GitHub Feed

Explore the latest GitHub repositories gathered from our feed. Entries are grouped by day to help you track developments quickly.

Sat May 24, 2025

Repository Description CVE Metrics Action
CVE-2025-2294 Kubio AI Page Builder <= 2.5.1 - Unauthenticated Local File Inclusion
v3.1 CRITICAL Score: 9.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 		Visit Repo
vulnerability-intelligence-mcp-server <p align="center"> <img src="logo.png" alt="Vibe tester Logo" n/a n/a Visit Repo

Fri May 23, 2025

Repository Description CVE Metrics Action
CVE-2025-31161 ️ CVE-2025-31161 - CrushFTP User Creation Authentication Byp n/a
v3.1 CRITICAL Score: 9.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 		Visit Repo
CVE-2025-30400 Microsoft DWM Core Library Elevation of Privilege Vulnerability
v3.1 HIGH Score: 7.8
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C 		Visit Repo
CVE-2025-5058 eMagicOne Store Manager for WooCommerce <= 1.2.5 - Unauthentic n/a n/a Visit Repo
CVE-2025-47181 Microsoft Edge (Chromium-based) Update Elevation of Privilege Vulnerability
v3.1 HIGH Score: 8.8
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H/E:U/RL:O/RC:C 		Visit Repo
CVE-2024-12583 Dynamics 365 Integration <= 1.3.23 - Authenticated (Contributor+) Remote Code Execution and Arbitrary File Read via Twig Server-Side Template Injection
v3.1 CRITICAL Score: 9.9
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H 		Visit Repo
cve-2025-0133 PAN-OS: Reflected Cross-Site Scripting (XSS) Vulnerability in GlobalProtect Gateway and Portal
v4.0 MEDIUM Score: 6.9
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/S:N/AU:N/R:U/V:D/RE:M/U:Amber 		Visit Repo
CVE-2025-4918 CVE-2025-4918 – Out-of-Bounds Memory Corruption in Mozilla F n/a n/a Visit Repo
CVE-2025-46801 CVE-2025-46801 – Pgpool-II Authentication Bypass PoC n/a n/a Visit Repo
CVE-2025-4123 CVE-2025-4123 n/a
v3.1 HIGH Score: 7.6
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L 		Visit Repo
CVE-2025-46822 Unauthenticated Arbitrary File Read via Absolute Path Unauthenticated Arbitrary File Read via Absolute Path
v4.0 HIGH Score: 7.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:P 		Visit Repo
-CVE-2025-46822- Unauthenticated Arbitrary File Read via Absolute Path descrip Unauthenticated Arbitrary File Read via Absolute Path
v4.0 HIGH Score: 7.7
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:P 		Visit Repo
CosmicRakp CVE-2013-4786 Go exploitation tool n/a n/a Visit Repo
NextJS-CVE-2025-29927-Docker-Lab Authorization Bypass in Next.js Middleware
v3.1 CRITICAL Score: 9.1
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N 		Visit Repo
CVE-2024-3661VPN DHCP routing options can manipulate interface-based VPN traffic
v3.1 HIGH Score: 7.6
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:L/A:L 		Visit Repo
CVE-2025-4611-PoC PoC for CVE-2025-4611 Slim SEO <= 4.5.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via slim_seo_breadcrumbs Shortcode
v3.1 MEDIUM Score: 6.4
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N 		Visit Repo
CVE-2025-46801 CVE-2025-46801 – Pgpool-II Authentication Bypass PoC n/a n/a Visit Repo
CVE-2025-44998 TinyFileManger XSS Vulnerability n/a n/a Visit Repo
nhi-zero-trust-bypass Demonstrates a real-world zero-trust bypass by exploiting BIND n/a n/a Visit Repo

