[{"title":"7-Zip RAR5 Mark-of-the-Web / ADS Full-Chain Bypass","cve":"None assigned as of 2026-07-03","category":"misc","severity":"High","cvss_score":0,"tags":["7-zip","rar5","mark-of-the-web","alternate-data-streams","ntfs","motw-bypass","windows","archive-extraction"],"affected_product":"7-Zip 26.01 x64 for Windows","affected_versions":"7-Zip 26.01 (Windows, NTFS destination)","author":"bikini (@ashdfrkl) — original discovery; mirrored via exploitarium","patched":false,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2026-07 Author / Researcher bikini (@ashdfrkl) — original discovery; mirrored via exploitarium CVE / Advisory None assigned as of 2026-07-03 Category misc Severity High CVSS Score Not yet scored (no CVE/CVSS assigned) Status PoC Tags 7-zip, rar5, mark-of-the-web, alternate-data-streams, ntfs, motw-bypass, windows, archive-extraction Related N/A Affected Target Field Value Software / System 7-Zip 26.01 x64 for Windows Versions Affected 7-Zip 26.01 (Windows, NTFS destination) Language / Platform Python 3.10+ (PoC generator/driver, invokes installed 7z.exe) Authentication Required No (victim must extract the crafted archive) Network Access Required No (local archive extraction; delivery is out of scope) Summary 7-Zip 26.01 on Windows mishandles RAR5 archives that contain crafted STM (stream) service records alongside a normal file entry. By naming one stream ::$DATA and another :Zone.Identifier:$DATA, an attacker can make the archive-provided data silently override both the extracted file\u0026rsquo;s final visible bytes and its propagated Mark-of-the-Web (MotW) Zone.Identifier stream, because NTFS resolves these differently-suffixed stream names to the same underlying alternate data stream that 7-Zip\u0026rsquo;s own zone-propagation logic writes to. When the source archive itself carries an Internet-zone marker, 7-Zip normally propagates that marker to extracted files, but the crafted RAR5 stream is applied afterward and overwrites it, effectively resetting the extracted file\u0026rsquo;s zone to ZoneId=0 (trusted) while also swapping in attacker-controlled content. This lets a downloaded archive produce an extracted document that both looks different from what a user might expect and no longer carries the \u0026ldquo;downloaded from the internet\u0026rdquo; security warning. This PoC was published by a pseudonymous independent researcher (bikini/ashdfrkl) as part of the uncoordinated \u0026ldquo;exploitarium\u0026rdquo; vulnerability dump; it has not been vendor-confirmed.","permalink":"/pocs/misc/2026-07-03_7zip-rar5-motw-ads-bypass/"},{"title":"AnyDesk Printer Pipe COM Impersonation Local Privilege Escalation","cve":"None assigned as of 2026-07-03","category":"binary","severity":"High","cvss_score":0,"tags":["anydesk","windows","privilege-escalation","com-impersonation","named-pipe","local-service","lpe","ipc"],"affected_product":"AnyDesk for Windows 9.7.6","affected_versions":"9.7.6 (release observed 2026-06-15); other nearby versions unconfirmed","author":"bikini (@ashdfrkl) — original discovery; mirrored via exploitarium","patched":false,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2026-06 Author / Researcher bikini (@ashdfrkl) — original discovery; mirrored via exploitarium CVE / Advisory None assigned as of 2026-07-03 Category binary Severity High CVSS Score Not yet scored (no CVE/CVSS assigned) Status PoC Tags anydesk, windows, privilege-escalation, com-impersonation, named-pipe, local-service, lpe, ipc Related N/A Affected Target Field Value Software / System AnyDesk for Windows 9.7.6 Versions Affected 9.7.6 (release observed 2026-06-15); other nearby versions unconfirmed Language / Platform Python 3.10+ with pywin32 (PoC), targets Windows x86 service process Authentication Required Local-only (requires a low-privileged local Windows account) Network Access Required No Summary AnyDesk\u0026rsquo;s local printer IPC worker creates a named pipe (\\\\.\\pipe\\adprinterpipe) with an ACL that grants access to Everyone, then accepts a message containing attacker-controlled COM marshaling bytes, unmarshals it into an IUnknown, queries for IStream, and invokes IStream::Read on it. Because the AnyDesk process initializes COM security with impersonation level RPC_C_IMP_LEVEL_IMPERSONATE, the attacker-supplied COM object\u0026rsquo;s callback can impersonate the calling AnyDesk process during that invocation. When AnyDesk is installed as a Windows service (the default, since CreateServiceW is called with a null service account and thus runs as LocalSystem), a low-privileged local user who can connect to the pipe can escalate to the AnyDesk service identity — in the default configuration, NT AUTHORITY\\SYSTEM. This PoC was published by a pseudonymous independent researcher (bikini/ashdfrkl) as part of the uncoordinated \u0026ldquo;exploitarium\u0026rdquo; vulnerability dump; it has not been vendor-confirmed.","permalink":"/pocs/binary/2026-07-03_anydesk-printer-pipe-com-impersonation-lpe/"},{"title":"c-ares TCP ares_getaddrinfo() Use-After-Free Code Execution","cve":"None assigned as of 2026-07-03","category":"network","severity":"High","cvss_score":0,"tags":["c-ares","use-after-free","dns","resolver","tcp","heap-corruption","code-execution","edns"],"affected_product":"c-ares (async DNS resolver library)","affected_versions":"Upstream main (c93e50f3ebc0373fe57677523ec960f6c1cb0e15) and latest release v1.34.6 (3ac47ee46edd8ea40370222f91613fc16c434853)","author":"bikini (@ashdfrkl) — original discovery; mirrored via exploitarium","patched":false,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2026-06 Author / Researcher bikini (@ashdfrkl) — original discovery; mirrored via exploitarium CVE / Advisory None assigned as of 2026-07-03 Category network Severity High CVSS Score Not yet scored (no CVE/CVSS assigned) Status PoC Tags c-ares, use-after-free, dns, resolver, tcp, heap-corruption, code-execution, edns Related N/A Affected Target Field Value Software / System c-ares (async DNS resolver library) Versions Affected Upstream main (c93e50f3ebc0373fe57677523ec960f6c1cb0e15) and latest release v1.34.6 (3ac47ee46edd8ea40370222f91613fc16c434853) Language / Platform C, Linux/WSL, requires gcc/cmake/POSIX sockets Authentication Required No Network Access Required Yes (attacker acts as, or spoofs, the DNS-over-TCP server the victim resolver connects to) Summary c-ares\u0026rsquo;s ares_getaddrinfo() path over DNS-over-TCP with EDNS enabled contains a use-after-free reachable when a malicious or compromised DNS server sends two responses for the same query ID in a single TCP read — the first a FORMERR without OPT data (triggering EDNS retry handling) and the second a successful empty response — followed by a connection reset before internal cleanup runs. This stale-state condition causes c-ares to later dereference a freed ares_query_t structure during query cleanup, ultimately reaching an attacker-shaped indirect function-pointer call (node-\u0026gt;parent-\u0026gt;destruct(node-\u0026gt;data)) inside ares_slist_node_destroy(). The included PoC shapes the freed allocation via c-ares\u0026rsquo;s public ares_library_init_mem() allocator hook to reliably redirect that destructor call to an arbitrary local function, which in this PoC writes a proof marker file and launches a calculator to demonstrate full control-flow hijack rather than a mere crash. It was verified against both current upstream main and the latest official release tag, and the researcher notes the bug is heap-layout sensitive so the harness retries until the marker is hit. This PoC was published by a pseudonymous independent researcher (bikini/ashdfrkl) as part of the uncoordinated \u0026ldquo;exploitarium\u0026rdquo; vulnerability dump; it has not been vendor-confirmed.","permalink":"/pocs/network/2026-07-03_c-ares-tcp-getaddrinfo-uaf/"},{"title":"Citrix NetScaler ADC/Gateway Pre-Auth SAML Memory Overread — \"CitrixBleed\"-style Leak (CVE-2026-8451)","cve":"CVE-2026-8451","category":"network","severity":"High","cvss_score":7.5,"tags":["memory-disclosure","SAML","Citrix","NetScaler","ADC","Gateway","citrixbleed","unauthenticated","active-exploitation"],"affected_product":"Citrix NetScaler ADC and NetScaler Gateway","affected_versions":"14.1 before 14.1-72.61; 13.1 before 13.1-63.18; NetScaler ADC FIPS before 14.1-72.61 FIPS; NetScaler ADC FIPS and NDcPP before 13.1-37.272","author":"Aliz (@alizTheHax0r) of watchTowr Labs","patched":false,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2026-06-30 Author / Researcher Aliz (@alizTheHax0r) of watchTowr Labs CVE / Advisory CVE-2026-8451 Category network Severity High CVSS Score 7.5–8.8 (source-dependent) Status Incomplete PoC (memory-leak/detection primitive only — no session-hijack automation) Tags memory-disclosure, SAML, Citrix, NetScaler, ADC, Gateway, citrixbleed, unauthenticated, active-exploitation Related N/A Affected Target Field Value Software / System Citrix NetScaler ADC and NetScaler Gateway Versions Affected 14.1 before 14.1-72.61; 13.1 before 13.1-63.18; NetScaler ADC FIPS before 14.1-72.61 FIPS; NetScaler ADC FIPS and NDcPP before 13.1-37.272 Language / Platform Python (PoC) targeting NetScaler\u0026rsquo;s SAML authentication endpoint Authentication Required No Network Access Required Yes (HTTPS to NetScaler /saml/login endpoint) Summary CVE-2026-8451 is a pre-authentication out-of-bounds memory read in Citrix NetScaler ADC/Gateway\u0026rsquo;s SAML request parser, in the same vulnerability class as the infamous 2023 \u0026ldquo;CitrixBleed\u0026rdquo; (CVE-2023-4966). By posting a specially-sized, malformed SAMLRequest to /saml/login, an unauthenticated attacker can cause the appliance to leak adjacent heap memory back inside the NSC_TASS response cookie. Citrix disclosed and patched this on 2026-06-30 (advisory CTX696604); exploitation in the wild was observed within roughly 24 hours of disclosure. This archived PoC — watchTowr Labs\u0026rsquo; official \u0026ldquo;Detection Artifact Generator\u0026rdquo; — reliably demonstrates the memory-disclosure primitive (varying the padding size to walk across heap block sizes and printing leaked bytes as a hexdump) but is explicitly not a full exploit chain: it does not parse leaked session tokens/credentials or automate turning the leak into an authenticated session takeover.","permalink":"/pocs/network/2026-07-03_cve-2026-8451-citrix-netscaler-memory-leak/"},{"title":"curl SMTP EXPN Recipient CRLF Command Injection","cve":"None assigned as of 2026-07-03","category":"network","severity":"Medium","cvss_score":0,"tags":["curl","smtp","crlf-injection","command-injection","expn","vrfy","protocol-injection","libcurl"],"affected_product":"curl / libcurl (SMTP support)","affected_versions":"Stock curl with SMTP support (version not pinned in source; reproduced against system curl)","author":"bikini (@ashdfrkl) — original discovery; mirrored via exploitarium","patched":false,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2026-07 Author / Researcher bikini (@ashdfrkl) — original discovery; mirrored via exploitarium CVE / Advisory None assigned as of 2026-07-03 Category network Severity Medium CVSS Score Not yet scored (no CVE/CVSS assigned) Status PoC Tags curl, smtp, crlf-injection, command-injection, expn, vrfy, protocol-injection, libcurl Related N/A Affected Target Field Value Software / System curl / libcurl (SMTP support) Versions Affected Stock curl with SMTP support (version not pinned in source; reproduced against system curl) Language / Platform Python 3 driver invoking the curl binary; underlying bug is in curl\u0026rsquo;s C lib/smtp.c Authentication Required Yes (attacker must control or influence the CURLOPT_MAIL_RCPT/mail-rcpt operand passed to curl, e.g., via an application that lets users supply an SMTP recipient/EXPN target) Network Access Required Yes (SMTP session to a target mail server) Summary Stock curl does not reject CR/LF sequences in the recipient operand used with SMTP EXPN/VRFY custom requests (CURLOPT_MAIL_RCPT), allowing an attacker who controls that operand to inject arbitrary additional SMTP protocol lines into the same authenticated session. The PoC demonstrates this by supplying a recipient value containing \\r\\n-separated MAIL FROM, RCPT TO, and DATA commands terminated with a dot, causing curl\u0026rsquo;s single EXPN Friends request to smuggle in a full, separate SMTP message transaction under the same AUTH PLAIN-authenticated connection. The vulnerable code path is Curl_pp_sendf(data, \u0026amp;smtpc-\u0026gt;pp, \u0026quot;%s %s%s\u0026quot;, smtp-\u0026gt;custom, smtp-\u0026gt;rcpt-\u0026gt;data, ...) in lib/smtp.c, where the custom command is control-byte checked but the recipient operand is not. This lets an application that passes user-controlled input into the SMTP recipient field have curl inject and send attacker-chosen SMTP commands, including full spoofed emails, within its own authenticated session. This PoC was published by a pseudonymous independent researcher (bikini/ashdfrkl) as part of the uncoordinated \u0026ldquo;exploitarium\u0026rdquo; vulnerability dump; it has not been vendor-confirmed.","permalink":"/pocs/network/2026-07-03_curl-smtp-expn-crlf-injection/"},{"title":"Discourse Scoped API Key Pre-Route Authorization Bypass","cve":"None assigned as of 2026-07-03","category":"web","severity":"High","cvss_score":0,"tags":["discourse","authorization-bypass","api-key-scope","rails","middleware","privilege-escalation","route-confusion"],"affected_product":"Discourse (forum platform)","affected_versions":"Commit 3dfcc8f884313da69711ed5f26f3749fb6516ef2 (verified against docker.io/discourse/discourse_dev:20260609-1222)","author":"bikini (@ashdfrkl) — original discovery; mirrored via exploitarium","patched":false,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2026-06 Author / Researcher bikini (@ashdfrkl) — original discovery; mirrored via exploitarium CVE / Advisory None assigned as of 2026-07-03 Category web Severity High CVSS Score Not yet scored (no CVE/CVSS assigned) Status PoC Tags discourse, authorization-bypass, api-key-scope, rails, middleware, privilege-escalation, route-confusion Related N/A Affected Target Field Value Software / System Discourse (forum platform) Versions Affected Commit 3dfcc8f884313da69711ed5f26f3749fb6516ef2 (verified against docker.io/discourse/discourse_dev:20260609-1222) Language / Platform Ruby on Rails (target), Python 3.10+ (PoC driver using stdlib HTTP only) Authentication Required Yes (attacker needs a valid granular all-users API key scoped only to topics:read) Network Access Required Yes (HTTP access to the Discourse instance) Summary Discourse\u0026rsquo;s overload-protection middleware authenticates API requests before Rails routing has resolved the actual HTTP verb, and its scoped API key matcher (lib/route_matcher.rb) calls Rails.application.routes.recognize_path(request.path_info) without passing the real request method. By sending a caller-controlled X-Request-Start header that makes the request appear queued long enough to trigger the overload-protection authentication path, an attacker holding a read-only scoped API key (topics:read) can have that key\u0026rsquo;s permission check resolve against the GET route for a topic path even though the actual request is a PUT /t/:topic_id.json. The middleware then caches the authenticated API user in the Rack environment, and the later TopicsController#update action executes using that cached user, effectively turning a read-scoped API key into a write-capable request. In the researcher\u0026rsquo;s validated run, a control PUT without the header was correctly rejected (403) while the same request with X-Request-Start: t=0 succeeded (200) and changed the topic title. This PoC was published by a pseudonymous independent researcher (bikini/ashdfrkl) as part of the uncoordinated \u0026ldquo;exploitarium\u0026rdquo; vulnerability dump; it has not been vendor-confirmed.","permalink":"/pocs/web/2026-07-03_discourse-scoped-api-key-route-bypass/"},{"title":"Docker cp Copy-Out Destination Escape via Symlink Race","cve":"None assigned as of 2026-07-03","category":"cloud","severity":"Medium","cvss_score":0,"tags":["docker","container-escape","toctou","symlink-race","docker-cp","path-traversal","archive-extraction","host-file-write"],"affected_product":"Docker Engine / CLI","affected_versions":"Validated on Docker Client/Server 29.6.0, API 1.55 (2026-06-23)","author":"bikini (@ashdfrkl) — original discovery; mirrored via exploitarium","patched":false,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2026-06 Author / Researcher bikini (@ashdfrkl) — original discovery; mirrored via exploitarium CVE / Advisory None assigned as of 2026-07-03 Category cloud Severity Medium CVSS Score Not yet scored (no CVE/CVSS assigned) Status PoC Tags docker, container-escape, toctou, symlink-race, docker-cp, path-traversal, archive-extraction, host-file-write Related N/A Affected Target Field Value Software / System Docker Engine / CLI Versions Affected Validated on Docker Client/Server 29.6.0, API 1.55 (2026-06-23) Language / Platform Bash PoC driver; underlying bug spans Docker CLI (cli/command/container/cp.go) and daemon (daemon/archive_unix.go, vendored go-archive) in Go Authentication Required Local-only (attacker needs code execution inside a running container; a host user must separately run docker cp from that container) Network Access Required No Summary docker cp copy-out operations are vulnerable to a time-of-check/time-of-use race: the daemon walks the container\u0026rsquo;s source path with filepath.WalkDir and builds a tar stream, but if a container process changes a directory entry (e.g., swaps it for a symlink) after the walk observes it but before the entry is added to the tar stream, the resulting archive can contain a symlink whose target escapes the intended destination. On the client side, archive.CopyTo/Untar checks the resolved symlink target with a raw strings.HasPrefix(targetPath, extractDir) string check rather than a proper path-boundary check, so a symlink target like dst2 passes the prefix check against dst even though it is a sibling directory outside the requested extraction root. Entries that follow the symlink in the tar stream are then written through it into the sibling path. The researcher validated this against Docker 29.6.0 by racing many padding files before the target path and reliably (in ~0.2s of skew) getting a marker file written outside the requested destination. This is a host-operator-initiated escape, not an unattended container breakout — it requires a host user to run docker cp against an attacker-controlled container. This PoC was published by a pseudonymous independent researcher (bikini/ashdfrkl) as part of the uncoordinated \u0026ldquo;exploitarium\u0026rdquo; vulnerability dump; it has not been vendor-confirmed.","permalink":"/pocs/cloud/2026-07-03_docker-cp-copyout-destination-escape/"},{"title":"FFmpeg RASC Decoder DLTA Heap Out-of-Bounds Write","cve":"None assigned as of 2026-07-03","category":"binary","severity":"Critical","cvss_score":0,"tags":["ffmpeg","libavcodec","heap-overflow","rasc","oob-write","media-parsing","codec","memory-corruption"],"affected_product":"FFmpeg, libavcodec RASC decoder (AV_CODEC_ID_RASC)","affected_versions":"Upstream master bcd2c69e087a09b07cf45c6bd2428ee1ccb2925c (2026-06-26)","author":"bikini (@ashdfrkl) — original discovery; mirrored via exploitarium","patched":false,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2026-06 Author / Researcher bikini (@ashdfrkl) — original discovery; mirrored via exploitarium CVE / Advisory None assigned as of 2026-07-03 Category binary Severity Critical CVSS Score Not yet scored (no CVE/CVSS assigned) Status PoC Tags ffmpeg, libavcodec, heap-overflow, rasc, oob-write, media-parsing, codec, memory-corruption Related N/A Affected Target Field Value Software / System FFmpeg, libavcodec RASC decoder (AV_CODEC_ID_RASC) Versions Affected Upstream master bcd2c69e087a09b07cf45c6bd2428ee1ccb2925c (2026-06-26) Language / Platform C, targets libavcodec; reachable via AVI/RIFF files with a RASC FourCC Authentication Required No Network Access Required No (local/media-file processing; delivery via crafted media file is out of scope) Summary FFmpeg\u0026rsquo;s RASC decoder (decode_dlta() in libavcodec/rasc.c) tracks a row cursor and only checks whether it has reached the end of the current row after certain operations, rather than before. Several DLTA run types (4, 7, 12, 13) perform 32-bit reads/writes at the cursor position before this boundary check runs, so a crafted delta chunk positioned at the last byte of a row (e.g., x=63 on a 64-pixel-wide PAL8 row) causes a 4-byte read/write that crosses the row\u0026rsquo;s heap allocation boundary by 3 bytes. The included PoC demonstrates this is exploitable beyond a crash: it places a callback function pointer immediately after the 64-byte PAL8 plane via a custom get_buffer2 allocator, then uses DLTA run type 7 (whose 32-bit fill value comes directly from the bitstream) to overwrite the low 3 bytes of that adjacent pointer, redirecting it from a benign callback to an attacker-chosen one that is invoked after decode completes. The researcher confirmed the underlying heap-buffer-overflow with AddressSanitizer against current FFmpeg master and demonstrated full callback hijack (launching a calculator) in a non-ASAN build. This PoC was published by a pseudonymous independent researcher (bikini/ashdfrkl) as part of the uncoordinated \u0026ldquo;exploitarium\u0026rdquo; vulnerability dump; it has not been vendor-confirmed.","permalink":"/pocs/binary/2026-07-03_ffmpeg-rasc-dlta-heap-oob-write/"},{"title":"Firefox Smart Window Private URL Exfiltration","cve":"None assigned as of 2026-07-03","category":"web","severity":"High","cvss_score":0,"tags":["firefox","smart-window","ai-assistant","privacy-leak","information-disclosure","url-token-exfiltration","browser","prompt-injection"],"affected_product":"Firefox Smart Window (AI browsing assistant feature)","affected_versions":"Firefox 152.0.2 x64 (Windows), Smart Window with custom OpenAI-compatible endpoint","author":"bikini (@ashdfrkl) — original discovery; mirrored via exploitarium","patched":false,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2026-06 Author / Researcher bikini (@ashdfrkl) — original discovery; mirrored via exploitarium CVE / Advisory None assigned as of 2026-07-03 Category web Severity High CVSS Score Not yet scored (no CVE/CVSS assigned) Status PoC Tags firefox, smart-window, ai-assistant, privacy-leak, information-disclosure, url-token-exfiltration, browser, prompt-injection Related N/A Affected Target Field Value Software / System Firefox Smart Window (AI browsing assistant feature) Versions Affected Firefox 152.0.2 x64 (Windows), Smart Window with custom OpenAI-compatible endpoint Language / Platform Firefox privileged JS (Tools.sys.mjs, ChatUtils.sys.mjs, Chat.sys.mjs) + Node.js 18+ PoC harness Authentication Required No Network Access Required Yes Summary Firefox\u0026rsquo;s Smart Window assistant exposes get_open_tabs and search_browsing_history tools that return private tab/history URLs to the model and mark the conversation as containing privateData, but they never mark it as containing untrustedInput even though the returned titles originate from attacker-controlled web pages. Smart Window\u0026rsquo;s URL-token expansion (expandUrlTokensInToolParams) then substitutes those private URLs into a later get_page_content tool call, and get_page_content only blocks outbound fetches when both privateData and untrustedInput are set — so the private-only state still permits the browser to send an HTTP request carrying expanded private URLs to an attacker-controlled endpoint. In effect, a malicious tab title or history entry can steer the assistant into leaking up to 15 open-tab or 15 history URLs (including query strings such as session tokens or reset links) off the user\u0026rsquo;s machine. The included PoC is a dependency-free Node.js server that impersonates the configured model endpoint, drives the tool-call sequence, and logs whether the private URLs were expanded and exfiltrated. This PoC was published by a pseudonymous independent researcher (bikini/ashdfrkl) as part of the uncoordinated \u0026ldquo;exploitarium\u0026rdquo; vulnerability dump; it has not been vendor-confirmed.","permalink":"/pocs/web/2026-07-03_firefox-smartwindow-private-url-exfil/"},{"title":"Floci API Gateway VTL RCE + IAM Scope Bypass","cve":"None assigned as of 2026-07-03","category":"cloud","severity":"Critical","cvss_score":0,"tags":["floci","api-gateway","velocity-template-language","rce","iam-bypass","sigv4","java-reflection","localstack-alternative"],"affected_product":"Floci (AWS-compatible local cloud emulator)","affected_versions":"1.5.27 (rechecked against upstream commit 7efb280dbcf6f5ea8faab28f1c7d5f8c3f59b4e0)","author":"bikini (@ashdfrkl) — original discovery; mirrored via exploitarium","patched":false,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2026-06 Author / Researcher bikini (@ashdfrkl) — original discovery; mirrored via exploitarium CVE / Advisory None assigned as of 2026-07-03 Category cloud Severity Critical CVSS Score Not yet scored (no CVE/CVSS assigned) Status Weaponized Tags floci, api-gateway, velocity-template-language, rce, iam-bypass, sigv4, java-reflection, localstack-alternative Related N/A Affected Target Field Value Software / System Floci (AWS-compatible local cloud emulator) Versions Affected 1.5.27 (rechecked against upstream commit 7efb280dbcf6f5ea8faab28f1c7d5f8c3f59b4e0) Language / Platform Java/Quarkus backend, API Gateway REST API emulation with Apache Velocity templates Authentication Required No (IAM policy enforcement is disabled by default); bypassable even when enabled Network Access Required Yes Summary Floci evaluates user-controlled API Gateway integration response templates with an unrestricted Apache Velocity engine that exposes $util, allowing template code to reach java.lang.ProcessBuilder via reflection and execute arbitrary OS commands in the Floci JVM process. An attacker who can create/configure an API Gateway REST API, store a malicious MOCK integration response template, deploy a stage, and invoke the route achieves command execution. A companion finding weakens the precondition further: Floci derives the enforced IAM action from the service name embedded in the SigV4 credential scope, and if a request is sent with a non-apigateway scope (e.g., iam), action resolution returns null and the enforcement filter defaults to allow — letting a denied or low-privilege key still reach and trigger the same RCE path even with IAM enforcement enabled. The chain was verified end-to-end both via an in-process JUnit/Quarkus test and a live standalone run against a local Floci dev server. This PoC was published by a pseudonymous independent researcher (bikini/ashdfrkl) as part of the uncoordinated \u0026ldquo;exploitarium\u0026rdquo; vulnerability dump; it has not been vendor-confirmed.","permalink":"/pocs/cloud/2026-07-03_floci-apigateway-vtl-rce/"},{"title":"Flowise Custom MCP Environment Variable Case Bypass","cve":"None assigned as of 2026-07-03","category":"web","severity":"High","cvss_score":0,"tags":["flowise","mcp","model-context-protocol","windows","environment-variable","case-insensitivity","node-options","rce"],"affected_product":"Flowise / flowise-components","affected_versions":"3.1.2","author":"bikini (@ashdfrkl) — original discovery; mirrored via exploitarium","patched":false,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2026-07 Author / Researcher bikini (@ashdfrkl) — original discovery; mirrored via exploitarium CVE / Advisory None assigned as of 2026-07-03 Category web Severity High CVSS Score Not yet scored (no CVE/CVSS assigned) Status PoC Tags flowise, mcp, model-context-protocol, windows, environment-variable, case-insensitivity, node-options, rce Related N/A Affected Target Field Value Software / System Flowise / flowise-components Versions Affected 3.1.2 Language / Platform Node.js/TypeScript, Windows deployments (Custom MCP stdio transport) Authentication Required Yes (authenticated Flowise session or API-key context) Network Access Required Yes Summary Flowise\u0026rsquo;s Custom MCP stdio node validates configured environment variables against a denylist (PATH, LD_LIBRARY_PATH, DYLD_LIBRARY_PATH, NODE_OPTIONS) using exact, case-sensitive string comparison. Windows, however, treats environment variable names case-insensitively, so a casing variant such as node_options sails through Flowise\u0026rsquo;s validation while still being honored by a spawned Node.js child process as NODE_OPTIONS. When the configured MCP command starts a Node.js process, this lets an authenticated user preload attacker-chosen JavaScript via Node\u0026rsquo;s startup option handling, achieving code execution in the Flowise worker/server context on Windows. The included PoC models Flowise\u0026rsquo;s validator, confirms the exact-case denylist blocks NODE_OPTIONS but not node_options, and launches a real Node.js child process to prove the lowercase variant is honored. This PoC was published by a pseudonymous independent researcher (bikini/ashdfrkl) as part of the uncoordinated \u0026ldquo;exploitarium\u0026rdquo; vulnerability dump; it has not been vendor-confirmed.","permalink":"/pocs/web/2026-07-03_flowise-mcp-env-var-case-bypass/"},{"title":"Fortinet FortiClient EMS Pre-Auth Bypass — \"FortiBleed\" (CVE-2026-35616)","cve":"CVE-2026-35616","category":"network","severity":"Critical","cvss_score":9.1,"tags":["authentication-bypass","header-spoofing","Fortinet","FortiClient-EMS","FortiBleed","credential-theft","CISA-KEV","active-exploitation","ransomware"],"affected_product":"Fortinet FortiClient Endpoint Management Server (EMS)","affected_versions":"7.4.5, 7.4.6","author":"Fortinet (advisory); Alaatk (PoC)","patched":false,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2026-04 Author / Researcher Fortinet (advisory); Alaatk (PoC) CVE / Advisory CVE-2026-35616 Category network Severity Critical CVSS Score 9.1 (CVSSv3) Status Weaponized Tags authentication-bypass, header-spoofing, Fortinet, FortiClient-EMS, FortiBleed, credential-theft, CISA-KEV, active-exploitation, ransomware Related N/A Affected Target Field Value Software / System Fortinet FortiClient Endpoint Management Server (EMS) Versions Affected 7.4.5, 7.4.6 Language / Platform Python (PoC) targeting FortiClient EMS\u0026rsquo;s Fabric/FortiGate device-auth API Authentication Required No Network Access Required Yes (HTTPS to FortiClient EMS management API) Summary CVE-2026-35616 is a pre-authentication bypass in Fortinet FortiClient EMS\u0026rsquo;s certificate-chain authentication handler (cert_chain_auth.py), which trusts the X-SSL-CLIENT-VERIFY header directly without performing real cryptographic validation of the presented client certificate. By forging a self-signed certificate whose Common Name matches a CA name accepted by the TLS client-certificate prompt (enumerable via openssl s_client) and supplying the spoofed verification header, an unauthenticated attacker can reach protected Fabric/FortiGate device-management API endpoints as a trusted device. This bug is the technical root cause of the \u0026ldquo;FortiBleed\u0026rdquo; mass credential-theft campaign, in which attackers harvest browser/EMS credentials at scale (430,000+ FortiGate firewalls reportedly affected) and the resulting access has since been linked to INC Ransom and Lynx ransomware affiliates for follow-on extortion.","permalink":"/pocs/network/2026-07-03_cve-2026-35616-forticlient-ems-auth-bypass/"},{"title":"Ghidra 12.1.2 Conditional Swift Demangler ACE (plus TraceRMI RCE and SevenZipJBinding Reachability)","cve":"None assigned as of 2026-07-03","category":"binary","severity":"Medium","cvss_score":0,"tags":["ghidra","reverse-engineering","arbitrary-code-execution","tracermi","sevenzipjbinding","native-parser","conditional-exploit","calc-poc"],"affected_product":"Ghidra (NSA reverse-engineering suite)","affected_versions":"12.1.2","author":"bikini (@ashdfrkl) — original discovery; mirrored via exploitarium","patched":false,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2026-07 Author / Researcher bikini (@ashdfrkl) — original discovery; mirrored via exploitarium CVE / Advisory None assigned as of 2026-07-03 Category binary Severity Medium CVSS Score Not yet scored (no CVE/CVSS assigned) Status Incomplete PoC Tags ghidra, reverse-engineering, arbitrary-code-execution, tracermi, sevenzipjbinding, native-parser, conditional-exploit, calc-poc Related N/A Affected Target Field Value Software / System Ghidra (NSA reverse-engineering suite) Versions Affected 12.1.2 Language / Platform Java, Python 3 PoC harnesses Authentication Required Local-only (requires a configured/restored Swift tool directory, or an exposed TraceRMI debugger-agent channel) Network Access Required No (Swift demangler path is local); TraceRMI variant requires an untrusted peer reaching an already-established debugger-agent channel Summary This entry packages three conditional, defensively-scoped findings against Ghidra 12.1.2 rather than a single unconditional exploit. First, the Swift demangler analyzer builds and launches a swift-demangle executable from a program/analyzer-controlled tool directory, which is local arbitrary code execution if that directory can be redirected to an attacker-controlled binary. Second, TraceRMI debugger-agent implementations (GDB/LLDB) expose command/eval sinks (execute(cmd), pyeval(expr)) that grant code execution to any untrusted peer able to drive an already-created TraceRMI channel. Third, Ghidra bundles an older SevenZipJBinding native archive parser and routes recognized archive bytes into it in-process, a plausible native-parser attack surface given reverse engineers routinely open untrusted archives/firmware images. The author is explicit that these are conditional, calc-only demonstrations (simulated sinks and source-reachability checks) rather than full unauthenticated exploit chains against a stock Ghidra install. This PoC was published by a pseudonymous independent researcher (bikini/ashdfrkl) as part of the uncoordinated \u0026ldquo;exploitarium\u0026rdquo; vulnerability dump; it has not been vendor-confirmed.","permalink":"/pocs/binary/2026-07-03_ghidra-swift-demangler-ace/"},{"title":"Gitea act_runner container.options Host Namespace Escape","cve":"None assigned as of 2026-07-03","category":"cloud","severity":"High","cvss_score":0,"tags":["gitea","act-runner","ci-cd","docker","container-escape","host-namespace","privilege-escalation","capabilities"],"affected_product":"Gitea Actions act_runner (Docker-backed)","affected_versions":"act_runner (Docker executor); version not explicitly pinned by source, validated against a current Docker-backed build","author":"bikini (@ashdfrkl) — original discovery; mirrored via exploitarium","patched":false,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2026-07 Author / Researcher bikini (@ashdfrkl) — original discovery; mirrored via exploitarium CVE / Advisory None assigned as of 2026-07-03 Category cloud Severity High CVSS Score Not yet scored (no CVE/CVSS assigned) Status PoC Tags gitea, act-runner, ci-cd, docker, container-escape, host-namespace, privilege-escalation, capabilities Related N/A Affected Target Field Value Software / System Gitea Actions act_runner (Docker-backed) Versions Affected act_runner (Docker executor); version not explicitly pinned by source, validated against a current Docker-backed build Language / Platform Go (act_runner), Python 3 PoC driver, Linux Docker host Authentication Required Yes (ability to trigger a workflow on a repository serviced by the shared runner) Network Access Required No (workflow-triggered, not a direct network attack against the runner) Summary Gitea\u0026rsquo;s act_runner allows workflow YAML to append Docker options via jobs.