BishopFox

10 exploits Active since Apr 2015
CVE-2023-3519 NOMISEC CRITICAL WORKING POC
Unspecified Product <Version> - RCE
Unauthenticated remote code execution
229 stars
CVSS 9.8
CVE-2019-11510 NOMISEC CRITICAL WORKING POC
Pulse Secure PCS <9.0R3.4 - Info Disclosure
In Pulse Secure Pulse Connect Secure (PCS) 8.2 before 8.2R12.1, 8.3 before 8.3R7.1, and 9.0 before 9.0R3.4, an unauthenticated remote attacker can send a specially crafted URI to perform an arbitrary file reading vulnerability .
135 stars
CVSS 10.0
CVE-2023-27997 NOMISEC CRITICAL SCANNER
Fortinet Fortiproxy < 1.1.6 - Out-of-Bounds Write
A heap-based buffer overflow vulnerability [CWE-122] in FortiOS version 7.2.4 and below, version 7.0.11 and below, version 6.4.12 and below, version 6.0.16 and below and FortiProxy version 7.2.3 and below, version 7.0.9 and below, version 2.0.12 and below, version 1.2 all versions, version 1.1 all versions SSL-VPN may allow a remote attacker to execute arbitrary code or commands via specifically crafted requests.
134 stars
CVSS 9.8
CVE-2024-21762 NOMISEC CRITICAL SCANNER
Fortinet Fortiproxy < 2.0.14 - Out-of-Bounds Write
A out-of-bounds write in Fortinet FortiOS versions 7.4.0 through 7.4.2, 7.2.0 through 7.2.6, 7.0.0 through 7.0.13, 6.4.0 through 6.4.14, 6.2.0 through 6.2.15, 6.0.0 through 6.0.17, FortiProxy versions 7.4.0 through 7.4.2, 7.2.0 through 7.2.8, 7.0.0 through 7.0.14, 2.0.0 through 2.0.13, 1.2.0 through 1.2.13, 1.1.0 through 1.1.6, 1.0.0 through 1.0.7 allows attacker to execute unauthorized code or commands via specifically crafted requests
106 stars
CVSS 9.8
CVE-2015-0345 NOMISEC WORKING POC
Adobe Coldfusion < 10.0 - XSS
Cross-site scripting (XSS) vulnerability in Adobe ColdFusion 10 before Update 16 and 11 before Update 5 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
22 stars
CVE-2023-0656 NOMISEC HIGH WORKING POC
Sonicwall Sonicos < 7.0.1-5111 - Out-of-Bounds Write
A Stack-based buffer overflow vulnerability in the SonicOS allows a remote unauthenticated attacker to cause Denial of Service (DoS), which could cause an impacted firewall to crash.
19 stars
CVSS 7.5
CVE-2022-22274 NOMISEC CRITICAL WORKING POC
SonicOS - Buffer Overflow
A Stack-based buffer overflow vulnerability in the SonicOS via HTTP request allows a remote unauthenticated attacker to cause Denial of Service (DoS) or potentially results in code execution in the firewall.
19 stars
CVSS 9.8
CVE-2025-6980 NOMISEC HIGH SCANNER
Captive Portal - Info Disclosure
Captive Portal can expose sensitive information
3 stars
CVSS 7.5
CVE-2026-35616 NOMISEC CRITICAL SCANNER
Fortinet FortiClientEMS 7.4.5-7.4.6 - Command Injection
A improper access control vulnerability in Fortinet FortiClientEMS 7.4.5 through 7.4.6 may allow an unauthenticated attacker to execute unauthorized code or commands via crafted requests.
CVSS 9.8
CVE-2026-25075 NOMISEC HIGH SCANNER
strongSwan 4.5.0-6.0.4 - DoS
strongSwan versions 4.5.0 prior to 6.0.5 contain an integer underflow vulnerability in the EAP-TTLS AVP parser that allows unauthenticated remote attackers to cause a denial of service by sending crafted AVP data with invalid length fields during IKEv2 authentication. Attackers can exploit the failure to validate AVP length fields before subtraction to trigger excessive memory allocation or NULL pointer dereference, crashing the charon IKE daemon.
CVSS 7.5