{"year":2026,"cves":[{"cve_id":"CVE-2026-000","repositories":[{"id":1197017415,"name":"biotime-CVE-2026-000-Auth-rce","full_name":"r3m0t3nu11/biotime-CVE-2026-000-Auth-rce","html_url":"https://github.com/r3m0t3nu11/biotime-CVE-2026-000-Auth-rce","description":"Biotime 9.5 auth rce ","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-13T18:58:53Z","pushed_at":"2026-04-13T18:58:48Z","created_at":"2026-03-31T08:54:01Z","topics":[],"owner":{"login":"r3m0t3nu11","html_url":"https://github.com/r3m0t3nu11"},"clone_url":"https://github.com/r3m0t3nu11/biotime-CVE-2026-000-Auth-rce.git","has_code":false,"age_days":86}]},{"cve_id":"CVE-2026-00000","repositories":[{"id":1264002517,"name":"CVE-2026-00000","full_name":"4ybrick/CVE-2026-00000","html_url":"https://github.com/4ybrick/CVE-2026-00000","description":"kaiten cve","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-09T13:24:43Z","pushed_at":"2026-06-09T13:20:02Z","created_at":"2026-06-09T13:19:09Z","topics":[],"owner":{"login":"4ybrick","html_url":"https://github.com/4ybrick"},"clone_url":"https://github.com/4ybrick/CVE-2026-00000.git","has_code":false,"age_days":16}]},{"cve_id":"CVE-2026-0001","repositories":[{"id":1237401826,"name":"CVE-2026-0001","full_name":"HORKimhab/CVE-2026-0001","html_url":"https://github.com/HORKimhab/CVE-2026-0001","description":"CVE-2026-0001. Do with your own risk","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-03T00:17:25Z","pushed_at":"2026-06-03T00:17:22Z","created_at":"2026-05-13T06:38:16Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-0001.git","has_code":true,"age_days":43}]},{"cve_id":"CVE-2026-0006","repositories":[{"id":1214609049,"name":"CVE-2026-0006-openapv-poc","full_name":"mobilehackinglab/CVE-2026-0006-openapv-poc","html_url":"https://github.com/mobilehackinglab/CVE-2026-0006-openapv-poc","description":"CVE-2026-0006: Heap buffer overflow PoC for libopenapv (Android APV codec) - CVSS 9.8","stargazers_count":11,"forks_count":4,"language":"C","updated_at":"2026-06-18T11:39:03Z","pushed_at":"2026-04-22T10:09:20Z","created_at":"2026-04-18T20:05:22Z","topics":[],"owner":{"login":"mobilehackinglab","html_url":"https://github.com/mobilehackinglab"},"clone_url":"https://github.com/mobilehackinglab/CVE-2026-0006-openapv-poc.git","has_code":true,"age_days":67},{"id":1162121179,"name":"cve-2026-0006","full_name":"aydin5245/cve-2026-0006","html_url":"https://github.com/aydin5245/cve-2026-0006","description":"şuan yok","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-02-20T00:08:35Z","pushed_at":"2026-02-20T00:08:31Z","created_at":"2026-02-19T22:25:23Z","topics":[],"owner":{"login":"aydin5245","html_url":"https://github.com/aydin5245"},"clone_url":"https://github.com/aydin5245/cve-2026-0006.git","has_code":true,"age_days":125}]},{"cve_id":"CVE-2026-0013","repositories":[{"id":1254864345,"name":"cve-2026-0013-exploit","full_name":"inforcqb/cve-2026-0013-exploit","html_url":"https://github.com/inforcqb/cve-2026-0013-exploit","description":"","stargazers_count":0,"forks_count":0,"language":"Java","updated_at":"2026-05-31T05:22:41Z","pushed_at":"2026-05-31T05:22:38Z","created_at":"2026-05-31T05:02:25Z","topics":[],"owner":{"login":"inforcqb","html_url":"https://github.com/inforcqb"},"clone_url":"https://github.com/inforcqb/cve-2026-0013-exploit.git","has_code":true,"age_days":25}]},{"cve_id":"CVE-2026-0023","repositories":[{"id":1265407021,"name":"CVE-2026-0023-Update-Ownership-PoC","full_name":"QM4RS/CVE-2026-0023-Update-Ownership-PoC","html_url":"https://github.com/QM4RS/CVE-2026-0023-Update-Ownership-PoC","description":"","stargazers_count":6,"forks_count":3,"language":"Kotlin","updated_at":"2026-06-12T20:49:07Z","pushed_at":"2026-06-10T18:48:53Z","created_at":"2026-06-10T18:42:22Z","topics":[],"owner":{"login":"QM4RS","html_url":"https://github.com/QM4RS"},"clone_url":"https://github.com/QM4RS/CVE-2026-0023-Update-Ownership-PoC.git","has_code":true,"age_days":15}]},{"cve_id":"CVE-2026-0047","repositories":[{"id":1226309498,"name":"CVE-2026-0047-poc","full_name":"mobilehackinglab/CVE-2026-0047-poc","html_url":"https://github.com/mobilehackinglab/CVE-2026-0047-poc","description":"CVE-2026-0047: Missing permission check in ActivityManagerService.dumpBitmapsProto() — steal UI bitmaps from every running app with zero permissions (Android 16 QPR2 Beta)","stargazers_count":13,"forks_count":3,"language":"Java","updated_at":"2026-06-23T23:33:29Z","pushed_at":"2026-05-01T08:22:39Z","created_at":"2026-05-01T08:19:36Z","topics":[],"owner":{"login":"mobilehackinglab","html_url":"https://github.com/mobilehackinglab"},"clone_url":"https://github.com/mobilehackinglab/CVE-2026-0047-poc.git","has_code":true,"age_days":55}]},{"cve_id":"CVE-2026-0073","repositories":[{"id":1230308713,"name":"CVE-2026-0073-Android-adbd-authentication-bypass-POC","full_name":"SecTestAnnaQuinn/CVE-2026-0073-Android-adbd-authentication-bypass-POC","html_url":"https://github.com/SecTestAnnaQuinn/CVE-2026-0073-Android-adbd-authentication-bypass-POC","description":"","stargazers_count":78,"forks_count":37,"language":"Python","updated_at":"2026-06-23T02:40:39Z","pushed_at":"2026-05-05T22:11:24Z","created_at":"2026-05-05T21:53:08Z","topics":[],"owner":{"login":"SecTestAnnaQuinn","html_url":"https://github.com/SecTestAnnaQuinn"},"clone_url":"https://github.com/SecTestAnnaQuinn/CVE-2026-0073-Android-adbd-authentication-bypass-POC.git","has_code":true,"age_days":50},{"id":1231171483,"name":"poc-CVE-2026-0073","full_name":"adityatelange/poc-CVE-2026-0073","html_url":"https://github.com/adityatelange/poc-CVE-2026-0073","description":"CVE-2026-0073 - ADB Wireless Mutual Authentication Bypass PoC","stargazers_count":43,"forks_count":14,"language":"Python","updated_at":"2026-06-23T03:08:19Z","pushed_at":"2026-05-06T17:53:25Z","created_at":"2026-05-06T17:44:38Z","topics":["android","cve-2026-0073","may-2026","rce"],"owner":{"login":"adityatelange","html_url":"https://github.com/adityatelange"},"clone_url":"https://github.com/adityatelange/poc-CVE-2026-0073.git","has_code":true,"age_days":50},{"id":1244381609,"name":"CVE-2026-0073","full_name":"0xbinder/CVE-2026-0073","html_url":"https://github.com/0xbinder/CVE-2026-0073","description":"An automated exploit for CVE-2026-0073 (Android ADB TLS Auth Bypass). Features a built-in mDNS/Zeroconf scanner to instantly discover randomized Wireless Debugging ports on Android 13+ and establishes a fully interactive raw PTY shell.","stargazers_count":22,"forks_count":5,"language":"Python","updated_at":"2026-06-23T03:11:17Z","pushed_at":"2026-05-20T10:53:30Z","created_at":"2026-05-20T08:02:35Z","topics":[],"owner":{"login":"0xbinder","html_url":"https://github.com/0xbinder"},"clone_url":"https://github.com/0xbinder/CVE-2026-0073.git","has_code":true,"age_days":36},{"id":1231388578,"name":"CVE-2026-0073-Android-ADBD-bypass-POC","full_name":"MartinPSDev/CVE-2026-0073-Android-ADBD-bypass-POC","html_url":"https://github.com/MartinPSDev/CVE-2026-0073-Android-ADBD-bypass-POC","description":"CVE-2026-0073 — Android ADB daemon (adbd) TLS authentication bypass via EVP_PKEY_cmp type confusion. Gain unauthorized shell access over WiFi using EC/Ed25519 key mismatch. PoC exploit for Android 14+.","stargazers_count":17,"forks_count":6,"language":"Python","updated_at":"2026-06-24T12:47:43Z","pushed_at":"2026-05-07T11:15:25Z","created_at":"2026-05-06T23:11:23Z","topics":["adbd","android","cve-2026-0073","evp-pkey-cmp","exploit","poc","security-research","tls-bypass","vulnerability"],"owner":{"login":"MartinPSDev","html_url":"https://github.com/MartinPSDev"},"clone_url":"https://github.com/MartinPSDev/CVE-2026-0073-Android-ADBD-bypass-POC.git","has_code":true,"age_days":49},{"id":1237809851,"name":"CVE-2026-0073-PoC-Exploit","full_name":"tc4dy/CVE-2026-0073-PoC-Exploit","html_url":"https://github.com/tc4dy/CVE-2026-0073-PoC-Exploit","description":"🚀 CVE-2026-0073 - Android ADB Wireless Debugging Exploit (CVSS 8.8) 🔓 Zero-click authentication bypass via TLS type confusion. Gain interactive shell, execute commands, scan networks. Educational red-team tool. 🐚⚡","stargazers_count":6,"forks_count":5,"language":"Python","updated_at":"2026-06-22T23:12:04Z","pushed_at":"2026-06-19T15:56:31Z","created_at":"2026-05-13T14:28:00Z","topics":[],"owner":{"login":"tc4dy","html_url":"https://github.com/tc4dy"},"clone_url":"https://github.com/tc4dy/CVE-2026-0073-PoC-Exploit.git","has_code":true,"age_days":43},{"id":1230289580,"name":"CVE-2026-0073-Research","full_name":"novaek/CVE-2026-0073-Research","html_url":"https://github.com/novaek/CVE-2026-0073-Research","description":"CVE-2026-0073 is an RCE with a CVSS severity score of 8.3, and here we will explain how it works.","stargazers_count":5,"forks_count":1,"language":"","updated_at":"2026-05-06T12:43:37Z","pushed_at":"2026-05-06T10:20:29Z","created_at":"2026-05-05T21:22:41Z","topics":[],"owner":{"login":"novaek","html_url":"https://github.com/novaek"},"clone_url":"https://github.com/novaek/CVE-2026-0073-Research.git","has_code":false,"age_days":50},{"id":1231997018,"name":"CVE-2026-0073","full_name":"0xBlackash/CVE-2026-0073","html_url":"https://github.com/0xBlackash/CVE-2026-0073","description":"CVE-2026-0073","stargazers_count":4,"forks_count":1,"language":"C++","updated_at":"2026-06-22T22:45:09Z","pushed_at":"2026-05-07T14:11:06Z","created_at":"2026-05-07T13:42:23Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-0073.git","has_code":true,"age_days":49},{"id":1231550347,"name":"adbHijacker","full_name":"unnaim/adbHijacker","html_url":"https://github.com/unnaim/adbHijacker","description":"A PoC tool for the CVE-2026-0073 on android 11+ devices which allows instant zero click RCE on any unpatched device with adb over tcp enabled","stargazers_count":4,"forks_count":0,"language":"Python","updated_at":"2026-05-23T23:22:25Z","pushed_at":"2026-05-07T05:41:49Z","created_at":"2026-05-07T04:13:12Z","topics":[],"owner":{"login":"unnaim","html_url":"https://github.com/unnaim"},"clone_url":"https://github.com/unnaim/adbHijacker.git","has_code":true,"age_days":49},{"id":1231149515,"name":"CVE-2026-0073","full_name":"devtint/CVE-2026-0073","html_url":"https://github.com/devtint/CVE-2026-0073","description":"https://devtint.github.io/CVE-2026-0073/","stargazers_count":4,"forks_count":0,"language":"Python","updated_at":"2026-06-15T12:37:08Z","pushed_at":"2026-05-06T19:52:34Z","created_at":"2026-05-06T17:18:12Z","topics":[],"owner":{"login":"devtint","html_url":"https://github.com/devtint"},"clone_url":"https://github.com/devtint/CVE-2026-0073.git","has_code":true,"age_days":50},{"id":1233980294,"name":"poc-CVE-2026-0073","full_name":"xqi1337/poc-CVE-2026-0073","html_url":"https://github.com/xqi1337/poc-CVE-2026-0073","description":"CVE-2026-0073 - ADB Wireless Mutual Authentication Bypass PoC","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-21T05:21:07Z","pushed_at":"2026-06-21T05:21:03Z","created_at":"2026-05-09T15:40:26Z","topics":[],"owner":{"login":"xqi1337","html_url":"https://github.com/xqi1337"},"clone_url":"https://github.com/xqi1337/poc-CVE-2026-0073.git","has_code":true,"age_days":47},{"id":1249488788,"name":"CVE-2026-0073-Android-client-TLS-auth-bypass","full_name":"m00ddy/CVE-2026-0073-Android-client-TLS-auth-bypass","html_url":"https://github.com/m00ddy/CVE-2026-0073-Android-client-TLS-auth-bypass","description":"translating original python exploit to C","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-06-04T23:33:34Z","pushed_at":"2026-05-27T19:35:22Z","created_at":"2026-05-25T18:54:04Z","topics":[],"owner":{"login":"m00ddy","html_url":"https://github.com/m00ddy"},"clone_url":"https://github.com/m00ddy/CVE-2026-0073-Android-client-TLS-auth-bypass.git","has_code":true,"age_days":31},{"id":1258908872,"name":"CVE-2026-0073","full_name":"fredevsec/CVE-2026-0073","html_url":"https://github.com/fredevsec/CVE-2026-0073","description":"0-Click RCE Android Adb TLS Wireless Debugging","stargazers_count":0,"forks_count":0,"language":"JavaScript","updated_at":"2026-06-04T23:02:40Z","pushed_at":"2026-06-04T23:02:35Z","created_at":"2026-06-04T03:06:59Z","topics":[],"owner":{"login":"fredevsec","html_url":"https://github.com/fredevsec"},"clone_url":"https://github.com/fredevsec/CVE-2026-0073.git","has_code":true,"age_days":21}]},{"cve_id":"CVE-2026-0091","repositories":[{"id":1248784375,"name":"TransitionPlayer","full_name":"canyie/TransitionPlayer","html_url":"https://github.com/canyie/TransitionPlayer","description":"CVE-2026-0091, play with an issue in android window management to perform arbitrary code execution in Launcher process from adb","stargazers_count":5,"forks_count":1,"language":"Java","updated_at":"2026-06-25T16:10:24Z","pushed_at":"2026-06-25T12:33:15Z","created_at":"2026-05-25T03:41:43Z","topics":[],"owner":{"login":"canyie","html_url":"https://github.com/canyie"},"clone_url":"https://github.com/canyie/TransitionPlayer.git","has_code":true,"age_days":31}]},{"cve_id":"CVE-2026-0211","repositories":[{"id":1246220514,"name":"ISU-SecOps-Nginx-RCE","full_name":"frudotz/ISU-SecOps-Nginx-RCE","html_url":"https://github.com/frudotz/ISU-SecOps-Nginx-RCE","description":"Nginx Downgrade \u0026 RCE CVE-2026-0211","stargazers_count":5,"forks_count":0,"language":"Python","updated_at":"2026-06-06T00:18:17Z","pushed_at":"2026-06-05T03:07:05Z","created_at":"2026-05-22T01:49:22Z","topics":["buffer-overflow","cve-2026-0211","http","nginx","quic","rce"],"owner":{"login":"frudotz","html_url":"https://github.com/frudotz"},"clone_url":"https://github.com/frudotz/ISU-SecOps-Nginx-RCE.git","has_code":true,"age_days":34}]},{"cve_id":"CVE-2026-0227","repositories":[{"id":1138099737,"name":"CVE-2026-0227-Palo-Alto","full_name":"TeeyaR/CVE-2026-0227-Palo-Alto","html_url":"https://github.com/TeeyaR/CVE-2026-0227-Palo-Alto","description":"A lightweight, non-destructive Python script to scan for exposed Palo Alto Networks GlobalProtect portals/gateways and fingerprint potential PAN-OS versions. Designed primarily to help identify systems potentially vulnerable to CVE-2026-0227 (unauthenticated DoS in GlobalProtect, disclosed January 2026).","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-04-10T21:34:47Z","pushed_at":"2026-01-20T09:31:04Z","created_at":"2026-01-20T08:41:59Z","topics":[],"owner":{"login":"TeeyaR","html_url":"https://github.com/TeeyaR"},"clone_url":"https://github.com/TeeyaR/CVE-2026-0227-Palo-Alto.git","has_code":true,"age_days":156},{"id":1136579232,"name":"CVE-2026-0227-Advanced-Scanner","full_name":"CkAbhijit/CVE-2026-0227-Advanced-Scanner","html_url":"https://github.com/CkAbhijit/CVE-2026-0227-Advanced-Scanner","description":"CVE-2026-0227 Advanced Scanner","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-01-18T00:07:26Z","pushed_at":"2026-01-18T00:07:22Z","created_at":"2026-01-18T00:07:04Z","topics":[],"owner":{"login":"CkAbhijit","html_url":"https://github.com/CkAbhijit"},"clone_url":"https://github.com/CkAbhijit/CVE-2026-0227-Advanced-Scanner.git","has_code":false,"age_days":158}]},{"cve_id":"CVE-2026-0257","repositories":[{"id":1253369029,"name":"CVE-2026-0257","full_name":"sfewer-r7/CVE-2026-0257","html_url":"https://github.com/sfewer-r7/CVE-2026-0257","description":"Proof-of-concept script to leverage the PAN-OS GlobalProtect authentication bypass CVE-2026-0257","stargazers_count":24,"forks_count":9,"language":"Python","updated_at":"2026-06-23T13:03:29Z","pushed_at":"2026-05-29T14:29:53Z","created_at":"2026-05-29T11:46:55Z","topics":[],"owner":{"login":"sfewer-r7","html_url":"https://github.com/sfewer-r7"},"clone_url":"https://github.com/sfewer-r7/CVE-2026-0257.git","has_code":true,"age_days":27},{"id":1254198114,"name":"CVE-2026-0257","full_name":"0xBlackash/CVE-2026-0257","html_url":"https://github.com/0xBlackash/CVE-2026-0257","description":"CVE-2026-0257","stargazers_count":3,"forks_count":0,"language":"Python","updated_at":"2026-06-15T14:09:27Z","pushed_at":"2026-06-05T01:09:55Z","created_at":"2026-05-30T09:04:29Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-0257.git","has_code":true,"age_days":26},{"id":1258018526,"name":"CVE-2026-0257","full_name":"tushargurav28/CVE-2026-0257","html_url":"https://github.com/tushargurav28/CVE-2026-0257","description":"Palo Alto Networks PAN-OS contains an authentication bypass caused by flaws in the GlobalProtect portal and gateway, letting attackers establish unauthorized VPN connections, exploit requires network access to the portal or gateway.","stargazers_count":3,"forks_count":0,"language":"Python","updated_at":"2026-06-15T14:53:13Z","pushed_at":"2026-06-03T08:48:04Z","created_at":"2026-06-03T07:54:36Z","topics":[],"owner":{"login":"tushargurav28","html_url":"https://github.com/tushargurav28"},"clone_url":"https://github.com/tushargurav28/CVE-2026-0257.git","has_code":true,"age_days":22},{"id":1253794629,"name":"CVE-2026-0257-PoC","full_name":"akashsingh0454/CVE-2026-0257-PoC","html_url":"https://github.com/akashsingh0454/CVE-2026-0257-PoC","description":"","stargazers_count":2,"forks_count":1,"language":"Python","updated_at":"2026-06-03T14:55:43Z","pushed_at":"2026-05-29T20:39:44Z","created_at":"2026-05-29T20:27:44Z","topics":[],"owner":{"login":"akashsingh0454","html_url":"https://github.com/akashsingh0454"},"clone_url":"https://github.com/akashsingh0454/CVE-2026-0257-PoC.git","has_code":true,"age_days":26},{"id":1264800489,"name":"CVE-2026-0257","full_name":"grayxploit/CVE-2026-0257","html_url":"https://github.com/grayxploit/CVE-2026-0257","description":"GrayXploit Security research and defensive team validate this toolkit for CVE-2026-0257 (PAN-OS GlobalProtect Authentication Bypass). Includes vulnerability assessment, detection guidance, technical analysis, indicators of compromise (IOCs), and remediation validation resources for security teams and defenders.","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-10T11:09:33Z","pushed_at":"2026-06-10T08:18:09Z","created_at":"2026-06-10T07:34:30Z","topics":["bug-bounty","bugbounty","bugbounty-tool","cissp","cve","grayxploit","offensive-security","oscp","paloaltonetworks","redteam","vulnerability-detection","vulnerability-scanner"],"owner":{"login":"grayxploit","html_url":"https://github.com/grayxploit"},"clone_url":"https://github.com/grayxploit/CVE-2026-0257.git","has_code":true,"age_days":15},{"id":1255731517,"name":"CVE-2026-0257","full_name":"Mr-Robot-LP/CVE-2026-0257","html_url":"https://github.com/Mr-Robot-LP/CVE-2026-0257","description":"Exploits the CVE-2026-0257 vulnerability by forging a GlobalProtect authentication override cookie using the TLS server's public key.","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-06-01T14:48:59Z","pushed_at":"2026-06-01T05:57:00Z","created_at":"2026-06-01T05:57:00Z","topics":[],"owner":{"login":"Mr-Robot-LP","html_url":"https://github.com/Mr-Robot-LP"},"clone_url":"https://github.com/Mr-Robot-LP/CVE-2026-0257.git","has_code":false,"age_days":24},{"id":1254148516,"name":"CVE-2026-0257","full_name":"HORKimhab/CVE-2026-0257","html_url":"https://github.com/HORKimhab/CVE-2026-0257","description":"CVE-2026-0257 - PAN-OS","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-31T07:51:52Z","pushed_at":"2026-05-31T07:46:34Z","created_at":"2026-05-30T07:41:59Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-0257.git","has_code":true,"age_days":26},{"id":1269852952,"name":"CVE-2026-0257","full_name":"Ez4rd1x1/CVE-2026-0257","html_url":"https://github.com/Ez4rd1x1/CVE-2026-0257","description":"testing","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-15T06:51:51Z","pushed_at":"2026-06-15T06:51:48Z","created_at":"2026-06-15T06:49:27Z","topics":[],"owner":{"login":"Ez4rd1x1","html_url":"https://github.com/Ez4rd1x1"},"clone_url":"https://github.com/Ez4rd1x1/CVE-2026-0257.git","has_code":true,"age_days":10},{"id":1263895864,"name":"CVE-2026-0257","full_name":"jenniferreire26/CVE-2026-0257","html_url":"https://github.com/jenniferreire26/CVE-2026-0257","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-09T11:17:12Z","pushed_at":"2026-06-09T11:16:56Z","created_at":"2026-06-09T11:16:53Z","topics":[],"owner":{"login":"jenniferreire26","html_url":"https://github.com/jenniferreire26"},"clone_url":"https://github.com/jenniferreire26/CVE-2026-0257.git","has_code":false,"age_days":16},{"id":1256037906,"name":"CVE-2026-0257","full_name":"bolubey/CVE-2026-0257","html_url":"https://github.com/bolubey/CVE-2026-0257","description":"PAN-OS: GlobalProtect Authentication Bypass","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-02T02:52:14Z","pushed_at":"2026-06-02T02:52:10Z","created_at":"2026-06-01T12:02:27Z","topics":["cve-2026-0257"],"owner":{"login":"bolubey","html_url":"https://github.com/bolubey"},"clone_url":"https://github.com/bolubey/CVE-2026-0257.git","has_code":true,"age_days":24}]},{"cve_id":"CVE-2026-0265","repositories":[{"id":1246993056,"name":"CVE-2026-0265-check","full_name":"BishopFox/CVE-2026-0265-check","html_url":"https://github.com/BishopFox/CVE-2026-0265-check","description":"Safely detect whether a PAN-OS target is vulnerable to CVE-2026-0265.","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-06-10T12:05:37Z","pushed_at":"2026-05-22T19:31:32Z","created_at":"2026-05-22T19:31:12Z","topics":[],"owner":{"login":"BishopFox","html_url":"https://github.com/BishopFox"},"clone_url":"https://github.com/BishopFox/CVE-2026-0265-check.git","has_code":true,"age_days":34},{"id":1241120335,"name":"palo-alto-cve-2026-0265-checker","full_name":"tstephens1080/palo-alto-cve-2026-0265-checker","html_url":"https://github.com/tstephens1080/palo-alto-cve-2026-0265-checker","description":"Python script to sweep a fleet of Palo Alto firewalls and Panoramas via SSH, check PAN-OS version against CVE-2026-0265 (Authentication Bypass via Cloud Authentication Service), detect whether CAS is actually configured, and report exploitability in a color-coded summary table.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-25T03:23:14Z","pushed_at":"2026-05-25T03:23:11Z","created_at":"2026-05-17T01:31:24Z","topics":[],"owner":{"login":"tstephens1080","html_url":"https://github.com/tstephens1080"},"clone_url":"https://github.com/tstephens1080/palo-alto-cve-2026-0265-checker.git","has_code":true,"age_days":39}]},{"cve_id":"CVE-2026-0273","repositories":[{"id":1267164874,"name":"CVE-2026-0273","full_name":"HORKimhab/CVE-2026-0273","html_url":"https://github.com/HORKimhab/CVE-2026-0273","description":"CVE-2026-0273 - Draft","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-12T09:30:00Z","pushed_at":"2026-06-12T09:29:49Z","created_at":"2026-06-12T09:29:45Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-0273.git","has_code":true,"age_days":13}]},{"cve_id":"CVE-2026-0300","repositories":[{"id":1231410079,"name":"CVE-2026-0300-POC","full_name":"p3Nt3st3r-sTAr/CVE-2026-0300-POC","html_url":"https://github.com/p3Nt3st3r-sTAr/CVE-2026-0300-POC","description":"","stargazers_count":20,"forks_count":12,"language":"Python","updated_at":"2026-06-12T03:37:17Z","pushed_at":"2026-05-07T12:41:25Z","created_at":"2026-05-06T23:56:52Z","topics":[],"owner":{"login":"p3Nt3st3r-sTAr","html_url":"https://github.com/p3Nt3st3r-sTAr"},"clone_url":"https://github.com/p3Nt3st3r-sTAr/CVE-2026-0300-POC.git","has_code":true,"age_days":49},{"id":1230520148,"name":"PAN-OS-User-ID-Buffer-Overflow-PoC","full_name":"qassam-315/PAN-OS-User-ID-Buffer-Overflow-PoC","html_url":"https://github.com/qassam-315/PAN-OS-User-ID-Buffer-Overflow-PoC","description":"A research-grade Proof-of-Concept (PoC) for CVE-2026-0300, targeting the Buffer Overflow vulnerability in Palo Alto Networks PAN-OS User-ID™ Authentication Portal (CWE-787).","stargazers_count":3,"forks_count":0,"language":"Python","updated_at":"2026-05-10T21:48:41Z","pushed_at":"2026-05-06T05:37:24Z","created_at":"2026-05-06T04:33:09Z","topics":[],"owner":{"login":"qassam-315","html_url":"https://github.com/qassam-315"},"clone_url":"https://github.com/qassam-315/PAN-OS-User-ID-Buffer-Overflow-PoC.git","has_code":true,"age_days":50},{"id":1230990323,"name":"CVE-2026-0300-PANOS","full_name":"bannned-bit/CVE-2026-0300-PANOS","html_url":"https://github.com/bannned-bit/CVE-2026-0300-PANOS","description":"Security Research and Proof-of-Concept (PoC) for CVE-2026-0300 : Unauthenticated Remote Code Execution (RCE) in Palo Alto Networks PAN-OS User-ID Portal.","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-12T17:32:15Z","pushed_at":"2026-05-06T14:25:05Z","created_at":"2026-05-06T14:14:27Z","topics":["cve-2026-0300","exploit","palo-alto","pan-os","rce"],"owner":{"login":"bannned-bit","html_url":"https://github.com/bannned-bit"},"clone_url":"https://github.com/bannned-bit/CVE-2026-0300-PANOS.git","has_code":true,"age_days":50},{"id":1230562730,"name":"CVE-2026-0300","full_name":"mr-r3b00t/CVE-2026-0300","html_url":"https://github.com/mr-r3b00t/CVE-2026-0300","description":"a honeypot for CVE-2026-0300","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-06T09:50:02Z","pushed_at":"2026-05-06T05:53:22Z","created_at":"2026-05-06T05:45:17Z","topics":[],"owner":{"login":"mr-r3b00t","html_url":"https://github.com/mr-r3b00t"},"clone_url":"https://github.com/mr-r3b00t/CVE-2026-0300.git","has_code":true,"age_days":50},{"id":1246056633,"name":"CVE-2026-0300","full_name":"lu4m575/CVE-2026-0300","html_url":"https://github.com/lu4m575/CVE-2026-0300","description":"CVE-2026-0300 PAN-OS 12.1, 11.2, 11.1, 10.2","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-21T21:09:58Z","pushed_at":"2026-05-21T21:09:53Z","created_at":"2026-05-21T20:39:21Z","topics":[],"owner":{"login":"lu4m575","html_url":"https://github.com/lu4m575"},"clone_url":"https://github.com/lu4m575/CVE-2026-0300.git","has_code":true,"age_days":34},{"id":1231342526,"name":"CVE-2026-0300","full_name":"shizuku198411/CVE-2026-0300","html_url":"https://github.com/shizuku198411/CVE-2026-0300","description":"PAN-OS CVE-2026-0300 Non-Destructive Exposure Survey Tool","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-06T22:30:44Z","pushed_at":"2026-05-06T21:47:26Z","created_at":"2026-05-06T21:47:12Z","topics":["cve","cve-2026-0300","paloalto","paloaltonetworks","pan-os"],"owner":{"login":"shizuku198411","html_url":"https://github.com/shizuku198411"},"clone_url":"https://github.com/shizuku198411/CVE-2026-0300.git","has_code":true,"age_days":49},{"id":1230819812,"name":"cve-2026-0300-audit","full_name":"TailwindRG/cve-2026-0300-audit","html_url":"https://github.com/TailwindRG/cve-2026-0300-audit","description":"Read-only audit tooling for CVE-2026-0300 (PAN-OS User-ID Authentication Portal exposure)","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-06T13:52:53Z","pushed_at":"2026-05-06T13:51:11Z","created_at":"2026-05-06T10:57:29Z","topics":[],"owner":{"login":"TailwindRG","html_url":"https://github.com/TailwindRG"},"clone_url":"https://github.com/TailwindRG/cve-2026-0300-audit.git","has_code":true,"age_days":50},{"id":1230771282,"name":"CVE-2026-0300","full_name":"0xBlackash/CVE-2026-0300","html_url":"https://github.com/0xBlackash/CVE-2026-0300","description":"CVE-2026-0300","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-05-18T15:24:04Z","pushed_at":"2026-05-06T10:21:40Z","created_at":"2026-05-06T09:57:04Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-0300.git","has_code":true,"age_days":50}]},{"cve_id":"CVE-2026-0542","repositories":[{"id":1264848417,"name":"CVE-2026-0542","full_name":"HORKimhab/CVE-2026-0542","html_url":"https://github.com/HORKimhab/CVE-2026-0542","description":"CVE-2026-0542 - Draft - ServiceNow","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-10T08:29:38Z","pushed_at":"2026-06-10T08:29:28Z","created_at":"2026-06-10T08:29:24Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-0542.git","has_code":false,"age_days":15}]},{"cve_id":"CVE-2026-0547","repositories":[{"id":1126334668,"name":"CVE-2026-0547","full_name":"rsecroot/CVE-2026-0547","html_url":"https://github.com/rsecroot/CVE-2026-0547","description":"","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-03-10T15:07:09Z","pushed_at":"2026-01-01T17:26:32Z","created_at":"2026-01-01T17:26:32Z","topics":[],"owner":{"login":"rsecroot","html_url":"https://github.com/rsecroot"},"clone_url":"https://github.com/rsecroot/CVE-2026-0547.git","has_code":false,"age_days":175}]},{"cve_id":"CVE-2026-0594","repositories":[{"id":1140080544,"name":"CVE-2026-0594-ListSiteContributors-Plugin-Exploit","full_name":"m4sh-wacker/CVE-2026-0594-ListSiteContributors-Plugin-Exploit","html_url":"https://github.com/m4sh-wacker/CVE-2026-0594-ListSiteContributors-Plugin-Exploit","description":"CVE-2026-0594 List Site Contributors Plugin Exploit","stargazers_count":3,"forks_count":0,"language":"Go","updated_at":"2026-05-02T09:41:07Z","pushed_at":"2026-01-22T20:06:20Z","created_at":"2026-01-22T19:58:18Z","topics":[],"owner":{"login":"m4sh-wacker","html_url":"https://github.com/m4sh-wacker"},"clone_url":"https://github.com/m4sh-wacker/CVE-2026-0594-ListSiteContributors-Plugin-Exploit.git","has_code":true,"age_days":154}]},{"cve_id":"CVE-2026-0596","repositories":[{"id":1242351939,"name":"CVE-2026-0596-Reproduction","full_name":"SparshBiswas-AI/CVE-2026-0596-Reproduction","html_url":"https://github.com/SparshBiswas-AI/CVE-2026-0596-Reproduction","description":"Research environment and validation scripts for evaluating deserialization behaviors in MLflow and MLServer.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-19T11:06:41Z","pushed_at":"2026-05-19T11:06:37Z","created_at":"2026-05-18T10:53:46Z","topics":[],"owner":{"login":"SparshBiswas-AI","html_url":"https://github.com/SparshBiswas-AI"},"clone_url":"https://github.com/SparshBiswas-AI/CVE-2026-0596-Reproduction.git","has_code":true,"age_days":38}]},{"cve_id":"CVE-2026-0603","repositories":[{"id":1218658171,"name":"CVE-2026-0603","full_name":"EQSTLab/CVE-2026-0603","html_url":"https://github.com/EQSTLab/CVE-2026-0603","description":"Hibernate ORM Second-Order SQL Injection","stargazers_count":1,"forks_count":0,"language":"HTML","updated_at":"2026-05-06T01:16:09Z","pushed_at":"2026-05-06T01:16:05Z","created_at":"2026-04-23T05:01:19Z","topics":[],"owner":{"login":"EQSTLab","html_url":"https://github.com/EQSTLab"},"clone_url":"https://github.com/EQSTLab/CVE-2026-0603.git","has_code":true,"age_days":63}]},{"cve_id":"CVE-2026-0622","repositories":[{"id":1139569247,"name":"CYBERDUDEBIVASH-5G-Core-Key-Rotation-Ghost-Admin-Auditor","full_name":"cyberdudebivash/CYBERDUDEBIVASH-5G-Core-Key-Rotation-Ghost-Admin-Auditor","html_url":"https://github.com/cyberdudebivash/CYBERDUDEBIVASH-5G-Core-Key-Rotation-Ghost-Admin-Auditor","description":"Production-grade tool for detecting \u0026 remediating CVE-2026-0622 (Ghost Admin privilege escalation \u0026 master key exposure in 5G core software).","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-22T06:05:48Z","pushed_at":"2026-01-22T06:04:07Z","created_at":"2026-01-22T06:03:37Z","topics":["5gsecurity","cve20260622","cyberdudebivash","cyberdudebivashecosystem","cybersecurity","networksecurity","private5g","zerotrust"],"owner":{"login":"cyberdudebivash","html_url":"https://github.com/cyberdudebivash"},"clone_url":"https://github.com/cyberdudebivash/CYBERDUDEBIVASH-5G-Core-Key-Rotation-Ghost-Admin-Auditor.git","has_code":true,"age_days":154}]},{"cve_id":"CVE-2026-0628","repositories":[{"id":1146636584,"name":"Dissecting-CVE-2026-0628-Chromium-Extension-Privilege-Escalation","full_name":"sastraadiwiguna-purpleeliteteaming/Dissecting-CVE-2026-0628-Chromium-Extension-Privilege-Escalation","html_url":"https://github.com/sastraadiwiguna-purpleeliteteaming/Dissecting-CVE-2026-0628-Chromium-Extension-Privilege-Escalation","description":"Origin CyberAnatomy Spoofing via Malicious WebView - Dissecting CVE-2026-0628 Chromium Extension Privilege Escalation This research provides a comprehensive technical dissection of CVE-2026-0628, a high-severity privilege escalation vulnerability (CVSS v3.1: 8.8) in Chromium's WebView policy enforcement mechanism. ","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-01-31T14:07:45Z","pushed_at":"2026-01-31T12:35:20Z","created_at":"2026-01-31T12:31:00Z","topics":[],"owner":{"login":"sastraadiwiguna-purpleeliteteaming","html_url":"https://github.com/sastraadiwiguna-purpleeliteteaming"},"clone_url":"https://github.com/sastraadiwiguna-purpleeliteteaming/Dissecting-CVE-2026-0628-Chromium-Extension-Privilege-Escalation.git","has_code":false,"age_days":145},{"id":1129927025,"name":"CVE-2026-0628-POC","full_name":"fevar54/CVE-2026-0628-POC","html_url":"https://github.com/fevar54/CVE-2026-0628-POC","description":"Prueba de concepto (PoC) para CVE-2026-0628, que demuestra la inyección de scripts en páginas privilegiadas mediante el uso de la etiqueta \u003cwebview\u003e en Google Chrome. Esta vulnerabilidad, clasificada como CWE-862 (Missing Authorization), permite a una extensión maliciosa eludir políticas de seguridad en versiones anteriores a la 143.0.7499.192.