Recent Advisories

Severity ID Title Vendor Product Date Type
NONE 9BFE7385-86D8-

bugspray_9BFE7385-86D8-5DA3-A472-E0D5C0C7460C

🔴 Bugspray Multi-vector web application vulnerability scanner SQLi · XSS · SSTI · NoSQLi · SSRF · LFI · CMDi · Path Traversal · Open Redirect text...

N/A N/A GITHUBEXPLOIT
NONE 30830C09-DEA1-

penetration-testing-labs-htu_30830C09-DEA1-5389-9616-12490B2D9736

Penetration Testing Labs – HTU Hands-on penetration testing project covering exploit development, Active Directory attacks, web application securit...

N/A N/A GITHUBEXPLOIT
NONE A00EE5B6-8F94-

SQLi-PoC_A00EE5B6-8F94-5989-907C-384C5EFDE512

SQLi-PoC — CW... flag extractor A self-contained, sqlmap-free SQL-injection exploit that extracts a CW... flag from a SQLite-backed API in under 15...

N/A N/A GITHUBEXPLOIT
CRITICAL 9.4 8D80E256-E0CF-

Exploit for OS Command Injection in Devcode Openstamanager_8D80E256-E0CF-5629-972A-654657B04B04

CVE-2025-69212 --- Description OpenSTAManager is a management software solution for technical assistance, electronic invoicing, and accounting. The...

N/A N/A GITHUBEXPLOIT
CRITICAL 10 9300A862-8FDF-

Exploit for SQL Injection in Sangoma Freepbx_9300A862-8FDF-5FB3-B6EB-72DB0241BA85

CVE-2025-57819 Exploit Metadata - Severity: Critical 9.8 - Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H - Type: Unauthenticated SQL Injecti...

N/A N/A GITHUBEXPLOIT
NONE 3C05B801-8687-

unified-bb-suite_3C05B801-8687-5076-995A-55DFAC5DBCAC

Unified BB Suite — Combined Workflow Two workflows merged into one · 33 tools · 30 Python scripts · 3 enhanced core tools Zero CGO · Termux-native ...

N/A N/A GITHUBEXPLOIT
NONE 68A3F776-A338-

CVE-PoC-Hub_68A3F776-A338-5DB3-A31D-A85B46D3DF8A

🔬 CVE-PoC-Hub — Curated Proof-of-Concept Exploits Working, verified PoC scripts for recent CVEs. Tested in lab environments. For security research...

N/A N/A GITHUBEXPLOIT
NONE 1BA014E3-69D1-

praetor_1BA014E3-69D1-53E6-A62B-087B7D42FCE7

PRAETOR Policy-governed Reconnaissance, Exploitation And Testing ORchestrator An LLM-driven autonomous penetration-testing orchestrator that you ca...

N/A N/A GITHUBEXPLOIT
NONE D0A0DF53-AA3B-

linux-privesc_D0A0DF53-AA3B-5A5C-B03B-5D3F30790643

🐧 Linux Privilege Escalation Toolkit Automated enumeration + exploit suggestion + 50+ privesc techniques. For pentesters, CTF players, and red tea...

N/A N/A GITHUBEXPLOIT
CRITICAL 9.8 MSF:EXPLOIT-MULTI-

Flowise CSV Agent Prompt Injection RCE_MSF:EXPLOIT-MULTI-HTTP-FLOWISE_AUTH_RCE_CVE_2026_41264-

This vulnerability allows remote attackers to execute arbitrary code on affected installations of FlowiseAI Flowise. Authentication is not required...

N/A N/A METASPLOIT