\u0026lt;job\u0026gt;.container.options. When the runner configuration disables privileged mode, act_runner forces Privileged back to false and sanitizes bind mounts, but it preserves every other Docker HostConfig field parsed from those options — including PidMode=host, IpcMode=host, CapAdd=[\u0026quot;ALL\u0026quot;], and unconfined seccomp/AppArmor security profiles. A workflow that sets these options can therefore share the host\u0026rsquo;s PID and IPC namespaces with expanded capabilities and no security profile, letting a job container use nsenter to enter the host namespace and execute commands as root on the runner host, even though Privileged reports false. The PoC validated this with the runner\u0026rsquo;s Docker socket mount disabled, isolating the issue to Docker option handling rather than direct socket access. This PoC was published by a pseudonymous independent researcher (bikini/ashdfrkl) as part of the uncoordinated \u0026ldquo;exploitarium\u0026rdquo; vulnerability dump; it has not been vendor-confirmed.","permalink":"/pocs/cloud/2026-07-03_gitea-act-runner-container-options-escape/"},{"title":"Gogs Admin User Edit CSRF to Git Hook RCE","cve":"None assigned as of 2026-07-03","category":"web","severity":"Critical","cvss_score":0,"tags":["gogs","csrf","git-hooks","privilege-escalation","rce","admin-takeover","git","self-hosted"],"affected_product":"Gogs (self-hosted Git service)","affected_versions":"0.15.0+dev (commit 5f51118ab513522462a54cef30599d7ddffcc55f)","author":"bikini (@ashdfrkl) — original discovery; mirrored via exploitarium","patched":false,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2026-07 Author / Researcher bikini (@ashdfrkl) — original discovery; mirrored via exploitarium CVE / Advisory None assigned as of 2026-07-03 Category web Severity Critical CVSS Score Not yet scored (no CVE/CVSS assigned) Status Weaponized Tags gogs, csrf, git-hooks, privilege-escalation, rce, admin-takeover, git, self-hosted Related N/A Affected Target Field Value Software / System Gogs (self-hosted Git service) Versions Affected 0.15.0+dev (commit 5f51118ab513522462a54cef30599d7ddffcc55f) Language / Platform Go, classic server-rendered web routes, Git smart HTTP Authentication Required Yes — attacker needs a normal user account; requires a logged-in site administrator to submit the forged request Network Access Required Yes Summary Gogs\u0026rsquo; admin user-edit route (POST /admin/users/:userid) performs the state-changing grant of IsAdmin/AllowGitHook without a CSRF token, so an authenticated site administrator can be induced (e.g., via a cross-site form submission) to grant those rights to an attacker-controlled account. Once the attacker account holds admin and Git-hook-edit rights, it can create a repository and write a post-receive hook through Gogs\u0026rsquo; own hook-editor route; that hook then executes as an OS command during a normal git push to the repository. The researcher validated the complete chain end-to-end against a stock Gogs build, confirming the account mutation via the forged POST, the hook write, and command execution (captured via id/pwd output) triggered by a real Git push. This PoC was published by a pseudonymous independent researcher (bikini/ashdfrkl) as part of the uncoordinated \u0026ldquo;exploitarium\u0026rdquo; vulnerability dump; it has not been vendor-confirmed.","permalink":"/pocs/web/2026-07-03_gogs-admin-csrf-git-hook-rce/"},{"title":"ImageMagick Ghostscript Delegate Search Path Hijack","cve":"None assigned as of 2026-07-03","category":"binary","severity":"High","cvss_score":0,"tags":["imagemagick","ghostscript","windows","search-path-hijack","dll-planting-adjacent","delegate-execution","code-execution","pdf"],"affected_product":"ImageMagick (Ghostscript delegate for PDF/PS/EPS conversion) on Windows","affected_versions":"ImageMagick 7.1.2-25 with Ghostscript 10.07.1 (Windows x64)","author":"bikini (@ashdfrkl) — original discovery; mirrored via exploitarium","patched":false,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2026-07 Author / Researcher bikini (@ashdfrkl) — original discovery; mirrored via exploitarium CVE / Advisory None assigned as of 2026-07-03 Category binary Severity High CVSS Score Not yet scored (no CVE/CVSS assigned) Status PoC Tags imagemagick, ghostscript, windows, search-path-hijack, dll-planting-adjacent, delegate-execution, code-execution, pdf Related N/A Affected Target Field Value Software / System ImageMagick (Ghostscript delegate for PDF/PS/EPS conversion) on Windows Versions Affected ImageMagick 7.1.2-25 with Ghostscript 10.07.1 (Windows x64) Language / Platform C/C++ (ImageMagick delegate handling), Python 3 PoC harness, Windows process creation API Authentication Required Local-only (attacker needs write access to the conversion working directory) Network Access Required No Summary When ImageMagick converts PDF/PS/EPS-family inputs on Windows and cannot resolve a full path to Ghostscript, it falls back to invoking the bare executable name gswin64c.exe and launches it through the Windows process API with the application name left unset — letting standard Windows executable search order pick the binary that actually runs. If the conversion process\u0026rsquo;s working directory is attacker-writable, a planted gswin64c.exe there can be launched instead of the real Ghostscript binary whenever ImageMagick processes a PDF/PS-family file placed in (or alongside inputs in) that directory. The included PoC demonstrates this with a harmless marker-writing helper: conversions from a \u0026ldquo;control\u0026rdquo; directory (no planted binary) succeed normally via PATH, while conversions from a \u0026ldquo;hijack\u0026rdquo; directory (containing the planted gswin64c.exe) launch the attacker\u0026rsquo;s binary and record the exact delegate arguments ImageMagick passed to it. This PoC was published by a pseudonymous independent researcher (bikini/ashdfrkl) as part of the uncoordinated \u0026ldquo;exploitarium\u0026rdquo; vulnerability dump; it has not been vendor-confirmed.","permalink":"/pocs/binary/2026-07-03_imagemagick-ghostscript-delegate-hijack/"},{"title":"Ladybird Browser WebAssembly ESM Host-Function Use-After-Free RCE","cve":"None assigned as of 2026-07-03","category":"web","severity":"Critical","cvss_score":0,"tags":["ladybird","browser","webassembly","wasm-gc","use-after-free","memory-corruption","rce","javascript-engine","sandbox-escape"],"affected_product":"Ladybird web browser (WebContent process, LibWeb / LibWasm)","affected_versions":"Upstream commit 31bb4d872d802c78ce23d2f273a300f36e8ef6a0 and likely surrounding history","author":"bikini (@ashdfrkl) — original discovery; mirrored via exploitarium","patched":false,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2026-07 Author / Researcher bikini (@ashdfrkl) — original discovery; mirrored via exploitarium CVE / Advisory None assigned as of 2026-07-03 Category web Severity Critical CVSS Score Not yet scored (no CVE/CVSS assigned) Status Weaponized Tags ladybird, browser, webassembly, wasm-gc, use-after-free, memory-corruption, rce, javascript-engine, sandbox-escape Related N/A Affected Target Field Value Software / System Ladybird web browser (WebContent process, LibWeb / LibWasm) Versions Affected Upstream commit 31bb4d872d802c78ce23d2f273a300f36e8ef6a0 and likely surrounding history Language / Platform HTML/JavaScript PoC page; targets a native C++ browser engine on Linux Authentication Required No Network Access Required No (victim loads a local/remote HTML page in the browser) Summary The PoC targets a lifetime bug in Ladybird\u0026rsquo;s WebAssembly ESM import path: WebAssemblyModule.cpp builds a Wasm::FunctionType as a stack-local value and passes it by reference into create_host_function(), so the resulting long-lived JS host callback retains a dangling reference to that type after the caller returns. Because the WebAssembly bytecode interpreter does not validate a host function\u0026rsquo;s returned result arity against the statically declared call-site type, a host callback made to return zero values while the call site expects one leaves a stale, attacker-influenced value sitting in a destination register. That stale register is later consumed by a WebAssembly GC array.set operation as a raw pointer-shaped abstract reference, giving the attacker a write primitive through a fake ArrayInstance. The PoC pairs this with a separate ImageData/WebGL memory64 leak (a moved backing store still referenced by a stale bitmap pointer) to defeat ASLR, then pivots through a DataView retarget and a crafted setcontext frame to reach arbitrary native code execution inside the WebContent renderer process. This PoC was published by a pseudonymous independent researcher (bikini/ashdfrkl) as part of the uncoordinated \u0026ldquo;exploitarium\u0026rdquo; vulnerability dump; it has not been vendor-confirmed.","permalink":"/pocs/web/2026-07-03_ladybird-wasm-esm-host-function-rce/"},{"title":"Langflow Missing-Authentication Remote Code Execution (CVE-2025-3248)","cve":"CVE-2025-3248","category":"web","severity":"Critical","cvss_score":9.8,"tags":["RCE","unauthenticated","missing-authentication","Langflow","AI-application","python-exec","CISA-KEV","agentic-ransomware","JADEPUFFER"],"affected_product":"Langflow (open-source AI/LLM workflow builder)","affected_versions":"Prior to 1.3.0","author":"langflow-ai (advisory); 0xgh057r3c0n (PoC)","patched":true,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2025 Author / Researcher langflow-ai (advisory); 0xgh057r3c0n (PoC) CVE / Advisory CVE-2025-3248 Category web Severity Critical CVSS Score 9.8 (CVSSv3) Status Weaponized Tags RCE, unauthenticated, missing-authentication, Langflow, AI-application, python-exec, CISA-KEV, agentic-ransomware, JADEPUFFER Related N/A Affected Target Field Value Software / System Langflow (open-source AI/LLM workflow builder) Versions Affected Prior to 1.3.0 Language / Platform Python Authentication Required No Network Access Required Yes (HTTP to Langflow\u0026rsquo;s /api/v1/validate/code endpoint) Summary CVE-2025-3248 is a missing-authentication vulnerability in Langflow\u0026rsquo;s code-validation API. The /api/v1/validate/code endpoint accepts and executes arbitrary Python code submitted by any client, with no authentication check on the route, allowing an unauthenticated attacker to achieve full remote code execution on the host running Langflow. Although patched in Langflow 1.3.0 and added to CISA\u0026rsquo;s KEV catalog in 2025, unpatched instances remain a high-value target: on 2026-07-01, researchers reported \u0026ldquo;JADEPUFFER\u0026rdquo; — the first documented fully agentic-AI-driven ransomware — using this exact CVE to autonomously harvest cloud/LLM credentials from compromised Langflow hosts and pivot into production database systems for extortion, demonstrating that older, already-patched CVEs remain dangerous when automated/agentic exploitation lowers the attacker\u0026rsquo;s operational cost.","permalink":"/pocs/web/2026-07-03_cve-2025-3248-langflow-unauth-rce/"},{"title":"libarchive ZIP Declared-Size Boundary Bypass via debuginfod","cve":"None assigned as of 2026-07-03","category":"binary","severity":"Medium","cvss_score":0,"tags":["libarchive","zip","zip64","integer-overflow","debuginfod","elfutils","size-validation","boundary-bypass"],"affected_product":"libarchive (ZIP reader) and elfutils debuginfod","affected_versions":"Stock/current libarchive ZIP64 reader; system debuginfod service","author":"bikini (@ashdfrkl) — original discovery; mirrored via exploitarium","patched":false,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2026-06 Author / Researcher bikini (@ashdfrkl) — original discovery; mirrored via exploitarium CVE / Advisory None assigned as of 2026-07-03 Category binary Severity Medium CVSS Score Not yet scored (no CVE/CVSS assigned) Status PoC Tags libarchive, zip, zip64, integer-overflow, debuginfod, elfutils, size-validation, boundary-bypass Related N/A Affected Target Field Value Software / System libarchive (ZIP reader) and elfutils debuginfod Versions Affected Stock/current libarchive ZIP64 reader; system debuginfod service Language / Platform Python 3 (archive generator/runner) and Bash, targeting Linux libarchive/debuginfod Authentication Required No Network Access Required No (local demonstration); debuginfod service runs on loopback Summary The PoC builds a stored ZIP64 archive entry whose declared uncompressed size field is 109 bytes while the actual inflated stream is 4 GiB + 109 bytes — crafted so the low 32 bits of the true length equal the advertised value (0x100000004 mod 2^32 == 4, offset so the declared size collides at 109). A stock libarchive ZIP reader (bsdtar, bsdunzip) accepts and fully streams the oversized payload while archive_entry_size() continues to report only 109 bytes to calling applications. The PoC then demonstrates real-world impact by pointing elfutils debuginfod at the crafted archive: the service extracts and indexes an ELF binary embedded past the declared boundary, and later serves debug sections (including a hidden marker section) whose file offsets lie beyond the size the archive metadata promised, proving that applications trusting archive_entry_size() for validation, quotas, or authorization can be bypassed. This PoC was published by a pseudonymous independent researcher (bikini/ashdfrkl) as part of the uncoordinated \u0026ldquo;exploitarium\u0026rdquo; vulnerability dump; it has not been vendor-confirmed.","permalink":"/pocs/binary/2026-07-03_libarchive-zip-debuginfod-size-boundary/"},{"title":"libssh2 Publickey Subsystem List Parser Heap Corruption to Code Execution","cve":"None assigned as of 2026-07-03","category":"network","severity":"Critical","cvss_score":0,"tags":["libssh2","ssh","publickey-subsystem","heap-overflow","use-after-free","integer-overflow","windows","rce","memory-corruption"],"affected_product":"libssh2, publickey subsystem list parser (src/publickey.c)","affected_versions":"libssh2/libssh2 master at commit e75b4bae3c68a9bde71de1fb6b0fba5b0c716020 (2026-06-24)","author":"bikini (@ashdfrkl) — original discovery; mirrored via exploitarium","patched":false,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2026-06 Author / Researcher bikini (@ashdfrkl) — original discovery; mirrored via exploitarium CVE / Advisory None assigned as of 2026-07-03 Category network Severity Critical CVSS Score Not yet scored (no CVE/CVSS assigned) Status Weaponized Tags libssh2, ssh, publickey-subsystem, heap-overflow, use-after-free, integer-overflow, windows, rce, memory-corruption Related N/A Affected Target Field Value Software / System libssh2, publickey subsystem list parser (src/publickey.c) Versions Affected libssh2/libssh2 master at commit e75b4bae3c68a9bde71de1fb6b0fba5b0c716020 (2026-06-24) Language / Platform C (Win32/Win64 PoC harnesses), Python (Paramiko-based live SSH server) — targets Windows libssh2 clients Authentication Required No (triggered by a malicious/compromised SSH server against a connecting libssh2 client using the publickey subsystem) Network Access Required Yes (delivered over an SSH connection, including a live end-to-end transport proof) Summary libssh2_publickey_list_fetch() parses a stream of publickey-subsystem response packets and grows an array of libssh2_publickey_list entries as responses arrive, but the parser has two distinct memory-safety defects depending on target architecture. On 32-bit Windows builds, num_attrs * sizeof(libssh2_publickey_attribute) can integer-overflow (e.g. 0x0ccccccd * 20 = 0x100000004, truncating to a 4-byte allocation on 32-bit size_t), after which the attribute-parsing loop writes multiple attacker-controlled fields past the undersized buffer, letting an attacker groom an adjacent callback pointer and redirect execution. On 64-bit builds the same tiny-allocation path is not reachable, but a use-after-free exists instead: an unexpected \u0026ldquo;recognized\u0026rdquo; version response frees an attacker-shaped response buffer while a subsequent malformed publickey response grows the list allocation into that freed slot, so list cleanup later walks attacker-shaped entries and frees attacker-chosen attrs pointers, which can be reclaimed and used to hijack a callback. The PoC package includes both a Win32 heap-groom chain and a Win64 free/reclaim chain, plus a live end-to-end proof that drives the Win64 chain over a real localhost SSH session using a Paramiko server and a target-shaped libssh2 client. This PoC was published by a pseudonymous independent researcher (bikini/ashdfrkl) as part of the uncoordinated \u0026ldquo;exploitarium\u0026rdquo; vulnerability dump; it has not been vendor-confirmed.","permalink":"/pocs/network/2026-07-03_libssh2-publickey-list-parser-oob/"},{"title":"libssh2 Unchecked SSH packet_length Integer Wrap to RCE (CVE-2026-55200)","cve":"CVE-2026-55200","category":"network","severity":"Critical","cvss_score":0,"tags":["libssh2","ssh","integer-overflow","heap-overflow","packet-length","transport","rce","memory-corruption","cve-2026-55200"],"affected_product":"libssh2, ssh2_transport_read() in src/transport.c","affected_versions":"libssh2 through 1.11.1 (fixed by upstream commit 97acf3dfda80c91c3a8c9f2372546301d4a1a7a8)","author":"bikini (@ashdfrkl) — original discovery; mirrored via exploitarium","patched":true,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2026-06 Author / Researcher bikini (@ashdfrkl) — original discovery; mirrored via exploitarium CVE / Advisory CVE-2026-55200 Category network Severity Critical CVSS Score Not yet scored (no CVSS explicitly stated in source) Status Weaponized Tags libssh2, ssh, integer-overflow, heap-overflow, packet-length, transport, rce, memory-corruption, cve-2026-55200 Related N/A Affected Target Field Value Software / System libssh2, ssh2_transport_read() in src/transport.c Versions Affected libssh2 through 1.11.1 (fixed by upstream commit 97acf3dfda80c91c3a8c9f2372546301d4a1a7a8) Language / Platform C11 verifier, Python SSH server scaffold, C RCE harness — targets any application linking libssh2 as an SSH client Authentication Required No (triggered by a malicious/compromised SSH server against a connecting libssh2 client) Network Access Required Yes (delivered over an SSH connection to a vulnerable libssh2 client) Summary CVE-2026-55200 is an unchecked packet_length condition in libssh2\u0026rsquo;s ssh2_transport_read() transport-parsing path. The vulnerable code accepts an attacker-controlled decrypted SSH packet_length field and only rejects values less than 1, then computes an allocation size as 4 + packet_length + mac_len + auth_len before checking that the result is within a sane bound (\u0026lt;= 35000). Because packet_length and the related terms are combined using 32-bit/integer arithmetic before promotion to size_t, a crafted packet_length of 0xffffffff with mac_len=0 and auth_len=16 wraps to a total allocation of just 19 bytes, while later full-packet processing still uses the original, unwrapped packet_length to size subsequent reads/writes — producing a heap buffer that is far smaller than the data the parser goes on to write into it. The included PoC package supplies an arithmetic verifier proving the wrap, a malicious SSH server scaffold that negotiates a real handshake and sends the crafted encrypted trigger packet, and a controlled local harness plus exploit driver that models the wrapped-allocation-to-callback-overwrite pattern to demonstrate concrete code execution. Because this vulnerability has been assigned CVE-2026-55200, it carries a stronger validation signal than an unconfirmed report, though this PoC package itself remains an independent, uncoordinated mirror.","permalink":"/pocs/network/2026-07-03_cve-2026-55200-libssh2-packet-length-rce/"},{"title":"Lunar Client Modrinth Explore Raw-HTML to Local Launcher Execution Chain","cve":"None assigned as of 2026-07-03","category":"binary","severity":"Critical","cvss_score":3.1,"tags":["lunar-client","electron","minecraft","modrinth","raw-html-injection","ipc","rce","sandbox-escape","launcher-abuse"],"affected_product":"Lunar Client (Electron desktop application), Modrinth Explore integration","affected_versions":"Lunar Client build reviewed via extracted source maps, June 2026","author":"bikini (@ashdfrkl) — original discovery; mirrored via exploitarium","patched":false,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2026-06 Author / Researcher bikini (@ashdfrkl) — original discovery; mirrored via exploitarium CVE / Advisory None assigned as of 2026-07-03 Category binary Severity Critical CVSS Score Not yet scored (source estimates tentative CVSS v3.1 9.6, no CVE/CVSS formally assigned) Status Incomplete PoC Tags lunar-client, electron, minecraft, modrinth, raw-html-injection, ipc, rce, sandbox-escape, launcher-abuse Related N/A Affected Target Field Value Software / System Lunar Client (Electron desktop application), Modrinth Explore integration Versions Affected Lunar Client build reviewed via extracted source maps, June 2026 Language / Platform JavaScript/Node.js (calc-pop demonstration), Electron/TypeScript renderer+main process chain Authentication Required No (victim only needs to view/click an attacker-controlled Modrinth project in Lunar Explore) Network Access Required Yes (attacker-controlled content must be fetched from Modrinth by the victim\u0026rsquo;s Lunar Client) Summary The chain begins with Lunar Client\u0026rsquo;s Explore feature rendering attacker-controlled Modrinth project Markdown (project body and version changelog) through ReactMarkdown with the rehypeRaw plugin and no observed HTML sanitizer, allowing raw HTML/script-capable content to execute inside the privileged Explore renderer. That renderer has access to exposed preload APIs and an unrestricted Redux state-sync IPC bridge into the Electron main process, which the researcher shows can be abused to forge or install a malicious Modrinth \u0026ldquo;profile\u0026rdquo; whose overrides.gameDirectory points at an attacker-chosen writable directory. When main installs that forged profile, it extracts root-level overrides/* entries from the .mrpack into the chosen directory — a path that the existing unverified-modpack-file warning scanner does not cover, since it only inspects mods/, resourcepacks/, and shaderpacks/. The renderer then calls an external-link API with a file:// URL pointing at the dropped launcher file using a non-restricted initiator, and main\u0026rsquo;s openExternalLink handler reaches shell.openExternal(), causing the OS to execute the dropped local launcher (e.g., a .lnk on Windows) and achieve code execution as the desktop user. This PoC was published by a pseudonymous independent researcher (bikini/ashdfrkl) as part of the uncoordinated \u0026ldquo;exploitarium\u0026rdquo; vulnerability dump; it has not been vendor-confirmed, and the researcher explicitly states this is a \u0026ldquo;high-confidence critical candidate, not yet a fully packaged public Modrinth-to-Lunar end-to-end exploit.\u0026rdquo;","permalink":"/pocs/binary/2026-07-03_lunar-client-modrinth-rce-chain/"},{"title":"MyBB 1.8.40 Limited Admin CP User-Manager to Full Administrator Privilege Escalation","cve":"None assigned as of 2026-07-03 (see Notes — CVE-2026-45115 identifies a separate, already-patched MyBB issue)","category":"web","severity":"High","cvss_score":0,"tags":["mybb","privilege-escalation","admin-cp","authorization-bypass","forum-software","php","access-control"],"affected_product":"MyBB forum software, Admin CP add-user flow","affected_versions":"MyBB 1.8.40 (version code 1840), latest release as of source publication","author":"bikini (@ashdfrkl) — original discovery; mirrored via exploitarium","patched":false,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2026-06 Author / Researcher bikini (@ashdfrkl) — original discovery; mirrored via exploitarium CVE / Advisory None assigned as of 2026-07-03 (see Notes — CVE-2026-45115 identifies a separate, already-patched MyBB issue) Category web Severity High CVSS Score Not yet scored (no CVE/CVSS assigned) Status PoC Tags mybb, privilege-escalation, admin-cp, authorization-bypass, forum-software, php, access-control Related CVE-2026-45115 (different, already-patched MyBB buddy-list XSS chain) Affected Target Field Value Software / System MyBB forum software, Admin CP add-user flow Versions Affected MyBB 1.8.40 (version code 1840), latest release as of source publication Language / Platform Python 3 (standard library only); targets PHP-based MyBB Admin CP over HTTP(S) Authentication Required Yes — requires an authenticated Admin CP account with only the user-users (manage users) permission Network Access Required Yes Summary A non-super Admin CP account that has only the user-management permission (user-users = 1) can use the standard Admin CP \u0026ldquo;add user\u0026rdquo; form to create a brand-new account directly in the Administrator group (gid=4), because the underlying user data handler\u0026rsquo;s verify_usergroup() unconditionally returns true and never checks whether the acting ACP user is authorized to grant an Admin CP-capable group. The add-user form itself renders every non-guest usergroup, including Administrator, and the submitted usergroup/additionalgroups/displaygroup fields are forwarded to the handler without an authorization check. The newly created account fully inherits Administrator-group Admin CP permissions, including access to modules (such as Configuration) that the original limited account was explicitly denied — a complete privilege escalation from a narrowly scoped ACP role to full application administration. This PoC was published by a pseudonymous independent researcher (bikini/ashdfrkl) as part of the uncoordinated \u0026ldquo;exploitarium\u0026rdquo; vulnerability dump; it has not been vendor-confirmed, and the source README explicitly distinguishes this issue from CVE-2026-45115, which is a different, already-patched buddy/ignore-list username stored-XSS chain in the same MyBB version.","permalink":"/pocs/web/2026-07-03_cve-2026-45115-mybb-acp-privilege-escalation/"},{"title":"Next.js unstable_cache Object-Argument Cache-Key Collision","cve":"None assigned as of 2026-07-03","category":"web","severity":"High","cvss_score":0,"tags":["nextjs","unstable_cache","cache-poisoning","cache-key-collision","data-cache","information-disclosure","server-side-caching","javascript"],"affected_product":"Next.js (App Router, Data Cache)","affected_versions":"next@16.3.0-canary.70 (behavior demonstrated against this canary; likely affects a broader range of unstable_cache() implementations)","author":"bikini (@ashdfrkl) — original discovery; mirrored via exploitarium","patched":false,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2026-07 Author / Researcher bikini (@ashdfrkl) — original discovery; mirrored via exploitarium CVE / Advisory None assigned as of 2026-07-03 Category web Severity High CVSS Score Not yet scored (no CVE/CVSS assigned) Status PoC Tags nextjs, unstable_cache, cache-poisoning, cache-key-collision, data-cache, information-disclosure, server-side-caching, javascript Related N/A Affected Target Field Value Software / System Next.js (App Router, Data Cache) Versions Affected next@16.3.0-canary.70 (behavior demonstrated against this canary; likely affects a broader range of unstable_cache() implementations) Language / Platform JavaScript/Node.js PoC driving a generated Next.js application Authentication Required No Network Access Required Yes (PoC drives HTTP requests against a locally started next start server; applies to any deployment reachable by multiple users) Summary Next.js\u0026rsquo;s unstable_cache() API derives its cache key by running JSON.stringify() over the arguments passed to the cached function. When a route handler passes a stock request-wrapper object — a Request, URLSearchParams, or FormData instance — directly into unstable_cache(), JSON.stringify() serializes that object as an empty {} because these objects do not expose their internal state to naive JSON serialization. Because the serialized key collapses to the same value regardless of the object\u0026rsquo;s actual contents (cookies, query parameters, form fields), Next.js treats requests carrying entirely different user-specific data as identical cache entries. The first request\u0026rsquo;s result — and the live, request-specific data it captured — is returned to every subsequent request in the same cache group, even after the caching server process is restarted. This PoC was published by a pseudonymous independent researcher (bikini/ashdfrkl) as part of the uncoordinated \u0026ldquo;exploitarium\u0026rdquo; vulnerability dump; it has not been vendor-confirmed.","permalink":"/pocs/web/2026-07-03_nextjs-unstable-cache-key-collision/"},{"title":"Nextcloud Federated Share OCM Bearer Token Scope Escalation to Sender WebDAV Access","cve":"None assigned as of 2026-07-03","category":"cloud","severity":"High","cvss_score":0,"tags":["nextcloud","federated-sharing","ocm","bearer-token","webdav","token-scope","authorization-bypass","oauth-like-flow"],"affected_product":"Nextcloud Server — federated file sharing, OCM token exchange, WebDAV bearer authentication","affected_versions":"Nextcloud Server 35.0.0 dev / build 35.0.0.1, commit d9027189329b6b13159d480f7d5e36444badde13","author":"bikini (@ashdfrkl) — original discovery; mirrored via exploitarium","patched":false,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2026-06 Author / Researcher bikini (@ashdfrkl) — original discovery; mirrored via exploitarium CVE / Advisory None assigned as of 2026-07-03 Category cloud Severity High CVSS Score Not yet scored (no CVE/CVSS assigned) Status PoC Tags nextcloud, federated-sharing, ocm, bearer-token, webdav, token-scope, authorization-bypass, oauth-like-flow Related N/A Affected Target Field Value Software / System Nextcloud Server — federated file sharing, OCM token exchange, WebDAV bearer authentication Versions Affected Nextcloud Server 35.0.0 dev / build 35.0.0.1, commit d9027189329b6b13159d480f7d5e36444badde13 Language / Platform Python 3.10+ standard library; targets Nextcloud Server HTTP/OCS/WebDAV APIs across two federated instances Authentication Required Yes — attacker needs a normal local account on the recipient instance; sender must create one federated share to that account Network Access Required Yes Summary When a Nextcloud user creates a normal federated file share, the sender instance generates a permanent authentication token that is also stored as the federated share\u0026rsquo;s secret; that token is created without an explicit narrow scope, so it defaults to full filesystem access. The recipient instance\u0026rsquo;s pending remote-shares OCS API (/remote_shares/pending) serializes this same secret back to the recipient as a refresh_token field. The sender\u0026rsquo;s OCM token endpoint (cloud_federation_api) accepts that value as an authorization code and exchanges it for a bearer access token — again without applying a filesystem-restricting scope — and that bearer token is then honored by the sender\u0026rsquo;s WebDAV endpoint as a full session for the sender user, not just for the one shared file. As a result, a recipient of a single federated share can read the sender\u0026rsquo;s pending-share metadata, exchange the leaked token, and use the resulting bearer to fetch arbitrary WebDAV paths belonging to the sender account, well outside the scope of what was actually shared. This PoC was published by a pseudonymous independent researcher (bikini/ashdfrkl) as part of the uncoordinated \u0026ldquo;exploitarium\u0026rdquo; vulnerability dump; it has not been vendor-confirmed.","permalink":"/pocs/cloud/2026-07-03_nextcloud-federated-share-bearer-token-leak/"},{"title":"nghttpx HTTP/1.1 Upgrade Request Body Response Queue Poisoning","cve":"None assigned as of 2026-07-03","category":"network","severity":"High","cvss_score":0,"tags":["nghttp2","nghttpx","reverse-proxy","request-smuggling","response-queue-poisoning","http-desync","upgrade-request","cache-poisoning"],"affected_product":"nghttp2's nghttpx reverse proxy","affected_versions":"v1.69.0 (fixed by upstream commit ab28105c4a0197da24f8bfc414bc116055249e1e)","author":"bikini (@ashdfrkl) — original discovery; mirrored via exploitarium","patched":true,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2026-06 Author / Researcher bikini (@ashdfrkl) — original discovery; mirrored via exploitarium CVE / Advisory None assigned as of 2026-07-03 Category network Severity High CVSS Score Not yet scored (no CVE/CVSS assigned) Status PoC Tags nghttp2, nghttpx, reverse-proxy, request-smuggling, response-queue-poisoning, http-desync, upgrade-request, cache-poisoning Related N/A Affected Target Field Value Software / System nghttp2\u0026rsquo;s nghttpx reverse proxy Versions Affected v1.69.0 (fixed by upstream commit