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-01-07T19:35:37Z","pushed_at":"2026-01-07T19:35:33Z","created_at":"2026-01-07T19:29:28Z","topics":[],"owner":{"login":"fevar54","html_url":"https://github.com/fevar54"},"clone_url":"https://github.com/fevar54/CVE-2026-0628-POC.git","has_code":false,"age_days":169}]},{"cve_id":"CVE-2026-0651","repositories":[{"id":1174605544,"name":"tapo-c260-rce","full_name":"l0lsec/tapo-c260-rce","html_url":"https://github.com/l0lsec/tapo-c260-rce","description":"PoC exploit chain for TP-Link Tapo C260 camera — CVE-2026-0651/0652/0653. Research by @spaceraccoon.","stargazers_count":1,"forks_count":1,"language":"Python","updated_at":"2026-05-23T19:50:05Z","pushed_at":"2026-03-06T16:26:03Z","created_at":"2026-03-06T16:26:00Z","topics":["camera-security","cve","embedded-security","exploit","firmware","hardware-hacking","iot-security","proof-of-concept","python","rce","tapo","tp-link","vulnerability-research"],"owner":{"login":"l0lsec","html_url":"https://github.com/l0lsec"},"clone_url":"https://github.com/l0lsec/tapo-c260-rce.git","has_code":true,"age_days":111}]},{"cve_id":"CVE-2026-0709","repositories":[{"id":1177524746,"name":"CVE-2026-0709","full_name":"SnipersMaster/CVE-2026-0709","html_url":"https://github.com/SnipersMaster/CVE-2026-0709","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-10T05:37:58Z","pushed_at":"2026-03-10T05:37:55Z","created_at":"2026-03-10T05:27:09Z","topics":[],"owner":{"login":"SnipersMaster","html_url":"https://github.com/SnipersMaster"},"clone_url":"https://github.com/SnipersMaster/CVE-2026-0709.git","has_code":true,"age_days":107}]},{"cve_id":"CVE-2026-0730","repositories":[{"id":1177981422,"name":"CVE-2026-0730","full_name":"rsecroot/CVE-2026-0730","html_url":"https://github.com/rsecroot/CVE-2026-0730","description":"Executing a manipulation of the argument profile_pic can lead to cross site scripting. The attack can be executed remotely. The exploit has been published and may be used.","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-03-10T15:10:53Z","pushed_at":"2026-03-10T15:10:30Z","created_at":"2026-03-10T15:10:29Z","topics":[],"owner":{"login":"rsecroot","html_url":"https://github.com/rsecroot"},"clone_url":"https://github.com/rsecroot/CVE-2026-0730.git","has_code":false,"age_days":107}]},{"cve_id":"CVE-2026-0740","repositories":[{"id":1213101182,"name":"CVE-2026-0740","full_name":"0xgh057r3c0n/CVE-2026-0740","html_url":"https://github.com/0xgh057r3c0n/CVE-2026-0740","description":"Ninja Forms File Uploads \u003c= 3.3.26 - Unauthenticated Arbitrary File Upload","stargazers_count":22,"forks_count":4,"language":"Python","updated_at":"2026-06-04T17:15:21Z","pushed_at":"2026-04-17T03:34:54Z","created_at":"2026-04-17T03:32:02Z","topics":[],"owner":{"login":"0xgh057r3c0n","html_url":"https://github.com/0xgh057r3c0n"},"clone_url":"https://github.com/0xgh057r3c0n/CVE-2026-0740.git","has_code":true,"age_days":69},{"id":1204400610,"name":"CVE-2026-0740","full_name":"xShadow-Here/CVE-2026-0740","html_url":"https://github.com/xShadow-Here/CVE-2026-0740","description":"POC ","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-05-25T01:15:03Z","pushed_at":"2026-04-08T15:27:08Z","created_at":"2026-04-08T01:20:50Z","topics":[],"owner":{"login":"xShadow-Here","html_url":"https://github.com/xShadow-Here"},"clone_url":"https://github.com/xShadow-Here/CVE-2026-0740.git","has_code":true,"age_days":78},{"id":1204152679,"name":"CVE-2026-0740","full_name":"whattheslime/CVE-2026-0740","html_url":"https://github.com/whattheslime/CVE-2026-0740","description":"Ninja Forms File Uploads \u003c= 3.3.26 - Unauthenticated Arbitrary File Upload to RCE (CVE-2026-0740)","stargazers_count":1,"forks_count":2,"language":"Python","updated_at":"2026-06-12T21:26:53Z","pushed_at":"2026-06-12T21:26:48Z","created_at":"2026-04-07T18:34:14Z","topics":["cve","cve-2026-0740","exploit","file-upload","ninja-forms-uploads","plugin","poc","premium","rce","vulnerability","wordpress"],"owner":{"login":"whattheslime","html_url":"https://github.com/whattheslime"},"clone_url":"https://github.com/whattheslime/CVE-2026-0740.git","has_code":true,"age_days":79},{"id":1221225062,"name":"CVE-2026-0740","full_name":"murrez/CVE-2026-0740","html_url":"https://github.com/murrez/CVE-2026-0740","description":"CVE-2026-0740","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-04-27T23:30:48Z","pushed_at":"2026-04-25T23:14:52Z","created_at":"2026-04-25T23:12:47Z","topics":[],"owner":{"login":"murrez","html_url":"https://github.com/murrez"},"clone_url":"https://github.com/murrez/CVE-2026-0740.git","has_code":true,"age_days":60},{"id":1244173232,"name":"CVE-2026-0740","full_name":"a24ac1/CVE-2026-0740","html_url":"https://github.com/a24ac1/CVE-2026-0740","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-20T03:04:37Z","pushed_at":"2026-05-20T01:20:38Z","created_at":"2026-05-20T03:04:37Z","topics":[],"owner":{"login":"a24ac1","html_url":"https://github.com/a24ac1"},"clone_url":"https://github.com/a24ac1/CVE-2026-0740.git","has_code":false,"age_days":36}]},{"cve_id":"CVE-2026-0745","repositories":[{"id":1214857061,"name":"CVE-2026-0745","full_name":"NetVanguard-cmd/CVE-2026-0745","html_url":"https://github.com/NetVanguard-cmd/CVE-2026-0745","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-19T06:21:52Z","pushed_at":"2026-04-19T06:21:48Z","created_at":"2026-04-19T06:21:48Z","topics":[],"owner":{"login":"NetVanguard-cmd","html_url":"https://github.com/NetVanguard-cmd"},"clone_url":"https://github.com/NetVanguard-cmd/CVE-2026-0745.git","has_code":false,"age_days":67},{"id":1239525487,"name":"CVE-2026-0745","full_name":"HORKimhab/CVE-2026-0745","html_url":"https://github.com/HORKimhab/CVE-2026-0745","description":"CVE-2026-0745","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-15T07:17:02Z","pushed_at":"2026-05-15T07:16:59Z","created_at":"2026-05-15T07:12:27Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-0745.git","has_code":true,"age_days":41}]},{"cve_id":"CVE-2026-0766","repositories":[{"id":1194555261,"name":"CVE-2026-0766","full_name":"bitt0n/CVE-2026-0766","html_url":"https://github.com/bitt0n/CVE-2026-0766","description":"Educational security research: OpenWebUI RCE via tool code injection (CVE-2026-0766  - ZDI-26-032)","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-28T15:22:32Z","pushed_at":"2026-03-28T15:22:29Z","created_at":"2026-03-28T14:14:23Z","topics":[],"owner":{"login":"bitt0n","html_url":"https://github.com/bitt0n"},"clone_url":"https://github.com/bitt0n/CVE-2026-0766.git","has_code":true,"age_days":89}]},{"cve_id":"CVE-2026-0770","repositories":[{"id":1152475632,"name":"CVE-2026-0770-PoC","full_name":"affix/CVE-2026-0770-PoC","html_url":"https://github.com/affix/CVE-2026-0770-PoC","description":"Proof of Concept for CVE-2026-0770 - Langflow Remote Code Execution","stargazers_count":5,"forks_count":1,"language":"Python","updated_at":"2026-05-16T23:58:03Z","pushed_at":"2026-02-18T21:51:27Z","created_at":"2026-02-07T23:31:48Z","topics":["cve","cve-2026-0770","exploit","poc","rce"],"owner":{"login":"affix","html_url":"https://github.com/affix"},"clone_url":"https://github.com/affix/CVE-2026-0770-PoC.git","has_code":true,"age_days":137},{"id":1166046683,"name":"CVE-2026-0770","full_name":"0xgh057r3c0n/CVE-2026-0770","html_url":"https://github.com/0xgh057r3c0n/CVE-2026-0770","description":"Langflow Remote Code Execution (RCE) Proof-of-Concept","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-03-02T14:10:01Z","pushed_at":"2026-02-24T20:32:20Z","created_at":"2026-02-24T20:28:03Z","topics":[],"owner":{"login":"0xgh057r3c0n","html_url":"https://github.com/0xgh057r3c0n"},"clone_url":"https://github.com/0xgh057r3c0n/CVE-2026-0770.git","has_code":true,"age_days":120},{"id":1200233816,"name":"CVE-2026-0770","full_name":"0xBlackash/CVE-2026-0770","html_url":"https://github.com/0xBlackash/CVE-2026-0770","description":"CVE-2026-0770","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-04-15T10:37:53Z","pushed_at":"2026-04-03T07:46:34Z","created_at":"2026-04-03T07:15:10Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-0770.git","has_code":true,"age_days":83},{"id":1175883223,"name":"CVE-2026-0770","full_name":"Yetazyyy/CVE-2026-0770","html_url":"https://github.com/Yetazyyy/CVE-2026-0770","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-09T17:03:18Z","pushed_at":"2026-03-09T17:03:14Z","created_at":"2026-03-08T10:07:18Z","topics":[],"owner":{"login":"Yetazyyy","html_url":"https://github.com/Yetazyyy"},"clone_url":"https://github.com/Yetazyyy/CVE-2026-0770.git","has_code":true,"age_days":109},{"id":1247845378,"name":"CVE-2026-0770","full_name":"diamorphine666/CVE-2026-0770","html_url":"https://github.com/diamorphine666/CVE-2026-0770","description":"Langflow remote code execution exploit","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-23T21:28:06Z","pushed_at":"2026-05-23T21:28:03Z","created_at":"2026-05-23T21:26:41Z","topics":[],"owner":{"login":"diamorphine666","html_url":"https://github.com/diamorphine666"},"clone_url":"https://github.com/diamorphine666/CVE-2026-0770.git","has_code":true,"age_days":32},{"id":1239508795,"name":"CVE-2026-0770","full_name":"Ez4rd1x1/CVE-2026-0770","html_url":"https://github.com/Ez4rd1x1/CVE-2026-0770","description":"LangFlow RCE | CVE-2026-0770 | Proof-Of-Concept","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-15T07:16:16Z","pushed_at":"2026-05-15T07:16:12Z","created_at":"2026-05-15T06:49:53Z","topics":[],"owner":{"login":"Ez4rd1x1","html_url":"https://github.com/Ez4rd1x1"},"clone_url":"https://github.com/Ez4rd1x1/CVE-2026-0770.git","has_code":true,"age_days":41}]},{"cve_id":"CVE-2026-0776","repositories":[{"id":1265152930,"name":"CVE-2026-0776","full_name":"0x18F/CVE-2026-0776","html_url":"https://github.com/0x18F/CVE-2026-0776","description":"Security research and proof-of-concept for CVE-2026-0776 affecting Discord Desktop Client.","stargazers_count":5,"forks_count":2,"language":"Python","updated_at":"2026-06-21T12:55:17Z","pushed_at":"2026-06-10T15:21:24Z","created_at":"2026-06-10T14:08:40Z","topics":[],"owner":{"login":"0x18F","html_url":"https://github.com/0x18F"},"clone_url":"https://github.com/0x18F/CVE-2026-0776.git","has_code":true,"age_days":15}]},{"cve_id":"CVE-2026-0827","repositories":[{"id":1212038125,"name":"CVE-2026-0827","full_name":"ZeroMemoryEx/CVE-2026-0827","html_url":"https://github.com/ZeroMemoryEx/CVE-2026-0827","description":"CVE-2026-0827 PoC","stargazers_count":19,"forks_count":3,"language":"C#","updated_at":"2026-05-14T03:01:44Z","pushed_at":"2026-04-16T15:26:25Z","created_at":"2026-04-16T02:10:56Z","topics":[],"owner":{"login":"ZeroMemoryEx","html_url":"https://github.com/ZeroMemoryEx"},"clone_url":"https://github.com/ZeroMemoryEx/CVE-2026-0827.git","has_code":true,"age_days":70}]},{"cve_id":"CVE-2026-0828","repositories":[{"id":1157847378,"name":"STProcessMonitorBYOVD","full_name":"ANYLNK/STProcessMonitorBYOVD","html_url":"https://github.com/ANYLNK/STProcessMonitorBYOVD","description":"The PoC for CVE-2025-70795 / CVE-2026-0828 and updated driver","stargazers_count":49,"forks_count":8,"language":"C++","updated_at":"2026-06-24T17:56:34Z","pushed_at":"2026-03-13T09:52:10Z","created_at":"2026-02-14T11:50:08Z","topics":[],"owner":{"login":"ANYLNK","html_url":"https://github.com/ANYLNK"},"clone_url":"https://github.com/ANYLNK/STProcessMonitorBYOVD.git","has_code":true,"age_days":131},{"id":1149330493,"name":"0xKern3lCrush","full_name":"DeathShotXD/0xKern3lCrush","html_url":"https://github.com/DeathShotXD/0xKern3lCrush","description":"Advanced PoC \u0026 Research for CVE-2026-0828 (Safetica) and CVE-2025-7771 (ThrottleStop). Analysis of BYOVD (Bring Your Own Vulnerable Driver) TTPs for Ring 0 process termination and physical memory R/W. Researching EDR-Killer patterns, PPL bypasses, and kernel-mode primitives used by MedusaLocker and other threat actors.","stargazers_count":42,"forks_count":5,"language":"C","updated_at":"2026-06-18T01:28:47Z","pushed_at":"2026-02-04T02:20:21Z","created_at":"2026-02-04T01:47:36Z","topics":["antivirus-removal","av-evasion","av-killer","avbypass","byovd","edr","edr-bypass","edr-evasion","edr-killer","ethicalhacking","exploit","foreverday","fud","kernel-driver","vulnerable-driver"],"owner":{"login":"DeathShotXD","html_url":"https://github.com/DeathShotXD"},"clone_url":"https://github.com/DeathShotXD/0xKern3lCrush.git","has_code":true,"age_days":141},{"id":1199617169,"name":"KillChain","full_name":"oxfemale/KillChain","html_url":"https://github.com/oxfemale/KillChain","description":"Kernel Process Termination Tool ( CVE-2026-0828 exploit)","stargazers_count":34,"forks_count":6,"language":"C","updated_at":"2026-06-22T17:18:18Z","pushed_at":"2026-04-02T14:32:56Z","created_at":"2026-04-02T14:28:37Z","topics":[],"owner":{"login":"oxfemale","html_url":"https://github.com/oxfemale"},"clone_url":"https://github.com/oxfemale/KillChain.git","has_code":true,"age_days":84},{"id":1251446212,"name":"cve-2026-0828","full_name":"mein-0/cve-2026-0828","html_url":"https://github.com/mein-0/cve-2026-0828","description":"","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-27T20:12:05Z","pushed_at":"2026-05-27T20:12:01Z","created_at":"2026-05-27T15:29:36Z","topics":[],"owner":{"login":"mein-0","html_url":"https://github.com/mein-0"},"clone_url":"https://github.com/mein-0/cve-2026-0828.git","has_code":true,"age_days":29}]},{"cve_id":"CVE-2026-0834","repositories":[{"id":1133072036,"name":"CVE-2026-0834","full_name":"mattgsys/CVE-2026-0834","html_url":"https://github.com/mattgsys/CVE-2026-0834","description":"Proof of Concept (PoC) for the TP-Link Device Debug Protocol (TDDP) Authentication Bypass (CVE-2026-0834)","stargazers_count":2,"forks_count":1,"language":"Python","updated_at":"2026-06-25T19:54:32Z","pushed_at":"2026-01-19T23:05:10Z","created_at":"2026-01-12T21:01:13Z","topics":[],"owner":{"login":"mattgsys","html_url":"https://github.com/mattgsys"},"clone_url":"https://github.com/mattgsys/CVE-2026-0834.git","has_code":true,"age_days":163}]},{"cve_id":"CVE-2026-0842","repositories":[{"id":1126407015,"name":"smart-sketcher-upload","full_name":"davidrxchester/smart-sketcher-upload","html_url":"https://github.com/davidrxchester/smart-sketcher-upload","description":"CVE-2026-0842","stargazers_count":3,"forks_count":0,"language":"Python","updated_at":"2026-02-17T20:26:16Z","pushed_at":"2026-01-10T15:50:04Z","created_at":"2026-01-01T21:07:07Z","topics":[],"owner":{"login":"davidrxchester","html_url":"https://github.com/davidrxchester"},"clone_url":"https://github.com/davidrxchester/smart-sketcher-upload.git","has_code":true,"age_days":174}]},{"cve_id":"CVE-2026-0847","repositories":[{"id":1195096200,"name":"CVE-2026-0847","full_name":"HyperPS/CVE-2026-0847","html_url":"https://github.com/HyperPS/CVE-2026-0847","description":"A vulnerability in NLTK versions up to and including 3.9.2 allows arbitrary file read via path traversal in multiple CorpusReader classes, including WordListCorpusReader, TaggedCorpusReader, and BracketParseCorpusReader.","stargazers_count":0,"forks_count":1,"language":"","updated_at":"2026-03-29T08:13:49Z","pushed_at":"2026-03-29T08:13:46Z","created_at":"2026-03-29T08:00:18Z","topics":[],"owner":{"login":"HyperPS","html_url":"https://github.com/HyperPS"},"clone_url":"https://github.com/HyperPS/CVE-2026-0847.git","has_code":false,"age_days":88}]},{"cve_id":"CVE-2026-0848","repositories":[{"id":1197424178,"name":"CVE-2026-0848-Scanner---Herramienta-de-Detecci-n","full_name":"fevar54/CVE-2026-0848-Scanner---Herramienta-de-Detecci-n","html_url":"https://github.com/fevar54/CVE-2026-0848-Scanner---Herramienta-de-Detecci-n","description":"Herramienta de detección para CVE-2026-0848 que escanea sistemas locales y remotos en busca de instalaciones vulnerables de NLTK ≤ 3.9.2. Realiza escaneo por SSH, detección en red, genera reportes JSON/HTML/CSV y calcula nivel de riesgo basado en presencia de modelos StanfordSegmenter comprometidos.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-31T16:04:14Z","pushed_at":"2026-03-31T16:03:39Z","created_at":"2026-03-31T15:12:27Z","topics":[],"owner":{"login":"fevar54","html_url":"https://github.com/fevar54"},"clone_url":"https://github.com/fevar54/CVE-2026-0848-Scanner---Herramienta-de-Detecci-n.git","has_code":true,"age_days":86},{"id":1197378555,"name":"CVE-2026-0848-PoC-Improper-Input-Validation","full_name":"fevar54/CVE-2026-0848-PoC-Improper-Input-Validation","html_url":"https://github.com/fevar54/CVE-2026-0848-PoC-Improper-Input-Validation","description":"Este PoC compila código Java malicioso en un JAR con bloque estático, lo carga mediante StanfordSegmenter de NLTK, y al ser cargado por el JVM ejecuta automáticamente el payload, creando el archivo /tmp/pwned_cve_2026_0848 como prueba tangible de ejecución de código arbitrario.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-31T14:45:08Z","pushed_at":"2026-03-31T14:45:04Z","created_at":"2026-03-31T14:34:02Z","topics":[],"owner":{"login":"fevar54","html_url":"https://github.com/fevar54"},"clone_url":"https://github.com/fevar54/CVE-2026-0848-PoC-Improper-Input-Validation.git","has_code":true,"age_days":86},{"id":1195105956,"name":"CVE-2026-0848","full_name":"HyperPS/CVE-2026-0848","html_url":"https://github.com/HyperPS/CVE-2026-0848","description":"nltk.tokenize.StanfordSegmenter dynamically loads external Java .jar files without verification or sandboxing. If an attacker can supply or replace the JAR (e.g., a poisoned model download, MITM package swap, or dependency poisoning), arbitrary Java bytecode executes at import time.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-29T08:30:02Z","pushed_at":"2026-03-29T08:29:59Z","created_at":"2026-03-29T08:20:30Z","topics":[],"owner":{"login":"HyperPS","html_url":"https://github.com/HyperPS"},"clone_url":"https://github.com/HyperPS/CVE-2026-0848.git","has_code":false,"age_days":88}]},{"cve_id":"CVE-2026-0866","repositories":[{"id":1181439564,"name":"zombieguard","full_name":"mdshoaibuddinchanda/zombieguard","html_url":"https://github.com/mdshoaibuddinchanda/zombieguard","description":"ML-based detection of Zombie ZIP archive header evasion attacks (CVE-2026-0866)","stargazers_count":3,"forks_count":0,"language":"Python","updated_at":"2026-03-25T13:06:30Z","pushed_at":"2026-03-25T13:06:26Z","created_at":"2026-03-14T06:15:49Z","topics":["archive-evasion","archive-security","cve-2026-0866","cybersecurity","entropy-analysis","machine-learning","malware-detection","malware-research","zip-format","zip-security"],"owner":{"login":"mdshoaibuddinchanda","html_url":"https://github.com/mdshoaibuddinchanda"},"clone_url":"https://github.com/mdshoaibuddinchanda/zombieguard.git","has_code":true,"age_days":103}]},{"cve_id":"CVE-2026-0897","repositories":[{"id":1195118577,"name":"CVE-2026-0897","full_name":"HyperPS/CVE-2026-0897","html_url":"https://github.com/HyperPS/CVE-2026-0897","description":"Allocation of Resources Without Limits or Throttling in the HDF5 weight loading component in Google Keras 3.0.0 through 3.13.0 on all platforms allows a remote attacker to cause a Denial of Service (DoS) through memory exhaustion and a crash of the Python interpreter via a crafted .keras ","stargazers_count":0,"forks_count":1,"language":"","updated_at":"2026-03-29T09:27:44Z","pushed_at":"2026-03-29T09:27:41Z","created_at":"2026-03-29T08:44:34Z","topics":[],"owner":{"login":"HyperPS","html_url":"https://github.com/HyperPS"},"clone_url":"https://github.com/HyperPS/CVE-2026-0897.git","has_code":false,"age_days":88}]},{"cve_id":"CVE-2026-0908","repositories":[{"id":1245548837,"name":"CVE-2026-0908-Chrome-0-day-RCE","full_name":"lylzjnqe/CVE-2026-0908-Chrome-0-day-RCE","html_url":"https://github.com/lylzjnqe/CVE-2026-0908-Chrome-0-day-RCE","description":"Chrome ANGLE Use-After-Free — 0-day disclosure \u0026 public CVE","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-06-17T08:45:48Z","pushed_at":"2026-05-21T10:38:43Z","created_at":"2026-05-21T10:22:19Z","topics":[],"owner":{"login":"lylzjnqe","html_url":"https://github.com/lylzjnqe"},"clone_url":"https://github.com/lylzjnqe/CVE-2026-0908-Chrome-0-day-RCE.git","has_code":true,"age_days":35}]},{"cve_id":"CVE-2026-0911","repositories":[{"id":1222020441,"name":"CVE-2026-0911","full_name":"murrez/CVE-2026-0911","html_url":"https://github.com/murrez/CVE-2026-0911","description":"CVE-2026-0911 için kimlik doğrulamalı test aracı: Hustle eklentisinde modül içe aktarma üzerinden zayıf dosya yükleme ve “yetim dosya” davranışını kontrol eder; yalnızca izinli ortamlarda ve geçerli WordPress oturumuyla kullanılmalıdır.","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-04-27T23:19:29Z","pushed_at":"2026-04-27T01:02:27Z","created_at":"2026-04-27T01:00:21Z","topics":[],"owner":{"login":"murrez","html_url":"https://github.com/murrez"},"clone_url":"https://github.com/murrez/CVE-2026-0911.git","has_code":true,"age_days":59}]},{"cve_id":"CVE-2026-0915","repositories":[{"id":1160963120,"name":"CVE-2026-0915-json-Patch.-V2.0","full_name":"cyberwulfy200-dev/CVE-2026-0915-json-Patch.-V2.0","html_url":"https://github.com/cyberwulfy200-dev/CVE-2026-0915-json-Patch.-V2.0","description":"Patch the Bug - glibc ","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-02-18T15:53:38Z","pushed_at":"2026-02-18T15:53:34Z","created_at":"2026-02-18T15:22:33Z","topics":[],"owner":{"login":"cyberwulfy200-dev","html_url":"https://github.com/cyberwulfy200-dev"},"clone_url":"https://github.com/cyberwulfy200-dev/CVE-2026-0915-json-Patch.-V2.0.git","has_code":true,"age_days":127}]},{"cve_id":"CVE-2026-0920","repositories":[{"id":1144464188,"name":"CVE-2026-0920","full_name":"John-doe-code-a11/CVE-2026-0920","html_url":"https://github.com/John-doe-code-a11/CVE-2026-0920","description":"Explanation and payload of the recent vulnerability in the LA-Studio Element WordPress plugin.","stargazers_count":6,"forks_count":0,"language":"Python","updated_at":"2026-06-17T13:13:55Z","pushed_at":"2026-01-28T18:56:35Z","created_at":"2026-01-28T17:57:09Z","topics":[],"owner":{"login":"John-doe-code-a11","html_url":"https://github.com/John-doe-code-a11"},"clone_url":"https://github.com/John-doe-code-a11/CVE-2026-0920.git","has_code":true,"age_days":148},{"id":1140067162,"name":"CVE-2026-0920-WordPress-LA-Studio-Exploit","full_name":"Galaxy-sc/CVE-2026-0920-WordPress-LA-Studio-Exploit","html_url":"https://github.com/Galaxy-sc/CVE-2026-0920-WordPress-LA-Studio-Exploit","description":"","stargazers_count":2,"forks_count":0,"language":"Go","updated_at":"2026-06-15T14:04:15Z","pushed_at":"2026-01-22T19:57:13Z","created_at":"2026-01-22T19:33:23Z","topics":[],"owner":{"login":"Galaxy-sc","html_url":"https://github.com/Galaxy-sc"},"clone_url":"https://github.com/Galaxy-sc/CVE-2026-0920-WordPress-LA-Studio-Exploit.git","has_code":true,"age_days":154},{"id":1214597462,"name":"CVE-2026-0920-","full_name":"Nxploited/CVE-2026-0920-","html_url":"https://github.com/Nxploited/CVE-2026-0920-","description":"LA-Studio Element Kit for Elementor \u003c= 1.5.6.3 - Unauthenticated Privilege Escalation via Backdoor to Administrative User Creation via lakit_bkrole parameter","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-19T23:44:41Z","pushed_at":"2026-04-18T19:44:23Z","created_at":"2026-04-18T19:43:07Z","topics":[],"owner":{"login":"Nxploited","html_url":"https://github.com/Nxploited"},"clone_url":"https://github.com/Nxploited/CVE-2026-0920-.git","has_code":true,"age_days":68}]},{"cve_id":"CVE-2026-0926","repositories":[{"id":1247846471,"name":"CVE-2026-0926-exploit","full_name":"diamorphine666/CVE-2026-0926-exploit","html_url":"https://github.com/diamorphine666/CVE-2026-0926-exploit","description":"CVE-2026-0926 exploit. The Prodigy Commerce plugin for WordPress Local File Inclusion ","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-23T21:29:46Z","pushed_at":"2026-05-23T21:29:43Z","created_at":"2026-05-23T21:29:19Z","topics":[],"owner":{"login":"diamorphine666","html_url":"https://github.com/diamorphine666"},"clone_url":"https://github.com/diamorphine666/CVE-2026-0926-exploit.git","has_code":true,"age_days":32}]},{"cve_id":"CVE-2026-1","repositories":[{"id":1232721519,"name":"CVE-2026-1","full_name":"Pluto2362/CVE-2026-1","html_url":"https://github.com/Pluto2362/CVE-2026-1","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-08T07:49:21Z","pushed_at":"2026-05-08T07:49:21Z","created_at":"2026-05-08T07:49:20Z","topics":[],"owner":{"login":"Pluto2362","html_url":"https://github.com/Pluto2362"},"clone_url":"https://github.com/Pluto2362/CVE-2026-1.git","has_code":false,"age_days":48}]},{"cve_id":"CVE-2026-10110","repositories":[{"id":1228138994,"name":"CVE-2026-10110-SQLi","full_name":"Xmyronn/CVE-2026-10110-SQLi","html_url":"https://github.com/Xmyronn/CVE-2026-10110-SQLi","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-29T23:25:43Z","pushed_at":"2026-05-03T16:44:52Z","created_at":"2026-05-03T16:40:11Z","topics":[],"owner":{"login":"Xmyronn","html_url":"https://github.com/Xmyronn"},"clone_url":"https://github.com/Xmyronn/CVE-2026-10110-SQLi.git","has_code":false,"age_days":53}]},{"cve_id":"CVE-2026-10170","repositories":[{"id":1229289452,"name":"CVE-2026-10170-RCE","full_name":"Xmyronn/CVE-2026-10170-RCE","html_url":"https://github.com/Xmyronn/CVE-2026-10170-RCE","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-31T01:00:00Z","pushed_at":"2026-05-04T22:34:36Z","created_at":"2026-05-04T22:29:00Z","topics":[],"owner":{"login":"Xmyronn","html_url":"https://github.com/Xmyronn"},"clone_url":"https://github.com/Xmyronn/CVE-2026-10170-RCE.git","has_code":false,"age_days":51}]},{"cve_id":"CVE-2026-10187","repositories":[{"id":1257974412,"name":"CVE-2026-10187","full_name":"passwa11/CVE-2026-10187","html_url":"https://github.com/passwa11/CVE-2026-10187","description":"A vulnerability was detected in Totolink N300RH 6.1c.1353_B20190305.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-03T07:01:28Z","pushed_at":"2026-06-03T07:01:24Z","created_at":"2026-06-03T07:00:54Z","topics":[],"owner":{"login":"passwa11","html_url":"https://github.com/passwa11"},"clone_url":"https://github.com/passwa11/CVE-2026-10187.git","has_code":false,"age_days":22}]},{"cve_id":"CVE-2026-10243","repositories":[{"id":1233337448,"name":"CVE-2026-10243-AUTH","full_name":"Xmyronn/CVE-2026-10243-AUTH","html_url":"https://github.com/Xmyronn/CVE-2026-10243-AUTH","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-31T16:26:11Z","pushed_at":"2026-05-08T21:19:23Z","created_at":"2026-05-08T21:12:32Z","topics":[],"owner":{"login":"Xmyronn","html_url":"https://github.com/Xmyronn"},"clone_url":"https://github.com/Xmyronn/CVE-2026-10243-AUTH.git","has_code":false,"age_days":47}]},{"cve_id":"CVE-2026-10288","repositories":[{"id":1235841829,"name":"CVE-2026-10288-AUTH-BYPASS","full_name":"Xmyronn/CVE-2026-10288-AUTH-BYPASS","html_url":"https://github.com/Xmyronn/CVE-2026-10288-AUTH-BYPASS","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-05T10:14:34Z","pushed_at":"2026-06-05T10:14:30Z","created_at":"2026-05-11T17:53:38Z","topics":[],"owner":{"login":"Xmyronn","html_url":"https://github.com/Xmyronn"},"clone_url":"https://github.com/Xmyronn/CVE-2026-10288-AUTH-BYPASS.git","has_code":false,"age_days":45}]},{"cve_id":"CVE-2026-10289","repositories":[{"id":1235875366,"name":"CVE-2026-10289-XSS","full_name":"Xmyronn/CVE-2026-10289-XSS","html_url":"https://github.com/Xmyronn/CVE-2026-10289-XSS","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-31T16:46:49Z","pushed_at":"2026-05-11T18:40:14Z","created_at":"2026-05-11T18:33:49Z","topics":[],"owner":{"login":"Xmyronn","html_url":"https://github.com/Xmyronn"},"clone_url":"https://github.com/Xmyronn/CVE-2026-10289-XSS.git","has_code":false,"age_days":45}]},{"cve_id":"CVE-2026-10290","repositories":[{"id":1235889167,"name":"CVE-2026-10290-SQLI","full_name":"Xmyronn/CVE-2026-10290-SQLI","html_url":"https://github.com/Xmyronn/CVE-2026-10290-SQLI","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-05T10:13:28Z","pushed_at":"2026-06-05T10:13:24Z","created_at":"2026-05-11T18:50:40Z","topics":[],"owner":{"login":"Xmyronn","html_url":"https://github.com/Xmyronn"},"clone_url":"https://github.com/Xmyronn/CVE-2026-10290-SQLI.git","has_code":false,"age_days":45}]},{"cve_id":"CVE-2026-10520","repositories":[{"id":1264427469,"name":"watchTowr-vs-Ivanti-Sentry-RCE-CVE-2026-10520-CVE-2026-10523","full_name":"watchtowrlabs/watchTowr-vs-Ivanti-Sentry-RCE-CVE-2026-10520-CVE-2026-10523","html_url":"https://github.com/watchtowrlabs/watchTowr-vs-Ivanti-Sentry-RCE-CVE-2026-10520-CVE-2026-10523","description":"","stargazers_count":13,"forks_count":4,"language":"Python","updated_at":"2026-06-19T19:33:16Z","pushed_at":"2026-06-09T21:58:08Z","created_at":"2026-06-09T21:55:07Z","topics":[],"owner":{"login":"watchtowrlabs","html_url":"https://github.com/watchtowrlabs"},"clone_url":"https://github.com/watchtowrlabs/watchTowr-vs-Ivanti-Sentry-RCE-CVE-2026-10520-CVE-2026-10523.git","has_code":true,"age_days":15},{"id":1266109694,"name":"CVE-2026-10520","full_name":"0xBlackash/CVE-2026-10520","html_url":"https://github.com/0xBlackash/CVE-2026-10520","description":"CVE-2026-10520","stargazers_count":4,"forks_count":0,"language":"Python","updated_at":"2026-06-16T00:06:03Z","pushed_at":"2026-06-11T10:33:08Z","created_at":"2026-06-11T10:26:36Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-10520.git","has_code":true,"age_days":14},{"id":1274256491,"name":"CVE-2026-10523-Ivanti-sentry","full_name":"gagaltotal/CVE-2026-10523-Ivanti-sentry","html_url":"https://github.com/gagaltotal/CVE-2026-10523-Ivanti-sentry","description":"CVE-2026-10520 - CVE-2026-10523 - Ivanti Sentry","stargazers_count":2,"forks_count":1,"language":"Go","updated_at":"2026-06-23T11:58:46Z","pushed_at":"2026-06-19T15:39:23Z","created_at":"2026-06-19T10:28:47Z","topics":["cve","cve-2026-10523","cve-scanning","cve-search","go","golang","golang-cli","golang-tools","ivanti","ivantisentry"],"owner":{"login":"gagaltotal","html_url":"https://github.com/gagaltotal"},"clone_url":"https://github.com/gagaltotal/CVE-2026-10523-Ivanti-sentry.git","has_code":true,"age_days":6},{"id":1264852282,"name":"CVE-2026-10520","full_name":"ogenich/CVE-2026-10520","html_url":"https://github.com/ogenich/CVE-2026-10520","description":"CVE-2026-10520 - Ivanti Sentry Pre-Auth OS Command Injection Mass Scanner","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-06-15T08:56:42Z","pushed_at":"2026-06-10T08:36:30Z","created_at":"2026-06-10T08:33:43Z","topics":["cve-2026-10520"],"owner":{"login":"ogenich","html_url":"https://github.com/ogenich"},"clone_url":"https://github.com/ogenich/CVE-2026-10520.git","has_code":true,"age_days":15},{"id":1273731592,"name":"CVE-2026-10520","full_name":"error-inside/CVE-2026-10520","html_url":"https://github.com/error-inside/CVE-2026-10520","description":"Root-Level RCE via OS Command Injection in Ivanti Sentry","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-18T22:16:48Z","pushed_at":"2026-06-18T22:16:44Z","created_at":"2026-06-18T20:20:55Z","topics":[],"owner":{"login":"error-inside","html_url":"https://github.com/error-inside"},"clone_url":"https://github.com/error-inside/CVE-2026-10520.git","has_code":true,"age_days":6},{"id":1265708861,"name":"CVE-2026-10520-10523","full_name":"HORKimhab/CVE-2026-10520-10523","html_url":"https://github.com/HORKimhab/CVE-2026-10520-10523","description":"CVE-2026-10520 and CVE-2026-10523","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-06-13T16:24:23Z","pushed_at":"2026-06-11T02:55:08Z","created_at":"2026-06-11T02:39:37Z","topics":["cve","ivanti-sentry"],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-10520-10523.git","has_code":true,"age_days":14}]},{"cve_id":"CVE-2026-10523","repositories":[{"id":1264427469,"name":"watchTowr-vs-Ivanti-Sentry-RCE-CVE-2026-10520-CVE-2026-10523","full_name":"watchtowrlabs/watchTowr-vs-Ivanti-Sentry-RCE-CVE-2026-10520-CVE-2026-10523","html_url":"https://github.com/watchtowrlabs/watchTowr-vs-Ivanti-Sentry-RCE-CVE-2026-10520-CVE-2026-10523","description":"","stargazers_count":13,"forks_count":4,"language":"Python","updated_at":"2026-06-19T19:33:16Z","pushed_at":"2026-06-09T21:58:08Z","created_at":"2026-06-09T21:55:07Z","topics":[],"owner":{"login":"watchtowrlabs","html_url":"https://github.com/watchtowrlabs"},"clone_url":"https://github.com/watchtowrlabs/watchTowr-vs-Ivanti-Sentry-RCE-CVE-2026-10520-CVE-2026-10523.git","has_code":true,"age_days":15},{"id":1274256491,"name":"CVE-2026-10523-Ivanti-sentry","full_name":"gagaltotal/CVE-2026-10523-Ivanti-sentry","html_url":"https://github.com/gagaltotal/CVE-2026-10523-Ivanti-sentry","description":"CVE-2026-10520 - CVE-2026-10523 - Ivanti Sentry","stargazers_count":2,"forks_count":1,"language":"Go","updated_at":"2026-06-23T11:58:46Z","pushed_at":"2026-06-19T15:39:23Z","created_at":"2026-06-19T10:28:47Z","topics":["cve","cve-2026-10523","cve-scanning","cve-search","go","golang","golang-cli","golang-tools","ivanti","ivantisentry"],"owner":{"login":"gagaltotal","html_url":"https://github.com/gagaltotal"},"clone_url":"https://github.com/gagaltotal/CVE-2026-10523-Ivanti-sentry.git","has_code":true,"age_days":6},{"id":1265708861,"name":"CVE-2026-10520-10523","full_name":"HORKimhab/CVE-2026-10520-10523","html_url":"https://github.com/HORKimhab/CVE-2026-10520-10523","description":"CVE-2026-10520 and CVE-2026-10523","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-06-13T16:24:23Z","pushed_at":"2026-06-11T02:55:08Z","created_at":"2026-06-11T02:39:37Z","topics":["cve","ivanti-sentry"],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-10520-10523.git","has_code":true,"age_days":14}]},{"cve_id":"CVE-2026-1056","repositories":[{"id":1144292826,"name":"CVE-2026-1056-POC","full_name":"ch4r0nn/CVE-2026-1056-POC","html_url":"https://github.com/ch4r0nn/CVE-2026-1056-POC","description":"Snow Monkey Forms \u003c= 12.0.3 - Unauthenticated Arbitrary File Deletion via Path Traversal (CVE-2026-1056)","stargazers_count":6,"forks_count":0,"language":"Python","updated_at":"2026-02-24T09:16:44Z","pushed_at":"2026-01-28T15:03:34Z","created_at":"2026-01-28T14:29:36Z","topics":[],"owner":{"login":"ch4r0nn","html_url":"https://github.com/ch4r0nn"},"clone_url":"https://github.com/ch4r0nn/CVE-2026-1056-POC.git","has_code":true,"age_days":148}]},{"cve_id":"CVE-2026-10580","repositories":[{"id":1261472805,"name":"By-Poloss..-..CVE-2026-10580","full_name":"Polosss/By-Poloss..-..CVE-2026-10580","html_url":"https://github.com/Polosss/By-Poloss..-..CVE-2026-10580","description":"Hippoo Mobile App for WooCommerce \u003c= 1.9.4 - Unauthenticated Authentication Bypass to Administrator Account Takeover","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-06-07T05:55:32Z","pushed_at":"2026-06-06T18:31:39Z","created_at":"2026-06-06T18:25:04Z","topics":[],"owner":{"login":"Polosss","html_url":"https://github.com/Polosss"},"clone_url":"https://github.com/Polosss/By-Poloss..-..CVE-2026-10580.git","has_code":false,"age_days":19}]},{"cve_id":"CVE-2026-10735","repositories":[{"id":1278702956,"name":"CVE-Wordpress","full_name":"HORKimhab/CVE-Wordpress","html_url":"https://github.com/HORKimhab/CVE-Wordpress","description":"CVE-2026-49777, CVE-2026-10735 - Draft","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-24T03:12:43Z","pushed_at":"2026-06-24T03:12:39Z","created_at":"2026-06-24T03:12:06Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-Wordpress.git","has_code":false,"age_days":1},{"id":1276226372,"name":"CVE-2026-49777-CVE-2026-10735","full_name":"xxconi/CVE-2026-49777-CVE-2026-10735","html_url":"https://github.com/xxconi/CVE-2026-49777-CVE-2026-10735","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-21T17:47:10Z","pushed_at":"2026-06-21T17:47:06Z","created_at":"2026-06-21T17:46:11Z","topics":[],"owner":{"login":"xxconi","html_url":"https://github.com/xxconi"},"clone_url":"https://github.com/xxconi/CVE-2026-49777-CVE-2026-10735.git","has_code":true,"age_days":4}]},{"cve_id":"CVE-2026-10795","repositories":[{"id":1269782574,"name":"CVE-2026-10795-Lab","full_name":"rootdirective-sec/CVE-2026-10795-Lab","html_url":"https://github.com/rootdirective-sec/CVE-2026-10795-Lab","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-15T05:09:23Z","pushed_at":"2026-06-15T05:09:19Z","created_at":"2026-06-15T05:06:36Z","topics":[],"owner":{"login":"rootdirective-sec","html_url":"https://github.com/rootdirective-sec"},"clone_url":"https://github.com/rootdirective-sec/CVE-2026-10795-Lab.git","has_code":true,"age_days":10},{"id":1266091197,"name":"CVE-2026-10795","full_name":"izxci/CVE-2026-10795","html_url":"https://github.com/izxci/CVE-2026-10795","description":"CVE-2026-10795 – UpdraftPlus Authentication Bypass","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-12T08:15:45Z","pushed_at":"2026-06-12T08:15:30Z","created_at":"2026-06-11T10:06:29Z","topics":[],"owner":{"login":"izxci","html_url":"https://github.com/izxci"},"clone_url":"https://github.com/izxci/CVE-2026-10795.git","has_code":true,"age_days":14},{"id":1266333043,"name":"CVE-2026-10795-POC","full_name":"webshellseo8/CVE-2026-10795-POC","html_url":"https://github.com/webshellseo8/CVE-2026-10795-POC","description":"CVE-2026-10795 The UpdraftPlus POC","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-11T17:18:49Z","pushed_at":"2026-06-11T17:18:44Z","created_at":"2026-06-11T14:19:28Z","topics":[],"owner":{"login":"webshellseo8","html_url":"https://github.com/webshellseo8"},"clone_url":"https://github.com/webshellseo8/CVE-2026-10795-POC.git","has_code":true,"age_days":14}]},{"cve_id":"CVE-2026-1107","repositories":[{"id":1136632618,"name":"CVE-2026-1107","full_name":"Iniivan13/CVE-2026-1107","html_url":"https://github.com/Iniivan13/CVE-2026-1107","description":"A weakness has been identified in EyouCMS up to 1.7.1/5.0. Impacted is the function check_userinfo of the file Diyajax.php of the component Member Avatar Handler. Executing a manipulation of the argument viewfile can lead to unrestricted upload. The attack may be performed from remote.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-01-18T03:32:44Z","pushed_at":"2026-01-18T03:32:41Z","created_at":"2026-01-18T03:30:08Z","topics":[],"owner":{"login":"Iniivan13","html_url":"https://github.com/Iniivan13"},"clone_url":"https://github.com/Iniivan13/CVE-2026-1107.git","has_code":false,"age_days":158}]},{"cve_id":"CVE-2026-11344","repositories":[{"id":1243532084,"name":"CVE-2026-11344-RCE","full_name":"Xmyronn/CVE-2026-11344-RCE","html_url":"https://github.com/Xmyronn/CVE-2026-11344-RCE","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-05T10:12:35Z","pushed_at":"2026-05-19T12:37:08Z","created_at":"2026-05-19T12:32:49Z","topics":[],"owner":{"login":"Xmyronn","html_url":"https://github.com/Xmyronn"},"clone_url":"https://github.com/Xmyronn/CVE-2026-11344-RCE.git","has_code":false,"age_days":37}]},{"cve_id":"CVE-2026-11417","repositories":[{"id":1268454969,"name":"CVE-2026-11417-AWS-CDK-RCE","full_name":"HeshamASH/CVE-2026-11417-AWS-CDK-RCE","html_url":"https://github.com/HeshamASH/CVE-2026-11417-AWS-CDK-RCE","description":"Technical writeup and Proof of Concept (PoC) for CVE-2026-11417: OS Command Injection / Remote Code Execution (RCE) in AWS CDK's NodejsFunction.","stargazers_count":0,"forks_count":0,"language":"TypeScript","updated_at":"2026-06-16T03:18:25Z","pushed_at":"2026-06-16T03:18:22Z","created_at":"2026-06-13T14:55:19Z","topics":[],"owner":{"login":"HeshamASH","html_url":"https://github.com/HeshamASH"},"clone_url":"https://github.com/HeshamASH/CVE-2026-11417-AWS-CDK-RCE.git","has_code":true,"age_days":12}]},{"cve_id":"CVE-2026-11450","repositories":[{"id":1268213480,"name":"glinet-beryl-ax-triple-rce-cve-2026-11450-11451-11452-unauthenticated-root-on-travel-router","full_name":"Hunt-Benito/glinet-beryl-ax-triple-rce-cve-2026-11450-11451-11452-unauthenticated-root-on-travel-router","html_url":"https://github.com/Hunt-Benito/glinet-beryl-ax-triple-rce-cve-2026-11450-11451-11452-unauthenticated-root-on-travel-router","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-21T07:20:09Z","pushed_at":"2026-06-21T07:20:06Z","created_at":"2026-06-13T09:11:02Z","topics":[],"owner":{"login":"Hunt-Benito","html_url":"https://github.com/Hunt-Benito"},"clone_url":"https://github.com/Hunt-Benito/glinet-beryl-ax-triple-rce-cve-2026-11450-11451-11452-unauthenticated-root-on-travel-router.git","has_code":true,"age_days":12}]},{"cve_id":"CVE-2026-11499","repositories":[{"id":1262817546,"name":"CVE-2026-11499","full_name":"0xBlackash/CVE-2026-11499","html_url":"https://github.com/0xBlackash/CVE-2026-11499","description":"CVE-2026-11499","stargazers_count":1,"forks_count":1,"language":"Python","updated_at":"2026-06-08T20:05:07Z","pushed_at":"2026-06-08T11:03:33Z","created_at":"2026-06-08T10:54:48Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-11499.git","has_code":true,"age_days":17}]},{"cve_id":"CVE-2026-11518","repositories":[{"id":1247902022,"name":"CVE-2026-11518-XSS","full_name":"Xmyronn/CVE-2026-11518-XSS","html_url":"https://github.com/Xmyronn/CVE-2026-11518-XSS","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-07T16:13:57Z","pushed_at":"2026-05-23T23:52:29Z","created_at":"2026-05-23T23:49:39Z","topics":[],"owner":{"login":"Xmyronn","html_url":"https://github.com/Xmyronn"},"clone_url":"https://github.com/Xmyronn/CVE-2026-11518-XSS.git","has_code":false,"age_days":32}]},{"cve_id":"CVE-2026-11551","repositories":[{"id":1274602357,"name":"By-Poloss..