GitHub Feed
Explore the latest GitHub repositories gathered from our feed. Entries are grouped by day to help you track developments quickly.
Tue Apr 29, 2025
| Repository | Description | CVE | Metrics | Action |
|---|---|---|---|---|
| CVE-Scanner | CVE-2021-42287/CVE-2021-42278/OTHER Scanner & Exploiter. | n/a | n/a | Visit Repo |
| CVE-2025-29927 | Authorization Bypass in Next.js Middleware |
v3.1
CRITICAL
Score: 9.1
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
|
Visit Repo | |
| Jpg-Png-Exploit-Slient-Builder-Exploit-Database-Cve-2023-Malware | In the hushed galleries of the Silent JPG Exploit, a symphony | n/a | n/a | Visit Repo |
| Slient-URL-Exploit | URL Contamination Exploit Muted Java Drive-By downloads can tr | n/a | n/a | Visit Repo |
| HTA-Exploit | Microsoft Windows HTA (HTML Application) - Pinnacle of Remote | n/a | n/a | Visit Repo |
| WinRAR-Exploit-Builder | The WinRAR Exploit Builder is a C# project designed to create | n/a | n/a | Visit Repo |
| Discord-Image-Logger-Stealer | Ephemeral discourse is embodied by the likes of Messenger Sess | n/a | n/a | Visit Repo |
| spip-cve-2023-27372-rce | SPIP CVE-2023-27372 Unauthenticated RCE Exploit (Web Shell Upl | n/a | n/a | Visit Repo |
| PDF-FUD-Exploit | A meticulous scrutiny of the Exploit PDFs innards exposes a ne | n/a | n/a | Visit Repo |
| letsdefend-cve2024-3400-case-study | Detection, analysis, and response strategies for CVE-2024-3400 | n/a | n/a | Visit Repo |
| CVE-2025-26014 | A Remote Code Execution (RCE) vulnerability in Loggrove v.1.0 | n/a | n/a | Visit Repo |
| CVE-2025-29927 | This is a CVE-2025-29927 Scanner. | Authorization Bypass in Next.js Middleware |
v3.1
CRITICAL
Score: 9.1
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
|
Visit Repo |
| Gombruc | This vulnerability is related to CVE-2025-0401, which affects | n/a | n/a | Visit Repo |
| CVE-2025-31324 | Unauthenticated upload in SAP NetWeaver Visual Composer Metada | Missing Authorization check in SAP NetWeaver (Visual Composer development server) |
v3.1
CRITICAL
Score: 10
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
|
Visit Repo |
| CVE-2022-25012-POC | Improved PoC of CVE-2022-25012 | n/a | n/a | Visit Repo |
| CVE-2025-24091 | n/a | n/a | Visit Repo | |
| CVE-2025-46701 | Tomcat CVE | n/a | n/a | Visit Repo |
| CVE-2025-31324_PoC_SAP | Proof-of-Concept for CVE-2025-31324: Unauthenticated upload in | Missing Authorization check in SAP NetWeaver (Visual Composer development server) |
v3.1
CRITICAL
Score: 10
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
|
Visit Repo |
Mon Apr 28, 2025
| Repository | Description | CVE | Metrics | Action |
|---|---|---|---|---|
| CVE-2025-31324_PoC | Proof-of-Concept for CVE-2025-31324: Unauthenticated upload in | Missing Authorization check in SAP NetWeaver (Visual Composer development server) |
v3.1
CRITICAL
Score: 10
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
|
Visit Repo |
| PoC-and-CVE-Reports | This repository is dedicated to Proof of Concept (PoC) exploi | n/a | n/a | Visit Repo |
| CVE-2025-32433 | CVE-2025-32433 is a vuln of ssh | Erlang/OTP SSH Vulnerable to Pre-Authentication RCE |
v3.1
CRITICAL
Score: 10
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
|
Visit Repo |
| parquet-canary-exploit-rce-poc-CVE-2025-30065 | Apache Parquet Java: Arbitrary code execution in the parquet-avro module when reading an Avro schema from a Parquet file metadata |
v4.0
CRITICAL
Score: 10
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
|
Visit Repo | |
| CVE-2024-40110 | Exploit para Poultry Farm Management System v1.0 | n/a | n/a | Visit Repo |
| SAP-CVE-2025-31324 | SAP NetWeaver Unauthenticated Remote Code Execution | Missing Authorization check in SAP NetWeaver (Visual Composer development server) |
v3.1
CRITICAL
Score: 10
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
|
Visit Repo |
| CVE-2025-29927 | CVE-2025-29927 | Authorization Bypass in Next.js Middleware |
v3.1
CRITICAL
Score: 9.1
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
|
Visit Repo |
| CVE-2022-29806 | CVE-2022-29806 POC | n/a | n/a | Visit Repo |
| CVE-2025-3971 | PHPGurukul COVID19 Testing Management System add-phlebotomist.php sql injection |
v4.0
MEDIUM
Score: 6.9
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N
|
Visit Repo | |