ab28105c4a0197da24f8bfc414bc116055249e1e) Language / Platform C++ target (nghttpx); Python 3 stdlib-only PoC driver Authentication Required No Network Access Required Yes (attacker connects to the nghttpx HTTP/1.1 frontend; requires an Upgrade-aware HTTP/1.1 backend behind it) Summary nghttpx, the reverse proxy shipped with nghttp2, incorrectly accepts an HTTP/1.1 Upgrade request that also carries a Content-Length header, then forwards both the Upgrade headers and the body bytes unmodified to a keep-alive HTTP/1.1 backend connection. If the backend treats the Upgrade request as a protocol switch and parses the trailing body bytes as an entirely separate, smuggled HTTP request, that smuggled request\u0026rsquo;s response gets queued on the shared backend connection. When nghttpx subsequently reuses the same backend connection for an unrelated victim client\u0026rsquo;s request, the victim receives the attacker\u0026rsquo;s queued/smuggled response instead of their own. The researcher verified this locally end-to-end against a real nghttpx v1.69.0 binary, including a fixed-control run against the patched upstream commit. This PoC was published by a pseudonymous independent researcher (bikini/ashdfrkl) as part of the uncoordinated \u0026ldquo;exploitarium\u0026rdquo; vulnerability dump; it has not been vendor-confirmed.","permalink":"/pocs/network/2026-07-03_nghttpx-http-upgrade-queue-poisoning/"},{"title":"Nmap IPv6 Extension-Header Length Wrap","cve":"None assigned as of 2026-07-03","category":"network","severity":"Low","cvss_score":0,"tags":["nmap","ipv6","integer-wraparound","packet-parsing","libnetutil","extension-headers","denial-of-service","research-in-progress"],"affected_product":"Nmap — shared packet parsing code (libnetutil/netutil.cc, tcpip.cc)","affected_versions":"Current Nmap source tree at time of research (specific release not pinned by source)","author":"bikini (@ashdfrkl) — original discovery; mirrored via exploitarium","patched":false,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2026-06 Author / Researcher bikini (@ashdfrkl) — original discovery; mirrored via exploitarium CVE / Advisory None assigned as of 2026-07-03 Category network Severity Low CVSS Score Not yet scored (no CVE/CVSS assigned) Status Incomplete PoC Tags nmap, ipv6, integer-wraparound, packet-parsing, libnetutil, extension-headers, denial-of-service, research-in-progress Related N/A Affected Target Field Value Software / System Nmap — shared packet parsing code (libnetutil/netutil.cc, tcpip.cc) Versions Affected Current Nmap source tree at time of research (specific release not pinned by source) Language / Platform C++17 standalone parser-behavior harness (ipv6_extlen_wrap_probe.cpp) Authentication Required No Network Access Required No (PoC is a standalone local arithmetic/parser-behavior harness, not a live network exploit) Summary The Nmap IPv6 extension-header parser in libnetutil/netutil.cc advances a payload pointer by an attacker-declared extension-header length without first checking that the advanced pointer stays within the bounds of the captured packet. When a crafted, truncated IPv6 packet declares an extension-header length that pushes the pointer beyond the actual captured data, the subsequent remaining-payload-length calculation — stored in an unsigned integer — wraps around to a very large value. The researcher\u0026rsquo;s standalone harness reproduces this arithmetic locally, showing a 48-byte captured packet being represented internally as carrying billions of bytes of \u0026ldquo;remaining\u0026rdquo; UDP payload. The researcher explicitly marks this work as ongoing, noting it is the strongest fresh parser candidate from a broader review pass but that further work is needed to determine whether this primitive can be escalated beyond parser-state corruption and out-of-bounds reads. This PoC was published by a pseudonymous independent researcher (bikini/ashdfrkl) as part of the uncoordinated \u0026ldquo;exploitarium\u0026rdquo; vulnerability dump; it has not been vendor-confirmed.","permalink":"/pocs/network/2026-07-03_nmap-ipv6-extension-length-wrap/"},{"title":"NodeBB ActivityPub attributedTo Local UID Spoof","cve":"None assigned as of 2026-07-03","category":"web","severity":"High","cvss_score":0,"tags":["nodebb","activitypub","federation","authentication-bypass","spoofing","uid-forgery","forum-software","nodejs"],"affected_product":"NodeBB — ActivityPub server-to-server inbox","affected_versions":"4.13.2 (verified against tag v4.13.2)","author":"bikini (@ashdfrkl) — original discovery; mirrored via exploitarium","patched":false,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2026-06 Author / Researcher bikini (@ashdfrkl) — original discovery; mirrored via exploitarium CVE / Advisory None assigned as of 2026-07-03 Category web Severity High CVSS Score Not yet scored (no CVE/CVSS assigned) Status PoC Tags nodebb, activitypub, federation, authentication-bypass, spoofing, uid-forgery, forum-software, nodejs Related N/A Affected Target Field Value Software / System NodeBB — ActivityPub server-to-server inbox Versions Affected 4.13.2 (verified against tag v4.13.2) Language / Platform Node.js (target); Node.js stdlib-only PoC (poc.js) Authentication Required No (attacker only needs a self-hosted ActivityPub actor with a signing key, not a NodeBB account) Network Access Required Yes (attacker\u0026rsquo;s ActivityPub actor must be reachable over public HTTPS by the target NodeBB instance for signature verification and WebFinger) Summary NodeBB\u0026rsquo;s ActivityPub inbox authenticates the top-level signed actor of an incoming activity via HTTP Signatures, but never checks that the embedded Note.attributedTo field — used later as the internal local user id for chat message and post authorship — actually matches that authenticated actor. A remote, unauthenticated ActivityPub actor can therefore submit a signed Create(Note) activity whose attributedTo field is simply set to a numeric value like 1, and NodeBB will accept that number directly as a local uid, creating a private chat message (or, via the public-note path, a forum post) that appears to originate from that local account — commonly the first administrator on a clean install. The researcher validated this end-to-end against a stock NodeBB 4.13.2 install with the default MongoDB adapter, confirming the forged message is persisted with fromuid set to the spoofed uid and visible to the targeted recipient. This PoC was published by a pseudonymous independent researcher (bikini/ashdfrkl) as part of the uncoordinated \u0026ldquo;exploitarium\u0026rdquo; vulnerability dump; it has not been vendor-confirmed.","permalink":"/pocs/web/2026-07-03_nodebb-activitypub-uid-spoof/"},{"title":"objdump DLX ELF Backend Out-of-Bounds Write (Crash-to-Calc)","cve":"None assigned as of 2026-07-03","category":"binary","severity":"Medium","cvss_score":0,"tags":["binutils","objdump","elf-parsing","dlx","out-of-bounds-write","aslr-bypass","local-code-execution","crash-to-calc"],"affected_product":"GNU Binutils objdump — DLX ELF backend (elf32-dlx)","affected_versions":"binutils-gdb master at commit c311f4d37f31ff3fbb5db6923abcdf93bb75a37b; also validated against GNU Binutils 2.46.1 release with a clean dlx-elf build","author":"4D4J (original discovery — [objdump-Out-Of-Bounds-write](https://github.com/4D4J/objdump-Out-Of-Bounds-write), credited as prior/primary finder with a more complete PoC including full ASLR bypass); bikini (@ashdfrkl) — independent/parallel PoC, mirrored via exploitarium","patched":false,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2026-06 Author / Researcher 4D4J (original discovery — objdump-Out-Of-Bounds-write, credited as prior/primary finder with a more complete PoC including full ASLR bypass); bikini (@ashdfrkl) — independent/parallel PoC, mirrored via exploitarium CVE / Advisory None assigned as of 2026-07-03 Category binary Severity Medium CVSS Score Not yet scored (no CVE/CVSS assigned) Status PoC Tags binutils, objdump, elf-parsing, dlx, out-of-bounds-write, aslr-bypass, local-code-execution, crash-to-calc Related N/A Affected Target Field Value Software / System GNU Binutils objdump — DLX ELF backend (elf32-dlx) Versions Affected binutils-gdb master at commit c311f4d37f31ff3fbb5db6923abcdf93bb75a37b; also validated against GNU Binutils 2.46.1 release with a clean dlx-elf build Language / Platform C (target: objdump/binutils DLX backend); crafted ELF/DLX object files + shell helper (PoC) Authentication Required Local-only (attacker must get a victim/process to run objdump -g on a crafted file) Network Access Required No Summary objdump -g (debug-info dumping) against a crafted ELF/DLX object file triggers an out-of-bounds write in the DLX ELF backend\u0026rsquo;s relocation-processing code, writing outside the intended debug section buffer. The researcher shapes the crafted relocation data so that, when process memory layout cooperates, control flow is redirected to run an attacker-supplied helper command — demonstrated here by launching a benign local helper script (P) that logs a marker and opens Windows Calculator via WSL. Because ASLR remains enabled, the PoC ships a set of layout-specific payload variants and a retry loop rather than a single deterministic shot; the researcher measured close to 100% hit rates in repeated local runs against a stable target build. Note: the source README explicitly states that researcher 4D4J\u0026rsquo;s independent repository (objdump-Out-Of-Bounds-write) found and published this bug first, with a stronger PoC including a full ASLR bypass; this exploitarium entry is a parallel/independent finding by bikini. This PoC was published by a pseudonymous independent researcher (bikini/ashdfrkl) as part of the uncoordinated \u0026ldquo;exploitarium\u0026rdquo; vulnerability dump; it has not been vendor-confirmed.","permalink":"/pocs/binary/2026-07-03_objdump-dlx-elf-backend-oob/"},{"title":"OpenVPN Connect Server-Pushed Option Current-User Command Execution","cve":"None assigned as of 2026-07-03","category":"network","severity":"High","cvss_score":0,"tags":["openvpn","openvpn-connect","malicious-vpn-server","command-execution","script-permission-bypass","pushed-options","windows","client-side"],"affected_product":"OpenVPN Connect for Windows","affected_versions":"3.8.0 (4528), OpenVPN core 3.11.3","author":"bikini (@ashdfrkl) — original discovery; mirrored via exploitarium","patched":false,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2026-06 Author / Researcher bikini (@ashdfrkl) — original discovery; mirrored via exploitarium CVE / Advisory None assigned as of 2026-07-03 Category network Severity High CVSS Score Not yet scored (no CVE/CVSS assigned) Status PoC Tags openvpn, openvpn-connect, malicious-vpn-server, command-execution, script-permission-bypass, pushed-options, windows, client-side Related N/A Affected Target Field Value Software / System OpenVPN Connect for Windows Versions Affected 3.8.0 (4528), OpenVPN core 3.11.3 Language / Platform Windows desktop client; Python 3.9+ PoC driving a local OpenVPN 2.x test server Authentication Required No (attacker only needs the victim to import and connect to a malicious .ovpn profile) Network Access Required Yes (victim must connect to the attacker-controlled OpenVPN server) Summary A malicious OpenVPN server can push an echo option to a connected OpenVPN Connect for Windows client that decodes into the internal script.win.user.disconnect script key. OpenVPN Connect then executes that pushed command when the client disconnects, even though the imported profile\u0026rsquo;s script-permission state is unset or explicitly false — meaning the client believes scripting is disabled while the server-pushed echo path bypasses that check entirely. The same PoC bundle also documents a second, lower-severity finding: a malicious server can push dhcp-option PROXY_AUTO_CONFIG_URL to set a server-controlled PAC (proxy auto-config) URL in the victim\u0026rsquo;s HKCU Internet Settings for the duration of the VPN session, via the privileged /tun-setup helper path, though this state is cleaned up automatically on disconnect. Both findings were locally verified by the researcher against the stated OpenVPN Connect build. This PoC was published by a pseudonymous independent researcher (bikini/ashdfrkl) as part of the uncoordinated \u0026ldquo;exploitarium\u0026rdquo; vulnerability dump; it has not been vendor-confirmed.","permalink":"/pocs/network/2026-07-03_openvpn-connect-server-pushed-option-ace/"},{"title":"PHP 8.5.7 StreamBucket-to-SOAP Numeric Cookie Remote Code Execution","cve":"None assigned as of 2026-07-03","category":"web","severity":"Critical","cvss_score":0,"tags":["php","type-confusion","streambucket","soap","hashtable-overwrite","memory-corruption","rce","zend-engine"],"affected_product":"PHP CLI (Zend Engine) — ArrayIterator, StreamBucket, SoapClient internals","affected_versions":"PHP 8.5.7 (build-specific symbol offsets used; other builds require recomputed offsets)","author":"bikini (@ashdfrkl) — original discovery; mirrored via exploitarium","patched":false,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2026-06 Author / Researcher bikini (@ashdfrkl) — original discovery; mirrored via exploitarium CVE / Advisory None assigned as of 2026-07-03 Category web Severity Critical CVSS Score Not yet scored (no CVE/CVSS assigned) Status PoC Tags php, type-confusion, streambucket, soap, hashtable-overwrite, memory-corruption, rce, zend-engine Related N/A Affected Target Field Value Software / System PHP CLI (Zend Engine) — ArrayIterator, StreamBucket, SoapClient internals Versions Affected PHP 8.5.7 (build-specific symbol offsets used; other builds require recomputed offsets) Language / Platform Single-file PHP RPoC (rpoc.php) targeting a local PHP 8.5.7 CLI build on Linux/WSL Authentication Required No (proof runs in-process against a local PHP binary; real-world reachability depends on whether attacker-controlled SOAP responses can be driven in the target deployment) Network Access Required No for the local replay (uses a loopback SOAP server); Yes in a realistic deployment where an attacker-influenced SOAP response delivers the numeric cookie Summary This PoC demonstrates a full memory-corruption-to-RCE chain in PHP 8.5.7 built from three engine/extension behaviors chained together: ArrayIterator can mutate normally-protected internal object properties (bypassing typed-property/visibility/readonly invariants) to corrupt a StreamBucket\u0026rsquo;s data property into a raw pointer; php_stream_bucket_attach() validates the bucket resource but later trusts data as a string without a type check, yielding a controlled heap-pointer disclosure and overread; and SoapClient\u0026rsquo;s cookie storage uses zend_symtable_update(), which treats numeric cookie names as integer hash-table keys, providing the pivot needed to write a canonical (non-tagged) pointer value. By spraying fake HashTable structures in heap string storage and steering a numeric Set-Cookie name equal to the decimal address of zif_system, the chain overwrites zend_execute_internal with zif_system, so that any subsequent dynamic internal function call (e.g., $fn = 'md5'; $fn($cmd);) actually executes system($cmd). The researcher validated this locally with both a marker-file check and a debugger (GDB) transcript confirming the exact overwrite and zif_system hit. This PoC was published by a pseudonymous independent researcher (bikini/ashdfrkl) as part of the uncoordinated \u0026ldquo;exploitarium\u0026rdquo; vulnerability dump; it has not been vendor-confirmed.","permalink":"/pocs/web/2026-07-03_php-857-streambucket-soap-rce/"},{"title":"Pillow ImageCms Mutable output_mode Heap OOB Write","cve":"None assigned as of 2026-07-03","category":"binary","severity":"High","cvss_score":0,"tags":["pillow","imagecms","littlecms","heap-overflow","oob-write","python","image-processing","memory-corruption"],"affected_product":"Pillow (Python Imaging Library fork), PIL.ImageCms module","affected_versions":"12.3.0 (verified); build with LittleCMS2 support enabled","author":"bikini (@ashdfrkl) — original discovery; mirrored via exploitarium","patched":false,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2026-07 Author / Researcher bikini (@ashdfrkl) — original discovery; mirrored via exploitarium CVE / Advisory None assigned as of 2026-07-03 Category binary Severity High CVSS Score Not yet scored (no CVE/CVSS assigned) Status PoC Tags pillow, imagecms, littlecms, heap-overflow, oob-write, python, image-processing, memory-corruption Related N/A Affected Target Field Value Software / System Pillow (Python Imaging Library fork), PIL.ImageCms module Versions Affected 12.3.0 (verified); build with LittleCMS2 support enabled Language / Platform Python (calls into C extension _imagingcms) Authentication Required No Network Access Required No Summary Pillow\u0026rsquo;s ImageCms.buildTransform() creates a reusable LittleCMS-backed transform object and stores mutable input_mode/output_mode attributes on the Python wrapper. ImageCmsTransform.apply() trusts these mutable attributes both to validate image modes and to allocate the destination buffer, while the underlying C transform still operates using the original LittleCMS format it was built with. By mutating transform.output_mode from RGBA to L after the transform is built (e.g. from RGB→RGBA) and then calling the normal high-level ImageCms.applyTransform() API, the destination image is allocated far smaller (1 byte per pixel) than what the native auxiliary-channel copy routine writes (4 bytes per pixel), producing a heap out-of-bounds write inside _imagingcms.c. This PoC was published by a pseudonymous independent researcher (bikini/ashdfrkl) as part of the uncoordinated \u0026ldquo;exploitarium\u0026rdquo; vulnerability dump; it has not been vendor-confirmed.","permalink":"/pocs/binary/2026-07-03_pillow-imagecms-output-mode-oob-write/"},{"title":"QEMU CXL Type-3 Mailbox Guest-to-Host Escape","cve":"None assigned as of 2026-07-03","category":"binary","severity":"Critical","cvss_score":0,"tags":["qemu","cxl","virtualization","vm-escape","memory-corruption","mailbox","guest-to-host","pointer-leak"],"affected_product":"QEMU (CXL Type-3 device emulation, hw/cxl/cxl-mailbox-utils.c)","affected_versions":"Upstream QEMU commit 30e8a06b64aa58a3990ba39cb5d09531e7d265e0 (reports as QEMU emulator version 11.0.50), built with CXL Type-3 support","author":"bikini (@ashdfrkl) — original discovery; mirrored via exploitarium","patched":false,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2026-07 Author / Researcher bikini (@ashdfrkl) — original discovery; mirrored via exploitarium CVE / Advisory None assigned as of 2026-07-03 Category binary Severity Critical CVSS Score Not yet scored (no CVE/CVSS assigned) Status Weaponized Tags qemu, cxl, virtualization, vm-escape, memory-corruption, mailbox, guest-to-host, pointer-leak Related N/A Affected Target Field Value Software / System QEMU (CXL Type-3 device emulation, hw/cxl/cxl-mailbox-utils.c) Versions Affected Upstream QEMU commit 30e8a06b64aa58a3990ba39cb5d09531e7d265e0 (reports as QEMU emulator version 11.0.50), built with CXL Type-3 support Language / Platform C (QEMU host), 16/32-bit x86 guest bootloader/stage2 (assembly + freestanding C) Authentication Required No (requires guest code execution on a VM configured with a CXL Type-3 device) Network Access Required No Summary QEMU\u0026rsquo;s CXL Type-3 mailbox command handling contains two related out-of-bounds issues: the GET_LOG handler validates offset + length as a byte range but then uses offset as an array index into cci-\u0026gt;cel_log, and the SET_FEATURE rank-sparing handler copies guest-supplied data to rank_sparing_wr_attrs + hdr-\u0026gt;offset without validating the destination object\u0026rsquo;s bounds. A guest with a CXL Type-3 endpoint attached can chain these primitives to leak QEMU and libc pointers via GET_LOG, then use the unchecked SET_FEATURE copy to forge in-memory FlatView/AddressSpaceDispatch/MemoryRegion/MemoryRegionOps structures inside the CXL device object, and finally trigger a MEDIA_OPERATIONS sanitize call that invokes the forged MemoryRegionOps.write callback to call libc system() on the QEMU host process. This PoC was published by a pseudonymous independent researcher (bikini/ashdfrkl) as part of the uncoordinated \u0026ldquo;exploitarium\u0026rdquo; vulnerability dump; it has not been vendor-confirmed.","permalink":"/pocs/binary/2026-07-03_qemu-cxl-type3-mailbox-escape/"},{"title":"Redis Vector Set Duplicate HNSW Node ID RCE","cve":"None assigned as of 2026-07-03","category":"network","severity":"Critical","cvss_score":0,"tags":["redis","vector-set","hnsw","rce","deserialization","use-after-free","heap-corruption","rdb-restore"],"affected_product":"Redis server, Vector Set module (modules/vector-sets)","affected_versions":"Tested commit 5b22a09918743ba72952e35e431db23eb3d19605 (v=255.255.255), Linux x86-64, libc malloc","author":"bikini (@ashdfrkl) — original discovery; mirrored via exploitarium","patched":false,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2026-07 Author / Researcher bikini (@ashdfrkl) — original discovery; mirrored via exploitarium CVE / Advisory None assigned as of 2026-07-03 Category network Severity Critical CVSS Score Not yet scored (no CVE/CVSS assigned) Status Weaponized Tags redis, vector-set, hnsw, rce, deserialization, use-after-free, heap-corruption, rdb-restore Related N/A Affected Target Field Value Software / System Redis server, Vector Set module (modules/vector-sets) Versions Affected Tested commit 5b22a09918743ba72952e35e431db23eb3d19605 (v=255.255.255), Linux x86-64, libc malloc Language / Platform Python PoC driving Redis over the RESP/TCP protocol Authentication Required No (assumes network access to an unauthenticated or reachable Redis instance; no Redis AUTH needed by the PoC) Network Access Required Yes Summary Redis Vector Set RDB/RESTORE deserialization accepts serialized HNSW graph nodes that reuse the same node ID, but the ID-lookup table only tracks one node per ID while the element dictionary tracks nodes by name, so link validation ends up trusting IDs instead of enforcing a strict one-to-one ID-to-object mapping. Removing the dictionary-visible node for a duplicated ID leaves other HNSW links pointing at freed memory, which remains reachable through further graph operations such as VLINKS. By reclaiming freed nodes with attacker-shaped Redis strings, the PoC first builds a 64-bit arbitrary-address read oracle via VLINKS ... WITHSCORES to leak free@GOT/libc/system, and then uses two stale neighbor links during hnsw_reconnect_nodes() to overwrite a live module value\u0026rsquo;s type and value pointers; deleting the corrupted key routes through freeModuleObject() and invokes system() with an attacker-controlled buffer inside the Redis process. This PoC was published by a pseudonymous independent researcher (bikini/ashdfrkl) as part of the uncoordinated \u0026ldquo;exploitarium\u0026rdquo; vulnerability dump; it has not been vendor-confirmed.","permalink":"/pocs/network/2026-07-03_redis-vector-set-hnsw-id-rce/"},{"title":"RustDesk Relay Session Downgrade and FileTransfer Authorization Scope Bypass","cve":"None assigned as of 2026-07-03","category":"network","severity":"High","cvss_score":0,"tags":["rustdesk","remote-desktop","session-downgrade","authorization-bypass","protocol","relay","filetransfer","rust"],"affected_product":"RustDesk (rustdesk/rustdesk) — client relay/session setup and server-side connection dispatcher","affected_versions":"Validated against source checkout rustdesk/rustdesk commit ff226f6d8013dee2de5a6553abaf67bf32b3e875","author":"bikini (@ashdfrkl) — original discovery; mirrored via exploitarium","patched":false,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2026-07 Author / Researcher bikini (@ashdfrkl) — original discovery; mirrored via exploitarium CVE / Advisory None assigned as of 2026-07-03 Category network Severity High CVSS Score Not yet scored (no CVE/CVSS assigned) Status PoC Tags rustdesk, remote-desktop, session-downgrade, authorization-bypass, protocol, relay, filetransfer, rust Related N/A Affected Target Field Value Software / System RustDesk (rustdesk/rustdesk) — client relay/session setup and server-side connection dispatcher Versions Affected Validated against source checkout rustdesk/rustdesk commit ff226f6d8013dee2de5a6553abaf67bf32b3e875 Language / Platform Rust (RustDesk client/server); PoC is a Rust protobuf payload generator with a loopback relay simulation Authentication Required Finding 1 (session downgrade): requires attacker control of the relay/rendezvous metadata path (no victim password needed). Finding 2 (FileTransfer scope bypass): requires a valid FileTransfer authorization (password proof or user approval) Network Access Required Yes Summary This entry covers two related but distinct RustDesk findings. First, RustDesk\u0026rsquo;s client can fail open on secure-session setup: when the signed peer key material from the rendezvous/relay path is missing or invalid, the client requests a non-secure relay and sends an empty handshake message rather than failing closed, allowing a malicious relay/rendezvous-position attacker to observe the subsequent plaintext login and inject protocol messages (e.g. mouse events) into an otherwise-authenticated session without knowing the password. Second, RustDesk records FileTransfer logins as AuthConnType::FileTransfer, but the post-authorization message dispatcher gates many message types (mouse, keyboard, screenshot, display capture) on the broad self.authorized flag instead of the specific connection type, so a session that was only authorized for file transfer can still reach remote-control-class message handlers. Both PoCs work by verifying the vulnerable source shape against a local RustDesk checkout and generating/replaying the relevant framed protocol payloads. This PoC was published by a pseudonymous independent researcher (bikini/ashdfrkl) as part of the uncoordinated \u0026ldquo;exploitarium\u0026rdquo; vulnerability dump; it has not been vendor-confirmed.","permalink":"/pocs/network/2026-07-03_rustdesk-session-permission-bypass/"},{"title":"System Informer phsvc Trusted-Host Confused Deputy LPE","cve":"None assigned as of 2026-07-03","category":"binary","severity":"High","cvss_score":0,"tags":["windows","system-informer","process-hacker","lpe","confused-deputy","alpc","phsvc","authenticode","local-privilege-escalation"],"affected_product":"System Informer (Process Hacker successor), phsvc helper process","affected_versions":"System Informer canary 4.0.26162.539, source commit 5311c5ff7ebe0a900a792730395faf147d4451b9 (build date 2026-06-11)","author":"bikini (@ashdfrkl) — original discovery; mirrored via exploitarium","patched":false,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2026-06 Author / Researcher bikini (@ashdfrkl) — original discovery; mirrored via exploitarium CVE / Advisory None assigned as of 2026-07-03 Category binary Severity High CVSS Score Not yet scored (no CVE/CVSS assigned) Status PoC Tags windows, system-informer, process-hacker, lpe, confused-deputy, alpc, phsvc, authenticode, local-privilege-escalation Related N/A Affected Target Field Value Software / System System Informer (Process Hacker successor), phsvc helper process Versions Affected System Informer canary 4.0.26162.539, source commit 5311c5ff7ebe0a900a792730395faf147d4451b9 (build date 2026-06-11) Language / Platform C, Windows x64 Authentication Required Local-only (standard/medium-integrity local user) Network Access Required No Summary System Informer\u0026rsquo;s privileged helper process phsvc exposes an ALPC API port (\\BaseNamedObjects\\SiSvcApiPort) with a connect ACL open to Everyone, and authorizes connecting clients purely by checking whether the client\u0026rsquo;s process image is generically Authenticode-trusted via PhVerifyFileEx. Because a trusted Microsoft-signed host such as rundll32.exe can load and execute an attacker-controlled unsigned DLL, code running inside that DLL inherits the host image\u0026rsquo;s trusted status when connecting to the helper, letting it invoke privileged helper APIs such as PhSvcCreateProcessIgnoreIfeoDebuggerApiNumber. When an elevated phsvc instance is live, this lets a low-privileged local user cause the helper to create an attacker-chosen process in the helper\u0026rsquo;s elevated security context. This PoC was published by a pseudonymous independent researcher (bikini/ashdfrkl) as part of the uncoordinated \u0026ldquo;exploitarium\u0026rdquo; vulnerability dump; it has not been vendor-confirmed.","permalink":"/pocs/binary/2026-07-03_systeminformer-phsvc-trusted-host-lpe/"},{"title":"VLC Bundled FFmpeg VP9 Decoder Resolution-Change Heap Crash","cve":"None assigned as of 2026-07-03","category":"binary","severity":"Medium","cvss_score":0,"tags":["vlc","ffmpeg","vp9","ivf","heap-overflow","media-parsing","crash","windows","decoder"],"affected_product":"VLC media player, bundled FFmpeg VP9 decoder (plugins/codec/libavcodec_plugin.dll)","affected_versions":"VLC 3.0.23 for Windows x64; VP9 decoder source lineage FFmpeg 4.4.x","author":"bikini (@ashdfrkl) — original discovery; mirrored via exploitarium","patched":false,"date":"2026-07-03","year":"2026","summary":"Metadata Field Value Date Added 2026-07-03 Last Updated 2026-07 Author / Researcher bikini (@ashdfrkl) — original discovery; mirrored via exploitarium CVE / Advisory None assigned as of 2026-07-03 Category binary Severity Medium CVSS Score Not yet scored (no CVE/CVSS assigned) Status Incomplete PoC Tags vlc, ffmpeg, vp9, ivf, heap-overflow, media-parsing, crash, windows, decoder Related N/A Affected Target Field Value Software / System VLC media player, bundled FFmpeg VP9 decoder (plugins/codec/libavcodec_plugin.dll) Versions Affected VLC 3.0.23 for Windows x64; VP9 decoder source lineage FFmpeg 4.4.x Language / Platform Python (crafts the malicious IVF/VP9 file); target is Windows x64 VLC Authentication Required No Network Access Required No (local file opened by the victim in VLC) Summary VLC 3.0.23\u0026rsquo;s bundled FFmpeg VP9 decoder tracks per-frame slice-thread progress in an entries array sized from the superblock row count (sb_rows) of the current frame. A crafted two-frame VP9 IVF file — a 64x64 first frame followed by a 64x8192 second frame that keeps the VP9 tile-column layout stable — causes the decoder to reuse a stale, undersized entries allocation (sized for the small first frame) while the slice-thread reset loop writes a zero value for every row of the much larger second frame, producing a sequence of out-of-bounds heap writes past the original allocation. The researcher explicitly marks this work \u0026ldquo;Research status: incomplete and continuing\u0026rdquo; and has intentionally stopped short of demonstrating full exploitability beyond a crash. This PoC was published by a pseudonymous independent researcher (bikini/ashdfrkl) as part of the uncoordinated \u0026ldquo;exploitarium\u0026rdquo; vulnerability dump; it has not been vendor-confirmed.","permalink":"/pocs/binary/2026-07-03_vlc-vp9-reschange-crash/"},{"title":"Authenticated Command Injection in LiteLLM MCP Test Endpoints (CVE-2026-42271)","cve":"CVE-2026-42271","category":"web","severity":"High","cvss_score":8.7,"tags":["command-injection","LiteLLM","MCP","AI-application","ai-gateway","authenticated","api-key","subprocess"],"affected_product":"BerriAI LiteLLM (proxy) — MCP preview/test endpoints","affected_versions":"1.74.2 through 1.83.6","author":"Horizon3.ai (discovery/writeup); learner202649 (PoC)","patched":true,"date":"2026-07-01","year":"2026","summary":"Metadata Field Value Date Added 2026-07-01 Last Updated 2026-06 Author / Researcher Horizon3.ai (discovery/writeup); learner202649 (PoC) CVE / Advisory CVE-2026-42271 Category web Severity High CVSS Score 8.7 (CVSSv3) Status PoC Tags command-injection, LiteLLM, MCP, AI-application, ai-gateway, authenticated, api-key, subprocess Related CVE-2026-48710 Affected Target Field Value Software / System BerriAI LiteLLM (proxy) — MCP preview/test endpoints Versions Affected 1.74.2 through 1.83.6 Language / Platform Python Authentication Required Yes (any valid proxy API key, including low-privilege internal-user keys) Network Access Required Yes (HTTP to LiteLLM proxy) Summary CVE-2026-42271 is a command injection vulnerability in BerriAI LiteLLM\u0026rsquo;s MCP preview/test endpoints — POST /mcp-rest/test/connection and POST /mcp-rest/test/tools/list. These endpoints accept a full MCP server configuration in the request body, including stdio-transport fields (command, args, env). When a request specifies a stdio configuration, LiteLLM spawns the supplied command as a subprocess on the proxy host to test the connection. The endpoints were protected only by possession of a valid proxy API key with no role check, so any authenticated user — including low-privilege internal-user key holders — could supply arbitrary commands for execution with the privileges of the LiteLLM proxy process. Horizon3.ai\u0026rsquo;s research also notes this can be chained with CVE-2026-48710 for unauthenticated exploitation in some configurations. Fixed in LiteLLM 1.83.7 by restricting these endpoints to the PROXY_ADMIN role.","permalink":"/pocs/web/2026-07-01_cve-2026-42271-litellm-mcp-command-injection/"},{"title":"Cisco Catalyst SD-WAN Manager Arbitrary File Write (CVE-2026-20262)","cve":"CVE-2026-20262","category":"network","severity":"Medium","cvss_score":6.5,"tags":["path-traversal","file-write","Cisco","SD-WAN","vManage","authenticated","CWE-22","active-exploitation"],"affected_product":"Cisco Catalyst SD-WAN Manager (formerly SD-WAN vManage)","affected_versions":"Multiple versions, all deployment types of Catalyst SD-WAN Manager","author":"Cisco (advisory); fevar54 (PoC)","patched":false,"date":"2026-07-01","year":"2026","summary":"Metadata Field Value Date Added 2026-07-01 Last Updated 2026-06-17 Author / Researcher Cisco (advisory); fevar54 (PoC) CVE / Advisory CVE-2026-20262 Category network Severity Medium CVSS Score 6.5 (CVSSv3) Status PoC Tags path-traversal, file-write, Cisco, SD-WAN, vManage, authenticated, CWE-22, active-exploitation Related CVE-2026-20245, CVE-2026-20182 Affected Target Field Value Software / System Cisco Catalyst SD-WAN Manager (formerly SD-WAN vManage) Versions Affected