Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

GithubExploit
GithubExploitadded 5 days ago56 views

Exploit for CVE-2025-66478

CVE-2025-66478-Research-Proof-of-Concept Overview This re...

7.5AI score
Exploits110
Packet Storm
Packet Stormadded 2026/03/12 12:0 a.m.131 views

📄 Microsoft Windows LNK File Remote Code Execution

This PHP script is a proof of concept exploit that demonstrates how to create a Windows LNK shortcut file that executes a PowerShell command in this example, launches calc.exe...

7.8CVSS5.8AI score0.00912EPSS
Exploits3
Packet Storm News
Packet Storm Newsadded 2026/02/10 12:0 a.m.1 views

OpenSSL 3.x Malicious AES‑GCM ASN.1 Parameter Injection

This C code is a security research proof of concept targeting OpenSSL's CMS Cryptographic Message Syntax handling. It programmatically creates a syntactically valid CMS AuthEnvelopedData object using AES-256-GCM, then injects a custom-crafted ASN.1 AESGCMPARAMETERS sequence with an abnormally lar...

9.8CVSS5.6AI score0.02889EPSS
Exploits7
Packet Storm
Packet Stormadded 2026/02/03 12:0 a.m.127 views

📄 Chromium Memory Corruption Trigger Simulation

This is a theoretical trigger simulation for a Chromium-class vulnerability associated with memory corruption scenarios commonly affecting the V8 JavaScript engine or the Blink rendering engine. The code intentionally performs heap allocation patterns and unsafe memory access attempts in order to...

6.5CVSS6.1AI score0.00059EPSS
Exploits1
GithubExploit
GithubExploitadded 2025/12/08 12:54 p.m.121 views

Exploit for Deserialization of Untrusted Data in Facebook React

RSC Surface & Crash Detector This tool is a non-intrusive sec...

10CVSS7.1AI score0.82011EPSS
Exploits372
GithubExploit
GithubExploitadded 2025/10/25 3:8 a.m.132 views

RAT-Vulnerabilities

🐀 RAT Vulnerabilities 🐀 --- 🚩 Project overview...

8AI score
Exploits0
Gitee
Giteeadded 2023/06/15 7:46 p.m.1 views

vulhub

This repository is an open-source collection of pre-built vulnerable Docker environments, known as Vulhub. It is a defensive research tool for improving detection, response, and patch prioritization. The repository contains various vulnerable environments, including CouchDB, FFmpeg, Git, and more...

7AI score
Exploits0
Gitee
Giteeadded 2021/04/14 11:8 p.m.1 views

ysoserial

This is a Java tool called ysoserial, which generates payloads that exploit unsafe Java object deserialization. The tool is designed to create gadgets that can be used to execute arbitrary code on a Java application that performs unsafe deserialization. The tool takes a user-specified command and...

8AI score
Exploits0
Gitee
Giteeadded 2020/09/01 9:22 a.m.2 views

ysoserial

This is a Java tool called ysoserial, which is a proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization. The tool is designed to create payloads that can be used to execute arbitrary code on a Java application that performs unsafe deserialization of objects...

8AI score
Exploits0
Kitploit
Kitploitadded 2019/09/03 9:59 p.m.145 views

mpDNS - Multi-Purpose DNS Server

Simple, configurable "clone & run" DNS Server with multiple useful features Should work on Python 2 and 3 names.db - holds all custom records see examples Simple wildcards like .example.com Catch unicode dns requests Custom actions aka macro: shellexec::dig google.com +short - Execute shell comma...

7.9AI score
Exploits0References2
Rows per page
Query Builder