Axios CRLF Injection (CVE-2026-40175) 취약점 대응 가이드 및 fetch 기반 마이그레이션 분석
Axios CRLF Injection (CVE-2026-40175) 취약점 대응 가이드 및 fetch 기반 마이그레이션 분석
Scan local repos for vulnerable axios versions (CVE-2026-40175) and patch interactively
Acrobat Reader versions 24.001.30356, 26.001.21367 and earlier are affected by an Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') vulnerability that could result in arbitrary code execution in the context of the current user.
CVE-2026-39987 - Marimo < 0.23.0 Pre-Auth RCE (WebSocket) PoC de explotación - Conecta a /terminal/ws sin autenticación Author: Fevar54 Date: 2026-04-13 Severity: CRITICAL CVSS: 9.3
Found 200+ vulnerabilities on scanme.nmap.org including CVE-2023-38408 (9.8 critical)
CVE-2026-34197 — Apache ActiveMQ RCE via Jolokia API | PoC Exploit
CVE-2026-34197
CVE-2026-34197 - Apache ActiveMQ RCE via Jolokia Endpoint PoC
gRPC-Go RBAC Authorization Policy Bypass via Missing `:path` Slash (Auth Bypass)
python code for CVE-2018-15473, using paramiko
"Exploit optimizado para la enumeración de usuarios en OpenSSH < 7.7 (CVE-2018-15473). Reescrito para Python 3 con sistema de calibración anti-falsos positivos y ejecución multihilo en tiempo real."
ComfyUI-Manager Remote Code Execution exploit. Covers CVE-2025-67303 (config file exposure) and CVE-2026-22777 (CRLF injection). Includes Python script, Nuclei template, and evil git server.
Python PoC and Nuclei template for CVE-2026-21643 (Pre-Authentication SQL Injection in FortiClient EMS 7.4.4)