126011 matches found
Exploit for CVE-2026-29000
pac4j-jwe-forge CVE-2026-29000 Proof-of-concept for CVE-202...
PT-2026-39005
Name of the Vulnerable Software and Affected Versions PraisonAI versions 2.5.6 through 4.6.33 Description PraisonAI ships a legacy Flask API server that has authentication disabled by default due to hard-coded AUTH ENABLED = False and AUTH TOKEN = None variables in the api server.py file. This...
Exploit for Incorrect Resource Transfer Between Spheres in Linux Linux_Kernel
CVE-2026-31431 — "Copy Fail": Linux Kernel algifaead Local...
l4ki-TooL
TCP Port Scanner A simple Python tool that scans TCP ports on...
Exploit for Incorrect Resource Transfer Between Spheres in Linux Linux_Kernel
CVE-2026-31431 PoC Local Privilege Escalation in the Linux...
Exploit for Incorrect Resource Transfer Between Spheres in Linux Linux_Kernel
🔴 CVE-2026-31431 — "Copy Fail" A 9-Year-Old Linux Kernel...
Exploit for Missing Authentication for Critical Function in Cpanel
CVE-2026-41940 - cPanel & WHM Authentication Bypass Proof of C...
Exploit for Incorrect Resource Transfer Between Spheres in Linux Linux_Kernel
CVE-2026-31431 CopyFail CVE-2026-31431 POC. A pure Rust i...
Exploit for CVE-2026-42167
CVE-2026-42167 Master Exploit Tool A professional security re...
Exploit for Incorrect Resource Transfer Between Spheres in Linux Linux_Kernel
CVE-2026-31431 "Copy Fail" Proof-of-concept exploit and analy...
Exploit for Incorrect Resource Transfer Between Spheres in Linux Linux_Kernel
CVE-2026-31431 — Copy Fail Local Privilege Escalation i...
Exploit for Incorrect Resource Transfer Between Spheres in Linux Linux_Kernel
CVE-2026-31431 AFALG AEAD Local Privilege Escalation Exploi...
SUSE SLED15 / SLES15 Security Update : bouncycastle (SUSE-SU-2026:1639-1)
"The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1639-1 advisory. Update to version 1.84. Security issues fixed: - CVE-2025-14813: GOSTCTR implementation unable to process mor...
Linux Distros Unpatched Vulnerability : CVE-2026-43029
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - mptcp: fix soft lockup in mptcprecvmsg syzbot reported a soft lockup in mptcprecvmsg 0. When receiving data with MSGPEEK | MSGWAITALL flags, the skb is not...
Security Bulletin: IBM i is affected by BIND being too lenient accepting records with forged data and consuming excessive CPU when a resolver is performing DNSSEC validation [CVE-2025-40778, CVE-2026-1519].
Summary Domain Name System for IBM i is vulnerable to BIND being too lenient when accepting records from answers allowing an attack to inject forged data into cache CVE-2025-40778, and consuming excessive CPU when a resolver is performing DNSSEC validation and encounters a maliciously crafted zon...
The Exploit Pipeline Just Went Autonomous.
& In February, I wrote about the breach zone — the gap between CVE disclosure and scanner signature. In April, I wrote that the breach zone became permanent when NIST stopped enriching the majority of CVEs. Both posts assumed the same ceiling: humans, working at human speed, are the bottleneck fo...
Metasploit Wrap-Up 05/01/2026
MCP server This release our very own cdelafuente-r7 finished implementing the Metasploit MCP Server msfmcpd, bringing Model Context Protocol support to Metasploit Framework. MCP lets AI applications like Claude, Cursor, or your own custom agents query Metasploit data. Think of it as a middleware...
Exploit for Incorrect Resource Transfer Between Spheres in Linux Linux_Kernel
CVE-2026-31431 — Copy Fail Linux Privilege Escalation Ov...
Exploit for Incorrect Resource Transfer Between Spheres in Linux Linux_Kernel
CVE-2026-31431: Zero-Reboot Remediation for OpenShift 4 via BP...
Security Bulletin: IBM App Connect Enterprise Certified Container operator and IntegrationRuntime & IntegrationServer operands are vulnerable to loss of confidentiality (CVE-2026-27137) and denial of service (CVE-2026-27138)
Summary IBM App Connect Enterprise Certified Container operator and IntegrationRuntime & IntegrationServer operands are vulnerable to loss of confidentiality CVE-2026-27137 and denial of service CVE-2026-27138. This bulletin provides patch information to address the reported vulnerability in Gola...