Skip to content

Introduction: AI-Powered 0day Disclosure Project with Working Exploits #21634

Description

@Exploit-Garbage

Hi Rapid7/Metasploit team,

I want to share a new open-source project that discovers and discloses 0day vulnerabilities using AI automation.

Project: 0day Rubbish
Repository: https://github.com/Exploit-Garbage/0day-Rubbish

Project Overview:

  • Automated AI-driven vulnerability discovery
  • Direct public disclosure with working PoCs
  • Focus on high-impact, widely-deployed systems
  • Standardized disclosure format with complete technical analysis

Current Disclosure: Cisco CUCM Remote Code Execution Chain

  • Multi-stage attack: SQLi → XXE → Axis Deployment → Freemarker RCE → Root Access
  • CVSS 9.8 Critical
  • Fully working exploit script included

We're passionate about advancing automated vulnerability research and believe our discoveries could be valuable additions to Metasploit modules. The exploits are well-documented and tested.

Would love to discuss potential collaboration or module submissions. Our goal is to make security research more efficient and impactful in the AI era.

Check out our work at: https://github.com/Exploit-Garbage/0day-Rubbish

Best regards,
0day Rubbish Team

Metadata

Metadata

Assignees

No one assigned

    Labels

    No labels
    No labels

    Type

    No type

    Fields

    No fields configured for issues without a type.

    Projects

    No projects

    Milestone

    No milestone

    Relationships

    None yet

    Development

    No branches or pull requests

    Issue actions