CVE-2026-2246

A security vulnerability has been detected in AprilRobotics apriltag up to 3.4.5. Affected by this vulnerability is the function apriltagdetectordetect of the file apriltag.c. The manipulation leads to memory corruption. The attack must be carried out locally. The exploit has been disclosed...

CVE-2026-2246

A security vulnerability has been detected in AprilRobotics apriltag up to 3.4.5. Affected by this vulnerability is the function apriltagdetectordetect of the file apriltag.c. The manipulation leads to memory corruption. The attack must be carried out locally. The exploit has been disclosed...

CVE-2026-2246

CVE-2026-2246 affects the apriltag library (AprilRobotics) up to version 3.4.5. The vulnerability targets function apriltag_detector_detect in apriltag.c and results in memory corruption when exploited locally. Publicly disclosed exploit details are available, and a patch is identified by the pat...

KRONE: Hierarchical and Modular Log Anomaly Detection

Log anomaly detection is crucial for uncovering system failures and security risks. Although logs originate from nested component executions with clear boundaries, this structure is lost when they are stored as flat sequences. As a result, state-of-the-art methods risk missing true dependencies...

Detecting backdoored language models at scale

Today, we are releasing new research on detecting backdoors in open-weight language models. Our research highlights several key properties of language model backdoors, laying the groundwork for a practical scanner designed to detect backdoored models at scale and improve overall trust in AI...

xss_detector

No d...

TrojanGYM: A Detector-In-The-Loop LLM for Adaptive RTL Hardware Trojan Insertion

Hardware Trojans HTs remain a critical threat because learning-based detectors often overfit to narrow trigger/payload patterns and small, stylized benchmarks. We introduce TrojanGYM, an agentic, LLM-driven framework that automatically curates HT insertions to expose detector blind spots while...

Exploit for CVE-2025-36911

This is not an exploit for CVE-20...

CVE-2020-12122

In Max Secure Max Spyware Detector 1.0.0.044, the driver file MaxProc64.sys allows local users to cause a denial of service BSOD or possibly have unspecified other impact because of not validating input values from IOCtl 0x2200019. This also extends to the various other products from Max Secure...

Exploit for Improper Handling of Length Parameter Inconsistency in Mongodb

Mongobleed-D...

vulnerability-detector-platform

No d...

Exploit for CVE-2025-14847

CYBERDUDEBIVASH MONGODB DETECTOR TOOL v2026.1 Detect expose...

sql-injection-detector

No d...

PT-2025-53131

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a memory leak in the kexec functionality related to the ELF header buffer. The issue is identified by the kmemleak detector and occurs during the elf kexec load...

Cloud Security Leveraging AI: A Fusion-Based AISOC for Malware and Log Behaviour Detection

Cloud Security Operations Center SOC enable cloud governance, risk and compliance by providing insights visibility and control. Cloud SOC triages high-volume, heterogeneous telemetry from elastic, short-lived resources while staying within tight budgets. In this research, we implement an...

Exploit for Deserialization of Untrusted Data in Facebook React

React2Shell Detector A Chrome extension for detecting React2S...

Exploit for Deserialization of Untrusted Data in Facebook React

RSC/Next.js RCE Vulnerability Detector & PoC Chrome Extensio...

One Signature, Multiple Payments: Demystifying and Detecting Signature Replay Vulnerabilities in Smart Contracts

Smart contracts have significantly advanced blockchain technology, and digital signatures are crucial for reliable verification of contract authority. Through signature verification, smart contracts can ensure that signers possess the required permissions, thus enhancing security and scalability...

Improper Input Validation

Overview dataproduct-mcp is an A Model Context Protocol MCP server for discovering data products, requesting access, and executing queries on the data platform to access business data. Affected versions of this package are vulnerable to Improper Input Validation due to the detector being disabled...

Coordinated Position Falsification Attacks and Countermeasures for Location-Based Services

With the rise of location-based service LBS applications that rely on terrestrial and satellite infrastructures e.g., GNSS and crowd-sourced Wi-Fi, Bluetooth, cellular, and IP databases for positioning, ensuring their integrity and security is paramount. However, we demonstrate that these...