Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

274282 matches found

GithubExploit
GithubExploitadded 2026/04/06 8:3 a.m.116 views

Exploit for Use After Free in Redis

CVE-2025-49844 RediShell AI-made Revshell PoC Untested comple...

9.9CVSS6.4AI score0.86268EPSS
Exploits15
GithubExploit
GithubExploitadded 2026/04/06 6:1 a.m.89 views

github-repo-scanner

No d...

5.9AI score
Exploits0
GithubExploit
GithubExploitadded 2026/04/06 5:36 a.m.104 views

Exploit for Out-of-bounds Write in Tp-Link Omada_Sg2005P-Pd_Firmware

Proof-of-concept exploit for CVE-2026-1668 This is a proof-of...

9.8CVSS5.9AI score0.00969EPSS
Exploits1
GithubExploit
GithubExploitadded 2026/04/06 1:2 a.m.105 views

SmartContract-VulnHunter

🛡️ SmartContract VulnHunter The ultimate smart contract securi...

5.9AI score
Exploits0
Packet Storm
Packet Stormadded 2026/04/06 12:0 a.m.104 views

📄 Zhiyuan OA Traversal / File Upload

Path traversal and improper validation in the multipart file upload handling of Zhiyuan OA's wpsAssistServlet allows an attacker to place crafted files outside the intended directories by controlling the realFileType and fileId parameters. Exploit Title: Zhiyuan OA - arbitrary file upload leading...

10CVSS5.9AI score0.10212EPSS
Exploits3
Packet Storm
Packet Stormadded 2026/04/06 12:0 a.m.76 views

📄 WordPress Madera 2.2.2 Local File Inclusion

WordPress Madera plugin versions 2.2.2 and below suffer from a local file inclusion vulnerability. Exploit Title: WordPress Madara Local File Inclusion Date: November 1, 2025 Exploit Author: Beatriz Fresno Naumova Vendor Homepage: WordPress Theme Madara Software Link: WordPress Theme Madara Teste...

9.8CVSS7.2AI score0.09094EPSS
Exploits5
Packet Storm
Packet Stormadded 2026/04/06 12:0 a.m.94 views

📄 Fuel CMS 1.4.1 Remote Command Execution

Fuel CMS version 1.4.1 unauthenticated remote command execution exploit that leverages an issue discovered back in 2018. !/usr/bin/python3 Exploit Title: Fuel CMS 1.4.1 - Remote Code Execution RCE via filter parameter Google Dork: intitle:"Welcome to Fuel CMS" inurl:/fuel/ Date: 2025-04-05 Exploi...

9.8CVSS7.4AI score0.82937EPSS
Exploits17
Packet Storm
Packet Stormadded 2026/04/06 12:0 a.m.97 views

📄 Grafana 11.6.0 Server-Side Request Forgery

Grafana versions 11.2.0 through 11.6.0 suffer from a server-side request forgery vulnerability. Exploit Title: Grafana 11.6.0 - SSRF FOFA: app="Grafana" Date: 2-11-2025 Exploit Author: Beatriz Fresno Naumova Vendor Homepage: https://grafana.com/ Software Link: https://grafana.com/grafana/download...

7.6CVSS7.2AI score0.95057EPSS
Exploits6
Packet Storm
Packet Stormadded 2026/04/06 12:0 a.m.89 views

📄 ASP.net 8.0.10 HTTP Request Smuggling / Authentication Bypass

ASP.net version 8.0.10 suffers from HTTP request smuggling, bypass, and server-side request forgery vulnerabilities. Exploit Title: ASP.net 8.0.10 - Bypass Date: 2025-11-03 Author: Mohammed Idrees Banyamer Author Country: Jordan Instagram: @banyamersecurity GitHub: https://github.com/mbanyamer CV...

9.9CVSS7.2AI score0.66258EPSS
Exploits5
Exploit DB
Exploit DBadded 2026/04/06 12:0 a.m.76 views

Grafana 11.6.0 - SSRF

Exploit Title: Grafana 11.6.0 - SSRF FOFA: app="Grafana" Date: 2-11-2025 Exploit Author: Beatriz Fresno Naumova Vendor Homepage: https://grafana.com/ Software Link: https://grafana.com/grafana/download Version: 11.2.0 - 11.6.0 CVE: CVE-2025-4123 Description: An SSRF Server-Side Request Forgery...

7.6CVSS7.2AI score0.95057EPSS
Exploits6
Exploit DB
Exploit DBadded 2026/04/06 12:0 a.m.117 views

Zhiyuan OA - arbitrary file upload leading

Exploit Title: Zhiyuan OA - arbitrary file upload leading Google Dork / FOFA: app="致远互联-OA" && title="V8.0SP2" Date: 1-11-2025 Exploit Author: Beatriz Fresno Naumova Vendor Homepage: https://service.seeyon.com/ Software Link: vendor download / product page if available Version: 5.0, 5.1–5.6sp1,...

