Goultarde/CVE-2022-42889-text4shell Proof of Concept (PoC) for CVE-2022-42889 (Text4Shell) targeting Apache Commons Text versions prior to 1.10.0. This script automates Remote Code Execution (RCE) via script interpolation to establish a reverse shell. This version is a structured optimization based on the original exploit found at Exploit-DB (ID: 52261). Create: 2026-01-02 05:55:49 +0000 UTC Push: 2026-01-02 05:55:49 +0000 UTC |

ghostn4444/CVE-2025-55182 CVE-2025-55182 - Tool React2Shell Create: 2026-01-02 05:33:37 +0000 UTC Push: 2026-01-02 05:33:38 +0000 UTC |

yogeshkumar09/CVE-2025-55184_Testing Create: 2026-01-02 05:04:03 +0000 UTC Push: 2026-01-02 05:04:04 +0000 UTC |

VilmarTuminskii/cve-2021-3156-sudo-lab Create: 2026-01-02 04:14:42 +0000 UTC Push: 2026-01-02 04:15:39 +0000 UTC |

captain4554/CVE-2025-55182-Scanner Create: 2026-01-02 01:28:57 +0000 UTC Push: 2026-01-02 01:29:07 +0000 UTC |

galois17/cve-2017-12149-playground Create: 2026-01-01 22:35:05 +0000 UTC Push: 2026-01-01 22:35:06 +0000 UTC |

osmancanvural/CVE-2026-21437 Create: 2026-01-01 20:31:16 +0000 UTC Push: 2026-01-01 20:31:16 +0000 UTC |

osmancanvural/CVE-2026-21436 Create: 2026-01-01 20:30:34 +0000 UTC Push: 2026-01-02 01:26:01 +0000 UTC |

ZeroEthical/CVE-2025-14783-POC 🧨 CVE-2025-14783: Easy Digital Downloads Account Takeover PoC Create: 2026-01-01 19:16:03 +0000 UTC Push: 2026-01-01 19:16:04 +0000 UTC |

Systemhaus-Schulz/MongoBleed-CVE-2025-14847 MongoBleed CVE-2025-14847 Vulnerability Checker Create: 2026-01-01 18:11:39 +0000 UTC Push: 2026-01-01 18:11:39 +0000 UTC |

rsecroot/CVE-2025-15406 A vulnerability categorized as critical has been discovered in PHPGurukul Online Course Registration up to 3.1. This impacts an unknown function. Such manipulation leads to authorization. This vulnerability is documented as CVE-2025-15406. The attack can be executed remotely. Additionally, an exploit exists. Create: 2026-01-01 17:27:33 +0000 UTC Push: 2026-01-01 17:27:33 +0000 UTC |

rsecroot/CVE-2026-0547 Create: 2026-01-01 17:26:32 +0000 UTC Push: 2026-01-01 17:26:32 +0000 UTC |

rsecroot/CVE-2025-15390 A security flaw has been discovered in PHPGurukul Small CRM 4.0. This impacts an unknown function of the file /admin/edit-user.php. The manipulation results in missing authorization. It is possible to launch the attack remotely. The exploit has been released to the public and may be exploited. Create: 2026-01-01 17:25:36 +0000 UTC Push: 2026-01-01 17:25:36 +0000 UTC |

MeisamEb/CVE-2025-0288 This repository contains a Windows kernel driver and a PoC. Create: 2026-01-01 14:14:18 +0000 UTC Push: 2026-01-01 14:14:18 +0000 UTC |

z0d131482700x/Livewire2025CVE Create: 2026-01-01 12:28:22 +0000 UTC Push: 2026-01-01 12:28:23 +0000 UTC |

MaxMnMl/zimbramail-CVE-2025-68645-poc A proof-of-concept exploit a Local File Inclusion (LFI) vulnerability exists in the Webmail Classic UI of Zimbra Collaboration (ZCS) 10.0 and 10.1 because of improper handling of user-supplied request parameters in the RestFilter servlet. Create: 2026-01-01 10:29:43 +0000 UTC Push: 2026-01-01 10:29:44 +0000 UTC |

Remenis/CVE-2025-67160 Vatilon-based IP cameras expose internal web directories without authentication, leading to information disclosure. Create: 2026-01-01 10:28:53 +0000 UTC Push: 2026-01-01 10:29:28 +0000 UTC |

Remenis/CVE-2025-67159 Vatilon-based IP camera firmware allows authentication bypass and plaintext credential exposure via web.cgi API requests. Create: 2026-01-01 10:19:17 +0000 UTC Push: 2026-01-01 10:19:17 +0000 UTC |

Remenis/CVE-2025-67158 Revotech I6032W-FHW IP camera firmware fails to validate authentication fields in API requests, allowing attackers to bypass authentication and retrieve administrative information. Create: 2026-01-01 10:05:31 +0000 UTC Push: 2026-01-01 10:06:01 +0000 UTC |

xpcmdshell/CVE-2022-26711 Integer overflow in Apple ImageIO WebP parsing (macOS/iOS) Create: 2026-01-01 08:34:24 +0000 UTC Push: 2026-01-01 08:45:36 +0000 UTC |