zycoder0day/CVE-2026-5076 CVE-2026-5076 — ARMember Premium <= 7.3.1 Insecure Password Reset Mechanism → Full Admin Account Takeover | Proof of Concept Create: 2026-06-04 07:52:14 +0000 UTC Push: 2026-06-04 07:52:18 +0000 UTC |

MuhammedHussein17/libheif-cve-2026-50142 CVE-2026-50142 — Heap allocation vulnerability in libheif HEIF sequence parser Create: 2026-06-04 07:18:58 +0000 UTC Push: 2026-06-04 07:18:59 +0000 UTC |

Reflyzal106/Cve-2014-Error-What-Is-The-Cve-2014-6271-Bash-Vulnerability Create: 2026-06-04 07:11:47 +0000 UTC Push: 2026-06-04 07:11:56 +0000 UTC |

mrx-arafat/CVE-2026-49975-POC HTTP/2 Bomb PoC — CVE-2026-49975 (HPACK indexed reference bomb + flow-control stall) Create: 2026-06-04 06:22:54 +0000 UTC Push: 2026-06-04 06:23:03 +0000 UTC |

Dhananjayasj/CVE-2024-1698-NotificationX-WordPress-Plugin-SQL-Injection-to-Admin-Credential-Extraction Create: 2026-06-04 06:12:26 +0000 UTC Push: 2026-06-04 06:12:27 +0000 UTC |

fredevsec/CVE-2026-0073 0-Click RCE Android Adb TLS Wireless Debugging Create: 2026-06-04 03:06:59 +0000 UTC Push: 2026-06-04 03:07:00 +0000 UTC |

tiffanykarihi23/CVE-2026-33829 Create: 2026-06-04 01:52:36 +0000 UTC Push: 2026-06-04 01:52:39 +0000 UTC |

mruniversity/CVE-2026-2256- CVE-2026-2256 diagram Create: 2026-06-04 01:27:37 +0000 UTC Push: 2026-06-04 01:28:39 +0000 UTC |

HORKimhab/CVE-2026-23631 CVE-2026-23631-Draft Create: 2026-06-04 01:22:29 +0000 UTC Push: 2026-06-04 01:22:32 +0000 UTC |

fevar54/Proof-of-Concept-POC---CVE-2026-49975-HTTP-2-Bomb- Este repositorio contiene un Proof of Concept (POC) para CVE-2026-49975, también conocida como HTTP/2 Bomb, una vulnerabilidad de denegación de servicio (DoS) remoto que afecta a la mayoría de los servidores web principales en su configuración HTTP/2 predeterminada, incluyendo: Create: 2026-06-03 20:22:30 +0000 UTC Push: 2026-06-03 20:22:30 +0000 UTC |

melbratic/CVE-2026-2256-Threat-Model----ms-agent-Command-Injection Create: 2026-06-03 19:43:46 +0000 UTC Push: 2026-06-03 19:43:47 +0000 UTC |

lowilol/CVE-2026-42945-NGINX-Rift-Check-Script Create: 2026-06-03 19:10:40 +0000 UTC Push: 2026-06-03 19:10:41 +0000 UTC |

iwallplace/CVE-2026-26897-EcoOnline-DeepLink Public advisory & PoC for CVE-2026-26897 — Deep Link Bypass in EcoOnline EHS Android (com.airsweb.v10), fixed in 0.2.500 Create: 2026-06-03 18:31:31 +0000 UTC Push: 2026-06-03 18:31:34 +0000 UTC |

Galaxy-sc/CVE-2024-48910-dompurify-mxss-detector Create: 2026-06-03 17:20:04 +0000 UTC Push: 2026-06-03 17:20:05 +0000 UTC |

Galaxy-sc/CVE-2024-48910-dompurify-xss-detector Create: 2026-06-03 17:20:04 +0000 UTC Push: 2026-06-03 20:10:18 +0000 UTC |

DanieleGiovanardi2408/cve-2024-36401-geoserver-rce Create: 2026-06-03 17:06:32 +0000 UTC Push: 2026-06-03 17:06:36 +0000 UTC |

ADScanPro/CVE-2026-41089-LongLogon Unauthenticated, non-destructive precondition checker for CVE-2026-41089 (Netlogon long-domain stack buffer overflow). Tells you if a DC's domain is long enough to overflow — without crashing it. Create: 2026-06-03 16:30:35 +0000 UTC Push: 2026-06-03 17:17:05 +0000 UTC |

areebashoaib42/KeePass-CVE-2023-32784-Exploitation-and-Defense Exploitation and defense-in-depth mitigation strategies for the KeePass memory leakage vulnerability (CVE-2023-32784). Create: 2026-06-03 13:47:20 +0000 UTC Push: 2026-06-03 13:47:45 +0000 UTC |

strivepan/cve-2026-42945-scanner-gui Bulk scanning + one-click vulnerability exploitation Create: 2026-06-03 11:14:24 +0000 UTC Push: 2026-06-03 11:14:25 +0000 UTC |

strivepan/Nginx_cve-2026-42945-scanner-gui Bulk scanning + one-click vulnerability exploitation Create: 2026-06-03 11:14:24 +0000 UTC Push: 2026-06-03 11:33:35 +0000 UTC |