GitHub Feed
Explore the latest GitHub repositories gathered from our feed. Entries are grouped by day to help you track developments quickly.
Fri Jul 11, 2025
| Repository | Description | CVE | Metrics | Action |
|---|---|---|---|---|
| watchTowr-vs-FortiWeb-CVE-2025-25257 | n/a | n/a | Visit Repo | |
| exploit_cve-2007-2447_again | just remeber how small mistake in santisize username could giv | n/a | n/a | Visit Repo |
| CVE-2025-32462-32463-Detection-Script- | Critical Sudo Vulnerabilities Let Local Users Gain Root Access | n/a |
v3.1
LOW
Score: 2.8
CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:C/C:N/I:L/A:N
|
Visit Repo |
| CVE-2024-10915 | D-Link DNS-320/DNS-320LW/DNS-325/DNS-340L account_mgr.cgi cgi_user_add os command injection |
v4.0
CRITICAL
Score: 9.2
CVSS:4.0/AV:N/AC:H/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N
|
Visit Repo | |
| CVE-2025-48384 | Git allows arbitrary code execution through broken config quoting |
v3.1
HIGH
Score: 8.1
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H
|
Visit Repo | |
| -CVE-2024-45352 | Technical report about a critical vulnerability in Xiaomi (CVE | Xiaomi smarthome application Webview has code execution vulnerability |
v3.1
HIGH
Score: 8.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
|
Visit Repo |
| cve-2025-48384 | Git allows arbitrary code execution through broken config quoting |
v3.1
HIGH
Score: 8.1
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H
|
Visit Repo | |
| Ofbiz-RCE | CVE-2024-32113 & CVE-2024-38856 | n/a | n/a | Visit Repo |
| CVE-2024-45352 | vulnerability in Xiaomi (CVE-2024-45352) | Xiaomi smarthome application Webview has code execution vulnerability |
v3.1
HIGH
Score: 8.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
|
Visit Repo |
| CVE-2024-45352-xiaomi | Technical report about a critical vulnerability in Xiaomi (CVE | Xiaomi smarthome application Webview has code execution vulnerability |
v3.1
HIGH
Score: 8.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
|
Visit Repo |
| rejetto-http-file-server-2.3.x-RCE-exploit-CVE-2014-6287 | This repository contains Detailed explanation and working poc | n/a | n/a | Visit Repo |
| cve-2025-48384-hub | Git allows arbitrary code execution through broken config quoting |
v3.1
HIGH
Score: 8.1
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H
|
Visit Repo | |
| CVE-2025-45778 | A stored cross-site scripting (XSS) vulnerability in The Langu | n/a | n/a | Visit Repo |
| xiaomi-cve-2024-45352 | Reporte técnico sobre vulnerabilidad crítica de Xiaomi | Xiaomi smarthome application Webview has code execution vulnerability |
v3.1
HIGH
Score: 8.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
|
Visit Repo |
Thu Jul 10, 2025
| Repository | Description | CVE | Metrics | Action |
|---|---|---|---|---|
| CVE-2025-25257 | Unauthenticated SQL Injection in FortiWeb | n/a | n/a | Visit Repo |
| CVE-2025-5777 | Citrix NetScaler Memory Leak PoC | NetScaler ADC and NetScaler Gateway - Insufficient input validation leading to memory overread |
v4.0
CRITICAL
Score: 9.3
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L
|
Visit Repo |
| CVE-2025-48384 | Git allows arbitrary code execution through broken config quoting |
v3.1
HIGH
Score: 8.1
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H
|
Visit Repo | |
| CVE-2024-27954 | WordPress Automatic plugin <= 3.92.0 - Unauthenticated Arbitrary File Download and SSRF vulnerability |
v3.1
CRITICAL
Score: 9.3
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:L/A:N
|
Visit Repo | |
| CVE-2024-25600 | WordPress Bricks Theme <= 1.9.6 - Unauthenticated Remote Code Execution (RCE) vulnerability |
v3.1
CRITICAL
Score: 10
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
|
Visit Repo | |
| CVE-2025-48384-bad-nginx-submodule | Git allows arbitrary code execution through broken config quoting |
v3.1
HIGH
Score: 8.1
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H
|
Visit Repo | |
| CVE-2025-4578 | File Provider <= 1.2.3 - Unauthenticated SQL Injection | n/a | n/a | Visit Repo |
| CVE-2025-53547-POC | CVE-2025-53547 one of poc code | n/a | n/a | Visit Repo |
| CVE-2025-48384-bad-nginx | Git allows arbitrary code execution through broken config quoting |
v3.1
HIGH
Score: 8.1
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H
