GitHub Feed
Explore the latest GitHub repositories gathered from our feed. Entries are grouped by day to help you track developments quickly.
Tue Jun 24, 2025
| Repository | Description | CVE | Metrics | Action |
|---|---|---|---|---|
| CVE-2025-49132 | PoCs for CVE-2025-49132 | n/a | n/a | Visit Repo |
| printDemon2system | PrintDemon (CVE-2020-1048) Privilege Escalation | n/a | n/a | Visit Repo |
| CVE-2025-5309-Scanner | CVE-2025-5309 Multi-Method SSTI Scanner | BeyondTrust Detecti | n/a | n/a | Visit Repo |
| CVE-2025-49144 | PoC CVE-2025-49144 | Notepad++ Privilege Escalation in Installer via Uncontrolled Executable Search Path |
v3.1
HIGH
Score: 7.3
CVSS:3.1/AV:L/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H
|
Visit Repo |
| CVE-2025-45467 | n/a | n/a | Visit Repo | |
| CVE-2025-1718-Scanner | CVE-2025-1718 - Hitachi Energy FTP Reboot Vulnerability Scanne | n/a |
v4.0
HIGH
Score: 7.1
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N
|
Visit Repo |
| CVE-2025-0133 | Reflected XSS vulnerability found in Palo Alto GlobalProtect G | PAN-OS: Reflected Cross-Site Scripting (XSS) Vulnerability in GlobalProtect Gateway and Portal |
v4.0
MEDIUM
Score: 6.9
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:L/VA:N/SC:N/SI:N/SA:N/S:N/AU:N/R:U/V:D/RE:M/U:Amber
|
Visit Repo |
| CVE-2025-45466 | It is the details of CVE-2025-45466 | n/a | n/a | Visit Repo |
| CVE-2025-48461 | Weak Session Cookie Entropy | n/a | Visit Repo |
Mon Jun 23, 2025
| Repository | Description | CVE | Metrics | Action |
|---|---|---|---|---|
| Blackash-CVE-2025-4322 | CVE-2025-4322 – Unauthenticated Privilege Escalation via Pas | n/a | n/a | Visit Repo |
| Blackash-CVE-2025-1094 | CVE-2025-1094 | PostgreSQL quoting APIs miss neutralizing quoting syntax in text that fails encoding validation |
v3.1
HIGH
Score: 8.1
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
|
Visit Repo |
| CVE-2025-49132_poc | Pterodactyl翼龙面板CVE-2025-49132批量检测️🤓 | n/a | n/a | Visit Repo |
| CVE-2025-26466-msf | CVE-2025-26466 .rb module for msfconsole | Openssh: denial-of-service in openssh |
v3.1
MEDIUM
Score: 5.9
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
|
Visit Repo |
| CVE-PoCs | n/a | n/a | Visit Repo | |
| CVE-2025-45710 | CVE-2025-45710 | n/a | n/a | Visit Repo |
| CVE-2024-4577 | Exploit (C) CVE-2024-4577 on PHP CGI | Argument Injection in PHP-CGI |
v3.1
CRITICAL
Score: 9.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
Visit Repo |
| CVE-2025-45960 | n/a | n/a | Visit Repo | |
| Mass-CVE-2025-3248 | Mass-CVE-2025-3248 | Langflow Unauth RCE |
v3.1
CRITICAL
Score: 9.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
Visit Repo |
| cve_2024_32002_rce | Repo tor showcase the exploit | Git's recursive clones on case-insensitive filesystems that support symlinks are susceptible to Remote Code Execution |
v3.1
CRITICAL
Score: 9.1
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
|
Visit Repo |
| cve_2024_32002_hook | Repo to showcase the explotation of cve 2024 32002 | Git's recursive clones on case-insensitive filesystems that support symlinks are susceptible to Remote Code Execution |
v3.1
CRITICAL
Score: 9.1
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
|
Visit Repo |
| CVE-2025-3248 | CVE-2025-3248 | Langflow Unauth RCE |
v3.1
CRITICAL
Score: 9.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
Visit Repo |
| CVE-2025-48976_CVE-2025-48988 | CVE-2025-48976_CVE-2025-48988 | n/a | n/a | Visit Repo |
| langflow-rce-exploit | Remote Code Execution Exploit for Langflow (CVE-2025-3248) - [ | n/a | n/a | Visit Repo |
| CVE-2025-49132 | Check a list of Pterodactyl panels for vulnerabilities from a | n/a | n/a | Visit Repo |
Sun Jun 22, 2025
| Repository | Description | CVE | Metrics | Action |
|---|---|---|---|---|
| CVE-2023-33538 | Python Exploit for TP-Link TL-WR940N/TL-WR841N Command Injecti | n/a | n/a | Visit Repo |
