274329 matches found
turboquant-monitoring-poc
TurboQuant x WhatAp Monitoring POC TurboQuanthttps://arxiv...
Exploit for Deserialization of Untrusted Data in Apache Tomcat
No d...
Exploit for UNIX Symbolic Link Following in Fortinet Forticlient
Fortinet FortiClient Exploit CVE-2026-24018 Fully Working E...
RedTrace
RedTrace v3.0 — Web Vulnerability Scanner Professional-grad...
Exploit for CVE-2026-30039
CVE-2026-30039 Security advisory materials for CVE-2026-3003...
📄 node-tesseract-ocr 2.2.1 Command Injection
node-tesseract-ocr through version 2.2.1 allows OS command injection in recognize in src/index.js. The package builds a shell command string and executes it with childprocess.exec. Because the input path is only wrapped in double quotes, an attacker can inject shell syntax through a crafted file...
📄 pdf-image 2.0.0 Command Injection
pdf-image through version 2.0.0 allows OS command injection via the pdfFilePath argument. The package builds shell command strings with util.format and executes them with childprocess.exec. If an application passes an attacker-controlled file path into PDFImage, shell metacharacters in that path...
📄 OpenEMR 8.0.0.2 SQL Injection
OpenEMR versions prior to 8.0.0.3 contain a remote SQL injection vulnerability in the new search popup that can be exploited by authenticated attackers. The vulnerability exists due to insufficient input validation in the new search popup functionality. CVE-2026-29187 - SQL Injection Vulnerabilit...
📄 OpenEMR 8.0.0.2 SQL Injection
OpenEMR version 8.0.0.2 contains a remote SQL injection vulnerability in the patient selection feature that can be exploited by authenticated attackers. The vulnerability exists due to insufficient input validation in the patient selection feature. CVE-2026-33910 - SQL Injection Vulnerability in...
📄 thumbler 1.1.2 Command Injection
thumbler through version 1.1.2 allows OS command injection in thumbnail in lib/thumbler.js. The package concatenates the input, output, time, and size values into a single ffmpeg command string and executes that string with childprocess.exec. An attacker who controls one of those values can injec...
📄 V8 BytecodeArray Swapping Sandbox Bypass
V8 suffers from a sandbox bypass due to arbitrary bytecode execution from BytecodeArray swapping before code deoptimization. Vulnerability Details When deoptimizing compiled code and resuming execution in the interpreter, V8 uses the function Deoptimizer::DoComputeOutputFrames to reconstruct the...
📄 V8 StringToBigInt Memory Corruption Sandbox Bypass
V8 suffers from a sandbox bypass vulnerability due to memory corruption during StringToBigInt conversion. The function v8::internal::StringToBigInt is used by V8 when converting a string to a BigInt e.g. via BigInt“1337”. It first parses the string into individual digitt’s in the...
📄 textract 2.5.0 Command Injection
textract through version 2.5.0 allows OS command injection through the file path supplied to multiple extractors. Several code paths pass that file path into childprocess.exec with inadequate sanitization. An attacker who can influence the file name or path can break out of the command line and r...
Humza-Ahmed-Week-5-Ethical-Hacking-Exploiting-Vulnerabilities
Humza-Ahmed-Week-5-Eth...
cross-site-scripting-lab
XSS Lab Documentation Overview What Is Cross-Site Scr...
Exploit for Race Condition in Openbsd Openssh
CVE-2018-15473 — SSH Username Enumeration Tool A Python 3 r...
Eclipse Che machine-exec Unauthenticated RCE
This module exploits an unauthenticated remote code execution vulnerability in the Eclipse Che machine-exec service CVE-2025-12548. The machine-exec service, exposed on port 3333 within Red Hat OpenShift DevSpaces developer workspace containers, accepts WebSocket connections without authenticatio...
ESC/POS Printer Command Injector
This module exploits an unauthenticated ESC/POS command vulnerability in networked Epson-compatible printers. You can print a custom message, trigger the attached cash drawer, or cut the paper. Module Options msf use auxiliary/admin/printer/escpostcpcommandinjector msf...
Exploit for Deserialization of Untrusted Data in Facebook React
CVE-2025-55182 RSC lab intentionally vulnerable Local Doc...
darksword-kexploit
DarksSword Kernel Exploi...