Recent Advisories

Severity ID Title Vendor Product Date Type
NONE MALWAREBYTES:D1...

ChatGPT produced graphic violent images that shocked researchers_MALWAREBYTES:D177E6BB3C65928D9086D0DD8B58C731

AI assistants like ChatGPT are supposed to be safe to use, with appropriate guardrails to stop people creating harmful content. However, a British ...

N/A N/A MALWAREBYTES
NONE 91E0F59C-602A-

poc-exploit-harden-runner_91E0F59C-602A-5DD9-9BCE-0B7297D5D5CE

poc-exploit-harden-runner...

N/A N/A GITHUBEXPLOIT
MEDIUM 6.5 193F61B6-AFAB-

Exploit for External Control of File Name or Path in Microsoft_193F61B6-AFAB-5066-A82C-03D8AA8216BB

CVE-2025-24054 — Detection & Mitigation Lab Project log for a defensive security lab on CVE-2025-24054, the Windows New Technology LAN Manager NTLM...

N/A N/A GITHUBEXPLOIT
MEDIUM 5.3 CVE-2026-27435

WordPress Woffice theme < 5.4.33 - Broken Access Control vulnerability_CVE-2026-27435

Missing Authorization vulnerability in WofficeIO Woffice allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affec...

WofficeIO Woffice n/a CVE
MEDIUM 6.5 CVE-2026-13454

MotoPress Appointment Booking <= 2.4.5 - Authenticated (Staff+) SQL Injection via 's' Parameter_CVE-2026-13454

The MotoPress Appointment Booking plugin for WordPress is vulnerable to generic SQL Injection via the 's' parameter in all versions up to, and incl...

jetmonsters MotoPress Appointment Booking CVE
MEDIUM 6.1 CVE-2026-12754

VikBooking Hotel Booking Engine & PMS <= 1.8.12 - Reflected Cross-Site Scripting via 'layoutstyle' Parameter_CVE-2026-12754

The VikBooking Hotel Booking Engine & PMS plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'layoutstyle' parameter in a...

e4jvikwp VikBooking Hotel Booking Engine & PMS CVE
NONE 6149CF23-B774-

Cloud-Security-Portfolio_6149CF23-B774-5D14-9C99-482AA23E6B6D

Cloud-Security-Portfolio Offensive AWS security portfolio — IAM privilege escalation, S3 misconfig exploitation, and cloud attack path documentatio...

N/A N/A GITHUBEXPLOIT
CRITICAL 9.2 A750C77E-2A84-

Exploit for Incorrect Calculation of Buffer Size in F5 Dos_A750C77E-2A84-512E-851A-D31DBACF4509

RIFT — Remote Injection & Fault Trigger Author: Michael Sanji Winaya Prawiradibrata AI Co-Author: Varanus — sahabatku Heap buffer overflow exploit ...

N/A N/A GITHUBEXPLOIT
NONE 4A2B93CF-136D-

0day-Rubbish_4A2B93CF-136D-5F1E-8106-D0E105DC92C2

0day Rubbish 0day vulnerabilities have become rubbish in the AI era. 🎯 Why This Exists Traditional vulnerability disclosure is broken. It's slow, ...

N/A N/A GITHUBEXPLOIT
HIGH 7.2 CVE-2026-50043

CVE-2026-50043_CVE-2026-50043

Improper neutralization of special elements used in an OS command ('OS Command Injection') issue exists in SkyBridge MB-A100/MB-A110. If this vulne...

Seiko Solutions Inc. SkyBridge MB-A100/MB-A110 all versions CVE