Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

GithubExploit
GithubExploitadded 2025/02/02 1:35 a.m.495 views

Exploit for Deserialization of Untrusted Data in Themekraft Buddyforms

Exploit BuddyForms CVE-2023-26326 using Iconv CVE-2024-2961...

9.8CVSS7.4AI score0.91924EPSS
Exploits18
Packet Storm
Packet Stormadded 2023/11/30 12:0 a.m.411 views

CE Phoenix 1.0.8.20 Remote Code Execution

Exploit Title: CE Phoenix v1.0.8.20 - Remote Code Execution RCE Authenticated Date: 2023-11-25 Exploit Author: tmrswrr Category: Webapps Vendor Homepage: CE Phoenix Version: v1.0.8.20 Tested on: Softaculous Demo - CE Phoenix EXPLOIT : import requests from bs4 import BeautifulSoup import sys impor...

7.4AI score
Exploits0
GithubExploit
GithubExploitadded 2023/05/26 10:16 p.m.554 views

Exploit for OS Command Injection in Eparks Fiberlink_210_Firmware

CVE-2023-33617 Authenticated OS command injection vulnerabili...

7.2CVSS7.4AI score0.70091EPSS
Exploits2
Hacker One
Hacker Oneadded 2022/09/03 6:59 p.m.18 views

U.S. Dept Of Defense: Authentication bypass leads to Information Disclosure at U.S Air Force "https://███"

Hi Hackerone Triage team, I'm new in this program, what i understood that every Web Owned/Operated by DoD is in scope , so i did some google searches , exactly in wikipedia and i've find this PNG that confirms that U.S Air Force is in scope :...

7.4AI score
Exploits0
Microsoft Secure
Microsoft Secureadded 2018/07/02 3:0 p.m.528 views

Taking apart a double zero-day sample discovered in joint hunt with ESET

In late March 2018, I analyzed an interesting PDF sample found by ESET senior malware researcherAnton Cherepanov. The sample was initially reported to Microsoft as a potential exploit for an unknown Windows kernel vulnerability. During my investigation in parallel with ESET researchers, I was...

7.2CVSS8.5AI score0.94157EPSS
Exploits18
FireEye
FireEyeadded 2017/06/29 12:30 p.m.77 views

Back That App Up: Gaining Root on the Lenovo Vibe

In May of 2016, Mandiant’s Red Team discovered a series of vulnerabilities present on Lenovo’s Vibe P1 Android-based mobile device that allow local privilege escalation to the user “root”. Mandiant disclosed these vulnerabilities to Lenovo in May of 2016. Lenovo advised Mandiant that it should wo...

7.2CVSS0.00016EPSS
Exploits0
Packet Storm
Packet Stormadded 2013/01/03 12:0 a.m.24 views

WHMCS 5.x Authentication Bypass

WHMCS 5.x versions suffers from a cookie-validation vulnerability, where sessions can be modified and authentication can be easily bypassed. Description : WHMCS 5.x Authentication Bypass Vulnerability Author : AgdScorp Contact: [email protected] Version : 5.x Link :...

0.5AI score
Exploits0
exploitpack
exploitpackadded 2010/02/24 12:0 a.m.25 views

Maian Uploader 4.0 - Arbitrary File Upload

Maian Uploader 4.0 - Arbitrary File Upload ======================================================================================== | Title : Maian Uploader v4.0 Shell Upload Vulnerability | Author : indoushka | email : [email protected] | Home : www.iq-ty.com/vb - Souk Naamane - 04325 - Oum ...

0.3AI score
Exploits0
Rows per page
Query Builder