metasploit-web-scanner-module

MSF Web Vulnerability Scanner Advanced Advanced Metasploit au...

ai-pentest-agent

🔐 AI Pentest Agent v4 Automated web application penetration...

GHSA-XMRV-PMRH-HHX2 Denial of Service due to Panic in AWS SDK for Go v2 SDK EventStream Decoder

CVSSv3.1 Rating: Medium CVSSv3.1 Score: 5.9 CVSSv3.1 Vector String: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H Summary and Impact An issue exists in the the EventStream header decoder in AWS SDK for Go v2 in versions predating 2026-03-23. An actor can send a malformed EventStream response frame...

Fleet 代码问题漏洞

Fleet is an open-source device management platform developed by Fleet Device Management. It supports various operating systems and devices, and helps IT and security teams with device management, vulnerability reporting, MDM operations, etc. Versions of Fleet prior to 4.81.0 contained code...

PT-2026-28102

What are the limits of AI-assisted vulnerability hunting? I obtained 23 CVEs in one month. BentoML 8.2k CVE-2026-27905 HIGH SillyTavern 24.6k CVE-2026-26286 HIGH Plane 28.2k CVE-2026-27705 MEDIUM NocoDB 46.4k CVE-2026-28399 MEDIUM Mautic 8.4k CVE-2026-3105 HIGH File Browser 27.9k CVE-2026-28492...

Exploit for Deserialization of Untrusted Data in Facebook React

React2Shell Security Tool CVE-2025-55182 & CVE-2025-66478...

S3C2 SICP Summit 2025-06: Vulnerability Response Summit

Recent years have shown increased cyber attacks targeting less secure elements in the software supply chain and causing significant damage to businesses and organizations. The US and EU governments and industry are equally interested in enhancing software security, including supply chain and...

CVE-2025-9981

QuickCMS is vulnerable to multiple Stored XSS in slider editor functionality sliders-form. Malicious attacker with admin privileges can inject arbitrary HTML and JS into website, which will be rendered/executed on every page. By default admin user is not able to add JavaScript into the website. T...

EUVD-2019-14213

Malware in sbrugna...

EUVD-2007-6418

Malware in sbrugna...

EUVD-2022-43644

Malicious code in bioql PyPI...

EUVD-2022-53242

Malicious code in bioql PyPI...

EUVD-2023-44456

Malicious code in bioql PyPI...

EUVD-2024-31943

Malicious code in bioql PyPI...

DependencyCheck

This is an open-source project for a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies. The project is called OWASP dependency-check. The project is written in Java and is designed to be used in a variety of environments, including...

GHSA-WM7X-WW72-R77Q Information Disclosure in Amazon ECS Container Agent

Summary Amazon Elastic Container Service Amazon ECS is a fully managed container orchestration service that enables customers to deploy, manage, and scale containerized applications. Amazon ECS container agent provides an introspection API that provides information about the overall state of the...

CVE-2025-8580

creationtimestamp| type| source ---|---|--- 2025-08-08 10:34:04+00:00| seen| https://bsky.app/profile/secqube.com/post/3lvv2ihpdt42u...

CVE-2025-6013

creationtimestamp| type| source ---|---|--- 2025-08-08 02:59:34+00:00| seen| https://bsky.app/profile/getpokemon7.bsky.social/post/3lvub3qyqck2h 2025-08-22 13:26:18+00:00| seen| MISP/af1fbe07-e10c-40c4-844e-d4419bdf6f80...

CVE-2025-30192

creationtimestamp| type| source ---|---|--- 2025-07-31 20:45:07+00:00| seen| https://bsky.app/profile/getpokemon7.bsky.social/post/3lvbyvq3vbc2c...

CVE-2025-6054

creationtimestamp| type| source ---|---|--- 2025-07-23 06:38:32+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lumfukppsr2i...