Multiple versions, all deployment types of Catalyst SD-WAN Manager Language / Platform Java/WildFly (target); Python (PoC) Authentication Required Yes (valid credentials for at least a lower-privileged, single-task user account with write access) Network Access Required Yes (HTTPS to SD-WAN Manager web UI/API) Summary CVE-2026-20262 is an authenticated remote arbitrary file write vulnerability in the web UI of Cisco Catalyst SD-WAN Manager. Improper validation of user-supplied input during a file upload process enables path traversal, letting an authenticated attacker create or overwrite arbitrary files on the underlying operating system. Cisco and CISA both indicate active exploitation in the wild. This is part of a broader Cisco SD-WAN vulnerability cluster alongside CVE-2026-20245 (root command injection) and CVE-2026-20182 (auth bypass) already tracked in this archive.","permalink":"/pocs/network/2026-07-01_cve-2026-20262-cisco-sdwan-manager-file-write/"},{"title":"Cisco Unified CM WebDialer SSRF to Arbitrary File Write / RCE (CVE-2026-20230)","cve":"CVE-2026-20230","category":"network","severity":"Critical","cvss_score":8.6,"tags":["SSRF","RCE","Cisco","Unified-Communications-Manager","WebDialer","file-write","webshell","jsp-webshell","CISA-KEV","active-exploitation"],"affected_product":"Cisco Unified Communications Manager (Unified CM) and Unified CM Session Management Edition (SME)","affected_versions":"Deployments with the WebDialer service enabled (disabled by default)","author":"Cisco (advisory); W5M1n9 (PoC)","patched":false,"date":"2026-07-01","year":"2026","summary":"Metadata Field Value Date Added 2026-07-01 Last Updated 2026-06-25 Author / Researcher Cisco (advisory); W5M1n9 (PoC) CVE / Advisory CVE-2026-20230 Category network Severity Critical CVSS Score 8.6 (CVSSv3) Status Weaponized Tags SSRF, RCE, Cisco, Unified-Communications-Manager, WebDialer, file-write, webshell, jsp-webshell, CISA-KEV, active-exploitation Related N/A Affected Target Field Value Software / System Cisco Unified Communications Manager (Unified CM) and Unified CM Session Management Edition (SME) Versions Affected Deployments with the WebDialer service enabled (disabled by default) Language / Platform Java/Tomcat (target); Python (PoC) Authentication Required No Network Access Required Yes (HTTP to Unified CM WebDialer service) Summary CVE-2026-20230 is a critical server-side request forgery vulnerability in Cisco Unified CM / Unified CM SME caused by improper input validation of HTTP requests processed by the WebDialer component. A remote unauthenticated attacker can chain unauthenticated web access, hostname discovery from the WebDialer WSDL, SSRF through the cmplatform install-status endpoint, and Axis service abuse to achieve arbitrary file write — dropping a JSP web shell into the Tomcat axis2-web directory — and subsequent command execution. CISA added this to KEV on 2026-06-25 with FCEB remediation due 2026-06-28. WebDialer must be enabled for the vulnerable code path to be reachable (it is disabled by default).","permalink":"/pocs/network/2026-07-01_cve-2026-20230-cisco-ucm-webdialer-ssrf-rce/"},{"title":"Google Chromium V8 Out-of-Bounds Read/Write — Crash PoC (CVE-2026-11645)","cve":"CVE-2026-11645","category":"web","severity":"High","cvss_score":8.8,"tags":["browser","chrome","v8","javascript","turbofan","out-of-bounds","memory-corruption","zero-day","incomplete-poc","active-exploitation"],"affected_product":"Google Chrome / Chromium — V8 JavaScript and WebAssembly engine","affected_versions":"Chrome prior to 149.0.7827.103","author":"Google/Chromium (advisory); 0xBlackash (crash PoC)","patched":false,"date":"2026-07-01","year":"2026","summary":"Metadata Field Value Date Added 2026-07-01 Last Updated 2026-06 Author / Researcher Google/Chromium (advisory); 0xBlackash (crash PoC) CVE / Advisory CVE-2026-11645 Category web Severity High CVSS Score 8.8 (CVSSv3) Status Incomplete PoC (crash only — no confirmed public RCE chain) Tags browser, chrome, v8, javascript, turbofan, out-of-bounds, memory-corruption, zero-day, incomplete-poc, active-exploitation Related N/A Affected Target Field Value Software / System Google Chrome / Chromium — V8 JavaScript and WebAssembly engine Versions Affected Chrome prior to 149.0.7827.103 Language / Platform HTML/JavaScript Authentication Required No Network Access Required No (local file) — real-world delivery would be via a crafted web page Summary CVE-2026-11645 is a high-severity out-of-bounds read/write vulnerability in V8, the JavaScript/WebAssembly engine used by Chrome and other Chromium-based browsers. The bug is rooted in V8\u0026rsquo;s TurboFan optimizer: incorrect range analysis for loop-modified or bitwise-manipulated values can cause the compiler to wrongly eliminate runtime bounds checks on array accesses, and a related trigger involves stale ElementsKind assumptions after array layout transitions. Google has confirmed exploitation exists in the wild but has not published root-cause implementation details, and no fully weaponized public RCE PoC has been found. This repository is a browser-crash / instability demonstrator only — it identifies vulnerable Chrome versions and triggers a repeated class-extension-with-type-change pattern intended to induce V8 memory corruption, but it does not include a working sandbox-escape or code-execution chain.","permalink":"/pocs/web/2026-07-01_cve-2026-11645-chrome-v8-oob-crash/"},{"title":"PAN-OS GlobalProtect Authentication Bypass via Forged Cookie (CVE-2026-0257)","cve":"CVE-2026-0257","category":"web","severity":"High","cvss_score":7.8,"tags":["auth-bypass","VPN","GlobalProtect","PAN-OS","Palo-Alto","certificate-bypass","cookie-forgery","Prisma-Access","unauthenticated"],"affected_product":"Palo Alto Networks PAN-OS — GlobalProtect portal and gateway (also affects certain Prisma Access deployments)","affected_versions":"Deployments with GlobalProtect authentication-override cookies enabled and the same certificate reused for both the HTTPS service and cookie encryption/decryption","author":"sfewer-r7 (Rapid7)","patched":false,"date":"2026-07-01","year":"2026","summary":"Metadata Field Value Date Added 2026-07-01 Last Updated 2026-05-29 Author / Researcher sfewer-r7 (Rapid7) CVE / Advisory CVE-2026-0257 Category web Severity High CVSS Score 7.8 (CVSSv3) Status PoC Tags auth-bypass, VPN, GlobalProtect, PAN-OS, Palo-Alto, certificate-bypass, cookie-forgery, Prisma-Access, unauthenticated Related N/A Affected Target Field Value Software / System Palo Alto Networks PAN-OS — GlobalProtect portal and gateway (also affects certain Prisma Access deployments) Versions Affected Deployments with GlobalProtect authentication-override cookies enabled and the same certificate reused for both the HTTPS service and cookie encryption/decryption Language / Platform Python (PoC) Authentication Required No (authentication is what is bypassed) Network Access Required Yes (HTTPS to GlobalProtect portal/gateway) Summary CVE-2026-0257 is an authentication bypass in the GlobalProtect portal and gateway components of PAN-OS. In configurations where the same TLS certificate is reused for both the HTTPS service and the authentication-override cookie\u0026rsquo;s encryption/decryption, an attacker can extract the public key exposed by the HTTPS service and use it to forge an authentication-override cookie that the appliance accepts. The vulnerable cookie-handling path (main_DecryptAppAuthCookie) decrypts and trusts cookie contents without sufficient authenticity/signature validation, letting an unauthenticated remote attacker bypass GlobalProtect authentication and establish an unauthorized VPN session. Panorama and Cloud NGFW are not affected. Rapid7\u0026rsquo;s public analysis of this issue (2026-05-29) prompted Palo Alto Networks to revise the CVSS score upward from 4.7 to 7.8.","permalink":"/pocs/web/2026-07-01_cve-2026-0257-pan-os-globalprotect-auth-bypass/"},{"title":"Squidbleed — Squid Proxy FTP Gateway Out-of-Bounds Heap Read (CVE-2026-47729)","cve":"CVE-2026-47729","category":"network","severity":"Medium","cvss_score":0,"tags":["memory-disclosure","information-disclosure","Squid","proxy","FTP","heap-overflow","oob-read","credential-theft","legacy"],"affected_product":"Squid Proxy — FTP gateway / directory-listing parser","affected_versions":"Prior to Squid 7.7","author":"Calif.io (discovery/writeup); 0xBlackash (PoC)","patched":true,"date":"2026-07-01","year":"2026","summary":"Metadata Field Value Date Added 2026-07-01 Last Updated 2026-06 Author / Researcher Calif.io (discovery/writeup); 0xBlackash (PoC) CVE / Advisory CVE-2026-47729 Category network Severity Medium CVSS Score Unrated (memory disclosure) Status PoC Tags memory-disclosure, information-disclosure, Squid, proxy, FTP, heap-overflow, oob-read, credential-theft, legacy Related N/A Affected Target Field Value Software / System Squid Proxy — FTP gateway / directory-listing parser Versions Affected Prior to Squid 7.7 Language / Platform C++ (target: FtpGateway.cc); Python (PoC) Authentication Required No Network Access Required Yes (attacker controls or compromises an FTP server that victims proxy through, or MITMs FTP responses) Summary CVE-2026-47729, dubbed \u0026ldquo;Squidbleed,\u0026rdquo; is an out-of-bounds heap read in Squid Proxy\u0026rsquo;s FTP gateway and FTP directory-listing parser. The bug stems from legacy FTP parsing logic (originally written in 1997 for NetWare-style listings) in FtpGateway.cc, where whitespace-skipping code calls strchr() on attacker-influenced input without first checking that the parser hasn\u0026rsquo;t already reached the terminating NUL byte. A crafted or truncated FTP directory listing from a malicious/compromised FTP server can cause Squid to read past the end of the intended heap buffer and return adjacent memory contents — potentially including fragments of unrelated prior transactions such as cleartext HTTP request data (Basic-Auth credentials, Bearer tokens) — to the requesting client as part of the rendered FTP response. Fixed in Squid 7.7.","permalink":"/pocs/network/2026-07-01_cve-2026-47729-squidbleed-squid-ftp-oob-read/"},{"title":"Unauthenticated RCE in Joomla Content Editor (JCE) Profile Import (CVE-2026-48907)","cve":"CVE-2026-48907","category":"web","severity":"Critical","cvss_score":10,"tags":["RCE","unauthenticated","Joomla","JCE","CMS","access-control","webshell","php-webshell","file-upload","CISA-KEV","active-exploitation"],"affected_product":"Joomla Content Editor (JCE) extension by Widget Factory","affected_versions":"1.0.0 through 2.9.99.4","author":"Widget Factory (vendor); public exploit author unknown (0xgh057r3c0n PoC)","patched":false,"date":"2026-07-01","year":"2026","summary":"Metadata Field Value Date Added 2026-07-01 Last Updated 2026-06-16 Author / Researcher Widget Factory (vendor); public exploit author unknown (0xgh057r3c0n PoC) CVE / Advisory CVE-2026-48907 Category web Severity Critical CVSS Score 10.0 (CVSSv3) Status Weaponized Tags RCE, unauthenticated, Joomla, JCE, CMS, access-control, webshell, php-webshell, file-upload, CISA-KEV, active-exploitation Related N/A Affected Target Field Value Software / System Joomla Content Editor (JCE) extension by Widget Factory Versions Affected 1.0.0 through 2.9.99.4 Language / Platform PHP (target); Python (PoC) Authentication Required No Network Access Required Yes (HTTP to Joomla site with JCE installed) Summary CVE-2026-48907 is a critical improper access control vulnerability in the JCE extension for Joomla. The profile import workflow (index.php?option=com_jce\u0026amp;task=profiles.import) is missing sufficient authorization checks, letting unauthenticated users create new editor profiles and abuse the import functionality to upload arbitrary PHP files, with additional bypass of file-type/MIME-type restrictions. Successful exploitation drops a PHP payload on the server and executes it, achieving unauthenticated remote code execution. A public exploit appeared 2026-06-09, and within 24 hours attackers compromised Joomla\u0026rsquo;s own infrastructure (extensions.joomla.org, community.joomla.org, certification.joomla.org). CISA added this to KEV on 2026-06-16 with FCEB remediation due 2026-06-19.","permalink":"/pocs/web/2026-07-01_cve-2026-48907-joomla-jce-unauth-rce/"},{"title":"Unauthenticated RCE in Mirasvit Full Page Cache Warmer for Magento 2 (CVE-2026-45247)","cve":"CVE-2026-45247","category":"web","severity":"Critical","cvss_score":9.3,"tags":["php-object-injection","insecure-deserialization","RCE","Magento","Mirasvit","e-commerce","cookie-based","unauthenticated","CISA-KEV","active-exploitation"],"affected_product":"Mirasvit Full Page Cache Warmer extension for Magento 2","affected_versions":"Prior to 1.11.12","author":"Sansec (discovery/writeup); fevar54 (PoC)","patched":false,"date":"2026-07-01","year":"2026","summary":"Metadata Field Value Date Added 2026-07-01 Last Updated 2026-06 Author / Researcher Sansec (discovery/writeup); fevar54 (PoC) CVE / Advisory CVE-2026-45247 Category web Severity Critical CVSS Score 9.3 (CVSSv3) Status Weaponized Tags php-object-injection, insecure-deserialization, RCE, Magento, Mirasvit, e-commerce, cookie-based, unauthenticated, CISA-KEV, active-exploitation Related N/A Affected Target Field Value Software / System Mirasvit Full Page Cache Warmer extension for Magento 2 Versions Affected Prior to 1.11.12 Language / Platform PHP (target); Python (PoC) Authentication Required No Network Access Required Yes (HTTP to Magento storefront) Summary CVE-2026-45247 is a PHP object injection / insecure deserialization vulnerability in Mirasvit\u0026rsquo;s Full Page Cache Warmer extension for Magento 2. The extension processes attacker-controlled data from the CacheWarmer cookie and passes it directly to PHP\u0026rsquo;s native unserialize() without adequate restriction. Because the cookie is client-controlled and the vulnerable code path is reachable on ordinary storefront requests, an unauthenticated attacker can supply a crafted serialized PHP object and, by chaining gadgets present in Magento and its dependencies (including a Monolog gadget chain), turn the unsafe deserialization into arbitrary code execution. CISA added this to KEV following confirmed active exploitation.","permalink":"/pocs/web/2026-07-01_cve-2026-45247-mirasvit-magento-cache-warmer-rce/"},{"title":"WinRAR Windows Path Traversal via NTFS Alternate Data Streams (CVE-2025-8088)","cve":"CVE-2025-8088","category":"misc","severity":"High","cvss_score":8.4,"tags":["path-traversal","WinRAR","NTFS","Alternate-Data-Streams","RomCom","Storm-0978","persistence","startup-folder","in-the-wild"],"affected_product":"WinRAR (Windows)","affected_versions":"Prior to WinRAR 7.13","author":"ESET (discovery/analysis); pexlexity (PoC)","patched":true,"date":"2026-07-01","year":"2026","summary":"Metadata Field Value Date Added 2026-07-01 Last Updated 2025-07 Author / Researcher ESET (discovery/analysis); pexlexity (PoC) CVE / Advisory CVE-2025-8088 Category misc Severity High CVSS Score 8.4 (CVSSv3) Status Weaponized Tags path-traversal, WinRAR, NTFS, Alternate-Data-Streams, RomCom, Storm-0978, persistence, startup-folder, in-the-wild Related CVE-2025-6218 Affected Target Field Value Software / System WinRAR (Windows) Versions Affected Prior to WinRAR 7.13 Language / Platform Python (PoC generator) Authentication Required No (victim must open/extract the crafted archive) Network Access Required No (local file processing; delivered via phishing/decoy document) Summary CVE-2025-8088 is a path traversal vulnerability in the Windows version of WinRAR. A specially crafted RAR archive abuses NTFS Alternate Data Streams (ADS) combined with ..\\ traversal sequences so that, when opened or extracted by a vulnerable WinRAR build, files are written outside the intended extraction directory. Reported real-world exploitation (attributed to RomCom / Storm-0978) used decoy documents visible to the victim while hidden ADS-backed entries dropped attacker-controlled files into sensitive locations such as the Windows Startup folder, enabling follow-on execution of LNK, HTA, VBScript, or PowerShell loaders on next login. This is a distinct vulnerability from the earlier CVE-2025-6218 WinRAR path-traversal bug already in this archive. Patched in WinRAR 7.13 (July 2025).","permalink":"/pocs/misc/2026-07-01_cve-2025-8088-winrar-ads-path-traversal/"},{"title":"Claude Desktop Cowork VM Image Integrity Bypass / Local Persistence (CVE-2026-7574)","cve":"CVE-2026-7574","category":"binary","severity":"High","cvss_score":8.7,"tags":["LPE","persistence","VM-integrity","rootfs","Claude","AI-application","macOS","ext4","integrity-bypass","Shell"],"affected_product":"Anthropic Claude Desktop — Cowork feature","affected_versions":"v1.1348.0 through v1.2278.0 (macOS)","author":"Ashraf Zaryouh / 0xBlackash (Recon 2026)","patched":false,"date":"2026-06-30","year":"2026","summary":"Metadata Field Value Date Added 2026-06-30 Last Updated 2026-06-30 Author / Researcher Ashraf Zaryouh / 0xBlackash (Recon 2026) CVE / Advisory CVE-2026-7574 Category binary Severity High CVSS Score 8.7 (CVSSv3.1; AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:L) Status PoC Tags LPE, persistence, VM-integrity, rootfs, Claude, AI-application, macOS, ext4, integrity-bypass, Shell Related N/A Affected Target Field Value Software / System Anthropic Claude Desktop — Cowork feature Versions Affected v1.1348.0 through v1.2278.0 (macOS) Language / Platform Bash (PoC); macOS (target) Authentication Required Yes (local unprivileged macOS user) Network Access Required No (local only) Summary CVE-2026-7574 is a VM image integrity bypass in Anthropic\u0026rsquo;s Claude Desktop Cowork feature (macOS). Before booting the Cowork virtual machine, the application validates only the presence of rootfs.img and its associated version marker (.rootfs.img.origin); it performs no cryptographic hash or signature verification on the image contents. A local attacker with standard macOS user privileges can extract the ext4 VM filesystem, inject arbitrary payloads (cron scripts, startup modifications, persistence mechanisms), repack the image, and place it back. On every subsequent Cowork launch the tampered image boots and executes attacker code inside the VM — including in host-mounted directories. The persistence survives application restarts and updates. Presented at Recon 2026.","permalink":"/pocs/binary/2026-06-30_cve-2026-7574-claude-desktop-cowork-vm-bypass/"},{"title":"FFmpeg MagicYUV Decoder Out-of-Bounds Write / RCE — PixelSmash (CVE-2026-8461)","cve":"CVE-2026-8461","category":"binary","severity":"High","cvss_score":8.8,"tags":["RCE","OOB-write","heap-corruption","FFmpeg","MagicYUV","media","video","PixelSmash","libavcodec","Python","High"],"affected_product":"FFmpeg libavcodec — MagicYUV video decoder","affected_versions":"FFmpeg \u003c 8.1.2","author":"JFrog Security Research (CNA, discovery); Ashraf Zaryouh / 0xBlackash (PoC)","patched":true,"date":"2026-06-30","year":"2026","summary":"Metadata Field Value Date Added 2026-06-30 Last Updated 2026-06-30 Author / Researcher JFrog Security Research (CNA, discovery); Ashraf Zaryouh / 0xBlackash (PoC) CVE / Advisory CVE-2026-8461 Category binary Severity High CVSS Score 8.8 (CVSSv3.1; AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H) Status PoC Tags RCE, OOB-write, heap-corruption, FFmpeg, MagicYUV, media, video, PixelSmash, libavcodec, Python, High Related N/A Affected Target Field Value Software / System FFmpeg libavcodec — MagicYUV video decoder Versions Affected FFmpeg \u0026lt; 8.1.2 Language / Platform Python (PoC / file generator); C (FFmpeg target) Authentication Required No (file processed by target application) Network Access Required No (requires user to open or server to process a malicious file) Summary CVE-2026-8461 (codename PixelSmash) is a High-severity out-of-bounds heap write in FFmpeg\u0026rsquo;s MagicYUV decoder (libavcodec). Improper bounds validation during frame decoding allows a specially crafted video file with an odd slice height to trigger a heap buffer overflow. The corruption overwrites AVBuffer structures with attacker-controlled pointers, enabling a chain to system() and arbitrary code execution. Because FFmpeg is embedded in a wide range of media applications — Jellyfin, Nextcloud, OBS Studio, Kodi, mpv, and Red Hat AI infrastructure — any application that processes untrusted media files is a potential attack surface. Fixed in FFmpeg 8.1.2 (PR #23159, published June 18, 2026).","permalink":"/pocs/binary/2026-06-30_cve-2026-8461-ffmpeg-magicyuv-oob-rce/"},{"title":"GeoVision GV-I/O Box 4E DVRSearch Unauthenticated Stack Buffer Overflow RCE (CVE-2026-12485)","cve":"CVE-2026-12485","category":"network","severity":"Critical","cvss_score":10,"tags":["RCE","unauthenticated","stack-overflow","buffer-overflow","IoT","GeoVision","DVR","embedded","UDP","network","Python","CVSS-10"],"affected_product":"GeoVision GV-I/O Box 4E (Linux-based smart embedded I/O device)","affected_versions":"Firmware v2.09 and earlier","author":"Cisco Talos Intelligence (discovery, TALOS-2026-2377); Ashraf Zaryouh / 0xBlackash (PoC)","patched":true,"date":"2026-06-30","year":"2026","summary":"Metadata Field Value Date Added 2026-06-30 Last Updated 2026-06-30 Author / Researcher Cisco Talos Intelligence (discovery, TALOS-2026-2377); Ashraf Zaryouh / 0xBlackash (PoC) CVE / Advisory CVE-2026-12485 Category network Severity Critical CVSS Score 10.0 (CVSSv3.1; AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H) Status PoC Tags RCE, unauthenticated, stack-overflow, buffer-overflow, IoT, GeoVision, DVR, embedded, UDP, network, Python, CVSS-10 Related N/A Affected Target Field Value Software / System GeoVision GV-I/O Box 4E (Linux-based smart embedded I/O device) Versions Affected Firmware v2.09 and earlier Language / Platform Python (PoC); Linux ARM/MIPS (target firmware) Authentication Required No (unauthenticated, network-accessible) Network Access Required Yes (UDP port 10001) Summary CVE-2026-12485 is a CVSS 10.0 unauthenticated stack-based buffer overflow in the GeoVision GV-I/O Box 4E, a Linux-based smart I/O device used in physical security and building automation. The DVRSearch service listens on UDP port 10001 and handles CMD_IP_SET commands for network configuration. The handler performs an unsafe memcpy() of user-controlled data into a fixed-size stack buffer without length validation, enabling remote code execution with no authentication required. Discovered by Cisco Talos Intelligence (TALOS-2026-2377). Fixed in firmware v2.12.","permalink":"/pocs/network/2026-06-30_cve-2026-12485-geovision-dvrsearch-rce/"},{"title":"GNU Inetutils telnetd Unauthenticated Root RCE via NEW-ENVIRON (CVE-2026-24061)","cve":"CVE-2026-24061","category":"network","severity":"Critical","cvss_score":9.8,"tags":["RCE","unauthenticated","authentication-bypass","telnetd","GNU-Inetutils","NEW-ENVIRON","legacy","OT","CISA-KEV","active-exploitation","Python"],"affected_product":"GNU Inetutils telnetd","affected_versions":"1.9.3 through 2.7; Debian Linux 11.0 ships vulnerable version","author":"Ashraf Zaryouh / 0xBlackash","patched":true,"date":"2026-06-30","year":"2026","summary":"Metadata Field Value Date Added 2026-06-30 Last Updated 2026-06-30 Author / Researcher Ashraf Zaryouh / 0xBlackash CVE / Advisory CVE-2026-24061 Category network Severity Critical CVSS Score 9.8 (CVSSv3.1; AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H) Status Weaponized Tags RCE, unauthenticated, authentication-bypass, telnetd, GNU-Inetutils, NEW-ENVIRON, legacy, OT, CISA-KEV, active-exploitation, Python Related N/A Affected Target Field Value Software / System GNU Inetutils telnetd Versions Affected 1.9.3 through 2.7; Debian Linux 11.0 ships vulnerable version Language / Platform Python (PoC); C / Linux (target daemon) Authentication Required No (unauthenticated network attacker) Network Access Required Yes (TCP port 23) Summary CVE-2026-24061 is a critical authentication bypass in GNU Inetutils telnetd that grants an unauthenticated network attacker an immediate root shell. The NEW-ENVIRON Telnet option handler passes the USER environment variable unsanitised to /bin/login. Setting USER=-f root causes login to treat the session as pre-authenticated root, skipping all password verification. CISA added CVE-2026-24061 to the Known Exploited Vulnerabilities (KEV) catalog in January 2026, with a remediation deadline of 02/16/2026. Mass exploitation against legacy and OT systems was observed shortly after public disclosure. Fixed in GNU Inetutils 2.8 (two patch commits on Codeberg).","permalink":"/pocs/network/2026-06-30_cve-2026-24061-gnu-telnetd-rce/"},{"title":"libcurl mTLS Connection Reuse Authentication Bypass (CVE-2026-8932)","cve":"CVE-2026-8932","category":"network","severity":"Low","cvss_score":0,"tags":["authentication-bypass","mTLS","TLS","libcurl","connection-reuse","client-certificate","C","Low"],"affected_product":"libcurl (embedded library; standalone curl CLI unaffected)","affected_versions":"7.7 through 8.20.0","author":"Ashraf Zaryouh / 0xBlackash","patched":true,"date":"2026-06-30","year":"2026","summary":"Metadata Field Value Date Added 2026-06-30 Last Updated 2026-06-30 Author / Researcher Ashraf Zaryouh / 0xBlackash CVE / Advisory CVE-2026-8932 Category network Severity Low CVSS Score Low (no numeric score published) Status PoC Tags authentication-bypass, mTLS, TLS, libcurl, connection-reuse, client-certificate, C, Low Related N/A Affected Target Field Value Software / System libcurl (embedded library; standalone curl CLI unaffected) Versions Affected 7.7 through 8.20.0 Language / Platform C (PoC); any platform embedding libcurl Authentication Required N/A (the bug bypasses mTLS authentication itself) Network Access Required Yes (HTTPS/TLS endpoint) Summary CVE-2026-8932 is a Low-severity authentication bypass in libcurl\u0026rsquo;s TLS connection reuse logic. Certain mTLS private-key configuration parameters (key file path, key type, key password) were omitted from the connection-matching comparison performed when libcurl evaluates whether an existing TLS session can be reused. As a result, when an application switches from one client certificate to another within a shared connection pool, libcurl incorrectly reuses the existing TLS session authenticated under the first certificate, rather than performing a fresh handshake with the new certificate. The server receives traffic authenticated as the original client even though the application believes it is using different credentials. Notably, this bug dates to curl 7.7 (2001), making it the oldest security vulnerability ever fixed in the libcurl project — undetected for approximately 25 years. Fixed in libcurl 8.21.0.","permalink":"/pocs/network/2026-06-30_cve-2026-8932-libcurl-mtls-auth-bypass/"},{"title":"libssh2 SSH Packet Length OOB Heap Write / Unauthenticated RCE (CVE-2026-55200)","cve":"CVE-2026-55200","category":"network","severity":"Critical","cvss_score":9.8,"tags":["RCE","OOB-write","heap-corruption","libssh2","SSH","integer-overflow","unauthenticated","C","network"],"affected_product":"libssh2 (SSH client library)","affected_versions":"libssh2 0.x through 1.11.1","author":"TristanInSec (discovery); Ashraf Zaryouh / 0xBlackash (PoC)","patched":true,"date":"2026-06-30","year":"2026","summary":"Metadata Field Value Date Added 2026-06-30 Last Updated 2026-06-30 Author / Researcher TristanInSec (discovery); Ashraf Zaryouh / 0xBlackash (PoC) CVE / Advisory CVE-2026-55200 Category network Severity Critical CVSS Score 9.8 (CVSSv3.1, NIST); 9.2 (CVSSv4, VulnCheck) Status PoC Tags RCE, OOB-write, heap-corruption, libssh2, SSH, integer-overflow, unauthenticated, C, network Related N/A Affected Target Field Value Software / System libssh2 (SSH client library) Versions Affected libssh2 0.x through 1.11.1 Language / Platform C; Linux / macOS / Windows (any platform embedding libssh2) Authentication Required No Network Access Required Yes (client connects to attacker-controlled SSH server) Summary CVE-2026-55200 is a critical heap out-of-bounds write in libssh2\u0026rsquo;s SSH transport layer (ssh2_transport_read() in src/transport.c). The function validates that packet_length is greater than zero but performs no upper-bound check, allowing an attacker-controlled SSH server to supply packet_length = 0xFFFFFFFF. libssh2 then allocates insufficient memory and writes packet data far beyond the buffer boundary, corrupting heap structures. The vulnerability requires no authentication — any libssh2 client that connects to a malicious server is at risk. Fixed in libssh2 commit 97acf3dfda80c91c3a8c9f2372546301d4a1a7a8 (PR #2052, merged June 12, 2026).","permalink":"/pocs/network/2026-06-30_cve-2026-55200-libssh2-oob-rce/"},{"title":"Linux Kernel act_pedit Partial COW Page-Cache LPE (CVE-2026-46331)","cve":"CVE-2026-46331","category":"binary","severity":"High","cvss_score":7.8,"tags":["LPE","Linux kernel","COW","page-cache","act_pedit","tc","netlink","traffic-control","privilege-escalation","userns","C","DirtyFrag"],"affected_product":"Linux Kernel — net/sched/act_pedit (traffic control packet editing)","affected_versions":"4.19.244 through current; confirmed on 5.18–7.1-rc7","author":"Ashraf Zaryouh / 0xBlackash (PoC); sgkdev (alternative PoC)","patched":false,"date":"2026-06-30","year":"2026","summary":"Metadata Field Value Date Added 2026-06-30 Last Updated 2026-06-30 Author / Researcher Ashraf Zaryouh / 0xBlackash (PoC); sgkdev (alternative PoC) CVE / Advisory CVE-2026-46331 Category binary Severity High CVSS Score 7.8 (CVSSv3.1, kernel.org CNA); 6.7 (Red Hat) Status PoC Tags LPE, Linux kernel, COW, page-cache, act_pedit, tc, netlink, traffic-control, privilege-escalation, userns, C, DirtyFrag Related CVE-2026-31431, CVE-2026-43284, CVE-2026-43500, CVE-2026-46300, CVE-2026-43503 Affected Target Field Value Software / System Linux Kernel — net/sched/act_pedit (traffic control packet editing) Versions Affected 4.19.244 through current; confirmed on 5.18–7.1-rc7 Language / Platform C; Linux x86-64 Authentication Required Yes (local unprivileged shell) Network Access Required Local only (loopback, via netlink) Summary CVE-2026-46331 is a local privilege escalation in the Linux kernel\u0026rsquo;s net/sched/act_pedit subsystem. The vulnerable function tcf_pedit_act() computes the writable Copy-on-Write (COW) region using a pre-calculated maximum hint (tcfp_off_max_hint) before the actual runtime packet-edit offset is resolved. Typed pedit keys introduce header offset deltas at runtime, causing the write to land outside the originally COW\u0026rsquo;d memory region — corrupting page-cache pages that were never privatised. An attacker with CAP_NET_ADMIN (trivially obtained via unprivileged user namespaces on most distributions) can use netlink tc rules to inject shellcode directly into a setuid binary\u0026rsquo;s page-cache copy, then execute it to obtain a root shell. CVE-2026-46331 is the fifth member of the DirtyFrag family of page-cache corruption vulnerabilities.","permalink":"/pocs/binary/2026-06-30_cve-2026-46331-linux-act-pedit-lpe/"},{"title":"SP Page Builder (Joomla) Unauthenticated File Upload RCE (CVE-2026-48908)","cve":"CVE-2026-48908","category":"web","severity":"Critical","cvss_score":10,"tags":["RCE","unauthenticated","file-upload","PHP-webshell","Joomla","CMS","access-control","Python","CVSS-10"],"affected_product":"SP Page Builder extension for Joomla (joomshaper.net)","affected_versions":"1.0.0 through 6.6.1","author":"Ashraf Zaryouh / 0xBlackash","patched":true,"date":"2026-06-30","year":"2026","summary":"Metadata Field Value Date Added 2026-06-30 Last Updated 2026-06-30 Author / Researcher Ashraf Zaryouh / 0xBlackash CVE / Advisory CVE-2026-48908 Category web Severity Critical CVSS Score 10.0 (CVSSv4, Joomla! Project CNA; AV:N/AC:L/AT:N/PR:N/UI:N) Status PoC Tags RCE, unauthenticated, file-upload, PHP-webshell, Joomla, CMS, access-control, Python, CVSS-10 Related N/A Affected Target Field Value Software / System SP Page Builder extension for Joomla (joomshaper.net) Versions Affected 1.0.0 through 6.6.1 Language / Platform Python (PoC); PHP / Joomla (target) Authentication Required No (unauthenticated) Network Access Required Yes (HTTP/HTTPS) Summary CVE-2026-48908 is a CVSS 10.0 unauthenticated remote code execution vulnerability in SP Page Builder, one of the most widely used Joomla page-builder extensions (joomshaper.net). The asset.uploadCustomIcon endpoint enforces no authentication, no authorisation, and no file-type restrictions, allowing any unauthenticated attacker to upload a crafted IcoMoon ZIP archive containing a PHP web shell. The uploaded shell is immediately accessible and provides full server-side code execution. Fixed in SP Page Builder 6.6.2.","permalink":"/pocs/web/2026-06-30_cve-2026-48908-sp-page-builder-joomla-rce/"},{"title":"Check Point Remote Access VPN IKEv1 Auth Bypass (CVE-2026-50751)","cve":"CVE-2026-50751","category":"network","severity":"Critical","cvss_score":9.3,"tags":["auth-bypass","VPN","IKEv1","Check-Point","Remote-Access","certificate-bypass","Qilin","ransomware","CISA-KEV","unauthenticated"],"affected_product":"Check Point Remote Access VPN / Mobile Access / Spark Firewall","affected_versions":"R80.20.X through R82.10; 4 EOL versions also affected; IKEv1-configured gateways","author":"McCaulay (@_mccaulay) / watchTowr","patched":true,"date":"2026-06-28","year":"2026","summary":"Metadata Field Value Date Added 2026-06-28 Last Updated 2026-06-10 Author / Researcher McCaulay (@_mccaulay) / watchTowr CVE / Advisory CVE-2026-50751 Category network Severity Critical CVSS Score 9.3 (CVSSv3, CWE-287) Status PoC Tags auth-bypass, VPN, IKEv1, Check-Point, Remote-Access, certificate-bypass, Qilin, ransomware, CISA-KEV, unauthenticated Related N/A Affected Target Field Value Software / System Check Point Remote Access VPN / Mobile Access / Spark Firewall Versions Affected R80.20.X through R82.10; 4 EOL versions also affected; IKEv1-configured gateways Language / Platform Python (PoC); cryptography library Authentication Required No (authentication is what is bypassed) Network Access Required Yes (UDP 500/4500 or TCP 443 via Visitor Mode) Summary CVE-2026-50751 is a critical authentication bypass in Check Point Remote Access VPN affecting gateways configured for the legacy IKEv1 protocol. A remote unauthenticated attacker can complete the deprecated IKEv1 phase-1 