Event Booking Calendar version 5.0 suffers from a cross site scripting vulnerability...
The Shell and Script extensions in Espanso version 2.3.0 allow arbitrary command execution. No restart required. Config changes take effect immedia...
Proof of concept for Flowise versions prior to 3.0.5 that suffer from a missing authentication vulnerability...
WordPress Ninja Forms - File Uploads plugin versions 3.3.26 and below arbitrary file upload exploit...
This Python script exploits a local file inclusion vulnerability in the WordPress Madara theme. It interacts with the admin-ajax.php endpoint to lo...
CairoSVG versions prior to 2.9.0 suffer from a recursive denial of service vulnerability...
This Python script targets a server-side request forgery vulnerability in Grafana version 11.2.0. It abuses a path traversal flaw in the /render en...
This Python script demonstrates a security assessment targeting a forgot-password API endpoint in a digital payment platform operated by S2M, a com...
This Metasploit module exploits an unauthorized file upload vulnerability in Cisco ISE. A ZIP file containing a JSP file with a manipulated path pa...
This Metasploit module targets a remote code execution vulnerability in Fuel CMS version 1.4.1. The issue stems from improper input sanitization in...
AI-powered asset discovery, dark web monitoring, CVE alerting, and vulnerability scanning — all in one platform.