Thu May 22, 2025

Repository Description CVE Metrics Action
CVE-2025-4123 Script to exploit Grafana CVE-2025-4123: XSS and Full-Read SSR n/a
v3.1 HIGH Score: 7.6
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:L/A:L 		Visit Repo
CVE-2024-9463-Proof-of-Concept Proof of Concept for CVE-2024-9463 Expedition: Unauthenticated OS Command Injection Vulnerability Leads to Firewall Credential Disclosure
v4.0 CRITICAL Score: 9.9
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:N/SA:N/AU:N/R:U/V:C/RE:H/U:Amber 		Visit Repo
CVE-2024-21762_FortiNet_PoC Proof-of-concept scanner targeting CVE-2024-21762 in FortiOS S n/a
v3.1 CRITICAL Score: 9.6
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:H/RL:W/RC:C 		Visit Repo
CVE-2025-24799 GLPI allows unauthenticated SQL injection through the inventory endpoint
v3.1 HIGH Score: 7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N 		Visit Repo
CVE-POC n/a n/a Visit Repo
CVE-2025-4322 Motors <= 5.6.67 - Unauthenticated Privilege Escalation via Pa n/a n/a Visit Repo
o3_finds_cve-2025-37899 Artefacts for blog post on finding CVE-2025-37899 with o3 n/a n/a Visit Repo
go-get-RCE This is the exploit of CVE-2018-6574: go get RCE n/a n/a Visit Repo
CVE-2025-44108-SXSS n/a n/a Visit Repo
CVE-2025-4322 n/a n/a Visit Repo

Wed May 21, 2025

Repository Description CVE Metrics Action
Anydesk-Exploit-CVE-2025-12654-RCE-Builder Exploit development targets vulnerabilities using tools like e n/a n/a Visit Repo
vsftpd-backdoor-exploit Hands-on exploitation of the VSFTPD 2.3.4 backdoor vulnerabili n/a n/a Visit Repo
CVE-2024-12583- Dynamics 365 Integration <= 1.3.23 - Authenticated (Contributor+) Remote Code Execution and Arbitrary File Read via Twig Server-Side Template Injection
v3.1 CRITICAL Score: 9.9
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H 		Visit Repo
SHELL-POC-CVE-2022-46169 Unauthenticated Command Injection
v3.1 CRITICAL Score: 9.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H 		Visit Repo
CVE-2025-4918 n/a n/a Visit Repo
CVE-2025-46801 CVE-2025-46801 – Pgpool-II Authentication Bypass PoC n/a n/a Visit Repo
bw-dump A proof-of-concept for (CVE-2023-38840) that extracts plaintex n/a n/a Visit Repo
CVE-2024-56428 n/a n/a Visit Repo
PanOsExploitMultitool Exploitation and Post-Exploitation Multitool for Palo Alto PAN n/a n/a Visit Repo
CVE-2024-56429 n/a n/a Visit Repo
Predicting-the-Exploit-Availability-for-CVEs n/a n/a Visit Repo
CVE-2025-24085 report for CVE-2025-24085 Apple CoreMedia n/a n/a Visit Repo

Tue May 20, 2025

Repository Description CVE Metrics Action
CVE-2025-40634 Exploit for stack-based buffer overflow found in the conn-ind n/a n/a Visit Repo
CVE-2025-46801 CVE-2025-46801 – Pgpool-II Authentication Bypass PoC n/a n/a Visit Repo
CVE-2025-4918 CVE-2025-4918 – Out-of-Bounds Memory Corruption in Mozilla F n/a n/a Visit Repo
HTA-Exploit Microsoft Windows HTA (HTML Application) - Pinnacle of Remote n/a n/a Visit Repo
Linux---Security---Detect-and-Mitigate-CVE-2024-3094 It was determined that malicious code was discovered in the up Xz: malicious code in distributed source
v3.1 CRITICAL Score: 10
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H 		Visit Repo
CVE-2025-47827 PoC and vulnerability report for CVE-2025-47827. n/a n/a Visit Repo
CVE-2025-47646 PoC for CVE-2025-47646 - WordPress PSW Front-end Login Registr n/a n/a Visit Repo
CVE-2025-4918-RCE CVE-2025-4918 is a memory corruption vulnerability in Mozilla n/a n/a Visit Repo

GitHub Threat Intelligence at a Glance

Stay on top of cybersecurity developments and open-source research through daily GitHub updates.

Jump into a repository to explore code, documentation, or CVE-related insights.