-..CVE-2026-11551-PoC","full_name":"Polosss/By-Poloss..-..CVE-2026-11551-PoC","html_url":"https://github.com/Polosss/By-Poloss..-..CVE-2026-11551-PoC","description":"Unauthenticated Privilege Escalation via Account Takeover","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-06-20T10:33:16Z","pushed_at":"2026-06-19T17:33:50Z","created_at":"2026-06-19T17:29:57Z","topics":[],"owner":{"login":"Polosss","html_url":"https://github.com/Polosss"},"clone_url":"https://github.com/Polosss/By-Poloss..-..CVE-2026-11551-PoC.git","has_code":false,"age_days":6},{"id":1275731114,"name":"CVE-2026-11551-PoC","full_name":"ubaydev/CVE-2026-11551-PoC","html_url":"https://github.com/ubaydev/CVE-2026-11551-PoC","description":"","stargazers_count":0,"forks_count":1,"language":"PHP","updated_at":"2026-06-21T04:41:24Z","pushed_at":"2026-06-21T04:41:20Z","created_at":"2026-06-21T04:21:11Z","topics":[],"owner":{"login":"ubaydev","html_url":"https://github.com/ubaydev"},"clone_url":"https://github.com/ubaydev/CVE-2026-11551-PoC.git","has_code":true,"age_days":4},{"id":1274765654,"name":"2026-11551","full_name":"xxconi/2026-11551","html_url":"https://github.com/xxconi/2026-11551","description":"CVE-2026-11551: Branda Plugin - Unauthenticated Privilege Escalation via Account Takeover","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-19T21:44:18Z","pushed_at":"2026-06-19T21:44:14Z","created_at":"2026-06-19T21:43:46Z","topics":[],"owner":{"login":"xxconi","html_url":"https://github.com/xxconi"},"clone_url":"https://github.com/xxconi/2026-11551.git","has_code":true,"age_days":5}]},{"cve_id":"CVE-2026-11561","repositories":[{"id":1275932984,"name":"CVE-2026-11561","full_name":"alperenkesk/CVE-2026-11561","html_url":"https://github.com/alperenkesk/CVE-2026-11561","description":"Nuclei template for CVE-2026-11561 — Apinizer SSTI / RCE version detection","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-06-21T12:33:05Z","pushed_at":"2026-06-21T10:26:49Z","created_at":"2026-06-21T10:26:26Z","topics":[],"owner":{"login":"alperenkesk","html_url":"https://github.com/alperenkesk"},"clone_url":"https://github.com/alperenkesk/CVE-2026-11561.git","has_code":false,"age_days":4}]},{"cve_id":"CVE-2026-11645","repositories":[{"id":1265207258,"name":"CVE-2026-11645-Out-of-bounds-Read-Write","full_name":"fevar54/CVE-2026-11645-Out-of-bounds-Read-Write","html_url":"https://github.com/fevar54/CVE-2026-11645-Out-of-bounds-Read-Write","description":"# CVE-2026-11645 - Chrome V8 Out-of-Bounds Read/Write Exploit","stargazers_count":3,"forks_count":3,"language":"","updated_at":"2026-06-22T04:43:53Z","pushed_at":"2026-06-10T15:06:14Z","created_at":"2026-06-10T15:02:56Z","topics":[],"owner":{"login":"fevar54","html_url":"https://github.com/fevar54"},"clone_url":"https://github.com/fevar54/CVE-2026-11645-Out-of-bounds-Read-Write.git","has_code":false,"age_days":15},{"id":1266392105,"name":"CVE-2026-11645","full_name":"0xBlackash/CVE-2026-11645","html_url":"https://github.com/0xBlackash/CVE-2026-11645","description":"CVE-2026-11645","stargazers_count":1,"forks_count":0,"language":"HTML","updated_at":"2026-06-11T18:03:46Z","pushed_at":"2026-06-11T15:58:17Z","created_at":"2026-06-11T15:17:47Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-11645.git","has_code":true,"age_days":14},{"id":1265590038,"name":"CVE-2026-11645","full_name":"adamshaikhma/CVE-2026-11645","html_url":"https://github.com/adamshaikhma/CVE-2026-11645","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-10T23:06:51Z","pushed_at":"2026-06-10T23:06:50Z","created_at":"2026-06-10T23:06:47Z","topics":[],"owner":{"login":"adamshaikhma","html_url":"https://github.com/adamshaikhma"},"clone_url":"https://github.com/adamshaikhma/CVE-2026-11645.git","has_code":false,"age_days":14}]},{"cve_id":"CVE-2026-11784","repositories":[{"id":1274421842,"name":"CVE-2026-11784-Optimole-CSRF","full_name":"AlexMihailEngineer/CVE-2026-11784-Optimole-CSRF","html_url":"https://github.com/AlexMihailEngineer/CVE-2026-11784-Optimole-CSRF","description":"","stargazers_count":0,"forks_count":0,"language":"HTML","updated_at":"2026-06-19T13:51:57Z","pushed_at":"2026-06-19T13:51:54Z","created_at":"2026-06-19T13:49:47Z","topics":[],"owner":{"login":"AlexMihailEngineer","html_url":"https://github.com/AlexMihailEngineer"},"clone_url":"https://github.com/AlexMihailEngineer/CVE-2026-11784-Optimole-CSRF.git","has_code":true,"age_days":6}]},{"cve_id":"CVE-2026-11834","repositories":[{"id":1278437262,"name":"CVE-2026-11834","full_name":"mattgsys/CVE-2026-11834","html_url":"https://github.com/mattgsys/CVE-2026-11834","description":"Proof of Concept (PoC) for the TP-Link DHCP Option 66 Unauthenticated RCE (CVE-2026-11834)","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-24T17:31:10Z","pushed_at":"2026-06-24T17:30:44Z","created_at":"2026-06-23T19:41:07Z","topics":[],"owner":{"login":"mattgsys","html_url":"https://github.com/mattgsys"},"clone_url":"https://github.com/mattgsys/CVE-2026-11834.git","has_code":true,"age_days":2}]},{"cve_id":"CVE-2026-11837","repositories":[{"id":1278150187,"name":"cve-2026-11837-ansible-posix-authorized-key","full_name":"M8seven/cve-2026-11837-ansible-posix-authorized-key","html_url":"https://github.com/M8seven/cve-2026-11837-ansible-posix-authorized-key","description":"CVE-2026-11837: local privilege escalation in the ansible.posix authorized_key module via symlink-following chown. Technical writeup; sibling of CVE-2024-9902.","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-06-23T14:28:32Z","pushed_at":"2026-06-23T14:12:16Z","created_at":"2026-06-23T14:05:58Z","topics":["ansible","cve","linux","privilege-escalation","security-research","symlink-attack"],"owner":{"login":"M8seven","html_url":"https://github.com/M8seven"},"clone_url":"https://github.com/M8seven/cve-2026-11837-ansible-posix-authorized-key.git","has_code":false,"age_days":2}]},{"cve_id":"CVE-2026-11912","repositories":[{"id":1275119300,"name":"By-Poloss..-..CVE-2026-11912","full_name":"Polosss/By-Poloss..-..CVE-2026-11912","html_url":"https://github.com/Polosss/By-Poloss..-..CVE-2026-11912","description":"Missing Authorization to Unauthenticated File Modification","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-06-23T08:13:55Z","pushed_at":"2026-06-20T09:58:28Z","created_at":"2026-06-20T09:20:46Z","topics":[],"owner":{"login":"Polosss","html_url":"https://github.com/Polosss"},"clone_url":"https://github.com/Polosss/By-Poloss..-..CVE-2026-11912.git","has_code":true,"age_days":5}]},{"cve_id":"CVE-2026-1207","repositories":[{"id":1221306764,"name":"CVE-2026-1207","full_name":"sw0rd1ight/CVE-2026-1207","html_url":"https://github.com/sw0rd1ight/CVE-2026-1207","description":"Django 框架在使用 PostGIS 查询地理栅格（raster）数据时，若将未经验证的用户输入直接作为 band index（波段索引）参数，会引发 SQL 注入","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-26T03:12:49Z","pushed_at":"2026-04-26T03:12:45Z","created_at":"2026-04-26T02:54:10Z","topics":[],"owner":{"login":"sw0rd1ight","html_url":"https://github.com/sw0rd1ight"},"clone_url":"https://github.com/sw0rd1ight/CVE-2026-1207.git","has_code":true,"age_days":60}]},{"cve_id":"CVE-2026-1208","repositories":[{"id":1140851057,"name":"CVE-2026-1208","full_name":"SnailSploit/CVE-2026-1208","html_url":"https://github.com/SnailSploit/CVE-2026-1208","description":"Friendly Functions for Welcart \u003c= 1.2.5 - Cross-Site Request Forgery to Settings Update","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-08T16:05:51Z","pushed_at":"2026-05-08T16:05:46Z","created_at":"2026-01-23T20:51:35Z","topics":[],"owner":{"login":"SnailSploit","html_url":"https://github.com/SnailSploit"},"clone_url":"https://github.com/SnailSploit/CVE-2026-1208.git","has_code":true,"age_days":152}]},{"cve_id":"CVE-2026-1232","repositories":[{"id":1260264726,"name":"beyondtrust-cve-2026-1232","full_name":"horrister/beyondtrust-cve-2026-1232","html_url":"https://github.com/horrister/beyondtrust-cve-2026-1232","description":"","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-06T18:19:56Z","pushed_at":"2026-06-06T18:19:52Z","created_at":"2026-06-05T10:07:22Z","topics":[],"owner":{"login":"horrister","html_url":"https://github.com/horrister"},"clone_url":"https://github.com/horrister/beyondtrust-cve-2026-1232.git","has_code":true,"age_days":20}]},{"cve_id":"CVE-2026-12416","repositories":[{"id":1279233499,"name":"CVE-2026-12416-CVE-2026-12417","full_name":"Nxploited/CVE-2026-12416-CVE-2026-12417","html_url":"https://github.com/Nxploited/CVE-2026-12416-CVE-2026-12417","description":"Unauthenticated Account Takeover via Weak Password Reset Validation via 'reset_user_id' Parameter | Unauthenticated Privilege Escalation via Weak Password Reset Validation via 'reset_activation_code' Leading to Account Takeover","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-24T13:52:19Z","pushed_at":"2026-06-24T13:51:15Z","created_at":"2026-06-24T13:49:45Z","topics":[],"owner":{"login":"Nxploited","html_url":"https://github.com/Nxploited"},"clone_url":"https://github.com/Nxploited/CVE-2026-12416-CVE-2026-12417.git","has_code":true,"age_days":1}]},{"cve_id":"CVE-2026-12417","repositories":[{"id":1279233499,"name":"CVE-2026-12416-CVE-2026-12417","full_name":"Nxploited/CVE-2026-12416-CVE-2026-12417","html_url":"https://github.com/Nxploited/CVE-2026-12416-CVE-2026-12417","description":"Unauthenticated Account Takeover via Weak Password Reset Validation via 'reset_user_id' Parameter | Unauthenticated Privilege Escalation via Weak Password Reset Validation via 'reset_activation_code' Leading to Account Takeover","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-24T13:52:19Z","pushed_at":"2026-06-24T13:51:15Z","created_at":"2026-06-24T13:49:45Z","topics":[],"owner":{"login":"Nxploited","html_url":"https://github.com/Nxploited"},"clone_url":"https://github.com/Nxploited/CVE-2026-12416-CVE-2026-12417.git","has_code":true,"age_days":1}]},{"cve_id":"CVE-2026-1281","repositories":[{"id":1152108206,"name":"CVE-2026-1281-Ivanti-EPMM-RCE","full_name":"MehdiLeDeaut/CVE-2026-1281-Ivanti-EPMM-RCE","html_url":"https://github.com/MehdiLeDeaut/CVE-2026-1281-Ivanti-EPMM-RCE","description":"Proof of Concept for CVE-2026-1281 \u0026 CVE-2026-1340 - Ivanti EPMM Pre-Auth RCE via Bash Arithmetic Expansion","stargazers_count":5,"forks_count":1,"language":"Python","updated_at":"2026-06-24T00:43:19Z","pushed_at":"2026-02-07T14:27:13Z","created_at":"2026-02-07T11:28:47Z","topics":[],"owner":{"login":"MehdiLeDeaut","html_url":"https://github.com/MehdiLeDeaut"},"clone_url":"https://github.com/MehdiLeDeaut/CVE-2026-1281-Ivanti-EPMM-RCE.git","has_code":true,"age_days":138},{"id":1162091212,"name":"CVE-2026-1281-CVE-2026-1340-Ivanti-EPMM-RCE","full_name":"YunfeiGE18/CVE-2026-1281-CVE-2026-1340-Ivanti-EPMM-RCE","html_url":"https://github.com/YunfeiGE18/CVE-2026-1281-CVE-2026-1340-Ivanti-EPMM-RCE","description":"A simple demo application that shows how to reproduce the Ivanti EPMM pre-auth RCE vulnerability (CVE-2026-1281 / CVE-2026-1340) for educational and security research purposes.","stargazers_count":3,"forks_count":0,"language":"Shell","updated_at":"2026-04-09T02:40:26Z","pushed_at":"2026-02-19T21:36:19Z","created_at":"2026-02-19T21:29:39Z","topics":[],"owner":{"login":"YunfeiGE18","html_url":"https://github.com/YunfeiGE18"},"clone_url":"https://github.com/YunfeiGE18/CVE-2026-1281-CVE-2026-1340-Ivanti-EPMM-RCE.git","has_code":true,"age_days":125}]},{"cve_id":"CVE-2026-1306","repositories":[{"id":1223767424,"name":"CVE-2026-1306","full_name":"murrez/CVE-2026-1306","html_url":"https://github.com/murrez/CVE-2026-1306","description":"PoC list runner for CVE-2026-1306 (WordPress midi-Synth ≤1.1.0): fetches exposed midiSynth_nonce, POSTs export AJAX to drop files under sound/. Authorized security testing only.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-28T16:28:06Z","pushed_at":"2026-04-28T16:28:02Z","created_at":"2026-04-28T16:27:13Z","topics":[],"owner":{"login":"murrez","html_url":"https://github.com/murrez"},"clone_url":"https://github.com/murrez/CVE-2026-1306.git","has_code":true,"age_days":58}]},{"cve_id":"CVE-2026-1312","repositories":[{"id":1163180071,"name":"CVE-2026-1312","full_name":"sw0rd1ight/CVE-2026-1312","html_url":"https://github.com/sw0rd1ight/CVE-2026-1312","description":"Analysis and reproduction of CVE-2026-1312","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-04-04T02:50:32Z","pushed_at":"2026-02-21T08:33:36Z","created_at":"2026-02-21T08:07:29Z","topics":[],"owner":{"login":"sw0rd1ight","html_url":"https://github.com/sw0rd1ight"},"clone_url":"https://github.com/sw0rd1ight/CVE-2026-1312.git","has_code":true,"age_days":124},{"id":1206499607,"name":"CVE-2026-1312-Testing","full_name":"alpinine/CVE-2026-1312-Testing","html_url":"https://github.com/alpinine/CVE-2026-1312-Testing","description":"","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-04-10T01:34:35Z","pushed_at":"2026-04-10T01:34:28Z","created_at":"2026-04-10T01:21:46Z","topics":[],"owner":{"login":"alpinine","html_url":"https://github.com/alpinine"},"clone_url":"https://github.com/alpinine/CVE-2026-1312-Testing.git","has_code":true,"age_days":76}]},{"cve_id":"CVE-2026-1337","repositories":[{"id":1150557425,"name":"CVE-2026-1337","full_name":"JoakimBulow/CVE-2026-1337","html_url":"https://github.com/JoakimBulow/CVE-2026-1337","description":"CVE-2026-1337 - Neo4j - Log Injection","stargazers_count":5,"forks_count":1,"language":"Python","updated_at":"2026-06-14T21:09:12Z","pushed_at":"2026-02-05T13:12:05Z","created_at":"2026-02-05T12:24:04Z","topics":[],"owner":{"login":"JoakimBulow","html_url":"https://github.com/JoakimBulow"},"clone_url":"https://github.com/JoakimBulow/CVE-2026-1337.git","has_code":true,"age_days":140}]},{"cve_id":"CVE-2026-1340","repositories":[{"id":1152108206,"name":"CVE-2026-1281-Ivanti-EPMM-RCE","full_name":"MehdiLeDeaut/CVE-2026-1281-Ivanti-EPMM-RCE","html_url":"https://github.com/MehdiLeDeaut/CVE-2026-1281-Ivanti-EPMM-RCE","description":"Proof of Concept for CVE-2026-1281 \u0026 CVE-2026-1340 - Ivanti EPMM Pre-Auth RCE via Bash Arithmetic Expansion","stargazers_count":5,"forks_count":1,"language":"Python","updated_at":"2026-06-24T00:43:19Z","pushed_at":"2026-02-07T14:27:13Z","created_at":"2026-02-07T11:28:47Z","topics":[],"owner":{"login":"MehdiLeDeaut","html_url":"https://github.com/MehdiLeDeaut"},"clone_url":"https://github.com/MehdiLeDeaut/CVE-2026-1281-Ivanti-EPMM-RCE.git","has_code":true,"age_days":138},{"id":1162091212,"name":"CVE-2026-1281-CVE-2026-1340-Ivanti-EPMM-RCE","full_name":"YunfeiGE18/CVE-2026-1281-CVE-2026-1340-Ivanti-EPMM-RCE","html_url":"https://github.com/YunfeiGE18/CVE-2026-1281-CVE-2026-1340-Ivanti-EPMM-RCE","description":"A simple demo application that shows how to reproduce the Ivanti EPMM pre-auth RCE vulnerability (CVE-2026-1281 / CVE-2026-1340) for educational and security research purposes.","stargazers_count":3,"forks_count":0,"language":"Shell","updated_at":"2026-04-09T02:40:26Z","pushed_at":"2026-02-19T21:36:19Z","created_at":"2026-02-19T21:29:39Z","topics":[],"owner":{"login":"YunfeiGE18","html_url":"https://github.com/YunfeiGE18"},"clone_url":"https://github.com/YunfeiGE18/CVE-2026-1281-CVE-2026-1340-Ivanti-EPMM-RCE.git","has_code":true,"age_days":125}]},{"cve_id":"CVE-2026-1357","repositories":[{"id":1155497494,"name":"POC-CVE-2026-1357","full_name":"LucasM0ntes/POC-CVE-2026-1357","html_url":"https://github.com/LucasM0ntes/POC-CVE-2026-1357","description":"POC-CVE-2026-1357","stargazers_count":15,"forks_count":4,"language":"","updated_at":"2026-06-18T10:30:44Z","pushed_at":"2026-02-11T16:01:44Z","created_at":"2026-02-11T15:26:14Z","topics":[],"owner":{"login":"LucasM0ntes","html_url":"https://github.com/LucasM0ntes"},"clone_url":"https://github.com/LucasM0ntes/POC-CVE-2026-1357.git","has_code":false,"age_days":134},{"id":1156967397,"name":"CVE-2026-1357","full_name":"halilkirazkaya/CVE-2026-1357","html_url":"https://github.com/halilkirazkaya/CVE-2026-1357","description":"CVE-2026-1357 — WPvivid Backup \u0026 Migration ≤ 0.9.123 Unauthenticated RCE Exploit","stargazers_count":14,"forks_count":2,"language":"Python","updated_at":"2026-06-24T19:58:26Z","pushed_at":"2026-02-26T08:41:37Z","created_at":"2026-02-13T09:12:39Z","topics":["cve-2026-1357"],"owner":{"login":"halilkirazkaya","html_url":"https://github.com/halilkirazkaya"},"clone_url":"https://github.com/halilkirazkaya/CVE-2026-1357.git","has_code":true,"age_days":132},{"id":1157661113,"name":"CVE-2026-1357-POC","full_name":"cybertechajju/CVE-2026-1357-POC","html_url":"https://github.com/cybertechajju/CVE-2026-1357-POC","description":"","stargazers_count":8,"forks_count":2,"language":"Python","updated_at":"2026-05-18T02:44:07Z","pushed_at":"2026-02-14T05:34:13Z","created_at":"2026-02-14T05:15:19Z","topics":[],"owner":{"login":"cybertechajju","html_url":"https://github.com/cybertechajju"},"clone_url":"https://github.com/cybertechajju/CVE-2026-1357-POC.git","has_code":true,"age_days":131},{"id":1154797663,"name":"Exploit-CVE-2026-1357","full_name":"itsismarcos/Exploit-CVE-2026-1357","html_url":"https://github.com/itsismarcos/Exploit-CVE-2026-1357","description":"Exploit CVE-2026-1357","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-02-18T00:13:45Z","pushed_at":"2026-02-10T19:40:36Z","created_at":"2026-02-10T19:38:36Z","topics":[],"owner":{"login":"itsismarcos","html_url":"https://github.com/itsismarcos"},"clone_url":"https://github.com/itsismarcos/Exploit-CVE-2026-1357.git","has_code":true,"age_days":135},{"id":1178298056,"name":"CVE-2026-1357","full_name":"Nxploited/CVE-2026-1357","html_url":"https://github.com/Nxploited/CVE-2026-1357","description":"Migration, Backup, Staging \u003c= 0.9.123 - Unauthenticated Arbitrary File Upload","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-03-13T08:56:22Z","pushed_at":"2026-03-11T01:26:24Z","created_at":"2026-03-10T22:23:22Z","topics":[],"owner":{"login":"Nxploited","html_url":"https://github.com/Nxploited"},"clone_url":"https://github.com/Nxploited/CVE-2026-1357.git","has_code":true,"age_days":106},{"id":1166387734,"name":"CVE-2026-1357-Lab","full_name":"rootdirective-sec/CVE-2026-1357-Lab","html_url":"https://github.com/rootdirective-sec/CVE-2026-1357-Lab","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-02-25T07:04:34Z","pushed_at":"2026-02-25T07:04:31Z","created_at":"2026-02-25T07:02:33Z","topics":[],"owner":{"login":"rootdirective-sec","html_url":"https://github.com/rootdirective-sec"},"clone_url":"https://github.com/rootdirective-sec/CVE-2026-1357-Lab.git","has_code":true,"age_days":120},{"id":1170451926,"name":"CVE-2026-1357","full_name":"CVEs-Labs/CVE-2026-1357","html_url":"https://github.com/CVEs-Labs/CVE-2026-1357","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-22T13:16:46Z","pushed_at":"2026-04-22T13:16:39Z","created_at":"2026-03-02T06:14:06Z","topics":[],"owner":{"login":"CVEs-Labs","html_url":"https://github.com/CVEs-Labs"},"clone_url":"https://github.com/CVEs-Labs/CVE-2026-1357.git","has_code":true,"age_days":115},{"id":1184801382,"name":"CVE-2026-1357","full_name":"0xBlackash/CVE-2026-1357","html_url":"https://github.com/0xBlackash/CVE-2026-1357","description":"CVE-2026-1357","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-18T01:00:31Z","pushed_at":"2026-03-18T01:00:28Z","created_at":"2026-03-18T00:18:20Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-1357.git","has_code":false,"age_days":99},{"id":1211125179,"name":"PoC-CVE-2026-1357","full_name":"masterwok/PoC-CVE-2026-1357","html_url":"https://github.com/masterwok/PoC-CVE-2026-1357","description":" Proof-of-concept exploit for POC-CVE-2026-1357. WPvivid Backup \u0026 Migration plugin for WordPress \u003c= 0.9.123.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-15T05:35:22Z","pushed_at":"2026-04-15T05:35:19Z","created_at":"2026-04-15T05:02:07Z","topics":[],"owner":{"login":"masterwok","html_url":"https://github.com/masterwok"},"clone_url":"https://github.com/masterwok/PoC-CVE-2026-1357.git","has_code":true,"age_days":71}]},{"cve_id":"CVE-2026-1375","repositories":[{"id":1206217758,"name":"CVE-2026-1375","full_name":"d3kc4rt1/CVE-2026-1375","html_url":"https://github.com/d3kc4rt1/CVE-2026-1375","description":"Authenticated IDOR / Broken Access Control in Tutor LMS Plugin","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-09T17:38:14Z","pushed_at":"2026-04-09T17:38:08Z","created_at":"2026-04-09T17:37:39Z","topics":[],"owner":{"login":"d3kc4rt1","html_url":"https://github.com/d3kc4rt1"},"clone_url":"https://github.com/d3kc4rt1/CVE-2026-1375.git","has_code":false,"age_days":77}]},{"cve_id":"CVE-2026-1405","repositories":[{"id":1162943554,"name":"CVE-2026-1405","full_name":"Nxploited/CVE-2026-1405","html_url":"https://github.com/Nxploited/CVE-2026-1405","description":"Slider Future \u003c= 1.0.5 - Unauthenticated Arbitrary File Upload","stargazers_count":5,"forks_count":0,"language":"Python","updated_at":"2026-05-22T02:49:05Z","pushed_at":"2026-02-20T22:14:48Z","created_at":"2026-02-20T22:12:03Z","topics":[],"owner":{"login":"Nxploited","html_url":"https://github.com/Nxploited"},"clone_url":"https://github.com/Nxploited/CVE-2026-1405.git","has_code":true,"age_days":124},{"id":1213853314,"name":"Mass-Scanner-CVE-2026-1405","full_name":"AnggaTechI/Mass-Scanner-CVE-2026-1405","html_url":"https://github.com/AnggaTechI/Mass-Scanner-CVE-2026-1405","description":"WordPress mass scanner for detecting CVE-2026-1405 exposure.","stargazers_count":3,"forks_count":0,"language":"Python","updated_at":"2026-05-12T06:42:20Z","pushed_at":"2026-04-17T20:54:38Z","created_at":"2026-04-17T20:43:07Z","topics":[],"owner":{"login":"AnggaTechI","html_url":"https://github.com/AnggaTechI"},"clone_url":"https://github.com/AnggaTechI/Mass-Scanner-CVE-2026-1405.git","has_code":true,"age_days":68}]},{"cve_id":"CVE-2026-1424","repositories":[{"id":1177975148,"name":"CVE-2026-1424","full_name":"rsecroot/CVE-2026-1424","html_url":"https://github.com/rsecroot/CVE-2026-1424","description":"A vulnerability was identified in PHPGurukul News Portal 1.0. This affects an unknown part of the component Profile Pic Handler. The manipulation leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit is publicly available and might be used.","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-03-10T15:07:03Z","pushed_at":"2026-03-10T15:03:40Z","created_at":"2026-03-10T15:03:39Z","topics":[],"owner":{"login":"rsecroot","html_url":"https://github.com/rsecroot"},"clone_url":"https://github.com/rsecroot/CVE-2026-1424.git","has_code":false,"age_days":107}]},{"cve_id":"CVE-2026-1434","repositories":[{"id":1208065785,"name":"CVE-2026-1434","full_name":"lukasz-rybak/CVE-2026-1434","html_url":"https://github.com/lukasz-rybak/CVE-2026-1434","description":"CVE-2026-1434 - Omega-PSIR is vulnerable to Reflected XSS via the lang parameter. An attacker can craft a...","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-11T19:22:55Z","pushed_at":"2026-04-11T19:22:47Z","created_at":"2026-04-11T19:15:34Z","topics":[],"owner":{"login":"lukasz-rybak","html_url":"https://github.com/lukasz-rybak"},"clone_url":"https://github.com/lukasz-rybak/CVE-2026-1434.git","has_code":false,"age_days":75}]},{"cve_id":"CVE-2026-1457","repositories":[{"id":1146419073,"name":"CVE-2026-1457","full_name":"ii4gsp/CVE-2026-1457","html_url":"https://github.com/ii4gsp/CVE-2026-1457","description":"CVE-2026-1457 is an authenticated buffer overflow vulnerability in the web API of TP-Link VIGI C385 V1. This vulnerability allows authenticated attackers to perform remote code execution (RCE).","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-01-31T04:11:46Z","pushed_at":"2026-01-31T04:11:42Z","created_at":"2026-01-31T04:11:25Z","topics":[],"owner":{"login":"ii4gsp","html_url":"https://github.com/ii4gsp"},"clone_url":"https://github.com/ii4gsp/CVE-2026-1457.git","has_code":false,"age_days":145}]},{"cve_id":"CVE-2026-1459","repositories":[{"id":1219479827,"name":"CVE-2026-1459-POC","full_name":"Toouch67/CVE-2026-1459-POC","html_url":"https://github.com/Toouch67/CVE-2026-1459-POC","description":"POC for the CVE-2026-1459 which payload changes root SSH password.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-23T23:23:34Z","pushed_at":"2026-04-23T23:23:30Z","created_at":"2026-04-23T23:22:16Z","topics":[],"owner":{"login":"Toouch67","html_url":"https://github.com/Toouch67"},"clone_url":"https://github.com/Toouch67/CVE-2026-1459-POC.git","has_code":true,"age_days":62}]},{"cve_id":"CVE-2026-1492","repositories":[{"id":1240662998,"name":"wp-user-registration-vuln-checker","full_name":"limo57640-crypto/wp-user-registration-vuln-checker","html_url":"https://github.com/limo57640-crypto/wp-user-registration-vuln-checker","description":"Read-only WordPress User Registration CVE-2026-1492 checker for hidden admins, plugin version, uploads PHP, cron, and compromise IOCs.","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-22T13:45:47Z","pushed_at":"2026-06-22T13:45:01Z","created_at":"2026-05-16T12:12:50Z","topics":["bash","cve-2026-1492","ioc-scanner","ping7","security-tools","user-registration","wordpress","wordpress-plugin"],"owner":{"login":"limo57640-crypto","html_url":"https://github.com/limo57640-crypto"},"clone_url":"https://github.com/limo57640-crypto/wp-user-registration-vuln-checker.git","has_code":true,"age_days":40},{"id":1187520015,"name":"CVE-2026-1492","full_name":"the8frust/CVE-2026-1492","html_url":"https://github.com/the8frust/CVE-2026-1492","description":"Exploit for CVE-2026-1492 affecting the WordPress User Registration plugin, allowing unauthenticated attackers to register accounts and escalate privileges to administrator via a logic flaw in membership handling.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-20T23:09:34Z","pushed_at":"2026-03-20T23:09:30Z","created_at":"2026-03-20T20:27:18Z","topics":[],"owner":{"login":"the8frust","html_url":"https://github.com/the8frust"},"clone_url":"https://github.com/the8frust/CVE-2026-1492.git","has_code":true,"age_days":96},{"id":1175219479,"name":"CVE-2026-1492-POC","full_name":"imad-z1/CVE-2026-1492-POC","html_url":"https://github.com/imad-z1/CVE-2026-1492-POC","description":"User Registration \u0026 Membership \u003c= 5.1.2 - Unauthenticated Privilege Escalation via Membership Registration","stargazers_count":0,"forks_count":0,"language":"PHP","updated_at":"2026-03-07T12:03:41Z","pushed_at":"2026-03-07T12:03:38Z","created_at":"2026-03-07T12:01:53Z","topics":[],"owner":{"login":"imad-z1","html_url":"https://github.com/imad-z1"},"clone_url":"https://github.com/imad-z1/CVE-2026-1492-POC.git","has_code":true,"age_days":110},{"id":1214219593,"name":"CVE-2026-1492","full_name":"Nxploited/CVE-2026-1492","html_url":"https://github.com/Nxploited/CVE-2026-1492","description":"User Registration \u0026 Membership \u003c= 5.1.2 - Unauthenticated Privilege Escalation via Membership Registration","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-18T09:20:33Z","pushed_at":"2026-04-18T09:20:28Z","created_at":"2026-04-18T09:18:57Z","topics":[],"owner":{"login":"Nxploited","html_url":"https://github.com/Nxploited"},"clone_url":"https://github.com/Nxploited/CVE-2026-1492.git","has_code":true,"age_days":68}]},{"cve_id":"CVE-2026-1529","repositories":[{"id":1155119337,"name":"CVE-2026-1529","full_name":"0x240x23elu/CVE-2026-1529","html_url":"https://github.com/0x240x23elu/CVE-2026-1529","description":"Keycloak: Unauthorized organization registration via improper invitation token validation","stargazers_count":2,"forks_count":2,"language":"Python","updated_at":"2026-04-30T03:41:58Z","pushed_at":"2026-02-11T06:59:10Z","created_at":"2026-02-11T06:24:21Z","topics":[],"owner":{"login":"0x240x23elu","html_url":"https://github.com/0x240x23elu"},"clone_url":"https://github.com/0x240x23elu/CVE-2026-1529.git","has_code":true,"age_days":134},{"id":1156718921,"name":"CVE-2026-1529-PoC-keycloak-unauthorized-registration-via-improper-invitation-token-validation","full_name":"ackemed/CVE-2026-1529-PoC-keycloak-unauthorized-registration-via-improper-invitation-token-validation","html_url":"https://github.com/ackemed/CVE-2026-1529-PoC-keycloak-unauthorized-registration-via-improper-invitation-token-validation","description":"CVE-2026-1529 (PoC) is a critical vulnerability in Keycloak that allows unauthorized organization registration through improper invitation token validation. This exploit tool demonstrates the vulnerability by manipulating JWT tokens to register users in unauthorized organizations.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-02-13T01:07:15Z","pushed_at":"2026-02-10T14:35:09Z","created_at":"2026-02-13T01:07:15Z","topics":[],"owner":{"login":"ackemed","html_url":"https://github.com/ackemed"},"clone_url":"https://github.com/ackemed/CVE-2026-1529-PoC-keycloak-unauthorized-registration-via-improper-invitation-token-validation.git","has_code":false,"age_days":132},{"id":1154563956,"name":"CVE-2026-1529-PoC-keycloak-unauthorized-registration-via-improper-invitation-token-validation","full_name":"ninjazan420/CVE-2026-1529-PoC-keycloak-unauthorized-registration-via-improper-invitation-token-validation","html_url":"https://github.com/ninjazan420/CVE-2026-1529-PoC-keycloak-unauthorized-registration-via-improper-invitation-token-validation","description":"CVE-2026-1529 (PoC) is a critical vulnerability in Keycloak that allows unauthorized organization registration through improper invitation token validation. This exploit tool demonstrates the vulnerability by manipulating JWT tokens to register users in unauthorized organizations.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-25T05:35:21Z","pushed_at":"2026-02-10T14:35:09Z","created_at":"2026-02-10T14:31:22Z","topics":["concept","cve","cve-2026-1529","keycloak","keycloak-poc","of","poc","proof","proofofconcept"],"owner":{"login":"ninjazan420","html_url":"https://github.com/ninjazan420"},"clone_url":"https://github.com/ninjazan420/CVE-2026-1529-PoC-keycloak-unauthorized-registration-via-improper-invitation-token-validation.git","has_code":true,"age_days":135}]},{"cve_id":"CVE-2026-1550","repositories":[{"id":1177977706,"name":"CVE-2026-1550","full_name":"rsecroot/CVE-2026-1550","html_url":"https://github.com/rsecroot/CVE-2026-1550","description":"A security flaw has been discovered in PHPGurukul Hospital Management System 1.0. Affected by this issue is some unknown functionality of the file /hms/hospital/docappsystem/adminviews.py of the component Admin Dashboard Page.","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-03-10T15:07:05Z","pushed_at":"2026-03-10T15:06:31Z","created_at":"2026-03-10T15:06:30Z","topics":[],"owner":{"login":"rsecroot","html_url":"https://github.com/rsecroot"},"clone_url":"https://github.com/rsecroot/CVE-2026-1550.git","has_code":false,"age_days":107}]},{"cve_id":"CVE-2026-1555","repositories":[{"id":1213896724,"name":"CVE-2026-1555","full_name":"Nxploited/CVE-2026-1555","html_url":"https://github.com/Nxploited/CVE-2026-1555","description":"WebStack \u003c= 1.2024 - Unauthenticated Arbitrary File Upload","stargazers_count":8,"forks_count":0,"language":"Python","updated_at":"2026-06-23T07:54:57Z","pushed_at":"2026-04-17T22:05:09Z","created_at":"2026-04-17T22:03:58Z","topics":[],"owner":{"login":"Nxploited","html_url":"https://github.com/Nxploited"},"clone_url":"https://github.com/Nxploited/CVE-2026-1555.git","has_code":true,"age_days":68},{"id":1268401679,"name":"CVE-2026-1555-POC","full_name":"webshellseo8/CVE-2026-1555-POC","html_url":"https://github.com/webshellseo8/CVE-2026-1555-POC","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-21T09:23:55Z","pushed_at":"2026-06-21T09:23:52Z","created_at":"2026-06-13T13:43:32Z","topics":[],"owner":{"login":"webshellseo8","html_url":"https://github.com/webshellseo8"},"clone_url":"https://github.com/webshellseo8/CVE-2026-1555-POC.git","has_code":false,"age_days":12},{"id":1262801605,"name":"WG-CVE-2026-1555-Linux","full_name":"willygailo/WG-CVE-2026-1555-Linux","html_url":"https://github.com/willygailo/WG-CVE-2026-1555-Linux","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-08T10:34:23Z","pushed_at":"2026-06-08T10:34:19Z","created_at":"2026-06-08T10:34:14Z","topics":[],"owner":{"login":"willygailo","html_url":"https://github.com/willygailo"},"clone_url":"https://github.com/willygailo/WG-CVE-2026-1555-Linux.git","has_code":true,"age_days":17}]},{"cve_id":"CVE-2026-1560","repositories":[{"id":1154859399,"name":"CVE-2026-1560-Authenticated-Remote-Code-Execution-in-Lazy-Blocks-4.2.0","full_name":"Z3YR0xX/CVE-2026-1560-Authenticated-Remote-Code-Execution-in-Lazy-Blocks-4.2.0","html_url":"https://github.com/Z3YR0xX/CVE-2026-1560-Authenticated-Remote-Code-Execution-in-Lazy-Blocks-4.2.0","description":"","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-05-11T12:58:51Z","pushed_at":"2026-02-10T21:38:55Z","created_at":"2026-02-10T21:19:32Z","topics":[],"owner":{"login":"Z3YR0xX","html_url":"https://github.com/Z3YR0xX"},"clone_url":"https://github.com/Z3YR0xX/CVE-2026-1560-Authenticated-Remote-Code-Execution-in-Lazy-Blocks-4.2.0.git","has_code":true,"age_days":134}]},{"cve_id":"CVE-2026-1581","repositories":[{"id":1168528859,"name":"CVE-2026-1581-Analysis-Lab","full_name":"rootdirective-sec/CVE-2026-1581-Analysis-Lab","html_url":"https://github.com/rootdirective-sec/CVE-2026-1581-Analysis-Lab","description":"","stargazers_count":1,"forks_count":0,"language":"Shell","updated_at":"2026-05-28T14:10:52Z","pushed_at":"2026-02-27T13:59:08Z","created_at":"2026-02-27T13:52:57Z","topics":[],"owner":{"login":"rootdirective-sec","html_url":"https://github.com/rootdirective-sec"},"clone_url":"https://github.com/rootdirective-sec/CVE-2026-1581-Analysis-Lab.git","has_code":true,"age_days":118}]},{"cve_id":"CVE-2026-1657","repositories":[{"id":1194351819,"name":"-CVE-2026-1657","full_name":"VimashDilshara/-CVE-2026-1657","html_url":"https://github.com/VimashDilshara/-CVE-2026-1657","description":" CVE-2026-1657 exploit Unauthenticated Image Upload via 'ep_upload_file_media' AJAX Endpoint","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-28T08:34:52Z","pushed_at":"2026-03-28T08:34:49Z","created_at":"2026-03-28T08:30:11Z","topics":[],"owner":{"login":"VimashDilshara","html_url":"https://github.com/VimashDilshara"},"clone_url":"https://github.com/VimashDilshara/-CVE-2026-1657.git","has_code":true,"age_days":89},{"id":1206230626,"name":"CVE-2026-1657","full_name":"d3kc4rt1/CVE-2026-1657","html_url":"https://github.com/d3kc4rt1/CVE-2026-1657","description":"Unauthenticated Arbitrary File Upload in EventPrime Plugin","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-09T17:53:36Z","pushed_at":"2026-04-09T17:53:32Z","created_at":"2026-04-09T17:53:07Z","topics":[],"owner":{"login":"d3kc4rt1","html_url":"https://github.com/d3kc4rt1"},"clone_url":"https://github.com/d3kc4rt1/CVE-2026-1657.git","has_code":false,"age_days":77}]},{"cve_id":"CVE-2026-1668","repositories":[{"id":1202523948,"name":"cve-2026-1668-poc","full_name":"tangrs/cve-2026-1668-poc","html_url":"https://github.com/tangrs/cve-2026-1668-poc","description":"Proof-of-concept exploit for