Redashβs default setup uses PostgreSQL superuser credentials for its primary data source. Because users can run SQL through Redash, any authenticat...
Proof of concept for a critical vulnerability exists in the Zimbra Collaboration Suite ZCS PostJournal service that allows attackers to execute arb...
Xorcom CompletePBX suffers from an authenticated command injection vulnerability within the Task Scheduler subsystem. An attacker with valid supera...
This proof of concept demonstrates message passing between two browser windows when opened under the same logical context same origin. It affect Ch...
A flaw in Android's Binder IPC allowed applications to craft Parcels where binder-object metadata overlapped with string data. When unmarshalling, ...
Pluck version 4.7.7-dev2 suffers from a remote code execution vulnerability...
A critical unauthenticated remote code execution vulnerability exists in React Server Components RSC Flight protocol. The vulnerability allows atta...
Adobe Acrobat Chrome extension version 1.41.100 suffers from a cross site scripting vulnerability...
This project delivers a PHP-based vulnerability scanner and remote code execution exploit for CVEβ2025β55182 affecting React Server Components. It ...
A critical security vulnerability exists in WordPress Story Chief plugin version 1.0.42 that allows unauthenticated attackers to achieve remote cod...
AI-powered asset discovery, dark web monitoring, CVE alerting, and vulnerability scanning β all in one platform.