YOURLS version 1.8.2 AJAX endpoint scanner that checks for cross site request forgery, insecure direct object reference, missing authorization, and...
Coohoom SaaS is susceptible to a persistent cross site scripting vulnerability...
Cinnamon kotaemon version 0.11.0 zip bomb proof of concept denial of service exploit...
Proof of concept exploit that demonstrates how authenticated users with access to Graph Templates in Cacti can abuse RRD invocation parameters to w...
Flask version 3.0.0 suffers from multiple remote code execution vulnerabilities...
WordPress AI Buddy plugin versions 1.8.5 and below remote shell upload exploit that leverages the REST API attachment functionality...
Microsoft Windows File Explorer in Windows 10 and 11 contains a critical NTLM hash disclosure vulnerability that allows attackers to capture user a...
Visual Studio versions 1.30.0 through 1.39.0 had a remote debugger enabled by default that could cause multiple security issues. Code included to s...
A critical stack overflow vulnerability in Apache bRPC's JSON parser allows remote attackers to crash servers via specially crafted deep recursive ...
phpMyAdmin version 5.0.0 suffers from a remote SQL injection vulnerability...
AI-powered asset discovery, dark web monitoring, CVE alerting, and vulnerability scanning — all in one platform.
