authentik is an open-source identity provider. Prior to versions 2025.12.5 and 2026.2.3, due to the implementation of stages in the SFE (Simple Flo...
CVE-2026-41089 β SentinelCore Defensive Toolkit Python 3 toolkit to detect and remediate exposure to CVE-2026-41089 on Windows Domain Controllers. ...
SIP signaling stack in Verizon IMS (unspecified version) implements SIP signaling without IPsec integrity protection (missing Security-Client/Secur...
The ARMember Premium plugin for WordPress is vulnerable to an insecure password reset mechanism in all versions up to, and including, 7.3.1. The pl...
This Python script is a structured exploitation framework targeting Samba print services exposed over SMB port 445. It focuses on printer-share int...
This proof of concept demonstrates an error-based remote SQL injection vulnerability in Drupal core version 10.5.5 PostgreSQL. User-controlled JSON...
 **May Linux Patch Wednesday.** A total of 1,638 vu...
In Casdoor versions 2.362.0 and earlier, the SAML callback handler in controllers/auth.go accepts any well-formed SAMLResponse sent to /api/acs wit...
Casdoor versions 2.362.0 and earlier do not verify that a JWT used for token exchange is still active. The GetTokenExchangeToken() function in obje...
Casdoor versions 2.362.0 and earlier contain a vulnerability enabling cross-organization token exchange. The GetTokenExchangeToken function in obje...
AI-powered asset discovery, dark web monitoring, CVE alerting, and vulnerability scanning β all in one platform.
