Publicly Disclosed
PoC Exploits

The affected versions of cPanel and WHM contain a serious authentication bypass flaw in the login flow. This vulnerability enables unauthenticated remote attackers to bypass authentication mechanisms, allowing them to gain unauthorized access to the control panel. Users of the specified versions ...

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

The affected versions of cPanel and WHM contain a serious authentication bypass flaw in the login flow. This vulnerability enables unauthenticated remote attackers to bypass authentication mechanisms, allowing them to gain unauthorized access to the control panel. Users of the specified versions ...

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

The affected versions of cPanel and WHM contain a serious authentication bypass flaw in the login flow. This vulnerability enables unauthenticated remote attackers to bypass authentication mechanisms, allowing them to gain unauthorized access to the control panel. Users of the specified versions ...

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

The affected versions of cPanel and WHM contain a serious authentication bypass flaw in the login flow. This vulnerability enables unauthenticated remote attackers to bypass authentication mechanisms, allowing them to gain unauthorized access to the control panel. Users of the specified versions ...

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

A vulnerability has been identified in the Dayoooun hwpx-mcp software version 0.2.0, specifically within the MCP Interface's save_document, export_to_text, and export_to_html functions. This flaw allows an attacker to manipulate the argument output_path, leading to path traversal issues. As a res...

A deserialization vulnerability exists in the mem0ai mem0 software, specifically affecting versions up to 1.0.11. The issue arises within the pickle.load and pickle.dump functions located in mem0/vector_stores/faiss.py. Attackers can exploit this vulnerability remotely, allowing for unauthorized ...

The affected versions of cPanel and WHM contain a serious authentication bypass flaw in the login flow. This vulnerability enables unauthenticated remote attackers to bypass authentication mechanisms, allowing them to gain unauthorized access to the control panel. Users of the specified versions ...

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

A vulnerability exists in the Slide Generator component of Nextlevelbuilder's ui-ux-pro-max-skill up to version 2.5.0, specifically within the data.get function located in generate-slide.py. This flaw allows for remote cross-site scripting (XSS) attacks, enabling malicious actors to manipulate da...

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

A code injection vulnerability was identified in the Nextlevelbuilder UI-UX-Pro-Max-Skill plugin, specifically within the Tailwind Config Generator component. This issue affects versions up to 2.5.0, where improper handling in the _format_plugins function of the tailwind_config_gen.py file allows...

A path traversal vulnerability exists in the image_to_3d_async function within the MCP Interface of Flux159's mcp-game-asset-gen version 0.1.0. This issue arises from improper handling of the statusFile argument, allowing attackers to manipulate file paths. Without adequate input validation, this...

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

A security vulnerability has been identified in the Sunwood-ai-labs command-executor-mcp-server, specifically in version 0.1.0 and earlier. This flaw resides in the execute_command function located in src/index.ts of the MCP Interface component. The vulnerability allows for potential OS command i...

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

A vulnerability has been discovered in the Itsourcode Courier Management System version 1.0, specifically within the /edit_staff.php file. This flaw allows attackers to manipulate the ID argument, leading to SQL injection attacks. Consequently, an unauthorized user can execute remote queries agai...

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

A security flaw in the TimBroddin astro-mcp-server, specifically within the MCP Tool Query Construction component, allows for an SQL injection via crafted parameters in the request. An attacker can exploit this vulnerability remotely by manipulating the 'request.params.arguments' argument, which ...

A critical OS command injection vulnerability exists in the Eyal-Gor p_69_branch_monkey_mcp component, particularly within the Preview Endpoint's advanced.py file. By manipulating the 'dev_script' argument, attackers can execute arbitrary commands on the host system remotely. This vulnerability h...

A vulnerability exists in the CSV Export function of Ghantakiran's Splunk MCP Integration, specifically within the create_csv_export function of the csv_export.py file. This vulnerability arises from improper handling of the job_name argument, allowing an attacker to exploit this weakness to perf...

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

A path traversal vulnerability exists in the ggerve coding-standards-mcp product, specifically in the get_style_guide/get_best_practices function within the server.py file. The flaw arises from improper handling of the 'Language' argument, allowing attackers to traverse the file system remotely a...

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

A vulnerability in the Open5GS AMF component, specifically in the function amf_nsmf_pdusession_handle_update_sm_context located in /src/amf/nsmf-handler.c, has been identified. This issue allows remote attackers to trigger a denial of service condition. The vulnerability affects all versions of O...

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

The affected versions of cPanel and WHM contain a serious authentication bypass flaw in the login flow. This vulnerability enables unauthenticated remote attackers to bypass authentication mechanisms, allowing them to gain unauthorized access to the control panel. Users of the specified versions ...

A vulnerability has been discovered in Open5GS versions up to 2.7.7, specifically within the AMF component's function ogs_id_get_value located in /src/amf/nudm-handler.c. This flaw can be exploited to execute remote denial of service attacks, causing disruptions in service. The exploit has been p...

A vulnerability exists within the Open5GS AMF component that affects the function amf_nudm_sdm_handle_provisioned in the file /src/amf/nudm-handler.c. By executing a specific manipulation, an attacker can remotely trigger a denial of service condition, rendering the affected services inoperative....

A vulnerability has been identified in Open5GS up to version 2.7.7 that affects the BSF component. Specifically, the flaw lies in the function bsf_sess_find_by_ipv6prefix within the file /src/bsf/context.c. This vulnerability can be exploited remotely by manipulating the ipv6Prefix argument, lead...

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

A vulnerability has been identified in the Academy Software Foundation's OpenImageIO, specifically within the DDS Image Handler component. This issue arises from an out-of-bounds write condition found in the src/dds.imageio/ddsinput.cpp file. Successful exploitation requires local access, and the...

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

A security vulnerability has been identified in the alexta69 MeTube application, specifically in the CORS Policy implementation within the app/main.py file. This flaw allows for a permissive cross-domain policy that can unintentionally trust unverified domains, potentially exposing users to remot...

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

A significant security flaw has been identified in the AstrBot application, specifically within the dashboard component located in astrbot/dashboard/routes/auth.py. This vulnerability arises from hard-coded credentials, which could potentially allow unauthorized access to sensitive functionalitie...

The affected versions of cPanel and WHM contain a serious authentication bypass flaw in the login flow. This vulnerability enables unauthenticated remote attackers to bypass authentication mechanisms, allowing them to gain unauthorized access to the control panel. Users of the specified versions ...

A vulnerability has been identified in MacCMS Pro, specifically affecting the Plugin Installation Handler's 'install' function. This weakness allows for unrestricted file uploads via manipulation of the '/admi.php/admin/addon/add.html' file. Attackers can exploit this vulnerability to upload any ...