EUVD-2025-198097

Malicious code in security-testing-research22 npm...

Exploit for CVE-2025-63406

CVE-2025-63406 PoC Installation bash Install depende...

Snitch__Scan

PoC exploit for XSS Vulnerability Scanner. This tool is designed...

Oracle Application Testing Suite (October 2025 CPU)

The versions of Oracle Application Testing Suite installed on the remote host are affected by a vulnerability as referenced in the October 2025 CPU advisory. - Vulnerability in the Oracle Application Testing Suite product of Oracle Enterprise Manager component: Load Testing for Web Apps Apache...

Wapiti Web Application Vulnerability Scanner 3.2.10

Wapiti is a web application vulnerability scanner. It will scan the web pages of a deployed web application and will fuzz the URL parameters and forms to find common web vulnerabilities. This is the binary release...

Beyond Fixed and Dynamic Prompts: Embedded Jailbreak Templates for Advancing LLM Security

As the use of large language models LLMs continues to expand, ensuring their safety and robustness has become a critical challenge. In particular, jailbreak attacks that bypass built-in safety mechanisms are increasingly recognized as a tangible threat across industries, driving the need for...

7 Steps for Securing Generative AI in Enterprises

Think of your AI strategy like building a skyscraper. You wouldn't construct twenty floors and then try to figure out where the foundation should go. Security must be part of the blueprint from the very beginning. Bolting on security measures after an AI model is already in use is a recipe for...

Data Poisoning Vulnerabilities across Healthcare AI Architectures: A Security Threat Analysis

Healthcare AI systems face major vulnerabilities to data poisoning that current defenses and regulations cannot adequately address. We analyzed eight attack scenarios in four categories: architectural attacks on convolutional neural networks, large language models, and reinforcement learning...

BreachLock and Vanta Bridge the Gap Between Continuous Security Testing and Compliance with New Integration

New York, New York, 13th November 2025, CyberNewsWire...

Oracle Application Testing Suite Detection Consolidation

Consolidation of Oracle Application Testing Suite detections. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

DHS Kept Chicago Police Records for Months in Violation of Domestic Espionage Rules

The Department of Homeland Security collected data on Chicago residents accused of gang ties to test if police files could feed an FBI watchlist. Months passed before anyone noticed it wasn’t deleted...

Automated Hardware Trojan Insertion in Industrial-Scale Designs

Industrial Systems-on-Chips SoCs often comprise hundreds of thousands to millions of nets and millions to tens of millions of connectivity edges, making empirical evaluation of hardware-Trojan HT detectors on realistic designs both necessary and difficult. Public benchmarks remain significantly...

Exploit for Missing Authorization in Valvepress Wordpress_Automatic_Plugin

CVE-2021-4374 Testing Environment Complete testing package fo...

pentest-scripts

Pentest Scripts - Unified Security Testing Framework 🎯 Qui...

Malicious code in wei516-ppa (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 1d5a85017b397970606b9d2d5150a6f6ee8f71fdbd810fe6b0a8f34c577d76d1 Package seems to provide an MCP server, but in fact contains attempts to make an LLM agent break safeguards. As the request is about leaves just a flag, it see...

CLSA-2025-1762537520 Fix CVE(s): CVE-2023-4408

SECURITY UPDATE: The DNS message parsing code in named includes a section whose computational complexity is overly high - debian/patches/CVE-2023-4408.patch: refactoring parsing code - debian/patches/CVE-2023-4408-1.patch: fix DNSSEC test suite - debian/libdns1100.symbols: some function...

Exploit for User Interface (UI) Misrepresentation of Critical Information in Microsoft

CVE-2025-9491 LNK Obfuscation PoC A proof-of-concept tool for...

ApexPlanet-Task5-capstone-webapp-pentest

🛡️ Capstone Project — Web Application & Network Penetration Test...

Quantifying the Risk of Transferred Black Box Attacks

Neural networks have become pervasive across various applications, including security-related products. However, their widespread adoption has heightened concerns regarding vulnerability to adversarial attacks. With emerging regulations and standards emphasizing security, organizations must...

Unity Linux 20.1070a Security Update: kernel (UTSA-2025-990484)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2025-990484 advisory. In the Linux kernel, the following vulnerability has been resolved: dm raid: fix accesses beyond end of raid member array On dm-raid table load using raidctr, dm-rai...