Exploit for Improper Initialization in Linux Linux_Kernel

CVE-2022-0847 A simple reproduction of CVE-2022-0847 Orig...

CVE-2025-1821

A vulnerability was found in zj1983 zz up to 2024-8 and classified as critical. Affected by this issue is the function getUserOrgForUserId of the file src/main/java/com/futvan/z/system/zorg/ZorgAction.java. The manipulation of the argument userID leads to sql injection. The attack may be launched...

EUVD-2020-12421

Malware in sbrugna...

EUVD-2020-12417

Malware in sbrugna...

EUVD-2018-10448

Malware in sbrugna...

EUVD-2020-12393

Malware in sbrugna...

EUVD-2020-2257

Malware in sbrugna...

EUVD-2024-30667

Malicious code in bioql PyPI...

EUVD-2024-29228

Malicious code in bioql PyPI...

EUVD-2022-31037

Malicious code in bioql PyPI...

Exploit for Deserialization of Untrusted Data in Microsoft

ToolShell Zero-Day: The Silent Killer Exploiting SharePoint C...

CVE-2025-20694

CVE-2025-20694 affects Bluetooth firmware (MediaTek chipsets). The issue is a fault due to an uncaught exception that can cause a system crash, enabling remote denial of service with no user interaction and with adjacent access as per the CVSS data. The vulnerability is tied to the Bluetooth FW c...

CVE-2025-40732

user enumeration vulnerability in Daily Expense Manager v1.0. To exploit this vulnerability a POST request must be sent using the name parameter in /check.php...

CVE-2021-34807

An open redirect vulnerability exists in the /preauth Servlet in Zimbra Collaboration Suite through 9.0. To exploit the vulnerability, an attacker would need to have obtained a valid zimbra auth token or a valid preauth token. Once the token is obtained, an attacker could redirect a user to any U...

CVE-2020-1858

Huawei products NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00SPC100; Secospace USG6600 versions V500R001C30SPC600, V500R001C60SPC500, and V500R005C00SPC100; and USG9500 versions V500R001C30SPC600, V500R001C60SPC500, and V500R005C00SPC100 have a denial of service vulnerability...

CVE-2019-1303

An elevation of privilege vulnerability exists when the Windows AppX Deployment Server improperly handles junctions.To exploit this vulnerability, an attacker would first have to gain execution on the victim system, aka 'Windows Elevation of Privilege Vulnerability'. This CVE ID is unique from...

CVE-2019-19662

A CSRF vulnerability exists in the Web File Manager's Create/Delete Accounts functionality of Rumpus FTP Server 8.2.9.1. By exploiting it, an attacker can Create and Delete accounts via RAPR/TriggerServerFunction.html...

CVE-2019-2204

In FindSharedFunctionInfo of objects.cc, there is a possible out of bounds read due to a mistake in AST traversal. This could lead to remote code execution in the pacprocessor with no additional execution privileges needed. User interaction is not needed for exploitation. Product: Android Version...

📄 AC Repair and Services System 1.0 SQL Injection

AC Repair and Services System version 1.0 suffers from multiple remote SQL injection vulnerabilities. Titles: AC Repair and Services System - ARSS-1.0-Copyright©2025-Multiple-SQLi Author: nu11secur1ty Date: 04/05/2025 Vendor: https://github.com/oretnom23 Software:...

Online Medicine Ordering System 1.0 Authentication Bypass / SQL Injection

Online Medicine Ordering System version 1.0 suffers from a remote SQL injection vulnerability that allows for authentication bypass. Titles: OMOS-1.0-Copyright©2025-Multiple-SQLi Author: nu11secur1ty Date: 03/28/2025 Vendor: https://github.com/oretnom23 Software:...