Recent Advisories

Severity ID Title Vendor Product Date Type
HIGH 7.5 CVE-2025-58157

gnark affected by denial of service when computing scalar multiplication using fake-GLV algorithm_CVE-2025-58157

gnark is a zero-knowledge proof system framework. In version 0.12.0, there is a potential denial of service vulnerability when computing scalar mul...

Consensys gnark = 0.12.0 CVE
HIGH 8.4 CVE-2025-56577

CVE-2025-56577_CVE-2025-56577

An issue in Evope Core v.1.1.3.20 allows a local attacker to obtain sensitive information via the use of hard coded cryptographic keys.

n/a n/a n/a CVE
HIGH 8.8 MSF:EXPLOIT-LINUX-

Eramba (up to 3.19.1) Authenticated Remote Code Execution Module_MSF:EXPLOIT-LINUX-HTTP-ERAMBA_RCE-

This module exploits a remote code execution vulnerability in Eramba. An authenticated user can execute arbitrary commands on the server ...

N/A N/A METASPLOIT
HIGH 8.8 MSF:EXPLOIT-LINUX-

Invoice Ninja unauthenticated PHP Deserialization Vulnerability_MSF:EXPLOIT-LINUX-HTTP-INVOICENINJA_UNAUTH_RCE_CVE_2024_55555-

Invoice Ninja is a free invoicing software for small businesses, based on the PHP framework Laravel. A Remote Code Execution vulnerabilit...

N/A N/A METASPLOIT
HIGH 8.6 MSF:EXPLOIT-LINUX-

Pandora FMS authenticated command injection leading to RCE via chromium_path or phantomjs_bin_MSF:EXPLOIT-LINUX-HTTP-PANDORA_FMS_AUTH_RCE_CVE_2024_12971-

Pandora FMS is a monitoring solution that provides full observability for your organization's technology. This module...

N/A N/A METASPLOIT
HIGH 8.8 MSF:EXPLOIT-LINUX-

Netdata ndsudo privilege escalation_MSF:EXPLOIT-LINUX-LOCAL-NDSUDO_CVE_2024_32019-

The ndsudo is a tool shipped with Netdata Agent. The version v1.45.0 and...

N/A N/A METASPLOIT
HIGH 8.8 MSF:EXPLOIT-MULTI-

CmsMadeSimple Authenticated File Manager RCE_MSF:EXPLOIT-MULTI-HTTP-CMSMS_FILE_MANAGER_AUTH_RCE-

CMS Made Simple <= v2.2.21 allows an authenticated administrator to upload files with the .phar or .phtml extensions, enabling executi...

N/A N/A METASPLOIT
HIGH 10 MSF:EXPLOIT-SOLARIS-

System V Derived /bin/login Extraneous Arguments Buffer Overflow_MSF:EXPLOIT-SOLARIS-DIALUP-MANYARGS-

This exploit connects to a system's modem over dialup and exploits a buffer overflow vulnerability in it's System V derived /bi...

N/A N/A METASPLOIT
HIGH 7.8 MSF:EXPLOIT-WINDOWS-

Windows Cloud File Mini Filer Driver Heap Overflow_MSF:EXPLOIT-WINDOWS-LOCAL-CVE_2024_30085_CLOUD_FILES-

This module exploits the Windows Cloud Files Mini FIlter Driver cldflt.sys on Windows workstation versions ...

N/A N/A METASPLOIT
HIGH 8.8 CVE-2025-58158

Harness Affected by Arbitrary File Write in Gitness LFS server_CVE-2025-58158

Harness Open Source is an end-to-end developer platform with Source Control Management, CI/CD Pipelines, Hosted Developer Environments, and Artifac...

harness harness < 3.3.0 CVE