Lucene search
K

102 matches found

Metasploit
Metasploit
added 2025/06/09 6:51 p.m.752 views

OS Command Exec, Unix Command Shell, Reverse TCP (/dev/tcp)

Execute an OS command from PHP. Creates an interactive shell via bash's builtin /dev/tcp. This will not work on circa 2009 and older Debian-based Linux distributions including Ubuntu because they compile bash without the /dev/tcp feature. Module Options msf use payload/php/unix/cmd/reversebash ms...

5.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/06/05 12:0 a.m.4 views

tc Tor Chat Client 1.2

tc is a low-tech free solution to make yourself anonymously reachable for chat by anyone who only know your onion address and your public key. Messages are PGP encrypted end-to-end and forwarded by Tor's relays. Please note this tarball's hash will not match the main release hash on the tor site ...

6.8AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/06/03 12:0 a.m.2 views

CyberGym: Evaluating AI Agents' Cybersecurity Capabilities with Real-World Vulnerabilities at Scale

Large language model LLM agents are becoming increasingly skilled at handling cybersecurity tasks autonomously. Thoroughly assessing their cybersecurity capabilities is critical and urgent, given the high stakes in this domain. However, existing benchmarks fall short, often failing to capture...

7.2AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/05/29 12:0 a.m.5 views

Demonstration of Quantum-Secure Communications in a Nuclear Reactor

Quantum key distribution QKD, one of the latest cryptographic techniques, founded on the laws of quantum mechanics rather than mathematical complexity, promises for the first time unconditional secure remote communications. Integrating this technology into the next generation nuclear systems -...

7AI score
Exploits0
Github Security Blog
Github Security Blog
added 2025/05/23 10:0 a.m.26 views

Bypassing MTE with CVE-2025-0072

Memory Tagging Extension MTE is an advanced memory safety feature that is intended to make memory corruption vulnerabilities almost impossible to exploit. But no mitigation is ever completely airtight--especially in kernel code that manipulates memory at a low level. Last year, I wrote about...

7.8CVSS9AI score0.00721EPSS
Exploits2
Packet Storm News
Packet Storm News
added 2025/05/22 12:0 a.m.2 views

LogStamping: a Blockchain-Based Log Auditing Approach for Large-Scale Systems

Log management is crucial for ensuring the security, integrity, and compliance of modern information systems. Traditional log management solutions face challenges in achieving tamper-proofing, scalability, and real-time processing in distributed environments. This paper presents a blockchain-base...

6.6AI score
Exploits0
Metasploit
Metasploit
added 2025/05/15 6:53 p.m.533 views

Nextcloud Workflows Remote Code Execution

This module adds workflows as an authenticated user which can only be created by administrators by design. If the app "Nextcloud Workflow Script" is installed it is possible to generate a workflow that executes commands. Module Options msf use exploit/unix/webapp/nextcloudworkflowsrce msf...

9CVSS8.4AI score0.04176EPSS
Exploits2
GithubExploit
GithubExploit
added 2025/05/13 7:32 a.m.85 views

qianxin

...

7.1AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/04/28 12:0 a.m.5 views

Prompt Injection Attack to Tool Selection in LLM Agents

Whitepaper called Prompt Injection Attack To Tool Selection In LLM Agents...

7.2AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/04/28 12:0 a.m.6 views

SAP NetWeaver Visual Composer Metadata Uploader CVE-2025-31324 Scanner

This tool checks to see if the SAP NetWeaver Visual Composer Metadata Uploader component is vulnerable to CVE-2025-31324 and if there are known webshells in the system...

10CVSS6.9AI score0.99359EPSS
Exploits18
Packet Storm News
Packet Storm News
added 2025/04/22 12:0 a.m.2 views

Defending against Intelligent Attackers at Large Scales

We investigate the scale of attack and defense mathematically in the context of AI's possible effect on cybersecurity. For a given target today, highly scaled cyber attacks such as from worms or botnets typically all fail or all succeed. Here, we consider the effect of scale if those attack agent...

