GitHub Feed
Explore the latest GitHub repositories gathered from our feed. Entries are grouped by day to help you track developments quickly.
Mon Aug 18, 2025
| Repository | Description | CVE | Metrics | Action |
|---|---|---|---|---|
| ExploitFinder | Advanced Exploit Finder v2.0.0 - Professional vulnerability d | n/a | n/a | Visit Repo |
| CVE-2025-32433-PoC | CVE-2025-32433 PoC: Unauthenticated Remote Code Execution (RCE | Erlang/OTP SSH Vulnerable to Pre-Authentication RCE |
v3.1
CRITICAL
Score: 10
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
|
Visit Repo |
| sap-netweaver-0day-CVE-2025-31324 | sap netweaver 0day poc by shinyhunters (scattered lapsus$ hunt | Missing Authorization check in SAP NetWeaver (Visual Composer development server) |
v3.1
CRITICAL
Score: 10
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
|
Visit Repo |
| apache__sling-org-apache-sling-servlets-resolver_CVE-2024-23673_2-10-0 | Apache Sling Servlets Resolver: Malicious code execution via path traversal |
v3.1
HIGH
Score: 8.5
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:H
|
Visit Repo | |
| EventON-Lite-CVE-Report | Disclosure for CVE-2025-8091 | n/a | n/a | Visit Repo |
| 0day-buffer-overflow-in-exiv2 | ZeroDay on exiv2!CVE-2025-XXXX: Heap-based buffer overflow in | n/a | n/a | Visit Repo |
| imagemagick-2025-poc | PoCs for 2025 ImageMagick vulnerabilities – integer overflow | n/a | n/a | Visit Repo |
| cve-2025-50428 | Proof of concept for the vulnerability CVE-2025-50428: Authent | n/a | n/a | Visit Repo |
| CVE-2019-12185 | CVE-2019-12185 - eLabFTW 1.8.5 Python3 Exploit POC | n/a | n/a | Visit Repo |
| PoC-CVE-2015-10141-Xdebug | Proof-of-Concept exploit script for Xdebug 2.5.5 and earlier v | Xdebug Remote Debugger Unauthenticated OS Command Execution |
v4.0
CRITICAL
Score: 9.3
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
|
Visit Repo |
| CVE-2024-28397-RCE | n/a | n/a | Visit Repo | |
| CVE-2025-50154 | n/a | n/a | Visit Repo | |
| Project-Exploitation-of-Webmin-Authentication-Vulnerability | Research Objective: To conduct a comprehensive analysis and su | n/a | n/a | Visit Repo |
| HTA-Exploit | Microsoft Windows HTA (HTML Application) - Pinnacle of Remote | n/a | n/a | Visit Repo |
| CVE-2025-55188-PoC | 7-Zip Exploit for Linux Platform | n/a | n/a | Visit Repo |
| cve2025-20265 | Safe Python script to detect Cisco FMC instances potentially v | n/a | n/a | Visit Repo |
| CVE-2025-50165 | n/a | n/a | Visit Repo | |
| CVE-2024-47533 | PoC of CVE-2025-47533 Clobber RCE | Cobbler allows anyone to connect to cobbler XML-RPC server with a known password and make changes |
v3.1
CRITICAL
Score: 9.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
Visit Repo |
| WinRAR-CVE-2025-8088-PoC-RAR | WinRAR 0day CVE-2025-8088 PoC RAR Archive | n/a | n/a | Visit Repo |
| CVE-2025-32778 | PoC exploit for CVE-2025-32778: command injection in Web-Check | Web-Check allows command Injection via Unvalidated URL in Screenshot API |
v4.0
CRITICAL
Score: 9.3
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
|
Visit Repo |
| CVE-2017-5871 | 01 Oktober 2024, saya menyumbangkan Template CVE-2017-5871 unt | n/a | n/a | Visit Repo |
| CVE-2025-48384 | Git allows arbitrary code execution through broken config quoting |
v3.1
HIGH
Score: 8.1
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H
|
Visit Repo | |
| Blackash-CVE-2025-53773 | CVE-2025-53773 | n/a | n/a | Visit Repo |
| CVE-2025-9043 | n/a | n/a | Visit Repo | |
| WinRAR-CVE-2025-8088-Path-Traversal-PoC | Proof-of-Concept for CVE-2025-8088 vulnerability in WinRAR (pa | n/a | n/a | Visit Repo |
| CVE-2025-54253-Exploit-Demo | CVE-2025-54253 exploit demo for Adobe AEM Forms on JEE: OGNL | n/a | n/a | Visit Repo |
| CVE-2024-34102 | XXE can expose crypt key and other secrets granting full admin access |