| cve-cli | A Python CLI that turns natural-language queries into CVE look | n/a | n/a | Visit Repo |
| CVE-2024-8418 | Containers/aardvark-dns: tcp query handling flaw in aardvark-dns leading to denial of service |
v3.1
HIGH
Score: 7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
Visit Repo | |
| CVE-2025-31324-NUCLEI | Nuclei template for cve-2025-31324 (SAP) | Missing Authorization check in SAP NetWeaver (Visual Composer development server) |
v3.1
CRITICAL
Score: 10
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
|
Visit Repo |
| CVE-2025-29927 | Next js middlewareauth Bypass | Authorization Bypass in Next.js Middleware |
v3.1
CRITICAL
Score: 9.1
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
|
Visit Repo |
| CVE-2025-31324 | SAP PoC para CVE-2025-31324 | Missing Authorization check in SAP NetWeaver (Visual Composer development server) |
v3.1
CRITICAL
Score: 10
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
|
Visit Repo |
Sun Apr 27, 2025
| Repository | Description | CVE | Metrics | Action |
|---|---|---|---|---|
| Onapsis_CVE-2025-31324_Scanner_Tools | Missing Authorization check in SAP NetWeaver (Visual Composer development server) |
v3.1
CRITICAL
Score: 10
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
|
Visit Repo | |
| PoC-CVE-2025-3914-Aeropage-WordPress-File-Upload | CVE-2025-3914-PoC | The Aeropage Sync for Airtable WordPress p | Aeropage Sync for Airtable <= 3.2.0 - Authenticated (Subscriber+) Arbitrary File Upload |
v3.1
HIGH
Score: 8.8
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
Visit Repo |
| Grafana-LFI-exploit | Updated exploit script for the CVE-2021-43798 | n/a | n/a | Visit Repo |
| CVE-2025-31324 | Missing Authorization check in SAP NetWeaver (Visual Composer development server) |
v3.1
CRITICAL
Score: 10
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
|
Visit Repo | |
| CVE-2022-3552 | Here is an explanation of how to exploit CVE-2022-3552 | Unrestricted Upload of File with Dangerous Type in boxbilling/boxbilling |
v3.0
HIGH
Score: 7.2
CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
|
Visit Repo |
| wordpress-CVE-2024-27956 | Attacks a vulnerable WordPress site with the wp-automatic pl | WordPress Automatic plugin <= 3.92.0 - Unauthenticated Arbitrary SQL Execution vulnerability |
v3.1
CRITICAL
Score: 9.9
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:H/A:L
|
Visit Repo |
| CVE-2022-42092 | CVE-2023-46818 Python3 Exploit for Backdrop CMS <= 1.22.0 Auth | n/a | n/a | Visit Repo |
| ExploitCVE2025 | ExploitCVE2025 - SAP Path Traversal Auto-Exploit Tool | n/a | n/a | Visit Repo |
| CVE-2025-31324 | CVE-2025-31324, SAP Exploit | Missing Authorization check in SAP NetWeaver (Visual Composer development server) |
v3.1
CRITICAL
Score: 10
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
|
Visit Repo |
| CVE-2025-32432 | CVE-2025-32432 checker and exploit | Craft CMS Allows Remote Code Execution |
v3.1
CRITICAL
Score: 10
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:L
|
Visit Repo |
| CVE-2024-27808.github.io | Vulnerabilidade em TypedArray/DataView | n/a | n/a | Visit Repo |
| CVE-2024-31449 | Lua library commands may lead to stack overflow and RCE in Redis |
v3.1
HIGH
Score: 7
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
|
Visit Repo | |
| Pre-render-data-spoofing-on-React-Router-framework-mode-CVE-2025-43865 | React Router allows pre-render data spoofing on React-Router framework mode |
v3.1
HIGH
Score: 8.2
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:H
|
Visit Repo | |
| CVE-2015-2797-PoC | airtiels 5650 CVE-2015-2797 PoC | n/a | n/a | Visit Repo |
| WHS3_vulhub | PoC for CVE-2017-8386 Git-Shell sandbox bypass vulnerability. | n/a | n/a | Visit Repo |
| PoC-CVE-2025-3914-FileUpload-Vulnerability | Aeropage Sync for Airtable <= 3.2.0 - Authenticated (Subscriber+) Arbitrary File Upload |
v3.1
HIGH
Score: 8.8
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
Visit Repo | |
| CVE-2024-36587 | n/a | n/a | Visit Repo | |
| CVE-2019-19781 | Whitehat school_Docker assignement_CVE-2019-19781_PoC | n/a | n/a | Visit Repo |
GitHub Threat Intelligence at a Glance
Stay on top of cybersecurity developments and open-source research through daily GitHub updates.
Jump into a repository to explore code, documentation, or CVE-related insights.