dwatch version 0.0.2 allows unauthenticated users to create monitoring tasks via the /api/task/save endpoint. The url parameter accepts arbitrary U...
Remote Sunrise Helper for Windows 2026.14 suffers from an unauthenticated remote code execution vulnerability...
WordPress Kali Forms plugin version 2.4.9 suffers from a remote code execution vulnerability...
dcontrol version 1.0.9 suffers from an unauthenticated remote code execution vulnerability via the /control-api/monitor/open endpoint...
This is a server-side request forgery scanner for Activitypub-federation-rust version 0.7.1...
This Metasploit module targets an authenticated remote code execution vulnerability in EspoCRM versions 9.3.3 and below...
A ZipSlip path traversal vulnerability exists in the ddev/ddev project, affecting archive extraction routines. The issue allows a crafted ZIP archi...
PCLink version 4.1.1 trusts localhost requests with the "X-Internal-Auth: true" header, bypassing all authentication. Combined with unrestricted ex...
This Metasploit auxiliary module targets a remote code execution vulnerability in MCPJam Inspector version 1.4.2. The flaw exists in the /api/mcp/c...
This is a variant of crbug.com/474041332. The issue there was that MultiplyFFT, an optimized version of integer multiplication for very large input...
AI-powered asset discovery, dark web monitoring, CVE alerting, and vulnerability scanning — all in one platform.