v3.1
CRITICAL
Score: 9.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
Visit Repo | |
| coolermaster-masterctrl-vuln | CVE-2025-52216 – Cooler Master MasterCTRL Silent Installatio | n/a | n/a | Visit Repo |
| CVE-2025-53770-Checker | CVE-2025-53770 SharePoint Deserialization Vulnerability Checke | Microsoft SharePoint Server Remote Code Execution Vulnerability |
v3.1
CRITICAL
Score: 9.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:F/RL:W/RC:C
|
Visit Repo |
| CVE-2024-47533-PoC | Cobbler allows anyone to connect to cobbler XML-RPC server with a known password and make changes |
v3.1
CRITICAL
Score: 9.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
Visit Repo | |
| CVE-2024-3660-PoC | A PoC for CVE-2024-3660. Arbitrary Code Execution in Keras. | Arbitrary code injection vulnerability in Keras framework < 2.13 | n/a | Visit Repo |
| exploit-js2py | The CVE-2024-28397 vulnerability affects versions of js2py up | n/a | n/a | Visit Repo |
| PoCs-and-Exploits | A repository containing all of the exploits I discovered and/o | n/a | n/a | Visit Repo |
| CVE-2025-51529 | Incorrect Access Control in the AJAX endpoint functionality in | n/a | n/a | Visit Repo |
| zeroheight-account-verification-bypass-CVE-2025-XXXX | Independent security finding – Zeroheight account creation b | n/a | n/a | Visit Repo |
| CVE-2025-26788 | n/a |
v3.1
HIGH
Score: 8.4
CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:H/I:H/A:L
|
Visit Repo | |
| oob_entry | oob_entry tfp0 kernel exploit for armv7 iOS (iOS 3.0–10.3.4) | n/a | n/a | Visit Repo |
| CVES | A repository to host all of my CVEs and writeups and exploits | n/a | n/a | Visit Repo |
| CVE-2024-47533-Cobbler-XMLRPC-Authentication-Bypass-RCE-Exploit-POC | CVE-2024-47533 is a critical authentication bypass vulnerabili | Cobbler allows anyone to connect to cobbler XML-RPC server with a known password and make changes |
v3.1
CRITICAL
Score: 9.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
Visit Repo |
| CVE-2025-8088-WinRAR-PathTraversal-PoC | n/a | n/a | Visit Repo | |
| CVE-2025-50154-Aggressor-Script | n/a | n/a | Visit Repo | |
| CVE-2025-6934 | CVE-2025-6934 is a critical vulnerability in the WordPress Opa | Opal Estate Pro <= 1.7.5 - Unauthenticated Privilege Escalation via 'on_regiser_user' |
v3.1
CRITICAL
Score: 9.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
Visit Repo |
| rollback_car_attack_proverif | ProVerif proof of concept of the Rollback attack on car keyfob | n/a | n/a | Visit Repo |
| CVE-2018-7600 | PoC of CVE-2018-7600 | n/a | n/a | Visit Repo |
| CVE-2024-28397-command-execution-poc | This vulnerability arises from incomplete sandboxing in js2py, | n/a | n/a | Visit Repo |
| ToolShell-CVE-2025-53770-SharePoint-Exploit-Lab-LetsDefend | Microsoft SharePoint Server Remote Code Execution Vulnerability |
v3.1
CRITICAL
Score: 9.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:F/RL:W/RC:C
|
Visit Repo | |
| jr-cve-finder | This repository contains a curated list of CVE vulnerabilities | n/a | n/a | Visit Repo |
| CVE-2025-7771 | ThrottleStop.sys, a legitimate driver, exposes two IOCTL inter | Code Execution / Escalation of Privileges in ThrottleStop |
v4.0
HIGH
Score: 8.7
CVSS:4.0/AV:L/AC:H/AT:N/PR:H/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
|
Visit Repo |
| Slient-URL-Exploit | URL Contamination Exploit Muted Java Drive-By downloads can tr | n/a | n/a | Visit Repo |
| CVE-2025-49132_poc | This is an improved version of the CVE-2025-49132 proof of con | n/a | n/a | Visit Repo |
GitHub Threat Intelligence at a Glance
Stay on top of cybersecurity developments and open-source research through daily GitHub updates.
Jump into a repository to explore code, documentation, or CVE-related insights.