CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Packet Storm News•added 2026/01/11 12:0 a.m.•3 views

LINEture: Novel Signature Cryptosystem

We propose a novel digital signature cryptosystem that exploits the concept of the brute-force problem. To ensure the security of the cryptosystem, we employed several mechanisms: sharing a common secret for factorable permutations, associating permutations with the message being signed, and...

7AI score

Packet Storm News•added 2025/06/07 12:0 a.m.•2 views

Shuffling Cards When You Are of Very Little Brain: Low Memory Generation of Permutations

How can we generate a permutation of the numbers $1$ through $n$ so that it is hard to guess the next element given the history so far? The twist is that the generator of the permutation the "Dealer" has limited memory, while the "Guesser" has unlimited memory. With unbounded memory actually $n$...

6.6AI score

Packet Storm News•added 2025/05/01 12:0 a.m.•3 views

Non-Adaptive Cryptanalytic Time-Space Lower Bounds Via a Shearer-Like Inequality for Permutations

Whitepaper called Non-Adaptive Cryptanalytic Time-Space Lower Bounds Via A Shearer-Like Inequality For Permutations...

7.2AI score

Fedora•added 2024/06/02 3:39 a.m.•9 views

[SECURITY] Fedora 39 Update: rust-uu_shuf-0.0.23-3.fc39

shuf uutils display random permutations of input lines...

Fedora•added 2024/05/26 1:29 a.m.•9 views

[SECURITY] Fedora 40 Update: rust-uu_shuf-0.0.23-3.fc40

shuf uutils display random permutations of input lines...

RedHat Linux•added 2023/12/05 2:36 p.m.•2 views

quarkus: HTTP security policy bypass

A flaw was found in Quarkus where HTTP security policies are not sanitizing certain character permutations correctly when accepting requests, resulting in incorrect evaluation of permissions. This issue could allow an attacker to bypass the security policy altogether, resulting in unauthorized...

RedHat Linux•added 2023/10/25 1:3 p.m.•3 views

quarkus: HTTP security policy bypass

RedHat Linux•added 2023/10/05 3:27 p.m.•2 views

quarkus: HTTP security policy bypass

OSV•added 2023/09/20 12:30 p.m.•1 views

GHSA-4F4R-WGV2-JJVG Quarkus HTTP vulnerable to incorrect evaluation of permissions

8.1CVSS7.1AI score0.00455EPSS

Exploits1References17

OSV•added 2023/09/20 10:15 a.m.•24 views

CVE-2023-4853

8.1CVSS7AI score0.00455EPSS

Exploits1References12

Cvelist•added 2023/09/20 9:47 a.m.•22 views

CVE-2023-4853 Quarkus: http security policy bypass

8.1CVSS7.8AI score0.00455EPSS

Exploits1References12

RedHat Linux•added 2023/09/20 7:40 a.m.•4 views

quarkus: HTTP security policy bypass

Kitploit•added 2021/08/05 12:30 p.m.•235 views

Elpscrk - An Intelligent Common User-Password Profiler Based On Permutations And Statistics

An Intelligent common user-password profiler that's named after the same tool in Mr.Robot series S01E01 In simple words, elpscrk will ask you about all info you know about your target then will try to generate every possible password the target could think of, it all depends on the information yo...

7.1AI score

Exploits0References1

Kitploit•added 2021/04/26 9:30 p.m.•423 views

Cook - A Customizable Wordlist And Password Generator

Easily create permutations and combinations of words with predefined sets of extensions, words and patterns/function. You can use this tool to easily create complex endpoints and passwords. Customizing tool according to your unique secrets keywords. Easy UX, Checkout Usage Installation Using Go g...

Kitploit•added 2021/04/18 9:30 p.m.•119 views

Exploits0References9

Spraygen - Password List Generator For Password Spraying

Password list generator for password spraying - prebaked with goodies Version 1.4 Generates permutations of Months, Seasons, Years, Sports Teams NFL, NBA, MLB, NHL, Sports Scores, "Password", and even Iterable Keyspaces of a specified size. All permutations are generated with common attributes...

Kitploit•added 2020/04/04 12:0 p.m.•96 views

Exploits0References2

Sandcastle - A Python Script For AWS S3 Bucket Enumeration

Inspired by a conversation with Instacart's @nickelser on HackerOne, I've optimised and published Sandcastle – a Python script for AWS S3 bucket enumeration, formerly known as bucketCrawler. The script takes a target's name as the stem argument e.g. shopify and iterates through a file of bucket...

7.5AI score

Exploits0References2

Kitploit•added 2020/03/15 9:30 p.m.•92 views

AWSGen.py - Generates Permutations, Alterations And Mutations Of AWS S3 Buckets Names

AWSGen.py is a simple tool for generates permutations, alterations and mutations of AWS S3 Buckets Names. Download AWSGen.py...

7.4AI score

Exploits0References1

Kitploit•added 2018/02/16 9:14 p.m.•22 views

Altdns - Generates permutations, alterations and mutations of subdomains and then resolves them

Altdns is a DNS recon tool that allows for the discovery of subdomains that conform to patterns. Altdns takes in words that could be present in subdomains under a domain such as test, dev, staging as well as takes in a list of subdomains that you know of. From these two lists that are provided as...

7.2AI score

Exploits0References1

Packet Storm•added 2016/07/06 12:0 a.m.•32 views

PrinceXML Wrapper Class Command Injection

While grabbing a copy PrinceXML, I noticed the company also offered some wrapper classes in various languages for using prince in server applications web applications. http://www.princexml.com/download/wrappers/ Taking a quick look at the PHP class, there are likely numerous command injection...

0.6AI score