Aditya Bhatt

10 exploits Active since Mar 2017
CVE-2025-49706 NOMISEC MEDIUM WRITEUP
Microsoft SharePoint Enterprise Server - Improper Authentication
Improper authentication in Microsoft Office SharePoint allows an unauthorized attacker to perform spoofing over a network.
15 stars
CVSS 6.5
CVE-2025-54794 NOMISEC CRITICAL WRITEUP
Claude Code < 0.2.111 - Path Traversal via Prefix Matching Bypass
Claude Code is an agentic coding tool. In versions below 0.2.111, a path validation flaw using prefix matching instead of canonical path comparison, makes it possible to bypass directory restrictions and access files outside the CWD. Successful exploitation depends on the presence of (or ability to create) a directory with the same prefix as the CWD and the ability to add untrusted content into a Claude Code context window. This is fixed in version 0.2.111.
12 stars
CVSS 9.1
CVE-2023-30258 NOMISEC CRITICAL WRITEUP
magnusbilling 6.0.0-7.2.9 - Unauthenticated OS Command Injection
Command Injection vulnerability in MagnusSolution magnusbilling 6.x and 7.x allows remote attackers to run arbitrary commands via unauthenticated HTTP request.
12 stars
CVSS 9.8
CVE-2017-0144 NOMISEC HIGH WRITEUP
Microsoft Windows SMBv1 - Remote Code Execution via Crafted Packets
The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows remote attackers to execute arbitrary code via crafted packets, aka "Windows SMB Remote Code Execution Vulnerability." This vulnerability is different from those described in CVE-2017-0143, CVE-2017-0145, CVE-2017-0146, and CVE-2017-0148.
11 stars
CVSS 8.8
CVE-2026-23842 GITHUB HIGH python WORKING POC
ChatterBot < 1.2.11 - Denial of Service via SQLAlchemy Connection Pool Exhaustion
ChatterBot is a machine learning, conversational dialog engine for creating chat bots. ChatterBot versions up to 1.2.10 are vulnerable to a denial-of-service condition caused by improper database session and connection pool management. Concurrent invocations of the get_response() method can exhaust the underlying SQLAlchemy connection pool, resulting in persistent service unavailability and requiring a manual restart to recover. Version 1.2.11 fixes the issue.
10 stars
CVSS 7.5
CVE-2025-49706 GITHUB MEDIUM WRITEUP
Microsoft SharePoint Enterprise Server - Improper Authentication
Improper authentication in Microsoft Office SharePoint allows an unauthorized attacker to perform spoofing over a network.
9 stars
CVSS 6.5
CVE-2025-10585 NOMISEC CRITICAL WRITEUP
Google Chrome < 140.0.7339.185 - Type Confusion in V8 via Crafted HTML Page
Type confusion in V8 in Google Chrome prior to 140.0.7339.185 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML page. (Chromium security severity: High)
9 stars
CVSS 9.8
CVE-2025-53770 NOMISEC CRITICAL WRITEUP
Microsoft SharePoint Server - Code Injection
Deserialization of untrusted data in on-premises Microsoft SharePoint Server allows an unauthorized attacker to execute code over a network. Microsoft is aware that an exploit for CVE-2025-53770 exists in the wild. Microsoft is preparing and fully testing a comprehensive update to address this vulnerability. In the meantime, please make sure that the mitigation provided in this CVE documentation is in place so that you are protected from exploitation.
8 stars
CVSS 9.8
CVE-2025-59287 GITHUB CRITICAL sql WRITEUP
Windows Server 2012, 2016, 2019, 2022, 2025 - Unauthenticated RCE via Deserialization
Deserialization of untrusted data in Windows Server Update Service allows an unauthorized attacker to execute code over a network.
7 stars
CVSS 9.8
CVE-2026-23842 NOMISEC HIGH WORKING POC
ChatterBot < 1.2.11 - Denial of Service via SQLAlchemy Connection Pool Exhaustion
ChatterBot is a machine learning, conversational dialog engine for creating chat bots. ChatterBot versions up to 1.2.10 are vulnerable to a denial-of-service condition caused by improper database session and connection pool management. Concurrent invocations of the get_response() method can exhaust the underlying SQLAlchemy connection pool, resulting in persistent service unavailability and requiring a manual restart to recover. Version 1.2.11 fixes the issue.
1 stars
CVSS 7.5