Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

ATTACKERKB
ATTACKERKBadded 2026/05/16 3:25 p.m.3 views

CVE-2020-37242

Supsystic Ultimate Maps 1.1.12 contains an SQL injection vulnerability that allows unauthenticated attackers to execute arbitrary SQL queries by injecting malicious code through the 'sidx' GET parameter. Attackers can send crafted requests to the getListForTbl action with boolean-based blind or...

8.8CVSS6.2AI score0.00086EPSS
Exploits0References4Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/02/27 5:23 p.m.3 views

CVE-2019-25490

Homey BNB V4 contains a SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'id' parameter. Attackers can send GET requests to the admin/edit.php endpoint with time-based SQL injection payloads to extract sensitive...

8.8CVSS6AI score0.00098EPSS
Exploits1References3Affected Software1
The Hacker News
The Hacker Newsadded 2026/02/15 2:10 p.m.10 views

Microsoft Discloses DNS-Based ClickFix Attack Using Nslookup for Malware Staging

Microsoft has disclosed details of a new version of the ClickFix social engineering tactic in which the attackers trick unsuspecting users into running commands that carry out a Domain Name System DNS lookup to retrieve the next-stage payload. Specifically, the attack relies on using the "nslooku...

7AI score
Exploits0
GithubExploit
GithubExploitadded 2025/07/03 4:52 a.m.503 views

Exploit for Path Traversal in Rarlab Winrar

RARLAB WinRAR Directory Traversal Remote Code Execution Vulnerab...

7.8CVSS7.9AI score0.05692EPSS
Exploits8
GithubExploit
GithubExploitadded 2021/04/28 7:46 p.m.123 views

Exploit for Incorrect Authorization in Moodle

Python script to exploit CVE-2020-14321https://moodle.org/mod...

8.8CVSS9AI score0.39399EPSS
Exploits8
Kitploit
Kitploitadded 2019/12/02 8:27 p.m.91 views

CAPE - Malware Configuration And Payload Extraction

CAPE is a malware sandbox. It is derived from Cuckoo and is designed to automate the process of malware analysis with the goal of extracting payloads and configuration from malware. This allows CAPE to detect malware based on payload signatures, as well as automating many of the goals of malware...

7.7AI score
Exploits0References10
Metasploit
Metasploitadded 2019/04/15 6:21 p.m.67 views

RARLAB WinRAR ACE Format Input Validation Remote Code Execution

In WinRAR versions prior to and including 5.61, there is path traversal vulnerability when crafting the filename field of the ACE format in UNACEV2.dll. When the filename field is manipulated with specific patterns, the destination extraction folder is ignored, thus treating the filename as an...

7.8CVSS7.1AI score0.93462EPSS
Exploits13
FireEye
FireEyeadded 2018/09/20 12:30 p.m.493 views

Increased Use of a Delphi Packer to Evade Malware Classification

Introduction The concept of "packing" or "crypting" a malicious program is widely popular among threat actors looking to bypass or defeat analysis by static and dynamic analysis tools. Evasion of classification and detection is an arms race in which new techniques are traded and used in the wild...

7.5AI score
Exploits0
n0where
n0whereadded 2017/03/13 5:40 a.m.19 views

Python Steganography Tool: Stegosaurus

Python Steganography Tool A steganography tool for embedding payloads within Python bytecode. Stegosaurus is a steganography tool that allows embedding arbitrary payloads in Python bytecode pyc or pyo files. The embedding process does not alter the runtime behavior or file size of the carrier fil...

0.4AI score
Exploits0References1
Rows per page
Query Builder