CVE-2026-1668.","stargazers_count":1,"forks_count":0,"language":"C","updated_at":"2026-04-22T18:57:48Z","pushed_at":"2026-04-06T05:48:10Z","created_at":"2026-04-06T05:36:54Z","topics":[],"owner":{"login":"tangrs","html_url":"https://github.com/tangrs"},"clone_url":"https://github.com/tangrs/cve-2026-1668-poc.git","has_code":true,"age_days":80}]},{"cve_id":"CVE-2026-1689","repositories":[{"id":1196547019,"name":"tenda-hg10-rce","full_name":"e76f01z/tenda-hg10-rce","html_url":"https://github.com/e76f01z/tenda-hg10-rce","description":"CVE-2026-1689 Unauthenticated RCE for the Tenda HG10","stargazers_count":0,"forks_count":0,"language":"Go","updated_at":"2026-06-05T23:17:09Z","pushed_at":"2026-03-30T20:08:28Z","created_at":"2026-03-30T20:01:30Z","topics":[],"owner":{"login":"e76f01z","html_url":"https://github.com/e76f01z"},"clone_url":"https://github.com/e76f01z/tenda-hg10-rce.git","has_code":true,"age_days":87}]},{"cve_id":"CVE-2026-1729","repositories":[{"id":1156248769,"name":"CVE-2026-1729-PoC-AdForest-WordPress-Authentication-Bypass","full_name":"ninjazan420/CVE-2026-1729-PoC-AdForest-WordPress-Authentication-Bypass","html_url":"https://github.com/ninjazan420/CVE-2026-1729-PoC-AdForest-WordPress-Authentication-Bypass","description":"The AdForest theme for WordPress is vulnerable to authentication bypass in all versions including, 6.0.12. This is due to the plugin not properly verifying a user's identity prior to authenticating them through the 'sb_login_user_with_otp_fun' function. This makes it possible for unauthenticated attackers to log in, including admin","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-25T05:35:11Z","pushed_at":"2026-02-12T12:43:07Z","created_at":"2026-02-12T12:40:22Z","topics":["adforest","admin","auth","exploit","poc","proof-of-concept","wordpress"],"owner":{"login":"ninjazan420","html_url":"https://github.com/ninjazan420"},"clone_url":"https://github.com/ninjazan420/CVE-2026-1729-PoC-AdForest-WordPress-Authentication-Bypass.git","has_code":true,"age_days":133}]},{"cve_id":"CVE-2026-1731","repositories":[{"id":1155228248,"name":"CVE-2026-1731","full_name":"win3zz/CVE-2026-1731","html_url":"https://github.com/win3zz/CVE-2026-1731","description":"CVE-2026-1731 - Critical command injection vulnerability in BeyondTrust Remote Support and Privileged Remote Access due to unsafe Bash arithmetic evaluation in a WebSocket-reachable script","stargazers_count":35,"forks_count":9,"language":"Python","updated_at":"2026-06-09T13:02:32Z","pushed_at":"2026-02-11T12:46:15Z","created_at":"2026-02-11T09:18:33Z","topics":["beyondtrust","cve-2026-1731","remote-access","vulnerability-detection"],"owner":{"login":"win3zz","html_url":"https://github.com/win3zz"},"clone_url":"https://github.com/win3zz/CVE-2026-1731.git","has_code":true,"age_days":134},{"id":1160593788,"name":"CVE-2026-1731","full_name":"jakubie07/CVE-2026-1731","html_url":"https://github.com/jakubie07/CVE-2026-1731","description":"CVE-2026-1731 PoC","stargazers_count":6,"forks_count":0,"language":"Rust","updated_at":"2026-06-25T01:51:12Z","pushed_at":"2026-05-02T19:52:04Z","created_at":"2026-02-18T06:05:46Z","topics":["beyondtrust","cve-2026","cve-2026-1731","poc","rce"],"owner":{"login":"jakubie07","html_url":"https://github.com/jakubie07"},"clone_url":"https://github.com/jakubie07/CVE-2026-1731.git","has_code":true,"age_days":127},{"id":1157417567,"name":"cve-2026-1731-scanner","full_name":"cybrdude/cve-2026-1731-scanner","html_url":"https://github.com/cybrdude/cve-2026-1731-scanner","description":"Passive vulnerability scanner for CVE-2026-1731 — BeyondTrust RS/PRA pre-auth RCE (CVSS 9.9). Educational \u0026 defensive use only.","stargazers_count":4,"forks_count":0,"language":"Python","updated_at":"2026-02-19T23:55:38Z","pushed_at":"2026-02-16T23:54:19Z","created_at":"2026-02-13T19:48:13Z","topics":["beyondtrust","cve-2026-1731","infosec","passive-scanner","privileged-remote-access","security-tools","vulnerability-scanner"],"owner":{"login":"cybrdude","html_url":"https://github.com/cybrdude"},"clone_url":"https://github.com/cybrdude/cve-2026-1731-scanner.git","has_code":true,"age_days":132},{"id":1163886939,"name":"CVE-2026-1731","full_name":"hexissam/CVE-2026-1731","html_url":"https://github.com/hexissam/CVE-2026-1731","description":"CVE-2026-1731 — BeyondTrust Remote Code Execution Vulnerability","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-02-22T10:10:25Z","pushed_at":"2026-02-22T10:10:22Z","created_at":"2026-02-22T10:05:02Z","topics":[],"owner":{"login":"hexissam","html_url":"https://github.com/hexissam"},"clone_url":"https://github.com/hexissam/CVE-2026-1731.git","has_code":true,"age_days":123}]},{"cve_id":"CVE-2026-1814","repositories":[{"id":1238990376,"name":"CVE-2026-1814","full_name":"pbrass/CVE-2026-1814","html_url":"https://github.com/pbrass/CVE-2026-1814","description":"Exploit for CVE-2026-1814","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-22T13:27:40Z","pushed_at":"2026-05-14T16:48:50Z","created_at":"2026-05-14T16:46:37Z","topics":[],"owner":{"login":"pbrass","html_url":"https://github.com/pbrass"},"clone_url":"https://github.com/pbrass/CVE-2026-1814.git","has_code":true,"age_days":42}]},{"cve_id":"CVE-2026-1844","repositories":[{"id":1158636119,"name":"CVE-2026-1844","full_name":"adamshaikhma/CVE-2026-1844","html_url":"https://github.com/adamshaikhma/CVE-2026-1844","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-02-19T10:49:07Z","pushed_at":"2026-02-15T18:06:10Z","created_at":"2026-02-15T17:34:40Z","topics":[],"owner":{"login":"adamshaikhma","html_url":"https://github.com/adamshaikhma"},"clone_url":"https://github.com/adamshaikhma/CVE-2026-1844.git","has_code":false,"age_days":130}]},{"cve_id":"CVE-2026-1880","repositories":[{"id":1212395845,"name":"CVE-2026-1880","full_name":"seokjohn/CVE-2026-1880","html_url":"https://github.com/seokjohn/CVE-2026-1880","description":"ASUS DriverHub Driver Update Process TOCTOU Vulnerability Leading to LPE","stargazers_count":3,"forks_count":0,"language":"C++","updated_at":"2026-05-01T21:19:59Z","pushed_at":"2026-04-16T11:53:46Z","created_at":"2026-04-16T10:37:12Z","topics":[],"owner":{"login":"seokjohn","html_url":"https://github.com/seokjohn"},"clone_url":"https://github.com/seokjohn/CVE-2026-1880.git","has_code":true,"age_days":70}]},{"cve_id":"CVE-2026-1937","repositories":[{"id":1214223462,"name":"CVE-2026-1937","full_name":"Nxploited/CVE-2026-1937","html_url":"https://github.com/Nxploited/CVE-2026-1937","description":"YayMail \u003c= 4.3.2 - Missing Authorization to Authenticated (Shop Manager+) Arbitrary Options Update via 'yaymail_import_state' AJAX Action","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-18T09:32:18Z","pushed_at":"2026-04-18T09:32:14Z","created_at":"2026-04-18T09:25:31Z","topics":[],"owner":{"login":"Nxploited","html_url":"https://github.com/Nxploited"},"clone_url":"https://github.com/Nxploited/CVE-2026-1937.git","has_code":false,"age_days":68}]},{"cve_id":"CVE-2026-1953","repositories":[{"id":1150325410,"name":"CVE-2026-1953","full_name":"dewaguard-red-team/CVE-2026-1953","html_url":"https://github.com/dewaguard-red-team/CVE-2026-1953","description":"Stored cross-site scripting (XSS) vulnerability in the edit profile feature at Nukegraphic CMS V3.1.2","stargazers_count":2,"forks_count":0,"language":"","updated_at":"2026-05-21T03:03:08Z","pushed_at":"2026-02-05T11:57:16Z","created_at":"2026-02-05T06:25:43Z","topics":[],"owner":{"login":"dewaguard-red-team","html_url":"https://github.com/dewaguard-red-team"},"clone_url":"https://github.com/dewaguard-red-team/CVE-2026-1953.git","has_code":false,"age_days":140}]},{"cve_id":"CVE-2026-1999","repositories":[{"id":1182620364,"name":"automerge-test","full_name":"jwde/automerge-test","html_url":"https://github.com/jwde/automerge-test","description":"Testing auto-merge CVE-2026-1999 variant","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-15T21:15:56Z","pushed_at":"2026-03-15T21:15:53Z","created_at":"2026-03-15T18:59:19Z","topics":[],"owner":{"login":"jwde","html_url":"https://github.com/jwde"},"clone_url":"https://github.com/jwde/automerge-test.git","has_code":false,"age_days":102}]},{"cve_id":"CVE-2026-2002","repositories":[{"id":1276951344,"name":"CVE-2026-2002-poc","full_name":"typedefabcd1234ntd/CVE-2026-2002-poc","html_url":"https://github.com/typedefabcd1234ntd/CVE-2026-2002-poc","description":"CVE-2026-2002 writeup and Proof-of-concept","stargazers_count":11,"forks_count":0,"language":"","updated_at":"2026-06-24T14:50:16Z","pushed_at":"2026-06-24T12:21:37Z","created_at":"2026-06-22T12:52:04Z","topics":["cve-2026-2002","forminator","poc","xss-vulnerability"],"owner":{"login":"typedefabcd1234ntd","html_url":"https://github.com/typedefabcd1234ntd"},"clone_url":"https://github.com/typedefabcd1234ntd/CVE-2026-2002-poc.git","has_code":false,"age_days":3}]},{"cve_id":"CVE-2026-20045","repositories":[{"id":1141525190,"name":"Ashwesker-CVE-2026-20045","full_name":"dkstar11q/Ashwesker-CVE-2026-20045","html_url":"https://github.com/dkstar11q/Ashwesker-CVE-2026-20045","description":"CVE-2026-20045","stargazers_count":6,"forks_count":3,"language":"","updated_at":"2026-06-06T21:54:31Z","pushed_at":"2026-01-22T13:01:22Z","created_at":"2026-01-25T01:01:31Z","topics":[],"owner":{"login":"dkstar11q","html_url":"https://github.com/dkstar11q"},"clone_url":"https://github.com/dkstar11q/Ashwesker-CVE-2026-20045.git","has_code":false,"age_days":151}]},{"cve_id":"CVE-2026-2005","repositories":[{"id":1237868780,"name":"CVE-2026-2005","full_name":"var77/CVE-2026-2005","html_url":"https://github.com/var77/CVE-2026-2005","description":"PoC for CVE-2026-2005","stargazers_count":24,"forks_count":5,"language":"Python","updated_at":"2026-06-05T09:04:55Z","pushed_at":"2026-05-13T15:31:10Z","created_at":"2026-05-13T15:29:43Z","topics":[],"owner":{"login":"var77","html_url":"https://github.com/var77"},"clone_url":"https://github.com/var77/CVE-2026-2005.git","has_code":true,"age_days":43},{"id":1229094264,"name":"CVE-2026-2005_lab","full_name":"stvm8/CVE-2026-2005_lab","html_url":"https://github.com/stvm8/CVE-2026-2005_lab","description":"","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-04T17:40:51Z","pushed_at":"2026-05-04T17:40:46Z","created_at":"2026-05-04T17:37:03Z","topics":[],"owner":{"login":"stvm8","html_url":"https://github.com/stvm8"},"clone_url":"https://github.com/stvm8/CVE-2026-2005_lab.git","has_code":true,"age_days":52}]},{"cve_id":"CVE-2026-20079","repositories":[{"id":1194511254,"name":"CVE-2026-20079","full_name":"0xBlackash/CVE-2026-20079","html_url":"https://github.com/0xBlackash/CVE-2026-20079","description":"CVE-2026-20079","stargazers_count":0,"forks_count":2,"language":"Python","updated_at":"2026-03-28T13:39:29Z","pushed_at":"2026-03-28T13:39:26Z","created_at":"2026-03-28T13:08:16Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-20079.git","has_code":true,"age_days":89}]},{"cve_id":"CVE-2026-20127","repositories":[{"id":1172134172,"name":"CVE-2026-20127---Cisco-SD-WAN-Preauth-RCE","full_name":"zerozenxlabs/CVE-2026-20127---Cisco-SD-WAN-Preauth-RCE","html_url":"https://github.com/zerozenxlabs/CVE-2026-20127---Cisco-SD-WAN-Preauth-RCE","description":"","stargazers_count":31,"forks_count":10,"language":"Python","updated_at":"2026-05-18T02:44:07Z","pushed_at":"2026-03-04T01:36:00Z","created_at":"2026-03-04T01:20:17Z","topics":[],"owner":{"login":"zerozenxlabs","html_url":"https://github.com/zerozenxlabs"},"clone_url":"https://github.com/zerozenxlabs/CVE-2026-20127---Cisco-SD-WAN-Preauth-RCE.git","has_code":true,"age_days":113},{"id":1176945391,"name":"CVE-2026-20127","full_name":"sfewer-r7/CVE-2026-20127","html_url":"https://github.com/sfewer-r7/CVE-2026-20127","description":"An exploit for the Cisco Catalyst SD-WAN Controller authentication bypass vulnerability, CVE-2026-20127","stargazers_count":24,"forks_count":3,"language":"Ruby","updated_at":"2026-06-16T17:07:22Z","pushed_at":"2026-03-09T15:17:31Z","created_at":"2026-03-09T14:38:24Z","topics":[],"owner":{"login":"sfewer-r7","html_url":"https://github.com/sfewer-r7"},"clone_url":"https://github.com/sfewer-r7/CVE-2026-20127.git","has_code":true,"age_days":108},{"id":1173633761,"name":"CVE-2026-20127_EXP","full_name":"BugFor-Pings/CVE-2026-20127_EXP","html_url":"https://github.com/BugFor-Pings/CVE-2026-20127_EXP","description":"Cisco Catalyst SD-WAN 身份验证绕过漏洞(CVE-2026-20127)利用EXP","stargazers_count":4,"forks_count":2,"language":"Python","updated_at":"2026-03-31T13:50:52Z","pushed_at":"2026-03-05T15:36:00Z","created_at":"2026-03-05T15:28:31Z","topics":[],"owner":{"login":"BugFor-Pings","html_url":"https://github.com/BugFor-Pings"},"clone_url":"https://github.com/BugFor-Pings/CVE-2026-20127_EXP.git","has_code":true,"age_days":112},{"id":1175143169,"name":"CVE-2026-20127-Cisco-SD-WAN-Preauth-RCE","full_name":"yonathanpy/CVE-2026-20127-Cisco-SD-WAN-Preauth-RCE","html_url":"https://github.com/yonathanpy/CVE-2026-20127-Cisco-SD-WAN-Preauth-RCE","description":"","stargazers_count":2,"forks_count":1,"language":"Python","updated_at":"2026-03-19T16:14:54Z","pushed_at":"2026-03-07T09:49:31Z","created_at":"2026-03-07T09:39:29Z","topics":[],"owner":{"login":"yonathanpy","html_url":"https://github.com/yonathanpy"},"clone_url":"https://github.com/yonathanpy/CVE-2026-20127-Cisco-SD-WAN-Preauth-RCE.git","has_code":true,"age_days":110},{"id":1211684149,"name":"cve-2026-20127","full_name":"gigachadusers/cve-2026-20127","html_url":"https://github.com/gigachadusers/cve-2026-20127","description":"","stargazers_count":2,"forks_count":0,"language":"C++","updated_at":"2026-05-31T19:28:07Z","pushed_at":"2026-04-15T16:40:49Z","created_at":"2026-04-15T16:35:46Z","topics":[],"owner":{"login":"gigachadusers","html_url":"https://github.com/gigachadusers"},"clone_url":"https://github.com/gigachadusers/cve-2026-20127.git","has_code":true,"age_days":71},{"id":1175850534,"name":"sdwan-scanner-CVE-2026-20127","full_name":"abrahamsurf/sdwan-scanner-CVE-2026-20127","html_url":"https://github.com/abrahamsurf/sdwan-scanner-CVE-2026-20127","description":"Cisco SD-WAN Exposure \u0026 Potential Vulnerability Scanner (Passive Fingerprinting) 2026","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-08T09:24:09Z","pushed_at":"2026-03-08T09:21:05Z","created_at":"2026-03-08T09:04:34Z","topics":[],"owner":{"login":"abrahamsurf","html_url":"https://github.com/abrahamsurf"},"clone_url":"https://github.com/abrahamsurf/sdwan-scanner-CVE-2026-20127.git","has_code":true,"age_days":109},{"id":1172198312,"name":"CVE-2026-20127","full_name":"randeepajayasekara/CVE-2026-20127","html_url":"https://github.com/randeepajayasekara/CVE-2026-20127","description":"Walkthrough of the CVSS 10.0 authentication bypass in Cisco Catalyst SD-WAN from first malformed peering request to root on the management plane.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-12T06:34:04Z","pushed_at":"2026-03-04T05:19:18Z","created_at":"2026-03-04T03:25:57Z","topics":["authentication-bypass","cve","vulnerability"],"owner":{"login":"randeepajayasekara","html_url":"https://github.com/randeepajayasekara"},"clone_url":"https://github.com/randeepajayasekara/CVE-2026-20127.git","has_code":false,"age_days":113},{"id":1269232733,"name":"CVE-2026-20127","full_name":"0xBlackash/CVE-2026-20127","html_url":"https://github.com/0xBlackash/CVE-2026-20127","description":"CVE-2026-20127","stargazers_count":0,"forks_count":0,"language":"C++","updated_at":"2026-06-14T13:35:35Z","pushed_at":"2026-06-14T13:35:31Z","created_at":"2026-06-14T13:15:00Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-20127.git","has_code":true,"age_days":11}]},{"cve_id":"CVE-2026-20131","repositories":[{"id":1178394917,"name":"CVE-2026-20131","full_name":"sak110/CVE-2026-20131","html_url":"https://github.com/sak110/CVE-2026-20131","description":"","stargazers_count":3,"forks_count":3,"language":"Python","updated_at":"2026-04-28T18:14:25Z","pushed_at":"2026-03-11T02:17:15Z","created_at":"2026-03-11T01:30:51Z","topics":[],"owner":{"login":"sak110","html_url":"https://github.com/sak110"},"clone_url":"https://github.com/sak110/CVE-2026-20131.git","has_code":true,"age_days":106},{"id":1203445056,"name":"Cisco-FMC-honeypot","full_name":"Hassan-Pouladi/Cisco-FMC-honeypot","html_url":"https://github.com/Hassan-Pouladi/Cisco-FMC-honeypot","description":"Originally a Honeypot for CVE-2026-20131","stargazers_count":1,"forks_count":1,"language":"Python","updated_at":"2026-04-29T15:37:30Z","pushed_at":"2026-04-07T06:11:14Z","created_at":"2026-04-07T03:35:37Z","topics":["cve","honeypot","poc","threat-hunting","threat-intelligence"],"owner":{"login":"Hassan-Pouladi","html_url":"https://github.com/Hassan-Pouladi"},"clone_url":"https://github.com/Hassan-Pouladi/Cisco-FMC-honeypot.git","has_code":true,"age_days":79},{"id":1174197428,"name":"CVE-2026-20131-POC","full_name":"p3Nt3st3r-sTAr/CVE-2026-20131-POC","html_url":"https://github.com/p3Nt3st3r-sTAr/CVE-2026-20131-POC","description":"","stargazers_count":0,"forks_count":3,"language":"Python","updated_at":"2026-03-18T00:51:59Z","pushed_at":"2026-03-18T00:51:56Z","created_at":"2026-03-06T07:06:56Z","topics":[],"owner":{"login":"p3Nt3st3r-sTAr","html_url":"https://github.com/p3Nt3st3r-sTAr"},"clone_url":"https://github.com/p3Nt3st3r-sTAr/CVE-2026-20131-POC.git","has_code":true,"age_days":111},{"id":1234682220,"name":"CVE-2026-20131","full_name":"0xBlackash/CVE-2026-20131","html_url":"https://github.com/0xBlackash/CVE-2026-20131","description":"CVE-2026-20131","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-10T14:19:31Z","pushed_at":"2026-05-10T14:19:26Z","created_at":"2026-05-10T14:02:19Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-20131.git","has_code":true,"age_days":46}]},{"cve_id":"CVE-2026-20180","repositories":[{"id":1217134177,"name":"CVE-2026-20180","full_name":"kaleth4/CVE-2026-20180","html_url":"https://github.com/kaleth4/CVE-2026-20180","description":"","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-04-22T03:45:40Z","pushed_at":"2026-04-21T15:27:18Z","created_at":"2026-04-21T15:21:56Z","topics":[],"owner":{"login":"kaleth4","html_url":"https://github.com/kaleth4"},"clone_url":"https://github.com/kaleth4/CVE-2026-20180.git","has_code":false,"age_days":65}]},{"cve_id":"CVE-2026-20182","repositories":[{"id":1247055879,"name":"CVE-2026-20182","full_name":"portbuster1337/CVE-2026-20182","html_url":"https://github.com/portbuster1337/CVE-2026-20182","description":"CVE-2026-20182 PoC - Cisco Catalyst SD-WAN Controller / Manager Authentication Bypass (CVSS 10.0)","stargazers_count":3,"forks_count":0,"language":"Python","updated_at":"2026-06-11T08:09:08Z","pushed_at":"2026-05-22T21:17:22Z","created_at":"2026-05-22T21:17:01Z","topics":["authentication-bypass","cisco","cisco-sd-wan","cve","cve-2026-20182","exploit","penetration-testing","poc","red-team","security","vmanage","vsmart"],"owner":{"login":"portbuster1337","html_url":"https://github.com/portbuster1337"},"clone_url":"https://github.com/portbuster1337/CVE-2026-20182.git","has_code":true,"age_days":33},{"id":1250527814,"name":"CVE-2026-20182","full_name":"Nxploited/CVE-2026-20182","html_url":"https://github.com/Nxploited/CVE-2026-20182","description":"Cisco Catalyst SD-WAN Peering Authentication Bypass","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-28T07:23:50Z","pushed_at":"2026-05-26T18:32:49Z","created_at":"2026-05-26T18:10:08Z","topics":[],"owner":{"login":"Nxploited","html_url":"https://github.com/Nxploited"},"clone_url":"https://github.com/Nxploited/CVE-2026-20182.git","has_code":true,"age_days":30},{"id":1248039870,"name":"CVE-2026-20182","full_name":"HORKimhab/CVE-2026-20182","html_url":"https://github.com/HORKimhab/CVE-2026-20182","description":"CVE-2026-20182","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-24T06:46:05Z","pushed_at":"2026-05-24T06:46:02Z","created_at":"2026-05-24T05:28:26Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-20182.git","has_code":true,"age_days":32}]},{"cve_id":"CVE-2026-20223","repositories":[{"id":1246365297,"name":"CVE-2026-20223","full_name":"HORKimhab/CVE-2026-20223","html_url":"https://github.com/HORKimhab/CVE-2026-20223","description":"CVE-2026-20223","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-22T06:11:15Z","pushed_at":"2026-05-22T06:11:11Z","created_at":"2026-05-22T06:04:30Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-20223.git","has_code":true,"age_days":34}]},{"cve_id":"CVE-2026-20224","repositories":[{"id":1239947780,"name":"CVE-2026-20224---XXE-Injection-en-Cisco-Catalyst-SD-WAN-Manager","full_name":"fevar54/CVE-2026-20224---XXE-Injection-en-Cisco-Catalyst-SD-WAN-Manager","html_url":"https://github.com/fevar54/CVE-2026-20224---XXE-Injection-en-Cisco-Catalyst-SD-WAN-Manager","description":"permite a un atacante remoto no autenticado leer archivos arbitrarios del sistema afectado mediante una inyección de XML External Entity (XXE) ","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-15T16:09:57Z","pushed_at":"2026-05-15T16:09:53Z","created_at":"2026-05-15T15:56:37Z","topics":[],"owner":{"login":"fevar54","html_url":"https://github.com/fevar54"},"clone_url":"https://github.com/fevar54/CVE-2026-20224---XXE-Injection-en-Cisco-Catalyst-SD-WAN-Manager.git","has_code":true,"age_days":41}]},{"cve_id":"CVE-2026-20230","repositories":[{"id":1259902616,"name":"CVE-2026-20230","full_name":"HORKimhab/CVE-2026-20230","html_url":"https://github.com/HORKimhab/CVE-2026-20230","description":"CVE-2026-20230 - Cisco Unified CM","stargazers_count":1,"forks_count":1,"language":"Python","updated_at":"2026-06-25T12:50:50Z","pushed_at":"2026-06-24T07:01:36Z","created_at":"2026-06-05T01:17:53Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-20230.git","has_code":true,"age_days":20},{"id":1280139131,"name":"Cisco-Unified-Communications-Manager-Server-Side-Forgery-Request-Vulnerability-CVE-2026-20230","full_name":"W5M1n9/Cisco-Unified-Communications-Manager-Server-Side-Forgery-Request-Vulnerability-CVE-2026-20230","html_url":"https://github.com/W5M1n9/Cisco-Unified-Communications-Manager-Server-Side-Forgery-Request-Vulnerability-CVE-2026-20230","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-25T10:02:01Z","pushed_at":"2026-06-25T09:58:59Z","created_at":"2026-06-25T09:56:26Z","topics":[],"owner":{"login":"W5M1n9","html_url":"https://github.com/W5M1n9"},"clone_url":"https://github.com/W5M1n9/Cisco-Unified-Communications-Manager-Server-Side-Forgery-Request-Vulnerability-CVE-2026-20230.git","has_code":true,"age_days":0},{"id":1267712324,"name":"CVE-2026-20230-Scanner","full_name":"HalilDeniz/CVE-2026-20230-Scanner","html_url":"https://github.com/HalilDeniz/CVE-2026-20230-Scanner","description":"Cisco Unified Communications Manager (Unified CM) deployments affected by CVE-2026-20230.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-13T19:20:54Z","pushed_at":"2026-06-13T19:14:51Z","created_at":"2026-06-12T19:47:29Z","topics":[],"owner":{"login":"HalilDeniz","html_url":"https://github.com/HalilDeniz"},"clone_url":"https://github.com/HalilDeniz/CVE-2026-20230-Scanner.git","has_code":true,"age_days":13}]},{"cve_id":"CVE-2026-20245","repositories":[{"id":1269116295,"name":"CVE-2026-20245","full_name":"0xBlackash/CVE-2026-20245","html_url":"https://github.com/0xBlackash/CVE-2026-20245","description":"CVE-2026-20245","stargazers_count":4,"forks_count":1,"language":"Python","updated_at":"2026-06-16T03:00:02Z","pushed_at":"2026-06-14T10:31:12Z","created_at":"2026-06-14T10:23:36Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-20245.git","has_code":true,"age_days":11},{"id":1265244916,"name":"CVE-2026-20245---Cisco-SD-WAN-Privilege-Escalation-Exploit","full_name":"fevar54/CVE-2026-20245---Cisco-SD-WAN-Privilege-Escalation-Exploit","html_url":"https://github.com/fevar54/CVE-2026-20245---Cisco-SD-WAN-Privilege-Escalation-Exploit","description":"**Este código es SOLO para fines educativos y pruebas de seguridad autorizadas.**","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-10T15:52:38Z","pushed_at":"2026-06-10T15:46:48Z","created_at":"2026-06-10T15:42:52Z","topics":[],"owner":{"login":"fevar54","html_url":"https://github.com/fevar54"},"clone_url":"https://github.com/fevar54/CVE-2026-20245---Cisco-SD-WAN-Privilege-Escalation-Exploit.git","has_code":true,"age_days":15},{"id":1260960901,"name":"CVE-2026-20245","full_name":"HORKimhab/CVE-2026-20245","html_url":"https://github.com/HORKimhab/CVE-2026-20245","description":"CVE-2026-20245 - Cisco SD-WAN - Draft","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-06T04:26:22Z","pushed_at":"2026-06-06T04:26:19Z","created_at":"2026-06-06T04:26:16Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-20245.git","has_code":false,"age_days":19}]},{"cve_id":"CVE-2026-20253","repositories":[{"id":1267195121,"name":"watchTowr-vs-Splunk-CVE-2026-20253","full_name":"watchtowrlabs/watchTowr-vs-Splunk-CVE-2026-20253","html_url":"https://github.com/watchtowrlabs/watchTowr-vs-Splunk-CVE-2026-20253","description":"","stargazers_count":11,"forks_count":2,"language":"Python","updated_at":"2026-06-22T06:07:44Z","pushed_at":"2026-06-12T10:04:57Z","created_at":"2026-06-12T10:04:32Z","topics":[],"owner":{"login":"watchtowrlabs","html_url":"https://github.com/watchtowrlabs"},"clone_url":"https://github.com/watchtowrlabs/watchTowr-vs-Splunk-CVE-2026-20253.git","has_code":true,"age_days":13},{"id":1268598356,"name":"CVE-2026-20253","full_name":"0xBlackash/CVE-2026-20253","html_url":"https://github.com/0xBlackash/CVE-2026-20253","description":"CVE-2026-20253","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-06-20T19:04:27Z","pushed_at":"2026-06-13T18:20:45Z","created_at":"2026-06-13T18:09:32Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-20253.git","has_code":true,"age_days":12},{"id":1268900799,"name":"CVE-2026-20253","full_name":"HORKimhab/CVE-2026-20253","html_url":"https://github.com/HORKimhab/CVE-2026-20253","description":"CVE-2026-20253 - Splunk Enterprise","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-14T15:15:23Z","pushed_at":"2026-06-14T15:05:34Z","created_at":"2026-06-14T04:18:18Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-20253.git","has_code":true,"age_days":11}]},{"cve_id":"CVE-2026-20262","repositories":[{"id":1272474868,"name":"CVE-2026-20262-Cisco-Catalyst-SD-WAN-Manager-Arbitrary-File-Write-","full_name":"fevar54/CVE-2026-20262-Cisco-Catalyst-SD-WAN-Manager-Arbitrary-File-Write-","html_url":"https://github.com/fevar54/CVE-2026-20262-Cisco-Catalyst-SD-WAN-Manager-Arbitrary-File-Write-","description":"CVE-2026-20262 - Cisco Catalyst SD-WAN Manager Arbitrary File Write Path Traversal Vulnerability (CWE-22) - Authenticated Remote File Write","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-18T02:33:08Z","pushed_at":"2026-06-17T16:40:13Z","created_at":"2026-06-17T16:36:33Z","topics":[],"owner":{"login":"fevar54","html_url":"https://github.com/fevar54"},"clone_url":"https://github.com/fevar54/CVE-2026-20262-Cisco-Catalyst-SD-WAN-Manager-Arbitrary-File-Write-.git","has_code":true,"age_days":8},{"id":1270890000,"name":"CVE-2026-20262","full_name":"HORKimhab/CVE-2026-20262","html_url":"https://github.com/HORKimhab/CVE-2026-20262","description":"CVE-2026-20262 - Draft","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-16T06:24:58Z","pushed_at":"2026-06-16T06:24:14Z","created_at":"2026-06-16T06:24:11Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-20262.git","has_code":false,"age_days":9}]},{"cve_id":"CVE-2026-20404","repositories":[{"id":1154018176,"name":"CVE-2026-20404-MediaTek-modem-remote-DoS-rogue-base-station-scenario-","full_name":"George0Papasotiriou/CVE-2026-20404-MediaTek-modem-remote-DoS-rogue-base-station-scenario-","html_url":"https://github.com/George0Papasotiriou/CVE-2026-20404-MediaTek-modem-remote-DoS-rogue-base-station-scenario-","description":"A MediaTek modem input validation issue can cause a system crash (remote DoS) when a UE connects to a rogue base station controlled by an attacker with no user interaction required.","stargazers_count":1,"forks_count":0,"language":"Shell","updated_at":"2026-02-10T00:13:50Z","pushed_at":"2026-02-10T00:13:47Z","created_at":"2026-02-09T23:32:38Z","topics":[],"owner":{"login":"George0Papasotiriou","html_url":"https://github.com/George0Papasotiriou"},"clone_url":"https://github.com/George0Papasotiriou/CVE-2026-20404-MediaTek-modem-remote-DoS-rogue-base-station-scenario-.git","has_code":true,"age_days":135}]},{"cve_id":"CVE-2026-20452","repositories":[{"id":1261059973,"name":"mediatek-wlan-heap-overflow-cve-2026-20452-filogic-router-rce","full_name":"Hunt-Benito/mediatek-wlan-heap-overflow-cve-2026-20452-filogic-router-rce","html_url":"https://github.com/Hunt-Benito/mediatek-wlan-heap-overflow-cve-2026-20452-filogic-router-rce","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-23T05:33:56Z","pushed_at":"2026-06-21T07:20:10Z","created_at":"2026-06-06T07:25:49Z","topics":[],"owner":{"login":"Hunt-Benito","html_url":"https://github.com/Hunt-Benito"},"clone_url":"https://github.com/Hunt-Benito/mediatek-wlan-heap-overflow-cve-2026-20452-filogic-router-rce.git","has_code":true,"age_days":19}]},{"cve_id":"CVE-2026-2058","repositories":[{"id":1179427088,"name":"CVE-2026-2058-PoC","full_name":"carlosalbertotuma/CVE-2026-2058-PoC","html_url":"https://github.com/carlosalbertotuma/CVE-2026-2058-PoC","description":"","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-03-12T14:01:32Z","pushed_at":"2026-03-12T14:01:25Z","created_at":"2026-03-12T02:38:59Z","topics":[],"owner":{"login":"carlosalbertotuma","html_url":"https://github.com/carlosalbertotuma"},"clone_url":"https://github.com/carlosalbertotuma/CVE-2026-2058-PoC.git","has_code":true,"age_days":105}]},{"cve_id":"CVE-2026-20637","repositories":[{"id":1133350075,"name":"CVE-2026-20637-AppleSEPKeyStore-UAF","full_name":"zeroxjf/CVE-2026-20637-AppleSEPKeyStore-UAF","html_url":"https://github.com/zeroxjf/CVE-2026-20637-AppleSEPKeyStore-UAF","description":"CVE-2026-20637: AppleSEPKeyStore Use-After-Free — iOS/macOS kernel vulnerability (patched in 26.4)","stargazers_count":54,"forks_count":7,"language":"Objective-C","updated_at":"2026-06-09T07:15:39Z","pushed_at":"2026-04-06T20:26:26Z","created_at":"2026-01-13T08:21:42Z","topics":["cve-2026-20637","ios","kernel","macos","security-research","use-after-free"],"owner":{"login":"zeroxjf","html_url":"https://github.com/zeroxjf"},"clone_url":"https://github.com/zeroxjf/CVE-2026-20637-AppleSEPKeyStore-UAF.git","has_code":true,"age_days":163},{"id":1218257970,"name":"CVE-2026-20637-AppleSEPKeyStore-UAF","full_name":"enfilade-labs/CVE-2026-20637-AppleSEPKeyStore-UAF","html_url":"https://github.com/enfilade-labs/CVE-2026-20637-AppleSEPKeyStore-UAF","description":"CVE-2026-20637: AppleSEPKeyStore Use-After-Free — iOS/macOS kernel vulnerability (patched in 26.4)","stargazers_count":1,"forks_count":0,"language":"Objective-C","updated_at":"2026-06-21T19:55:20Z","pushed_at":"2026-04-22T17:47:45Z","created_at":"2026-04-22T17:36:14Z","topics":[],"owner":{"login":"enfilade-labs","html_url":"https://github.com/enfilade-labs"},"clone_url":"https://github.com/enfilade-labs/CVE-2026-20637-AppleSEPKeyStore-UAF.git","has_code":true,"age_days":64}]},{"cve_id":"CVE-2026-20643","repositories":[{"id":1184679169,"name":"WebKit-NavigationAPI-SOP-Bypass","full_name":"zeroxjf/WebKit-NavigationAPI-SOP-Bypass","html_url":"https://github.com/zeroxjf/WebKit-NavigationAPI-SOP-Bypass","description":"WebKit NavigateEvent.canIntercept SOP bypass via cross-port interception — iOS 26.3.1 BSI (CVE-2026-20643)","stargazers_count":18,"forks_count":5,"language":"HTML","updated_at":"2026-06-07T11:43:26Z","pushed_at":"2026-03-17T22:32:54Z","created_at":"2026-03-17T20:32:03Z","topics":[],"owner":{"login":"zeroxjf","html_url":"https://github.com/zeroxjf"},"clone_url":"https://github.com/zeroxjf/WebKit-NavigationAPI-SOP-Bypass.git","has_code":true,"age_days":99},{"id":1186931045,"name":"CVE-2026-20643","full_name":"Fliv/CVE-2026-20643","html_url":"https://github.com/Fliv/CVE-2026-20643","description":"CVE-2026-20643 test page","stargazers_count":1,"forks_count":1,"language":"JavaScript","updated_at":"2026-03-25T15:37:25Z","pushed_at":"2026-03-20T07:42:18Z","created_at":"2026-03-20T06:29:30Z","topics":[],"owner":{"login":"Fliv","html_url":"https://github.com/Fliv"},"clone_url":"https://github.com/Fliv/CVE-2026-20643.git","has_code":true,"age_days":97}]},{"cve_id":"CVE-2026-20660","repositories":[{"id":1182965689,"name":"CVE-2026-20660","full_name":"retX0/CVE-2026-20660","html_url":"https://github.com/retX0/CVE-2026-20660","description":"","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-04-26T21:05:25Z","pushed_at":"2026-03-20T06:20:57Z","created_at":"2026-03-16T06:13:35Z","topics":[],"owner":{"login":"retX0","html_url":"https://github.com/retX0"},"clone_url":"https://github.com/retX0/CVE-2026-20660.git","has_code":true,"age_days":101}]},{"cve_id":"CVE-2026-20687","repositories":[{"id":1153842616,"name":"CVE-2026-20687-AppleJPEGDriver-UAF","full_name":"zeroxjf/CVE-2026-20687-AppleJPEGDriver-UAF","html_url":"https://github.com/zeroxjf/CVE-2026-20687-AppleJPEGDriver-UAF","description":"CVE-2026-20687: AppleJPEGDriver startDecoder Timeout UAF — iOS/macOS kernel vulnerability leading to deferred panic (A19 Pro, iOS 26.3 RC)","stargazers_count":18,"forks_count":3,"language":"Objective-C","updated_at":"2026-06-07T11:25:47Z","pushed_at":"2026-04-06T20:22:19Z","created_at":"2026-02-09T18:21:45Z","topics":["apple","arm64","cve-2026-20687","ios","kernel","poc","security","use-after-free","vulnerability"],"owner":{"login":"zeroxjf","html_url":"https://github.com/zeroxjf"},"clone_url":"https://github.com/zeroxjf/CVE-2026-20687-AppleJPEGDriver-UAF.git","has_code":true,"age_days":136},{"id":1218258012,"name":"CVE-2026-20687-AppleJPEGDriver-UAF","full_name":"enfilade-labs/CVE-2026-20687-AppleJPEGDriver-UAF","html_url":"https://github.com/enfilade-labs/CVE-2026-20687-AppleJPEGDriver-UAF","description":"CVE-2026-20687: AppleJPEGDriver startDecoder Timeout UAF — iOS/macOS kernel vulnerability leading to deferred panic (A19 Pro, iOS 26.3 RC)","stargazers_count":2,"forks_count":0,"language":"Objective-C","updated_at":"2026-06-21T19:55:19Z","pushed_at":"2026-04-22T17:47:46Z","created_at":"2026-04-22T17:36:17Z","topics":[],"owner":{"login":"enfilade-labs","html_url":"https://github.com/enfilade-labs"},"clone_url":"https://github.com/enfilade-labs/CVE-2026-20687-AppleJPEGDriver-UAF.git","has_code":true,"age_days":64}]},{"cve_id":"CVE-2026-20698","repositories":[{"id":1196614265,"name":"CVE-2026-20698-PF_ROUTE-Heap-Overflow","full_name":"Somisomair/CVE-2026-20698-PF_ROUTE-Heap-Overflow","html_url":"https://github.com/Somisomair/CVE-2026-20698-PF_ROUTE-Heap-Overflow","description":"CVE-2026-20698: XNU kernel heap overflow via PF_ROUTE RTA_GENMASK. PoC and analysis. Independently discovered.","stargazers_count":4,"forks_count":1,"language":"C","updated_at":"2026-06-09T19:52:00Z","pushed_at":"2026-03-30T21:46:38Z","created_at":"2026-03-30T21:44:45Z","topics":[],"owner":{"login":"Somisomair","html_url":"https://github.com/Somisomair"},"clone_url":"https://github.com/Somisomair/CVE-2026-20698-PF_ROUTE-Heap-Overflow.git","has_code":true,"age_days":86}]},{"cve_id":"CVE-2026-20700","repositories":[{"id":1247816559,"name":"CVE-2026-20700","full_name":"R3n3r0/CVE-2026-20700","html_url":"https://github.com/R3n3r0/CVE-2026-20700","description":"","stargazers_count":8,"forks_count":2,"language":"Python","updated_at":"2026-06-09T15:05:23Z","pushed_at":"2026-05-23T20:26:00Z","created_at":"2026-05-23T20:25:02Z","topics":[],"owner":{"login":"R3n3r0","html_url":"https://github.com/R3n3r0"},"clone_url":"https://github.com/R3n3r0/CVE-2026-20700.git","has_code":true,"age_days":32},{"id":1249299106,"name":"CVE-2026-20700-POC-that-ll-never-work","full_name":"notthemystery/CVE-2026-20700-POC-that-ll-never-work","html_url":"https://github.com/notthemystery/CVE-2026-20700-POC-that-ll-never-work","description":"","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-26T10:52:43Z","pushed_at":"2026-05-26T10:52:40Z","created_at":"2026-05-25T14:56:13Z","topics":[],"owner":{"login":"notthemystery","html_url":"https://github.com/notthemystery"},"clone_url":"https://github.com/notthemystery/CVE-2026-20700-POC-that-ll-never-work.git","has_code":true,"age_days":31}]},{"cve_id":"CVE-2026-20805","repositories":[{"id":1134257964,"name":"CVE-2026-20805-POC","full_name":"fevar54/CVE-2026-20805-POC","html_url":"https://github.com/fevar54/CVE-2026-20805-POC","description":"# CVE-2026-20805 PoC  Prueba de concepto para la vulnerabilidad de divulgación de información en **Desktop Windows Manager (dwm.exe)** de Microsoft.  ## 📋 Resumen de la Vulnerabilidad  - **ID:** CVE-2026-20805 - **Producto:** Microsoft Windows","stargazers_count":7,"forks_count":3,"language":"","updated_at":"2026-04-09T17:05:00Z","pushed_at":"2026-01-14T13:34:08Z","created_at":"2026-01-14T13:26:26Z","topics":[],"owner":{"login":"fevar54","html_url":"https://github.com/fevar54"},"clone_url":"https://github.com/fevar54/CVE-2026-20805-POC.git","has_code":false,"age_days":162},{"id":1137741233,"name":"CVE-2026-20805-PoC","full_name":"Uzair-Baig0900/CVE-2026-20805-PoC","html_url":"https://github.com/Uzair-Baig0900/CVE-2026-20805-PoC","description":"The PoC of information disclosure in Microsoft Desktop Windows Management.","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-05-06T16:51:22Z","pushed_at":"2026-01-19T19:35:18Z","created_at":"2026-01-19T19:16:25Z","topics":["alpc","cve","dwm","exploits","information-disclosure","kaslr","poc","red-team","vapt","windows","windows-kernal"],"owner":{"login":"Uzair-Baig0900","html_url":"https://github.com/Uzair-Baig0900"},"clone_url":"https://github.com/Uzair-Baig0900/CVE-2026-20805-PoC.git","has_code":true,"age_days":157},{"id":1146483268,"name":"SCTT-2026-33-0002-DWM-Visual-Field-Singularity","full_name":"SimoesCTT/SCTT-2026-33-0002-DWM-Visual-Field-Singularity","html_url":"https://github.com/SimoesCTT/SCTT-2026-33-0002-DWM-Visual-Field-Singularity","description":"Microsoft just patched CVE-2026-20805 and CVE-2026-20871 in January 2026 to stop \"Information Disclosure\" and \"Use-After-Free\" bugs in DWM. They think they've secured the \"Visual Boundary.\" We are about to prove that a 33-layer resonance can turn those visual buffers into a liquid pipeline for SCTT-2026-33-0002.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-31T07:01:00Z","pushed_at":"2026-01-31T07:00:56Z","created_at":"2026-01-31T06:52:17Z","topics":[],"owner":{"login":"SimoesCTT","html_url":"https://github.com/SimoesCTT"},"clone_url":"https://github.com/SimoesCTT/SCTT-2026-33-0002-DWM-Visual-Field-Singularity.git","has_code":true,"age_days":145},{"id":1146478346,"name":"-SCTT-2026-33-0002-DWM-Visual-Field-Singularity","full_name":"SimoesCTT/-SCTT-2026-33-0002-DWM-Visual-Field-Singularity","html_url":"https://github.com/SimoesCTT/-SCTT-2026-33-0002-DWM-Visual-Field-Singularity","description":"### 📡 Theoretical Classification **ID:** SCTT-2026-33-0002   **Researcher:** Americo Simoes (SimoesCTT)   **Physics:** Theorem 4.2 - Turbulent Phase Transition (TPT)   **Constant:** α = 0.0302011   **Target:** Desktop Window Manager (dwm.exe) / Windows Graphics Component   **Obsoletes:** CVE-2026-20805 \u0026 CVE-2026-20871 (Visual-Latch Patches)","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-31T06:45:09Z","pushed_at":"2026-01-31T06:45:05Z","created_at":"2026-01-31T06:40:56Z","topics":[],"owner":{"login":"SimoesCTT","html_url":"https://github.com/SimoesCTT"},"clone_url":"https://github.com/SimoesCTT/-SCTT-2026-33-0002-DWM-Visual-Field-Singularity.git","has_code":true,"age_days":145},{"id":1143878229,"name":"Inside-CVE-2026-20805-How-a-Windows-DWM-Flaw-Exposed-Sensitive-Data","full_name":"mrk336/Inside-CVE-2026-20805-How-a-Windows-DWM-Flaw-Exposed-Sensitive-Data","html_url":"https://github.com/mrk336/Inside-CVE-2026-20805-How-a-Windows-DWM-Flaw-Exposed-Sensitive-Data","description":"CVE‑2026‑20805: A Windows Desktop Window Manager flaw causing local information disclosure. Requires low privileges, no user interaction. Rated CVSS 5.5 (Medium). Actively exploited and listed in CISA KEV; patch released January 2026.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-01-28T04:01:24Z","pushed_at":"2026-01-28T04:01:19Z","created_at":"2026-01-28T03:50:36Z","topics":[],"owner":{"login":"mrk336","html_url":"https://github.com/mrk336"},"clone_url":"https://github.com/mrk336/Inside-CVE-2026-20805-How-a-Windows-DWM-Flaw-Exposed-Sensitive-Data.git","has_code":false,"age_days":148}]},{"cve_id":"CVE-2026-20817","repositories":[{"id":1160896503,"name":"CVE-2026-20817","full_name":"oxfemale/CVE-2026-20817","html_url":"https://github.com/oxfemale/CVE-2026-20817","description":"Windows Error Reporting ALPC Elevation of Privilege (CVE-2026-20817) - Proof-of-Concept exploit demonstrating local privilege escalation via WER service. ","stargazers_count":126,"forks_count":23,"language":"C++","updated_at":"2026-06-22T11:04:58Z","pushed_at":"2026-02-19T13:37:06Z","created_at":"2026-02-18T13:56:17Z","topics":[],"owner":{"login":"oxfemale","html_url":"https://github.com/oxfemale"},"clone_url":"https://github.com/oxfemale/CVE-2026-20817.git","has_code":true,"age_days":127},{"id":1251934400,"name":"CVE-2026-20817","full_name":"dwgth4i/CVE-2026-20817","html_url":"https://github.com/dwgth4i/CVE-2026-20817","description":"PoC for CVE-2026-20817","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-28T06:19:07Z","pushed_at":"2026-05-28T06:15:34Z","created_at":"2026-05-28T03:22:49Z","topics":[],"owner":{"login":"dwgth4i","html_url":"https://github.com/dwgth4i"},"clone_url":"https://github.com/dwgth4i/CVE-2026-20817.git","has_code":true,"age_days":28}]},{"cve_id":"CVE-2026-20820","repositories":[{"id":1184956932,"name":"CVE-2026-20820","full_name":"uname1able/CVE-2026-20820","html_url":"https://github.com/uname1able/CVE-2026-20820","description":"","stargazers_count":0,"forks_count":0,"language":"C++","updated_at":"2026-03-18T05:06:04Z","pushed_at":"2026-03-18T05:06:01Z","created_at":"2026-03-18T05:05:56Z","topics":[],"owner":{"login":"uname1able","html_url":"https://github.com/uname1able"},"clone_url":"https://github.com/uname1able/CVE-2026-20820.git","has_code":true,"age_days":99}]},{"cve_id":"CVE-2026-20833","repositories":[{"id":1182365361,"name":"cve-2026-20833-rc4-kerberos","full_name":"v-jfanca/cve-2026-20833-rc4-kerberos","html_url":"https://github.com/v-jfanca/cve-2026-20833-rc4-kerberos","description":"Kerberos RC4 deprecation: detection, remediation and guidance (CVE-2026-20833)","stargazers_count":2,"forks_count":0,"language":"PowerShell","updated_at":"2026-04-13T18:28:03Z","pushed_at":"2026-03-17T12:45:50Z","created_at":"2026-03-15T12:25:58Z","topics":[],"owner":{"login":"v-jfanca","html_url":"https://github.com/v-jfanca"},"clone_url":"https://github.com/v-jfanca/cve-2026-20833-rc4-kerberos.git","has_code":true,"age_days":102}]},{"cve_id":"CVE-2026-20841","repositories":[{"id":1155006903,"name":"CVE-2026-20841-PoC","full_name":"BTtea/CVE-2026-20841-PoC","html_url":"https://github.com/BTtea/CVE-2026-20841-PoC","description":"PoC","stargazers_count":140,"forks_count":22,"language":"","updated_at":"2026-06-23T23:20:49Z","pushed_at":"2026-02-11T05:56:43Z","created_at":"2026-02-11T02:39:30Z","topics":[],"owner":{"login":"BTtea","html_url":"https://github.com/BTtea"},"clone_url":"https://github.com/BTtea/CVE-2026-20841-PoC.git","has_code":false,"age_days":134},{"id":1155924757,"name":"CVE-2026-20841","full_name":"patchpoint/CVE-2026-20841","html_url":"https://github.com/patchpoint/CVE-2026-20841","description":"","stargazers_count":12,"forks_count":1,"language":"","updated_at":"2026-02-19T03:59:46Z","pushed_at":"2026-02-12T05:13:05Z","created_at":"2026-02-12T03:58:28Z","topics":[],"owner":{"login":"patchpoint","html_url":"https://github.com/patchpoint"},"clone_url":"https://github.com/patchpoint/CVE-2026-20841.git","has_code":false,"age_days":133},{"id":1156180550,"name":"CVE-2026-20841","full_name":"atiilla/CVE-2026-20841","html_url":"https://github.com/atiilla/CVE-2026-20841","description":"","stargazers_count":5,"forks_count":4,"language":"Python","updated_at":"2026-03-12T20:31:12Z","pushed_at":"2026-02-12T12:54:53Z","created_at":"2026-02-12T11:00:14Z","topics":[],"owner":{"login":"atiilla","html_url":"https://github.com/atiilla"},"clone_url":"https://github.com/atiilla/CVE-2026-20841.git","has_code":true,"age_days":133},{"id":1155988482,"name":"CVE-2026-20841_notepad_analysis","full_name":"uky007/CVE-2026-20841_notepad_analysis","html_url":"https://github.com/uky007/CVE-2026-20841_notepad_analysis","description":"","stargazers_count":3,"forks_count":1,"language":"Python","updated_at":"2026-03-02T05:55:22Z","pushed_at":"2026-02-12T08:06:24Z","created_at":"2026-02-12T06:04:12Z","topics":[],"owner":{"login":"uky007","html_url":"https://github.com/uky007"},"clone_url":"https://github.com/uky007/CVE-2026-20841_notepad_analysis.git","has_code":true,"age_days":133},{"id":1156247662,"name":"CVE-2026-20841-PoC","full_name":"dogukankurnaz/CVE-2026-20841-PoC","html_url":"https://github.com/dogukankurnaz/CVE-2026-20841-PoC","description":"CVE-2026-20841","stargazers_count":2,"forks_count":0,"language":"","updated_at":"2026-02-19T14:33:56Z","pushed_at":"2026-02-12T13:25:10Z","created_at":"2026-02-12T12:38:45Z","topics":["cve-2026-20841","microsoft","notepad","poc"],"owner":{"login":"dogukankurnaz","html_url":"https://github.com/dogukankurnaz"},"clone_url":"https://github.com/dogukankurnaz/CVE-2026-20841-PoC.git","has_code":false,"age_days":133},{"id":1155472947,"name":"CVE-2026-20841","full_name":"tangent65536/CVE-2026-20841","html_url":"https://github.com/tangent65536/CVE-2026-20841","description":"PoC for the \"Windows Notepad RCE\"","stargazers_count":2,"forks_count":1,"language":"Python","updated_at":"2026-02-28T11:25:53Z","pushed_at":"2026-02-11T14:55:48Z","created_at":"2026-02-11T14:55:18Z","topics":[],"owner":{"login":"tangent65536","html_url":"https://github.com/tangent65536"},"clone_url":"https://github.com/tangent65536/CVE-2026-20841.git","has_code":true,"age_days":134},{"id":861253542,"name":"CVE-2026-20841","full_name":"hamzamalik3461/CVE-2026-20841","html_url":"https://github.com/hamzamalik3461/CVE-2026-20841","description":"🛠 Demonstrate remote code execution in Windows Notepad via markdown links exploiting unsecured URL protocols.","stargazers_count":1,"forks_count":2,"language":"","updated_at":"2026-06-25T18:17:38Z","pushed_at":"2026-06-25T18:17:34Z","created_at":"2024-09-22T12:19:06Z","topics":["agent","command-injection","cv","cve","cve-2016-0856","cve-2026-20841","ethereum","exploit","microsoft","mxnet","notepad-vulnerability","php-obfuscator","poc","pose-estimation","rag","semantic-segmentation","sybil-resistance","windows-notepad"],"owner":{"login":"hamzamalik3461","html_url":"https://github.com/hamzamalik3461"},"clone_url":"https://github.com/hamzamalik3461/CVE-2026-20841.git","has_code":false,"age_days":641},{"id":1156535306,"name":"CVE-2026-20841-PoC","full_name":"hackfaiz/CVE-2026-20841-PoC","html_url":"https://github.com/hackfaiz/CVE-2026-20841-PoC","description":"Proof of Concept for CVE-2026-20841","stargazers_count":1,"forks_count":0,"language":"Batchfile","updated_at":"2026-02-19T02:51:23Z","pushed_at":"2026-02-12T19:24:31Z","created_at":"2026-02-12T18:59:16Z","topics":[],"owner":{"login":"hackfaiz","html_url":"https://github.com/hackfaiz"},"clone_url":"https://github.com/hackfaiz/CVE-2026-20841-PoC.git","has_code":true,"age_days":133},{"id":1156380448,"name":"CVE-2026-20841","full_name":"SecureWithUmer/CVE-2026-20841","html_url":"https://github.com/SecureWithUmer/CVE-2026-20841","description":"PoC for a remote code execution flaw in Windows Notepad's markdown renderer. The markdown engine does not restrict URL protocols, allowing arbitrary protocol handlers to be triggered via clickable links","stargazers_count":1,"forks_count":1,"language":"","updated_at":"2026-02-12T17:52:13Z","pushed_at":"2026-02-12T15:38:13Z","created_at":"2026-02-12T15:29:58Z","topics":["2026","command-injection","cve","cve-2026-20841","exploit","notepad","notepad-exoploit","notepad-vulnerability","securewithumer","windows-notepad"],"owner":{"login":"SecureWithUmer","html_url":"https://github.com/SecureWithUmer"},"clone_url":"https://github.com/SecureWithUmer/CVE-2026-20841.git","has_code":false,"age_days":133},{"id":1256542655,"name":"CVE-2026-20841","full_name":"0xBlackash/CVE-2026-20841","html_url":"https://github.com/0xBlackash/CVE-2026-20841","description":"CVE-2026-20841","stargazers_count":1,"forks_count":1,"language":"JavaScript","updated_at":"2026-06-03T05:49:04Z","pushed_at":"2026-06-02T09:16:26Z","created_at":"2026-06-01T21:58:05Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-20841.git","has_code":true,"age_days":23},{"id":1167260052,"name":"CVE-2026-20841-PoC","full_name":"404godd/CVE-2026-20841-PoC","html_url":"https://github.com/404godd/CVE-2026-20841-PoC","description":"🛠 Demonstrate remote code execution in Windows Notepad versions below 11.2510 using the CVE-2026-20841 proof of concept.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-25T18:21:54Z","pushed_at":"2026-06-25T18:17:00Z","created_at":"2026-02-26T05:21:28Z","topics":["agent","chinese","cv","cve-2016-0856","cve-2026-20841","deep-learning","ethereum","hacktoberfest","llm","mxnet","notepad","obfuscation","php-obfuscator","pose-estimation","python","rag","semantic-segmentation","sybil-resistance","testnet-faucet","web3"],"owner":{"login":"404godd","html_url":"https://github.com/404godd"},"clone_url":"https://github.com/404godd/CVE-2026-20841-PoC.git","has_code":false,"age_days":119},{"id":1159812575,"name":"PoC-CVE-2026-20841","full_name":"EleniChristopoulou/PoC-CVE-2026-20841","html_url":"https://github.com/EleniChristopoulou/PoC-CVE-2026-20841","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-02-17T08:10:36Z","pushed_at":"2026-02-17T08:10:33Z","created_at":"2026-02-17T07:29:53Z","topics":[],"owner":{"login":"EleniChristopoulou","html_url":"https://github.com/EleniChristopoulou"},"clone_url":"https://github.com/EleniChristopoulou/PoC-CVE-2026-20841.git","has_code":false,"age_days":128},{"id":1155349188,"name":"CVE-2026-20841","full_name":"RajaUzairAbdullah/CVE-2026-20841","html_url":"https://github.com/RajaUzairAbdullah/CVE-2026-20841","description":"CVE-2026-20841 - Windows notepad.exe RCE","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-02-11T12:29:35Z","pushed_at":"2026-02-11T12:29:32Z","created_at":"2026-02-11T12:14:02Z","topics":[],"owner":{"login":"RajaUzairAbdullah","html_url":"https://github.com/RajaUzairAbdullah"},"clone_url":"https://github.com/RajaUzairAbdullah/CVE-2026-20841.git","has_code":false,"age_days":134},{"id":1203967289,"name":"notepad_CVE_2026_20841","full_name":"whiskeylab/notepad_CVE_2026_20841","html_url":"https://github.com/whiskeylab/notepad_CVE_2026_20841","description":"Notepad CVE-2026-20841","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-07T15:08:54Z","pushed_at":"2026-04-07T15:07:24Z","created_at":"2026-04-07T15:02:48Z","topics":[],"owner":{"login":"whiskeylab","html_url":"https://github.com/whiskeylab"},"clone_url":"https://github.com/whiskeylab/notepad_CVE_2026_20841.git","has_code":false,"age_days":79}]},{"cve_id":"CVE-2026-20871","repositories":[{"id":1146483268,"name":"SCTT-2026-33-0002-DWM-Visual-Field-Singularity","full_name":"SimoesCTT/SCTT-2026-33-0002-DWM-Visual-Field-Singularity","html_url":"https://github.com/SimoesCTT/SCTT-2026-33-0002-DWM-Visual-Field-Singularity","description":"Microsoft just patched CVE-2026-20805 and CVE-2026-20871 in January 2026 to stop \"Information Disclosure\" and \"Use-After-Free\" bugs in DWM. They think they've secured the \"Visual Boundary.\" We are about to prove that a 33-layer resonance can turn those visual buffers into a liquid pipeline for SCTT-2026-33-0002.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-31T07:01:00Z","pushed_at":"2026-01-31T07:00:56Z","created_at":"2026-01-31T06:52:17Z","topics":[],"owner":{"login":"SimoesCTT","html_url":"https://github.com/SimoesCTT"},"clone_url":"https://github.com/SimoesCTT/SCTT-2026-33-0002-DWM-Visual-Field-Singularity.git","has_code":true,"age_days":145},{"id":1146478346,"name":"-SCTT-2026-33-0002-DWM-Visual-Field-Singularity","full_name":"SimoesCTT/-SCTT-2026-33-0002-DWM-Visual-Field-Singularity","html_url":"https://github.com/SimoesCTT/-SCTT-2026-33-0002-DWM-Visual-Field-Singularity","description":"### 📡 Theoretical Classification **ID:** SCTT-2026-33-0002   **Researcher:** Americo Simoes (SimoesCTT)   **Physics:** Theorem 4.2 - Turbulent Phase Transition (TPT)   **Constant:** α = 0.0302011   **Target:** Desktop Window Manager (dwm.exe) / Windows Graphics Component   **Obsoletes:** CVE-2026-20805 \u0026 CVE-2026-20871 (Visual-Latch Patches)","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-31T06:45:09Z","pushed_at":"2026-01-31T06:45:05Z","created_at":"2026-01-31T06:40:56Z","topics":[],"owner":{"login":"SimoesCTT","html_url":"https://github.com/SimoesCTT"},"clone_url":"https://github.com/SimoesCTT/-SCTT-2026-33-0002-DWM-Visual-Field-Singularity.git","has_code":true,"age_days":145}]},{"cve_id":"CVE-2026-20963","repositories":[{"id":1194033310,"name":"CVE-2026-20963","full_name":"jenniferreire26/CVE-2026-20963","html_url":"https://github.com/jenniferreire26/CVE-2026-20963","description":"","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-03-31T13:46:51Z","pushed_at":"2026-03-27T21:03:50Z","created_at":"2026-03-27T21:03:46Z","topics":[],"owner":{"login":"jenniferreire26","html_url":"https://github.com/jenniferreire26"},"clone_url":"https://github.com/jenniferreire26/CVE-2026-20963.git","has_code":false,"age_days":89}]},{"cve_id":"CVE-2026-20980","repositories":[{"id":1256103023,"name":"samsung-android-lpe","full_name":"Vikramaditya015/samsung-android-lpe","html_url":"https://github.com/Vikramaditya015/samsung-android-lpe","description":"Poc for CVE-2026-20980, CVE-2026-20981, CVE-2026-20982","stargazers_count":10,"forks_count":6,"language":"Python","updated_at":"2026-06-21T20:10:41Z","pushed_at":"2026-06-01T17:42:26Z","created_at":"2026-06-01T13:14:47Z","topics":[],"owner":{"login":"Vikramaditya015","html_url":"https://github.com/Vikramaditya015"},"clone_url":"https://github.com/Vikramaditya015/samsung-android-lpe.git","has_code":true,"age_days":24}]},{"cve_id":"CVE-2026-20981","repositories":[{"id":1256103023,"name":"samsung-android-lpe","full_name":"Vikramaditya015/samsung-android-lpe","html_url":"https://github.com/Vikramaditya015/samsung-android-lpe","description":"Poc for CVE-2026-20980, CVE-2026-20981, CVE-2026-20982","stargazers_count":10,"forks_count":6,"language":"Python","updated_at":"2026-06-21T20:10:41Z","pushed_at":"2026-06-01T17:42:26Z","created_at":"2026-06-01T13:14:47Z","topics":[],"owner":{"login":"Vikramaditya015","html_url":"https://github.com/Vikramaditya015"},"clone_url":"https://github.com/Vikramaditya015/samsung-android-lpe.git","has_code":true,"age_days":24}]},{"cve_id":"CVE-2026-20982","repositories":[{"id":1256103023,"name":"samsung-android-lpe","full_name":"Vikramaditya015/samsung-android-lpe","html_url":"https://github.com/Vikramaditya015/samsung-android-lpe","description":"Poc for CVE-2026-20980, CVE-2026-20981, CVE-2026-20982","stargazers_count":10,"forks_count":6,"language":"Python","updated_at":"2026-06-21T20:10:41Z","pushed_at":"2026-06-01T17:42:26Z","created_at":"2026-06-01T13:14:47Z","topics":[],"owner":{"login":"Vikramaditya015","html_url":"https://github.com/Vikramaditya015"},"clone_url":"https://github.com/Vikramaditya015/samsung-android-lpe.git","has_code":true,"age_days":24}]},{"cve_id":"CVE-2026-21018","repositories":[{"id":1277512642,"name":"CVE-2026-21018","full_name":"Filipemendonca1978/CVE-2026-21018","html_url":"https://github.com/Filipemendonca1978/CVE-2026-21018","description":"A minimal PoC for CVE-2026-21018, demonstrating how it works","stargazers_count":1,"forks_count":0,"language":"Java","updated_at":"2026-06-23T08:32:41Z","pushed_at":"2026-06-23T01:01:25Z","created_at":"2026-06-23T00:53:19Z","topics":[],"owner":{"login":"Filipemendonca1978","html_url":"https://github.com/Filipemendonca1978"},"clone_url":"https://github.com/Filipemendonca1978/CVE-2026-21018.git","has_code":true,"age_days":2}]},{"cve_id":"CVE-2026-2113","repositories":[{"id":1154434448,"name":"tpadmin-CVE-2026-2113-poc","full_name":"MaxMnMl/tpadmin-CVE-2026-2113-poc","html_url":"https://github.com/MaxMnMl/tpadmin-CVE-2026-2113-poc","description":"A Remote Code Execution vulnerability allowing unauthenticated attackers to upload arbitrary PHP files directly to the web server. This results in immediate Remote Code Execution with web server privileges.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-02-11T11:12:50Z","pushed_at":"2026-02-11T11:12:46Z","created_at":"2026-02-10T11:37:40Z","topics":[],"owner":{"login":"MaxMnMl","html_url":"https://github.com/MaxMnMl"},"clone_url":"https://github.com/MaxMnMl/tpadmin-CVE-2026-2113-poc.git","has_code":false,"age_days":135}]},{"cve_id":"CVE-2026-21250","repositories":[{"id":1228995051,"name":"CVE-2026-21250","full_name":"kaleth4/CVE-2026-21250","html_url":"https://github.com/kaleth4/CVE-2026-21250","description":"","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-04T15:51:23Z","pushed_at":"2026-05-04T15:51:18Z","created_at":"2026-05-04T15:36:56Z","topics":[],"owner":{"login":"kaleth4","html_url":"https://github.com/kaleth4"},"clone_url":"https://github.com/kaleth4/CVE-2026-21250.git","has_code":true,"age_days":52}]},{"cve_id":"CVE-2026-21385","repositories":[{"id":1172144473,"name":"qualcomm-vulnerability-scanner","full_name":"automate-it0/qualcomm-vulnerability-scanner","html_url":"https://github.com/automate-it0/qualcomm-vulnerability-scanner","description":"A tool to scan Android devices for the recently exploited Qualcomm flaw CVE-2026-21385, providing a simple and efficient way to identify vulnerable devices and apply necessary patches.","stargazers_count":11,"forks_count":3,"language":"Python","updated_at":"2026-06-13T18:49:06Z","pushed_at":"2026-03-04T01:40:35Z","created_at":"2026-03-04T01:40:18Z","topics":["automation","cve","cybersecurity","scanner","security","tool"],"owner":{"login":"automate-it0","html_url":"https://github.com/automate-it0"},"clone_url":"https://github.com/automate-it0/qualcomm-vulnerability-scanner.git","has_code":true,"age_days":113}]},{"cve_id":"CVE-2026-21436","repositories":[{"id":1126396200,"name":"CVE-2026-21436","full_name":"osmancanvural/CVE-2026-21436","html_url":"https://github.com/osmancanvural/CVE-2026-21436","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-02T01:26:56Z","pushed_at":"2026-01-02T01:26:01Z","created_at":"2026-01-01T20:30:34Z","topics":[],"owner":{"login":"osmancanvural","html_url":"https://github.com/osmancanvural"},"clone_url":"https://github.com/osmancanvural/CVE-2026-21436.git","has_code":true,"age_days":174}]},{"cve_id":"CVE-2026-21437","repositories":[{"id":1126396422,"name":"CVE-2026-21437","full_name":"osmancanvural/CVE-2026-21437","html_url":"https://github.com/osmancanvural/CVE-2026-21437","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-01-02T01:29:16Z","pushed_at":"2026-01-02T01:29:13Z","created_at":"2026-01-01T20:31:16Z","topics":[],"owner":{"login":"osmancanvural","html_url":"https://github.com/osmancanvural"},"clone_url":"https://github.com/osmancanvural/CVE-2026-21437.git","has_code":false,"age_days":174}]},{"cve_id":"CVE-2026-21440","repositories":[{"id":1130053662,"name":"cve-2026-21440-writeup-poc","full_name":"k0nnect/cve-2026-21440-writeup-poc","html_url":"https://github.com/k0nnect/cve-2026-21440-writeup-poc","description":"poc and writeup for cve-2026-21440: a critical path traversal vulnerability in @adonisjs/bodyparser allowing arbitrary file writing","stargazers_count":4,"forks_count":0,"language":"Python","updated_at":"2026-06-15T08:41:11Z","pushed_at":"2026-01-08T02:21:06Z","created_at":"2026-01-08T00:55:02Z","topics":["adonisjs","cve-2026-21440","exploit","nodejs","path-traversal","poc","rce","security-writeup","vulnerability-research"],"owner":{"login":"k0nnect","html_url":"https://github.com/k0nnect"},"clone_url":"https://github.com/k0nnect/cve-2026-21440-writeup-poc.git","has_code":true,"age_days":168},{"id":1128611560,"name":"CVE-2026-21440","full_name":"you-ssef9/CVE-2026-21440","html_url":"https://github.com/you-ssef9/CVE-2026-21440","description":"Advanced detection-only PoC for CVE-2026-21440 affecting AdonisJS BodyParser. No exploitation included.","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-01-10T14:57:12Z","pushed_at":"2026-01-05T22:47:51Z","created_at":"2026-01-05T22:40:37Z","topics":[],"owner":{"login":"you-ssef9","html_url":"https://github.com/you-ssef9"},"clone_url":"https://github.com/you-ssef9/CVE-2026-21440.git","has_code":true,"age_days":170},{"id":1145763070,"name":"CVE-2026-21440-POC-EXP","full_name":"TibbersV6/CVE-2026-21440-POC-EXP","html_url":"https://github.com/TibbersV6/CVE-2026-21440-POC-EXP","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-30T07:54:39Z","pushed_at":"2026-01-30T07:54:36Z","created_at":"2026-01-30T07:19:50Z","topics":[],"owner":{"login":"TibbersV6","html_url":"https://github.com/TibbersV6"},"clone_url":"https://github.com/TibbersV6/CVE-2026-21440-POC-EXP.git","has_code":true,"age_days":146},{"id":1129447712,"name":"Ashwesker-CVE-2026-21440","full_name":"redpack-kr/Ashwesker-CVE-2026-21440","html_url":"https://github.com/redpack-kr/Ashwesker-CVE-2026-21440","description":"CVE-2026-21440","stargazers_count":0,"forks_count":8,"language":"","updated_at":"2026-01-07T05:29:02Z","pushed_at":"2026-01-05T15:18:51Z","created_at":"2026-01-07T05:29:02Z","topics":[],"owner":{"login":"redpack-kr","html_url":"https://github.com/redpack-kr"},"clone_url":"https://github.com/redpack-kr/Ashwesker-CVE-2026-21440.git","has_code":false,"age_days":169}]},{"cve_id":"CVE-2026-21445","repositories":[{"id":1127499197,"name":"CVE-2026-21445-PoC","full_name":"chinaxploiter/CVE-2026-21445-PoC","html_url":"https://github.com/chinaxploiter/CVE-2026-21445-PoC","description":"Academic proof-of-concept demonstrating CVE-2026-21445 [LangFlow] for authorized security research.","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-01-04T10:53:36Z","pushed_at":"2026-01-04T02:30:41Z","created_at":"2026-01-04T02:22:42Z","topics":["codeb0ss","cve-2026-21445","cve-2026-21445-poc","langflow"],"owner":{"login":"chinaxploiter","html_url":"https://github.com/chinaxploiter"},"clone_url":"https://github.com/chinaxploiter/CVE-2026-21445-PoC.git","has_code":true,"age_days":172}]},{"cve_id":"CVE-2026-21508","repositories":[{"id":1154909059,"name":"CVE-2026-21508_POC","full_name":"0xc4r/CVE-2026-21508_POC","html_url":"https://github.com/0xc4r/CVE-2026-21508_POC","description":"","stargazers_count":28,"forks_count":13,"language":"C++","updated_at":"2026-06-08T03:13:48Z","pushed_at":"2026-02-11T13:30:38Z","created_at":"2026-02-10T22:57:22Z","topics":[],"owner":{"login":"0xc4r","html_url":"https://github.com/0xc4r"},"clone_url":"https://github.com/0xc4r/CVE-2026-21508_POC.git","has_code":true,"age_days":134}]},{"cve_id":"CVE-2026-21509","repositories":[{"id":1144709571,"name":"CVE-2026-21509-PoC","full_name":"gavz/CVE-2026-21509-PoC","html_url":"https://github.com/gavz/CVE-2026-21509-PoC","description":"Educational PoC for CVE‑2026‑21509 (Microsoft Office security feature bypass). Generates a harmless DOCX with dummy OLE artifacts to study EDR/AV visibility. Not an exploit. For isolated labs only; see README for 7‑Zip inspection steps and mitigation references.","stargazers_count":17,"forks_count":11,"language":"","updated_at":"2026-05-11T06:16:47Z","pushed_at":"2026-01-28T20:33:28Z","created_at":"2026-01-29T00:51:18Z","topics":[],"owner":{"login":"gavz","html_url":"https://github.com/gavz"},"clone_url":"https://github.com/gavz/CVE-2026-21509-PoC.git","has_code":false,"age_days":147},{"id":1143294637,"name":"Ashwesker-CVE-2026-21509","full_name":"kimstars/Ashwesker-CVE-2026-21509","html_url":"https://github.com/kimstars/Ashwesker-CVE-2026-21509","description":"CVE-2026-21509","stargazers_count":10,"forks_count":18,"language":"","updated_at":"2026-05-15T09:42:03Z","pushed_at":"2026-01-27T09:42:58Z","created_at":"2026-01-27T12:03:20Z","topics":[],"owner":{"login":"kimstars","html_url":"https://github.com/kimstars"},"clone_url":"https://github.com/kimstars/Ashwesker-CVE-2026-21509.git","has_code":false,"age_days":149},{"id":1170074722,"name":"CVE-2026-21509-handler","full_name":"suuhm/CVE-2026-21509-handler","html_url":"https://github.com/suuhm/CVE-2026-21509-handler","description":"PowerShell script to check, apply, and test the Kill-Bit protection for the CVE-2026-21509 Microsoft Office zero-day vulnerability affecting Office 2016/2019/LTSC.","stargazers_count":8,"forks_count":1,"language":"PowerShell","updated_at":"2026-06-07T19:32:14Z","pushed_at":"2026-03-05T15:02:27Z","created_at":"2026-03-01T17:00:37Z","topics":["apt28","cve-2026-21509","dcom","microsoft-office","ole-files","powershell-se","sysadmin-tool","zero-day","zeroday"],"owner":{"login":"suuhm","html_url":"https://github.com/suuhm"},"clone_url":"https://github.com/suuhm/CVE-2026-21509-handler.git","has_code":true,"age_days":116},{"id":1146434087,"name":"CTT-NFS-Vortex-RCE","full_name":"SimoesCTT/CTT-NFS-Vortex-RCE","html_url":"https://github.com/SimoesCTT/CTT-NFS-Vortex-RCE","description":"New Physics Disclosure This repository contains a full weaponized exploit for **CVE-2026-21509**, targeting the Windows Network File System (NFSv4.1) kernel-mode driver (`nfssvr.sys`). ","stargazers_count":3,"forks_count":3,"language":"Python","updated_at":"2026-02-08T22:29:34Z","pushed_at":"2026-01-31T04:57:20Z","created_at":"2026-01-31T04:52:13Z","topics":[],"owner":{"login":"SimoesCTT","html_url":"https://github.com/SimoesCTT"},"clone_url":"https://github.com/SimoesCTT/CTT-NFS-Vortex-RCE.git","has_code":true,"age_days":145},{"id":1147401424,"name":"CTT-MICROSOFT-OFFICE-OLE-MANIFOLD-BYPASS-CVE-2026-21509","full_name":"SimoesCTT/CTT-MICROSOFT-OFFICE-OLE-MANIFOLD-BYPASS-CVE-2026-21509","html_url":"https://github.com/SimoesCTT/CTT-MICROSOFT-OFFICE-OLE-MANIFOLD-BYPASS-CVE-2026-21509","description":"CVE-2026-21509 is a critical bypass in the Microsoft Office OLE (Object Linking and Embedding) validation engine. While standard \"laminar\" exploits attempt to manipulate static COM objects, this repository utilizes Theorem 4.2 to achieve a speculative race-condition bypass of the Object Definition Rule (ODR).","stargazers_count":3,"forks_count":2,"language":"Python","updated_at":"2026-02-10T13:23:55Z","pushed_at":"2026-02-10T06:11:54Z","created_at":"2026-02-01T17:31:24Z","topics":[],"owner":{"login":"SimoesCTT","html_url":"https://github.com/SimoesCTT"},"clone_url":"https://github.com/SimoesCTT/CTT-MICROSOFT-OFFICE-OLE-MANIFOLD-BYPASS-CVE-2026-21509.git","has_code":true,"age_days":144},{"id":1149781000,"name":"detect_CVE-2026-21509","full_name":"decalage2/detect_CVE-2026-21509","html_url":"https://github.com/decalage2/detect_CVE-2026-21509","description":"YARA rule and python script to detect potential exploits for the CVE-2026-21509 vulnerability in MS Office","stargazers_count":3,"forks_count":1,"language":"Python","updated_at":"2026-02-21T17:44:42Z","pushed_at":"2026-02-04T15:35:45Z","created_at":"2026-02-04T14:13:02Z","topics":[],"owner":{"login":"decalage2","html_url":"https://github.com/decalage2"},"clone_url":"https://github.com/decalage2/detect_CVE-2026-21509.git","has_code":true,"age_days":141},{"id":1145070024,"name":"KSK-ITDK-CVE-2026-21509-Mitigation","full_name":"ksk-itdk/KSK-ITDK-CVE-2026-21509-Mitigation","html_url":"https://github.com/ksk-itdk/KSK-ITDK-CVE-2026-21509-Mitigation","description":"Powershell script with Detection and Remediation for CVE-2026-21509","stargazers_count":2,"forks_count":2,"language":"PowerShell","updated_at":"2026-05-11T14:59:42Z","pushed_at":"2026-01-29T11:49:04Z","created_at":"2026-01-29T11:40:30Z","topics":[],"owner":{"login":"ksk-itdk","html_url":"https://github.com/ksk-itdk"},"clone_url":"https://github.com/ksk-itdk/KSK-ITDK-CVE-2026-21509-Mitigation.git","has_code":true,"age_days":147},{"id":1146561861,"name":"SCTT-2026-33-0007-The-OLE-Vortex-Laminar-Bypass-","full_name":"SimoesCTT/SCTT-2026-33-0007-The-OLE-Vortex-Laminar-Bypass-","html_url":"https://github.com/SimoesCTT/SCTT-2026-33-0007-The-OLE-Vortex-Laminar-Bypass-","description":"Microsoft just released emergency patches for CVE-2026-21509, a zero-day in the Office Suite that bypasses OLE/COM mitigations when a user simply opens a file. They think their \"Service-side change\" for Office 2021+ is a solid wall. ","stargazers_count":1,"forks_count":2,"language":"Python","updated_at":"2026-01-31T16:08:36Z","pushed_at":"2026-01-31T09:58:19Z","created_at":"2026-01-31T09:50:23Z","topics":[],"owner":{"login":"SimoesCTT","html_url":"https://github.com/SimoesCTT"},"clone_url":"https://github.com/SimoesCTT/SCTT-2026-33-0007-The-OLE-Vortex-Laminar-Bypass-.git","has_code":true,"age_days":145},{"id":1155262834,"name":"cve-2026-21509-mitigation","full_name":"planetoid/cve-2026-21509-mitigation","html_url":"https://github.com/planetoid/cve-2026-21509-mitigation","description":"CVE-2026-21509 Mitigation","stargazers_count":0,"forks_count":0,"language":"PowerShell","updated_at":"2026-02-12T06:01:30Z","pushed_at":"2026-02-12T06:01:27Z","created_at":"2026-02-11T10:07:33Z","topics":[],"owner":{"login":"planetoid","html_url":"https://github.com/planetoid"},"clone_url":"https://github.com/planetoid/cve-2026-21509-mitigation.git","has_code":true,"age_days":134},{"id":1150570492,"name":"CVE-2026-21509","full_name":"kaizensecurity/CVE-2026-21509","html_url":"https://github.com/kaizensecurity/CVE-2026-21509","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-02-05T12:43:10Z","pushed_at":"2026-02-05T12:43:04Z","created_at":"2026-02-05T12:42:40Z","topics":[],"owner":{"login":"kaizensecurity","html_url":"https://github.com/kaizensecurity"},"clone_url":"https://github.com/kaizensecurity/CVE-2026-21509.git","has_code":false,"age_days":140},{"id":1180157824,"name":"CVE-2026-21509-POC","full_name":"DameDode/CVE-2026-21509-POC","html_url":"https://github.com/DameDode/CVE-2026-21509-POC","description":"POC for the Office vulnerability","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-12T20:43:28Z","pushed_at":"2026-03-12T20:43:24Z","created_at":"2026-03-12T18:59:40Z","topics":[],"owner":{"login":"DameDode","html_url":"https://github.com/DameDode"},"clone_url":"https://github.com/DameDode/CVE-2026-21509-POC.git","has_code":true,"age_days":105}]},{"cve_id":"CVE-2026-21510","repositories":[{"id":1155794930,"name":"CVE-2026-21510-CVSS-8.8-Important-Windows-Shell-security-feature-bypass","full_name":"andreassudo/CVE-2026-21510-CVSS-8.8-Important-Windows-Shell-security-feature-bypass","html_url":"https://github.com/andreassudo/CVE-2026-21510-CVSS-8.8-Important-Windows-Shell-security-feature-bypass","description":"CVE-2026-21510 (CVSS 8.8, Important) — Windows Shell security feature bypass. An attacker can trick a user into clicking a malicious link or shortcut file to bypass SmartScreen/Shell warnings and execute code without prompts. Publicly disclosed and exploited.","stargazers_count":7,"forks_count":1,"language":"","updated_at":"2026-06-09T11:19:18Z","pushed_at":"2026-02-11T23:02:43Z","created_at":"2026-02-11T23:02:06Z","topics":[],"owner":{"login":"andreassudo","html_url":"https://github.com/andreassudo"},"clone_url":"https://github.com/andreassudo/CVE-2026-21510-CVSS-8.8-Important-Windows-Shell-security-feature-bypass.git","has_code":false,"age_days":133},{"id":1229095250,"name":"CVE-2026-21514_CVE-2026-21510","full_name":"ChaitanyaHaritash/CVE-2026-21514_CVE-2026-21510","html_url":"https://github.com/ChaitanyaHaritash/CVE-2026-21514_CVE-2026-21510","description":"CVE-2026-21514 \u0026 CVE-2026-21510 (Because MS-Office Fascinates me)","stargazers_count":4,"forks_count":0,"language":"Python","updated_at":"2026-06-17T10:41:13Z","pushed_at":"2026-05-04T18:07:02Z","created_at":"2026-05-04T17:38:14Z","topics":[],"owner":{"login":"ChaitanyaHaritash","html_url":"https://github.com/ChaitanyaHaritash"},"clone_url":"https://github.com/ChaitanyaHaritash/CVE-2026-21514_CVE-2026-21510.git","has_code":true,"age_days":52},{"id":1233946112,"name":"EpSiLoNPoInTlnk","full_name":"EpSiLoNPoInTOrI/EpSiLoNPoInTlnk","html_url":"https://github.com/EpSiLoNPoInTOrI/EpSiLoNPoInTlnk","description":" CVE-2026-21510 LNK generator PoC","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-05-24T07:44:14Z","pushed_at":"2026-05-09T15:09:55Z","created_at":"2026-05-09T14:50:50Z","topics":[],"owner":{"login":"EpSiLoNPoInTOrI","html_url":"https://github.com/EpSiLoNPoInTOrI"},"clone_url":"https://github.com/EpSiLoNPoInTOrI/EpSiLoNPoInTlnk.git","has_code":true,"age_days":47}]},{"cve_id":"CVE-2026-21514","repositories":[{"id":1229095250,"name":"CVE-2026-21514_CVE-2026-21510","full_name":"ChaitanyaHaritash/CVE-2026-21514_CVE-2026-21510","html_url":"https://github.com/ChaitanyaHaritash/CVE-2026-21514_CVE-2026-21510","description":"CVE-2026-21514 \u0026 CVE-2026-21510 (Because MS-Office Fascinates