Skip to main content

Resources

Changelog

These are the latest updates we've made to our platform. If you have any questions about any of the updates you see below, please feel free to contact us!

Filter by

November 2025 Changes

  • Exploitation for CVE-2020-36847 (Remote Code Execution in Wordpress Simple File List plugin)

    We’ve added an exclusive exploit for CVE-2020-36847 (WordPress Simple File List - Unauthenticated RCE) into Sniper, so you can move from suspicion to proof of rce in a controlled, ethical way.

    Why it matters
    CVE-2020-36847 is a critical, unauthenticated Remote Code Execution vulnerability in the Simple File List plugin for WordPress. Versions up to and including 4.2.2 let an attacker upload a php payload disguised as an image, then use the plugin’s rename function to change the extension to .php and run it on the server. The result is full arbitrary code execution with no login required, a fast path to site takeover, database access, credential theft, and lateral movement if the host can reach internal services. Updating to 4.2.3 or later fixes the issue.

    How to use

    Validate in Sniper → capture RCE evidence safely → patch the plugin (4.2.3+) → re-run Sniper to confirm remediation and rule out other exposed sites using the same plugin.

    Tools: Sniper – Automatic Exploiter | Network Vulnerability Scanner

    • RCE

    • CVE

  • Detection & exploitation for the React Native Community CLI development server RCE (CVE-2025-11953)

    We’ve just added an exclusive exploit for CVE-2025-11953 (React Native Community CLI development server) into Sniper and paired it with Network Scanner detection, so you can spot and confirm this RCE in one workflow.

    Why it matters
    CVE-2025-11953 is a critical, unauthenticated Remote Code Execution issue in the Metro development server started by the react native community cli. The server exposes an endpoint vulnerable to os command injection, letting an external attacker run arbitrary commands on the host if the dev server is reachable over the network. With a CVSS of 9.8, the impact is full compromise of the dev server environment and whatever credentials, source code, or internal network access it can reach.

    How to use

    Detect with the Network Scanner → validate in Sniper → re-scan to confirm remediation and catch leftover exposure across other hosts running the Metro dev server.

    Tools: Sniper – Automatic Exploiter | Network Vulnerability Scanner

    • RCE

    • CVE

  • Detection & exploitation for the Oracle RCE (CVE-2025-61882)

    We’ve just added an exclusive exploit for CVE-2025-61882 (Oracle E-Business Suite BI Publisher RCE) into Sniper and paired it with Network Scanner detection - available exclusively to Pentest-Tools.com customers.

    Why it matters
    This vulnerability is a critical, unauthenticated, pre-auth Remote Code Execution in Oracle EBS (versions 12.2.3 → 12.2.14). It has a CVSS of ~9.8 and is actively exploited in the wild. It allows remote attackers to run arbitrary code and potentially take over the Concurrent Processing subsystem, often containing high-value ERP, payroll, and financial data. This module gives you fast detection and zero-guesswork validation in one place.

    How to use

    detect with the Network Scanner → validate in Sniper → re-scan to confirm remediation and rule out residual exposure across multiple assets.

    Tools: Sniper – Automatic Exploiter | Network Vulnerability Scanner

    • RCE

    • CVE

March 2024 Changes

  • Don’t miss a thing with new detection modules in the Network Scanner

    Thanks to our security research team, you can now detect:


    Speaking about Roundcube, a couple of months ago we published an analysis - and public exploit - for CVE-2021-44026, an SQL injection vulnerability in the open-source mail client.


    The Network Scanner now also generates explicit findings for sensitive services that shouldn't be exposed on the internet (e.g. SMB, RDP, MySQL), which are easier to include in your reports.

    Tool: Network Vulnerability Scanner

    • Network Scanning

    • CVE

    • RCE

January 2024 Changes

  • Exploit for CVE-2024-21887 (Remote Code Execution in Ivanti Connect Secure)

    Sniper can exploit a Remote Code Execution vulnerability found in Ivanti Connect Secure (CVE-2024-21887).

    Tools: Sniper – Automatic Exploiter | Network Vulnerability Scanner

    • CVE

    • RCE

  • Detection for CVE-2022-1471 (Remote Code Execution in SnakeYAML library - Attlassian Confluence)

    Network Scanner detects if CVE-2022-1471 (CVSSv3 10), a Remote Code Execution in SnakeYAML library - Atlassian Confluence, impacts your targets.

    Tool: Network Vulnerability Scanner

    • CVE

    • RCE

  • Detection for CVE-2023-46805 (Authentication Bypass in Ivanti Connect Secure)

    Network Scanner detects if CVE-2023-46805 (CVSSv3 8.2), an authentication Bypass in Ivanti Connect Secure, affects your targets.

    Tool: Network Vulnerability Scanner

    • CVE

  • Exploit for CVE-2023-46604 (Remote Code Execution in Apache ActiveMQ)

    Sniper can exploit a Remote Code Execution vulnerability found in Apache ActiveMQ (CVE-2023-46604).

    Tool: Sniper – Automatic Exploiter

    • CVE

    • RCE

  • Exploit for CVE-2023-47246 (Remote Code Execution in SysAid)

    Sniper can exploit a Remote Code Execution vulnerability found in SysAid (CVE-2023-47246).

    Tool: Sniper – Automatic Exploiter

    • RCE

    • CVE

December 2023 Changes

  • Exploit for CVE-2023-20273 (RCE in Cisco IOS XE)

    Sniper can exploit an authenticated RCE vulnerability found in Cisco IOS XE (CVE-2023-20273), based on an Authentication Bypass vulnerability (CVE-2023-20198).

    Tool: Sniper – Automatic Exploiter

    • CVE

    • RCE

November 2023 Changes

October 2023 Changes

September 2023 Changes

August 2023 Changes

July 2023 Changes

June 2023 Changes

May 2023 Changes

April 2023 Changes

March 2023 Changes

  • Exploit for CVE-2023-23752 (flaw in Joomla)

    Sniper can exploit a critical flaw in Joomla 4.0.0 through 4.2.7. An improper access check allows unauthorized access to web service endpoints. (CVE-2023-23752)

    Tool: Sniper – Automatic Exploiter

    • CVE

  • Exploit for CVE-2022-42889 (RCE in Apache Commons Text)

    Sniper can exploit a critical RCE flaw in Apache Commons Text packages 1.5 through 1.9. This vuln affects the StringSubstitutor interpolar class, which is included in the Commons Text library.

    Tool: Sniper – Automatic Exploiter

    • CVE

    • RCE

  • Exploit for CVE-2022-39952 (RCE in Fortinet)

    Sniper can exploit an unauthenticated RCE vuln found in the external control of file name or path in the Fortinet FortiNAC versions. (CVE-2022-39952)

    Tool: Sniper – Automatic Exploiter

    • RCE

    • CVE

February 2023 Changes

January 2023 Changes

December 2022 Changes

November 2022 Changes

October 2022 Changes

September 2022 Changes

August 2022 Changes

July 2022 Changes

June 2022 Changes

May 2022 Changes