Recon

exp库-打造中文最大exploit库211IN STACK · 2026-04-06 00:00

Desktop Window Manager Core Library 10.0.10240.0 - Privilege Escalation

# Title: Desktop Window Manager Core Library 10.0.10240.0 — Privilege Escalation Heap-based Buffer Overflow (sanitized evidence) # Author: nu11secur1ty # Date: 2025-11-04 # Vendor: Microsoft # Software: Windows Desktop Window Manager (DWM) — ......

exp库-打造中文最大exploit库210IN STACK · 2026-04-06 00:00

Fortinet FortiWeb v8.0.1 - Auth Bypass

# Titles:Fortinet FortiWeb v8.0.1 - Auth Bypass # Author: nu11secur1ty # Date: 11/15/2025 # Vendor: https://www.fortinet.com/ # Software: v8.0.1 # Reference: https://nvd.nist.gov/vuln/detail/CVE-2025-64446 ## Description: CVE-2025-64446 is a cr......

exp库-打造中文最大exploit库203IN STACK · 2026-04-06 00:00

Windows Kernel - Elevation of Privilege

# Exploit Title : Windows Kernel - Elevation of Privilege �0�2 �0�2 �0�2 �0�2 �0�2 �0�2 �0�2 �0�2 �0�2 �0�2 �0�2 �0�2 �0�2 �0�2 �0�2 �0�2 �0�2 �0�2 �0�2 �0�2 �0�2 �0�2 �0�2 �0�2 �0�2 �0�2 �0�2 �0�2 �0�2 �0�2 �0�2 �0�2 �0�2 �0�2 �0�2 �0�2�0�2 # ......

Exploit-DB.com RSS Feed200IN STACK · 2026-04-06 00:00

[local] Windows Kernel - Elevation of Privilege

Windows Kernel - Elevation of Privilege

Filippo Valsorda60 · 2026-04-06 15:00

A Cryptography Engineer’s Perspective on Quantum Computing Timelines

The risk that cryptographically-relevant quantum computers materialize within the next few years is now high enough to be dispositive, unfortunately.

Qualys Threat Research40 · 2026-04-06 20:00

Why Every Enterprise Needs a Risk Operations Center (ROC)

Enterprise security has long optimized for speed of response over prevention of risk. At Qualys, we recognized early that this left half the problem unsolved, and we have spent years building the operational frameworks to close that gap. The Risk Operations Center is the result. Here is a scenario every security leader will recognize. A […]

Krebs on Security40 · 2026-04-06 02:07

Germany Doxes “UNKN,” Head of RU Ransomware Gangs REvil, GandCrab

An elusive hacker who went by the handle "UNKN" and ran the early Russian ransomware groups GandCrab and REvil now has a name and a face. Authorities in Germany say 31-year-old Russian Daniil Maksimovich Shchukin headed both cybercrime gangs and helped carry out at least 130 acts of computer sabotage and extortion against victims across the country between 2019 and 2021.

Palo Alto Unit 4238 · 2026-04-06 22:00

Understanding Current Threats to Kubernetes Environments

Unit 42 uncovers escalating Kubernetes attacks, detailing how threat actors exploit identities and critical vulnerabilities to compromise cloud environments. The post Understanding Current Threats to Kubernetes Environments appeared first on Unit 42 .

OpenAI Blog36 · 2026-04-06 10:00

Announcing the OpenAI Safety Fellowship

A pilot program to support independent safety and alignment research and develop the next generation of talent

Platformer (Platform Intelligence)12 · 2026-04-06 23:16

OpenAI is getting weird again

A strange purchase, executive reshuffling and a New Yorker investigation are raising questions ahead of an IPO

IEEE Spectrum12 · 2026-04-06 14:22

AI Is Insatiable

While browsing our website a few weeks ago, I stumbled upon “ How and When the Memory Chip Shortage Will End ” by Senior Editor Samuel K. Moore. His analysis focuses on the current DRAM shortage caused by AI hyperscalers’ ravenous appetite for memory, a major constraint on the speed at which large language models run. Moore provides a clear explanation of the shortage, particularly for high bandwidth memory (HBM). As we and the rest of the tech media have documented, AI is a resource hog. AI ...

