SecureLayer7's research team focuses on identifying, analyzing, and responsibly disclosing vulnerabilities across widely-used software. This repository serves as a centralized archive of our published CVE research, proof-of-concept exploits, and lab environments.
| # | Published | CVE ID | Product | Type | Severity | Analysis |
|---|---|---|---|---|---|---|
| 1 | 2023-09-24 | CVE-2023-38831 | WinRAR | RCE |  |
Zero-Day RCE via DarkMe |
| 2 | 2023-12-11 | CVE-2023-22518 | Atlassian Confluence | Auth Bypass |  |
Authentication Bypass |
| 3 | 2024-01-10 | CVE-2023-26360 | Adobe ColdFusion | RCE | |
Unauthenticated RCE |
| 4 | 2024-01-30 | CVE-2020-9496 / CVE-2023-49070 / CVE-2023-51467 | Apache OFBiz | RCE + Auth Bypass | |
Multiple Vulnerabilities |
| 5 | 2024-03-11 | CVE-2024-23897 | Jenkins | Arbitrary File Read | |
Arbitrary File Read |
| 6 | 2024-05-24 | CVE-2023-39143 | PaperCut | RCE |  |
Remote Code Execution |
| 7 | 2024-06-05 | CVE-2024-27348 | Apache HugeGraph | RCE | |
Sandbox Bypass RCE |
| 8 | 2024-06-19 | CVE-2024-25065 | Apache OFBiz | Path Traversal |  |
Auth Bypass via Path Traversal |
| 9 | 2024-07-02 | CVE-2024-31204 / CVE-2024-30270 | Mailcow | XSS + Path Traversal |  |
XSS & Path Traversal |
| 10 | 2024-08-01 | CVE-2024-39877 | Apache Airflow | Code Execution |  |
Jinja2 Template Injection |
| 11 | 2024-08-22 | CVE-2024-22263 | Spring Cloud Data Flow | Arbitrary File Write | |
Arbitrary File Writing |
| 12 | 2024-09-26 | CVE-2024-38856 | Apache OFBiz | RCE |  |
File Read to RCE |
| 13 | 2025-12-05 | CVE-2025-55182 | React / Next.js | Prototype Pollution |  |
Prototype Pollution |
| 14 | 2025-12-21 | CVE-2025-68613 | n8n | RCE (Expression Injection) |  |
Expression Injection RCE |
| 15 | 2026-02-04 | CVE-2026-25049 | n8n | RCE |  |
Remote Code Execution |
| 16 | 2026-03-02 | Pending | IPVanish VPN (macOS) | Local Privilege Escalation | |
macOS Privilege Escalation |
| 17 | 2026-03-02 | — | DeepChat (Electron) | RCE via XSS / openExternal |
 |
openExternal RCE via XSS |
| 18 | 2026-03-06 | CVE-2026-22708 / CVE-2026-25253 | OpenClaw | Prompt Injection + Auth Bypass | |
ClawdBot VS Code Trojan & OpenClaw Risks |
| 19 | 2026-03-19 | CVE-2026-22729 | Spring AI (PgVectorStore) | JSONPath Injection |  |
JSONPath Injection |
| 20 | 2026-03-19 | CVE-2026-22730 | Spring AI (MariaDB Vector Store) | SQL Injection | |
SQL Injection |
| 21 | 2026-03-23 | CVE-2026-24291 | Windows Registry | Privilege Escalation | |
RegPwn |
| 22 | 2026-03-26 | CVE-2024-54676 | Apache OpenMeetings | RCE | |
Deserialization RCE |
| 23 | 2026-03-31 | CVE-2025-59489 | Unity Hub (macOS) | DyLib Injection / TCC Bypass | |
TCC Bypass via DyLib Injection |
| 24 | 2026-04-09 | CVE-2024-52012 | Apache Solr | Path Traversal RCE | |
Zip Slip RCE |
| 25 | 2026-04-20 | CVE-2025-57738 | Apache Syncope | Groovy Injection RCE |  |
Groovy Injection RCE |
| Website | securelayer7.net |
| Blog | blog.securelayer7.net |
| @securelayer7 | |
| Disclosure | Coordinated 90-day responsible disclosure policy |
All research is conducted responsibly. Vulnerabilities are reported to vendors before public disclosure.