me)","stargazers_count":4,"forks_count":0,"language":"Python","updated_at":"2026-06-17T10:41:13Z","pushed_at":"2026-05-04T18:07:02Z","created_at":"2026-05-04T17:38:14Z","topics":[],"owner":{"login":"ChaitanyaHaritash","html_url":"https://github.com/ChaitanyaHaritash"},"clone_url":"https://github.com/ChaitanyaHaritash/CVE-2026-21514_CVE-2026-21510.git","has_code":true,"age_days":52}]},{"cve_id":"CVE-2026-21531","repositories":[{"id":1155702631,"name":"CVE-2026-21531","full_name":"NetVanguard-cmd/CVE-2026-21531","html_url":"https://github.com/NetVanguard-cmd/CVE-2026-21531","description":"","stargazers_count":2,"forks_count":0,"language":"","updated_at":"2026-03-23T12:20:28Z","pushed_at":"2026-02-11T20:27:35Z","created_at":"2026-02-11T20:07:21Z","topics":[],"owner":{"login":"NetVanguard-cmd","html_url":"https://github.com/NetVanguard-cmd"},"clone_url":"https://github.com/NetVanguard-cmd/CVE-2026-21531.git","has_code":false,"age_days":133}]},{"cve_id":"CVE-2026-21533","repositories":[{"id":1158094298,"name":"CVE-2026-21533","full_name":"jenniferreire26/CVE-2026-21533","html_url":"https://github.com/jenniferreire26/CVE-2026-21533","description":"","stargazers_count":2,"forks_count":0,"language":"","updated_at":"2026-04-12T18:17:35Z","pushed_at":"2026-02-14T19:43:47Z","created_at":"2026-02-14T19:37:13Z","topics":[],"owner":{"login":"jenniferreire26","html_url":"https://github.com/jenniferreire26"},"clone_url":"https://github.com/jenniferreire26/CVE-2026-21533.git","has_code":false,"age_days":131},{"id":1177251857,"name":"CVE-2026-21533_Scanner.py","full_name":"fevar54/CVE-2026-21533_Scanner.py","html_url":"https://github.com/fevar54/CVE-2026-21533_Scanner.py","description":"Este repositorio contiene una herramienta de **detección** para la vulnerabilidad CVE-2026-21533, una falla de gestión de privilegios en los Servicios de Escritorio Remoto (RDS) de Windows que podría permitir a un atacante local elevar sus privilegios a `SYSTEM`.","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-06-15T01:45:52Z","pushed_at":"2026-03-09T21:10:53Z","created_at":"2026-03-09T21:07:38Z","topics":[],"owner":{"login":"fevar54","html_url":"https://github.com/fevar54"},"clone_url":"https://github.com/fevar54/CVE-2026-21533_Scanner.py.git","has_code":true,"age_days":107},{"id":1155380789,"name":"RDPVulnarableCheck","full_name":"Pairs34/RDPVulnarableCheck","html_url":"https://github.com/Pairs34/RDPVulnarableCheck","description":"CVE-2026-21533 Zaafiyet tarama aracı","stargazers_count":1,"forks_count":0,"language":"HTML","updated_at":"2026-02-25T07:27:09Z","pushed_at":"2026-02-11T12:58:15Z","created_at":"2026-02-11T12:58:00Z","topics":[],"owner":{"login":"Pairs34","html_url":"https://github.com/Pairs34"},"clone_url":"https://github.com/Pairs34/RDPVulnarableCheck.git","has_code":true,"age_days":134}]},{"cve_id":"CVE-2026-21627","repositories":[{"id":1167730381,"name":"CVE-2026-21627---Tassos-Novarain-Framework-plg_system_nrframework-Exploit---Joomla","full_name":"yallasec/CVE-2026-21627---Tassos-Novarain-Framework-plg_system_nrframework-Exploit---Joomla","html_url":"https://github.com/yallasec/CVE-2026-21627---Tassos-Novarain-Framework-plg_system_nrframework-Exploit---Joomla","description":"Vulnerability: Unauthenticated Arbitrary PHP File Inclusion via ajaxTaskInclude()","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-02-26T16:15:21Z","pushed_at":"2026-02-26T16:15:15Z","created_at":"2026-02-26T16:10:15Z","topics":[],"owner":{"login":"yallasec","html_url":"https://github.com/yallasec"},"clone_url":"https://github.com/yallasec/CVE-2026-21627---Tassos-Novarain-Framework-plg_system_nrframework-Exploit---Joomla.git","has_code":true,"age_days":119}]},{"cve_id":"CVE-2026-21628","repositories":[{"id":1199641361,"name":"CVE-2026-21628-POC","full_name":"webshellseo8/CVE-2026-21628-POC","html_url":"https://github.com/webshellseo8/CVE-2026-21628-POC","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-02T15:06:39Z","pushed_at":"2026-04-02T15:06:31Z","created_at":"2026-04-02T14:56:08Z","topics":[],"owner":{"login":"webshellseo8","html_url":"https://github.com/webshellseo8"},"clone_url":"https://github.com/webshellseo8/CVE-2026-21628-POC.git","has_code":true,"age_days":84}]},{"cve_id":"CVE-2026-21636","repositories":[{"id":1222876299,"name":"CVE-2026-21636","full_name":"Pauldechassey/CVE-2026-21636","html_url":"https://github.com/Pauldechassey/CVE-2026-21636","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-28T16:33:58Z","pushed_at":"2026-04-28T16:33:18Z","created_at":"2026-04-27T19:48:39Z","topics":[],"owner":{"login":"Pauldechassey","html_url":"https://github.com/Pauldechassey"},"clone_url":"https://github.com/Pauldechassey/CVE-2026-21636.git","has_code":true,"age_days":59}]},{"cve_id":"CVE-2026-21643","repositories":[{"id":1194753078,"name":"CVE-2026-21643","full_name":"0xBlackash/CVE-2026-21643","html_url":"https://github.com/0xBlackash/CVE-2026-21643","description":"CVE-2026-21643","stargazers_count":18,"forks_count":7,"language":"Python","updated_at":"2026-06-23T06:19:40Z","pushed_at":"2026-03-28T19:43:38Z","created_at":"2026-03-28T19:09:38Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-21643.git","has_code":true,"age_days":89},{"id":1193962390,"name":"CVE-2026-21643","full_name":"alirezac0/CVE-2026-21643","html_url":"https://github.com/alirezac0/CVE-2026-21643","description":"Python PoC and Nuclei template for CVE-2026-21643 (Pre-Authentication SQL Injection in FortiClient EMS 7.4.4)","stargazers_count":5,"forks_count":0,"language":"Python","updated_at":"2026-06-09T12:37:16Z","pushed_at":"2026-03-27T19:20:04Z","created_at":"2026-03-27T19:11:15Z","topics":[],"owner":{"login":"alirezac0","html_url":"https://github.com/alirezac0"},"clone_url":"https://github.com/alirezac0/CVE-2026-21643.git","has_code":true,"age_days":90}]},{"cve_id":"CVE-2026-21710","repositories":[{"id":1198107442,"name":"CVE-2026-21710","full_name":"open-flaw/CVE-2026-21710","html_url":"https://github.com/open-flaw/CVE-2026-21710","description":"","stargazers_count":0,"forks_count":0,"language":"JavaScript","updated_at":"2026-05-16T13:46:25Z","pushed_at":"2026-04-01T06:02:44Z","created_at":"2026-04-01T06:02:42Z","topics":[],"owner":{"login":"open-flaw","html_url":"https://github.com/open-flaw"},"clone_url":"https://github.com/open-flaw/CVE-2026-21710.git","has_code":true,"age_days":85}]},{"cve_id":"CVE-2026-21717","repositories":[{"id":1196825614,"name":"CVE-2026-21717","full_name":"open-flaw/CVE-2026-21717","html_url":"https://github.com/open-flaw/CVE-2026-21717","description":"","stargazers_count":0,"forks_count":0,"language":"Zig","updated_at":"2026-05-16T13:43:55Z","pushed_at":"2026-04-07T08:35:26Z","created_at":"2026-03-31T04:36:44Z","topics":[],"owner":{"login":"open-flaw","html_url":"https://github.com/open-flaw"},"clone_url":"https://github.com/open-flaw/CVE-2026-21717.git","has_code":true,"age_days":86}]},{"cve_id":"CVE-2026-21721","repositories":[{"id":1148860220,"name":"Exploit-LPE-CVE-2026-21721","full_name":"Leonideath/Exploit-LPE-CVE-2026-21721","html_url":"https://github.com/Leonideath/Exploit-LPE-CVE-2026-21721","description":"Эксплоит на CVE-2026-21721","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-02-04T07:33:35Z","pushed_at":"2026-02-04T05:38:16Z","created_at":"2026-02-03T13:01:28Z","topics":[],"owner":{"login":"Leonideath","html_url":"https://github.com/Leonideath"},"clone_url":"https://github.com/Leonideath/Exploit-LPE-CVE-2026-21721.git","has_code":true,"age_days":142}]},{"cve_id":"CVE-2026-21852","repositories":[{"id":1168062651,"name":"CVE-2026-21852-PoC","full_name":"atiilla/CVE-2026-21852-PoC","html_url":"https://github.com/atiilla/CVE-2026-21852-PoC","description":"","stargazers_count":23,"forks_count":9,"language":"Python","updated_at":"2026-06-21T08:08:00Z","pushed_at":"2026-02-27T05:12:39Z","created_at":"2026-02-27T01:13:21Z","topics":[],"owner":{"login":"atiilla","html_url":"https://github.com/atiilla"},"clone_url":"https://github.com/atiilla/CVE-2026-21852-PoC.git","has_code":true,"age_days":118},{"id":1275983966,"name":"dotclaude-security","full_name":"Perufitlife/dotclaude-security","html_url":"https://github.com/Perufitlife/dotclaude-security","description":"Scan a repo's .claude/ config (settings.json hooks, MCP servers, env, allowed-tools) for the RCE \u0026 API-key-exfiltration footguns (CVE-2025-59536, CVE-2026-21852) that fire when you clone+open an untrusted repository. Static, zero-dep, local-first.","stargazers_count":0,"forks_count":0,"language":"JavaScript","updated_at":"2026-06-21T12:50:09Z","pushed_at":"2026-06-21T12:50:05Z","created_at":"2026-06-21T11:50:53Z","topics":["ai-agents","claude","claude-code","cve","devsecops","mcp","rce","security","static-analysis","supply-chain-security"],"owner":{"login":"Perufitlife","html_url":"https://github.com/Perufitlife"},"clone_url":"https://github.com/Perufitlife/dotclaude-security.git","has_code":true,"age_days":4},{"id":1168767224,"name":"CVE-Archive","full_name":"M0broot/CVE-Archive","html_url":"https://github.com/M0broot/CVE-Archive","description":"Claude Code Vulnerability [CVE-2026-21852]","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-02-27T19:18:12Z","pushed_at":"2026-02-27T19:18:12Z","created_at":"2026-02-27T19:18:11Z","topics":[],"owner":{"login":"M0broot","html_url":"https://github.com/M0broot"},"clone_url":"https://github.com/M0broot/CVE-Archive.git","has_code":false,"age_days":118},{"id":1215681296,"name":"ai-ide-config-guard","full_name":"TreRB/ai-ide-config-guard","html_url":"https://github.com/TreRB/ai-ide-config-guard","description":"Scan a repo for AI-IDE config files that can trigger RCE via Claude Code hooks, Cursor rules, MCP auto-registration. Detects CVE-2025-59536, CVE-2026-21852, CVE-2026-30615 + Pillar Rules File Backdoor patterns.","stargazers_count":0,"forks_count":0,"language":"JavaScript","updated_at":"2026-04-20T06:41:08Z","pushed_at":"2026-04-20T06:41:05Z","created_at":"2026-04-20T06:41:02Z","topics":[],"owner":{"login":"TreRB","html_url":"https://github.com/TreRB"},"clone_url":"https://github.com/TreRB/ai-ide-config-guard.git","has_code":true,"age_days":66}]},{"cve_id":"CVE-2026-21857","repositories":[{"id":1208065228,"name":"CVE-2026-21857","full_name":"lukasz-rybak/CVE-2026-21857","html_url":"https://github.com/lukasz-rybak/CVE-2026-21857","description":"CVE-2026-21857 - Redaxo has Path Traversal in Backup Addon Leading to Arbitrary File Read","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-11T19:22:19Z","pushed_at":"2026-04-11T19:22:13Z","created_at":"2026-04-11T19:14:34Z","topics":[],"owner":{"login":"lukasz-rybak","html_url":"https://github.com/lukasz-rybak"},"clone_url":"https://github.com/lukasz-rybak/CVE-2026-21857.git","has_code":false,"age_days":75}]},{"cve_id":"CVE-2026-21858","repositories":[{"id":1129928627,"name":"CVE-2026-21858","full_name":"Chocapikk/CVE-2026-21858","html_url":"https://github.com/Chocapikk/CVE-2026-21858","description":"n8n Ni8mare - Unauthenticated Arbitrary File Read to RCE Chain (CVSS 10.0)","stargazers_count":258,"forks_count":50,"language":"Python","updated_at":"2026-06-24T14:21:45Z","pushed_at":"2026-03-26T13:11:41Z","created_at":"2026-01-07T19:32:42Z","topics":["cve-2026-21858","exploit","n8n","ni8mare","poc","rce","security","vulnerability"],"owner":{"login":"Chocapikk","html_url":"https://github.com/Chocapikk"},"clone_url":"https://github.com/Chocapikk/CVE-2026-21858.git","has_code":true,"age_days":169},{"id":1138389383,"name":"CVE-2026-21858","full_name":"SystemVll/CVE-2026-21858","html_url":"https://github.com/SystemVll/CVE-2026-21858","description":"Proof of Concept: CVE-2026-21858 is vulnerability on n8n where unauthenticated remote attackers can access sensitive files.","stargazers_count":3,"forks_count":0,"language":"Python","updated_at":"2026-06-23T21:20:41Z","pushed_at":"2026-06-23T21:20:36Z","created_at":"2026-01-20T15:59:48Z","topics":["cve","cve-2026-21858","exploit","n8n","n8n-exploits","nuclei","poc","vuln"],"owner":{"login":"SystemVll","html_url":"https://github.com/SystemVll"},"clone_url":"https://github.com/SystemVll/CVE-2026-21858.git","has_code":true,"age_days":156},{"id":1132846567,"name":"Ni8mare","full_name":"cropnet/Ni8mare","html_url":"https://github.com/cropnet/Ni8mare","description":"Comprehensive vulnerability detection tool for n8n workflow automation instances. Detects the critical CVE-2026-21858 vulnerability (CVSS 10.0) without performing any exploitation.","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-05-31T10:03:12Z","pushed_at":"2026-01-12T16:20:05Z","created_at":"2026-01-12T14:32:04Z","topics":["cve-2026-21858"],"owner":{"login":"cropnet","html_url":"https://github.com/cropnet"},"clone_url":"https://github.com/cropnet/Ni8mare.git","has_code":true,"age_days":164},{"id":1138220864,"name":"CVE-2026-21858","full_name":"sec-dojo-com/CVE-2026-21858","html_url":"https://github.com/sec-dojo-com/CVE-2026-21858","description":"","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-03-12T11:23:06Z","pushed_at":"2026-01-20T18:27:16Z","created_at":"2026-01-20T11:50:32Z","topics":[],"owner":{"login":"sec-dojo-com","html_url":"https://github.com/sec-dojo-com"},"clone_url":"https://github.com/sec-dojo-com/CVE-2026-21858.git","has_code":true,"age_days":156},{"id":1154962690,"name":"CVE-2026-21858","full_name":"EQSTLab/CVE-2026-21858","html_url":"https://github.com/EQSTLab/CVE-2026-21858","description":"Ni8mare, n8n RCE","stargazers_count":1,"forks_count":1,"language":"Python","updated_at":"2026-05-20T07:30:11Z","pushed_at":"2026-05-20T06:33:33Z","created_at":"2026-02-11T01:01:03Z","topics":[],"owner":{"login":"EQSTLab","html_url":"https://github.com/EQSTLab"},"clone_url":"https://github.com/EQSTLab/CVE-2026-21858.git","has_code":true,"age_days":134},{"id":1164971168,"name":"CVE-2026-21858","full_name":"0xBlackash/CVE-2026-21858","html_url":"https://github.com/0xBlackash/CVE-2026-21858","description":"CVE-2026-21858","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-03-31T07:46:40Z","pushed_at":"2026-03-05T21:21:04Z","created_at":"2026-02-23T17:27:12Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-21858.git","has_code":false,"age_days":122},{"id":1276093141,"name":"cve-2026-21858","full_name":"Fomovet/cve-2026-21858","html_url":"https://github.com/Fomovet/cve-2026-21858","description":"POC for CVE-2026-21858","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-21T14:31:42Z","pushed_at":"2026-06-21T14:31:39Z","created_at":"2026-06-21T14:31:33Z","topics":[],"owner":{"login":"Fomovet","html_url":"https://github.com/Fomovet"},"clone_url":"https://github.com/Fomovet/cve-2026-21858.git","has_code":true,"age_days":4},{"id":1146309368,"name":"CVE-2026-21858","full_name":"Alhakim88/CVE-2026-21858","html_url":"https://github.com/Alhakim88/CVE-2026-21858","description":"Hack","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-01-30T22:40:24Z","pushed_at":"2026-01-30T22:40:21Z","created_at":"2026-01-30T22:38:06Z","topics":[],"owner":{"login":"Alhakim88","html_url":"https://github.com/Alhakim88"},"clone_url":"https://github.com/Alhakim88/CVE-2026-21858.git","has_code":true,"age_days":145},{"id":1136114565,"name":"SASTRA-ADI-WIGUNA-CVE-2026-21858-Holistic-Audit","full_name":"sastraadiwiguna-purpleeliteteaming/SASTRA-ADI-WIGUNA-CVE-2026-21858-Holistic-Audit","html_url":"https://github.com/sastraadiwiguna-purpleeliteteaming/SASTRA-ADI-WIGUNA-CVE-2026-21858-Holistic-Audit","description":"SASTRA-ADI-WIGUNA-CVE-2026-21858-Holistic-Audit","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-01-18T17:49:57Z","pushed_at":"2026-01-18T10:16:50Z","created_at":"2026-01-17T04:57:53Z","topics":[],"owner":{"login":"sastraadiwiguna-purpleeliteteaming","html_url":"https://github.com/sastraadiwiguna-purpleeliteteaming"},"clone_url":"https://github.com/sastraadiwiguna-purpleeliteteaming/SASTRA-ADI-WIGUNA-CVE-2026-21858-Holistic-Audit.git","has_code":false,"age_days":159},{"id":1144045624,"name":"Ashwesker-CVE-2026-21858","full_name":"bgarz929/Ashwesker-CVE-2026-21858","html_url":"https://github.com/bgarz929/Ashwesker-CVE-2026-21858","description":"CVE-2026-21858","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-01-28T08:17:42Z","pushed_at":"2026-01-07T21:56:15Z","created_at":"2026-01-28T08:17:42Z","topics":[],"owner":{"login":"bgarz929","html_url":"https://github.com/bgarz929"},"clone_url":"https://github.com/bgarz929/Ashwesker-CVE-2026-21858.git","has_code":false,"age_days":148},{"id":1180571766,"name":"Ni8mare-CVE-2026-21858","full_name":"Yati2/Ni8mare-CVE-2026-21858","html_url":"https://github.com/Yati2/Ni8mare-CVE-2026-21858","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-13T07:13:39Z","pushed_at":"2026-03-13T07:13:19Z","created_at":"2026-03-13T07:13:19Z","topics":[],"owner":{"login":"Yati2","html_url":"https://github.com/Yati2"},"clone_url":"https://github.com/Yati2/Ni8mare-CVE-2026-21858.git","has_code":false,"age_days":104},{"id":1212846415,"name":"PoC-CVE-2026-21858","full_name":"masterwok/PoC-CVE-2026-21858","html_url":"https://github.com/masterwok/PoC-CVE-2026-21858","description":"Proof-of-concept exploit for CVE-2026-21858 (ni8mare) impacting n8n versions \u003c 1.121.0","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-16T20:31:01Z","pushed_at":"2026-04-16T20:25:05Z","created_at":"2026-04-16T19:42:25Z","topics":[],"owner":{"login":"masterwok","html_url":"https://github.com/masterwok"},"clone_url":"https://github.com/masterwok/PoC-CVE-2026-21858.git","has_code":true,"age_days":70},{"id":1205871437,"name":"CVE-2026-21858","full_name":"kaleth4/CVE-2026-21858","html_url":"https://github.com/kaleth4/CVE-2026-21858","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-09T11:12:01Z","pushed_at":"2026-04-09T11:11:52Z","created_at":"2026-04-09T11:09:12Z","topics":[],"owner":{"login":"kaleth4","html_url":"https://github.com/kaleth4"},"clone_url":"https://github.com/kaleth4/CVE-2026-21858.git","has_code":true,"age_days":77},{"id":1232709196,"name":"Research-CVE-2026-21858","full_name":"Bannt08/Research-CVE-2026-21858","html_url":"https://github.com/Bannt08/Research-CVE-2026-21858","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-08T08:17:48Z","pushed_at":"2026-05-08T08:17:44Z","created_at":"2026-05-08T07:32:38Z","topics":[],"owner":{"login":"Bannt08","html_url":"https://github.com/Bannt08"},"clone_url":"https://github.com/Bannt08/Research-CVE-2026-21858.git","has_code":false,"age_days":48}]},{"cve_id":"CVE-2026-21876","repositories":[{"id":1141694461,"name":"CVE-2026-21876","full_name":"Mefhika120/CVE-2026-21876","html_url":"https://github.com/Mefhika120/CVE-2026-21876","description":"CVE-2026-21876 OWASP ModSecurity CRS WAF bypass (docker container + minimal PoC).","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-01-25T08:57:35Z","pushed_at":"2026-01-09T14:15:47Z","created_at":"2026-01-25T08:57:34Z","topics":[],"owner":{"login":"Mefhika120","html_url":"https://github.com/Mefhika120"},"clone_url":"https://github.com/Mefhika120/CVE-2026-21876.git","has_code":false,"age_days":151},{"id":1218061497,"name":"CVE-2026-21876","full_name":"CVEs-Labs/CVE-2026-21876","html_url":"https://github.com/CVEs-Labs/CVE-2026-21876","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-22T14:05:40Z","pushed_at":"2026-04-22T14:05:35Z","created_at":"2026-04-22T13:48:44Z","topics":[],"owner":{"login":"CVEs-Labs","html_url":"https://github.com/CVEs-Labs"},"clone_url":"https://github.com/CVEs-Labs/CVE-2026-21876.git","has_code":true,"age_days":64},{"id":1261202872,"name":"CVE-2026-21876","full_name":"daytriftnewgen/CVE-2026-21876","html_url":"https://github.com/daytriftnewgen/CVE-2026-21876","description":"CVE-2026-21876 PoC: WAF charset bypass (Flask, ASP.NET and Spring Boot stands)","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-19T09:08:34Z","pushed_at":"2026-06-19T09:08:30Z","created_at":"2026-06-06T11:26:40Z","topics":[],"owner":{"login":"daytriftnewgen","html_url":"https://github.com/daytriftnewgen"},"clone_url":"https://github.com/daytriftnewgen/CVE-2026-21876.git","has_code":true,"age_days":19}]},{"cve_id":"CVE-2026-21877","repositories":[{"id":1221606358,"name":"cve-2026-21877-rce","full_name":"monkeontheroof/cve-2026-21877-rce","html_url":"https://github.com/monkeontheroof/cve-2026-21877-rce","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-26T13:17:47Z","pushed_at":"2026-04-26T13:17:44Z","created_at":"2026-04-26T12:52:28Z","topics":[],"owner":{"login":"monkeontheroof","html_url":"https://github.com/monkeontheroof"},"clone_url":"https://github.com/monkeontheroof/cve-2026-21877-rce.git","has_code":false,"age_days":60},{"id":1218041756,"name":"CVE-2026-21877","full_name":"CVEs-Labs/CVE-2026-21877","html_url":"https://github.com/CVEs-Labs/CVE-2026-21877","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-22T13:46:34Z","pushed_at":"2026-04-22T13:45:38Z","created_at":"2026-04-22T13:26:34Z","topics":[],"owner":{"login":"CVEs-Labs","html_url":"https://github.com/CVEs-Labs"},"clone_url":"https://github.com/CVEs-Labs/CVE-2026-21877.git","has_code":true,"age_days":64}]},{"cve_id":"CVE-2026-21902","repositories":[{"id":1169211294,"name":"watchTowr-vs-JunosEvolved-CVE-2026-21902","full_name":"watchtowrlabs/watchTowr-vs-JunosEvolved-CVE-2026-21902","html_url":"https://github.com/watchtowrlabs/watchTowr-vs-JunosEvolved-CVE-2026-21902","description":"","stargazers_count":4,"forks_count":0,"language":"Python","updated_at":"2026-03-19T13:02:48Z","pushed_at":"2026-03-03T11:04:40Z","created_at":"2026-02-28T10:43:32Z","topics":[],"owner":{"login":"watchtowrlabs","html_url":"https://github.com/watchtowrlabs"},"clone_url":"https://github.com/watchtowrlabs/watchTowr-vs-JunosEvolved-CVE-2026-21902.git","has_code":true,"age_days":117}]},{"cve_id":"CVE-2026-21962","repositories":[{"id":1139515227,"name":"CVE-2026-21962","full_name":"samael0x4/CVE-2026-21962","html_url":"https://github.com/samael0x4/CVE-2026-21962","description":"Unauthenticated vulnerability that may allow remote attackers to compromise confidentiality and integrity, potentially leading to full system compromise.","stargazers_count":4,"forks_count":2,"language":"Python","updated_at":"2026-04-18T07:36:14Z","pushed_at":"2026-01-22T05:02:28Z","created_at":"2026-01-22T03:59:25Z","topics":[],"owner":{"login":"samael0x4","html_url":"https://github.com/samael0x4"},"clone_url":"https://github.com/samael0x4/CVE-2026-21962.git","has_code":true,"age_days":154},{"id":1139605716,"name":"Ashwesker-CVE-2026-21962","full_name":"ibreakthingsforaliving/Ashwesker-CVE-2026-21962","html_url":"https://github.com/ibreakthingsforaliving/Ashwesker-CVE-2026-21962","description":"CVE-2026-21962","stargazers_count":4,"forks_count":7,"language":"","updated_at":"2026-06-22T11:04:55Z","pushed_at":"2026-01-21T20:06:39Z","created_at":"2026-01-22T07:10:59Z","topics":[],"owner":{"login":"ibreakthingsforaliving","html_url":"https://github.com/ibreakthingsforaliving"},"clone_url":"https://github.com/ibreakthingsforaliving/Ashwesker-CVE-2026-21962.git","has_code":false,"age_days":154},{"id":1154023167,"name":"CVE-2026-21962-Oracle-HTTP-Server-WebLogic-Proxy-Plug-in-Critical-","full_name":"George0Papasotiriou/CVE-2026-21962-Oracle-HTTP-Server-WebLogic-Proxy-Plug-in-Critical-","html_url":"https://github.com/George0Papasotiriou/CVE-2026-21962-Oracle-HTTP-Server-WebLogic-Proxy-Plug-in-Critical-","description":"Oracle Fusion Middleware Oracle HTTP Server / WebLogic Server Proxy Plug-in has an easily exploitable, unauthenticated, network-reachable flaw allowing compromise over HTTP. Affected supported versions include 12.2.1.4.0, 14.1.1.0.0, 14.1.2.0.0.","stargazers_count":3,"forks_count":0,"language":"Python","updated_at":"2026-04-18T07:36:29Z","pushed_at":"2026-02-10T00:08:17Z","created_at":"2026-02-09T23:43:42Z","topics":[],"owner":{"login":"George0Papasotiriou","html_url":"https://github.com/George0Papasotiriou"},"clone_url":"https://github.com/George0Papasotiriou/CVE-2026-21962-Oracle-HTTP-Server-WebLogic-Proxy-Plug-in-Critical-.git","has_code":true,"age_days":135},{"id":1142344436,"name":"CVE-2026-21962","full_name":"ThumpBo/CVE-2026-21962","html_url":"https://github.com/ThumpBo/CVE-2026-21962","description":"CVE-2026-21962-EXP","stargazers_count":2,"forks_count":3,"language":"Python","updated_at":"2026-06-22T11:04:56Z","pushed_at":"2026-01-26T09:49:45Z","created_at":"2026-01-26T09:33:54Z","topics":[],"owner":{"login":"ThumpBo","html_url":"https://github.com/ThumpBo"},"clone_url":"https://github.com/ThumpBo/CVE-2026-21962.git","has_code":true,"age_days":150},{"id":1187765663,"name":"CVE-2026-21962_Java_GUI_Exploit_Tool","full_name":"naozibuhao/CVE-2026-21962_Java_GUI_Exploit_Tool","html_url":"https://github.com/naozibuhao/CVE-2026-21962_Java_GUI_Exploit_Tool","description":"","stargazers_count":1,"forks_count":0,"language":"Java","updated_at":"2026-04-08T08:49:29Z","pushed_at":"2026-03-21T06:06:26Z","created_at":"2026-03-21T06:03:22Z","topics":[],"owner":{"login":"naozibuhao","html_url":"https://github.com/naozibuhao"},"clone_url":"https://github.com/naozibuhao/CVE-2026-21962_Java_GUI_Exploit_Tool.git","has_code":true,"age_days":96},{"id":1220151992,"name":"CVE-2026-21962","full_name":"0xBlackash/CVE-2026-21962","html_url":"https://github.com/0xBlackash/CVE-2026-21962","description":"CVE-2026-21962","stargazers_count":1,"forks_count":1,"language":"Python","updated_at":"2026-04-26T02:56:53Z","pushed_at":"2026-04-24T16:00:56Z","created_at":"2026-04-24T15:45:49Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-21962.git","has_code":true,"age_days":62},{"id":1148676646,"name":"CVE-2026-21962-o","full_name":"gregk4sec/CVE-2026-21962-o","html_url":"https://github.com/gregk4sec/CVE-2026-21962-o","description":"CVE Finder","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-08T07:00:03Z","pushed_at":"2026-02-03T08:43:21Z","created_at":"2026-02-03T08:35:22Z","topics":[],"owner":{"login":"gregk4sec","html_url":"https://github.com/gregk4sec"},"clone_url":"https://github.com/gregk4sec/CVE-2026-21962-o.git","has_code":false,"age_days":142},{"id":1175798664,"name":"cve-2026-21962","full_name":"gregk4sec/cve-2026-21962","html_url":"https://github.com/gregk4sec/cve-2026-21962","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-09T05:04:42Z","pushed_at":"2026-03-09T05:04:39Z","created_at":"2026-03-08T07:20:13Z","topics":[],"owner":{"login":"gregk4sec","html_url":"https://github.com/gregk4sec"},"clone_url":"https://github.com/gregk4sec/cve-2026-21962.git","has_code":false,"age_days":109}]},{"cve_id":"CVE-2026-21986","repositories":[{"id":1222900009,"name":"CVE-2026-21986-VirtualBox-DoS","full_name":"MohaBars/CVE-2026-21986-VirtualBox-DoS","html_url":"https://github.com/MohaBars/CVE-2026-21986-VirtualBox-DoS","description":"CVE-2026-21986: VirtualBox Shared Folders kernel memory exhaustion DoS","stargazers_count":0,"forks_count":0,"language":"C++","updated_at":"2026-04-29T10:30:24Z","pushed_at":"2026-04-29T10:30:21Z","created_at":"2026-04-27T20:21:54Z","topics":[],"owner":{"login":"MohaBars","html_url":"https://github.com/MohaBars"},"clone_url":"https://github.com/MohaBars/CVE-2026-21986-VirtualBox-DoS.git","has_code":true,"age_days":58}]},{"cve_id":"CVE-2026-21994","repositories":[{"id":1188086620,"name":"CVE-2026-21994","full_name":"g0w6y/CVE-2026-21994","html_url":"https://github.com/g0w6y/CVE-2026-21994","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-21T16:22:03Z","pushed_at":"2026-03-21T16:22:00Z","created_at":"2026-03-21T15:47:53Z","topics":[],"owner":{"login":"g0w6y","html_url":"https://github.com/g0w6y"},"clone_url":"https://github.com/g0w6y/CVE-2026-21994.git","has_code":false,"age_days":96}]},{"cve_id":"CVE-2026-22038","repositories":[{"id":1220610272,"name":"CVE-2026-22038","full_name":"sivaadityacoder/CVE-2026-22038","html_url":"https://github.com/sivaadityacoder/CVE-2026-22038","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-25T07:41:45Z","pushed_at":"2026-04-25T07:41:40Z","created_at":"2026-04-25T05:14:24Z","topics":[],"owner":{"login":"sivaadityacoder","html_url":"https://github.com/sivaadityacoder"},"clone_url":"https://github.com/sivaadityacoder/CVE-2026-22038.git","has_code":false,"age_days":61}]},{"cve_id":"CVE-2026-22187","repositories":[{"id":1154021361,"name":"CVE-2026-22187-Bio-Formats-unsafe-Java-deserialization-via-.bfmemo","full_name":"George0Papasotiriou/CVE-2026-22187-Bio-Formats-unsafe-Java-deserialization-via-.bfmemo","html_url":"https://github.com/George0Papasotiriou/CVE-2026-22187-Bio-Formats-unsafe-Java-deserialization-via-.bfmemo","description":"Bio-Formats ≤ 8.3.0 performs unsafe Java deserialization of attacker-controlled .bfmemo cache files during image processing; crafted .bfmemo can trigger deserialization of untrusted data (DoS/logic manipulation; potentially RCE if gadget chains exist).","stargazers_count":1,"forks_count":0,"language":"Java","updated_at":"2026-02-10T00:09:23Z","pushed_at":"2026-02-09T23:41:22Z","created_at":"2026-02-09T23:39:31Z","topics":[],"owner":{"login":"George0Papasotiriou","html_url":"https://github.com/George0Papasotiriou"},"clone_url":"https://github.com/George0Papasotiriou/CVE-2026-22187-Bio-Formats-unsafe-Java-deserialization-via-.bfmemo.git","has_code":true,"age_days":135}]},{"cve_id":"CVE-2026-22200","repositories":[{"id":1139255567,"name":"CVE-2026-22200","full_name":"horizon3ai/CVE-2026-22200","html_url":"https://github.com/horizon3ai/CVE-2026-22200","description":"CVE-2026-22200: Arbitrary file read + CNEXT RCE in osTicket","stargazers_count":8,"forks_count":1,"language":"Python","updated_at":"2026-02-08T20:30:58Z","pushed_at":"2026-01-22T15:55:17Z","created_at":"2026-01-21T18:13:57Z","topics":[],"owner":{"login":"horizon3ai","html_url":"https://github.com/horizon3ai"},"clone_url":"https://github.com/horizon3ai/CVE-2026-22200.git","has_code":true,"age_days":155},{"id":1198098445,"name":"CVE-2026-22200","full_name":"Remnant-DB/CVE-2026-22200","html_url":"https://github.com/Remnant-DB/CVE-2026-22200","description":"osTicket 1.18.1 Environment (CVE-2026-22200) Lab","stargazers_count":0,"forks_count":0,"language":"Dockerfile","updated_at":"2026-04-01T05:52:04Z","pushed_at":"2026-04-01T05:52:00Z","created_at":"2026-04-01T05:51:23Z","topics":[],"owner":{"login":"Remnant-DB","html_url":"https://github.com/Remnant-DB"},"clone_url":"https://github.com/Remnant-DB/CVE-2026-22200.git","has_code":true,"age_days":85}]},{"cve_id":"CVE-2026-22241","repositories":[{"id":1132749218,"name":"CVE-2026-22241","full_name":"Ashifcoder/CVE-2026-22241","html_url":"https://github.com/Ashifcoder/CVE-2026-22241","description":"CVE-2026-22241 Exploit for GUnet Open eClass Unrestricted File Upload Leads to Remote Code Execution (RCE)","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-02-25T10:38:23Z","pushed_at":"2026-01-12T18:56:48Z","created_at":"2026-01-12T11:55:53Z","topics":["cve","cve-2026-22241"],"owner":{"login":"Ashifcoder","html_url":"https://github.com/Ashifcoder"},"clone_url":"https://github.com/Ashifcoder/CVE-2026-22241.git","has_code":true,"age_days":164},{"id":1214646923,"name":"CVE-2026-22241","full_name":"0xBlackash/CVE-2026-22241","html_url":"https://github.com/0xBlackash/CVE-2026-22241","description":"CVE-2026-22241","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-04-21T19:11:08Z","pushed_at":"2026-04-18T21:34:03Z","created_at":"2026-04-18T21:23:19Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-22241.git","has_code":false,"age_days":67},{"id":1161143065,"name":"CVE-2026-22241","full_name":"CVEs-Labs/CVE-2026-22241","html_url":"https://github.com/CVEs-Labs/CVE-2026-22241","description":"Lab Environment for CVE-2026-22241","stargazers_count":0,"forks_count":0,"language":"PHP","updated_at":"2026-04-18T17:37:21Z","pushed_at":"2026-04-18T17:37:17Z","created_at":"2026-02-18T19:29:50Z","topics":[],"owner":{"login":"CVEs-Labs","html_url":"https://github.com/CVEs-Labs"},"clone_url":"https://github.com/CVEs-Labs/CVE-2026-22241.git","has_code":true,"age_days":127}]},{"cve_id":"CVE-2026-22243","repositories":[{"id":1208064651,"name":"CVE-2026-22243","full_name":"lukasz-rybak/CVE-2026-22243","html_url":"https://github.com/lukasz-rybak/CVE-2026-22243","description":"CVE-2026-22243 - EGroupware has SQL Injection in Nextmatch Filter Processing","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-11T19:21:45Z","pushed_at":"2026-04-11T19:21:36Z","created_at":"2026-04-11T19:13:32Z","topics":[],"owner":{"login":"lukasz-rybak","html_url":"https://github.com/lukasz-rybak"},"clone_url":"https://github.com/lukasz-rybak/CVE-2026-22243.git","has_code":false,"age_days":75}]},{"cve_id":"CVE-2026-22356","repositories":[{"id":1268036935,"name":"CVE-2026-22356","full_name":"xxconi/CVE-2026-22356","html_url":"https://github.com/xxconi/CVE-2026-22356","description":"CVE-2026-22356: Jetpack CRM Path Traversal Vulnerability and RCE","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-13T04:54:33Z","pushed_at":"2026-06-13T04:54:30Z","created_at":"2026-06-13T04:42:31Z","topics":[],"owner":{"login":"xxconi","html_url":"https://github.com/xxconi"},"clone_url":"https://github.com/xxconi/CVE-2026-22356.git","has_code":false,"age_days":12}]},{"cve_id":"CVE-2026-22444","repositories":[{"id":1140237972,"name":"CVE-2026-22444","full_name":"bfdfhdsfdd-crypto/CVE-2026-22444","html_url":"https://github.com/bfdfhdsfdd-crypto/CVE-2026-22444","description":"CVE-2026-22444 是一个影响 Apache Solr 的安全漏洞，于 2026 年 1 月 20 日左右公开披露。