JavaScript for Pentesting

13h

KnowledgeDeliver flaw exploited as a zero-day to install web shells

Hackers exploited a critical zero-day vulnerability in a server running the KnowledgeDeliver learning management system (LMS) to deploy the Godzilla web shell.

SecurityWeek

Hackers Exploited KnowledgeDeliver Zero-Day for Web Shell Deployment

CVE-2026-5426, a hardcoded ASP.NET machineKey in KnowledgeDeliver, was exploited as a zero-day in ViewState deserialization ...

Child sex crimes are on the rise with new AI tools. Here's what to look out for.

A Portland detective warns AI and social media are making it easier for predators to exploit children online while ...

Decrypt

Perplexity Built a Tool That Checks Your Computer for Infected Software—Without Setting Off the Infection

Bumblebee from Perplexity scans developer machines for compromised packages and AI tool configs, without triggering malware.

CSO Online

As AI speeds coding, CVE Lite CLI keeps security deliberately AI-free

The OWASP-backed tool scans JavaScript and TypeScript lockfiles locally, aiming to help developers catch and remediate dependency risks before CI failures.

Ghost CMS SQL injection flaw exploited in large-scale ClickFix campaign

A large-scale campaign is exploiting a critical SQL injection vulnerability (CVE-2026-26980) in Ghost CMS to inject malicious ...

The Hacker News

LiteSpeed cPanel Plugin CVE-2026-48172 Exploited to Run Scripts as Root

CVE-2026-48172 lets cPanel users run scripts as root, affecting LiteSpeed plugin 2.3–2.4.4 and exposing servers.

manilatimes

Synack Announces General Availability of Sara AI Pentesting, Introducing a New Model for Continuous Security Validation

REDWOOD CITY, Calif., May 05, 2026 (GLOBE NEWSWIRE)-- Enterprises today test only a fraction of their attack surface. While attackers, increasingly powered by AI, operate continuously and at scale. As ...

GitHub

Affordable WiFi Pentesting Platform for Testing & Learning

EthiFi is a low-cost, open-source WiFi pentesting platform built on the ESP8266 microcontroller. Designed for security researchers, students, and enthusiasts who want to learn about wireless network ...

Digital Trends

The Rise of AI Pentesting: Exploring the Next Phase of Cybersecurity

Artificial intelligence is no longer just a lab experiment. It’s quietly becoming part of everyday software, helping developers write code, assisting analysts with research, and powering tools inside ...

Some results have been hidden because they may be inaccessible to you

Show inaccessible results