Vulnerabilities
The high-severity flaw can be exploited remotely, without authentication, in server-side request forgery (SSRF) attacks.
Hi, what are you looking for?
SecurityWeek
All posts tagged "PoC"
Vulnerabilities
Introduced in 2008, the critical-severity security defect was patched this week in NGINX Plus and NGINX open source.
Vulnerabilities
Hundreds of internet-exposed Oracle E-Business Suite instances may still be vulnerable to attacks.
Vulnerabilities
Adobe has released urgent security updates to resolve two AEM Forms vulnerabilities for which proof-of-concept (PoC) code exists.
Vulnerabilities
The critical flaw, tracked as CVE-2025-20188 (CVSS score of 10/10), allows attackers to execute arbitrary code remotely.
Vulnerabilities
Google has rolled out a Chrome 136 update that resolves a high-severity vulnerability for which a public exploit exists.
Vulnerabilities
SysAid patches IT service management software vulnerabilities that can be chained for unauthenticated remote command execution.
Vulnerabilities
PoC code targeting two exploited SonicWall flaws was published just CISA added them to the KEV catalog.
Vulnerabilities
Proof-of-concept (PoC) code and technical details on four critical-severity Ivanti EPM vulnerabilities are now available.
Malware & Threats
A fake proof-of-concept (PoC) exploit for a recent LDAP vulnerability distributes information stealer malware.
Vulnerabilities
Proof-of-concept (PoC) code was published for CVE-2024-49113, a denial-of-service (DoS) vulnerability in Windows LDAP.
Vulnerabilities
Adobe has released patches for a high-severity ColdFusion vulnerability for which proof-of-concept (PoC) code exists.
Vulnerabilities
WatchTowr has published proof-of-concept (PoC) code for an unpatched vulnerability in the Mitel MiCollab enterprise collaboration platform.
Vulnerabilities
Organizations urged to hunt for potential compromise as exploitation of a recent Ivanti enterprise VPN vulnerability begins.
Vulnerabilities
PoC exploit code targeting a critical Jenkins vulnerability patched last week is already publicly available.
Vulnerabilities
PoC code exploiting a critical Fortra GoAnywhere MFT vulnerability gets published one day after public disclosure.
Supply Chain Security
The hackers exfiltrated data from Salesforce instances of Klue customers, such as Huntress and Recorded Future.
Data Breaches
Vulnerabilities
Hacker Conversations
Artificial Intelligence
French President Emmanuel Macron urged the world’s wealthy democracies to work together on regulating advanced AI systems.
Malware & Threats
Malware & Threats
