Recent Advisories

Severity ID Title Vendor Product Date Type
CRITICAL 10 9300A862-8FDF-

Exploit for SQL Injection in Sangoma Freepbx_9300A862-8FDF-5FB3-B6EB-72DB0241BA85

CVE-2025-57819 Exploit Metadata - Severity: Critical 9.8 - Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H - Type: Unauthenticated SQL Injecti...

N/A N/A GITHUBEXPLOIT
CRITICAL 9.8 MSF:EXPLOIT-MULTI-

Flowise CSV Agent Prompt Injection RCE_MSF:EXPLOIT-MULTI-HTTP-FLOWISE_AUTH_RCE_CVE_2026_41264-

This vulnerability allows remote attackers to execute arbitrary code on affected installations of FlowiseAI Flowise. Authentication is not required...

N/A N/A METASPLOIT
CRITICAL 9.4 F59E18E1-8D28-

Exploit for OS Command Injection in Devcode Openstamanager_F59E18E1-8D28-5DFC-B6C7-B647B9B2BC1E

CVE-2025-69212 - OpenSTAManager OS Command Injection PoC Usage Install dependencies: bash pip install -r requirements.txt Run a single command and ...

N/A N/A GITHUBEXPLOIT
CRITICAL 10 8CE9463B-8C4B-

Exploit for SQL Injection in Sangoma Freepbx_8CE9463B-8C4B-5C24-983C-468AF40F53CB

CVE-2025-57819 Exploit Metadata - Severity: Critical 9.8 - Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H - Type: Unauthenticated SQL Injecti...

N/A N/A GITHUBEXPLOIT
CRITICAL 9.6 CVE-2026-14017

CVE-2026-14017_CVE-2026-14017

Inappropriate implementation in Navigation in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer proce...

Google Chrome 150.0.7871.47 CVE
CRITICAL 9.6 CVE-2026-13920

CVE-2026-13920_CVE-2026-13920

Insufficient validation of untrusted input in Media in Google Chrome on Windows prior to 150.0.7871.47 allowed a remote attacker who had compromise...

Google Chrome 150.0.7871.47 CVE
CRITICAL 9.6 CVE-2026-13798

CVE-2026-13798_CVE-2026-13798

Heap buffer overflow in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to po...

Google Chrome 150.0.7871.47 CVE
CRITICAL 9.6 CVE-2026-13797

CVE-2026-13797_CVE-2026-13797

Insufficient validation of untrusted input in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the ...

Google Chrome 150.0.7871.47 CVE
CRITICAL 9.6 CVE-2026-13796

CVE-2026-13796_CVE-2026-13796

Integer overflow in Chromecast in Google Chrome prior to 150.0.7871.47 allowed a remote attacker who had compromised the renderer process to potent...

Google Chrome 150.0.7871.47 CVE
CRITICAL 9.6 CVE-2026-13792

CVE-2026-13792_CVE-2026-13792

Use after free in Touchbar in Google Chrome on Mac prior to 150.0.7871.47 allowed a remote attacker to potentially perform a sandbox escape via a c...

Google Chrome 150.0.7871.47 CVE