CVE-2025-31235

creationtimestamp| type| source ---|---|--- 2025-05-13 13:30:25+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/16112 2025-06-25 16:41:43+00:00| published-proof-of-concept| https://t.me/AfroHax/2901 2026-01-30 07:00:00+00:00| seen| https://projectzero.google/2026/01/sound-barrier-2.html...

WebKit: use-after-free in FormSubmission::create (CVE-2017-2460)

There is a use-after-free security vulnerability in WebKit. The vulnerability was confirmed on a nightly version of WebKit. The PoC has also been observed to crash Safari 10.0.2 on Mac. Please note: This bug is subject to a 90 day disclosure deadline. If 90 days elapse without a broadly available...

Byte CMS Cross Site Scripting

Exploit Title: Byte CMS Cross Site Scripting Vulnerabilities Date: 02/03/2014 Exploit Author: projectzero labs Projectzero ID: projectzero2014-003-bytecmsxss Vendor Homepage: http://www.bitsnbytes.gr Software Link: N/A - Commercial Tested on: Kali Linux / Iceweasel v.22 & Mac OS X 10.8.5 / Firefo...

Netvolution WCM CMS 3 SQL Injection

Exploit Title: Netvolution WCM - CMS v3 SQL Injection Exploit Type: Error-based SQL injection Date: Sun 02 Mar 2014 Exploit Author: projectzero labs Projectzero ID: projectzero2014-002-netvolutionsqli Vendor Homepage: http://www.netvolution.net && http://www.atcom.gr Version: 3 as vendor comfirme...

CMS Afroditi 1.0 Blind SQL Injection

Exploit Title: CMS Afroditi v.1.0 Blind SQL Injection Date: 30/12/2013 Exploit Author: projectzero labs Vendor Homepage: http://www.naxtech.com Vendor Informed: 20 & 24/12/2013 Software Demo: http://afroditi.naxtech.com Version: v.1.0 About the software: =================== Αs indicated in the...