The ugw-logstop method allows a remote attacker with user privileges to terminate arbitrary processes due to insufficient validation of user-suppli...
The ugw-restoreinfo method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-con...
The ugw-restore method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-control...
The ugw-logstop method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-contro...
The ugw-delete-file method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-co...
The bac-scanresult method allows a remote attacker with user privileges to delete arbitrary local files due to insufficient validation of user-cont...
SWUpdate before 2026.05 is affected by a time-of-check time-of-use (TOCTOU) race condition that allows local unprivileged attackers to escalate pri...
🛡️ Wazuh Deployment & Vulnerability Monitoring PoC Overview This Proof of Concept PoC demonstrates the deployment of a fresh Wazuh Manager instance...
Local privilege escalation / Container escape: CVE-2026-43284 / CVE-2026-43500 Usage: CGOENABLED=0; go build -ldflags="-s -w" -o dirtyfrag ../dirty...
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Fox-themes Prague allows Reflected XSS. This...
AI-powered asset discovery, dark web monitoring, CVE alerting, and vulnerability scanning — all in one platform.