exchange and be authenticated as a provisioned Remote Access user without a valid certificate, private key, or password. Active exploitation began May 7, 2026; a Qilin ransomware affiliate used this vulnerability in at least one confirmed post-exploitation incident. CISA ordered federal patch within 3 days of KEV addition (June 9, 2026).","permalink":"/pocs/network/2026-06-28_cve-2026-50751-checkpoint-ikev1-bypass/"},{"title":"Cisco Catalyst SD-WAN Manager Privilege Escalation (CVE-2026-20245)","cve":"CVE-2026-20245","category":"network","severity":"High","cvss_score":7.8,"tags":["privilege-escalation","Cisco","SD-WAN","vManage","file-upload","command-injection","root","CISA-KEV","no-patch","Mandiant","nation-state"],"affected_product":"Cisco Catalyst SD-WAN Manager (vManage), SD-WAN Controller (vSmart), SD-WAN Validator (vBond)","affected_versions":"All current versions; **no patch available at time of ingest**","author":"Ashraf Zaryouh (0xBlackash)","patched":false,"date":"2026-06-28","year":"2026","summary":"Metadata Field Value Date Added 2026-06-28 Last Updated 2026-06-14 Author / Researcher Ashraf Zaryouh (0xBlackash) CVE / Advisory CVE-2026-20245 Category network Severity High CVSS Score 7.8 (CVSSv3) Status PoC Tags privilege-escalation, Cisco, SD-WAN, vManage, file-upload, command-injection, root, CISA-KEV, no-patch, Mandiant, nation-state Related N/A Affected Target Field Value Software / System Cisco Catalyst SD-WAN Manager (vManage), SD-WAN Controller (vSmart), SD-WAN Validator (vBond) Versions Affected All current versions; no patch available at time of ingest Language / Platform Python (advisory PoC); Linux (target) Authentication Required Yes (netadmin role required) Network Access Required Yes (management plane access) Summary CVE-2026-20245 is the seventh Cisco SD-WAN zero-day exploited in 2026. An authenticated attacker with netadmin privileges on Cisco Catalyst SD-WAN Manager can upload a specially crafted file to the CLI subsystem, triggering insufficient input validation and executing arbitrary OS commands as root. In the wild, attackers used this to create a privileged troot account (via evil_tenant.csv upload), then pushed malicious configuration policies to edge devices across the entire SD-WAN fabric. Mandiant (Google Cloud) reported the in-the-wild exploitation; CISA added to KEV on June 15, 2026. No patch is available.","permalink":"/pocs/network/2026-06-28_cve-2026-20245-cisco-sdwan-priv-esc/"},{"title":"DirtyClone — Linux Kernel LPE via Cloned Packet Page-Cache Overwrite (CVE-2026-43503)","cve":"CVE-2026-43503","category":"binary","severity":"High","cvss_score":8.8,"tags":["LPE","Linux kernel","netfilter","TEE","IPsec","XFRM","page-cache","file-backed memory","DirtyFrag","skb","privilege escalation","C","in-the-wild"],"affected_product":"Linux kernel (netfilter TEE / __pskb_copy_fclone())","affected_versions":"All kernels before commit 48f6a5356a33 (v7.1-rc5, May 21 2026); Linux 6.1–6.12 confirmed; 5.15 and 5.10 LTS under investigation","author":"Hyunwoo Kim (patch author); Eddy Tsalolikhin, Or Peles (JFrog Security Research, exploit writeup); rafaeldtinoco (PoC)","patched":true,"date":"2026-06-28","year":"2026","summary":"Metadata Field Value Date Added 2026-06-28 Last Updated 2026-06-28 Author / Researcher Hyunwoo Kim (patch author); Eddy Tsalolikhin, Or Peles (JFrog Security Research, exploit writeup); rafaeldtinoco (PoC) CVE / Advisory CVE-2026-43503 Category binary Severity High CVSS Score 8.8 (CVSSv3) Status Weaponized Tags LPE, Linux kernel, netfilter, TEE, IPsec, XFRM, page-cache, file-backed memory, DirtyFrag, skb, privilege escalation, C, in-the-wild Related CVE-2026-31431, CVE-2026-43284, CVE-2026-43500, CVE-2026-46300 Affected Target Field Value Software / System Linux kernel (netfilter TEE / __pskb_copy_fclone()) Versions Affected All kernels before commit 48f6a5356a33 (v7.1-rc5, May 21 2026); Linux 6.1–6.12 confirmed; 5.15 and 5.10 LTS under investigation Language / Platform C, Linux Authentication Required Yes (local unprivileged shell) Network Access Required Local only (loopback IPsec tunnel) Summary DirtyClone (CVE-2026-43503, CVSS 8.8) is the fourth member of the DirtyFrag family of Linux kernel local privilege escalation vulnerabilities. Each member shares the same root failure: file-backed page-cache memory is exposed to network packet operations, and a missing flag along the code path turns a zero-copy performance optimisation into an arbitrary write primitive.","permalink":"/pocs/binary/2026-06-28_dirtyclone-cve-2026-43503-lpe/"},{"title":"Ivanti Sentry Pre-Auth RCE + Auth Bypass (CVE-2026-10520 / CVE-2026-10523)","cve":"CVE-2026-10520, CVE-2026-10523","category":"network","severity":"Critical","cvss_score":10,"tags":["pre-auth","RCE","OS-command-injection","Ivanti","Sentry","MICS-API","auth-bypass","admin-creation","CISA-KEV"],"affected_product":"Ivanti Sentry (formerly MobileIron Sentry)","affected_versions":"Ivanti Sentry ≤ 10.7.0, ≤ 10.6.1, ≤ 10.5.1","author":"Sonny / watchTowr","patched":true,"date":"2026-06-28","year":"2026","summary":"Metadata Field Value Date Added 2026-06-28 Last Updated 2026-06-09 Author / Researcher Sonny / watchTowr CVE / Advisory CVE-2026-10520, CVE-2026-10523 Category network Severity Critical CVSS Score 10.0 (CVE-2026-10520, CVSSv3); 9.9 (CVE-2026-10523) Status PoC Tags pre-auth, RCE, OS-command-injection, Ivanti, Sentry, MICS-API, auth-bypass, admin-creation, CISA-KEV Related N/A Affected Target Field Value Software / System Ivanti Sentry (formerly MobileIron Sentry) Versions Affected Ivanti Sentry ≤ 10.7.0, ≤ 10.6.1, ≤ 10.5.1 Language / Platform Python (PoC); Linux (target) Authentication Required No (unauthenticated) Network Access Required Yes (HTTPS, MICS port) Summary Two critical vulnerabilities in Ivanti Sentry enable unauthenticated root-level RCE and arbitrary admin account creation. CVE-2026-10520 is an OS command injection in the MICS API at /mics/api/v2/sentry/mics-config/handleMessage (CVSS 10.0). CVE-2026-10523 is an authentication bypass allowing unauthenticated creation of arbitrary admin accounts (CVSS 9.9). A PoC published by watchTowr on June 10 triggered in-the-wild exploitation within 24 hours; CISA added both to KEV on June 11, 2026.","permalink":"/pocs/network/2026-06-28_cve-2026-10520-ivanti-sentry-rce/"},{"title":"Splunk Enterprise Pre-Auth RCE via PostgreSQL Sidecar (CVE-2026-20253)","cve":"CVE-2026-20253","category":"web","severity":"Critical","cvss_score":0,"tags":["pre-auth","RCE","PostgreSQL","Splunk","CISA-KEV","lo-export","sidecar","unauthenticated","file-write"],"affected_product":"Splunk Enterprise","affected_versions":"10.0.0–10.0.6, 10.2.0–10.2.3 (NOT 9.x)","author":"Piotr (@chudyPB) / watchTowr","patched":true,"date":"2026-06-28","year":"2026","summary":"Metadata Field Value Date Added 2026-06-28 Last Updated 2026-06-12 Author / Researcher Piotr (@chudyPB) / watchTowr CVE / Advisory CVE-2026-20253 Category web Severity Critical CVSS Score N/A (Critical, pre-auth RCE chain; see vendor advisory SVD-2026-0603) Status PoC Tags pre-auth, RCE, PostgreSQL, Splunk, CISA-KEV, lo-export, sidecar, unauthenticated, file-write Related N/A Affected Target Field Value Software / System Splunk Enterprise Versions Affected 10.0.0–10.0.6, 10.2.0–10.2.3 (NOT 9.x) Language / Platform Python (PoC); Linux (target) Authentication Required No (unauthenticated) Network Access Required Yes (HTTP/HTTPS, default port 8000) Summary CVE-2026-20253 is a critical unauthenticated RCE vulnerability in Splunk Enterprise arising from a missing authentication check on the PostgreSQL sidecar service endpoint /v1/postgres/recovery/backup. An unauthenticated attacker can reach this endpoint and exploit the PostgreSQL lo_export function to write arbitrary files to the OS, which can be chained to achieve remote code execution. A watchTowr PoC was published; exploitation spiked shortly after. CISA added to KEV on June 18, 2026 with a federal remediation deadline of June 21.","permalink":"/pocs/web/2026-06-28_cve-2026-20253-splunk-preauth-rce/"},{"title":"Ubiquiti UniFi OS Unauthenticated RCE Chain (CVE-2026-34908 / CVE-2026-34909 / CVE-2026-34910)","cve":"CVE-2026-34908, CVE-2026-34909, CVE-2026-34910","category":"network","severity":"Critical","cvss_score":10,"tags":["unauth-rce","nginx-bypass","path-traversal","command-injection","CISA-KEV","Mirai","Gaafgyt","chain","UniFi","Ubiquiti","network"],"affected_product":"Ubiquiti UniFi OS Server","affected_versions":"UniFi OS Server ≤ 5.0.6","author":"Bishop Fox","patched":true,"date":"2026-06-28","year":"2026","summary":"Metadata Field Value Date Added 2026-06-28 Last Updated 2026-06-05 Author / Researcher Bishop Fox CVE / Advisory CVE-2026-34908, CVE-2026-34909, CVE-2026-34910 Category network Severity Critical CVSS Score 10.0 (CVSSv3) Status PoC Tags unauth-rce, nginx-bypass, path-traversal, command-injection, CISA-KEV, Mirai, Gaafgyt, chain, UniFi, Ubiquiti, network Related N/A Affected Target Field Value Software / System Ubiquiti UniFi OS Server Versions Affected UniFi OS Server ≤ 5.0.6 Language / Platform Python (checker); Linux (target) Authentication Required No (unauthenticated) Network Access Required Yes (TCP 11443 / HTTPS) Summary A three-CVE unauthenticated RCE chain in Ubiquiti UniFi OS Server ≤ 5.0.6 allows a remote attacker to achieve root-level command execution with no credentials. CVE-2026-34908 and CVE-2026-34909 (improper access control + path traversal) are chained to bypass nginx authentication, and CVE-2026-34910 (command injection via improper input validation) delivers code execution. All three CVEs carry CVSS 10.0. The chain is actively weaponized by Mirai/Gaafgyt botnets and was added to CISA KEV on June 23, 2026.","permalink":"/pocs/network/2026-06-28_cve-2026-34908-unifi-os-rce-chain/"},{"title":"Windows CTFMON Arbitrary Section Object EoP — GreenPlasma (CVE-2026-45586)","cve":"CVE-2026-45586","category":"binary","severity":"High","cvss_score":7.8,"tags":["LPE","EoP","Windows","CTFMON","section-object","object-directory","link-following","zero-day","CTF-challenge","Windows-11","Windows-2022","Windows-2026","incomplete-poc"],"affected_product":"Windows Collaborative Translation Framework (CTFMON service)","affected_versions":"Windows 11, Windows Server 2022, Windows Server 2026; Windows 10 status unclear","author":"Nightmare-Eclipse (ASkyeye re-host)","patched":true,"date":"2026-06-28","year":"2026","summary":"Metadata Field Value Date Added 2026-06-28 Last Updated 2026-05-12 Author / Researcher Nightmare-Eclipse (ASkyeye re-host) CVE / Advisory CVE-2026-45586 Category binary Severity High CVSS Score 7.8 (CVSSv3) Status PoC Tags LPE, EoP, Windows, CTFMON, section-object, object-directory, link-following, zero-day, CTF-challenge, Windows-11, Windows-2022, Windows-2026, incomplete-poc Related N/A Affected Target Field Value Software / System Windows Collaborative Translation Framework (CTFMON service) Versions Affected Windows 11, Windows Server 2022, Windows Server 2026; Windows 10 status unclear Language / Platform C++ (Windows x64) Authentication Required No (standard local user) Network Access Required No (local only) Summary CVE-2026-45586 (GreenPlasma) is a Windows CTFMON Elevation of Privilege vulnerability exploiting an arbitrary named section object creation primitive. A standard unprivileged user can create a section object in any directory object writable by SYSTEM, abusing CTFMON\u0026rsquo;s trust in certain object directory paths to manipulate services or kernel-mode drivers that blindly consume data from those paths. The vulnerability was disclosed publicly as a zero-day by researcher \u0026ldquo;Nightmare Eclipse\u0026rdquo; before the June 2026 Patch Tuesday patch. The included PoC (GreenPlasma.cpp) has the SYSTEM shell finalization step intentionally stripped by the researcher as a CTF challenge; the core primitive (arbitrary section creation) is complete.","permalink":"/pocs/binary/2026-06-28_cve-2026-45586-ctfmon-greenplasma-lpe/"},{"title":"CVE-2026-50656 RoguePlanet — Safe Vulnerability Checker (Resurface)","cve":"CVE-2026-50656","category":"binary","severity":"High","cvss_score":7.8,"tags":["LPE","Windows Defender","TOCTOU","symlink","reparse-point","junction","CWE-59","checker","detection","non-destructive","MsMpEng"],"affected_product":"Microsoft Malware Protection Engine (mpengine.dll, MsMpEng.exe)","affected_versions":"Microsoft Defender Antivirus / Defender for Endpoint (pre-patch)","author":"Ashraf Zaryouh (0xBlackash)","patched":true,"date":"2026-06-26","year":"2026","summary":"Metadata Field Value Date Added 2026-06-26 Last Updated 2026-06-18 Author / Researcher Ashraf Zaryouh (0xBlackash) CVE / Advisory CVE-2026-50656 Category binary Severity High CVSS Score 7.8 (CVSSv3) Status Researched Tags LPE, Windows Defender, TOCTOU, symlink, reparse-point, junction, CWE-59, checker, detection, non-destructive, MsMpEng Related pocs/binary/2026-06-10_rogueplanet-defender-lpe/ Affected Target Field Value Software / System Microsoft Malware Protection Engine (mpengine.dll, MsMpEng.exe) Versions Affected Microsoft Defender Antivirus / Defender for Endpoint (pre-patch) Language / Platform C++ (Windows x64) Authentication Required No (standard local user) Network Access Required No (local only) Summary CVE-2026-50656 is a High-severity Elevation of Privilege vulnerability in the Microsoft Malware Protection Engine, publicly referred to as RoguePlanet. It stems from improper link resolution before file access (CWE-59) — the engine follows attacker-controlled symbolic links, junction points, or reparse points during a scan operation, allowing privilege escalation to SYSTEM. This entry is a safe detection-only checker by a different researcher; the original weaponized exploit is at pocs/binary/2026-06-10_rogueplanet-defender-lpe/.","permalink":"/pocs/binary/2026-06-26_cve-2026-50656-rogueplanet-checker/"},{"title":"YellowKey — BitLocker Bypass via WinRE autofstx.exe (CVE-2026-45585)","cve":"CVE-2026-45585","category":"misc","severity":"Medium","cvss_score":6.1,"tags":["BitLocker","bypass","physical-access","WinRE","TPM","autofstx","NTFS-transactions","FsTx","Windows-11","Windows-Server-2022","zero-day","full-disk-access"],"affected_product":"Windows BitLocker / WinRE (autofstx.exe)","affected_versions":"Windows 11 (all builds), Windows Server 2022/2025; Windows 10 not affected","author":"Ashraf Zaryouh (0xBlackash)","patched":true,"date":"2026-06-26","year":"2026","summary":"Metadata Field Value Date Added 2026-06-26 Last Updated 2026-05-31 Author / Researcher Ashraf Zaryouh (0xBlackash) CVE / Advisory CVE-2026-45585 Category misc Severity Medium CVSS Score 6.1 (estimated CVSSv3, AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N) Status Researched Tags BitLocker, bypass, physical-access, WinRE, TPM, autofstx, NTFS-transactions, FsTx, Windows-11, Windows-Server-2022, zero-day, full-disk-access Related N/A Affected Target Field Value Software / System Windows BitLocker / WinRE (autofstx.exe) Versions Affected Windows 11 (all builds), Windows Server 2022/2025; Windows 10 not affected Language / Platform Windows (PowerShell for mitigation) Authentication Required No Network Access Required No (physical access only) Summary CVE-2026-45585 (YellowKey) is a zero-day physical-access vulnerability discovered in May 2026 that allows an attacker with physical access to a Windows 11 device to fully bypass BitLocker disk encryption without the PIN, password, or recovery key. The attacker boots the device into the Windows Recovery Environment (WinRE), uses a crafted USB containing NTFS transaction logs (FsTx), and exploits autofstx.exe registered in the BootExecute key to obtain an elevated command prompt. Since BitLocker is automatically unlocked by TPM during WinRE boot without requiring user authentication, the attacker gains full access to the encrypted drive. This repository contains a mitigation/hardening script; no weaponized exploit code is included.","permalink":"/pocs/misc/2026-06-26_yellowkey-bitlocker-bypass/"},{"title":"RoguePlanet — Windows Defender LPE via ISO Mount + Task Scheduler Race Condition","cve":"CVE-2026-50656","category":"binary","severity":"High","cvss_score":7.8,"tags":["LPE","Windows Defender","race-condition","TOCTOU","ISO-mount","VirtualDisk","Task-Scheduler","WER","EICAR","SYSTEM-shell","Windows-10","Windows-11","local"],"affected_product":"Microsoft Windows Defender / Windows Error Reporting Task Scheduler","affected_versions":"Windows 10 and Windows 11 (including Canary channel) with June 2026 patch; Windows Server all versions (PoC requires redesign for Server)","author":"MSNightmare (Nightmare-Eclipse)","patched":false,"date":"2026-06-10","year":"2026","summary":"Metadata Field Value Date Added 2026-06-10 Last Updated 2026-06-09 Author / Researcher MSNightmare (Nightmare-Eclipse) CVE / Advisory CVE-2026-50656 Category binary Severity High CVSS Score 7.8 (CVSSv3) Status Weaponized Tags LPE, Windows Defender, race-condition, TOCTOU, ISO-mount, VirtualDisk, Task-Scheduler, WER, EICAR, SYSTEM-shell, Windows-10, Windows-11, local Related N/A Affected Target Field Value Software / System Microsoft Windows Defender / Windows Error Reporting Task Scheduler Versions Affected Windows 10 and Windows 11 (including Canary channel) with June 2026 patch; Windows Server all versions (PoC requires redesign for Server) Language / Platform C++ (Windows x64) Authentication Required No (standard local user) Network Access Required No (local only) Summary RoguePlanet is a local privilege escalation exploit for Windows 10 and 11 that abuses a race condition in Windows Defender\u0026rsquo;s scan pipeline. The exploit mounts an attacker-controlled ISO image via the VirtualDisk API, plants an EICAR-like trigger file inside it, and races Defender\u0026rsquo;s file-open handle against a directory junction swap while simultaneously driving the WER QueueReporting Task Scheduler task to execute as SYSTEM. If the race is won, the attacker\u0026rsquo;s payload runs in the SYSTEM context. The exploit is non-deterministic (race-dependent) but achieves high success rates on tested builds.","permalink":"/pocs/binary/2026-06-10_rogueplanet-defender-lpe/"},{"title":"FirefUXSS: Universal XSS in Firefox Focus for iOS via Redirect-Scheme Validation Race Condition","cve":"","category":"web","severity":"Critical","cvss_score":9.3,"tags":["UXSS","XSS","race-condition","TOCTOU","redirect-validation","javascript-scheme","iOS","Firefox Focus"],"affected_product":"Firefox Focus for iOS","affected_versions":"Latest available version at time of testing (per upstream disclosure)","author":"@RenwaX23 (V12 Security)","patched":false,"date":"2026-06-08","year":"2026","summary":" Metadata Field Value Date Added 2026-06-08 Last Updated 2026-06-08 Author / Researcher @RenwaX23 (V12 Security) CVE / Advisory N/A Category web Severity Critical CVSS Score 9.3 (CVSSv3.1) Status Unpatched Tags UXSS, XSS, race-condition, TOCTOU, redirect-validation, javascript-scheme, iOS, Firefox Focus Related N/A Affected Target Field Value Software / System Firefox Focus for iOS Versions Affected Latest available version at time of testing (per upstream disclosure) Language / Platform iOS browser / WebKit-based mobile browsing context Authentication Required No Network Access Required Yes Summary FirefUXSS is a universal XSS issue in Firefox Focus for iOS where redirect-scheme validation can be bypassed via a race condition. A burst of benign redirects can desynchronize validation from navigation commit, allowing a final javascript: redirect to execute. The JavaScript then runs with the origin of the previously loaded page, enabling cross-origin script execution on high-value domains reached through open redirects.","permalink":"/pocs/web/2026-06-08_firefox-focus-ios-uxss-redirect-scheme-race-condition/"},{"title":"ssh-keysign-pwn: pidfd_getfd FD Theft via mm-NULL Exit Window (CVE-2026-46333)","cve":"CVE-2026-46333","category":"binary","severity":"High","cvss_score":0,"tags":["LPE","Linux kernel","pidfd_getfd","ptrace","ssh-keysign","chage","fd-theft"],"affected_product":"Linux kernel plus privileged userland binaries (ssh-keysign, chage)","affected_versions":"Kernels prior to upstream fix commit 31e62c2ebbfd (2026-05-14)","author":"0xdeadbeefnetwork (repo), Qualys (reported kernel bug)","patched":true,"date":"2026-06-05","year":"2026","summary":" Metadata Field Value Date Added 2026-06-05 Last Updated N/A Author / Researcher 0xdeadbeefnetwork (repo), Qualys (reported kernel bug) CVE / Advisory CVE-2026-46333 Category binary Severity High CVSS Score N/A Status Patched Tags LPE, Linux kernel, pidfd_getfd, ptrace, ssh-keysign, chage, fd-theft Related N/A Affected Target Field Value Software / System Linux kernel plus privileged userland binaries (ssh-keysign, chage) Versions Affected Kernels prior to upstream fix commit 31e62c2ebbfd (2026-05-14) Language / Platform C / Linux Authentication Required Yes (local unprivileged user account) Network Access Required No (local only) Summary ssh-keysign-pwn demonstrates a local file-descriptor theft primitive on vulnerable Linux kernels. During process exit, a race window appears after exit_mm() but before file descriptors are closed; in that state pidfd_getfd(2) can bypass expected dumpable checks and steal privileged FDs from a dying setuid process. The PoC targets ssh-keysign (host private keys) and chage (/etc/shadow) to show practical local privilege-escalation impact.","permalink":"/pocs/binary/2026-06-05_ssh-keysign-pwn/"},{"title":"Netlogon CLDAP Stack Buffer Overflow (CVE-2026-41089)","cve":"CVE-2026-41089","category":"network","severity":"Critical","cvss_score":9.8,"tags":["Netlogon","CLDAP","Windows Server","stack-overflow","unauthenticated","DoS","potential-RCE"],"affected_product":"Microsoft Windows Netlogon (Domain Controller CLDAP path)","affected_versions":"Windows Server 2012/2012 R2, 2016, 2019, 2022, 2022 23H2, 2025 (pre-patch)","author":11259137,"patched":true,"date":"2026-06-04","year":"2026","summary":"Metadata Field Value Date Added 2026-06-04 Last Updated 2026-06-04 Author / Researcher 0xABCD01 CVE / Advisory CVE-2026-41089 Category network Severity Critical CVSS Score 9.8 (CVSSv3.1) Status Weaponized Tags Netlogon, CLDAP, Windows Server, stack-overflow, unauthenticated, DoS, potential-RCE Related N/A Affected Target Field Value Software / System Microsoft Windows Netlogon (Domain Controller CLDAP path) Versions Affected Windows Server 2012/2012 R2, 2016, 2019, 2022, 2022 23H2, 2025 (pre-patch) Language / Platform Python PoC against Windows Domain Controllers Authentication Required No Network Access Required Yes Summary This PoC targets CVE-2026-41089, a stack-based buffer overflow in the Windows Netlogon CLDAP handling path. A crafted UDP/389 CLDAP ping containing an oversized User value can overrun a stack buffer in the LSASS/Netlogon flow and crash the domain controller. The public PoC demonstrates unauthenticated network-triggered denial-of-service and notes potential remote code execution risk from stack corruption.","permalink":"/pocs/network/2026-06-04_netlogon-cldap-stack-buffer-overflow/"},{"title":"Drupal Core PostgreSQL SQL Injection (CVE-2026-9082)","cve":"CVE-2026-9082 / SA-CORE-2026-004","category":"web","severity":"Critical","cvss_score":0,"tags":["SQLi","Drupal","PostgreSQL","JSON:API","unauthenticated","data-exfiltration"],"affected_product":"Drupal Core","affected_versions":"8.0.0 through 11.3.9 (PostgreSQL-backed sites)","author":"7h30th3r0n3 (discoverer credited by advisory: michaelmaturi)","patched":false,"date":"2026-05-30","year":"2026","summary":" Metadata Field Value Date Added 2026-05-30 Last Updated 2026-05-21 Author / Researcher 7h30th3r0n3 (discoverer credited by advisory: michaelmaturi) CVE / Advisory CVE-2026-9082 / SA-CORE-2026-004 Category web Severity Critical CVSS Score N/A Status Patched Tags SQLi, Drupal, PostgreSQL, JSON:API, unauthenticated, data-exfiltration Related N/A Affected Target Field Value Software / System Drupal Core Versions Affected 8.0.0 through 11.3.9 (PostgreSQL-backed sites) Language / Platform PHP / Drupal with PostgreSQL backend Authentication Required No Network Access Required Yes Summary CVE-2026-9082 is an unauthenticated SQL injection in Drupal Core\u0026rsquo;s PostgreSQL entity-query handling for JSON:API filters. User-controlled array keys are used to build SQL placeholder names without proper sanitization, enabling injection into generated SQL. On vulnerable targets, attackers can retrieve database metadata and potentially extract sensitive records.","permalink":"/pocs/web/2026-05-30_drupal-core-postgresql-sql-injection/"},{"title":"LiteSpeed User-End cPanel Plugin Local Privilege Escalation (CVE-2026-48172)","cve":"CVE-2026-48172","category":"web","severity":"High","cvss_score":0,"tags":["local-privilege-escalation","cPanel","LiteSpeed","symlink","archive-extraction"],"affected_product":"LiteSpeed cPanel Plugin","affected_versions":"LiteSpeed cPanel Plugin v6.5.0 and earlier","author":"HORKimhab (collab: @RABBIT6049)","patched":false,"date":"2026-05-30","year":"2026","summary":" Metadata Field Value Date Added 2026-05-30 Last Updated 2026-04-30 Author / Researcher HORKimhab (collab: @RABBIT6049) CVE / Advisory CVE-2026-48172 Category web Severity High CVSS Score N/A Status Patched Tags local-privilege-escalation, cPanel, LiteSpeed, symlink, archive-extraction Related N/A Affected Target Field Value Software / System LiteSpeed cPanel Plugin Versions Affected LiteSpeed cPanel Plugin v6.5.0 and earlier Language / Platform Linux / cPanel server environment Authentication Required Yes (local cPanel user) Network Access Required No Summary CVE-2026-48172 is a local privilege-escalation flaw in LiteSpeed cPanel Plugin v6.5.0 and earlier. The plugin installation flow does not sufficiently validate package ownership/permissions and can be abused with symlinked install targets. A normal cPanel user can influence extraction behavior to overwrite privileged files such as /etc/sudoers, resulting in root-level command execution.","permalink":"/pocs/web/2026-05-30_litespeed-user-end-cpanel-plugin-privesc/"},{"title":"Notepad++ \u003c= 8.9.6 Multiple Vulnerabilities (CVE-2026-48770, CVE-2026-48778, CVE-2026-48800)","cve":"CVE-2026-48770, CVE-2026-48778, CVE-2026-48800","category":"binary","severity":"High","cvss_score":5,"tags":["Notepad++","Windows","OOB-read","DoS","command-injection","config.xml","shortcuts.xml","local"],"affected_product":"Notepad++","affected_versions":"Notepad++ \u003c= 8.9.6","author":"atiilla","patched":false,"date":"2026-05-28","year":"2026","summary":"Metadata Field Value Date Added 2026-05-28 Last Updated N/A Author / Researcher atiilla CVE / Advisory CVE-2026-48770, CVE-2026-48778, CVE-2026-48800 Category binary Severity High CVSS Score 5.0 / 7.8 / 7.8 Status Patched Tags Notepad++, Windows, OOB-read, DoS, command-injection, config.xml, shortcuts.xml, local Related N/A Affected Target Field Value Software / System Notepad++ Versions Affected Notepad++ \u0026lt;= 8.9.6 Language / Platform Python, PowerShell, XML payloads on Windows 10/11 Authentication Required Partial (local user/session interaction) Network Access Required Local only Summary This PoC set covers three Notepad++ vulnerabilities affecting versions up to 8.9.6. CVE-2026-48770 demonstrates an out-of-bounds read crash by sending malformed WM_COPYDATA data to a running Notepad++ process. CVE-2026-48778 and CVE-2026-48800 demonstrate command execution by controlling values loaded from config.xml and shortcuts.xml, then triggering Notepad++ UI actions that pass attacker-controlled values to process launch functionality.","permalink":"/pocs/binary/2026-05-28_notepad-plus-plus-8-9-6-multi-cve/"},{"title":"PinTheft: RDS Double-Free → LPE","cve":"","category":"binary","severity":"High","cvss_score":0,"tags":["LPE","double-free","use-after-free","Linux kernel","RDS","io_uring","page-cache-overwrite","x86_64","local"],"affected_product":"Linux kernel (RDS subsystem + io_uring)","affected_versions":"Kernels with CONFIG_RDS, CONFIG_RDS_TCP, and CONFIG_IO_URING enabled","author":"Aaron Esau (stong) — V12 Security Team","patched":false,"date":"2026-05-20","year":"2026","summary":" Metadata Field Value Date Added 2026-05-20 Last Updated 2026-05-19 Author / Researcher Aaron Esau (stong) — V12 Security Team CVE / Advisory N/A Category binary Severity High CVSS Score N/A Status Weaponized Tags LPE, double-free, use-after-free, Linux kernel, RDS, io_uring, page-cache-overwrite, x86_64, local Related N/A Affected Target Field Value Software / System Linux kernel (RDS subsystem + io_uring) Versions Affected Kernels with CONFIG_RDS, CONFIG_RDS_TCP, and CONFIG_IO_URING enabled Language / Platform C, Linux x86_64 Authentication Required No Network Access Required No (local only) Summary PinTheft is a Linux local privilege escalation exploit targeting a double-free in the RDS zerocopy send path (rds_message_zcopy_from_user()). When a multi-page zerocopy send faults on a later page, the error path drops already-pinned pages, but RDS message cleanup later drops them again because the scatterlist state is not cleared. The exploit abuses io_uring fixed buffers to accumulate FOLL_PIN references, drains them via repeated failing RDS sends, frees the target page, reclaims it as page cache for a SUID-root binary, then uses the dangling io_uring fixed-buffer page pointer to overwrite that page cache with a root-shell ELF payload. Confirmed default exposure is limited to distributions shipping the RDS module (notably Arch Linux).","permalink":"/pocs/binary/2026-05-20_pintheft-rds-double-free/"},{"title":"Chrome WebGPU Use-After-Free (CVE-2026-5281)","cve":"CVE-2026-5281","category":"web","severity":"High","cvss_score":8.8,"tags":["use-after-free","WebGPU","Chrome","Dawn","GPU","browser","unauthenticated"],"affected_product":"Google Chrome / Chromium WebGPU (Dawn backend)","affected_versions":"Chrome \u003c 146.0.7680.178","author":"umair-aziz025 (Umair Aziz)","patched":false,"date":"2026-05-18","year":"2026","summary":" Metadata Field Value Date Added 2026-05-18 Last Updated 2026-04-02 Author / Researcher umair-aziz025 (Umair Aziz) CVE / Advisory CVE-2026-5281 Category web Severity High CVSS Score 8.8 (CVSSv3) Status Weaponized Tags use-after-free, WebGPU, Chrome, Dawn, GPU, browser, unauthenticated Related N/A Affected Target Field Value Software / System Google Chrome / Chromium WebGPU (Dawn backend) Versions Affected Chrome \u0026lt; 146.0.7680.178 Language / Platform Python toolkit generating HTML/JavaScript WebGPU payloads; Windows-focused testing Authentication Required No Network Access Required Yes Summary CVE-2026-5281 is a reported WebGPU use-after-free condition in Chrome\u0026rsquo;s Dawn backend. The upstream toolkit provides an aggressive payload generator, scanner, and automated browser runner to reproduce crash-like GPU-failure signals and compare vulnerable vs patched behavior. In vulnerable builds, crafted WebGPU buffer lifecycle patterns can trigger GPU device loss/hang signals and browser instability, with potential downstream impact including denial of service and possible exploit-chain abuse.","permalink":"/pocs/web/2026-05-18_chrome-webgpu-use-after-free/"},{"title":"DirtyDecrypt / DirtyCBC — rxgk Page-Cache Write (Dirty Pipe Variant)","cve":"N/A (reported as duplicate by kernel maintainers; patched on mainline)","category":"binary","severity":"High","cvss_score":0,"tags":["LPE","Linux kernel","page-cache","rxgk","RxRPC","COW","write-primitive","unprivileged","Dirty-Pipe-variant","splice","MSG_SPLICE_PAGES"],"affected_product":"Linux kernel — net/rxrpc (rxgk_decrypt_skb)","affected_versions":"Kernels with RxRPC + rxgk support prior to mainline patch (reported 2026-05-09)","author":"Aaron Esau / V12 security team (v12.sh)","patched":false,"date":"2026-05-18","year":"2026","summary":"Metadata Field Value Date Added 2026-05-18 Last Updated N/A Author / Researcher Aaron Esau / V12 security team (v12.sh) CVE / Advisory N/A (reported as duplicate by kernel maintainers; patched on mainline) Category binary Severity High CVSS Score N/A Status Weaponized Tags LPE, Linux kernel, page-cache, rxgk, RxRPC, COW, write-primitive, unprivileged, Dirty-Pipe-variant, splice, MSG_SPLICE_PAGES Related pocs/binary/2026-05-14_linux-xfrm-rxrpc-lpe/ Affected Target Field Value Software / System Linux kernel — net/rxrpc (rxgk_decrypt_skb) Versions Affected Kernels with RxRPC + rxgk support prior to mainline patch (reported 2026-05-09) Language / Platform C, Linux x86-64 (unprivileged user) Authentication Required No Network Access Required No (local) Summary DirtyDecrypt (also called DirtyCBC) is a variant of the CopyFail / DirtyFrag / Fragnesia bug class. rxgk_decrypt_skb() in net/rxrpc/rxgk_common.h calls skb_to_sgvec() followed by crypto_krb5_decrypt() without first calling skb_cow_data(). The krb5enc AEAD template decrypts in-place before verifying the HMAC, so when skb frag pages are pagecache pages (spliced in via splice → MSG_SPLICE_PAGES → loopback), the decrypt corrupts the page cache. An unprivileged local attacker can use a sliding-window technique to write arbitrary bytes into the pagecache, rewriting /etc/passwd to clear the root password and escalate to root.","permalink":"/pocs/binary/2026-05-18_dirtydecrypt/"},{"title":"TossUp — TerraMaster TOS Unauthenticated Redis Root RCE + NFS LPE","cve":"N/A (vendor confirmed TOS4 is EOL; no fix planned)","category":"network","severity":"Critical","cvss_score":0,"tags":["RCE","unauthenticated","Redis","TerraMaster","NAS","AArch64","root","module-loading","replication-abuse","NFS","no_root_squash","LPE","network"],"affected_product":"TerraMaster TOS3_A1.0 4.2.41, Redis 4.0.10","affected_versions":"TOS3_A1.0 4.2.41 (RTD1296/AArch64); other builds likely affected if same init path","author":"Aaron Esau / V12 security team (v12.sh)","patched":false,"date":"2026-05-18","year":"2026","summary":"Metadata Field Value Date Added 2026-05-18 Last Updated N/A Author / Researcher Aaron Esau / V12 security team (v12.sh) CVE / Advisory N/A (vendor confirmed TOS4 is EOL; no fix planned) Category network Severity Critical CVSS Score N/A Status Weaponized Tags RCE, unauthenticated, Redis, TerraMaster, NAS, AArch64, root, module-loading, replication-abuse, NFS, no_root_squash, LPE, network Related N/A Affected Target Field Value Software / System TerraMaster TOS3_A1.0 4.2.41, Redis 4.0.10 Versions Affected TOS3_A1.0 4.2.41 (RTD1296/AArch64); other builds likely affected if same init path Language / Platform Python 3, C (AArch64 cross-compile); target: Linux/AArch64 NAS Authentication Required No Network Access Required Yes (TCP/6379 to NAS; NAS must be able to connect back to attacker) Summary TossUp is a pair of bugs against TerraMaster TOS NAS devices. The primary issue is that Redis 4.0.10 runs as root and listens on 0.0.0.0:6379 with no authentication — despite /etc/redis.conf containing bind 127.0.0.1, the init script starts Redis as redis-server *:6379 without referencing the config file. An unauthenticated remote attacker with access to TCP/6379 can use standard Redis replication to deliver a malicious AArch64 Redis module, load it, and execute arbitrary commands as root. A separate NFS no_root_squash misconfiguration enables a local privilege escalation for unprivileged NAS users; it is independent of the RCE (which already runs as root).","permalink":"/pocs/network/2026-05-18_tossup-terramaster-redis-rce/"},{"title":"Apache httpd mod_http2 Double-Free Pre-Auth RCE - CVE-2026-23918","cve":"CVE-2026-23918","category":"web","severity":"Critical","cvss_score":0,"tags":["RCE","pre-auth","unauthenticated","double-free","heap-corruption","Apache","httpd","mod_http2","HTTP/2","TLS"],"affected_product":"Apache HTTP Server (httpd) with mod_http2","affected_versions":"2.4.66 (fixed in 2.4.67) when mod_http2 is enabled with multi-threaded MPM (event/worker)","author":"striga-ai, Bartlomiej Dmitruk, Stanislaw Strzalkowski","patched":true,"date":"2026-05-17","year":"2026","summary":"Metadata Field Value Date Added 2026-05-17 Last Updated 2026-05-11 Author / Researcher striga-ai, Bartlomiej Dmitruk, Stanislaw Strzalkowski CVE / Advisory CVE-2026-23918 Category web Severity Critical CVSS Score N/A Status Weaponized Tags RCE, pre-auth, unauthenticated, double-free, heap-corruption, Apache, httpd, mod_http2, HTTP/2, TLS Related N/A Affected Target Field Value Software / System Apache HTTP Server (httpd) with mod_http2 Versions Affected 2.4.66 (fixed in 2.4.67) when mod_http2 is enabled with multi-threaded MPM (event/worker) Language / Platform C (target), Python 3 (PoC), Linux/Docker lab Authentication Required No (pre-authentication) Network Access Required Yes (HTTPS/HTTP2 access) Summary CVE-2026-23918 is a pre-authentication double-free vulnerability in Apache httpd\u0026rsquo;s mod_http2 stream cleanup path. Under affected configurations, a remote attacker can trigger memory corruption over HTTP/2 before authentication. The upstream PoC demonstrates probabilistic remote command execution by combining a trigger path with memory spraying. Apache fixed this issue in 2.4.67.","permalink":"/pocs/web/2026-05-17_apache-httpd-mod-http2-double-free/"},{"title":"Azure Networking Privilege Escalation via Missing Privilege Check","cve":"CVE-2025-54914","category":"cloud","severity":"Critical","cvss_score":10,"tags":["privilege-escalation","Azure","cloud","lateral-movement","API","routing","networking","no-user-interaction"],"affected_product":"Microsoft Azure Networking service (GetRouteTable API)","affected_versions":"Azure Networking API version 2025-09-01 and earlier (patched 2025-09-05)","author":"Mark Mallia (mrk336)","patched":true,"date":"2026-05-17","year":"2026","summary":" Metadata Field Value Date Added 2026-05-17 Last Updated 2025-09-08 Author / Researcher Mark Mallia (mrk336) CVE / Advisory CVE-2025-54914 Category cloud Severity Critical CVSS Score 10.0 (CVSSv3) Status Researched Tags privilege-escalation, Azure, cloud, lateral-movement, API, routing, networking, no-user-interaction Related N/A Affected Target Field Value Software / System Microsoft Azure Networking service (GetRouteTable API) Versions Affected Azure Networking API version 2025-09-01 and earlier (patched 2025-09-05) Language / Platform Python 3.x; Microsoft Azure cloud environment Authentication Required Partial (requires Azure read permissions on a virtual network, e.g., Network Reader role) Network Access Required Yes (HTTPS access to Azure management endpoint: management.azure.com) Affected Target Field Value Software / System Microsoft Azure Networking (Virtual Network GetRouteTable API) Versions Affected Azure Networking API version 2025-09-01; patched in update released 2025-09-05 Language / Platform Python 3.x; Azure REST API Authentication Required Partial (valid Azure bearer token with read access to target virtual network) Network Access Required Yes (HTTPS to management.azure.com) Summary CVE-2025-54914 is a critical privilege escalation vulnerability (CVSS 10.0) in Microsoft Azure Networking. Discovered by Mark Mallia and disclosed on September 4, 2025, the flaw arises from a missing authorization check in the GetRouteTable API code path. A caller holding only read permissions on a virtual network can create new route objects within any subnet of that VNet without possessing the required write/network-contributor privileges. Successful exploitation allows an attacker to inject malicious routing policies, redirect traffic across subnets, and achieve lateral movement within the tenant\u0026rsquo;s Azure networking infrastructure. The vulnerability was patched by Microsoft on September 5, 2025.","permalink":"/pocs/cloud/2026-05-17_azure-networking-privilege-escalation/"},{"title":"Confluence Post-Auth RCE - CVE-2024-21683","cve":"CVE-2024-21683","category":"web","severity":"High","cvss_score":8.3,"tags":["RCE","Confluence","post-auth","Rhino","JavaScript","Java","deserialization","Metasploit","red-team"],"affected_product":"Atlassian Confluence Data Center and Server","affected_versions":"All versions before the May 2024 security patch; exact range per Atlassian advisory","author":"W01fh4cker (credit to realalphaman_ for original research)","patched":false,"date":"2026-05-17","year":"2026","summary":" Metadata Field Value Date Added 2026-05-17 Last Updated 2024-05-27 Author / Researcher W01fh4cker (credit to realalphaman_ for original research) CVE / Advisory CVE-2024-21683 Category web Severity High CVSS Score 8.3 (CVSSv3) Status Weaponized Tags RCE, Confluence, post-auth, Rhino, JavaScript, Java, deserialization, Metasploit, red-team Related N/A Affected Target Field Value Software / System Atlassian Confluence Data Center and Server Versions Affected All versions before the May 2024 security patch; exact range per Atlassian advisory Language / Platform Java / Rhino JavaScript engine (RhinoLanguageParser) Authentication Required Yes (Confluence administrator account required) Network Access Required Yes Summary CVE-2024-21683 is an authenticated Remote Code Execution vulnerability in Atlassian Confluence Data Center and Server affecting the \u0026ldquo;Add a New Language\u0026rdquo; feature in the Code Macro plugin. An authenticated Confluence administrator can upload a malicious .js file via the /admin/plugins/newcode/addlanguage.action endpoint, which is parsed by the RhinoLanguageParser (Mozilla Rhino JavaScript engine). Because Rhino can instantiate Java objects, the uploaded script can execute arbitrary Java code (e.g., new java.lang.ProcessBuilder([\u0026quot;calc.exe\u0026quot;]).start()), achieving RCE in the context of the Confluence server process. A Metasploit module is available.","permalink":"/pocs/web/2026-05-17_confluence-postauth-rce-cve-2024-21683/"},{"title":"Confluence SSTI RCE - CVE-2023-22527","cve":"CVE-2023-22527","category":"web","severity":"Critical","cvss_score":10,"tags":["RCE","Confluence","SSTI","Freemarker","OGNL","unauthenticated","Java","Atlassian","ransomware"],"affected_product":"Atlassian Confluence Data Center and Confluence Server","affected_versions":"8.x before 8.5.4 (LTS); versions 8.0.x, 8.1.x, 8.2.x, 8.3.x, 8.4.x affected; 7.x NOT affected","author":"Avento (jeyiuwai)","patched":true,"date":"2026-05-17","year":"2026","summary":" Metadata Field Value Date Added 2026-05-17 Last Updated 2024-01-23 Author / Researcher Avento (jeyiuwai) CVE / Advisory CVE-2023-22527 Category web Severity Critical CVSS Score 10.0 (CVSSv3) Status Weaponized Tags RCE, Confluence, SSTI, Freemarker, OGNL, unauthenticated, Java, Atlassian, ransomware Related N/A Affected Target Field Value Software / System Atlassian Confluence Data Center and Confluence Server Versions Affected 8.x before 8.5.4 (LTS); versions 8.0.x, 8.1.x, 8.2.x, 8.3.x, 8.4.x affected; 7.x NOT affected Language / Platform Java / Apache Tomcat, Apache Struts 2, Velocity/Freemarker Authentication Required No Network Access Required Yes Summary CVE-2023-22527 is a CVSS 10.0 unauthenticated Remote Code Execution vulnerability in Atlassian Confluence Data Center and Server. The vulnerability is a Server-Side Template Injection (SSTI) in the Velocity/Freemarker template engine, reachable via the /template/aui/text-inline.vm endpoint without authentication. By injecting OGNL expressions into the label parameter and a command into the x parameter, an attacker can trigger arbitrary OS command execution via freemarker.template.utility.Execute. The vulnerability has been actively exploited by ransomware groups and nation-state actors.","permalink":"/pocs/web/2026-05-17_confluence-ssti-rce-cve-2023-22527/"},{"title":"Copy Fail Linux Kernel Local Privilege Escalation (CVE-2026-31431)","cve":"CVE-2026-31431","category":"binary","severity":"High","cvss_score":0,"tags":["LPE","Linux kernel","AF_ALG","authenc","splice","local","Python"],"affected_product":"Linux kernel (crypto / AF_ALG AEAD path)","affected_versions":"Confirmed on Ubuntu 24.04 (6.17.0-1007-aws), Amazon Linux 2023 (6.18.8-9.213.amzn2023), RHEL 10.1 (6.12.0-124.45.1.el10_1), SUSE 16 (6.12.0-160000.9-default)","author":"Xint Code (Theori), Juno Im","patched":false,"date":"2026-05-17","year":"2026","summary":" Metadata Field Value Date Added 2026-05-17 Last Updated 2026-04-29 Author / Researcher Xint Code (Theori), Juno Im CVE / Advisory CVE-2026-31431 Category binary Severity High CVSS Score N/A Status Weaponized Tags LPE, Linux kernel, AF_ALG, authenc, splice, local, Python Related N/A Affected Target Field Value Software / System Linux kernel (crypto / AF_ALG AEAD path) Versions Affected Confirmed on Ubuntu 24.04 (6.17.0-1007-aws), Amazon Linux 2023 (6.18.8-9.213.amzn2023), RHEL 10.1 (6.12.0-124.45.1.el10_1), SUSE 16 (6.12.0-160000.9-default) Language / Platform Python, Linux Authentication Required Yes (local unprivileged shell) Network Access Required Local only Summary Copy Fail (CVE-2026-31431) is a Linux kernel local privilege-escalation vulnerability published by Theori (Xint Code). The provided PoC abuses AF_ALG AEAD socket operations with crafted parameters and splice() writes to patch privileged executable bytes and obtain root execution. Public exploit code is available and demonstrates practical exploitation against multiple major Linux distributions.","permalink":"/pocs/binary/2026-05-17_copy-fail-cve-2026-31431/"},{"title":"Erlang/OTP SSH Pre-Auth RCE - CVE-2025-32433","cve":"CVE-2025-32433","category":"network","severity":"Critical","cvss_score":10,"tags":["RCE","pre-auth","unauthenticated","SSH","Erlang","OTP","RabbitMQ","CouchDB","ICS","OT","reverse-shell","in-the-wild"],"affected_product":"Erlang/OTP SSH server daemon","affected_versions":"OTP-27.3.2 and earlier; OTP-26.2.5.10 and earlier; OTP-25.3.2.19 and earlier","author":"omer-efe-curkus","patched":true,"date":"2026-05-17","year":"2026","summary":" Metadata Field Value Date Added 2026-05-17 Last Updated 2025-08-04 Author / Researcher omer-efe-curkus CVE / Advisory CVE-2025-32433 Category network Severity Critical CVSS Score 10.0 (CVSSv3) Status Patched Tags RCE, pre-auth, unauthenticated, SSH, Erlang, OTP, RabbitMQ, CouchDB, ICS, OT, reverse-shell, in-the-wild Related N/A Affected Target Field Value Software / System Erlang/OTP SSH server daemon Versions Affected OTP-27.3.2 and earlier; OTP-26.2.5.10 and earlier; OTP-25.3.2.19 and earlier Language / Platform Erlang, Python (exploit), Linux/any OS running Erlang OTP Authentication Required No (pre-authentication) Network Access Required Yes (TCP port 22 or custom SSH port) Summary CVE-2025-32433 is a critical pre-authentication remote code execution vulnerability in the Erlang/OTP SSH server with a CVSS score of 10.0. An attacker with network access to any service built on Erlang/OTP\u0026rsquo;s SSH daemon can execute arbitrary OS commands without providing valid credentials by sending specially crafted SSH protocol messages before the authentication phase completes. Any application using Erlang\u0026rsquo;s built-in SSH library is affected, including RabbitMQ, CouchDB, and OT/ICS control systems built on Erlang. The vulnerability was exploited in the wild against OT/ICS networks.","permalink":"/pocs/network/2026-05-17_erlang-otp-ssh-preauth-rce/"},{"title":"Fortinet FortiCloud SSO Authentication Bypass","cve":"CVE-2025-59718, CVE-2025-59719 (Advisory: FG-IR-25-647)","category":"network","severity":"Critical","cvss_score":9.8,"tags":["auth-bypass","SAML","SSO","unauthenticated","FortiOS","FortiProxy","FortiSwitchManager","active-exploitation"],"affected_product":"Fortinet FortiOS, FortiProxy, FortiSwitchManager (FortiCloud SSO feature)","affected_versions":"FortiOS prior to 7.4.9; see Fortinet advisory FG-IR-25-647 for full version matrix","author":"exfil0","patched":false,"date":"2026-05-17","year":"2026","summary":" Metadata Field Value Date Added 2026-05-17 Last Updated 2025-12-22 Author / Researcher exfil0 CVE / Advisory CVE-2025-59718, CVE-2025-59719 (Advisory: FG-IR-25-647) Category network Severity Critical CVSS Score 9.8 (CVSSv3) Status Weaponized Tags auth-bypass, SAML, SSO, unauthenticated, FortiOS, FortiProxy, FortiSwitchManager, active-exploitation Related N/A Affected Target Field Value Software / System Fortinet FortiOS, FortiProxy, FortiSwitchManager (FortiCloud SSO feature) Versions Affected FortiOS prior to 7.4.9; see Fortinet advisory FG-IR-25-647 for full version matrix Language / Platform Python 3.8+; targets any Fortinet product with FortiCloud SSO enabled Authentication Required No (unauthenticated) Network Access Required Yes (network access to management interface) Summary CVE-2025-59718 and CVE-2025-59719 are closely related authentication-bypass vulnerabilities (CWE-347: Improper Verification of Cryptographic Signature) in Fortinet products that use the FortiCloud SSO login feature. Both were disclosed by Fortinet on 9 December 2025. An unauthenticated remote attacker can craft and submit an unsigned SAML response to the FortiCloud SSO endpoint, causing the device to authenticate the attacker with administrative privileges. As of December 22, 2025, this vulnerability is actively exploited in the wild. Immediate patching and disabling of FortiCloud SSO is strongly recommended.","permalink":"/pocs/network/2026-05-17_fortinet-forticloud-sso-auth-bypass/"},{"title":"Fortinet FortiManager FortiJump Unauthenticated RCE (CVE-2024-47575)","cve":"CVE-2024-47575","category":"network","severity":"Critical","cvss_score":9.8,"tags":["RCE","unauthenticated","FortiManager","fgfmd","zero-day","KEV"],"affected_product":"Fortinet FortiManager / FortiManager Cloud (fgfmd daemon)","affected_versions":"FortiManager 7.6.0; 7.4.0–7.4.4; 7.2.0–7.2.7; 7.0.0–7.0.12; 6.4.0–6.4.14; 6.2.0–6.2.12; FortiManager Cloud 7.4.1–7.4.4, 7.2.1–7.2.7, 7.0.1–7.0.12, 6.4","author":"watchTowr Labs (Sina Kheirkhah)","patched":false,"date":"2026-05-17","year":"2026","summary":" Metadata Field Value Date Added 2026-05-17 Author / Researcher watchTowr Labs (Sina Kheirkhah) CVE / Advisory CVE-2024-47575 Category network Severity Critical CVSS Score 9.8 (CVSSv3) Status Weaponized Tags RCE, unauthenticated, FortiManager, fgfmd, zero-day, KEV Related N/A Affected Target Field Value Software / System Fortinet FortiManager / FortiManager Cloud (fgfmd daemon) Versions Affected FortiManager 7.6.0; 7.4.0–7.4.4; 7.2.0–7.2.7; 7.0.0–7.0.12; 6.4.0–6.4.14; 6.2.0–6.2.12; FortiManager Cloud 7.4.1–7.4.4, 7.2.1–7.2.7, 7.0.1–7.0.12, 6.4 Language / Platform Network-exposed FortiManager management plane over TLS (port 541 / fgfmd protocol) Authentication Required No Network Access Required Yes Summary CVE-2024-47575 (FortiJump) is a missing-authentication flaw in FortiManager\u0026rsquo;s fgfmd daemon that lets a remote unauthenticated attacker execute arbitrary commands. Public exploit code demonstrates vulnerability detection and command execution primitives over the management protocol. Reporting indicates this bug was exploited as a zero-day from at least June 2024 and is tracked in CISA\u0026rsquo;s Known Exploited Vulnerabilities catalog.","permalink":"/pocs/network/2026-05-17_fortimanager-fortijump-rce-cve-2024-47575/"},{"title":"IngressNightmare - Kubernetes Ingress-NGINX Unauthenticated RCE","cve":"CVE-2025-1974 (primary); also CVE-2025-1097, CVE-2025-1098, CVE-2025-24514","category":"cloud","severity":"Critical","cvss_score":9.8,"tags":["RCE","Kubernetes","ingress-nginx","admission-controller","unauthenticated","nginx-config-injection","cluster-takeover","k8s","shared-object","reverse-shell"],"affected_product":"Kubernetes Ingress-NGINX Controller (ingress-nginx)","affected_versions":"Ingress-NGINX Controller prior to 1.12.1 and prior to 1.11.5","author":"Hakai Security (hakaioffsec) / QuimeraX Intelligence; original vulnerability discovery by Wiz Research","patched":false,"date":"2026-05-17","year":"2026","summary":" Metadata Field Value Date Added 2026-05-17 Last Updated 2025-03-26 Author / Researcher Hakai Security (hakaioffsec) / QuimeraX Intelligence; original vulnerability discovery by Wiz Research CVE / Advisory CVE-2025-1974 (primary); also CVE-2025-1097, CVE-2025-1098, CVE-2025-24514 Category cloud Severity Critical CVSS Score 9.8 (CVSSv3) Status Weaponized Tags RCE, Kubernetes, ingress-nginx, admission-controller, unauthenticated, nginx-config-injection, cluster-takeover, k8s, shared-object, reverse-shell Related N/A Affected Target Field Value Software / System Kubernetes Ingress-NGINX Controller (ingress-nginx) Versions Affected Ingress-NGINX Controller prior to 1.12.1 and prior to 1.11.5 Language / Platform Python 3.x (exploit), C (shared object payload); Kubernetes cluster environment Authentication Required No (unauthenticated, reachable from within pod network) Network Access Required Yes (access to ingress controller pod network or admission webhook endpoint) Summary IngressNightmare is a chain of critical vulnerabilities (CVE-2025-1097, CVE-2025-1098, CVE-2025-24514, CVE-2025-1974) in the Kubernetes Ingress-NGINX admission controller. Discovered by Wiz Research, the vulnerabilities allow an unauthenticated attacker reachable from within the Kubernetes pod network to achieve Remote Code Execution on the ingress-nginx controller pod and subsequently read all secrets across all namespaces, enabling full cluster takeover. This PoC was developed by Hakai Security / QuimeraX Intelligence after Wiz did not release a functional exploit. It exploits unsafe nginx configuration injection via the admission webhook, uploading a malicious shared object as the ssl_engine directive to obtain a reverse shell.","permalink":"/pocs/cloud/2026-05-17_ingressnightmare-k8s-ingress-nginx-rce/"},{"title":"Ivanti Connect Secure Pre-Auth RCE (Stack Overflow)","cve":"CVE-2025-0282","category":"network","severity":"Critical","cvss_score":9,"tags":["RCE","stack-overflow","buffer-overflow","pre-auth","unauthenticated","VPN","zero-day","active-exploitation","Ivanti","TLS"],"affected_product":"Ivanti Connect Secure, Ivanti Policy Secure, Ivanti ZTA Gateways","affected_versions":"Ivanti Connect Secure prior to 22.7R2.5; Policy Secure prior to 22.7R1.2; ZTA Gateways prior to 22.8R2.2","author":"Sina Kheirkhah (@SinSinology) of watchTowr Labs","patched":false,"date":"2026-05-17","year":"2026","summary":" Metadata Field Value Date Added 2026-05-17 Last Updated 2025-01-18 Author / Researcher Sina Kheirkhah (@SinSinology) of watchTowr Labs CVE / Advisory CVE-2025-0282 Category network Severity Critical CVSS Score 9.0 (CVSSv3) Status Weaponized Tags RCE, stack-overflow, buffer-overflow, pre-auth, unauthenticated, VPN, zero-day, active-exploitation, Ivanti, TLS Related N/A Affected Target Field Value Software / System Ivanti Connect Secure, Ivanti Policy Secure, Ivanti ZTA Gateways Versions Affected Ivanti Connect Secure prior to 22.7R2.5; Policy Secure prior to 22.7R1.2; ZTA Gateways prior to 22.8R2.2 Language / Platform C (openconnect-based PoC); target runs on custom Linux-based appliance Authentication Required No (pre-authentication) Network Access Required Yes (TCP port 443, HTTPS/TLS) Summary CVE-2025-0282 is a pre-authentication stack-based buffer overflow in the IFT (IF-T) TLS protocol handling code of Ivanti Connect Secure VPN appliances. Discovered and disclosed by Sina Kheirkhah of watchTowr Labs, this zero-day was confirmed by Mandiant as actively exploited in the wild before vendor notification. An unauthenticated remote attacker can overflow a stack buffer during TLS/IF-T handshake processing, achieving Remote Code Execution on the appliance with no user interaction required. The PoC is a patched fork of the OpenConnect VPN client that implements the exploit in \u0026ldquo;Normal\u0026rdquo; (reachability probe) and \u0026ldquo;Exploit\u0026rdquo; (overflow trigger) modes.","permalink":"/pocs/network/2026-05-17_ivanti-connect-secure-rce/"},{"title":"Jenkins CLI Arbitrary File Read to RCE (CVE-2024-23897)","cve":"CVE-2024-23897","category":"web","severity":"Critical","cvss_score":9.8,"tags":["arbitrary-file-read","Jenkins","CLI","credential-theft","RCE","unauthenticated","KEV"],"affected_product":"Jenkins controller (CLI endpoint)","affected_versions":"Jenkins \u003c= 2.441, Jenkins LTS \u003c= 2.426.2","author":"godylockz (source PoC), Jenkins/SonarSource advisory ecosystem","patched":false,"date":"2026-05-17","year":"2026","summary":" Metadata Field Value Date Added 2026-05-17 Author / Researcher godylockz (source PoC), Jenkins/SonarSource advisory ecosystem CVE / Advisory CVE-2024-23897 Category web Severity Critical CVSS Score 9.8 (CVSSv3) Status Weaponized Tags arbitrary-file-read, Jenkins, CLI, credential-theft, RCE, unauthenticated, KEV Related N/A Affected Target Field Value Software / System Jenkins controller (CLI endpoint) Versions Affected Jenkins \u0026lt;= 2.441, Jenkins LTS \u0026lt;= 2.426.2 Language / Platform Java, Jenkins web/controller deployments Authentication Required No Network Access Required Yes Summary CVE-2024-23897 is an arbitrary file read vulnerability in the Jenkins CLI command parser. The parser expands arguments that start with @ and can disclose controller-local files to unauthenticated attackers in common deployments. This disclosure can expose secrets and credentials (for example key material and user data), enabling attacker pivoting to full Jenkins compromise and remote code execution paths. The vulnerability is listed in CISA KEV and has been publicly associated with RansomEXX activity.","permalink":"/pocs/web/2026-05-17_jenkins-cli-arbitrary-file-read-rce/"},{"title":"Linux nf_tables Use-After-Free Local Privilege Escalation (CVE-2024-1086)","cve":"CVE-2024-1086","category":"binary","severity":"High","cvss_score":7.8,"tags":["LPE","UAF","Linux kernel","nf_tables","netfilter","CISA KEV","ransomware","x64"],"affected_product":"Linux kernel (netfilter nf_tables subsystem)","affected_versions":"v5.14 to v6.6 (excluding patched branches: v5.15.149+, v6.1.76+, v6.6.15+)","author":"Notselwyn","patched":true,"date":"2026-05-17","year":"2026","summary":" Metadata Field Value Date Added 2026-05-17 Last Updated 2024-03-25 Author / Researcher Notselwyn CVE / Advisory CVE-2024-1086 Category binary Severity High CVSS Score 7.8 (CVSSv3) Status Weaponized Tags LPE, UAF, Linux kernel, nf_tables, netfilter, CISA KEV, ransomware, x64 Related N/A Affected Target Field Value Software / System Linux kernel (netfilter nf_tables subsystem) Versions Affected v5.14 to v6.6 (excluding patched branches: v5.15.149+, v6.1.76+, v6.6.15+) Language / Platform C, Linux x64/amd64 Authentication Required No (unprivileged local user with user namespaces enabled) Network Access Required No (local only) Summary CVE-2024-1086 is a use-after-free vulnerability in the Linux kernel\u0026rsquo;s netfilter nf_tables subsystem that allows an unprivileged local user to escalate privileges to root. The exploit achieves a 99.4% success rate on KernelCTF images and works universally across Debian, Ubuntu, and KernelCTF kernels between v5.14 and v6.6. It has been actively weaponized by ransomware groups RansomHub and Akira and is listed on the CISA Known Exploited Vulnerabilities (KEV) catalog. The only prerequisites are user namespaces and nf_tables being enabled (the default on most major distributions).","permalink":"/pocs/binary/2026-05-17_linux-nftables-uaf-lpe/"},{"title":"Linux vsock Use-After-Free VM Escape (CVE-2025-21756)","cve":"CVE-2025-21756","category":"binary","severity":"High","cvss_score":7.8,"tags":["UAF","Linux kernel","vsock","VM escape","container escape","virtualization","LPE","x64"],"affected_product":"Linux kernel (vsock / virtual socket subsystem)","affected_versions":"Linux kernel 6.6.75 (and related; specific to vsock subsystem)","author":"hoefler02","patched":true,"date":"2026-05-17","year":"2026","summary":" Metadata Field Value Date Added 2026-05-17 Last Updated 2025-04-18 Author / Researcher hoefler02 CVE / Advisory CVE-2025-21756 Category binary Severity High CVSS Score 7.8 (CVSSv3) Status Weaponized Tags UAF, Linux kernel, vsock, VM escape, container escape, virtualization, LPE, x64 Related N/A Affected Target Field Value Software / System Linux kernel (vsock / virtual socket subsystem) Versions Affected Linux kernel 6.6.75 (and related; specific to vsock subsystem) Language / Platform C, Linux x64 Authentication Required No (code execution inside a VM/container) Network Access Required No (local — requires foothold inside VM) Summary CVE-2025-21756 is a use-after-free vulnerability in the Linux kernel\u0026rsquo;s vsock (virtual socket) subsystem. An attacker with code execution inside a virtual machine can exploit this bug to escape the VM boundary and gain root-level code execution on the hypervisor host. The vulnerability was researched and published by hoefler02 as their first Linux kernel exploit, accompanied by a full technical write-up. It targets Linux kernel 6.6.75 specifically and demonstrates the attacker-controlled UAF-to-privilege-escalation primitive that enables a complete VM breakout.","permalink":"/pocs/binary/2026-05-17_linux-vsock-vm-escape/"},{"title":"Next.js App Router Segment-Prefetch Middleware Bypass (CVE-2026-44575)","cve":"CVE-2026-44575","category":"web","severity":"High","cvss_score":7.5,"tags":["authorization-bypass","middleware-bypass","App-Router","segment-prefetch","RSC","Next.js","unauthenticated"],"affected_product":"Next.js App Router applications that rely on middleware.ts matchers to protect routes","affected_versions":"15.2.0–15.5.15 and 16.0.0–16.2.4 (fixed in 15.5.16 / 16.2.5)","author":"dwisiswant0","patched":true,"date":"2026-05-17","year":"2026","summary":" Metadata Field Value Date Added 2026-05-17 Last Updated 2026-05-09 Author / Researcher dwisiswant0 CVE / Advisory CVE-2026-44575 Category web Severity High CVSS Score 7.5 (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N) Status Weaponized Tags authorization-bypass, middleware-bypass, App-Router, segment-prefetch, RSC, Next.js, unauthenticated Related N/A Affected Target Field Value Software / System Next.js App Router applications that rely on middleware.ts matchers to protect routes Versions Affected 15.2.0–15.5.15 and 16.0.0–16.2.4 (fixed in 15.5.16 / 16.2.5) Language / Platform JavaScript / Node.js Authentication Required No Network Access Required Yes Summary CVE-2026-44575 is an authorization bypass in Next.js App Router middleware matching. Vulnerable versions compile middleware matchers for canonical paths and legacy Pages Router data routes, but omit the App Router transport variants used for .rsc and segment-prefetch fetches. An unauthenticated attacker can request those alternate URL shapes for a protected page and receive the same page payload without the middleware auth check running.","permalink":"/pocs/web/2026-05-17_nextjs-segment-prefetch-middleware-bypass/"},{"title":"Next.js beforeInteractive Script XSS (CVE-2026-44580)","cve":"CVE-2026-44580","category":"web","severity":"Medium","cvss_score":6.1,"tags":["XSS","next/script","beforeInteractive","Next.js","App-Router","unauthenticated"],"affected_product":"Next.js applications using next/script with strategy=\"beforeInteractive\"","affected_versions":"13.0.0–15.5.15 and 16.0.0–16.2.4 (fixed in 15.5.16 / 16.2.5)","author":"dwisiswant0","patched":true,"date":"2026-05-17","year":"2026","summary":" Metadata Field Value Date Added 2026-05-17 Author / Researcher dwisiswant0 CVE / Advisory CVE-2026-44580 Category web Severity Medium CVSS Score 6.1 (CVSSv3) Status Weaponized Tags XSS, next/script, beforeInteractive, Next.js, App-Router, unauthenticated Related N/A Affected Target Field Value Software / System Next.js applications using next/script with strategy=\u0026quot;beforeInteractive\u0026quot; Versions Affected 13.0.0–15.5.15 and 16.0.0–16.2.4 (fixed in 15.5.16 / 16.2.5) Language / Platform JavaScript / Node.js Authentication Required No Network Access Required Yes Summary CVE-2026-44580 is an XSS vulnerability in Next.js next/script rendering for beforeInteractive scripts. Vulnerable versions serialize script props with JSON.stringify and inject them into inline HTML via dangerouslySetInnerHTML without safe HTML escaping for \u0026lt;, \u0026gt;, and related characters. If attacker-controlled input reaches script props (for example through forwarded query parameters into data-* fields), payloads can break out of the inline script context and execute arbitrary JavaScript in the victim origin. The issue is rated Medium (CVSS 6.1) and fixed in 15.5.16 / 16.2.5.","permalink":"/pocs/web/2026-05-17_nextjs-beforeinteractive-script-xss/"},{"title":"Next.js Cache Components Connection Exhaustion DoS (CVE-2026-44579)","cve":"CVE-2026-44579","category":"web","severity":"High","cvss_score":7.5,"tags":["DoS","connection-exhaustion","next-resume","Next.js","cache-components","unauthenticated"],"affected_product":"Next.js applications using Cache Components / Partial Prerendering (PPR)","affected_versions":"15.0.0–15.5.15 and 16.0.0–16.2.4 (fixed in 15.5.16 / 16.2.5)","author":"dwisiswant0","patched":true,"date":"2026-05-17","year":"2026","summary":" Metadata Field Value Date Added 2026-05-17 Author / Researcher dwisiswant0 CVE / Advisory CVE-2026-44579 Category web Severity High CVSS Score 7.5 (CVSSv3) Status Weaponized Tags DoS, connection-exhaustion, next-resume, Next.js, cache-components, unauthenticated Related N/A Affected Target Field Value Software / System Next.js applications using Cache Components / Partial Prerendering (PPR) Versions Affected 15.0.0–15.5.15 and 16.0.0–16.2.4 (fixed in 15.5.16 / 16.2.5) Language / Platform JavaScript / Node.js Authentication Required No Network Access Required Yes Summary CVE-2026-44579 is a denial-of-service issue in Next.js Cache Components (PPR) request handling. Before the fix, a crafted client request could force the server into the next-resume flow and trigger expensive request-body processing and resume rendering work. Repeated crafted POST requests can leave connections occupied long enough to exhaust worker/file-descriptor capacity and degrade or deny service. The issue is rated High (CVSS 7.5) and fixed in 15.5.16 / 16.2.5.","permalink":"/pocs/web/2026-05-17_nextjs-cache-components-connection-exhaustion-dos/"},{"title":"Next.js CSP Nonce Cache-Poisoned XSS (CVE-2026-44581)","cve":"CVE-2026-44581","category":"web","severity":"Medium","cvss_score":4.7,"tags":["XSS","cache-poisoning","CSP-nonce","Next.js","App-Router","unauthenticated"],"affected_product":"Next.js App Router applications using CSP nonces","affected_versions":"13.4.0–15.5.15 and 16.0.0–16.2.4 (fixed in 15.5.16 / 16.2.5)","author":"dwisiswant0","patched":true,"date":"2026-05-17","year":"2026","summary":" Metadata Field Value Date Added 2026-05-17 Author / Researcher dwisiswant0 CVE / Advisory CVE-2026-44581 Category web Severity Medium CVSS Score 4.7 (CVSSv3) Status Weaponized Tags XSS, cache-poisoning, CSP-nonce, Next.js, App-Router, unauthenticated Related N/A Affected Target Field Value Software / System Next.js App Router applications using CSP nonces Versions Affected 13.4.0–15.5.15 and 16.0.0–16.2.4 (fixed in 15.5.16 / 16.2.5) Language / Platform JavaScript / Node.js Authentication Required No Network Access Required Yes Summary CVE-2026-44581 is a reflected XSS issue in Next.js App Router nonce handling. Malformed nonce values from a Content-Security-Policy request header can be reflected into rendered HTML script attributes without safe attribute-context escaping. In caching deployments, attackers can poison cache entries with malicious markup so later visitors receive and execute attacker-controlled script logic. The issue is rated Medium (CVSS 4.7) and is fixed in 15.5.16 / 16.2.5.","permalink":"/pocs/web/2026-05-17_nextjs-csp-nonce-cache-poisoned-xss/"},{"title":"Next.js Dynamic Route Injection Auth Bypass (CVE-2026-44574)","cve":"CVE-2026-44574","category":"web","severity":"High","cvss_score":8.1,"tags":["auth-bypass","dynamic-route","nxtP-injection","middleware-bypass","param-smuggling","Next.js","App-Router","unauthenticated"],"affected_product":"Next.js App Router with dynamic route segments and middleware-based access control","affected_versions":"Next.js 15.4.0 - 15.5.15 and 16.0.0 - 16.2.4","author":"dwisiswant0","patched":false,"date":"2026-05-17","year":"2026","summary":" Metadata Field Value Date Added 2026-05-17 Last Updated 2026-05-08 Author / Researcher dwisiswant0 CVE / Advisory CVE-2026-44574 Category web Severity High CVSS Score 8.1 (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N) Status Weaponized Tags auth-bypass, dynamic-route, nxtP-injection, middleware-bypass, param-smuggling, Next.js, App-Router, unauthenticated Related N/A Affected Target Field Value Software / System Next.js App Router with dynamic route segments and middleware-based access control Versions Affected Next.js 15.4.0 - 15.5.15 and 16.0.0 - 16.2.4 Language / Platform JavaScript / Node.js Authentication Required No Network Access Required Yes Summary CVE-2026-44574 is an