10CVSS5.9AI score0.10212EPSS
Exploits3
Exploit DB
Exploit DBadded 2026/04/06 12:0 a.m.102 views

RiteCMS 3.1.0 - Authenticated Remote Code Execution

Exploit Title: RiteCMS 3.1.0 - Authenticated Remote Code Execution Date: 2025-10-26 Exploit Author: Chokri Hammedi Vendor Homepage: https://github.com/handylulu/RiteCMS Software Link: https://github.com/handylulu/RiteCMS/releases/download/V3.1.0/ritecms.v3.1.0.zip Version: 3.1.0 Tested on: Window...

5.9AI score
Exploits0
Exploit DB
Exploit DBadded 2026/04/06 12:0 a.m.94 views

WBCE CMS 1.6.4 - Remote Code Execution

Exploit Title: WBCE CMS 1.6.4 - Remote Code Execution Date: 2024-10-26 Exploit Author: Chokri Hammedi Vendor Homepage: https://wbce.org/ Software Link: https://github.com/WBCE/WBCECMS/releases/tag/v1.6.4 Version: 1.6.4 Tested on: Linux Debian/Parrot OS Vulnerability Description WBCE CMS version...

5.9AI score
Exploits0
Exploit DB
Exploit DBadded 2026/04/06 12:0 a.m.96 views

Windows Kernel - Elevation of Privilege

Exploit Title : Windows Kernel - Elevation of Privilege Author : E1.Coders Contact : E1.Coders at Mail dot RU Security Risk : CNA: Microsoft Corporation Base Score: 7.0 HIGH...

7CVSS6.2AI score0.061EPSS
Exploits6
Exploit DB
Exploit DBadded 2026/04/06 12:0 a.m.106 views

Desktop Window Manager Core Library 10.0.10240.0 - Privilege Escalation

Title: Desktop Window Manager Core Library 10.0.10240.0 — Privilege Escalation Heap-based Buffer Overflow sanitized evidence Author: nu11secur1ty Date: 2025-11-04 Vendor: Microsoft Software: Windows Desktop Window Manager DWM — DWM Core Library affected desktop/server releases as per vendor...

7.8CVSS7.2AI score0.01026EPSS
Exploits1
Exploit DB
Exploit DBadded 2026/04/06 12:0 a.m.85 views

ASP.net 8.0.10 - Bypass

Exploit Title: ASP.net 8.0.10 - Bypass Date: 2025-11-03 Author: Mohammed Idrees Banyamer Author Country: Jordan Instagram: @banyamersecurity GitHub: https://github.com/mbanyamer CVE: CVE-2025-55315 Tested on: .NET Kestrel unpatched - ASP.NET Core on localhost lab environment Platform: remote Type...

9.9CVSS7.2AI score0.66258EPSS
Exploits5
Exploit DB
Exploit DBadded 2026/04/06 12:0 a.m.111 views

is-localhost-ip 2.0.0 - SSRF

Titles: is-localhost-ip 2.0.0 - SSRF Author: nu11secur1ty Date: 11/09/2025 Vendor: https://github.com/tinovyatkin/is-localhost-ip Software: https://github.com/tinovyatkin/is-localhost-ip/releases/tag/v2.0.0 Reference: https://portswigger.net/web-security/ssrf Description: SSRF PoC — Professional...

6.9CVSS5.9AI score0.00357EPSS
Exploits2
Exploit DB
Exploit DBadded 2026/04/06 12:0 a.m.87 views

Fortinet FortiWeb v8.0.1 - Auth Bypass

Titles:Fortinet FortiWeb v8.0.1 - Auth Bypass Author: nu11secur1ty Date: 11/15/2025 Vendor: https://www.fortinet.com/ Software: v8.0.1 Reference: https://nvd.nist.gov/vuln/detail/CVE-2025-64446 Description: CVE-2025-64446 is a critical path traversal vulnerability affecting multiple versions of...

9.8CVSS6AI score0.89526EPSS
Exploits16
Exploit DB
Exploit DBadded 2026/04/06 12:0 a.m.126 views

WordPress Madara - Local File Inclusion

Exploit Title: WordPress Madara Local File Inclusion Date: November 1, 2025 Exploit Author: Beatriz Fresno Naumova Vendor Homepage: WordPress Theme Madara Software Link: WordPress Theme Madara Tested on: OS / PHP / WordPress versions used in testing — e.g., Ubuntu 22.04, PHP 8.1, WP 6.4 CVE:...

9.8CVSS7.2AI score0.09094EPSS
Exploits5
GithubExploit
GithubExploitadded 2026/04/05 10:48 p.m.84 views

exploit_skillz

exploitskillz Work i...

5.9AI score
Exploits0
Rows per page
Query Builder