Doyensec

5 exploits Active since Oct 2022
CVE-2025-37947 GITHUB HIGH c WORKING POC
Linux Kernel 5.15-6.1.139, 6.2-6.6.91, 6.7-6.12.29, 6.13-6.14.7 - Out-of-bounds Write in ksmbd_vfs_stream_write
In the Linux kernel, the following vulnerability has been resolved: ksmbd: prevent out-of-bounds stream writes by validating *pos ksmbd_vfs_stream_write() did not validate whether the write offset (*pos) was within the bounds of the existing stream data length (v_len). If *pos was greater than or equal to v_len, this could lead to an out-of-bounds memory write. This patch adds a check to ensure *pos is less than v_len before proceeding. If the condition fails, -EINVAL is returned.
20 stars
CVSS 7.8
CVE-2022-39299 NOMISEC HIGH WORKING POC
passport-saml < 3.2.2 - Authentication Bypass via SAML Signature Verification Flaw
Passport-SAML is a SAML 2.0 authentication provider for Passport, the Node.js authentication library. A remote attacker may be able to bypass SAML authentication on a website using passport-saml. A successful attack requires that the attacker is in possession of an arbitrary IDP signed XML element. Depending on the IDP used, fully unauthenticated attacks (e.g without access to a valid user) might also be feasible if generation of a signed message can be triggered. Users should upgrade to passport-saml version 3.2.2 or newer. The issue was also present in the beta releases of `node-saml` before version 4.0.0-beta.5. If you cannot upgrade, disabling SAML authentication may be done as a workaround.
19 stars
CVSS 7.4
CVE-2024-0402 NOMISEC CRITICAL WORKING POC
GitLab 16.0-16.8.1 Path Traversal & Arbitrary File Write via Workspace
An issue has been discovered in GitLab CE/EE affecting all versions from 16.0 prior to 16.6.6, 16.7 prior to 16.7.4, and 16.8 prior to 16.8.1 which allows an authenticated user to write files to arbitrary locations on the GitLab server while creating a workspace.
15 stars
CVSS 9.9
CVE-2025-37947 WRITEUP HIGH WORKING POC
Linux Kernel 5.15-6.1.139, 6.2-6.6.91, 6.7-6.12.29, 6.13-6.14.7 - Out-of-bounds Write in ksmbd_vfs_stream_write
In the Linux kernel, the following vulnerability has been resolved: ksmbd: prevent out-of-bounds stream writes by validating *pos ksmbd_vfs_stream_write() did not validate whether the write offset (*pos) was within the bounds of the existing stream data length (v_len). If *pos was greater than or equal to v_len, this could lead to an out-of-bounds memory write. This patch adds a check to ensure *pos is less than v_len before proceeding. If the condition fails, -EINVAL is returned.
CVSS 7.8
EIP-2026-103783 EXPLOITDB WRITEUP
Microsoft VSCode Python Extension - Code Execution