akm

Operation Forum Troll: a new APT attack using a zero-day vulnerability in Chrome

In March 2025, employees of mass media and educational institutions in Russia were subjected to a previously unknown targeted attack, Operation Forum Troll. Kaspersky Lab technologies have detected a ...
GitHub

l-urk/CVE-2024-6387

🔒 CVE-2024-6387 regreSSHion remote code execution vulnerability exploit script usage: regreSSHion.py [-h] -i IP -p PORT [-t] [-c] [-d] [-r] [-x] [-y] [-z] 🔒 CVE ...
IEEE

Good News for Script Kiddies? Evaluating Large Language Models for Automated Exploit Generation

Abstract: Large Language Models (LLMs) have demonstrated remarkable capabilities in code-related tasks, raising concerns about their potential for automated exploit generation (AEG). This paper ...
GitHub

CosmicSting: critical unauthenticated XXE vulnerability in Adobe Commerce and Magento (CVE-2024-34102)

CVE-2024-34102 is a severe security flaw arising from improper handling of nested deserialization in Adobe Commerce and Magento. This vulnerability permits attackers to exploit XML External Entities ...