authentication bypass in Next.js App Router applications that use middleware to protect dynamic route pages. Specially crafted query parameters (nxtP* / nxtI* internal Next.js route params) injected on a public URL cause the App Router rendering layer to invoke and render a protected dynamic route page while middleware only sees the benign public pathname and applies no access control. A second bypass arm exploits a double-encoding mismatch in client/route-params.ts via %252F (double-encoded slash) in the pathname. In both cases the visible request path differs from what the rendering layer processes, allowing middleware-protected content to be reached without authorization. Rated CVSS 8.1 High with no known active exploitation.","permalink":"/pocs/web/2026-05-17_nextjs-dynamic-route-injection-auth-bypass/"},{"title":"Next.js i18n Middleware Bypass (CVE-2026-44573)","cve":"CVE-2026-44573","category":"web","severity":"High","cvss_score":7.5,"tags":["middleware-bypass","i18n","_next/data","Pages-Router","authorization-bypass","information-disclosure","Next.js","unauthenticated"],"affected_product":"Next.js Pages Router with i18n configuration","affected_versions":"Next.js 12.2.0 - 15.5.15 and 16.0.0 - 16.2.4","author":"dwisiswant0","patched":false,"date":"2026-05-17","year":"2026","summary":" Metadata Field Value Date Added 2026-05-17 Last Updated 2026-05-08 Author / Researcher dwisiswant0 CVE / Advisory CVE-2026-44573 Category web Severity High CVSS Score 7.5 (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N) Status Weaponized Tags middleware-bypass, i18n, _next/data, Pages-Router, authorization-bypass, information-disclosure, Next.js, unauthenticated Related N/A Affected Target Field Value Software / System Next.js Pages Router with i18n configuration Versions Affected Next.js 12.2.0 - 15.5.15 and 16.0.0 - 16.2.4 Language / Platform JavaScript / Node.js Authentication Required No Network Access Required Yes Summary CVE-2026-44573 is an authorization bypass in Next.js Pages Router applications that use the i18n configuration. The middleware matcher regex\u0026rsquo;s i18n branch does not correctly cover all locale-prefix permutations of _next/data/\u0026lt;buildId\u0026gt;/\u0026lt;page\u0026gt;.json URLs. As a result, requesting the no-locale or wrong-locale variant of a data URL bypasses middleware entirely, allowing unauthenticated retrieval of getServerSideProps JSON payloads for pages that middleware was supposed to protect. The buildId required for the attack is trivially discoverable from any public HTML response. Rated CVSS 7.5 High with no known active exploitation.","permalink":"/pocs/web/2026-05-17_nextjs-i18n-middleware-bypass/"},{"title":"Next.js Image Optimization API OOM DoS (Self-Hosted) (CVE-2026-44577)","cve":"CVE-2026-44577","category":"web","severity":"Medium","cvss_score":5.9,"tags":["DoS","OOM","image-optimizer","Next.js","self-hosted","unauthenticated"],"affected_product":"Next.js Image Optimization API (/_next/image) on self-hosted deployments","affected_versions":"\u003e=15.0.0, \u003c15.5.16 and \u003e=16.0.0, \u003c16.2.5","author":"dwisiswant0","patched":false,"date":"2026-05-17","year":"2026","summary":" Metadata Field Value Date Added 2026-05-17 Author / Researcher dwisiswant0 CVE / Advisory CVE-2026-44577 Category web Severity Medium CVSS Score 5.9 (CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H) Status Weaponized Tags DoS, OOM, image-optimizer, Next.js, self-hosted, unauthenticated Related N/A Affected Target Field Value Software / System Next.js Image Optimization API (/_next/image) on self-hosted deployments Versions Affected \u0026gt;=15.0.0, \u0026lt;15.5.16 and \u0026gt;=16.0.0, \u0026lt;16.2.5 Language / Platform JavaScript / Node.js Authentication Required No Network Access Required Yes Summary CVE-2026-44577 is a denial-of-service issue in Next.js Image Optimization on self-hosted deployments. In vulnerable builds, /_next/image can fetch very large local assets into memory without an effective size cap and then perform expensive image decode/transform work. By repeatedly requesting oversized local files that match images.localPatterns, an unauthenticated attacker can drive high memory usage and trigger process out-of-memory conditions. Public reporting for this issue states Vercel-hosted deployments are not affected.","permalink":"/pocs/web/2026-05-17_nextjs-image-optimization-api-oom-dos-self-hosted/"},{"title":"Next.js RSC Cache-Busting Weak Hash Collision (CVE-2026-44582)","cve":"CVE-2026-44582","category":"web","severity":"Low","cvss_score":3.7,"tags":["cache-poisoning","RSC","weak-hash","Next.js","unauthenticated"],"affected_product":"Next.js App Router","affected_versions":"13.4.6–15.5.15 and 16.0.0–16.2.4 (fixed in 15.5.16 / 16.2.5)","author":"dwisiswant0","patched":true,"date":"2026-05-17","year":"2026","summary":" Metadata Field Value Date Added 2026-05-17 Author / Researcher dwisiswant0 CVE / Advisory CVE-2026-44582 Category web Severity Low CVSS Score 3.7 (CVSSv3) Status Weaponized Tags cache-poisoning, RSC, weak-hash, Next.js, unauthenticated Related N/A Affected Target Field Value Software / System Next.js App Router Versions Affected 13.4.6–15.5.15 and 16.0.0–16.2.4 (fixed in 15.5.16 / 16.2.5) Language / Platform JavaScript / Node.js Authentication Required No Network Access Required Yes Summary Next.js used a weak cache-busting hash for the _rsc query parameter in vulnerable versions. Because this hash had practical collision resistance limits, an attacker could generate alternative header/state tuples that map to the same _rsc token as a victim route variant. In cache setups that key too heavily on URL+query, this enables cache poisoning where users can receive the wrong React Server Component response variant. The issue is low severity (CVSS 3.7) and was patched in 15.5.16 / 16.2.5.","permalink":"/pocs/web/2026-05-17_nextjs-rsc-cache-busting-weak-hash-collision/"},{"title":"Next.js RSC Response Cache Poisoning (CVE-2026-44576)","cve":"CVE-2026-44576","category":"web","severity":"Medium","cvss_score":5.4,"tags":["cache-poisoning","RSC","response-confusion","Next.js","shared-cache","unauthenticated"],"affected_product":"Next.js App Router deployments using React Server Components (RSC) behind shared caches","affected_versions":"14.2.0–15.5.15 and 16.0.0–16.2.4 (fixed in 15.5.16 / 16.2.5)","author":"dwisiswant0","patched":true,"date":"2026-05-17","year":"2026","summary":" Metadata Field Value Date Added 2026-05-17 Author / Researcher dwisiswant0 CVE / Advisory CVE-2026-44576 Category web Severity Medium CVSS Score 5.4 (CVSSv3) Status Weaponized Tags cache-poisoning, RSC, response-confusion, Next.js, shared-cache, unauthenticated Related N/A Affected Target Field Value Software / System Next.js App Router deployments using React Server Components (RSC) behind shared caches Versions Affected 14.2.0–15.5.15 and 16.0.0–16.2.4 (fixed in 15.5.16 / 16.2.5) Language / Platform JavaScript / Node.js Authentication Required No Network Access Required Yes Summary CVE-2026-44576 is a cache poisoning issue in Next.js RSC response handling. In vulnerable versions, RSC and HTML response variants can be mis-partitioned by shared caches when request/response variants are not keyed correctly, allowing attacker-controlled requests to poison a cache entry. Later visitors can receive an incorrect RSC payload variant for the same URL. The issue is rated Medium (CVSS 5.4), with no known active exploitation at disclosure time.","permalink":"/pocs/web/2026-05-17_nextjs-rsc-response-cache-poisoning/"},{"title":"Next.js RSC Server-Action DoS via Flight Deserialization (CVE-2026-23870)","cve":"CVE-2026-23870","category":"web","severity":"High","cvss_score":7.5,"tags":["DoS","RSC","React-Flight","deserialization","cyclic-payload","Next.js","App-Router","unauthenticated","pre-auth"],"affected_product":"Next.js App Router (React server-action / RSC reply parser)","affected_versions":"Next.js 13.x - 16.2.4 (bundled React experimental builds)","author":"dwisiswant0","patched":false,"date":"2026-05-17","year":"2026","summary":" Metadata Field Value Date Added 2026-05-17 Last Updated 2026-05-08 Author / Researcher dwisiswant0 CVE / Advisory CVE-2026-23870 Category web Severity High CVSS Score 7.5 (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H) Status Weaponized Tags DoS, RSC, React-Flight, deserialization, cyclic-payload, Next.js, App-Router, unauthenticated, pre-auth Related N/A Affected Target Field Value Software / System Next.js App Router (React server-action / RSC reply parser) Versions Affected Next.js 13.x - 16.2.4 (bundled React experimental builds) Language / Platform JavaScript / Node.js Authentication Required No Network Access Required Yes Summary CVE-2026-23870 is a pre-authentication Denial of Service against any Next.js deployment using the App Router. An attacker sends crafted HTTP POST requests to any App Router server function endpoint with a deeply-cyclic or wide fan-out React Flight protocol payload. Pre-patch React\u0026rsquo;s reply parser (decodeReply / decodeAction) walks model graph references without depth or cycle limits, causing unbounded CPU consumption or stack overflow. The attack requires no authentication and a single low-bandwidth request can stall a server process for 30+ seconds; concurrent requests can drive it to OOM or process restart.","permalink":"/pocs/web/2026-05-17_nextjs-rsc-dos-flight-deserialization/"},{"title":"Next.js WebSocket Upgrade SSRF (Self-Hosted) (CVE-2026-44578)","cve":"CVE-2026-44578","category":"web","severity":"High","cvss_score":8.6,"tags":["SSRF","WebSocket","upgrade-request","Next.js","self-hosted","unauthenticated","metadata-service"],"affected_product":"Next.js standalone router server (next start)","affected_versions":"\u003e=13.0.0, \u003c15.5.16 and \u003e=16.0.0, \u003c16.2.5 in self-hosted mode","author":"dwisiswant0","patched":false,"date":"2026-05-17","year":"2026","summary":" Metadata Field Value Date Added 2026-05-17 Author / Researcher dwisiswant0 CVE / Advisory CVE-2026-44578 Category web Severity High CVSS Score 8.6 (CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N) Status Weaponized Tags SSRF, WebSocket, upgrade-request, Next.js, self-hosted, unauthenticated, metadata-service Related N/A Affected Target Field Value Software / System Next.js standalone router server (next start) Versions Affected \u0026gt;=13.0.0, \u0026lt;15.5.16 and \u0026gt;=16.0.0, \u0026lt;16.2.5 in self-hosted mode Language / Platform JavaScript / Node.js Authentication Required No Network Access Required Yes Summary CVE-2026-44578 is a server-side request forgery (SSRF) vulnerability in self-hosted Next.js WebSocket upgrade handling. A crafted HTTP request with Upgrade: websocket can coerce vulnerable versions into proxying to attacker-chosen internal targets on port 80 (or attacker-selected ports), including cloud metadata endpoints and internal admin services. The attacker can read the proxied response over the same socket, making this a high-impact unauthenticated primitive. Public reporting indicates active in-the-wild exploitation for internal service enumeration and secret retrieval.","permalink":"/pocs/web/2026-05-17_nextjs-websocket-upgrade-ssrf-self-hosted/"},{"title":"Next.js x-nextjs-data Cache Poisoning (CVE-2026-44572)","cve":"CVE-2026-44572","category":"web","severity":"Low","cvss_score":3.1,"tags":["cache-poisoning","x-nextjs-data","redirect","CDN","header-smuggling","Next.js","Pages-Router","unauthenticated"],"affected_product":"Next.js Pages Router (redirect handling via middleware or next.config.js)","affected_versions":"Next.js \u003c= 16.2.4","author":"dwisiswant0","patched":true,"date":"2026-05-17","year":"2026","summary":" Metadata Field Value Date Added 2026-05-17 Last Updated 2026-05-08 Author / Researcher dwisiswant0 CVE / Advisory CVE-2026-44572 Category web Severity Low CVSS Score 3.1 (CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:L/A:N) Status Researched Tags cache-poisoning, x-nextjs-data, redirect, CDN, header-smuggling, Next.js, Pages-Router, unauthenticated Related N/A Affected Target Field Value Software / System Next.js Pages Router (redirect handling via middleware or next.config.js) Versions Affected Next.js \u0026lt;= 16.2.4 Language / Platform JavaScript / Node.js Authentication Required No Network Access Required Yes Summary CVE-2026-44572 is a cache poisoning vulnerability in Next.js Pages Router redirect handling. Pre-patch, any external client could set the internal x-nextjs-data: 1 header on a request to a redirecting URL, causing the server to return a 200 OK with x-nextjs-redirect instead of the expected 307 Temporary Redirect + Location response. Browsers render this as a blank page; CDN/proxy caches store and replay the malformed 200 response to all subsequent users of the same URL, effectively breaking redirect-based navigation for the duration of the cache TTL. Rated CVSS 3.1 Low with no known active exploitation.","permalink":"/pocs/web/2026-05-17_nextjs-x-nextjs-data-cache-poisoning/"},{"title":"Palo Alto PAN-OS GlobalProtect Unauthenticated RCE (CVE-2024-3400)","cve":"CVE-2024-3400","category":"web","severity":"Critical","cvss_score":10,"tags":["RCE","command-injection","path-traversal","PAN-OS","GlobalProtect","unauthenticated","zero-day"],"affected_product":"Palo Alto Networks PAN-OS GlobalProtect gateway","affected_versions":"PAN-OS 10.2, 11.0, and 11.1 branches before vendor fixes (GlobalProtect enabled)","author":"h4x0r-dz","patched":true,"date":"2026-05-17","year":"2026","summary":" Metadata Field Value Date Added 2026-05-17 Author / Researcher h4x0r-dz CVE / Advisory CVE-2024-3400 Category web Severity Critical CVSS Score 10.0 (CVSSv3.1) Status Weaponized Tags RCE, command-injection, path-traversal, PAN-OS, GlobalProtect, unauthenticated, zero-day Related N/A Affected Target Field Value Software / System Palo Alto Networks PAN-OS GlobalProtect gateway Versions Affected PAN-OS 10.2, 11.0, and 11.1 branches before vendor fixes (GlobalProtect enabled) Language / Platform PAN-OS appliance / VM management plane (HTTP/HTTPS) Authentication Required No Network Access Required Yes Summary CVE-2024-3400 is an unauthenticated command injection vulnerability in PAN-OS GlobalProtect that can be reached over the network when specific features are enabled. Public reporting showed chained abuse via arbitrary file creation and command execution as root. The issue was exploited as a zero-day before patch release and later saw broad mass scanning and exploitation activity.","permalink":"/pocs/web/2026-05-17_pan-os-globalprotect-unauth-rce/"},{"title":"React2Shell - Next.js RSC Unauthenticated RCE","cve":"CVE-2025-55182","category":"web","severity":"Critical","cvss_score":10,"tags":["RCE","Next.js","React","RSC","deserialization","prototype-pollution","unauthenticated","Node.js","cloud"],"affected_product":"Next.js (App Router with React Server Components), React","affected_versions":"Next.js \u003e=14.3.0-canary.77, all 15.x and 16.x with App Router; React 19.0, 19.1.0, 19.1.1, 19.2.0","author":"zr0n (Luiz Fernando Ziron)","patched":true,"date":"2026-05-17","year":"2026","summary":" Metadata Field Value Date Added 2026-05-17 Last Updated 2025-12-07 Author / Researcher zr0n (Luiz Fernando Ziron) CVE / Advisory CVE-2025-55182 Category web Severity Critical CVSS Score 10.0 (CVSSv3) Status Weaponized Tags RCE, Next.js, React, RSC, deserialization, prototype-pollution, unauthenticated, Node.js, cloud Related N/A Affected Target Field Value Software / System Next.js (App Router with React Server Components), React Versions Affected Next.js \u0026gt;=14.3.0-canary.77, all 15.x and 16.x with App Router; React 19.0, 19.1.0, 19.1.1, 19.2.0 Language / Platform JavaScript / Node.js Authentication Required No Network Access Required Yes Summary CVE-2025-55182 is a CVSS 10.0 unauthenticated Remote Code Execution vulnerability in Next.js applications using React Server Components (RSC) with the App Router. The exploit abuses unsafe deserialization of the RSC wire format: a crafted multipart POST request with a next-action header causes the server to deserialize a malicious payload that accesses the Function constructor via prototype chain traversal (constructor.constructor), injecting arbitrary JavaScript code into the server process. The vulnerability affects a large fraction of cloud-hosted Next.js applications and has been rapidly exploited by China-nexus threat actors Earth Lamia and Jackpot Panda.","permalink":"/pocs/web/2026-05-17_react2shell-rce/"},{"title":"ToolShell - SharePoint Unauthenticated RCE Chain","cve":"CVE-2025-53770, CVE-2025-53771, CVE-2025-49704, CVE-2025-49706","category":"web","severity":"Critical","cvss_score":0,"tags":["RCE","SharePoint","unauthenticated","deserialization","auth-bypass","APT27","APT31","ransomware","Windows","IIS"],"affected_product":"Microsoft SharePoint Server","affected_versions":"SharePoint Server 2019 (16.0.10337.12109 through 16.0.10417.20027); SharePoint Subscription Edition (16.0.14326.20450 through 16.0.18526.20424); SharePoint 2016 (16.0.4351.1000 through 16.0.5508.1000)","author":"saladin0x1 (Metasploit ref: Viettel Cyber Security / sfewer-r7)","patched":true,"date":"2026-05-17","year":"2026","summary":" Metadata Field Value Date Added 2026-05-17 Last Updated 2025-09-04 Author / Researcher saladin0x1 (Metasploit ref: Viettel Cyber Security / sfewer-r7) CVE / Advisory CVE-2025-53770, CVE-2025-53771, CVE-2025-49704, CVE-2025-49706 Category web Severity Critical CVSS Score N/A (Critical per MSRC) Status Weaponized Tags RCE, SharePoint, unauthenticated, deserialization, auth-bypass, APT27, APT31, ransomware, Windows, IIS Related N/A Affected Target Field Value Software / System Microsoft SharePoint Server Versions Affected SharePoint Server 2019 (16.0.10337.12109 through 16.0.10417.20027); SharePoint Subscription Edition (16.0.14326.20450 through 16.0.18526.20424); SharePoint 2016 (16.0.4351.1000 through 16.0.5508.1000) Language / Platform .NET / Windows, ASP.NET WebForms Authentication Required No Network Access Required Yes Summary CVE-2025-53770 (\u0026ldquo;ToolShell\u0026rdquo;) is a full unauthenticated remote code execution chain against Microsoft SharePoint Server. The chain combines an authentication bypass in the ToolPane.aspx endpoint (CVE-2025-49706 / patch bypass CVE-2025-53771) with an unsafe .NET deserialization vulnerability in the ExcelDataSet control (CVE-2025-49704 / patch bypass CVE-2025-53770). An unauthenticated attacker with network access to a SharePoint server can achieve RCE as the SharePoint application pool identity (IIS worker process). The vulnerability has been actively exploited in the wild by China-nexus APT groups Linen Typhoon (APT27) and Violet Typhoon (APT31) as well as the ransomware group Storm-2603.","permalink":"/pocs/web/2026-05-17_toolshell-sharepoint-chain/"},{"title":"Windows Kernel Elevation of Privilege - Race Condition / Double-Free (CVE-2025-62215)","cve":"CVE-2025-62215","category":"binary","severity":"High","cvss_score":7,"tags":["EoP","Windows kernel","race condition","double-free","heap corruption","0day","SYSTEM","Windows 10","Windows 11"],"affected_product":"Windows Kernel (ntoskrnl.exe / kernel resource synchronization)","affected_versions":"Windows 10 (multiple versions), Windows 11 (multiple versions), Windows Server editions (pre-November 2025 patches)","author":"dexterm300","patched":true,"date":"2026-05-17","year":"2026","summary":" Metadata Field Value Date Added 2026-05-17 Last Updated 2025-11-14 Author / Researcher dexterm300 CVE / Advisory CVE-2025-62215 Category binary Severity High CVSS Score 7.0 (CVSSv3) Status Weaponized Tags EoP, Windows kernel, race condition, double-free, heap corruption, 0day, SYSTEM, Windows 10, Windows 11 Related N/A Affected Target Field Value Software / System Windows Kernel (ntoskrnl.exe / kernel resource synchronization) Versions Affected Windows 10 (multiple versions), Windows 11 (multiple versions), Windows Server editions (pre-November 2025 patches) Language / Platform C++, Windows x64 Authentication Required Yes (local authenticated user) Network Access Required No (local only) Summary CVE-2025-62215 is a Windows Kernel Elevation of Privilege vulnerability disclosed and patched in November 2025, confirmed to have been actively exploited as a zero-day in the wild prior to patching. The bug combines a race condition in kernel resource synchronization (CWE-362) with a resulting double-free memory corruption (CWE-415), ultimately allowing a local authenticated attacker to execute arbitrary code at SYSTEM privilege level. The PoC includes three components: a primary exploit, an advanced exploit module, and a system information utility.","permalink":"/pocs/binary/2026-05-17_windows-kernel-eop-cve-2025-62215/"},{"title":"Windows MMC MSC EvilTwin - CVE-2025-26633","cve":"CVE-2025-26633","category":"binary","severity":"High","cvss_score":0,"tags":["RCE","Windows","MMC","MSC","ActiveX","EvilTwin","APT","EncryptHub","Water-Gamayun","zero-day","in-the-wild"],"affected_product":"Microsoft Management Console (MMC), Windows","affected_versions":"Windows versions prior to March 11, 2025 patch","author":"sandsoncosta","patched":true,"date":"2026-05-17","year":"2026","summary":" Metadata Field Value Date Added 2026-05-17 Last Updated 2025-04-08 Author / Researcher sandsoncosta CVE / Advisory CVE-2025-26633 Category binary Severity High CVSS Score N/A Status Patched Tags RCE, Windows, MMC, MSC, ActiveX, EvilTwin, APT, EncryptHub, Water-Gamayun, zero-day, in-the-wild Related N/A Affected Target Field Value Software / System Microsoft Management Console (MMC), Windows Versions Affected Windows versions prior to March 11, 2025 patch Language / Platform Windows, PowerShell, MSC (XML-based MMC snap-in) Authentication Required No Network Access Required No (local file delivery; social engineering required) Summary CVE-2025-26633 is a zero-day vulnerability in Microsoft Management Console (MMC) that was exploited in the wild by Russian APT group Water Gamayun (EncryptHub/Larva-208). An attacker crafts a malicious .msc file that abuses the MUIPath resolution mechanism: when MMC loads the snap-in, it resolves a secondary .msc file from an attacker-controlled path and executes embedded HTML/ActiveX content in the MMC context. This enables arbitrary command execution without any user interaction beyond opening the .msc file. The vulnerability was used to deploy the EncryptHub stealer, DarkWisp backdoor, and SilentPrism backdoor, and was patched on March 11, 2025.","permalink":"/pocs/binary/2026-05-17_windows-mmc-eviltwin-cve-2025-26633/"},{"title":"Windows NTLM Hash Disclosure via File Explorer - CVE-2025-24054","cve":"CVE-2025-24054","category":"binary","severity":"Medium","cvss_score":6.5,"tags":["NTLM","NTLMv2","hash-disclosure","zero-click","Windows","File-Explorer","UNC","SMB","credential-theft","in-the-wild","state-sponsored"],"affected_product":"Windows File Explorer (Windows Shell)","affected_versions":"Windows 10, Windows 11, Windows Server — prior to March 2025 patch","author":"Untouchable17","patched":true,"date":"2026-05-17","year":"2026","summary":" Metadata Field Value Date Added 2026-05-17 Last Updated 2025-11-24 Author / Researcher Untouchable17 CVE / Advisory CVE-2025-24054 Category binary Severity Medium CVSS Score 6.5 (CVSSv3) Status Patched Tags NTLM, NTLMv2, hash-disclosure, zero-click, Windows, File-Explorer, UNC, SMB, credential-theft, in-the-wild, state-sponsored Related N/A Affected Target Field Value Software / System Windows File Explorer (Windows Shell) Versions Affected Windows 10, Windows 11, Windows Server — prior to March 2025 patch Language / Platform Windows, Python 3.6+, PowerShell 5.1+ Authentication Required No Network Access Required Yes (attacker must operate a reachable SMB server to capture hashes) Summary CVE-2025-24054 is a zero-click NTLMv2-SSP hash disclosure vulnerability in Windows File Explorer. When a user opens a ZIP archive containing a crafted .searchConnector-ms file, Windows Explorer automatically resolves an embedded UNC path during file preview, triggering an outbound SMB authentication attempt to an attacker-controlled server — leaking the victim\u0026rsquo;s NTLMv2 hash without any user interaction beyond opening the archive. The vulnerability was exploited in the wild since at least March 2025 by state-sponsored actors. Microsoft patched the initial vector, but the researcher also documents two subsequent patch bypasses (CVE-2025-50154 / CVE-2025-59214) using LNK files in ZIP archives. Related vulnerability: CVE-2025-24071.","permalink":"/pocs/binary/2026-05-17_windows-ntlm-hash-disclosure-cve-2025-24054/"},{"title":"Adobe Acrobat/Reader Prototype Pollution Sandbox Escape (CVE-2026-34621)","cve":"CVE-2026-34621","category":"binary","severity":"Critical","cvss_score":9.8,"tags":["prototype-pollution","sandbox-escape","Adobe-Acrobat","Adobe-Reader","PDF","RCE","Windows","macOS","user-interaction"],"affected_product":"Adobe Acrobat DC / Adobe Acrobat Reader DC / Adobe Acrobat 2024 JavaScript engine sandbox boundary","affected_versions":"Acrobat/Reader DC Continuous ≤ 26.001.21367; Acrobat 2024 Classic ≤ 24.001.30356","author":"NULL200OK","patched":false,"date":"2026-05-16","year":"2026","summary":"Metadata Field Value Date Added 2026-05-16 Author / Researcher NULL200OK CVE / Advisory CVE-2026-34621 Category binary Severity Critical CVSS Score 9.8 (estimated, CVSSv3) Status Weaponized Tags prototype-pollution, sandbox-escape, Adobe-Acrobat, Adobe-Reader, PDF, RCE, Windows, macOS, user-interaction Related N/A Affected Target Field Value Software / System Adobe Acrobat DC / Adobe Acrobat Reader DC / Adobe Acrobat 2024 JavaScript engine sandbox boundary Versions Affected Acrobat/Reader DC Continuous ≤ 26.001.21367; Acrobat 2024 Classic ≤ 24.001.30356 Language / Platform Python PoC generator targeting Adobe PDF JavaScript on Windows and macOS Authentication Required Partial (victim must open crafted PDF) Network Access Required No (optional staging URL supported by PoC) Summary This repository contains a Python-based exploit generator for CVE-2026-34621, described as a prototype pollution vulnerability in Adobe Acrobat and Reader that can break JavaScript trust boundaries. The generated PDF embeds JavaScript intended to escalate from untrusted document context to privileged API access, then execute OS commands on vulnerable hosts. The PoC supports multiple trigger vectors, obfuscation levels, and payload staging for authorized lab validation on Windows and macOS.","permalink":"/pocs/binary/2026-05-16_adobe-acrobat-prototype-pollution-sandbox-escape/"},{"title":"Apache Parquet Java Unsafe Deserialization RCE (CVE-2025-30065)","cve":"CVE-2025-30065","category":"misc","severity":"Critical","cvss_score":10,"tags":["RCE","unsafe-deserialization","parquet-avro","avro-schema","Java","JVM","SSRF","data-pipeline"],"affected_product":"Apache Parquet Java (parquet-avro) schema parsing consumers","affected_versions":"Vulnerable parquet-avro releases impacted by CVE-2025-30065 (source PoC demonstrates 1.8.1)","author":"mouadk","patched":false,"date":"2026-05-16","year":"2026","summary":" Metadata Field Value Date Added 2026-05-16 Author / Researcher mouadk CVE / Advisory CVE-2025-30065 Category misc Severity Critical CVSS Score 10.0 (CVSSv3) Status Weaponized Tags RCE, unsafe-deserialization, parquet-avro, avro-schema, Java, JVM, SSRF, data-pipeline Related N/A Affected Target Field Value Software / System Apache Parquet Java (parquet-avro) schema parsing consumers Versions Affected Vulnerable parquet-avro releases impacted by CVE-2025-30065 (source PoC demonstrates 1.8.1) Language / Platform Java 17+, JVM-based data processing pipelines Authentication Required No (if attacker can feed crafted Parquet data into ingestion path) Network Access Required Yes Summary CVE-2025-30065 is an unsafe deserialization issue in Apache Parquet Java schema handling that can instantiate attacker-controlled classes while parsing malicious Parquet/Avro metadata. The provided PoC demonstrates two practical outcomes: arbitrary command execution when a gadget/class is present on the classpath, and SSRF by forcing JVM-side network requests through class instantiation. The attack surface is broad because many analytics and ETL ecosystems parse Parquet data automatically.","permalink":"/pocs/misc/2026-05-16_apache-parquet-unsafe-deserialization-rce/"},{"title":"Chrome CSSFontFeatureValuesMap Use-After-Free (CVE-2026-2441)","cve":"CVE-2026-2441","category":"web","severity":"High","cvss_score":8.8,"tags":["use-after-free","Chrome","Blink","CSSOM","renderer-rce","unauthenticated","drive-by"],"affected_product":"Google Chrome / Chromium-based browsers (Blink CSS engine)","affected_versions":"Chrome \u003c 145.0.7632.75 (Windows/macOS stable), Chrome \u003c 144.0.7559.75 (Linux stable), Extended Stable \u003c 144.0.7559.177","author":"huseyinstif","patched":false,"date":"2026-05-16","year":"2026","summary":" Metadata Field Value Date Added 2026-05-16 Author / Researcher huseyinstif CVE / Advisory CVE-2026-2441 Category web Severity High CVSS Score 8.8 (CVSSv3) Status Weaponized Tags use-after-free, Chrome, Blink, CSSOM, renderer-rce, unauthenticated, drive-by Related N/A Affected Target Field Value Software / System Google Chrome / Chromium-based browsers (Blink CSS engine) Versions Affected Chrome \u0026lt; 145.0.7632.75 (Windows/macOS stable), Chrome \u0026lt; 144.0.7559.75 (Linux stable), Extended Stable \u0026lt; 144.0.7559.177 Language / Platform HTML + JavaScript PoC / Desktop browsers Authentication Required No Network Access Required Yes Summary CVE-2026-2441 is a Blink use-after-free vulnerability in CSSFontFeatureValuesMap iteration logic. A crafted web page mutates a styleset map while iterating through entries, which can invalidate internal structures and trigger renderer memory safety failure on vulnerable builds. In unpatched versions this can crash the renderer and may enable attacker-controlled code execution in the renderer sandbox as part of a browser exploit chain.","permalink":"/pocs/web/2026-05-16_chrome-cssfontfeaturevaluesmap-use-after-free/"},{"title":"Citrix NetScaler CitrixBleed 2 Session Token Disclosure (CVE-2025-5777)","cve":"CVE-2025-5777","category":"web","severity":"Critical","cvss_score":9.3,"tags":["citrixbleed2","memory-disclosure","session-hijack","NetScaler","Gateway","unauthenticated"],"affected_product":"Citrix NetScaler ADC / NetScaler Gateway login interface","affected_versions":"Vulnerable builds listed by Citrix advisory CTX693420 (fixed builds vary by release branch)","author":"win3zz","patched":true,"date":"2026-05-16","year":"2026","summary":" Metadata Field Value Date Added 2026-05-16 Author / Researcher win3zz CVE / Advisory CVE-2025-5777 Category web Severity Critical CVSS Score 9.3 (CVSSv4) Status Weaponized Tags citrixbleed2, memory-disclosure, session-hijack, NetScaler, Gateway, unauthenticated Related N/A Affected Target Field Value Software / System Citrix NetScaler ADC / NetScaler Gateway login interface Versions Affected Vulnerable builds listed by Citrix advisory CTX693420 (fixed builds vary by release branch) Language / Platform NetScaler appliance web authentication stack (HTTP/HTTPS) Authentication Required No Network Access Required Yes Summary CVE-2025-5777 (\u0026ldquo;CitrixBleed 2\u0026rdquo;) is an unauthenticated out-of-bounds memory disclosure in Citrix NetScaler ADC/Gateway authentication processing. A crafted request can leak chunks of process memory that may contain active session tokens and credentials. Because stolen session material can be replayed, exploitation enables account/session hijacking without valid credentials and may bypass MFA.","permalink":"/pocs/web/2026-05-16_citrixbleed-2-session-token-disclosure/"},{"title":"cPanel \u0026 WHM Authentication Bypass via Session-File CRLF Injection (CVE-2026-41940)","cve":"CVE-2026-41940","category":"web","severity":"Critical","cvss_score":10,"tags":["auth-bypass","CRLF-injection","session-poisoning","cPanel","WHM","unauthenticated"],"affected_product":"cPanel \u0026 WHM","affected_versions":"110.x ≤ 11.110.0.96, 118.x ≤ 11.118.0.62, 126.x ≤ 11.126.0.53, 132.x ≤ 11.132.0.28, 134.x ≤ 11.134.0.19, 136.x ≤ 11.136.0.4","author":"ynsmroztas (Mitsec)","patched":true,"date":"2026-05-16","year":"2026","summary":" Metadata Field Value Date Added 2026-05-16 Author / Researcher ynsmroztas (Mitsec) CVE / Advisory CVE-2026-41940 Category web Severity Critical CVSS Score 10.0 (CVSSv3) Status Weaponized Tags auth-bypass, CRLF-injection, session-poisoning, cPanel, WHM, unauthenticated Related N/A Affected Target Field Value Software / System cPanel \u0026amp; WHM Versions Affected 110.x ≤ 11.110.0.96, 118.x ≤ 11.118.0.62, 126.x ≤ 11.126.0.53, 132.x ≤ 11.132.0.28, 134.x ≤ 11.134.0.19, 136.x ≤ 11.136.0.4 Language / Platform Perl backend (Session.pm) / Linux hosting panels Authentication Required No Network Access Required Yes Summary CVE-2026-41940 is a critical unauthenticated authentication bypass in cPanel \u0026amp; WHM. The vulnerable session handling flow writes attacker-controlled Authorization: Basic data to the session file before sanitization, allowing CRLF injection of trusted session fields. By poisoning values such as hasroot=1, user=root, and tfa_verified=1, a remote attacker can obtain root-level WHM access without valid credentials.","permalink":"/pocs/web/2026-05-16_cpanel-whm-auth-bypass-crlf-session-injection/"},{"title":"Fortinet FortiOS / FortiProxy Authentication Bypass (CVE-2024-55591)","cve":"CVE-2024-55591","category":"web","severity":"Critical","cvss_score":9.6,"tags":["auth-bypass","websocket","race-condition","FortiOS","FortiProxy","unauthenticated","super-admin"],"affected_product":"Fortinet FortiOS/FortiProxy management interfaces","affected_versions":"FortiOS 7.0.0–7.0.16, FortiProxy 7.0.0–7.0.19, FortiProxy 7.2.0–7.2.12","author":"watchTowr Labs (Sonny)","patched":false,"date":"2026-05-16","year":"2026","summary":" Metadata Field Value Date Added 2026-05-16 Author / Researcher watchTowr Labs (Sonny) CVE / Advisory CVE-2024-55591 Category web Severity Critical CVSS Score 9.6 (CVSSv3) Status Weaponized Tags auth-bypass, websocket, race-condition, FortiOS, FortiProxy, unauthenticated, super-admin Related N/A Affected Target Field Value Software / System Fortinet FortiOS/FortiProxy management interfaces Versions Affected FortiOS 7.0.0–7.0.16, FortiProxy 