Share
## https://sploitus.com/exploit?id=37096A83-8848-5DDA-BC3E-B9DDA1358E26
# CVE Hunter 2026

AI-assisted penetration testing tool that detects tech stacks and validates the latest CVEs (2026) against web targets.

## Features

- **Passive Recon**: Identifies web technologies (frameworks, databases, languages) from HTTP headers, cookies, and JavaScript files.
- **Smart Matching**: Correlates detected stack with known CVEs from 2026.
- **PoC Validation**: Runs targeted, non-destructive checks to confirm vulnerability.
- **Report Generation**: Produces a penetration test report with findings.

## CVEs Covered (2026)

| CVE | Type | Target |
|-----|------|--------|
| CVE-2026-26198 | SQLi (ORM) | Python Ormar |
| CVE-2026-29793 | NoSQLi | FeathersJS + MongoDB |
| CVE-2026-32950 | SQLi โ†’ RCE | SQLBot / Dataease |
| CVE-2026-7206 | SQLi | sqlite-mcp |
| CVE-2026-4507 | SQLi | mindsql |
| CVE-2026-32710 | Heap OOB โ†’ RCE | MariaDB 11.4.x |
| CVE-2026-6493 | XSS | Rallly |

## Quick Start

```bash
go install github.com/0dayexperience/CVE-Hunter-2026/cmd/hunter@latest
hunter scan https://target.com