6.9AI score
Exploits0
Packet Storm News
Packet Storm News
added 2025/04/19 12:0 a.m.3 views

The First VoicePrivacy Attacker Challenge

The First VoicePrivacy Attacker Challenge is an ICASSP 2025 SP Grand Challenge which focuses on evaluating attacker systems against a set of voice anonymization systems submitted to the VoicePrivacy 2024 Challenge. Training, development, and evaluation datasets were provided along with a baseline...

6.9AI score
Exploits0
GithubExploit
GithubExploit
added 2025/03/28 9:44 a.m.99 views

Exploit for Deserialization of Untrusted Data in Apache Tomcat

Apache Tomcat Unauthenticated RCE - CVE-2025-24813 This reposi...

9.8CVSS7.5AI score0.99945EPSS
Exploits47
GithubExploit
GithubExploit
added 2025/03/20 12:2 p.m.92 views

2025-25427

It is an offensive tool for Linux. The repository slin99/2025-25...

6.9AI score
Exploits0
SUSE Linux
SUSE Linux
added 2025/02/17 1:26 p.m.2 views

Security update for the Linux Kernel

The SUSE Linux Enterprise 15 SP6 Confidential Computing kernel was updated to receive various security bugfixes. The following security bugs were fixed: CVE-2024-40980: dropmonitor: replace spinlock by rawspinlock bsc1227937. CVE-2024-46858: mptcp: pm: Fix uaf in timerdeletesync bsc1231088...

8.5CVSS8AI score0.00529EPSS
Exploits3References258
Positive Technologies
Positive Technologies
added 2025/02/08 12:0 a.m.5 views

PT-2025-6026 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: No information is available about the vulnerable software and its affected versions. Description: The provided information does not contain details about the issue. There is a mention of a rejected reason and a link to a tweet, but no specifi...

6.9AI score
Exploits0References2
Circl
Circl
added 2024/04/23 6:21 p.m.5 views

CVE-2024-31207

creationtimestamp| type| source ---|---|--- 2024-04-23 18:21:50+00:00| seen| https://t.me/arpsyndicate/4757 2025-08-31 11:06:41+00:00| seen| https://bsky.app/profile/ferramentaslinux.bsky.social/post/3lxowzve6m22z 2025-08-31 11:08:19+00:00| seen|...

5.9CVSS4.6AI score0.00711EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2024/04/09 12:0 a.m.5 views

PT-2024-5059 · Siemens · Scalance W786-1 Rj45 +22

Name of the Vulnerable Software and Affected Versions: SCALANCE W1748-1 M12 6GK5748-1GY01-0AA0 SCALANCE W1748-1 M12 6GK5748-1GY01-0TA0 SCALANCE W1788-1 M12 6GK5788-1GY01-0AA0 SCALANCE W1788-2 EEC M12 6GK5788-2GY01-0TA0 SCALANCE W1788-2 M12 6GK5788-2GY01-0AA0 SCALANCE W1788-2IA M12...

6.1CVSS7.4AI score0.00196EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2024/02/14 12:0 a.m.6 views

PT-2024-13908 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: No information is available about the vulnerable software and its affected versions. Description: The provided information does not contain details about the issue. There is a mention of a rejected reason stating that the item is unused, alon...

6.3AI score
Exploits0References2
Circl
Circl
added 2024/01/15 10:26 p.m.10 views

CVE-2016-10972

creationtimestamp| type| source ---|---|--- 2024-01-15 22:26:38+00:00| seen| https://t.me/pytar/231 2025-08-31 03:12:58+00:00| seen| MISP/d17bd6ef-d68b-317b-ac33-cdbc44c5fc57...

9.8CVSS8.9AI score0.09268EPSS
Exploits1References1
Rows per page
Query Builder