| CVE-2025-3515 | CVE‑2025‑3515 — Drag and Drop Multiple File Upload for C | Drag and Drop Multiple File Upload for Contact Form 7 <= 1.3.8.9 - Unauthenticated Arbitrary File Upload via Insufficient Blacklist Checks |
v3.1
HIGH
Score: 8.1
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
|
Visit Repo |
| Anydesk-Exploit-CVE-2025-12654-RCE-Builder | Exploit development targets vulnerabilities using tools like e | n/a | n/a | Visit Repo |
| Blackash-CVE-2025-3248 | CVE-2025-3248 – Unauthenticated Remote Code Execution in Lan | Langflow Unauth RCE |
v3.1
CRITICAL
Score: 9.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
Visit Repo |
| CVE-2025-1562 | Recover WooCommerce Cart Abandonment, Newsletter, Email Marketing, Marketing Automation By FunnelKit <= 3.5.3 - Missing Authorization to Unauthenticated Arbitrary Plugin Installation |
v3.1
CRITICAL
Score: 9.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
Visit Repo | |
| CVE-2025-49132 | A script that gives you the credentials of a Pterodactyl panel | n/a | n/a | Visit Repo |
| CVE-2025-49113-Scanner | A powerful Python scanner to detect CVE-2025-49113 vulnerabili | n/a |
v3.1
CRITICAL
Score: 9.9
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
|
Visit Repo |
| CVE-2025-26909-Scanner | Advanced scanner and PoC for CVE-2025-26909 in Hide My WP Ghos | WordPress Hide My WP Ghost plugin <= 5.4.01 - Local File Inclusion to RCE vulnerability |
v3.1
CRITICAL
Score: 9.6
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:H/I:H/A:H
|
Visit Repo |
| CVE-2025-30401 | n/a | n/a | Visit Repo | |
| CVE-2025-3248-Scanner | Powerful unauthenticated RCE scanner for CVE-2025-3248 affecti | Langflow Unauth RCE |
v3.1
CRITICAL
Score: 9.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
Visit Repo |
Sat Jun 21, 2025
| Repository | Description | CVE | Metrics | Action |
|---|---|---|---|---|
| TryHack | CVE-2024-3094 | n/a | n/a | Visit Repo |
| AutoPwn-Titanic.htb | This is an automated exploitation script for the Hack The Box | n/a | n/a | Visit Repo |
| CVE-2011-0762 | Script que corrigi o exploit da CVE que foi publicado no explo | n/a | n/a | Visit Repo |
| CVE-2017-12615-PoC | PoC environment and exploit for the Apache Tomcat on Windows R | n/a | n/a | Visit Repo |
| CVE-2025-24813 | tomcat CVE-2025-24813 反序列化RCE环境 | Apache Tomcat: Potential RCE and/or information disclosure and/or information corruption with partial PUT | n/a | Visit Repo |
| Grafana-cve-2025-4123 | n/a |
v3.1
MEDIUM
Score: 6.8
CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:U/C:H/I:L/A:L
|
Visit Repo | |
| CVE-2021-30047 | Exploit CVE-2021-30047. | n/a | n/a | Visit Repo |
| CVE-2025-2539 | File Away <= 3.9.9.0.1 - Missing Authorization to Unauthenticated Arbitrary File Read |
v3.1
HIGH
Score: 7.5
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
|
Visit Repo | |
| PX4-Military-UAV-Autopilot-1.12.3-Stack-Buffer-Overflow-Exploit-CVE-2025-5640- | n/a | n/a | Visit Repo | |
| CVE-2023-24249-PoC | n/a | n/a | Visit Repo |
Fri Jun 20, 2025
| Repository | Description | CVE | Metrics | Action |
|---|---|---|---|---|
| CVE-2025-49132-PoC | n/a | n/a | Visit Repo | |
| CVE-2024-9796 | CVE-2024-9796 poc | WP-Advanced-Search < 3.3.9.2 - Unauthenticated SQL Injection | n/a | Visit Repo |
| fortinet-cve-2024-50562 | CVE-2024-50562 is a session management vulnerability in Fortin | n/a | n/a | Visit Repo |
| CVE-2025-6019-exploit | exploit | Libblockdev: lpe from allow_active to root in libblockdev via udisks |
v3.1
HIGH
Score: 7
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
|
Visit Repo |
| POC-CVE-2025-48988-CVE-2025-48976 | Apache Tomcat: FileUpload large number of parts with headers DoS | n/a | Visit Repo | |
| CVE-2015-1578-PoC-Metasploit | This is a proof-of-concept Metasploit module exploit for CVE-2 | n/a | n/a | Visit Repo |
GitHub Threat Intelligence at a Glance
Stay on top of cybersecurity developments and open-source research through daily GitHub updates.
Jump into a repository to explore code, documentation, or CVE-related insights.