GitHub Feed
Explore the latest GitHub repositories gathered from our feed. Entries are grouped by day to help you track developments quickly.
Sun Jun 01, 2025
| Repository | Description | CVE | Metrics | Action |
|---|---|---|---|---|
| CVE-2023-25690-POC | CVE 2023 25690 Proof of concept - mod_proxy vulnerable configu | Apache HTTP Server: HTTP request splitting with mod_rewrite and mod_proxy | n/a | Visit Repo |
| os-toolkit | A modular pentesting toolkit for scanning, exploitation simula | n/a | n/a | Visit Repo |
| msfcve | Metasploit Exploit CVE Coverage | n/a | n/a | Visit Repo |
| Discord-Image-Logger-Stealer | Ephemeral discourse is embodied by the likes of Messenger Sess | n/a | n/a | Visit Repo |
| RCE-CVE-2025-3248 | This Python script exploits CVE-2025-3248 to execute arbitrary | Langflow Unauth RCE |
v3.1
CRITICAL
Score: 9.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
|
Visit Repo |
| HTA-Exploit | Microsoft Windows HTA (HTML Application) - Pinnacle of Remote | n/a | n/a | Visit Repo |
| Anydesk-Exploit-CVE-2025-12654-RCE-Builder | Exploit development targets vulnerabilities using tools like e | n/a | n/a | Visit Repo |
| PDF-FUD-Exploit | A meticulous scrutiny of the Exploit PDFs innards exposes a ne | n/a | n/a | Visit Repo |
| Slient-URL-Exploit | URL Contamination Exploit Muted Java Drive-By downloads can tr | n/a | n/a | Visit Repo |
| CVE-2024-9264 | A go implementation for CVE-2024-9264 which effect grafana ver | Grafana SQL Expressions allow for remote code execution |
v4.0
CRITICAL
Score: 9.4
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:H/VI:H/VA:H/SC:H/SI:H/SA:H
|
Visit Repo |
Sat May 31, 2025
| Repository | Description | CVE | Metrics | Action |
|---|---|---|---|---|
| CVE-2025-48827 | Vbullettin RCE - CVE-2025-48827 | n/a |
v3.1
CRITICAL
Score: 10
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
|
Visit Repo |
| exploitdb | Explore vulnerabilities with the lightweight Java CLI tool, Ex | n/a | n/a | Visit Repo |
| CVE-2011-0762 | Prova de Conceito corrigida do exploit-db | n/a | n/a | Visit Repo |
| CVE-2025-5328 | CVE-2025-5328 – Path Traversal in chshcms mccms 2.7 | n/a | n/a | Visit Repo |
| CVE-2025-20188 | CVE-2025-20188: Unauthenticated RCE in Cisco IOS XE WLC via Ha | n/a | n/a | Visit Repo |
| nvd-vulnerability-fetcher | Automated NVD Vulnerability Fetcher — A Python-based proof-o | n/a | n/a | Visit Repo |
| XSS-and-POC | Public cve | n/a | n/a | Visit Repo |
| DLang-file-encryptor | This is my biggest project yet: a DLang file encryptor that es | n/a | n/a | Visit Repo |
| CVE-2025-27590 | n/a |
v3.1
CRITICAL
Score: 9
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H
|
Visit Repo | |
| CVE-2025-46204 | PoC of CVE-2025-46204 | n/a | n/a | Visit Repo |
| CVE-2021-22911 | Updated exploit for CVE-2021-22911 (Rocket.Chat 3.12.1 - NoSQL | n/a | n/a | Visit Repo |
| WIndows-7-automated-exploitation-using-metasploit-framework- | Automated bash script which scans an ip for potential vulnerab | n/a | n/a | Visit Repo |
| CVE-2025-46203 | PoC of CVE-2025-46203 | n/a | n/a | Visit Repo |
| CVE-2023-49496_PoC | n/a | n/a | Visit Repo | |
| CVE-2024-7399-POC | n/a |
v3.1
HIGH
Score: 8.8
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
|
Visit Repo | |
| nes-vuetify-cve-2025-1461 | Vuetify XSS through 'eventMoreText' prop of VCalendar |
v3.1
MEDIUM
Score: 5.6
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
|
Visit Repo | |
| CVE-2025-5287 | WordPress Likes and Dislikes - SQL Injection | n/a | n/a | Visit Repo |
| CVE-2025-30397---Windows-Server-2025-JScript-RCE-Use-After-Free- | Remote Code Execution via Use-After-Free in JScript.dll (CVE-2 | Scripting Engine Memory Corruption Vulnerability |
