📄 Alicorn Circa 2004 SQL Injection / Command Injection / XSS

This document articulates an overview of remote SQL injection, command injection, and cross site scripting vulnerabilities found in the Alicorn version from 2004...

📄 FreePBX Endpoint SQL Injection / Remote Code Execution

FreePBX is an open-source IP PBX management tool that provides a modern phone system for businesses that use VoIP to make and receive phone calls. Versions before 16.0.44 and 17.0.23 are vulnerable to CVE-2025-66039, while versions before 16.0.92 and 17.0.6 are vulnerable to CVE-2025-61675. The...

📄 OpenSSL 3.x ASN.1 AES‑GCM Nonce Stack Corruption

This Metasploit auxiliary module generates a specially crafted CMS file encoded in DER format to test a stack-based buffer overflow vulnerability in OpenSSL's ASN.1 parser related to improper handling of oversized AES-GCM nonce IV values within AES-GCM-Parameters as defined in RFC 5084. The...

the-hazardous-interface

No d...

VoltaireExploit

VoltaireExploit 🔓 ⚠️ AVERTISSEMENT: Ce projet est uniquemen...

Exploit for Expression Language Injection in Siemens 6Bk1602-0Aa12-0Tp0_Firmware

MITRE ATT&CK Threat Detection with Splunk Detection engineeri...

Exploit for Reliance on Untrusted Inputs in a Security Decision in Microsoft

CVE-2026-21509-PoC Educational PoC for CVE‑2026‑21509...

FreePBX firmware file upload

The FreePBX versions prior to 16.0.44,16.0.92 and 17.0.6,17.0.23 are vulnerable to multiple CVEs, specifically CVE-2025-66039 and CVE-2025-61678, in the context of this module. The versions before 16.0.44 and 17.0.23 are vulnerable to CVE-2025-66039, while versions before 16.0.92 and 17.0.6 are...

FreePBX Custom Extension SQL Injection

FreePBX versions prior to 16.0.44,16.0.92 and 17.0.23,17.0.6 are vulnerable to multiple CVEs, specifically CVE-2025-66039 and CVE-2025-61675, in the context of this module. The versions before 16.0.44 and 17.0.23 are vulnerable to CVE-2025-66039, while versions before 16.0.92 and 17.0.6 are...

Exploit for Out-of-bounds Read in Openssl

CVE-2014-0160 Lab dựng lab sử dụng Heartbleed để leak memory...

Exploit for Argument Injection in Gnu Inetutils

CVE-2026-24061: telnetd Authentication Bypass Vulnerability C...

data_analysis_exploitdb

No d...

Exploit for CVE-2024-12345

CVE Exchange Stop chasing vulnerability intel across fragme...

thoropass-vuln-research-program

Thoropass Vulnerability Research Program 🔐 Security Researc...

Exploit for Argument Injection in Gnu Inetutils

CVE-2026-24061 CVE-2026-24061 Telnet RCE Exploit For...

Exploit for CVE-2026-1056

CVE-2026-1056-POC Snow Monkey Forms - Unauthenticated Arbitr...

Exploit for Out-of-bounds Write in Starnight Micro_Http_Server

📛 CVE-2023-50965 — MicroHttpServer Stack-Based Buffer Ove...

Exploit for Improper Initialization in Linux Linux_Kernel

Naive detector and reproducer of CVE-2022-0847 dirty pipe. Use...

Exploit for CVE-2025-15467

CVE-2025-15467 Stack buffer overflow in OpenSSL CMS AuthEnvel...

Exploit for Unrestricted Upload of File with Dangerous Type in Amentotech Workreap

CVE-2021-24499 | Workreap - Freelance Marketplace and Director...