7.0.0–7.0.19, FortiProxy 7.2.0–7.2.12 Language / Platform FortiOS/FortiProxy appliance web management plane (HTTP/HTTPS + WebSocket) Authentication Required No Network Access Required Yes Summary CVE-2024-55591 is an authentication bypass in Fortinet management interfaces that can be abused over a crafted WebSocket workflow. The public PoC demonstrates racing WebSocket login-context traffic to gain effective super-admin CLI access without valid credentials. Public reporting and CISA KEV tracking indicate real-world exploitation as a zero-day, including creation of rogue admin users and firewall configuration tampering.","permalink":"/pocs/web/2026-05-16_fortios-fortiproxy-auth-bypass-cve-2024-55591/"},{"title":"Fortinet FortiOS SSL VPN Unauthenticated RCE (CVE-2024-21762)","cve":"CVE-2024-21762","category":"web","severity":"Critical","cvss_score":9.6,"tags":["RCE","out-of-bounds-write","SSL-VPN","FortiOS","edge-appliance","unauthenticated","KEV"],"affected_product":"Fortinet FortiOS SSL VPN (sslvpnd)","affected_versions":"FortiOS 7.4.0–7.4.2, 7.2.0–7.2.6, 7.0.0–7.0.13, 6.4.0–6.4.14, 6.2.0–6.2.15","author":"d0rb (PoC), vulnerability publicly documented by Fortinet/industry researchers","patched":true,"date":"2026-05-16","year":"2026","summary":" Metadata Field Value Date Added 2026-05-16 Author / Researcher d0rb (PoC), vulnerability publicly documented by Fortinet/industry researchers CVE / Advisory CVE-2024-21762 Category web Severity Critical CVSS Score 9.6 (CVSSv3) Status Weaponized Tags RCE, out-of-bounds-write, SSL-VPN, FortiOS, edge-appliance, unauthenticated, KEV Related N/A Affected Target Field Value Software / System Fortinet FortiOS SSL VPN (sslvpnd) Versions Affected FortiOS 7.4.0–7.4.2, 7.2.0–7.2.6, 7.0.0–7.0.13, 6.4.0–6.4.14, 6.2.0–6.2.15 Language / Platform FortiOS appliance SSL VPN web interface over HTTP/HTTPS Authentication Required No Network Access Required Yes Summary CVE-2024-21762 is a critical out-of-bounds write in FortiOS sslvpnd reachable through the SSL VPN web interface. A remote unauthenticated attacker can send crafted HTTP requests to corrupt memory and potentially achieve remote code execution. Public reporting and government advisories indicate active exploitation in the wild, and the vulnerability is listed in CISA KEV.","permalink":"/pocs/web/2026-05-16_fortios-sslvpn-rce-cve-2024-21762/"},{"title":"OpenSSH regreSSHion Signal-Handler Race Unauthenticated RCE (CVE-2024-6387)","cve":"CVE-2024-6387","category":"network","severity":"High","cvss_score":8.1,"tags":["RCE","OpenSSH","sshd","glibc","race-condition","SIGALRM","unauthenticated"],"affected_product":"OpenSSH server daemon (sshd) on glibc-based Linux","affected_versions":"OpenSSH 8.5p1 through 9.7p1 on glibc-based Linux distributions (fixed in 9.8p1)","author":"Qualys Threat Research Unit (disclosure); 7etsuo (public PoC implementation)","patched":true,"date":"2026-05-16","year":"2026","summary":" Metadata Field Value Date Added 2026-05-16 Author / Researcher Qualys Threat Research Unit (disclosure); 7etsuo (public PoC implementation) CVE / Advisory CVE-2024-6387 Category network Severity High CVSS Score 8.1 (CVSSv3) Status Weaponized Tags RCE, OpenSSH, sshd, glibc, race-condition, SIGALRM, unauthenticated Related N/A Affected Target Field Value Software / System OpenSSH server daemon (sshd) on glibc-based Linux Versions Affected OpenSSH 8.5p1 through 9.7p1 on glibc-based Linux distributions (fixed in 9.8p1) Language / Platform C / Linux (glibc) Authentication Required No Network Access Required Yes Summary CVE-2024-6387 (regreSSHion) is a signal-handler race condition in OpenSSH sshd that reintroduced a previously fixed bug class and can allow unauthenticated remote code execution as root on glibc-based Linux systems. The issue is triggered around LoginGraceTime signal handling where async-signal-unsafe behavior is reachable during authentication timeout processing. Public PoC code was released shortly after disclosure, and broad internet scanning/exploitation activity has been reported, including inclusion in CISA KEV.","permalink":"/pocs/network/2026-05-16_openssh-regresshion-signal-handler-race/"},{"title":"Palo Alto PAN-OS Management Interface Authentication Bypass (CVE-2025-0108)","cve":"CVE-2025-0108","category":"web","severity":"Critical","cvss_score":9.1,"tags":["auth-bypass","path-traversal","PAN-OS","Palo Alto","management-interface","unauthenticated"],"affected_product":"Palo Alto Networks PAN-OS management web interface","affected_versions":"PAN-OS versions impacted by CVE-2025-0108 (see vendor advisory for exact fixed builds)","author":"FOLKS-iwd","patched":true,"date":"2026-05-16","year":"2026","summary":" Metadata Field Value Date Added 2026-05-16 Author / Researcher FOLKS-iwd CVE / Advisory CVE-2025-0108 Category web Severity Critical CVSS Score 9.1 (CVSSv3) Status Weaponized Tags auth-bypass, path-traversal, PAN-OS, Palo Alto, management-interface, unauthenticated Related N/A Affected Target Field Value Software / System Palo Alto Networks PAN-OS management web interface Versions Affected PAN-OS versions impacted by CVE-2025-0108 (see vendor advisory for exact fixed builds) Language / Platform PAN-OS web management plane (HTTP/HTTPS interface) Authentication Required No Network Access Required Yes Summary CVE-2025-0108 is an authentication bypass in the PAN-OS management interface that can allow unauthorized administrative access. The PoC uses a crafted path traversal style request to reach sensitive management functionality without a valid login session. Public reporting indicates active exploitation in early 2025, and defenders frequently track this issue as part of chained PAN-OS compromise activity.","permalink":"/pocs/web/2026-05-16_pan-os-management-auth-bypass/"},{"title":"QEMUtiny - QEMU CXL Type-3 Memory Corruption Chain","cve":"","category":"binary","severity":"Critical","cvss_score":0,"tags":["QEMU","CXL","memory-corruption","OOB-read","OOB-write","guest-to-host-escape","local","root-in-guest"],"affected_product":"QEMU CXL Type-3 device emulation (hw/cxl/cxl-mailbox-utils.c)","affected_versions":"OOB read path: QEMU v7.1.0+ (introduced by 056172691b); OOB write path: QEMU v11.0.0+ (introduced by 5e5a86bab8 and da5cafdc4d)","author":"Aaron Esau (V12 security team); weaponized PoC prepared by @xia0o0o0o","patched":false,"date":"2026-05-16","year":"2026","summary":" Metadata Field Value Date Added 2026-05-16 Author / Researcher Aaron Esau (V12 security team); weaponized PoC prepared by @xia0o0o0o CVE / Advisory N/A Category binary Severity Critical CVSS Score N/A Status Weaponized Tags QEMU, CXL, memory-corruption, OOB-read, OOB-write, guest-to-host-escape, local, root-in-guest Related N/A Affected Target Field Value Software / System QEMU CXL Type-3 device emulation (hw/cxl/cxl-mailbox-utils.c) Versions Affected OOB read path: QEMU v7.1.0+ (introduced by 056172691b); OOB write path: QEMU v11.0.0+ (introduced by 5e5a86bab8 and da5cafdc4d) Language / Platform C / QEMU on Linux x86_64 Authentication Required Yes (root execution inside guest in provided PoC flow) Network Access Required Local only Summary QEMUtiny is a memory corruption exploit chain in QEMU CXL Type-3 emulation that combines an out-of-bounds read (GET_LOG) with an out-of-bounds write (SET_FEATURE). The PoC leaks QEMU process pointers and then corrupts CXL device-adjacent state to steer execution toward attacker-controlled callbacks. In the demonstrated setup, this enables code execution in the host QEMU process from a guest context.","permalink":"/pocs/binary/2026-05-16_qemutiny-memory-corruption/"},{"title":"VMware ESXi Active Directory Authentication Bypass (CVE-2024-37085)","cve":"CVE-2024-37085","category":"network","severity":"Medium","cvss_score":6.8,"tags":["auth-bypass","Active Directory","ESXi","vCenter","ransomware","unauthenticated-esxi"],"affected_product":"VMware ESXi hosts joined to Microsoft Active Directory","affected_versions":"ESXi 7.x and 8.x configurations affected by CVE-2024-37085 (see VMware advisory for fixed builds)","author":"WTN-arny (source repository); VMware and Microsoft threat intelligence reporting","patched":false,"date":"2026-05-16","year":"2026","summary":" Metadata Field Value Date Added 2026-05-16 Author / Researcher WTN-arny (source repository); VMware and Microsoft threat intelligence reporting CVE / Advisory CVE-2024-37085 Category network Severity Medium CVSS Score 6.8 (CVSSv3) Status Weaponized Tags auth-bypass, Active Directory, ESXi, vCenter, ransomware, unauthenticated-esxi Related N/A Affected Target Field Value Software / System VMware ESXi hosts joined to Microsoft Active Directory Versions Affected ESXi 7.x and 8.x configurations affected by CVE-2024-37085 (see VMware advisory for fixed builds) Language / Platform VMware ESXi / vSphere environments integrated with AD Authentication Required Partial Network Access Required Yes Summary CVE-2024-37085 is an authentication bypass in domain-joined VMware ESXi environments where AD group membership manipulation can grant administrator-level ESXi access without valid local ESXi credentials. Public reporting links this issue to real-world ransomware operations and broad internet exposure. Although the published CVSS score is 6.8, operational impact is frequently treated as high because successful abuse can provide full host control in virtual infrastructure environments.","permalink":"/pocs/network/2026-05-16_vmware-esxi-ad-auth-bypass/"},{"title":"VMware vCenter Server DCE/RPC Heap Overflow RCE (CVE-2024-37079)","cve":"CVE-2024-37079","category":"network","severity":"Critical","cvss_score":9.8,"tags":["RCE","heap-overflow","DCE/RPC","vCenter","unauthenticated","KEV"],"affected_product":"VMware vCenter Server","affected_versions":"vCenter Server versions impacted by CVE-2024-37079 prior to VMware June 2024 security updates","author":"Vulnmachines (source repository); VMware/CISA advisory ecosystem","patched":true,"date":"2026-05-16","year":"2026","summary":" Metadata Field Value Date Added 2026-05-16 Author / Researcher Vulnmachines (source repository); VMware/CISA advisory ecosystem CVE / Advisory CVE-2024-37079 Category network Severity Critical CVSS Score 9.8 (CVSSv3) Status Weaponized Tags RCE, heap-overflow, DCE/RPC, vCenter, unauthenticated, KEV Related N/A Affected Target Field Value Software / System VMware vCenter Server Versions Affected vCenter Server versions impacted by CVE-2024-37079 prior to VMware June 2024 security updates Language / Platform VMware vCenter Server Appliance / enterprise virtualization management plane Authentication Required No Network Access Required Yes Summary CVE-2024-37079 is a critical heap overflow condition in a vCenter Server DCE/RPC network-handling path. A crafted network packet can trigger memory corruption pre-authentication and potentially lead to remote code execution. Public reporting indicates patch availability in June 2024 and subsequent inclusion in CISA KEV in January 2026, indicating observed exploitation activity.","permalink":"/pocs/network/2026-05-16_vmware-vcenter-dcerpc-heap-overflow-rce/"},{"title":"Windows OLE Zero-Click RCE via Outlook RTF (CVE-2025-21298)","cve":"CVE-2025-21298","category":"binary","severity":"Critical","cvss_score":9.8,"tags":["RCE","zero-click","Outlook","RTF","OLE","ole32","Windows","memory-corruption","unauthenticated"],"affected_product":"Microsoft Windows OLE (ole32.dll) as reached by Outlook/Word RTF parsing","affected_versions":"Systems missing Microsoft's January 2025 fix for CVE-2025-21298","author":"ynwarcs","patched":true,"date":"2026-05-16","year":"2026","summary":" Metadata Field Value Date Added 2026-05-16 Author / Researcher ynwarcs CVE / Advisory CVE-2025-21298 Category binary Severity Critical CVSS Score 9.8 (CVSSv3) Status Researched Tags RCE, zero-click, Outlook, RTF, OLE, ole32, Windows, memory-corruption, unauthenticated Related N/A Affected Target Field Value Software / System Microsoft Windows OLE (ole32.dll) as reached by Outlook/Word RTF parsing Versions Affected Systems missing Microsoft\u0026rsquo;s January 2025 fix for CVE-2025-21298 Language / Platform RTF/OLE payloads on Windows Authentication Required No Network Access Required Yes (email delivery path) Summary CVE-2025-21298 is a critical Windows OLE memory-corruption vulnerability in ole32.dll that can be triggered through malicious RTF content. In Outlook scenarios, preview-pane rendering is sufficient to trigger the vulnerable parsing flow, making this effectively zero-click for recipients. Public reporting and issue context indicate exploitation in the wild by nation-state operators, and the CVE is listed in CISA KEV. Successful exploitation can lead to remote code execution in the target user context.","permalink":"/pocs/binary/2026-05-16_cve-2025-21298-outlook-rtf-rce/"},{"title":"BlueDucky — Unauthenticated Peering Leading to Code Execution (CVE-2023-45866)","cve":"CVE-2023-45866","category":"network","severity":"High","cvss_score":8.8,"tags":["Bluetooth","HID","keystroke-injection","unauthenticated","Android","Linux"],"affected_product":"Bluetooth HID host implementations vulnerable to CVE-2023-45866","affected_versions":"Platforms/devices that accept unauthenticated encrypted Bluetooth HID pairing as described in CVE-2023-45866","author":"pentestfunctions (source repository maintainers)","patched":true,"date":"2026-05-15","year":"2026","summary":" Metadata Field Value Date Added 2026-05-15 Author / Researcher pentestfunctions (source repository maintainers) CVE / Advisory CVE-2023-45866 Category network Severity High CVSS Score 8.8 (CVSSv3.1, estimated) Status Weaponized Tags Bluetooth, HID, keystroke-injection, unauthenticated, Android, Linux Affected Target Field Value Software / System Bluetooth HID host implementations vulnerable to CVE-2023-45866 Versions Affected Platforms/devices that accept unauthenticated encrypted Bluetooth HID pairing as described in CVE-2023-45866 Language / Platform Python PoC on Linux (tested by authors on Raspberry Pi with BlueZ stack) Authentication Required No Network Access Required Yes (Bluetooth radio proximity) Summary BlueDucky is a practical PoC implementation for CVE-2023-45866. It automates Bluetooth device discovery/selection and then emulates HID keyboard input to inject attacker-controlled DuckyScript payloads on vulnerable nearby targets. Because the pairing weakness is unauthenticated in affected scenarios, an attacker in Bluetooth range can trigger unintended command/input execution without valid user credentials.","permalink":"/pocs/network/2026-05-15_blueducky-cve-2023-45866/"},{"title":"BlueHammer Defender Local Privilege Escalation (CVE-2026-33825)","cve":"CVE-2026-33825","category":"binary","severity":"High","cvss_score":7.8,"tags":["LPE","Windows Defender","VSS","SAM-hive-leak","RPC","local-user"],"affected_product":"Microsoft Defender Antivirus update/scan workflow on Windows","affected_versions":"N/A (exact vulnerable build range not specified in source repository)","author":"Nightmare-Eclipse","patched":true,"date":"2026-05-15","year":"2026","summary":" Metadata Field Value Date Added 2026-05-15 Author / Researcher Nightmare-Eclipse CVE / Advisory CVE-2026-33825 Category binary Severity High CVSS Score 7.8 (estimated, CVSSv3) Status Weaponized Tags LPE, Windows Defender, VSS, SAM-hive-leak, RPC, local-user Affected Target Field Value Software / System Microsoft Defender Antivirus update/scan workflow on Windows Versions Affected N/A (exact vulnerable build range not specified in source repository) Language / Platform C++ / Windows Authentication Required Yes (local code execution) Network Access Required Local only Summary BlueHammer is a Windows local privilege-escalation PoC targeting Defender-associated update and scanning behavior. The exploit orchestrates object-manager symbolic links, directory change notifications, oplocks, RPC-triggered Defender activity, and transactional file access to obtain high-value data (SAM) through a privileged path. The leaked credential material is then used to manipulate local user authentication state and launch elevated execution flow, culminating in SYSTEM-level shell access.","permalink":"/pocs/binary/2026-05-15_bluehammer-defender-lpe/"},{"title":"CVE-2024-21338 — Local Privilege Escalation from Admin to Kernel","cve":"CVE-2024-21338","category":"binary","severity":"High","cvss_score":7.8,"tags":["LPE","Windows","AppLocker","token-impersonation","HVCI","admin-to-kernel","local-user"],"affected_product":"Microsoft Windows AppLocker driver path (\\\\Device\\\\AppID)","affected_versions":"Windows 10 and Windows 11 with HVCI enabled (per source repository)","author":"hakaioffsec","patched":true,"date":"2026-05-15","year":"2026","summary":" Metadata Field Value Date Added 2026-05-15 Author / Researcher hakaioffsec CVE / Advisory CVE-2024-21338 Category binary Severity High CVSS Score 7.8 (estimated, CVSSv3) Status Weaponized Tags LPE, Windows, AppLocker, token-impersonation, HVCI, admin-to-kernel, local-user Affected Target Field Value Software / System Microsoft Windows AppLocker driver path (\\\\Device\\\\AppID) Versions Affected Windows 10 and Windows 11 with HVCI enabled (per source repository) Language / Platform C++ / Windows Authentication Required Yes (local administrator execution) Network Access Required Local only Summary This PoC targets CVE-2024-21338, a Windows local privilege-escalation issue that enables escalation from local administrator context toward kernel-level control. The exploit chain performs token impersonation and then abuses an AppLocker IOCTL handler with crafted input structures. On vulnerable systems, successful execution gives kernel-impact privileges and full host takeover potential.","permalink":"/pocs/binary/2026-05-15_cve-2024-21338-admin-to-kernel/"},{"title":"Exchange Health Checker Outbound Rule Blind Spot (CVE-2026-42897)","cve":"CVE-2026-42897","category":"web","severity":"Medium","cvss_score":5.3,"tags":["Exchange","HealthChecker","IIS","URL-Rewrite","outbound-rules","EOMT","CSP","detection-gap"],"affected_product":"Microsoft CSS-Exchange Health Checker (HealthChecker.ps1)","affected_versions":"Versions where Get-URLRewriteRule.ps1 only parses rewrite.rules and not rewrite.outboundRules","author":"atiilla","patched":false,"date":"2026-05-15","year":"2026","summary":" Metadata Field Value Date Added 2026-05-15 Author / Researcher atiilla CVE / Advisory CVE-2026-42897 Category web Severity Medium CVSS Score 5.3 (CVSSv3) Status Researched Tags Exchange, HealthChecker, IIS, URL-Rewrite, outbound-rules, EOMT, CSP, detection-gap Affected Target Field Value Software / System Microsoft CSS-Exchange Health Checker (HealthChecker.ps1) Versions Affected Versions where Get-URLRewriteRule.ps1 only parses rewrite.rules and not rewrite.outboundRules Language / Platform PowerShell / Exchange on Windows Server with IIS Authentication Required Yes (administrator/operator running diagnostics) Network Access Required No Summary CVE-2026-42897 describes a diagnostic blind spot in Exchange Health Checker. The analyzer only enumerates inbound IIS URL Rewrite rules and ignores outbound rules. The EOMT mitigation for this CVE installs an outbound Content-Security-Policy rewrite rule (EOMT OWA CSP - outbound), so Health Checker reports omit this mitigation and can produce false-negative mitigation verification results.","permalink":"/pocs/web/2026-05-15_exchange-health-checker-outbound-rule-blind-spot/"},{"title":"HTTP Protocol Stack Remote Code Execution Vulnerability (CVE-2021-31166)","cve":"CVE-2021-31166","category":"network","severity":"Critical","cvss_score":9.8,"tags":["HTTP.sys","use-after-free","RCE","Windows","kernel","unauthenticated"],"affected_product":"Microsoft Windows HTTP Protocol Stack (http.sys)","affected_versions":"Windows Server 2004/20H2 (Server Core) and Windows 10 2004/20H2 (ARM64/x64/32-bit), per Microsoft advisory","author":"Axel \"0vercl0k\" Souchet (PoC); vulnerability reported by @_mxms and @fzzyhd1","patched":true,"date":"2026-05-15","year":"2026","summary":" Metadata Field Value Date Added 2026-05-15 Author / Researcher Axel \u0026ldquo;0vercl0k\u0026rdquo; Souchet (PoC); vulnerability reported by @_mxms and @fzzyhd1 CVE / Advisory CVE-2021-31166 Category network Severity Critical CVSS Score 9.8 (CVSSv3.1) Status Weaponized Tags HTTP.sys, use-after-free, RCE, Windows, kernel, unauthenticated Related N/A Affected Target Field Value Software / System Microsoft Windows HTTP Protocol Stack (http.sys) Versions Affected Windows Server 2004/20H2 (Server Core) and Windows 10 2004/20H2 (ARM64/x64/32-bit), per Microsoft advisory Language / Platform Python PoC targeting Windows HTTP.sys over HTTP Authentication Required No Network Access Required Yes Summary CVE-2021-31166 is a remote use-after-free vulnerability in the Windows HTTP Protocol Stack (http.sys) that is reachable via crafted HTTP headers. The public PoC sends a malformed Accept-Encoding header to trigger unsafe list handling in the kernel HTTP parser path. Successful exploitation can lead to system crash and has remote code execution impact according to Microsoft\u0026rsquo;s advisory.","permalink":"/pocs/network/2026-05-15_cve-2021-31166-http-sys-uaf/"},{"title":"LDAP Nightmare — Windows LDAP Client RCE/DoS (CVE-2024-49113)","cve":"CVE-2024-49113","category":"network","severity":"Critical","cvss_score":0,"tags":["LDAP","NRPC","Windows Server","unauthenticated","DoS","potential-RCE"],"affected_product":"Microsoft Windows LDAP client / Netlogon interaction path","affected_versions":"Windows Server systems affected by CVE-2024-49113 (vendor-specific vulnerable builds)","author":"SafeBreach Labs (Or Yair, Shahak Morag); CVE reported by Yuki Chen","patched":true,"date":"2026-05-15","year":"2026","summary":" Metadata Field Value Date Added 2026-05-15 Author / Researcher SafeBreach Labs (Or Yair, Shahak Morag); CVE reported by Yuki Chen CVE / Advisory CVE-2024-49113 Category network Severity Critical CVSS Score N/A Status Weaponized Tags LDAP, NRPC, Windows Server, unauthenticated, DoS, potential-RCE Affected Target Field Value Software / System Microsoft Windows LDAP client / Netlogon interaction path Versions Affected Windows Server systems affected by CVE-2024-49113 (vendor-specific vulnerable builds) Language / Platform Python PoC targeting Windows Server environments Authentication Required No Network Access Required Yes Summary LDAP Nightmare is a public PoC for CVE-2024-49113, a critical vulnerability in Windows LDAP client behavior that can be reached through Netlogon workflow interactions. The PoC starts a malicious LDAP service and triggers victim-side LDAP resolution via DsrGetDcNameEx2, then returns crafted data intended to trigger vulnerable handling. In observed PoC behavior, successful exploitation can crash the target (lsass/Netlogon path), and Microsoft classifies the issue as capable of remote code execution.","permalink":"/pocs/network/2026-05-15_ldap-nightmare-cve-2024-49113/"},{"title":"MiniPlasma - Windows Cloud Files Mini Filter Driver LPE (CVE-2020-17103)","cve":"CVE-2020-17103","category":"binary","severity":"High","cvss_score":7.8,"tags":["LPE","Windows","cldflt.sys","Cloud Files API","registry-symlink","race-condition","WER-hijack","SYSTEM-shell","local-user"],"affected_product":"Windows Cloud Files Mini Filter Driver (cldflt.sys) / cldapi.dll","affected_versions":"All Windows versions (patch reportedly absent or silently reverted)","author":"Nightmare-Eclipse, Elliot","patched":false,"date":"2026-05-15","year":"2026","summary":" Metadata Field Value Date Added 2026-05-15 Last Updated 2026-05-16 Author / Researcher Nightmare-Eclipse, Elliot CVE / Advisory CVE-2020-17103 Category binary Severity High CVSS Score 7.8 (CVSSv3) Status Weaponized Tags LPE, Windows, cldflt.sys, Cloud Files API, registry-symlink, race-condition, WER-hijack, SYSTEM-shell, local-user Related N/A Affected Target Field Value Software / System Windows Cloud Files Mini Filter Driver (cldflt.sys) / cldapi.dll Versions Affected All Windows versions (patch reportedly absent or silently reverted) Language / Platform C# / .NET / Windows Authentication Required Yes (local code execution as non-admin user) Network Access Required Local only Summary MiniPlasma is a fully weaponized Windows LPE that exploits a race condition in cldflrt!HsmOsBlockPlaceholderAccess inside cldflt.sys — the same vulnerability originally discovered by James Forshaw (Google Project Zero) and reported as CVE-2020-17103 in 2020. The author found the exact same vulnerable routine is still present and exploitable, either never patched or with the patch silently rolled back.","permalink":"/pocs/binary/2026-05-15_miniplasma-cve-2020-17103/"},{"title":"Next.js Corrupt Middleware Auth Bypass (CVE-2025-29927)","cve":"CVE-2025-29927","category":"web","severity":"Critical","cvss_score":9.1,"tags":["auth-bypass","middleware-bypass","Next.js","unauthenticated","header-injection"],"affected_product":"Next.js (Vercel)","affected_versions":"11.1.4 and later; fixed in 15.2.3, 14.2.25, 13.5.9, 12.3.5","author":"phoscoder","patched":true,"date":"2026-05-15","year":"2026","summary":" Metadata Field Value Date Added 2026-05-15 Author / Researcher phoscoder CVE / Advisory CVE-2025-29927 Category web Severity Critical CVSS Score 9.1 (CVSSv3) Status Weaponized Tags auth-bypass, middleware-bypass, Next.js, unauthenticated, header-injection Related N/A Affected Target Field Value Software / System Next.js (Vercel) Versions Affected 11.1.4 and later; fixed in 15.2.3, 14.2.25, 13.5.9, 12.3.5 Language / Platform JavaScript / Node.js Authentication Required No Network Access Required Yes Summary CVE-2025-29927 is a critical authentication bypass in Next.js middleware. By sending a crafted x-middleware-subrequest HTTP header, an unauthenticated remote attacker can cause the Next.js middleware layer to skip execution entirely — bypassing authentication guards, redirect logic, and any other security controls implemented in middleware. This affects all Next.js applications that rely on middleware for access control and is exploitable against any publicly reachable Next.js server running a vulnerable version.","permalink":"/pocs/web/2026-05-15_nextjs-middleware-bypass-cve-2025-29927/"},{"title":"RedSun Privileged File Write (CVE-2026-33825)","cve":"CVE-2026-33825","category":"binary","severity":"High","cvss_score":7.8,"tags":["LPE","privileged-file-write","Windows Defender","Cloud Files API","TOCTOU","file-reparse-point"],"affected_product":"Microsoft Defender Antivirus (real-time protection) on Windows with Cloud Files APIs","affected_versions":"N/A (version scope not specified in public PoC repository)","author":"Nightmare-Eclipse","patched":true,"date":"2026-05-15","year":"2026","summary":" Metadata Field Value Date Added 2026-05-15 Author / Researcher Nightmare-Eclipse CVE / Advisory CVE-2026-33825 Category binary Severity High CVSS Score 7.8 (estimated, CVSSv3) Status Weaponized Tags LPE, privileged-file-write, Windows Defender, Cloud Files API, TOCTOU, file-reparse-point Affected Target Field Value Software / System Microsoft Defender Antivirus (real-time protection) on Windows with Cloud Files APIs Versions Affected N/A (version scope not specified in public PoC repository) Language / Platform C++ / Windows Authentication Required Yes (local user execution) Network Access Required Local only Summary RedSun documents a local privilege-escalation technique where Defender\u0026rsquo;s handling of a cloud-tagged malicious file can be abused as a privileged file write primitive. The PoC orchestrates file operations so the antimalware rewrite path lands on a high-value target under C:\\Windows\\System32. By chaining this write with service/COM execution flow, a local attacker can escalate to elevated privileges.","permalink":"/pocs/binary/2026-05-15_redsun-privileged-file-write/"},{"title":"WinRAR Archive Extraction Path Traversal (CVE-2025-6218)","cve":"CVE-2025-6218","category":"misc","severity":"High","cvss_score":0,"tags":["path-traversal","arbitrary-file-write","startup-folder","WinRAR","Windows","user-interaction"],"affected_product":"WinRAR archive extraction workflow","affected_versions":"WinRAR 7.11 and earlier","author":"skimask1690","patched":false,"date":"2026-05-15","year":"2026","summary":"Metadata Field Value Date Added 2026-05-15 Author / Researcher skimask1690 CVE / Advisory CVE-2025-6218 Category misc Severity High CVSS Score N/A Status Weaponized Tags path-traversal, arbitrary-file-write, startup-folder, WinRAR, Windows, user-interaction Related N/A Affected Target Field Value Software / System WinRAR archive extraction workflow Versions Affected WinRAR 7.11 and earlier Language / Platform Batch / Windows Authentication Required Partial (user interaction required) Network Access Required Local only Summary This PoC demonstrates CVE-2025-6218 in WinRAR, where a crafted archive extraction path can place files outside the intended destination directory. The provided batch script builds a ZIP archive that writes a .bat file into the current user\u0026rsquo;s Startup folder. On vulnerable versions, extracting this archive via WinRAR\u0026rsquo;s extraction flow can lead to code execution on next logon.","permalink":"/pocs/misc/2026-05-15_winrar-path-traversal-cve-2025-6218/"},{"title":"Dirty Frag: Linux XFRM/RxRPC Page Cache Write Chain LPE","cve":"CVE-2026-43500, CVE-2026-43284","category":"binary","severity":"Critical","cvss_score":7.8,"tags":["LPE","Linux kernel","page-cache","xfrm","RxRPC","local","unauthenticated","Dirty Pipe variant"],"affected_product":"Linux kernel","affected_versions":"CVE-2026-43284: cac2661c53f3 (2017-01-17) – f4c50a4034e6 (2026-05-05); CVE-2026-43500: 2dc334f1a63a (2023-06-08) – aa54b1d27fe0 (2026-05-10)","author":"Hyunwoo Kim (@v4bel)","patched":true,"date":"2026-05-14","year":"2026","summary":" Metadata Field Value Date Added 2026-05-14 Author / Researcher Hyunwoo Kim (@v4bel) CVE / Advisory CVE-2026-43500, CVE-2026-43284 Category binary Severity Critical CVSS Score 7.8 (CVSSv3) Status Weaponized Tags LPE, Linux kernel, page-cache, xfrm, RxRPC, local, unauthenticated, Dirty Pipe variant Affected Target Field Value Software / System Linux kernel Versions Affected CVE-2026-43284: cac2661c53f3 (2017-01-17) – f4c50a4034e6 (2026-05-05); CVE-2026-43500: 2dc334f1a63a (2023-06-08) – aa54b1d27fe0 (2026-05-10) Language / Platform C, Linux x86_64 Authentication Required No Network Access Required No (local only) Summary Dirty Frag is a universal Linux Local Privilege Escalation (LPE) vulnerability class discovered by Hyunwoo Kim (@v4bel) that chains two Page Cache Write primitives: the xfrm-ESP Page-Cache Write (CVE-2026-43284) and the RxRPC Page-Cache Write (CVE-2026-43500). By exploiting these bugs, an unprivileged local user can overwrite arbitrary read-only pages in the kernel page cache — including SUID binaries such as /usr/bin/su — and obtain root privileges on all major Linux distributions. The exploit is deterministic, requires no race condition, and has a very high success rate.","permalink":"/pocs/binary/2026-05-14_linux-xfrm-rxrpc-lpe/"},{"title":"Linux XFRM ESP-in-TCP Local Privilege Escalation (Fragnesia)","cve":"CVE-2026-46300","category":"binary","severity":"High","cvss_score":7.8,"tags":["LPE","privilege-escalation","kernel","XFRM","ESP-in-TCP","page-cache","write-primitive","unprivileged"],"affected_product":"Linux kernel (XFRM ESP-in-TCP subsystem)","affected_versions":"All Linux kernel versions before the May 13 2026 XFRM patch (confirmed on 6.8.0-111-generic)","author":"William Bowling / V12 team (v12.sh)","patched":false,"date":"2026-05-14","year":"2026","summary":" Metadata Field Value Date Added 2026-05-14 Author / Researcher William Bowling / V12 team (v12.sh) CVE / Advisory CVE-2026-46300 Category binary Severity High CVSS Score 7.8 (CVSSv3) Status Weaponized Tags LPE, privilege-escalation, kernel, XFRM, ESP-in-TCP, page-cache, write-primitive, unprivileged Affected Target Field Value Software / System Linux kernel (XFRM ESP-in-TCP subsystem) Versions Affected All Linux kernel versions before the May 13 2026 XFRM patch (confirmed on 6.8.0-111-generic) Language / Platform C / Linux x86-64 Authentication Required No Network Access Required Local only Summary CVE-2026-46300 (\u0026ldquo;Fragnesia\u0026rdquo;) is a universal Linux local privilege escalation vulnerability in the XFRM ESP-in-TCP subsystem. It is a member of the Dirty Frag vulnerability class — a separate bug from the original dirtyfrag — that abuses a logic flaw where the kernel \u0026ldquo;forgets\u0026rdquo; that a fragment is shared during TCP coalescing. An unprivileged local user can exploit this to perform arbitrary byte writes into the kernel page cache of read-only files without any race condition, ultimately overwriting a setuid binary in-cache to gain a root shell.","permalink":"/pocs/binary/2026-05-14_linux-xfrm-fragnesia-lpe/"},{"title":"NGINX Rift — Heap Buffer Overflow RCE (CVE-2026-42945)","cve":"CVE-2026-42945","category":"web","severity":"Critical","cvss_score":9.8,"tags":["RCE","unauthenticated","nginx","heap-overflow","buffer-overflow","rewrite"],"affected_product":"NGINX Open Source / NGINX Plus","affected_versions":"NGINX 0.6.27 – 1.30.0; NGINX Plus R32 – R36","author":"depthfirst","patched":false,"date":"2026-05-14","year":"2026","summary":" Metadata Field Value Date Added 2026-05-14 Author / Researcher depthfirst CVE / Advisory CVE-2026-42945 Category web Severity Critical CVSS Score 9.8 (CVSSv3) Status Weaponized Tags RCE, unauthenticated, nginx, heap-overflow, buffer-overflow, rewrite Affected Target Field Value Software / System NGINX Open Source / NGINX Plus Versions Affected NGINX 0.6.27 – 1.30.0; NGINX Plus R32 – R36 Language / Platform C / Linux x86-64 Authentication Required No Network Access Required Yes Summary CVE-2026-42945 is a critical heap buffer overflow in NGINX\u0026rsquo;s ngx_http_rewrite_module that has existed since 2008. When a server configuration combines a rewrite rule containing ? with a set directive, NGINX\u0026rsquo;s two-pass script engine allocates an undersized buffer (based on the raw capture length) but then copies data with URI escape expansion — overflowing the heap with attacker-controlled URI bytes. An unauthenticated remote attacker can exploit this via heap feng shui to achieve arbitrary Remote Code Execution as the NGINX worker process user.","permalink":"/pocs/web/2026-05-14_nginx-rift-cve-2026-42945/"}]