PT-2026-47120

OSS-Fuzz report: https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=516422427 Crash type: Heap-buffer-overflow READ 1 Crash state: ihevcd sao shift ctb ihevcd process ihevcd parse slice data...

Do You Dare to Try Test-Driven Forensics? Increasing Trust in Desktop Forensics with ADARE

Digital forensic relies on validated tools and established procedures, yet the underlying operating systems, applications, and analysis tools evolve rapidly. This evolution can cause artifact behavior and tool outputs to drift, silently degrading repeatability and confidence in long-lived forensi...

PT-2026-43956

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified openSUSE Tumbleweed versions prior to kernel-devel-7.0.11-1.1 Description A flaw exists in the ALSA control component within the snd ctl elem init enum names function. The function advances a pointe...

indo-cpanel-exploit

🦉 Indo cPanel Exploit Toolkit ⚠️ FOR AUTHORIZED SECURITY TE...

XSSaudit

XSSAudit v2.0 — Advanced XSS Vulnerability Scanner For au...

MAL-2026-4356 Malicious code in testing-on-npmjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1575dee70b1f079b297d26405595aa16591e62de8fac896cf9ea485d6f534132 On npm install, postinstall.js executes two attacker-controlled actions automatically. First, it collects installer-side identity whoami, id,...

Malicious code in testing-on-npmjs (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 1575dee70b1f079b297d26405595aa16591e62de8fac896cf9ea485d6f534132 On npm install, postinstall.js executes two attacker-controlled actions automatically. First, it collects installer-side identity whoami, id,...

Exploit for Path Traversal in Grafana

GrafTraverse - CVE-2021-43798 MiNi Exploitation Framework...

view_component 安全漏洞

viewcomponent is an open-source framework developed by ViewComponent, designed for building reusable and testable view components. There are security vulnerabilities in the viewcomponent version 3.0.0 to 4.9.0. These vulnerabilities arise from the system’s testing entry point using File.realpath ...

Lessons from Penetration Tests on Large-Scale Agent Systems

As AI systems gain increasing autonomy and execution capability, the number of discovered security vulnerabilities continues to rise. However, many of these vulnerabilities are not fundamentally novel, but instead reflect recurring classes of weaknesses long observed in prior computing systems...

Exploit for Prototype Pollution in Substack Minimist

CVE-2020-7598 - Prototype Pollution in minimist Disclaimer...

netsec-agent

NETSEC-AGENT Autonomous AI Penetration Testing Terminal —...

sql-injection

sql-injection python tool that...

APT-Agent: Automated Penetration Testing Using Large Language Models

Penetration testing is essential to securing modern web infrastructures, yet traditional manual methods struggle to keep pace with their scale and complexity. Large Language Models LLMs offer new opportunities for automating these tasks, but existing approaches face two persistent challenges:...

programming-for-penetration-testing-buffer-overflow-exploit

Buffer Overflow Exploit in Ruby Overview This project was...

CVEsWorpriss

ها هو ملف README.md المعاد كتابته بالكامل لمشروعك CVEsWorpriss v...

Exploit for Unrestricted Upload of File with Dangerous Type in Wordpress

WordPress Crop Image RCE — CVE-2019-8942 / CVE-2019-8943 Pyth...

jwt-pwn

jwt-pwn A zero-dependency Python 3 toolkit for discovering an...

Exploit for CVE-2026-0211

ISU-SecOps Nginx QUIC RCE Lab Modern web sunucularındaki Ngi...

Mephisto

InMyMine7 - WordPress Auto Exploit !Versionhttps://img.s...