Lucene search
K

544440 matches found

GithubExploit
GithubExploit
added 52 minutes ago3 views

Exploit for Path Traversal in Apache Http_Server

CVE-2021-42013 - Apache HTTP Server 2.4.50 경로 조작 RCE 작성: eu...

9.8CVSS7.2AI score0.99992EPSS
Exploits174
BDU FSTEC
BDU FSTEC
added 1 hour ago21 views

The vulnerability of the pg_dump utility in the PostgreSQL database management system allows a hacker to execute arbitrary code.

The vulnerability of the pgdump utility in the PostgreSQL database management system is related to the lack of security measures for SQL query structures. Exploiting this vulnerability allows a malicious actor to execute arbitrary code remotely...

10CVSS7AI score0.00385EPSS
Exploits0References11Affected Software9
BDU FSTEC
BDU FSTEC
added 1 hour ago16 views

The vulnerability of the pg_dump utility in the PostgreSQL database management system allows a hacker to execute arbitrary code.

The vulnerability of the pgdump utility in the PostgreSQL database management system is related to the inclusion of functions from an unverified and uncontrolled area. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code remotely...

10CVSS7.2AI score0.00709EPSS
Exploits1References11Affected Software9
BDU FSTEC
BDU FSTEC
added 1 hour ago7 views

The vulnerability in the drivers/bluetooth/btnxpuart.c module of Linux operating systems allows a hacker to cause a service failure.

The vulnerability in the drivers/bluetooth/btnxpuart.c module of Linux operating systems is related to incorrect resource management. Exploiting this vulnerability can allow an attacker to cause service failures...

5.5CVSS6AI score0.00119EPSS
Exploits0References6Affected Software4
GithubExploit
GithubExploit
added 2 hours ago9 views

Exploit for CVE-2026-40047

camel-docling CLI Argument Injection / Path Traversal Reproduc...

9.1CVSS6AI score0.01257EPSS
Exploits1
GithubExploit
GithubExploit
added 2 hours ago8 views

Exploit for Cross-site Scripting in Combodo Itop

CVE-2023-36664: Ghostscript Remote Code Execution 취약점 요약...

8.8CVSS7AI score0.03236EPSS
Exploits4
ATTACKERKB
ATTACKERKB
added 2 hours ago2 views

CVE-2026-15041

A flaw was found in 389 Directory Server. The PBKDF2-SHA256 password verification function uses standard memcmp for comparing password hashes instead of a constant-time comparison function. A remote attacker could potentially use timing measurements of LDAP bind attempts to infer partial hash...

3.7CVSS5.9AI score
Exploits0References3
ATTACKERKB
ATTACKERKB
added 3 hours ago2 views

CVE-2026-56003

A heap buffer overflow due to missing size checking in the property buffer when parsing PCF files in libXfont2 ComputeScaledProperties before libXfont2 before 2.0.8 could be used by attackers using authenticated X clients to execute code within the X server...

8.5CVSS6.3AI score
Exploits0References3
ATTACKERKB
ATTACKERKB
added 3 hours ago2 views

CVE-2026-56002

A heap bufferflow in pcfReadFont due to missing glyph bounds checking in libXfont2 before 2.0.8 allows attackers authenticated as X client to execute code within the X server...

8.5CVSS6.1AI score
Exploits0References3
ATTACKERKB
ATTACKERKB
added 4 hours ago2 views

CVE-2026-56001

A heap buffer overflow in BitmapScaleBitmaps in libXfont2 before 2.0.8 due to an overflowing 32bit size could be used by attackers able to access the X Server to execute code within the X server cont...

8.5CVSS6.3AI score
Exploits0References3
ATTACKERKB
ATTACKERKB
added 4 hours ago2 views

CVE-2026-6280

Exposure of sensitive information due to incompatible policies vulnerability in NOMYSOFT Informatics Education and Consulting Inc. Nomysem allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects Nomysem: through 08072026. NOTE: The vendor was contacted early about this...

6.5CVSS5.9AI score
Exploits0References2
GithubExploit
GithubExploit
added 4 hours ago9 views

POC

🛡️ POC Vulnerability Verification Toolset !License: MITht...

5.9AI score
Exploits0
GithubExploit
GithubExploit
added 4 hours ago12 views

sqlilabs-waf-bypass

SQLi-Labs WAF Bypass Project Target: http://home.ctfst...

6AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 5 hours ago6 views

CVE-2026-55999

Local attackers with a X connection able to provide PCX fonts to the X server xorg-server before 21.2.24 and xwayland before 24.1.13 could cause a heap buffer overflow via SetFont due to missing glyph boundary checks...

8.5CVSS6.2AI score
Exploits0References3
ATTACKERKB
ATTACKERKB
added 5 hours ago5 views

CVE-2026-13126

The embedded JavaScript in the PDF deleted the pages, making the object invalid. The application attempted to perform a write operation on the invalid pop-up annotations, resulting in the program crashing...

7.8CVSS6AI score
Exploits0References2Affected Software2
ATTACKERKB
ATTACKERKB
added 5 hours ago4 views

CVE-2026-13127

The application opens the PDF file. JavaScript then rewrites the document to modify the page structure, resulting in the invalidation of the page objects. However, the thumbnails still use the invalid page objects, ultimately causing the application to crash...

7.8CVSS6AI score
Exploits0References2Affected Software2
ATTACKERKB
ATTACKERKB
added 5 hours ago7 views

CVE-2026-13128

Embedding JavaScript within a PDF file will cause the page to be deleted. Subsequent scripts will continue to access the relevant properties of the document view, eventually leading to the crash of the application...

7.8CVSS5.9AI score
Exploits0References2Affected Software2
ATTACKERKB
ATTACKERKB
added 5 hours ago5 views

CVE-2026-57239

The user-controllable executable files will be directly executed by high-privilege processes, allowing low-privilege users to have the opportunity to elevate their privileges to NT AUTHORITY\SYSTEM...

8.2CVSS6AI score
Exploits0References2Affected Software2
ATTACKERKB
ATTACKERKB
added 5 hours ago5 views

CVE-2026-57240

When the application opens a PDF file and JavaScript deletes the PDF fields, the subsequent logic still uses the old field pointers, resulting in invalid pointer references and causing the application to crash...

7.8CVSS6AI score
Exploits0References2Affected Software2
ATTACKERKB
ATTACKERKB
added 5 hours ago5 views

CVE-2026-13129

When the application opens a PDF file, JavaScript uses the damaged field tree to trigger field traversal, resulting in the program holding an invalid form object when accessing the field property path. Eventually, the application crashes due to reading an invalid pointer...

7.8CVSS6AI score
Exploits0References2Affected Software2
Rows per page
Query Builder