该漏洞源于 Apache Solr 的 \"create core\" API 在某些 API 参数上的输入验证不足（CWE-20: Improper Input Validation），允许攻击者在 Solr 运行于 \"standalone\" 模式时绕过安全规则，可能导致数据泄露、远程代码执行 (RCE) 或 NTLM 哈希披露。","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-23T02:44:37Z","pushed_at":"2026-01-23T02:44:32Z","created_at":"2026-01-23T02:18:02Z","topics":[],"owner":{"login":"bfdfhdsfdd-crypto","html_url":"https://github.com/bfdfhdsfdd-crypto"},"clone_url":"https://github.com/bfdfhdsfdd-crypto/CVE-2026-22444.git","has_code":true,"age_days":153},{"id":1140010611,"name":"CVE-2026-22444","full_name":"dptsec/CVE-2026-22444","html_url":"https://github.com/dptsec/CVE-2026-22444","description":"PoC for CVE-2026-22444: Apache Solr 8.6-9.10.0 Windows standalone mode RCE/NTLM hash disclosure","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-22T18:00:35Z","pushed_at":"2026-01-22T18:00:20Z","created_at":"2026-01-22T17:55:17Z","topics":[],"owner":{"login":"dptsec","html_url":"https://github.com/dptsec"},"clone_url":"https://github.com/dptsec/CVE-2026-22444.git","has_code":true,"age_days":154}]},{"cve_id":"CVE-2026-22553","repositories":[{"id":1238703212,"name":"CVE-2026-22553-InSAT-MasterSCADA-BUK-TS-MMadmServ","full_name":"mbanyamer/CVE-2026-22553-InSAT-MasterSCADA-BUK-TS-MMadmServ","html_url":"https://github.com/mbanyamer/CVE-2026-22553-InSAT-MasterSCADA-BUK-TS-MMadmServ","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-14T11:32:31Z","pushed_at":"2026-05-14T11:32:28Z","created_at":"2026-05-14T11:20:43Z","topics":[],"owner":{"login":"mbanyamer","html_url":"https://github.com/mbanyamer"},"clone_url":"https://github.com/mbanyamer/CVE-2026-22553-InSAT-MasterSCADA-BUK-TS-MMadmServ.git","has_code":true,"age_days":42}]},{"cve_id":"CVE-2026-22557","repositories":[{"id":1202051425,"name":"CVE-2026-22557","full_name":"0xBlackash/CVE-2026-22557","html_url":"https://github.com/0xBlackash/CVE-2026-22557","description":"CVE-2026-22557","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-08T15:52:52Z","pushed_at":"2026-04-05T14:43:11Z","created_at":"2026-04-05T14:31:35Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-22557.git","has_code":true,"age_days":81},{"id":1253789776,"name":"CVE-2026-22557-check","full_name":"BishopFox/CVE-2026-22557-check","html_url":"https://github.com/BishopFox/CVE-2026-22557-check","description":"Safely detect whether a UniFi Network Application controller is vulnerable to CVE-2026-22557","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-12T22:11:09Z","pushed_at":"2026-06-01T15:34:29Z","created_at":"2026-05-29T20:20:29Z","topics":[],"owner":{"login":"BishopFox","html_url":"https://github.com/BishopFox"},"clone_url":"https://github.com/BishopFox/CVE-2026-22557-check.git","has_code":true,"age_days":26},{"id":1188868488,"name":"cve-2026-22557-unifi-detection","full_name":"GarethMSheldon/cve-2026-22557-unifi-detection","html_url":"https://github.com/GarethMSheldon/cve-2026-22557-unifi-detection","description":"Detection content for CVE-2026-22557 — UniFi Network Application unauthenticated path traversal (CVSS 10.0). Includes YARA, Sigma, KQL, Splunk SPL, Sysmon config, and a bash detection script.","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-03-22T17:45:45Z","pushed_at":"2026-03-22T17:41:01Z","created_at":"2026-03-22T17:34:48Z","topics":[],"owner":{"login":"GarethMSheldon","html_url":"https://github.com/GarethMSheldon"},"clone_url":"https://github.com/GarethMSheldon/cve-2026-22557-unifi-detection.git","has_code":true,"age_days":95},{"id":1207875913,"name":"CVE-2026-22557-PoC","full_name":"ThePotatoOfDoom/CVE-2026-22557-PoC","html_url":"https://github.com/ThePotatoOfDoom/CVE-2026-22557-PoC","description":"PoC for UniFi Network Application Pre-Auth Path Traversal (CVE-2026-22557)","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-11T14:33:19Z","pushed_at":"2026-04-11T14:33:16Z","created_at":"2026-04-11T14:21:58Z","topics":[],"owner":{"login":"ThePotatoOfDoom","html_url":"https://github.com/ThePotatoOfDoom"},"clone_url":"https://github.com/ThePotatoOfDoom/CVE-2026-22557-PoC.git","has_code":true,"age_days":75}]},{"cve_id":"CVE-2026-2256","repositories":[{"id":1153387510,"name":"CVE-2026-2256-PoC","full_name":"Itamar-Yochpaz/CVE-2026-2256-PoC","html_url":"https://github.com/Itamar-Yochpaz/CVE-2026-2256-PoC","description":"","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-03-05T12:34:05Z","pushed_at":"2026-02-10T07:25:32Z","created_at":"2026-02-09T08:40:00Z","topics":[],"owner":{"login":"Itamar-Yochpaz","html_url":"https://github.com/Itamar-Yochpaz"},"clone_url":"https://github.com/Itamar-Yochpaz/CVE-2026-2256-PoC.git","has_code":true,"age_days":136},{"id":1258850320,"name":"CVE-2026-2256-","full_name":"mruniversity/CVE-2026-2256-","html_url":"https://github.com/mruniversity/CVE-2026-2256-","description":"CVE-2026-2256  diagram","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-19T14:42:30Z","pushed_at":"2026-06-19T14:42:25Z","created_at":"2026-06-04T01:27:37Z","topics":[],"owner":{"login":"mruniversity","html_url":"https://github.com/mruniversity"},"clone_url":"https://github.com/mruniversity/CVE-2026-2256-.git","has_code":false,"age_days":21},{"id":1258657983,"name":"CVE-2026-2256-Threat-Model----ms-agent-Command-Injection","full_name":"melbratic/CVE-2026-2256-Threat-Model----ms-agent-Command-Injection","html_url":"https://github.com/melbratic/CVE-2026-2256-Threat-Model----ms-agent-Command-Injection","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-03T19:46:32Z","pushed_at":"2026-06-03T19:46:27Z","created_at":"2026-06-03T19:43:46Z","topics":[],"owner":{"login":"melbratic","html_url":"https://github.com/melbratic"},"clone_url":"https://github.com/melbratic/CVE-2026-2256-Threat-Model----ms-agent-Command-Injection.git","has_code":false,"age_days":22}]},{"cve_id":"CVE-2026-22610","repositories":[{"id":1136800901,"name":"CVE-2026-22610","full_name":"ashizZz/CVE-2026-22610","html_url":"https://github.com/ashizZz/CVE-2026-22610","description":"","stargazers_count":1,"forks_count":0,"language":"JavaScript","updated_at":"2026-02-19T15:27:38Z","pushed_at":"2026-01-18T11:42:19Z","created_at":"2026-01-18T11:38:02Z","topics":[],"owner":{"login":"ashizZz","html_url":"https://github.com/ashizZz"},"clone_url":"https://github.com/ashizZz/CVE-2026-22610.git","has_code":true,"age_days":158}]},{"cve_id":"CVE-2026-22666","repositories":[{"id":1184416504,"name":"DOLIBARR-RCE-CVE-2026-22666","full_name":"JivaSecurity/DOLIBARR-RCE-CVE-2026-22666","html_url":"https://github.com/JivaSecurity/DOLIBARR-RCE-CVE-2026-22666","description":"dol_eval_standard() whitelist bypass eval() RCE, affecting Dolibarr 23.0.0 and below by jiva (jivasecurity.com)","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-08T02:35:45Z","pushed_at":"2026-04-08T02:35:37Z","created_at":"2026-03-17T15:09:09Z","topics":[],"owner":{"login":"JivaSecurity","html_url":"https://github.com/JivaSecurity"},"clone_url":"https://github.com/JivaSecurity/DOLIBARR-RCE-CVE-2026-22666.git","has_code":true,"age_days":100}]},{"cve_id":"CVE-2026-22679","repositories":[{"id":1212560433,"name":"CVE-2026-22679","full_name":"keraattin/CVE-2026-22679","html_url":"https://github.com/keraattin/CVE-2026-22679","description":"Critical RCE vulnerability (CVSS 9.3) in Weaver E-cology platform versions prior to build 20260312. Unauthenticated remote code execution via exposed debug endpoint at /papi/esearch/data/devops/dubboApi/debug/method. Comprehensive analysis, proof-of-concept, and detection guidance included.","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-05-28T01:46:45Z","pushed_at":"2026-04-16T13:56:56Z","created_at":"2026-04-16T13:55:42Z","topics":["cve","cybersecurity","ecology-oa","enterprise-oa","java","rce","unauthenticated","vulnerability-research","weaver"],"owner":{"login":"keraattin","html_url":"https://github.com/keraattin"},"clone_url":"https://github.com/keraattin/CVE-2026-22679.git","has_code":true,"age_days":70}]},{"cve_id":"CVE-2026-22683","repositories":[{"id":1131928459,"name":"Windfall","full_name":"Chocapikk/Windfall","html_url":"https://github.com/Chocapikk/Windfall","description":"Windfall - Unauthenticated RCE exploit chain for Windmill \u0026 Nextcloud Flow (CVE-2026-29059). Path traversal + credential leak + PostgreSQL heap dump + Nextcloud AppAPI takeover.","stargazers_count":15,"forks_count":2,"language":"Ruby","updated_at":"2026-06-22T14:07:02Z","pushed_at":"2026-04-07T17:20:20Z","created_at":"2026-01-11T00:57:54Z","topics":["cve","cve-2026-22683","cve-2026-23696","cve-2026-29059","exploit","nextcloud","path-traversal","pentesting","python","rce","security","security-research","sql-injection","windmill"],"owner":{"login":"Chocapikk","html_url":"https://github.com/Chocapikk"},"clone_url":"https://github.com/Chocapikk/Windfall.git","has_code":true,"age_days":165}]},{"cve_id":"CVE-2026-22686","repositories":[{"id":1173202986,"name":"CVE-2026-22686-RemoteCodeExecution-RCE-PoC","full_name":"moltengama/CVE-2026-22686-RemoteCodeExecution-RCE-PoC","html_url":"https://github.com/moltengama/CVE-2026-22686-RemoteCodeExecution-RCE-PoC","description":"","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-03-06T01:12:44Z","pushed_at":"2026-03-05T05:50:03Z","created_at":"2026-03-05T05:35:27Z","topics":[],"owner":{"login":"moltengama","html_url":"https://github.com/moltengama"},"clone_url":"https://github.com/moltengama/CVE-2026-22686-RemoteCodeExecution-RCE-PoC.git","has_code":true,"age_days":112},{"id":1135215068,"name":"CVE-2026-22686","full_name":"amusedx/CVE-2026-22686","html_url":"https://github.com/amusedx/CVE-2026-22686","description":"","stargazers_count":1,"forks_count":0,"language":"JavaScript","updated_at":"2026-01-19T06:13:23Z","pushed_at":"2026-01-15T20:45:03Z","created_at":"2026-01-15T19:51:23Z","topics":[],"owner":{"login":"amusedx","html_url":"https://github.com/amusedx"},"clone_url":"https://github.com/amusedx/CVE-2026-22686.git","has_code":true,"age_days":161}]},{"cve_id":"CVE-2026-22692","repositories":[{"id":1210136077,"name":"CVE-2026-22692","full_name":"lukasz-rybak/CVE-2026-22692","html_url":"https://github.com/lukasz-rybak/CVE-2026-22692","description":"CVE-2026-22692 - Critical Twig Sandbox Bypass via collect()-\u003emapInto() allowing RCE/LFI/XXE in October CMS","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-14T07:10:19Z","pushed_at":"2026-04-14T07:10:15Z","created_at":"2026-04-14T05:54:02Z","topics":[],"owner":{"login":"lukasz-rybak","html_url":"https://github.com/lukasz-rybak"},"clone_url":"https://github.com/lukasz-rybak/CVE-2026-22692.git","has_code":false,"age_days":72}]},{"cve_id":"CVE-2026-22722","repositories":[{"id":1174511512,"name":"CVE-2026-22722","full_name":"D7EAD/CVE-2026-22722","html_url":"https://github.com/D7EAD/CVE-2026-22722","description":"A state-based logic vulnerability in VMWare Workstation Pro's Kernel NUIF","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-06-21T01:24:26Z","pushed_at":"2026-03-06T14:27:42Z","created_at":"2026-03-06T14:26:52Z","topics":[],"owner":{"login":"D7EAD","html_url":"https://github.com/D7EAD"},"clone_url":"https://github.com/D7EAD/CVE-2026-22722.git","has_code":false,"age_days":111}]},{"cve_id":"CVE-2026-22730","repositories":[{"id":1187094712,"name":"CVE-2026-22730-Scanner","full_name":"NULL200OK/CVE-2026-22730-Scanner","html_url":"https://github.com/NULL200OK/CVE-2026-22730-Scanner","description":"CVE-2026-22730 Scanner \u0026 Exploit – Spring AI MariaDB Vector Store SQL Injection ,A professional security assessment tool for CVE-2026-22730 – a critical SQL injection vulnerability discovered in Spring AI's MariaDB vector store.","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-04-09T00:31:23Z","pushed_at":"2026-03-20T10:49:53Z","created_at":"2026-03-20T10:35:12Z","topics":[],"owner":{"login":"NULL200OK","html_url":"https://github.com/NULL200OK"},"clone_url":"https://github.com/NULL200OK/CVE-2026-22730-Scanner.git","has_code":true,"age_days":97}]},{"cve_id":"CVE-2026-22732","repositories":[{"id":1204098593,"name":"cve-2026-22732-demo","full_name":"semgrep/cve-2026-22732-demo","html_url":"https://github.com/semgrep/cve-2026-22732-demo","description":"Minimal reproduction of CVE-2026-22732 — Spring Security HTTP headers silently dropped","stargazers_count":0,"forks_count":0,"language":"Java","updated_at":"2026-04-07T17:31:13Z","pushed_at":"2026-04-07T17:31:07Z","created_at":"2026-04-07T17:31:04Z","topics":[],"owner":{"login":"semgrep","html_url":"https://github.com/semgrep"},"clone_url":"https://github.com/semgrep/cve-2026-22732-demo.git","has_code":true,"age_days":79}]},{"cve_id":"CVE-2026-22738","repositories":[{"id":1199683049,"name":"CVE-2026-22738-POC","full_name":"n0n4m3x41/CVE-2026-22738-POC","html_url":"https://github.com/n0n4m3x41/CVE-2026-22738-POC","description":"PoC for CVE-2026-22738","stargazers_count":13,"forks_count":1,"language":"Python","updated_at":"2026-04-06T11:19:13Z","pushed_at":"2026-04-02T17:14:52Z","created_at":"2026-04-02T15:44:21Z","topics":[],"owner":{"login":"n0n4m3x41","html_url":"https://github.com/n0n4m3x41"},"clone_url":"https://github.com/n0n4m3x41/CVE-2026-22738-POC.git","has_code":true,"age_days":84},{"id":1200359959,"name":"CVE-2026-22738","full_name":"rockmelodies/CVE-2026-22738","html_url":"https://github.com/rockmelodies/CVE-2026-22738","description":"SpEL Injection via Unescaped Filter Key in SimpleVectorStore Leads to Remote Code Execution","stargazers_count":2,"forks_count":1,"language":"Python","updated_at":"2026-04-12T13:02:00Z","pushed_at":"2026-04-07T10:59:20Z","created_at":"2026-04-03T10:16:50Z","topics":[],"owner":{"login":"rockmelodies","html_url":"https://github.com/rockmelodies"},"clone_url":"https://github.com/rockmelodies/CVE-2026-22738.git","has_code":true,"age_days":83}]},{"cve_id":"CVE-2026-22777","repositories":[{"id":1196731811,"name":"CVE-2026-22777","full_name":"wcnmwcis/CVE-2026-22777","html_url":"https://github.com/wcnmwcis/CVE-2026-22777","description":"ComfyUI-Manager Remote Code Execution exploit. Covers CVE-2025-67303 (config file exposure) and CVE-2026-22777 (CRLF injection). Includes Python script, Nuclei template, and evil git server.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-31T02:04:35Z","pushed_at":"2026-03-31T01:42:13Z","created_at":"2026-03-31T01:42:12Z","topics":[],"owner":{"login":"wcnmwcis","html_url":"https://github.com/wcnmwcis"},"clone_url":"https://github.com/wcnmwcis/CVE-2026-22777.git","has_code":false,"age_days":86}]},{"cve_id":"CVE-2026-22785","repositories":[{"id":1136207591,"name":"CVE-2026-22785","full_name":"langbyyi/CVE-2026-22785","html_url":"https://github.com/langbyyi/CVE-2026-22785","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-17T15:14:48Z","pushed_at":"2026-01-17T15:14:44Z","created_at":"2026-01-17T09:07:50Z","topics":[],"owner":{"login":"langbyyi","html_url":"https://github.com/langbyyi"},"clone_url":"https://github.com/langbyyi/CVE-2026-22785.git","has_code":true,"age_days":159}]},{"cve_id":"CVE-2026-22794","repositories":[{"id":1140644727,"name":"CVE-2026-22794-POC","full_name":"MalikHamza7/CVE-2026-22794-POC","html_url":"https://github.com/MalikHamza7/CVE-2026-22794-POC","description":"🔴 CVE-2026-22794 - Appsmith Password Reset Account Takeover via Origin Header Injection | PoC Exploit + Nuclei Template","stargazers_count":7,"forks_count":0,"language":"Python","updated_at":"2026-01-28T21:58:09Z","pushed_at":"2026-01-23T15:31:43Z","created_at":"2026-01-23T15:10:31Z","topics":["account-takeover","appsmith","bug-bounty","cve-2026-22794","origin-injection","penetration-testing","poc","security-tools"],"owner":{"login":"MalikHamza7","html_url":"https://github.com/MalikHamza7"},"clone_url":"https://github.com/MalikHamza7/CVE-2026-22794-POC.git","has_code":true,"age_days":153}]},{"cve_id":"CVE-2026-22804","repositories":[{"id":1133265530,"name":"CVE-2026-22804","full_name":"ThemeHackers/CVE-2026-22804","html_url":"https://github.com/ThemeHackers/CVE-2026-22804","description":"This repository contains a Proof of Concept (PoC) exploit for the Stored Cross-Site Scripting (XSS) vulnerability in Termix, which can lead to Local File Inclusion (LFI) in the Electron environment and Session Hijacking.","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-06-07T22:45:16Z","pushed_at":"2026-01-13T06:02:45Z","created_at":"2026-01-13T05:34:55Z","topics":[],"owner":{"login":"ThemeHackers","html_url":"https://github.com/ThemeHackers"},"clone_url":"https://github.com/ThemeHackers/CVE-2026-22804.git","has_code":true,"age_days":163}]},{"cve_id":"CVE-2026-22807","repositories":[{"id":1146590691,"name":"CVE-2026-22807_Range","full_name":"otakuliu/CVE-2026-22807_Range","html_url":"https://github.com/otakuliu/CVE-2026-22807_Range","description":"CVE-2026-22807的靶场","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-31T10:55:50Z","pushed_at":"2026-01-31T10:55:47Z","created_at":"2026-01-31T10:52:29Z","topics":[],"owner":{"login":"otakuliu","html_url":"https://github.com/otakuliu"},"clone_url":"https://github.com/otakuliu/CVE-2026-22807_Range.git","has_code":true,"age_days":145}]},{"cve_id":"CVE-2026-22812","repositories":[{"id":1135667656,"name":"CVE-2026-22812-exploit","full_name":"rohmatariow/CVE-2026-22812-exploit","html_url":"https://github.com/rohmatariow/CVE-2026-22812-exploit","description":"","stargazers_count":33,"forks_count":6,"language":"Python","updated_at":"2026-04-11T09:52:05Z","pushed_at":"2026-01-16T12:42:30Z","created_at":"2026-01-16T12:25:16Z","topics":[],"owner":{"login":"rohmatariow","html_url":"https://github.com/rohmatariow"},"clone_url":"https://github.com/rohmatariow/CVE-2026-22812-exploit.git","has_code":true,"age_days":160},{"id":1137223601,"name":"opencode-secure","full_name":"barrersoftware/opencode-secure","html_url":"https://github.com/barrersoftware/opencode-secure","description":"Security-hardened fork of OpenCode - Fixes CVE-2026-22812 (CVSS 8.8 RCE) that upstream refuses to patch","stargazers_count":5,"forks_count":0,"language":"TypeScript","updated_at":"2026-06-15T03:09:21Z","pushed_at":"2026-01-19T06:09:50Z","created_at":"2026-01-19T04:52:22Z","topics":[],"owner":{"login":"barrersoftware","html_url":"https://github.com/barrersoftware"},"clone_url":"https://github.com/barrersoftware/opencode-secure.git","has_code":true,"age_days":157},{"id":1137801274,"name":"CVE-2026-22812","full_name":"0xgh057r3c0n/CVE-2026-22812","html_url":"https://github.com/0xgh057r3c0n/CVE-2026-22812","description":"OpenCode  \u003c v1.0.216 - Unauthenticated RCE","stargazers_count":2,"forks_count":1,"language":"Python","updated_at":"2026-04-19T16:13:58Z","pushed_at":"2026-01-19T21:28:16Z","created_at":"2026-01-19T21:20:41Z","topics":[],"owner":{"login":"0xgh057r3c0n","html_url":"https://github.com/0xgh057r3c0n"},"clone_url":"https://github.com/0xgh057r3c0n/CVE-2026-22812.git","has_code":true,"age_days":156},{"id":1135628139,"name":"CVE-2026-22812-Exp","full_name":"Udyz/CVE-2026-22812-Exp","html_url":"https://github.com/Udyz/CVE-2026-22812-Exp","description":"CVE-2026-22812 - OpenCode Unauth RCE","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-01-18T05:27:34Z","pushed_at":"2026-01-16T11:16:36Z","created_at":"2026-01-16T11:15:04Z","topics":[],"owner":{"login":"Udyz","html_url":"https://github.com/Udyz"},"clone_url":"https://github.com/Udyz/CVE-2026-22812-Exp.git","has_code":true,"age_days":160},{"id":1195202220,"name":"ai-agent-security-research","full_name":"HodgeLuke/ai-agent-security-research","html_url":"https://github.com/HodgeLuke/ai-agent-security-research","description":"Open security research on AI coding agent infrastructure. Agent-executable remediation manifests for CVE-2026-22812 and CVE-2026-22813.","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-04-05T21:13:48Z","pushed_at":"2026-03-29T11:27:33Z","created_at":"2026-03-29T11:19:22Z","topics":[],"owner":{"login":"HodgeLuke","html_url":"https://github.com/HodgeLuke"},"clone_url":"https://github.com/HodgeLuke/ai-agent-security-research.git","has_code":false,"age_days":88},{"id":1222039409,"name":"CVE-2026-22812-OpenCode-RCE-exp","full_name":"Hex-Neo/CVE-2026-22812-OpenCode-RCE-exp","html_url":"https://github.com/Hex-Neo/CVE-2026-22812-OpenCode-RCE-exp","description":"","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-04-27T01:42:42Z","pushed_at":"2026-04-27T01:40:49Z","created_at":"2026-04-27T01:38:45Z","topics":[],"owner":{"login":"Hex-Neo","html_url":"https://github.com/Hex-Neo"},"clone_url":"https://github.com/Hex-Neo/CVE-2026-22812-OpenCode-RCE-exp.git","has_code":false,"age_days":59},{"id":1202590298,"name":"CVE-2026-22812","full_name":"0xBlackash/CVE-2026-22812","html_url":"https://github.com/0xBlackash/CVE-2026-22812","description":"CVE-2026-22812","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-04-29T19:16:05Z","pushed_at":"2026-04-06T07:42:33Z","created_at":"2026-04-06T07:22:53Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-22812.git","has_code":true,"age_days":80},{"id":1138245160,"name":"CVE-2026-22812-POC","full_name":"CayberMods/CVE-2026-22812-POC","html_url":"https://github.com/CayberMods/CVE-2026-22812-POC","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-20T13:02:39Z","pushed_at":"2026-01-20T13:02:35Z","created_at":"2026-01-20T12:29:32Z","topics":[],"owner":{"login":"CayberMods","html_url":"https://github.com/CayberMods"},"clone_url":"https://github.com/CayberMods/CVE-2026-22812-POC.git","has_code":true,"age_days":156},{"id":1136742611,"name":"CVE-2026-22812","full_name":"mad12wader/CVE-2026-22812","html_url":"https://github.com/mad12wader/CVE-2026-22812","description":"CVE-2026-22812 - OpenCode Unauthenticated RCE-Nuclei template for scan","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-01-18T09:55:36Z","pushed_at":"2026-01-18T09:55:33Z","created_at":"2026-01-18T09:11:31Z","topics":[],"owner":{"login":"mad12wader","html_url":"https://github.com/mad12wader"},"clone_url":"https://github.com/mad12wader/CVE-2026-22812.git","has_code":false,"age_days":158}]},{"cve_id":"CVE-2026-22813","repositories":[{"id":1195202220,"name":"ai-agent-security-research","full_name":"HodgeLuke/ai-agent-security-research","html_url":"https://github.com/HodgeLuke/ai-agent-security-research","description":"Open security research on AI coding agent infrastructure. Agent-executable remediation manifests for CVE-2026-22812 and CVE-2026-22813.","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-04-05T21:13:48Z","pushed_at":"2026-03-29T11:27:33Z","created_at":"2026-03-29T11:19:22Z","topics":[],"owner":{"login":"HodgeLuke","html_url":"https://github.com/HodgeLuke"},"clone_url":"https://github.com/HodgeLuke/ai-agent-security-research.git","has_code":false,"age_days":88}]},{"cve_id":"CVE-2026-22849","repositories":[{"id":1208065591,"name":"CVE-2026-22849","full_name":"lukasz-rybak/CVE-2026-22849","html_url":"https://github.com/lukasz-rybak/CVE-2026-22849","description":"CVE-2026-22849 - Saleor lacks proper HTML sanitization in rich text fields","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-11T19:22:41Z","pushed_at":"2026-04-11T19:22:35Z","created_at":"2026-04-11T19:15:13Z","topics":[],"owner":{"login":"lukasz-rybak","html_url":"https://github.com/lukasz-rybak"},"clone_url":"https://github.com/lukasz-rybak/CVE-2026-22849.git","has_code":false,"age_days":75}]},{"cve_id":"CVE-2026-22862","repositories":[{"id":1137419358,"name":"CVE-2026-22862","full_name":"qzhodl/CVE-2026-22862","html_url":"https://github.com/qzhodl/CVE-2026-22862","description":"","stargazers_count":0,"forks_count":0,"language":"Go","updated_at":"2026-01-19T10:49:48Z","pushed_at":"2026-01-19T10:48:16Z","created_at":"2026-01-19T10:47:49Z","topics":[],"owner":{"login":"qzhodl","html_url":"https://github.com/qzhodl"},"clone_url":"https://github.com/qzhodl/CVE-2026-22862.git","has_code":true,"age_days":157}]},{"cve_id":"CVE-2026-2291","repositories":[{"id":1255573444,"name":"dnsmasq-cve-2026","full_name":"JianrongXiao-Linksys/dnsmasq-cve-2026","html_url":"https://github.com/JianrongXiao-Linksys/dnsmasq-cve-2026","description":"Automated defect verification tool for 6 dnsmasq CVEs (CVE-2026-2291, 4890, 4891, 4892, 4893, 5172)","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-01T02:03:22Z","pushed_at":"2026-06-01T02:03:18Z","created_at":"2026-06-01T01:24:38Z","topics":[],"owner":{"login":"JianrongXiao-Linksys","html_url":"https://github.com/JianrongXiao-Linksys"},"clone_url":"https://github.com/JianrongXiao-Linksys/dnsmasq-cve-2026.git","has_code":true,"age_days":24}]},{"cve_id":"CVE-2026-23111","repositories":[{"id":1263870476,"name":"CVE-2026-23111","full_name":"0xBlackash/CVE-2026-23111","html_url":"https://github.com/0xBlackash/CVE-2026-23111","description":"CVE-2026-23111","stargazers_count":5,"forks_count":0,"language":"Python","updated_at":"2026-06-14T06:38:05Z","pushed_at":"2026-06-09T10:55:26Z","created_at":"2026-06-09T10:46:06Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-23111.git","has_code":true,"age_days":16},{"id":1266459179,"name":"CVE-2026-23111-nftables-lab","full_name":"ishankaru/CVE-2026-23111-nftables-lab","html_url":"https://github.com/ishankaru/CVE-2026-23111-nftables-lab","description":"Exposure checker and safe disposable-VM lab for CVE-2026-23111 (Linux nf_tables use-after-free local privilege escalation). Defensive: detection, mitigation, multi-distro lab. No exploit.","stargazers_count":1,"forks_count":0,"language":"Shell","updated_at":"2026-06-24T08:45:17Z","pushed_at":"2026-06-11T18:05:23Z","created_at":"2026-06-11T16:28:31Z","topics":[],"owner":{"login":"ishankaru","html_url":"https://github.com/ishankaru"},"clone_url":"https://github.com/ishankaru/CVE-2026-23111-nftables-lab.git","has_code":true,"age_days":14},{"id":1280206693,"name":"CVE-2026-23111","full_name":"Baba01hacker666/CVE-2026-23111","html_url":"https://github.com/Baba01hacker666/CVE-2026-23111","description":"Linux Kernel nf_tables Use-After-Free (CVE-2026-23111) — LPE PoC","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-06-25T11:17:09Z","pushed_at":"2026-06-25T11:17:05Z","created_at":"2026-06-25T11:15:38Z","topics":[],"owner":{"login":"Baba01hacker666","html_url":"https://github.com/Baba01hacker666"},"clone_url":"https://github.com/Baba01hacker666/CVE-2026-23111.git","has_code":true,"age_days":0},{"id":1263855777,"name":"check-cve-2026-23111","full_name":"criann/check-cve-2026-23111","html_url":"https://github.com/criann/check-cve-2026-23111","description":"Script to check if system are vulnable to cve-2026-23111","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-11T14:51:15Z","pushed_at":"2026-06-11T14:34:26Z","created_at":"2026-06-09T10:28:09Z","topics":[],"owner":{"login":"criann","html_url":"https://github.com/criann"},"clone_url":"https://github.com/criann/check-cve-2026-23111.git","has_code":true,"age_days":16},{"id":1265075643,"name":"CVE-2026-23111","full_name":"seguridadentrerios/CVE-2026-23111","html_url":"https://github.com/seguridadentrerios/CVE-2026-23111","description":" Vulnerabilidad nf_tables del kernel  que permite el acceso de root","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-10T12:59:38Z","pushed_at":"2026-06-10T12:59:33Z","created_at":"2026-06-10T12:49:06Z","topics":[],"owner":{"login":"seguridadentrerios","html_url":"https://github.com/seguridadentrerios"},"clone_url":"https://github.com/seguridadentrerios/CVE-2026-23111.git","has_code":true,"age_days":15},{"id":1263460848,"name":"CVE-2026-23111","full_name":"HORKimhab/CVE-2026-23111","html_url":"https://github.com/HORKimhab/CVE-2026-23111","description":"CVE-2026-23111 - Linux - Draft","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-09T01:25:25Z","pushed_at":"2026-06-09T01:25:22Z","created_at":"2026-06-09T01:25:18Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-23111.git","has_code":false,"age_days":16}]},{"cve_id":"CVE-2026-23398","repositories":[{"id":1205213510,"name":"cve-2026-23398-poc","full_name":"zpol/cve-2026-23398-poc","html_url":"https://github.com/zpol/cve-2026-23398-poc","description":"Functional LAB with CVE-2026-23398 PoC ","stargazers_count":1,"forks_count":0,"language":"Shell","updated_at":"2026-04-13T01:03:42Z","pushed_at":"2026-04-08T19:18:33Z","created_at":"2026-04-08T18:42:24Z","topics":[],"owner":{"login":"zpol","html_url":"https://github.com/zpol"},"clone_url":"https://github.com/zpol/cve-2026-23398-poc.git","has_code":true,"age_days":78},{"id":1202280414,"name":"CVE-2026-23398","full_name":"JohannesLks/CVE-2026-23398","html_url":"https://github.com/JohannesLks/CVE-2026-23398","description":"icmp_tag_validation() NULL deref","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-17T15:14:04Z","pushed_at":"2026-04-05T21:25:25Z","created_at":"2026-04-05T20:48:59Z","topics":["cve","exploit","security","vulnerability"],"owner":{"login":"JohannesLks","html_url":"https://github.com/JohannesLks"},"clone_url":"https://github.com/JohannesLks/CVE-2026-23398.git","has_code":true,"age_days":80}]},{"cve_id":"CVE-2026-23416","repositories":[{"id":1199636800,"name":"CVE-2026-23416-POC","full_name":"bluedragonsecurity/CVE-2026-23416-POC","html_url":"https://github.com/bluedragonsecurity/CVE-2026-23416-POC","description":"POC for CVE-2026-23416 (linux kernel 6.17 – linux kernel 7 rc5) - vulnerability discovered by Antonius","stargazers_count":8,"forks_count":1,"language":"C","updated_at":"2026-06-03T10:14:25Z","pushed_at":"2026-05-15T02:31:34Z","created_at":"2026-04-02T14:51:03Z","topics":[],"owner":{"login":"bluedragonsecurity","html_url":"https://github.com/bluedragonsecurity"},"clone_url":"https://github.com/bluedragonsecurity/CVE-2026-23416-POC.git","has_code":true,"age_days":84}]},{"cve_id":"CVE-2026-23479","repositories":[{"id":1266417578,"name":"redis-cve-2026-23479-scanner","full_name":"v1c0mmrt/redis-cve-2026-23479-scanner","html_url":"https://github.com/v1c0mmrt/redis-cve-2026-23479-scanner","description":"CVE-2026-23479 Redis Use-After-Free vulnerability detection tool","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-13T04:28:09Z","pushed_at":"2026-06-13T04:28:05Z","created_at":"2026-06-11T15:43:56Z","topics":[],"owner":{"login":"v1c0mmrt","html_url":"https://github.com/v1c0mmrt"},"clone_url":"https://github.com/v1c0mmrt/redis-cve-2026-23479-scanner.git","has_code":true,"age_days":14},{"id":1263895725,"name":"CVE-2026-23479","full_name":"jenniferreire26/CVE-2026-23479","html_url":"https://github.com/jenniferreire26/CVE-2026-23479","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-09T11:16:47Z","pushed_at":"2026-06-09T11:16:45Z","created_at":"2026-06-09T11:16:42Z","topics":[],"owner":{"login":"jenniferreire26","html_url":"https://github.com/jenniferreire26"},"clone_url":"https://github.com/jenniferreire26/CVE-2026-23479.git","has_code":false,"age_days":16},{"id":1259739113,"name":"redis-cve-2026-23479-check","full_name":"pduggusa/redis-cve-2026-23479-check","html_url":"https://github.com/pduggusa/redis-cve-2026-23479-check","description":"Safe read-only version checker + Sigma rule for Redis CVE-2026-23479 (authenticated use-after-free → RCE). Find exposed instances, patch left-of-boom. By DugganUSA.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-04T20:09:10Z","pushed_at":"2026-06-04T20:09:06Z","created_at":"2026-06-04T20:09:02Z","topics":[],"owner":{"login":"pduggusa","html_url":"https://github.com/pduggusa"},"clone_url":"https://github.com/pduggusa/redis-cve-2026-23479-check.git","has_code":true,"age_days":20}]},{"cve_id":"CVE-2026-23491","repositories":[{"id":1208065272,"name":"CVE-2026-23491","full_name":"lukasz-rybak/CVE-2026-23491","html_url":"https://github.com/lukasz-rybak/CVE-2026-23491","description":"CVE-2026-23491 - InvoicePlane has Unauthenticated Path Traversal in Guest Controller","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-11T19:22:19Z","pushed_at":"2026-04-11T19:22:16Z","created_at":"2026-04-11T19:14:40Z","topics":[],"owner":{"login":"lukasz-rybak","html_url":"https://github.com/lukasz-rybak"},"clone_url":"https://github.com/lukasz-rybak/CVE-2026-23491.git","has_code":false,"age_days":75}]},{"cve_id":"CVE-2026-23498","repositories":[{"id":1208065836,"name":"CVE-2026-23498","full_name":"lukasz-rybak/CVE-2026-23498","html_url":"https://github.com/lukasz-rybak/CVE-2026-23498","description":"CVE-2026-23498 - Shopware Has Improper Control of Generation of Code in Twig rendered views","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-11T19:22:54Z","pushed_at":"2026-04-11T19:22:51Z","created_at":"2026-04-11T19:15:40Z","topics":[],"owner":{"login":"lukasz-rybak","html_url":"https://github.com/lukasz-rybak"},"clone_url":"https://github.com/lukasz-rybak/CVE-2026-23498.git","has_code":false,"age_days":75}]},{"cve_id":"CVE-2026-23499","repositories":[{"id":1208065534,"name":"CVE-2026-23499","full_name":"lukasz-rybak/CVE-2026-23499","html_url":"https://github.com/lukasz-rybak/CVE-2026-23499","description":"CVE-2026-23499 - Saleor vulnerable to stored XSS via Unrestricted File Upload","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-11T19:22:35Z","pushed_at":"2026-04-11T19:22:32Z","created_at":"2026-04-11T19:15:07Z","topics":[],"owner":{"login":"lukasz-rybak","html_url":"https://github.com/lukasz-rybak"},"clone_url":"https://github.com/lukasz-rybak/CVE-2026-23499.git","has_code":false,"age_days":75}]},{"cve_id":"CVE-2026-23500","repositories":[{"id":1208077532,"name":"CVE-2026-23500","full_name":"lukasz-rybak/CVE-2026-23500","html_url":"https://github.com/lukasz-rybak/CVE-2026-23500","description":"CVE-2026-23500 - OS Command Injection (RCE) via MAIN_ODT_AS_PDF configuration in Dolibarr","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-11T19:40:05Z","pushed_at":"2026-04-11T19:39:59Z","created_at":"2026-04-11T19:37:51Z","topics":[],"owner":{"login":"lukasz-rybak","html_url":"https://github.com/lukasz-rybak"},"clone_url":"https://github.com/lukasz-rybak/CVE-2026-23500.git","has_code":false,"age_days":75}]},{"cve_id":"CVE-2026-23520","repositories":[{"id":1188290976,"name":"POC-CVE-2026-23520","full_name":"Augmaster/POC-CVE-2026-23520","html_url":"https://github.com/Augmaster/POC-CVE-2026-23520","description":"","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-03-23T17:10:18Z","pushed_at":"2026-03-21T22:04:56Z","created_at":"2026-03-21T21:52:49Z","topics":[],"owner":{"login":"Augmaster","html_url":"https://github.com/Augmaster"},"clone_url":"https://github.com/Augmaster/POC-CVE-2026-23520.git","has_code":true,"age_days":95},{"id":1189734270,"name":"CVE-2026-23520","full_name":"cypher-21/CVE-2026-23520","html_url":"https://github.com/cypher-21/CVE-2026-23520","description":"CVE-2026-23520 is a critical command injection vulnerability in Arcane, a modern Docker management platform. The flaw exists in the platform's updater service and allows for Remote Code Execution (RCE)","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-04-24T16:22:28Z","pushed_at":"2026-03-23T16:08:53Z","created_at":"2026-03-23T16:03:46Z","topics":[],"owner":{"login":"cypher-21","html_url":"https://github.com/cypher-21"},"clone_url":"https://github.com/cypher-21/CVE-2026-23520.git","has_code":true,"age_days":94},{"id":1188295256,"name":"CVE-2026-23520","full_name":"0xzap/CVE-2026-23520","html_url":"https://github.com/0xzap/CVE-2026-23520","description":"A proof‑of‑concept exploit demonstrating unauthenticated remote command execution in Arcane MCP (CVE‑2026‑23520) via the /api/mcp/connect endpoint.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-25T17:01:16Z","pushed_at":"2026-03-23T15:30:06Z","created_at":"2026-03-21T22:02:27Z","topics":[],"owner":{"login":"0xzap","html_url":"https://github.com/0xzap"},"clone_url":"https://github.com/0xzap/CVE-2026-23520.git","has_code":true,"age_days":95},{"id":1248148969,"name":"-Educational-PoC-CVE-2026-23520","full_name":"kikechans/-Educational-PoC-CVE-2026-23520","html_url":"https://github.com/kikechans/-Educational-PoC-CVE-2026-23520","description":"🎓 PoC Educativo para CVE-2026-23520. Laboratorio de análisis de vulnerabilidades y mitigación controlada. 🧪","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-26T20:01:02Z","pushed_at":"2026-05-24T08:50:17Z","created_at":"2026-05-24T08:48:30Z","topics":["cve-2026-23520","education","poc","vulnerability-research"],"owner":{"login":"kikechans","html_url":"https://github.com/kikechans"},"clone_url":"https://github.com/kikechans/-Educational-PoC-CVE-2026-23520.git","has_code":true,"age_days":32}]},{"cve_id":"CVE-2026-23524","repositories":[{"id":1203985771,"name":"CVE-2026-23524","full_name":"rockmelodies/CVE-2026-23524","html_url":"https://github.com/rockmelodies/CVE-2026-23524","description":"Laravel Reverb 为 Laravel 应用提供实时 WebSocket 通信后端。