Exploit for CVE-2026-25807

CVE-2026-25807-Exploit CVE-2026-25807 Unauthenticated Remote...

CVE-2026-25807

ZAI Shell is an autonomous SysOps agent designed to navigate, repair, and secure complex environments. Prior to 9.0.3, the P2P terminal sharing feature share start opens a TCP socket on port 5757 without any authentication mechanism. Any remote attacker can connect to this port using a simple...

CVE-2026-25807

CVE-2026-25807 affects ZAI Shell before version 9.0.3, where the P2P terminal sharing feature (share start) opens a TCP socket on port 5757 without authentication. A remote attacker can connect to a ZAI-Shell P2P session running in --no-ai mode and send arbitrary system commands. If the host user...

Google Solves Update Issue for Android Apps Installed from Unknown Sources

If you are wondering how to receive latest updates for an Android app—installed via a 3rd party source or peer-to-peer app sharing—directly from Google Play Store. For security reasons, until now apps installed from third-party sources cannot be updated automatically over-the-air, as Google does...

DC++ Download Drive Arbitrary File Appending

According to its version number, the DC++ client installed on the remote host is affected by a vulnerability that may let a remote user append data to files anywhere on the drive on which DC++ is installed. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid18012;...

Kazaa on Windows Detection

Kazaa, a peer-to-peer file sharing application is installed on the remote host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid11426; scriptversion"1.24"; scriptsetattributeattribute:"pluginmodificationdate", value:"2023/05/24"; scriptnameenglish:"Kazaa on Windows...