Lucene search
+L

320983 matches found

GithubExploit
GithubExploit
added 21 minutes ago2 views

Exploit for CVE-2026-63030

CVE-2026-63030: WordPress Pre-Auth RCE Explained 📖 Read t...

9.8CVSS6.3AI score
Exploits17
GithubExploit
GithubExploit
added 52 minutes ago6 views

Exploit for CVE-2026-60137

wp2shell Pre-authentication Remote Code Execution against Wor...

9.8CVSS5.8AI score
Exploits17
EUVD
EUVD
added 1 hour ago4 views

EUVD-2025-210483

SurrealDB before 2.0.5, 2.1.x before 2.1.5, and 2.2.x before 2.2.2 fails to properly escape table and field names in the command-line export command. An authenticated System User with OWNER or EDITOR roles can create tables or fields with malicious names containing SurrealQL. When a...

9.4CVSS5.3AI score
Exploits0References3
EUVD
EUVD
added 1 hour ago3 views

EUVD-2024-55679

SurrealDB before 1.5.4 fails to properly validate authentication when a scope user switches databases using the USE clause or use method. Attackers with an authenticated session can impersonate an unrelated user in a different database if a user record with an identical identifier exists, allowin...

6.3CVSS5.3AI score
Exploits0References3
NVD
NVD
added 3 hours ago4 views

CVE-2025-71392

SurrealDB before 2.0.5, 2.1.x before 2.1.5, and 2.2.x before 2.2.2 fails to properly escape table and field names in the command-line export command. An authenticated System User with OWNER or EDITOR roles can create tables or fields with malicious names containing SurrealQL. When a...

9.4CVSS
Exploits0References2
NVD
NVD
added 3 hours ago5 views

CVE-2024-58363

SurrealDB before 1.5.4 fails to properly validate authentication when a scope user switches databases using the USE clause or use method. Attackers with an authenticated session can impersonate an unrelated user in a different database if a user record with an identical identifier exists, allowin...

6.3CVSS
Exploits0References2
GithubExploit
GithubExploit
added 3 hours ago10 views

Exploit for CVE-2026-60137

CVE-2026-63030 + CVE-2026-60137 - “wp2shell”: unauthenticated...

9.8CVSS6.9AI score
Exploits17
GithubExploit
GithubExploit
added 3 hours ago10 views

Exploit for CVE-2026-63030

wp2shell CVE-2026-63030 / CVE-2026-60137 PoC for an unaut...

9.8CVSS6.2AI score
Exploits17
Cvelist
Cvelist
added 4 hours ago8 views

CVE-2025-71392 SurrealDB before 2.2.2 SurrealQL Injection via export

SurrealDB before 2.0.5, 2.1.x before 2.1.5, and 2.2.x before 2.2.2 fails to properly escape table and field names in the command-line export command. An authenticated System User with OWNER or EDITOR roles can create tables or fields with malicious names containing SurrealQL. When a...

9.4CVSS
Exploits0References2
CVE
CVE
added 4 hours ago6 views

CVE-2025-71392

SurrealDB prior to 2.0.5, 2.1.x prior to 2.1.5, and 2.2.x prior to 2.2.2 fails to escape table and field names in the command-line export command. An authenticated System User with OWNER or EDITOR roles can create tables or fields with malicious names containing SurrealQL. When a higher-privilege...

9.4CVSS5.3AI score
Exploits0References2
ATTACKERKB
ATTACKERKB
added 4 hours ago3 views

CVE-2025-71392

SurrealDB before 2.0.5, 2.1.x before 2.1.5, and 2.2.x before 2.2.2 fails to properly escape table and field names in the command-line export command. An authenticated System User with OWNER or EDITOR roles can create tables or fields with malicious names containing SurrealQL. When a...

9.4CVSS5.3AI score
Exploits0References3
CVE
CVE
added 4 hours ago6 views

CVE-2024-58363

SurrealDB prior to 1.5.4 contains an authentication validation flaw when a scope user switches databases with USE or the use method. If an authenticated session encounters a user identifier that exists in a different database, an attacker can impersonate an unrelated user in that database, enabli...

6.3CVSS5.3AI score
Exploits0References2
ATTACKERKB
ATTACKERKB
added 4 hours ago4 views

CVE-2024-58363

SurrealDB before 1.5.4 fails to properly validate authentication when a scope user switches databases using the USE clause or use method. Attackers with an authenticated session can impersonate an unrelated user in a different database if a user record with an identical identifier exists, allowin...

6.3CVSS5.3AI score
Exploits0References3
Cvelist
Cvelist
added 4 hours ago7 views

CVE-2024-58363 SurrealDB before 1.5.4 Authentication Bypass via Database Switch

SurrealDB before 1.5.4 fails to properly validate authentication when a scope user switches databases using the USE clause or use method. Attackers with an authenticated session can impersonate an unrelated user in a different database if a user record with an identical identifier exists, allowin...

6.3CVSS
Exploits0References2
GithubExploit
GithubExploit
added 5 hours ago14 views

Exploit for CVE-2026-63030

CVE-2026-63030: wp2shell WordPress Batch API Desynchronizat...

9.8CVSS6.3AI score
Exploits17
GithubExploit
GithubExploit
added 6 hours ago13 views

wp2shell-go

wp2shell-go A Go port of the wp2shell PoC. It targets the una...

5.9AI score
Exploits0
GithubExploit
GithubExploit
added 6 hours ago18 views

Exploit for Missing Authentication for Critical Function in Splunk

Splunk Enterprise — CVE-2026-20253 Training Lab Splunk En...

9.8CVSS6.9AI score0.88171EPSS
Exploits6
GithubExploit
GithubExploit
added 7 hours ago16 views

wp2shell-PoC

wp2shell — CVE-2026-63030 + CVE-2026-60137 WordPress Pre-Auth...

9.8CVSS5.9AI score
Exploits17
IBM Security Bulletins
IBM Security Bulletins
added 8 hours ago3 views

Security Bulletin: Multiple vulnerabilities in IBM watsonx Orchestrate with watsonx Assistant Cartridge

Summary Multiple vulnerabilities were addressed in IBM watsonx Orchestrate with watsonx Assistant Cartridge version 5.4.0 Vulnerability Details CVEID:CVE-2026-35469 DESCRIPTION: spdystream is a Go library for multiplexing streams over SPDY connections. In versions 0.5.0 and below, the SPDY/3 fram...

9.8CVSS4.5AI score0.06488EPSS
Exploits4Affected Software1
GithubExploit
GithubExploit
added 8 hours ago23 views

deep-pentest-skill

Deep Pentest Skill !License: MIThttps://img.shields.io/bad...

6.2AI score
Exploits0
Rows per page
Query Builder