CVE-2026-35029 — LiteLLM /config/update 越权访问漏洞 Broken Access Control LiteLLM 的 /config/update 端点未检查调用者的角色权限。任何持有有效 API K...
XiangShan Cross-ASID BPU Leak PoC Minimal proof of concept for a cross-ASID branch predictor state leak in OpenXiangShan XiangShan. The PoC demonst...
POCCVE-2024-36420 Local reproduction lab and nuclei template draft for CVE-2024-36420 affecting Flowise. Summary CVE-2024-36420 is an arbitrary fil...
No description provided...
Magento-Exploit Magento CE 1.9.0.1 - RCE remade in Python3...
Offensive Security Research Config for Claude Code A comprehensive Claude Code configuration tailored for security researchers, red teamers, and vu...
OWASP Web Pentest Tools CLI toolkit para suporte em testes de penetração em aplicações web, cobrindo as principais vulnerabilidades do OWASP Top 10...
CVE-2025-45809 — LiteLLM SQL Injection via /key/block Time-Based Blind SQLi LiteLLM v1.65.4(v1.81.0 之前版本)的 /key/block 和 /key/unblock 端点 ...
Log amplification based denial for service for vanilla Minecraft MC-271325 Unauthenticated clients can make vanilla and Fabric Minecraft servers wr...
Bounty 295: Why ownPublicKey Can't Be Trusted for Access Control A Comprehensive Tutorial on ZK Circuit Access Control Vulnerabilities in Midnight ...
AI-powered asset discovery, dark web monitoring, CVE alerting, and vulnerability scanning — all in one platform.
