Zephyr's BSD-sockets getaddrinfo() implementation (subsys/net/lib/sockets/getaddrinfo.c) passes a pointer to a stack-allocated state object (struct...
The Microchip SERCOM-G1 UART driver (drivers/serial/uart_mchp_sercom_g1.c), used by the PIC32CM-JH SoC family, contains an out-of-bounds write in i...
The Zephyr Bluetooth LE Audio Basic Audio Profile (BAP) unicast client mishandles peer-supplied ASE state notifications. In unicast_client_ep_qos_s...
CVE-2026-XXXXX Unauthenticated SQL Injection in School Management System — Bus Location Endpoint --- Advisory Information | Field | Value | |------...
DirtyClone DirtyClone is a C-based local privilege escalation LPE proof-of-concept targeting a kernel/XFRM-related vulnerability described in the s...
CVE-2025-69212 PoC - OpenSTAManager P7M Command Injection RCE Exploit Proof of Concept PoC exploit for CVE-2025-69212, an authenticated OS command ...
CVE-2026-XXXXX Unauthenticated Blind SQL Injection in e107 CMS Comment System via Unsafe toDB + select Chain --- Advisory Information | Field | Val...
CVE-2026-XXXXX Unauthenticated Arbitrary File Upload RCE + SQL Injection in Doctor Patient Portal --- Advisory Information | Field | Value | |-----...
Laravel FileManager Unrestricted File Upload CVE-2025-56399 CWE-434: Unrestricted Upload of File with Dangerous Type CVSS Score: 8.5 High --- 📋 De...
Nexploit Advanced Offensive Security Recon & Exploitation Framework Features - Reconnaissance - Web Scanning - Fuzzing - AI Analysis - Reporting De...
AI-powered asset discovery, dark web monitoring, CVE alerting, and vulnerability scanning — all in one platform.