Payatu12 · 2026-04-06 10:11

Top 7 Cybersecurity Companies in India – 2026 Edition

The cybersecurity landscape in India has evolved dramatically over the past decade. What began as basic antivirus and firewall implementations has transformed into sophisticated security operations encompassing threat intelligence, advanced penetration testing, security orchestration, compliance management, and cutting-edge research. As cyber threats grow more sophisticated and regulations become stricter, organizations need security partners who can deliver both technical depth […] The post ...

SitePoint11 · 2026-04-06 14:03

Nimbalyst: The Visual Workspace for Building with Claude Code and Codex

Nimbalyst is a free visual workspace for Claude Code and Codex with session management, visual editors, task tracking, and git workflows for agentic development. Continue reading Nimbalyst: The Visual Workspace for Building with Claude Code and Codex on SitePoint .

[DRAGNET]10 · 2026-04-06 07:00

Microsoft links Medusa ransomware affiliate to zero-day attacks

Microsoft links Medusa ransomware affiliate to zero-day attacks BleepingComputer

exp库-打造中文最大exploit库10 · 2026-04-06 00:00

is-localhost-ip 2.0.0 - SSRF

# Titles: is-localhost-ip 2.0.0 - SSRF # Author: nu11secur1ty # Date: 11/09/2025 # Vendor: https://github.com/tinovyatkin/is-localhost-ip # Software: https://github.com/tinovyatkin/is-localhost-ip/releases/tag/v2.0.0 # Reference: https://portswi......

exp库-打造中文最大exploit库10 · 2026-04-06 00:00

WBCE CMS 1.6.4 - Remote Code Execution

# Exploit Title: WBCE CMS 1.6.4 - Remote Code Execution # Date: 2024-10-26 # Exploit Author: Chokri Hammedi # Vendor Homepage: https://wbce.org/ # Software Link: https://github.com/WBCE/WBCE_CMS/releases/tag/v1.6.4 # Version: 1.6.4 # Tested on: ......

exp库-打造中文最大exploit库10 · 2026-04-06 00:00

RiteCMS 3.1.0 - Authenticated Remote Code Execution

# Exploit Title: RiteCMS 3.1.0 - Authenticated Remote Code Execution # Date: 2025-10-26 # Exploit Author: Chokri Hammedi # Vendor Homepage: https://github.com/handylulu/RiteCMS # Software Link: https://github.com/handylulu/RiteCMS/releases/downl......

exp库-打造中文最大exploit库10 · 2026-04-06 00:00

2026-04-06

Desktop Window Manager Core Library 10.0.10240.0 - Privilege Escalation

Fortinet FortiWeb v8.0.1 - Auth Bypass

Windows Kernel - Elevation of Privilege

[local] Windows Kernel - Elevation of Privilege

A Cryptography Engineer’s Perspective on Quantum Computing Timelines

Why Every Enterprise Needs a Risk Operations Center (ROC)

Germany Doxes “UNKN,” Head of RU Ransomware Gangs REvil, GandCrab

Understanding Current Threats to Kubernetes Environments

Announcing the OpenAI Safety Fellowship

OpenAI is getting weird again

AI Is Insatiable

Top 7 Cybersecurity Companies in India – 2026 Edition

Nimbalyst: The Visual Workspace for Building with Claude Code and Codex

Microsoft links Medusa ransomware affiliate to zero-day attacks

is-localhost-ip 2.0.0 - SSRF

WBCE CMS 1.6.4 - Remote Code Execution

RiteCMS 3.1.0 - Authenticated Remote Code Execution

ASP.net 8.0.10 - Bypass

Grafana 11.6.0 - SSRF

Zhiyuan OA - arbitrary file upload leading

Delivered by Trust: What the Axios Supply Chain Attack Means for Security Leaders

D-Strings Could End Your textwrap.dedent() Days and Other Python News for April 2026

用 GPT-5.4 单挑 NCTF 团队赛，成功解出91.7%的题目

[local] Desktop Window Manager Core Library 10.0.10240.0 - Privilege Escalation

[webapps] RiteCMS 3.1.0 - Authenticated Remote Code Execution

Hackers Compromised ILSpy WordPress Domain to Deliver Malware

Storm-1175 focuses gaze on vulnerable web-facing assets in high-tempo Medusa ransomware operations

Fortinet Rushes Emergency Fixes for Exploited Zero-Day

Qilin and Warlock Ransomware Use Vulnerable Drivers to Disable 300+ EDR Tools