|
Visit Repo | |
| VAPT-Report-on-SMB-Exploitation-in-Windows-10-Finance-Endpoint | This report outlines a structured VAPT engagement focusing on | n/a | n/a | Visit Repo |
| PoCVulDb | PoC of CVEs 4m3rr0r | n/a | n/a | Visit Repo |
| CVE-2025-32023 | Exploit for CVE-2025-32023 | n/a | n/a | Visit Repo |
| CVE-2025-48384 | CVE-2025-48384 | Git allows arbitrary code execution through broken config quoting |
v3.1
HIGH
Score: 8.1
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H
|
Visit Repo |
| CVE-2025-48384-p | Git allows arbitrary code execution through broken config quoting |
v3.1
HIGH
Score: 8.1
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H
|
Visit Repo | |
| CVE-2024-31969 | CVE-2024-31969 adalah privilege escalation local pada sudo ket | n/a | n/a | Visit Repo |
| Pickle-Deserialization-Exploit-in-Transformers | This study analyzes Python pickle deserialization vulnerabilit | n/a | n/a | Visit Repo |
| CVE-2025-5777 | CVE-2025-5777 Citrix NetScaler Memory Leak Exploit (CitrixBlee | NetScaler ADC and NetScaler Gateway - Insufficient input validation leading to memory overread |
v4.0
CRITICAL
Score: 9.3
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:L/SI:L/SA:L
|
Visit Repo |
| dependency-vuln-mapper | Visualizes and analyzes how vulnerabilities propagate through | n/a | n/a | Visit Repo |
| CVE-2025-21574-Exploit | n/a |
v3.1
MEDIUM
Score: 6.5
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
|
Visit Repo | |
| CVE-2025-48384 | 漏洞测试 | Git allows arbitrary code execution through broken config quoting |
v3.1
HIGH
Score: 8.1
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H
|
Visit Repo |
| CVE-2025-34085 | Simple File List – Unauthenticated RCE Exploit (CVE-2025-340 | WordPress Simple File List Plugin < 4.2.3 Unauthenticated Remote Code Execution |
v4.0
CRITICAL
Score: 10
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
|
Visit Repo |
| CVE-2025-30208 | CVE-2025-30208 | Vite bypasses server.fs.deny when using `?raw??` |
v3.1
MEDIUM
Score: 5.3
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N
|
Visit Repo |
| CVE-2025-6554 | CVE-2025-6554 PoC | n/a | n/a | Visit Repo |
| CVE-2025-6218-WinRAR-Directory-Traversal-RCE | CVE-2025-6218 is a directory traversal vulnerability in WinRAR | n/a | n/a | Visit Repo |
Wed Jul 09, 2025
| Repository | Description | CVE | Metrics | Action |
|---|---|---|---|---|
| CVE-2025-32463-EXPLOIT | n/a |
v3.1
CRITICAL
Score: 9.3
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
|
Visit Repo | |
| sudo-zero-day-CVE-2025-32463 | CVE-2025-32463: Local Privilege Escalation via Sudo chroot in | n/a |
v3.1
CRITICAL
Score: 9.3
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
|
Visit Repo |
| cve-pocs | n/a | n/a | Visit Repo | |
| CVE-2025-34077 | WordPress Pie Register ≤ 3.7.1.4 - Admin Privilege Escalati | WordPress Pie Register Plugin ≤ 3.7.1.4 Authentication Bypass RCE |
v4.0
CRITICAL
Score: 10
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
|
Visit Repo |
| CVE-2025-6970 | Events Manager <= 7.0.3 - Unauthenticated SQL Injection via `o | n/a | n/a | Visit Repo |
| ssh-buffer-overflow-rce-zero-day-poc | This exploit targets a critical buffer overflow vulnerability | n/a | n/a | Visit Repo |
| CVE-2025-48384 | Git allows arbitrary code execution through broken config quoting |
v3.1
HIGH
Score: 8.1
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H
|
Visit Repo | |
| Blackash-CVE-2025-32023 | CVE-2025-32023 | n/a | n/a | Visit Repo |
| Roundcube-CVE-2024-42008-POC | n/a | n/a | Visit Repo | |
| chromium-zero-day-rce-exploit | Chromium V8 Engine RCE Exploit - CVE-2025-1002 | n/a | n/a | Visit Repo |
| CVE-2025-48384 | Poc for CVE-2025-48384 | Git allows arbitrary code execution through broken config quoting |
v3.1
HIGH
Score: 8.1
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H
|
Visit Repo |
| CVE-2025-48384-submodule | Git allows arbitrary code execution through broken config quoting |
v3.1
HIGH
Score: 8.1
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:C/C:H/I:H/A:H
|
Visit Repo |
GitHub Threat Intelligence at a Glance
Stay on top of cybersecurity developments and open-source research through daily GitHub updates.
Jump into a repository to explore code, documentation, or CVE-related insights.