Topic: public exploit availability

Sort by: Relevance | Date
  • Critical SAP NetWeaver Exploit Now Publicly Available
    August 20, 2025
    80%

    Critical SAP NetWeaver Exploit Now Publicly Available

    A critical vulnerability (CVE-2025-31324) in SAP NetWeaver AS Java is actively exploited, allowing unauthenticated attackers to execute remote code via the metadata uploader. The exploit's simplicity and public source code enable low-skilled hackers to quickly weaponize it, with real attacks alre...

    Read More »
  • 84,000+ Roundcube Servers at Risk from Active Exploit
    June 11, 2025
    75%

    84,000+ Roundcube Servers at Risk from Active Exploit

    A critical vulnerability (CVE-2025-49113) in Roundcube webmail servers (versions 1.1.0–1.6.10) exposes over 84,000 systems to remote code execution due to improper input sanitization in the `$_GET['_from']` parameter. Attackers can exploit the flaw via CSRF, credential scraping, or brute-force te...

    Read More »

Related Topics

patch recommendations sap notes 3594142 3604119 (1) endpoint blocking developmentservermetadatauploader (1) Mitigation Strategies (1) compromise response remediation (1) roundcube vulnerability cve-2025-49113 (1) php object deserialization (1) remote code execution rce flaw (1) session corruption (1)