v3.1
HIGH
Score: 7.5
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:F/RL:O/RC:C
|
Visit Repo |
| CVE-2024-11234 | practicing assembly by recreating an exploit i wrote in python | Configuring a proxy in a stream context might allow for CRLF injection in URIs |
v3.1
MEDIUM
Score: 4.8
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N
|
Visit Repo |
| CVE-2025-5319 | USOM Tarafından resmi yayın beklenmektedir. | n/a | n/a | Visit Repo |
| CVE-2025-29632 | the information for the vulnerability covered by CVE-2025-2963 | n/a | n/a | Visit Repo |
| CVE-2025-30208-31125-31486-32395 | Vite bypasses server.fs.deny when using `?raw??` |
v3.1
MEDIUM
Score: 5.3
CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:N/A:N
|
Visit Repo | |
| exploitLog | CVE Analysis Blog Developement | n/a | n/a | Visit Repo |
| Moniker-Link-CVE-2024-21413 | Microsoft Outlook Remote Code Execution Vulnerability |
v3.1
CRITICAL
Score: 9.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C
|
Visit Repo | |
| vulnerable-nextjs-14-CVE-2025-29927 | vulnerable-nextjs-14-CVE-2025-29927 | Authorization Bypass in Next.js Middleware |
v3.1
CRITICAL
Score: 9.1
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
|
Visit Repo |
| CVE-2025-47577 | WordPress TI WooCommerce Wishlist Plugin <= 2.9.2 Arbitrary Fi | n/a | n/a | Visit Repo |
| CVE-2025-2995 | Tenda FH1202 Web Management Interface SysToolChangePwd access control |
v4.0
MEDIUM
Score: 6.9
CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N
|
Visit Repo | |
| CVE-2021-26828-Ultimate | ScadaFlare Authenticated RCE Exploit Framework for ScadaBR (CV | n/a | n/a | Visit Repo |
| CVE-2025-2760 | CVE-2025-2760 – Integer Overflow in GIMP XWD File Parsing | GIMP XWD File Parsing Integer Overflow Remote Code Execution Vulnerability |
v3.0
HIGH
Score: 7.8
CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
|
Visit Repo |
| CVE-2025-48827 | Critical Unauthenticated API Access in vBulletin | n/a |
v3.1
CRITICAL
Score: 10
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H
|
Visit Repo |
| ti-a-ti-cveexploitchecker | Determines if public exploits are available for a given CVE. U | n/a | n/a | Visit Repo |
| CVE-2025-5329 | USOM Tarafından resmi yayın beklenmektedir. | n/a | n/a | Visit Repo |
| CVE-2025-4631 | Profitori 2.0.6.0 - 2.1.1.3 - Missing Authorization to Unauthe | n/a | n/a | Visit Repo |
Wed May 28, 2025
| Repository | Description | CVE | Metrics | Action |
|---|---|---|---|---|
| cve-auto-exploit-agent | n/a | n/a | Visit Repo | |
| AISA-Scanner | AISA-Scanner is an AI-powered autonomous vulnerability scanner | n/a | n/a | Visit Repo |
| CVE-2025-22252 | CVE-2025-22252 – Authentication Bypass in Fortinet Products | n/a | n/a | Visit Repo |
| CVE-2024-28995 | SolarWinds Serv-U Directory Traversal | SolarWinds Serv-U L Directory Transversal Vulnerability |
v3.1
HIGH
Score: 8.6
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:N
|
Visit Repo |
| CVE-2018-8097-PoC | POC for CVE-2018-8097 This script exploits CVE-2018-8097 and c | n/a | n/a | Visit Repo |
| CVE-2024-32462 | CVE-2024-32462 code exec sbx escape | Flatpak vulnerable to a sandbox escape via RequestBackground portal due to bad argument parsing |
v3.1
HIGH
Score: 8.4
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:N
|
Visit Repo |
| CVE-2025-5287 | WordPress Likes and Dislikes Plugin <= 1.0.0 is vulnerable to | n/a | n/a | Visit Repo |
GitHub Threat Intelligence at a Glance
Stay on top of cybersecurity developments and open-source research through daily GitHub updates.
Jump into a repository to explore code, documentation, or CVE-related insights.