51 matches found
Exploit for CVE-2026-24061
CVE-2026-24061 CVE-2026-24061 Batch Scanning Tool How to us...
Exploit for CVE-2025-66478
Next.js RSC RCE Scanner CVE-2025-66478 A command-line scann...
Exploit for Missing Authentication for Critical Function in Langflow
CVE-2025-3248 Langflow RCE Scanner A Python tool designed to...
EUVD-2024-19298
Malicious code in bioql PyPI...
EUVD-2024-2481
Malicious code in bioql PyPI...
LFISuite
This repository is an offensive tool for Local File Inclusion LFI exploitation and scanning. It is primarily used to exploit LFI vulnerabilities in web applications, allowing an attacker to access sensitive files and potentially gain unauthorized access to a system. The tool, called LFI Suite,...
Linux Distros Unpatched Vulnerability : CVE-2023-53117
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - fs: prevent out-of-bounds array speculation when closing a file descriptor Google-Bug-Id: 114199369 CVE-2023-53117 Note that Nessus relies on the presence of th...
Linux Distros Unpatched Vulnerability : CVE-2020-36777
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In the Linux kernel, the following vulnerability has been resolved: media: dvbdev: Fix memory leak in dvbmediadevicefree dvbmediadevicefree is leaking memory...
Exploit for CVE-2020-0609
BlueGate Proof of Concept Denial of Service + scanner for CVE-2020-0609 and CVE-2020-0610. These vulnerabilities allows an unauthenticated attacker to gain remote code execution with highest privileges via RD Gateway for RDP. Please use for research and educational purpose only. Usage Make sure y...
Srimax Output Messenger Installed (Linux)
Binary data srimaxoutputmessengerlinuxinstalled.nbin...
CVE-2024-43379
TruffleHog is a secrets scanning tool. Prior to v3.81.9, this vulnerability allows a malicious actor to craft data in a way that, when scanned by specific detectors, could trigger the detector to make an unauthorized request to an endpoint chosen by the attacker. For an exploit to be effective, t...
Exploit for Code Injection in Craftcms Craft_Cms
CraftCMS CVE-2025-32432 Exploit By Chirag Artani Overview...
Unity Parsec Installed (macOS)
Binary data unityparsecmacinstalled.nbin...
Linux Distros Unpatched Vulnerability : CVE-2024-49917
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - drm/amd/display: Add NULL check for clkmgr and clkmgr-funcs in dcn30inithw This commit addresses a potential null pointer dereference issue in the dcn30inithw...
Linux Distros Unpatched Vulnerability : CVE-2024-41075
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - cachefiles: add consistency check for copen/cread This prevents malicious processes from completing random copen/cread requests and crashing the system. Added...
Azure Linux 3.0 Security Update: mariadb (CVE-2024-1544)
The version of mariadb installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-1544 advisory. - Generating the ECDSA nonce k samples a random number r and then truncates this randomness with a modular...
CVE-2024-21682
This High severity Injection vulnerability was introduced in Assets Discovery 1.0 - 6.2.0 all versions. Assets Discovery, which can be downloaded via Atlassian Marketplace, is a network scanning tool that can be used with or without an agent with Jira Service Management Cloud, Data Center or...
FIN7 Cybercrime Group Targeting U.S. Auto Industry with Carbanak Backdoor
The infamous cybercrime syndicate known as FIN7 has been linked to a spear-phishing campaign targeting the U.S. automotive industry to deliver a known backdoor called Carbanak aka Anunak. "FIN7 identified employees at the company who worked in the IT department and had higher levels of...
CVE-2024-21682
This High severity Injection vulnerability was introduced in Assets Discovery 1.0 - 6.2.0 all versions. Assets Discovery, which can be downloaded via Atlassian Marketplace, is a network scanning tool that can be used with or without an agent with Jira Service Management Cloud, Data Center or...
Design/Logic Flaw
This High severity Injection vulnerability was introduced in Assets Discovery 1.0 - 6.2.0 all versions. Assets Discovery, which can be downloaded via Atlassian Marketplace, is a network scanning tool that can be used with or without an agent with Jira Service Management Cloud, Data Center or...