178 matches found
GHSA-W6VW-MRGV-69VF
creationtimestamp| type| source ---|---|--- 2026-03-06 20:09:04+00:00| seen| https://github.blog/security/how-to-scan-for-vulnerabilities-with-github-security-labs-open-source-ai-powered-framework/ 2026-03-10 23:10:58+00:00| seen|...
CVE-2025-15033
creationtimestamp| type| source ---|---|--- 2026-03-06 20:09:04+00:00| seen| https://github.blog/security/how-to-scan-for-vulnerabilities-with-github-security-labs-open-source-ai-powered-framework/...
GHSA-C8XF-3J86-7686
creationtimestamp| type| source ---|---|--- 2026-03-06 20:09:04+00:00| seen| https://github.blog/security/how-to-scan-for-vulnerabilities-with-github-security-labs-open-source-ai-powered-framework/...
GHSA-87FH-RC96-6FR6
creationtimestamp| type| source ---|---|--- 2026-03-06 20:09:04+00:00| seen| https://github.blog/security/how-to-scan-for-vulnerabilities-with-github-security-labs-open-source-ai-powered-framework/...
CVE-2026-25758
creationtimestamp| type| source ---|---|--- 2026-02-05 13:49:28+00:00| published-proof-of-concept| https://github.com/spree/spree/security/advisories/GHSA-87fh-rc96-6fr6 2026-03-06 20:09:04+00:00| seen|...
CVE-2026-25757
creationtimestamp| type| source ---|---|--- 2026-02-05 13:46:30+00:00| published-proof-of-concept| https://github.com/spree/spree/security/advisories/GHSA-p6pv-q7rc-g4h9 2026-03-06 20:09:04+00:00| seen|...
Exploit for Expression Language Injection in Atlassian Confluence_Data_Center
This repository is a collection of proof-of-concept PoC exploits from Datadog Security Labs. The exploits are designed to demonstrate vulnerabilities in various software products, including Confluence, OpenSSL, and Spring. The repository contains code and instructions for running the exploits, as...
Referral Beware, Your Rewards are Mine (Part 1)
The post Referral Beware, Your Rewards are Mine Part 1 appeared first on Rhino Security Labs...
CVE-2025-26147: Authenticated RCE In Denodo Scheduler
The post CVE-2025-26147: Authenticated RCE In Denodo Scheduler appeared first on Rhino Security Labs...
New Pacu Module: Secret Enumeration in Elastic Beanstalk
The post New Pacu Module: Secret Enumeration in Elastic Beanstalk appeared first on Rhino Security Labs...
NetAlertX File Read Vulnerability
This module exploits improper authentication in logs.php endpoint. An unathenticated attacker can request log file and read any file due path traversal vulnerability. Module Options msf use auxiliary/scanner/http/netalertxfileread msf auxiliarynetalertxfileread show actions ...actions... msf...
Unauthenticated RCE in NetAlertX
An attacker can update NetAlertX settings with no authentication, which results in RCE. Module Options msf use exploit/linux/http/netalertxrcecve202446506 msf exploitnetalertxrcecve202446506 show targets ...targets... msf exploitnetalertxrcecve202446506 set TARGET msf...
CVE-2025-0693: AWS IAM User Enumeration
The post CVE-2025-0693: AWS IAM User Enumeration appeared first on Rhino Security Labs...
CVE-2024-46506: Unauthenticated RCE in NetAlertx
The post CVE-2024-46506: Unauthenticated RCE in NetAlertx appeared first on Rhino Security Labs...
CVE-2024-46507: Yeti Platform Server-Side Template Injection (SSTI)
The post CVE-2024-46507: Yeti Platform Server-Side Template Injection SSTI appeared first on Rhino Security Labs...
CloudGoat Official Walkthrough Series: ‘sqs_flag_shop’
The post CloudGoat Official Walkthrough Series: ‘sqsflagshop’ appeared first on Rhino Security Labs...
CloudGoat: New Scenario and Walkthrough (sns_secrets)
The post CloudGoat: New Scenario and Walkthrough snssecrets appeared first on Rhino Security Labs...
Linux OverlayFS Local Privilege Escalation
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Local Privilege Escalation via CVE-2023-0386', 'Description' = %q This exploit targets the Linux kernel bug in OverlayFS. A flaw was found in the...
Entro Security Labs Releases Non-Human Identities Research Security Advisory
Boston, USA, 16th September 2024, CyberNewsWire...
CloudGoat Official Walkthrough Series: ‘glue_privesc’
The post CloudGoat Official Walkthrough Series: ‘glueprivesc’ appeared first on Rhino Security Labs...