📄 Keras 3.13.0 HDF5 Shape Bomb Denial of Service

This script is a security research tool demonstrating a denial of service vulnerability in Keras model loading through malicious HDF5 shape bombs. It generates .keras model archives containing artificially declared extremely large tensor shapes designed to force excessive memory allocation during...

Exploit for CVE-2026-3462

CVE-2026-3462 Acrobat Reader | Improperly Controlled Modifica...

CORScanner

CORS Exploiter Automated CORS misconfiguration scanner with...

AI Agent Smart Contract Exploit Generation

We present A1, an agentic execution driven system that transforms any LLM into an end-to-end exploit generator. A1 has no hand-crafted heuristics and provides the agent with six domain-specific tools that enable autonomous vulnerability discovery. The agent can flexibly leverage these tools to...

Exploit for Insufficient Verification of Data Authenticity in Rarlab Winrar

CVE-2023-38831 - WinRAR File Extension Spoofing Vulnerability...

Exploit for Insufficient Verification of Data Authenticity in Rarlab Winrar

RaRCE, Exploit generator for CVE-2023-38831 !Contributors...

nipper-ng 0.11.10 - Remote Buffer Overflow Exploit

Exploit Title: nipper-ng 0.11.10 - Remote Buffer Overflow PoC Exploit Author: Guy Levin https://blog.vastart.dev Vendor Homepage: https://tools.kali.org/reporting-tools/nipper-ng Software Link: https://code.google.com/archive/p/nipper-ng/source/default/source Version: 0.11.10 Tested on: Debian CV...

Metaphor - Stagefright with ASLR bypass

Metaphor - Stagefright with ASLR bypass By Hanan Be'er from NorthBit Ltd. Link to whitepaper: https://raw.githubusercontent.com/NorthBit/Public/master/NorthBit-Metaphor.pdf Metaphor's source code is now released! The source include a PoC that generates MP4 exploits in real-time and bypassing ASLR...

Google Android 5.0.1 - Metaphor Stagefright (ASLR Bypass)

Google Android 5.0.1 - Metaphor Stagefright ASLR Bypass Source: https://github.com/NorthBit/Metaphor Metaphor - Stagefright with ASLR bypass By Hanan Be'er from NorthBit Ltd. Link to whitepaper: https://raw.githubusercontent.com/NorthBit/Public/master/NorthBit-Metaphor.pdf Twitter:...

CoreGraphics Information Disclosure - CVE-2014-4378

This article explores the exploitability of MobileSafari on IOS 7.1.x. Using a crafted PDF file as an HTML image makes it possible to leak information about the memory layout to the browser Javascript interpreter. Apple CoreGraphics library fails to validate input when parsing the colorspace...

SPIP 2.x - Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/53983/info SPIP is prone to multiple unspecified cross-site-scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user ...

Microsoft Windows - Animated Cursor '.ani' Universal Generator

-------------------------------------------------------------------------------- Info: .ANI RIFF Cursors 2007 universal exploit generator Tested on MS Internet Explorer 6.x-7.x, Windows XP SP2, Windows Vista Author: Yag Kohha 10xnGr33tz 2: Jamikazu, Skylined pretty good t-short on BH07 Europe -...

MS Windows Metafile (WMF) Remote File Download Exploit Generator

Exploit for unknown platform in category remote exploits ================================================================ MS Windows Metafile WMF Remote File Download Exploit Generator ================================================================ / \ / WMF nDay download Exploit Generator \ by...

MS Windows Metafile (WMF) Remote File Download Exploit Generator

No description provided by source. / \ / WMF nDay download Exploit Generator \ by Unl0ck Research Team / \ / greetz: rst/ghc ed, uf0, fost , uKt choix, nekd0, payhash, antq , blacksecurity black , 0x557 kaka, swan, sam, nolife , sowhat, tty64 izik ; This sploit is now full shit, so... kiddies par...