Token header, an attacker who sends...

5.7AI score
Exploits0References3Affected Software1
Rows per page
Query Builder