在 1.6.3 及更早版本中，Reverb 将来自 Redis 通道的数据直接传递给 PHP 的 unserialize() 函数，且未对可实例化的类进行限制，导致用户面临远程代码执行风险。","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-07T15:30:44Z","pushed_at":"2026-04-07T15:30:40Z","created_at":"2026-04-07T15:23:10Z","topics":[],"owner":{"login":"rockmelodies","html_url":"https://github.com/rockmelodies"},"clone_url":"https://github.com/rockmelodies/CVE-2026-23524.git","has_code":false,"age_days":79}]},{"cve_id":"CVE-2026-23550","repositories":[{"id":1152303204,"name":"Mass-CVE-2026-23550-Exploit","full_name":"dzmind2312/Mass-CVE-2026-23550-Exploit","html_url":"https://github.com/dzmind2312/Mass-CVE-2026-23550-Exploit","description":"Mass CVE-2026-23550 Exploit","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-03-05T17:54:07Z","pushed_at":"2026-02-07T17:21:44Z","created_at":"2026-02-07T17:16:32Z","topics":[],"owner":{"login":"dzmind2312","html_url":"https://github.com/dzmind2312"},"clone_url":"https://github.com/dzmind2312/Mass-CVE-2026-23550-Exploit.git","has_code":true,"age_days":138},{"id":1136379090,"name":"CVE-2026-23550-PoC","full_name":"TheTorjanCaptain/CVE-2026-23550-PoC","html_url":"https://github.com/TheTorjanCaptain/CVE-2026-23550-PoC","description":"CVE-2026-23550 - Modular DS WordPress Plugin **Unauthenticated Admin Access**","stargazers_count":1,"forks_count":0,"language":"Shell","updated_at":"2026-01-26T04:23:35Z","pushed_at":"2026-01-17T17:08:05Z","created_at":"2026-01-17T15:33:11Z","topics":["cve-2026-23550","cvss10","cybersecurity","poc","unauthenticated","wordpress","wordpress-plugin"],"owner":{"login":"TheTorjanCaptain","html_url":"https://github.com/TheTorjanCaptain"},"clone_url":"https://github.com/TheTorjanCaptain/CVE-2026-23550-PoC.git","has_code":true,"age_days":159},{"id":1135131922,"name":"CYBERDUDEBIVASH-Modular-DS-CVE-2026-23550-Detector","full_name":"cyberdudebivash/CYBERDUDEBIVASH-Modular-DS-CVE-2026-23550-Detector","html_url":"https://github.com/cyberdudebivash/CYBERDUDEBIVASH-Modular-DS-CVE-2026-23550-Detector","description":"authorized CYBERDUDEBIVASH ECOSYSTEM tool for detecting CVE-2026-23550 in WordPress Modular DS plugin","stargazers_count":1,"forks_count":1,"language":"Python","updated_at":"2026-01-16T17:49:46Z","pushed_at":"2026-01-15T17:24:43Z","created_at":"2026-01-15T17:23:55Z","topics":["cve-2026-23550","cyberdudebivash","cyberdudebivashecosystem","cybersecurity","vulnerability-scanner","wordpress-security"],"owner":{"login":"cyberdudebivash","html_url":"https://github.com/cyberdudebivash"},"clone_url":"https://github.com/cyberdudebivash/CYBERDUDEBIVASH-Modular-DS-CVE-2026-23550-Detector.git","has_code":true,"age_days":161},{"id":1167707353,"name":"CVE-2026-23550","full_name":"DedsecTeam-BlackHat/CVE-2026-23550","html_url":"https://github.com/DedsecTeam-BlackHat/CVE-2026-23550","description":"","stargazers_count":1,"forks_count":0,"language":"Shell","updated_at":"2026-03-04T13:35:03Z","pushed_at":"2026-02-26T16:26:50Z","created_at":"2026-02-26T15:40:56Z","topics":[],"owner":{"login":"DedsecTeam-BlackHat","html_url":"https://github.com/DedsecTeam-BlackHat"},"clone_url":"https://github.com/DedsecTeam-BlackHat/CVE-2026-23550.git","has_code":true,"age_days":119},{"id":1154472684,"name":"EpSiLoNPoInT-","full_name":"epsilonpoint88-glitch/EpSiLoNPoInT-","html_url":"https://github.com/epsilonpoint88-glitch/EpSiLoNPoInT-","description":"🔴 EpSiLoNPoInT - CVE-2026-23550 Modular DS Zero-Click  **Framework d'exploitation Modular DS Admin Bypass**  ## 🎯 CVE Ciblée Principale **CVE-2026-23550** : Modular DS WordPress Plugin - 40 000+ sites affectés  - Accès admin **zéro-clic** non authentifié - `exploitmass.py` (48KB) - Exploit massif  ## Modules","stargazers_count":1,"forks_count":1,"language":"PHP","updated_at":"2026-05-10T13:19:26Z","pushed_at":"2026-02-10T14:52:50Z","created_at":"2026-02-10T12:33:19Z","topics":[],"owner":{"login":"epsilonpoint88-glitch","html_url":"https://github.com/epsilonpoint88-glitch"},"clone_url":"https://github.com/epsilonpoint88-glitch/EpSiLoNPoInT-.git","has_code":true,"age_days":135},{"id":1265902899,"name":"CVE-2026-23550","full_name":"Cyber-DarkNay/CVE-2026-23550","html_url":"https://github.com/Cyber-DarkNay/CVE-2026-23550","description":"","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-11T07:07:47Z","pushed_at":"2026-06-11T07:07:44Z","created_at":"2026-06-11T07:06:51Z","topics":[],"owner":{"login":"Cyber-DarkNay","html_url":"https://github.com/Cyber-DarkNay"},"clone_url":"https://github.com/Cyber-DarkNay/CVE-2026-23550.git","has_code":true,"age_days":14}]},{"cve_id":"CVE-2026-23552","repositories":[{"id":1153561320,"name":"CVE-2026-23552","full_name":"oscerd/CVE-2026-23552","html_url":"https://github.com/oscerd/CVE-2026-23552","description":"CVE-2026-23552 - Cross-Realm Token Acceptance in camel-keycloak","stargazers_count":0,"forks_count":0,"language":"Java","updated_at":"2026-02-18T10:26:23Z","pushed_at":"2026-02-09T12:52:02Z","created_at":"2026-02-09T12:50:28Z","topics":[],"owner":{"login":"oscerd","html_url":"https://github.com/oscerd"},"clone_url":"https://github.com/oscerd/CVE-2026-23552.git","has_code":true,"age_days":136}]},{"cve_id":"CVE-2026-23631","repositories":[{"id":1231938449,"name":"DarkReplica","full_name":"yoyosh/DarkReplica","html_url":"https://github.com/yoyosh/DarkReplica","description":"CVE-2026-23631 (DarkReplica) Redis Exploit","stargazers_count":32,"forks_count":5,"language":"Python","updated_at":"2026-06-18T15:17:06Z","pushed_at":"2026-06-02T13:59:53Z","created_at":"2026-05-07T12:36:35Z","topics":[],"owner":{"login":"yoyosh","html_url":"https://github.com/yoyosh"},"clone_url":"https://github.com/yoyosh/DarkReplica.git","has_code":true,"age_days":49},{"id":1258847467,"name":"CVE-2026-23631","full_name":"HORKimhab/CVE-2026-23631","html_url":"https://github.com/HORKimhab/CVE-2026-23631","description":"CVE-2026-23631-Draft","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-04T01:22:36Z","pushed_at":"2026-06-04T01:22:32Z","created_at":"2026-06-04T01:22:29Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-23631.git","has_code":false,"age_days":21}]},{"cve_id":"CVE-2026-23696","repositories":[{"id":1131928459,"name":"Windfall","full_name":"Chocapikk/Windfall","html_url":"https://github.com/Chocapikk/Windfall","description":"Windfall - Unauthenticated RCE exploit chain for Windmill \u0026 Nextcloud Flow (CVE-2026-29059). Path traversal + credential leak + PostgreSQL heap dump + Nextcloud AppAPI takeover.","stargazers_count":15,"forks_count":2,"language":"Ruby","updated_at":"2026-06-22T14:07:02Z","pushed_at":"2026-04-07T17:20:20Z","created_at":"2026-01-11T00:57:54Z","topics":["cve","cve-2026-22683","cve-2026-23696","cve-2026-29059","exploit","nextcloud","path-traversal","pentesting","python","rce","security","security-research","sql-injection","windmill"],"owner":{"login":"Chocapikk","html_url":"https://github.com/Chocapikk"},"clone_url":"https://github.com/Chocapikk/Windfall.git","has_code":true,"age_days":165}]},{"cve_id":"CVE-2026-23723","repositories":[{"id":1153172706,"name":"CVE-2026-23723-POC","full_name":"Ch35h1r3c47/CVE-2026-23723-POC","html_url":"https://github.com/Ch35h1r3c47/CVE-2026-23723-POC","description":"This is a lightweight Python helper script designed to automate the generation of sqlmap-compatible PoC files for the authenticated error-based SQL injection vulnerability in WeGIA (≤ 3.6.1), identified as GHSA-xfmp-2hf9-gfjp.","stargazers_count":3,"forks_count":1,"language":"Python","updated_at":"2026-02-09T06:03:55Z","pushed_at":"2026-02-09T02:13:29Z","created_at":"2026-02-09T01:43:55Z","topics":[],"owner":{"login":"Ch35h1r3c47","html_url":"https://github.com/Ch35h1r3c47"},"clone_url":"https://github.com/Ch35h1r3c47/CVE-2026-23723-POC.git","has_code":true,"age_days":136}]},{"cve_id":"CVE-2026-23744","repositories":[{"id":1188308083,"name":"CVE-2026-23744-Remote-Code-Execution-POC","full_name":"suljov/CVE-2026-23744-Remote-Code-Execution-POC","html_url":"https://github.com/suljov/CVE-2026-23744-Remote-Code-Execution-POC","description":"MCPJam inspector contains a remote code execution","stargazers_count":9,"forks_count":1,"language":"Python","updated_at":"2026-06-04T13:58:56Z","pushed_at":"2026-03-22T17:21:42Z","created_at":"2026-03-21T22:33:03Z","topics":[],"owner":{"login":"suljov","html_url":"https://github.com/suljov"},"clone_url":"https://github.com/suljov/CVE-2026-23744-Remote-Code-Execution-POC.git","has_code":true,"age_days":95},{"id":1138037990,"name":"CVE-2026-23744-PoC","full_name":"ibreakthingsforaliving/CVE-2026-23744-PoC","html_url":"https://github.com/ibreakthingsforaliving/CVE-2026-23744-PoC","description":"CVE-2026-23744 - Versions 1.4.2 and earlier of MCPJam inspector are vulnerable to remote code execution (RCE). Because the tool listens on 0.0.0.0 by default, an attacker can trigger the installation and execution of a malicious MCP server by sending a crafted HTTP request. Version 1.4.3 contains a patch for this issue.","stargazers_count":8,"forks_count":2,"language":"Python","updated_at":"2026-06-19T20:16:55Z","pushed_at":"2026-06-14T14:00:59Z","created_at":"2026-01-20T06:55:53Z","topics":[],"owner":{"login":"ibreakthingsforaliving","html_url":"https://github.com/ibreakthingsforaliving"},"clone_url":"https://github.com/ibreakthingsforaliving/CVE-2026-23744-PoC.git","has_code":true,"age_days":156},{"id":1206650375,"name":"exploit-CVE-2026-23744","full_name":"luiskrnr/exploit-CVE-2026-23744","html_url":"https://github.com/luiskrnr/exploit-CVE-2026-23744","description":"MCPJam Inspector is a local-first development platform for MCP servers. In versions 1.4.2 (and earlier), a RCE flaw lets attackers send crafted HTTP request that installs an MCP server and runs code remotely, because the service listens on 0.0.0.0 (instead of 127.0.0.1) by default.","stargazers_count":3,"forks_count":0,"language":"Python","updated_at":"2026-06-18T09:42:54Z","pushed_at":"2026-04-10T06:37:14Z","created_at":"2026-04-10T05:52:49Z","topics":[],"owner":{"login":"luiskrnr","html_url":"https://github.com/luiskrnr"},"clone_url":"https://github.com/luiskrnr/exploit-CVE-2026-23744.git","has_code":true,"age_days":76},{"id":1189864734,"name":"CVE-2026-23744","full_name":"FrenzisRed/CVE-2026-23744","html_url":"https://github.com/FrenzisRed/CVE-2026-23744","description":"CVE-2026-23744 - MCPJam inspector Remote-Code-Execution: Proof Of Concept (POC","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-05-26T13:33:57Z","pushed_at":"2026-03-23T20:41:31Z","created_at":"2026-03-23T18:38:28Z","topics":[],"owner":{"login":"FrenzisRed","html_url":"https://github.com/FrenzisRed"},"clone_url":"https://github.com/FrenzisRed/CVE-2026-23744.git","has_code":true,"age_days":94},{"id":1254946300,"name":"HTB-DevHub","full_name":"thisisish/HTB-DevHub","html_url":"https://github.com/thisisish/HTB-DevHub","description":"CVE-2026-23744 RCE + Privilege Escalation","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-06-17T02:23:00Z","pushed_at":"2026-05-31T07:51:31Z","created_at":"2026-05-31T07:39:58Z","topics":[],"owner":{"login":"thisisish","html_url":"https://github.com/thisisish"},"clone_url":"https://github.com/thisisish/HTB-DevHub.git","has_code":true,"age_days":25},{"id":1195404718,"name":"CVE-2026-23744","full_name":"CyLock11/CVE-2026-23744","html_url":"https://github.com/CyLock11/CVE-2026-23744","description":"CVE-2026-23744 - MCP Connect RCE via Unauthenticated Command Injection","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-24T16:20:49Z","pushed_at":"2026-03-29T16:31:26Z","created_at":"2026-03-29T16:26:01Z","topics":[],"owner":{"login":"CyLock11","html_url":"https://github.com/CyLock11"},"clone_url":"https://github.com/CyLock11/CVE-2026-23744.git","has_code":true,"age_days":88},{"id":1193817359,"name":"CVE-2026-23744-script","full_name":"0xg00se/CVE-2026-23744-script","html_url":"https://github.com/0xg00se/CVE-2026-23744-script","description":"Exploit script for CVE-2026-23744","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-03-29T20:12:57Z","pushed_at":"2026-03-27T18:06:03Z","created_at":"2026-03-27T15:57:26Z","topics":[],"owner":{"login":"0xg00se","html_url":"https://github.com/0xg00se"},"clone_url":"https://github.com/0xg00se/CVE-2026-23744-script.git","has_code":true,"age_days":90},{"id":1192857713,"name":"CVE-2026-23744","full_name":"ctzisme/CVE-2026-23744","html_url":"https://github.com/ctzisme/CVE-2026-23744","description":"PoC for CVE-2026-23744, demonstrating an unauthenticated RCE in MCPJam Inspector (\u003c= 1.4.2).","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-04-03T22:10:10Z","pushed_at":"2026-03-26T22:36:49Z","created_at":"2026-03-26T16:21:22Z","topics":["cybersecurity","exploit","mcp","pentest","pentest-scripts","pentesting","poc","python","security"],"owner":{"login":"ctzisme","html_url":"https://github.com/ctzisme"},"clone_url":"https://github.com/ctzisme/CVE-2026-23744.git","has_code":true,"age_days":91},{"id":1190946247,"name":"CVE-2026-23744","full_name":"InzegoSec/CVE-2026-23744","html_url":"https://github.com/InzegoSec/CVE-2026-23744","description":"Exploit to MCPJam Inspector \u003c=1.4.2","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-05T01:23:34Z","pushed_at":"2026-03-25T13:11:22Z","created_at":"2026-03-24T19:18:14Z","topics":[],"owner":{"login":"InzegoSec","html_url":"https://github.com/InzegoSec"},"clone_url":"https://github.com/InzegoSec/CVE-2026-23744.git","has_code":true,"age_days":93},{"id":1255104011,"name":"CVE-2026-23744-RCE-for-MCPjam-inspector-v1.4.2","full_name":"SrGinebras/CVE-2026-23744-RCE-for-MCPjam-inspector-v1.4.2","html_url":"https://github.com/SrGinebras/CVE-2026-23744-RCE-for-MCPjam-inspector-v1.4.2","description":"","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-03T22:07:11Z","pushed_at":"2026-06-03T22:07:07Z","created_at":"2026-05-31T12:10:47Z","topics":[],"owner":{"login":"SrGinebras","html_url":"https://github.com/SrGinebras"},"clone_url":"https://github.com/SrGinebras/CVE-2026-23744-RCE-for-MCPjam-inspector-v1.4.2.git","has_code":true,"age_days":25},{"id":1256692220,"name":"CVE-2026-23744-RCE","full_name":"alisster00/CVE-2026-23744-RCE","html_url":"https://github.com/alisster00/CVE-2026-23744-RCE","description":"This utility was created during research involving MCPJam v1.4.2. The application exposes an API endpoint that accepts a server configuration object. Under certain conditions, insufficient validation may allow unintended command execution.","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-09T02:26:00Z","pushed_at":"2026-06-02T02:33:47Z","created_at":"2026-06-02T02:25:52Z","topics":["cve","cve-2026-23744","netcat-reverse-shell","python","python3","rce","rce-exploit","reverseshell","script"],"owner":{"login":"alisster00","html_url":"https://github.com/alisster00"},"clone_url":"https://github.com/alisster00/CVE-2026-23744-RCE.git","has_code":true,"age_days":23},{"id":1277236735,"name":"mcpExec","full_name":"daemoncibsec/mcpExec","html_url":"https://github.com/daemoncibsec/mcpExec","description":"POC for CVE-2026-23744 for a python revshell","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-22T18:32:31Z","pushed_at":"2026-06-22T18:32:26Z","created_at":"2026-06-22T17:55:35Z","topics":[],"owner":{"login":"daemoncibsec","html_url":"https://github.com/daemoncibsec"},"clone_url":"https://github.com/daemoncibsec/mcpExec.git","has_code":true,"age_days":3},{"id":1158918207,"name":"CVE-2026-23744-Lab","full_name":"rootdirective-sec/CVE-2026-23744-Lab","html_url":"https://github.com/rootdirective-sec/CVE-2026-23744-Lab","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-02-16T04:48:58Z","pushed_at":"2026-02-16T04:48:54Z","created_at":"2026-02-16T04:43:21Z","topics":[],"owner":{"login":"rootdirective-sec","html_url":"https://github.com/rootdirective-sec"},"clone_url":"https://github.com/rootdirective-sec/CVE-2026-23744-Lab.git","has_code":true,"age_days":129},{"id":1194480523,"name":"CVE-2026-23744-POC","full_name":"d3vn0mi/CVE-2026-23744-POC","html_url":"https://github.com/d3vn0mi/CVE-2026-23744-POC","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-28T17:41:38Z","pushed_at":"2026-03-28T17:41:34Z","created_at":"2026-03-28T12:17:47Z","topics":[],"owner":{"login":"d3vn0mi","html_url":"https://github.com/d3vn0mi"},"clone_url":"https://github.com/d3vn0mi/CVE-2026-23744-POC.git","has_code":true,"age_days":89},{"id":1193793261,"name":"CVE-2026-23744-POC","full_name":"fcjaviergarcia/CVE-2026-23744-POC","html_url":"https://github.com/fcjaviergarcia/CVE-2026-23744-POC","description":"Proof of Concept (PoC) exploit for CVE-2026-23744, a vulnerability affecting MCPJam Inspector that allows remote command execution (RCE) through exposed internal debugging endpoints","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-27T15:35:49Z","pushed_at":"2026-03-27T15:35:45Z","created_at":"2026-03-27T15:31:08Z","topics":[],"owner":{"login":"fcjaviergarcia","html_url":"https://github.com/fcjaviergarcia"},"clone_url":"https://github.com/fcjaviergarcia/CVE-2026-23744-POC.git","has_code":true,"age_days":90},{"id":1193724607,"name":"CVE-2026-23744","full_name":"AhmadF77/CVE-2026-23744","html_url":"https://github.com/AhmadF77/CVE-2026-23744","description":"python script for exploiting CVE-2026-23744","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-27T14:17:12Z","pushed_at":"2026-03-27T14:17:08Z","created_at":"2026-03-27T14:14:14Z","topics":[],"owner":{"login":"AhmadF77","html_url":"https://github.com/AhmadF77"},"clone_url":"https://github.com/AhmadF77/CVE-2026-23744.git","has_code":true,"age_days":90},{"id":1191196692,"name":"PoC-CVE-2026-23744","full_name":"z4yd3/PoC-CVE-2026-23744","html_url":"https://github.com/z4yd3/PoC-CVE-2026-23744","description":"Remote Code Execution on MCPJam Inspector \u003c= 1.4.2","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-29T11:38:26Z","pushed_at":"2026-03-25T04:35:44Z","created_at":"2026-03-25T02:24:21Z","topics":[],"owner":{"login":"z4yd3","html_url":"https://github.com/z4yd3"},"clone_url":"https://github.com/z4yd3/PoC-CVE-2026-23744.git","has_code":true,"age_days":92},{"id":1189010725,"name":"mcpjaminspector-unauth-rce","full_name":"fckoo/mcpjaminspector-unauth-rce","html_url":"https://github.com/fckoo/mcpjaminspector-unauth-rce","description":"CVE-2026-23744 RCE in MCPJam inspector \u003c= 1.4.2","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-23T01:05:52Z","pushed_at":"2026-03-23T01:05:49Z","created_at":"2026-03-22T21:51:46Z","topics":[],"owner":{"login":"fckoo","html_url":"https://github.com/fckoo"},"clone_url":"https://github.com/fckoo/mcpjaminspector-unauth-rce.git","has_code":true,"age_days":94},{"id":1188403403,"name":"CVE-2026-23744-PoC","full_name":"H1sok444/CVE-2026-23744-PoC","html_url":"https://github.com/H1sok444/CVE-2026-23744-PoC","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-22T02:59:54Z","pushed_at":"2026-03-22T02:59:51Z","created_at":"2026-03-22T02:53:22Z","topics":[],"owner":{"login":"H1sok444","html_url":"https://github.com/H1sok444"},"clone_url":"https://github.com/H1sok444/CVE-2026-23744-PoC.git","has_code":true,"age_days":95},{"id":1255392915,"name":"CVE-2026-23744","full_name":"Least-Significant-Bit/CVE-2026-23744","html_url":"https://github.com/Least-Significant-Bit/CVE-2026-23744","description":"Remote Code Execution in MCPJam 1.4.2 and older.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-31T19:20:16Z","pushed_at":"2026-05-31T19:20:13Z","created_at":"2026-05-31T19:17:49Z","topics":[],"owner":{"login":"Least-Significant-Bit","html_url":"https://github.com/Least-Significant-Bit"},"clone_url":"https://github.com/Least-Significant-Bit/CVE-2026-23744.git","has_code":true,"age_days":25},{"id":1255321766,"name":"CVE-2026-23744-POC","full_name":"sbouabid-sec/CVE-2026-23744-POC","html_url":"https://github.com/sbouabid-sec/CVE-2026-23744-POC","description":"CVE-2026-23744 — Proof of concept exploit for an unauthenticated Remote Code Execution vulnerability in MCPJam Inspector \u003c= 1.4.2. ","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-31T17:30:27Z","pushed_at":"2026-05-31T17:30:24Z","created_at":"2026-05-31T17:27:37Z","topics":[],"owner":{"login":"sbouabid-sec","html_url":"https://github.com/sbouabid-sec"},"clone_url":"https://github.com/sbouabid-sec/CVE-2026-23744-POC.git","has_code":true,"age_days":25},{"id":1254785876,"name":"CVE-2026-23744","full_name":"p1ctur3p3rf3ct/CVE-2026-23744","html_url":"https://github.com/p1ctur3p3rf3ct/CVE-2026-23744","description":"CVE-2026-23744 PoC","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-31T02:22:26Z","pushed_at":"2026-05-31T02:22:23Z","created_at":"2026-05-31T02:11:26Z","topics":[],"owner":{"login":"p1ctur3p3rf3ct","html_url":"https://github.com/p1ctur3p3rf3ct"},"clone_url":"https://github.com/p1ctur3p3rf3ct/CVE-2026-23744.git","has_code":true,"age_days":25},{"id":1268878559,"name":"cve-2026-23744","full_name":"rohit-sundar/cve-2026-23744","html_url":"https://github.com/rohit-sundar/cve-2026-23744","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-15T05:02:16Z","pushed_at":"2026-06-15T05:02:12Z","created_at":"2026-06-14T03:30:45Z","topics":[],"owner":{"login":"rohit-sundar","html_url":"https://github.com/rohit-sundar"},"clone_url":"https://github.com/rohit-sundar/cve-2026-23744.git","has_code":true,"age_days":11},{"id":1264009422,"name":"mcpjam-cve-2026-23744-validator","full_name":"kennedy-aikohi/mcpjam-cve-2026-23744-validator","html_url":"https://github.com/kennedy-aikohi/mcpjam-cve-2026-23744-validator","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-09T13:47:42Z","pushed_at":"2026-06-09T13:39:31Z","created_at":"2026-06-09T13:26:27Z","topics":[],"owner":{"login":"kennedy-aikohi","html_url":"https://github.com/kennedy-aikohi"},"clone_url":"https://github.com/kennedy-aikohi/mcpjam-cve-2026-23744-validator.git","has_code":true,"age_days":16},{"id":1257791536,"name":"mcp-pwn","full_name":"jf-gondim/mcp-pwn","html_url":"https://github.com/jf-gondim/mcp-pwn","description":"PoC exploit for CVE-2026-23744 — unauthenticated RCE in MCPJam Inspector via unvalidated serverConfig command injection on /api/mcp/connect, enabling reverse shell as process owner without credentials.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-08T01:40:27Z","pushed_at":"2026-06-08T01:40:24Z","created_at":"2026-06-03T02:31:57Z","topics":[],"owner":{"login":"jf-gondim","html_url":"https://github.com/jf-gondim"},"clone_url":"https://github.com/jf-gondim/mcp-pwn.git","has_code":true,"age_days":22},{"id":1260976509,"name":"CVE-2026-23744","full_name":"oryk0/CVE-2026-23744","html_url":"https://github.com/oryk0/CVE-2026-23744","description":"CVE-2026-23744 Reverse shell","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-06T05:01:55Z","pushed_at":"2026-06-06T05:01:52Z","created_at":"2026-06-06T04:57:39Z","topics":[],"owner":{"login":"oryk0","html_url":"https://github.com/oryk0"},"clone_url":"https://github.com/oryk0/CVE-2026-23744.git","has_code":true,"age_days":19},{"id":1260132319,"name":"CVE-2026-23744-poc","full_name":"keeieb79/CVE-2026-23744-poc","html_url":"https://github.com/keeieb79/CVE-2026-23744-poc","description":"cve-2026-23744 python exploit","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-05T07:38:39Z","pushed_at":"2026-06-05T07:38:07Z","created_at":"2026-06-05T07:27:43Z","topics":[],"owner":{"login":"keeieb79","html_url":"https://github.com/keeieb79"},"clone_url":"https://github.com/keeieb79/CVE-2026-23744-poc.git","has_code":true,"age_days":20},{"id":1260039943,"name":"CVE-2026-23744-MCPJAM-RCE-exploit","full_name":"Dahalsamir/CVE-2026-23744-MCPJAM-RCE-exploit","html_url":"https://github.com/Dahalsamir/CVE-2026-23744-MCPJAM-RCE-exploit","description":"This Python proof-of-concept targets a vulnerable MCP (Model Context Protocol) service exposed by the target application. The vulnerability allows an attacker to supply arbitrary server configuration parameters through the /api/mcp/connect endpoint.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-05T05:22:33Z","pushed_at":"2026-06-05T05:22:29Z","created_at":"2026-06-05T05:19:26Z","topics":[],"owner":{"login":"Dahalsamir","html_url":"https://github.com/Dahalsamir"},"clone_url":"https://github.com/Dahalsamir/CVE-2026-23744-MCPJAM-RCE-exploit.git","has_code":true,"age_days":20},{"id":1259569257,"name":"CVE-2026-23744","full_name":"avivyap/CVE-2026-23744","html_url":"https://github.com/avivyap/CVE-2026-23744","description":"CVE-2026-23744","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-04T16:30:30Z","pushed_at":"2026-06-04T16:29:50Z","created_at":"2026-06-04T16:29:39Z","topics":[],"owner":{"login":"avivyap","html_url":"https://github.com/avivyap"},"clone_url":"https://github.com/avivyap/CVE-2026-23744.git","has_code":true,"age_days":21},{"id":1257689021,"name":"CVE-2026-23744-PoC","full_name":"MrR0b0t19/CVE-2026-23744-PoC","html_url":"https://github.com/MrR0b0t19/CVE-2026-23744-PoC","description":"","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-03T00:34:41Z","pushed_at":"2026-06-03T00:34:37Z","created_at":"2026-06-02T23:19:04Z","topics":[],"owner":{"login":"MrR0b0t19","html_url":"https://github.com/MrR0b0t19"},"clone_url":"https://github.com/MrR0b0t19/CVE-2026-23744-PoC.git","has_code":true,"age_days":22},{"id":1256770133,"name":"CVE-2026-23744","full_name":"m2sousa/CVE-2026-23744","html_url":"https://github.com/m2sousa/CVE-2026-23744","description":"CVE-2026-23744 Proof-of-concept.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-02T06:35:17Z","pushed_at":"2026-06-02T06:35:12Z","created_at":"2026-06-02T04:34:01Z","topics":[],"owner":{"login":"m2sousa","html_url":"https://github.com/m2sousa"},"clone_url":"https://github.com/m2sousa/CVE-2026-23744.git","has_code":true,"age_days":23},{"id":1255637982,"name":"MCPJam-Inspector-1.4.2-Remote-Code-Execution-CVE-2026-23744","full_name":"afifudinmtop/MCPJam-Inspector-1.4.2-Remote-Code-Execution-CVE-2026-23744","html_url":"https://github.com/afifudinmtop/MCPJam-Inspector-1.4.2-Remote-Code-Execution-CVE-2026-23744","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-01T03:24:51Z","pushed_at":"2026-06-01T03:24:47Z","created_at":"2026-06-01T03:21:12Z","topics":[],"owner":{"login":"afifudinmtop","html_url":"https://github.com/afifudinmtop"},"clone_url":"https://github.com/afifudinmtop/MCPJam-Inspector-1.4.2-Remote-Code-Execution-CVE-2026-23744.git","has_code":true,"age_days":24}]},{"cve_id":"CVE-2026-23745","repositories":[{"id":1136175437,"name":"CVE-2026-23745","full_name":"Jvr2022/CVE-2026-23745","html_url":"https://github.com/Jvr2022/CVE-2026-23745","description":"Proof of Concept for CVE-2026-23745: Arbitrary File Overwrite vulnerability in node-tar (versions \u003c 7.5.3).","stargazers_count":22,"forks_count":4,"language":"JavaScript","updated_at":"2026-05-10T11:56:37Z","pushed_at":"2026-01-17T16:48:42Z","created_at":"2026-01-17T07:45:42Z","topics":["arbitrary-file-overwrite","cve","cve-2026-23745","node-tar","path-traversal","poc","security-research","symlink-poisoning","vulnerability"],"owner":{"login":"Jvr2022","html_url":"https://github.com/Jvr2022"},"clone_url":"https://github.com/Jvr2022/CVE-2026-23745.git","has_code":true,"age_days":159},{"id":1192556809,"name":"CVE-2026-23745-via-graphql-DEMO","full_name":"Novem13th/CVE-2026-23745-via-graphql-DEMO","html_url":"https://github.com/Novem13th/CVE-2026-23745-via-graphql-DEMO","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-26T11:01:48Z","pushed_at":"2026-03-26T11:01:34Z","created_at":"2026-03-26T10:34:18Z","topics":[],"owner":{"login":"Novem13th","html_url":"https://github.com/Novem13th"},"clone_url":"https://github.com/Novem13th/CVE-2026-23745-via-graphql-DEMO.git","has_code":true,"age_days":91}]},{"cve_id":"CVE-2026-23760","repositories":[{"id":1141194973,"name":"smartermail-CVE-2026-23760-poc","full_name":"MaxMnMl/smartermail-CVE-2026-23760-poc","html_url":"https://github.com/MaxMnMl/smartermail-CVE-2026-23760-poc","description":"CVE-2026-23760 - An authentication bypass via password reset API in SmarterMail.","stargazers_count":3,"forks_count":2,"language":"","updated_at":"2026-04-15T12:00:58Z","pushed_at":"2026-01-24T13:39:14Z","created_at":"2026-01-24T12:30:34Z","topics":[],"owner":{"login":"MaxMnMl","html_url":"https://github.com/MaxMnMl"},"clone_url":"https://github.com/MaxMnMl/smartermail-CVE-2026-23760-poc.git","has_code":false,"age_days":152}]},{"cve_id":"CVE-2026-23813","repositories":[{"id":1247228138,"name":"CVE-2026-23813","full_name":"offseckit/CVE-2026-23813","html_url":"https://github.com/offseckit/CVE-2026-23813","description":"CVE-2026-23813 — AOS-CX pre-auth bypass via nginx regex. Detection script, bypass demo, config-disclosure PoC, and IDS rules.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-23T08:00:58Z","pushed_at":"2026-05-23T08:00:54Z","created_at":"2026-05-23T03:41:46Z","topics":["aos-cx","aruba","auth-bypass","cve-2026-23813","nginx","proof-of-concept","security-research"],"owner":{"login":"offseckit","html_url":"https://github.com/offseckit"},"clone_url":"https://github.com/offseckit/CVE-2026-23813.git","has_code":true,"age_days":33}]},{"cve_id":"CVE-2026-23829","repositories":[{"id":1143864229,"name":"CTT-Mailpit-RCE-v1.0---Temporal-Resonance-Mail-Server-Takeover","full_name":"SimoesCTT/CTT-Mailpit-RCE-v1.0---Temporal-Resonance-Mail-Server-Takeover","html_url":"https://github.com/SimoesCTT/CTT-Mailpit-RCE-v1.0---Temporal-Resonance-Mail-Server-Takeover","description":"FROM HEADER INJECTION TO FULL RCE DOMINANCE  The Original Flaw (CVE-2026-23829)  · CVSS: 6.1/10 (Medium) - Header injection via regex bypass · Impact: Email spoofing, limited header manipulation · Reality: Boring, basic, barely worth weaponizing  CTT Enhancement Revelation","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-28T03:31:32Z","pushed_at":"2026-01-28T03:31:29Z","created_at":"2026-01-28T03:28:04Z","topics":[],"owner":{"login":"SimoesCTT","html_url":"https://github.com/SimoesCTT"},"clone_url":"https://github.com/SimoesCTT/CTT-Mailpit-RCE-v1.0---Temporal-Resonance-Mail-Server-Takeover.git","has_code":true,"age_days":148},{"id":1161335669,"name":"-CVE-2026-23829-CTT-Mailpit-phase-reconstruction-","full_name":"SimoesCTT/-CVE-2026-23829-CTT-Mailpit-phase-reconstruction-","html_url":"https://github.com/SimoesCTT/-CVE-2026-23829-CTT-Mailpit-phase-reconstruction-","description":"It's a CRLF injection in Mailpit's SMTP server — a classic data corruption vulnerability. But under CTT, it's not just a bug. It's a phase reconstruction opportunity.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-02-19T02:27:09Z","pushed_at":"2026-02-19T02:27:06Z","created_at":"2026-02-19T01:47:20Z","topics":[],"owner":{"login":"SimoesCTT","html_url":"https://github.com/SimoesCTT"},"clone_url":"https://github.com/SimoesCTT/-CVE-2026-23829-CTT-Mailpit-phase-reconstruction-.git","has_code":true,"age_days":126}]},{"cve_id":"CVE-2026-23830","repositories":[{"id":1144211283,"name":"CVE-2026-23830-SandBreak","full_name":"Galaxy-sc/CVE-2026-23830-SandBreak","html_url":"https://github.com/Galaxy-sc/CVE-2026-23830-SandBreak","description":"","stargazers_count":1,"forks_count":0,"language":"Go","updated_at":"2026-05-02T09:41:11Z","pushed_at":"2026-02-12T07:01:37Z","created_at":"2026-01-28T12:32:07Z","topics":[],"owner":{"login":"Galaxy-sc","html_url":"https://github.com/Galaxy-sc"},"clone_url":"https://github.com/Galaxy-sc/CVE-2026-23830-SandBreak.git","has_code":true,"age_days":148}]},{"cve_id":"CVE-2026-23842","repositories":[{"id":1169798784,"name":"CVE-2026-23842-Denial-of-Service-via-Database-Connection-Pool-Exhaustion-version-1.2.10","full_name":"AdityaBhatt3010/CVE-2026-23842-Denial-of-Service-via-Database-Connection-Pool-Exhaustion-version-1.2.10","html_url":"https://github.com/AdityaBhatt3010/CVE-2026-23842-Denial-of-Service-via-Database-Connection-Pool-Exhaustion-version-1.2.10","description":"CVE-2026-23842 — High severity Denial-of-Service vulnerability caused by SQLAlchemy connection pool exhaustion in concurrent get_response() calls in ChatterBot ≤ 1.2.10.","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-05-04T07:51:56Z","pushed_at":"2026-03-01T08:33:07Z","created_at":"2026-03-01T08:23:17Z","topics":["chatterbot","cve","cybersecurity","dos","exploit","race-conditions"],"owner":{"login":"AdityaBhatt3010","html_url":"https://github.com/AdityaBhatt3010"},"clone_url":"https://github.com/AdityaBhatt3010/CVE-2026-23842-Denial-of-Service-via-Database-Connection-Pool-Exhaustion-version-1.2.10.git","has_code":true,"age_days":116}]},{"cve_id":"CVE-2026-23869","repositories":[{"id":1207561092,"name":"CVE-2026-23869-Exploit","full_name":"cybertechajju/CVE-2026-23869-Exploit","html_url":"https://github.com/cybertechajju/CVE-2026-23869-Exploit","description":"","stargazers_count":8,"forks_count":1,"language":"Python","updated_at":"2026-05-10T02:52:32Z","pushed_at":"2026-04-11T05:19:55Z","created_at":"2026-04-11T05:00:48Z","topics":[],"owner":{"login":"cybertechajju","html_url":"https://github.com/cybertechajju"},"clone_url":"https://github.com/cybertechajju/CVE-2026-23869-Exploit.git","has_code":true,"age_days":75},{"id":1206678402,"name":"CVE-2026-23869","full_name":"yohannslm/CVE-2026-23869","html_url":"https://github.com/yohannslm/CVE-2026-23869","description":"POC for CVE-2026-23869","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-10T14:31:42Z","pushed_at":"2026-04-10T14:31:38Z","created_at":"2026-04-10T06:34:17Z","topics":[],"owner":{"login":"yohannslm","html_url":"https://github.com/yohannslm"},"clone_url":"https://github.com/yohannslm/CVE-2026-23869.git","has_code":false,"age_days":76}]},{"cve_id":"CVE-2026-23870","repositories":[{"id":1232414163,"name":"next-16.2.4-pocs","full_name":"dwisiswant0/next-16.2.4-pocs","html_url":"https://github.com/dwisiswant0/next-16.2.4-pocs","description":"Next.js v16.2.4 Security PoC Collection (CVE-2026-23870, CVE-2026-44575, CVE-2026-44579, CVE-2026-44574, CVE-2026-44578, CVE-2026-44573, CVE-2026-44581, CVE-2026-44580, CVE-2026-44577, CVE-2026-44576, CVE-2026-44582, CVE-2026-44572)","stargazers_count":168,"forks_count":37,"language":"Python","updated_at":"2026-06-22T11:05:03Z","pushed_at":"2026-05-12T04:28:18Z","created_at":"2026-05-07T23:00:40Z","topics":[],"owner":{"login":"dwisiswant0","html_url":"https://github.com/dwisiswant0"},"clone_url":"https://github.com/dwisiswant0/next-16.2.4-pocs.git","has_code":true,"age_days":48},{"id":1237828341,"name":"nextjs-cve-2026-23870-checker","full_name":"emresandikci/nextjs-cve-2026-23870-checker","html_url":"https://github.com/emresandikci/nextjs-cve-2026-23870-checker","description":"Checker and fixer for all 13 vulnerabilities in the Next.js May 2026 security release (CVE-2026-23870)","stargazers_count":0,"forks_count":0,"language":"TypeScript","updated_at":"2026-05-13T15:18:20Z","pushed_at":"2026-05-13T14:47:20Z","created_at":"2026-05-13T14:47:03Z","topics":["nextjs","nextjs-cve-2026-23870","security"],"owner":{"login":"emresandikci","html_url":"https://github.com/emresandikci"},"clone_url":"https://github.com/emresandikci/nextjs-cve-2026-23870-checker.git","has_code":true,"age_days":43}]},{"cve_id":"CVE-2026-23885","repositories":[{"id":1138141098,"name":"CVE-2026-23885","full_name":"TheDeepOpc/CVE-2026-23885","html_url":"https://github.com/TheDeepOpc/CVE-2026-23885","description":"","stargazers_count":0,"forks_count":1,"language":"","updated_at":"2026-01-20T10:01:33Z","pushed_at":"2026-01-20T10:00:53Z","created_at":"2026-01-20T09:44:29Z","topics":[],"owner":{"login":"TheDeepOpc","html_url":"https://github.com/TheDeepOpc"},"clone_url":"https://github.com/TheDeepOpc/CVE-2026-23885.git","has_code":false,"age_days":156}]},{"cve_id":"CVE-2026-23907","repositories":[{"id":1143204957,"name":"CVE-2026-23907","full_name":"JoakimBulow/CVE-2026-23907","html_url":"https://github.com/JoakimBulow/CVE-2026-23907","description":"CVE-2026-23907 - pdfbox - Path Traversal","stargazers_count":0,"forks_count":0,"language":"Java","updated_at":"2026-03-10T18:01:15Z","pushed_at":"2026-01-27T10:00:26Z","created_at":"2026-01-27T09:43:26Z","topics":[],"owner":{"login":"JoakimBulow","html_url":"https://github.com/JoakimBulow"},"clone_url":"https://github.com/JoakimBulow/CVE-2026-23907.git","has_code":true,"age_days":149}]},{"cve_id":"CVE-2026-23918","repositories":[{"id":1235635879,"name":"CVE-2026-23918","full_name":"striga-ai/CVE-2026-23918","html_url":"https://github.com/striga-ai/CVE-2026-23918","description":"Double-free in Apache httpd mod_http2 stream cleanup leading to pre-auth RCE.","stargazers_count":29,"forks_count":6,"language":"Python","updated_at":"2026-06-08T17:17:52Z","pushed_at":"2026-05-11T14:07:45Z","created_at":"2026-05-11T14:07:41Z","topics":[],"owner":{"login":"striga-ai","html_url":"https://github.com/striga-ai"},"clone_url":"https://github.com/striga-ai/CVE-2026-23918.git","has_code":true,"age_days":45},{"id":1230922026,"name":"CVE-2026-23918-Apache-H2-PoC","full_name":"xeloxa/CVE-2026-23918-Apache-H2-PoC","html_url":"https://github.com/xeloxa/CVE-2026-23918-Apache-H2-PoC","description":"Proof-of-Concept exploit for CVE-2026-23918 (Apache mod_http2 double-free). Features multi-mode DoS (Rapid-RST, Slow-Drip) and passive RCE/vulnerability detection for Apache 2.4.66.","stargazers_count":20,"forks_count":6,"language":"Python","updated_at":"2026-06-18T12:23:28Z","pushed_at":"2026-05-06T13:09:45Z","created_at":"2026-05-06T13:00:15Z","topics":["apache","cve-2026-23918","cybersecurity","denial-of-service","dos","double-free","exploit","http2","infosec","python","race-condition"],"owner":{"login":"xeloxa","html_url":"https://github.com/xeloxa"},"clone_url":"https://github.com/xeloxa/CVE-2026-23918-Apache-H2-PoC.git","has_code":true,"age_days":50},{"id":1230494851,"name":"CVE-2026-23918","full_name":"rhasan-com/CVE-2026-23918","html_url":"https://github.com/rhasan-com/CVE-2026-23918","description":"Apache HTTP/2 double-free vulnerability PoC (CVE-2026-23918)","stargazers_count":7,"forks_count":0,"language":"Python","updated_at":"2026-06-22T11:05:02Z","pushed_at":"2026-05-06T06:16:03Z","created_at":"2026-05-06T03:45:57Z","topics":["apache-httpd","cve","cve-2026-23918","cwe-415","dos","poc","vulnerability-research"],"owner":{"login":"rhasan-com","html_url":"https://github.com/rhasan-com"},"clone_url":"https://github.com/rhasan-com/CVE-2026-23918.git","has_code":true,"age_days":50},{"id":1229700238,"name":"CVE-2026-23918-Elite-Auditor","full_name":"qassam-315/CVE-2026-23918-Elite-Auditor","html_url":"https://github.com/qassam-315/CVE-2026-23918-Elite-Auditor","description":"Elite reconnaissance script for auditing Apache's HTTP/2 stack against memory corruption (CVE-2026-23918). Features ALPN protocol forcing and monochrome dashboard intelligence. Built for Blue Teams and Security Researchers.","stargazers_count":6,"forks_count":1,"language":"Python","updated_at":"2026-05-09T12:09:18Z","pushed_at":"2026-05-05T11:03:24Z","created_at":"2026-05-05T09:52:27Z","topics":[],"owner":{"login":"qassam-315","html_url":"https://github.com/qassam-315"},"clone_url":"https://github.com/qassam-315/CVE-2026-23918-Elite-Auditor.git","has_code":true,"age_days":51},{"id":1229781468,"name":"CVE-2026-23918-test","full_name":"12lie20/CVE-2026-23918-test","html_url":"https://github.com/12lie20/CVE-2026-23918-test","description":"This repository contains a Proof of Concept (PoC) demonstrating the Double Free vulnerability (CVE-2026-23918) in Apache HTTP Server 2.4.66 `mod_http2`.","stargazers_count":4,"forks_count":1,"language":"Python","updated_at":"2026-05-11T09:14:59Z","pushed_at":"2026-05-05T15:04:59Z","created_at":"2026-05-05T11:31:35Z","topics":[],"owner":{"login":"12lie20","html_url":"https://github.com/12lie20"},"clone_url":"https://github.com/12lie20/CVE-2026-23918-test.git","has_code":true,"age_days":51},{"id":1231609204,"name":"CVE-2026-23918","full_name":"alt3kx/CVE-2026-23918","html_url":"https://github.com/alt3kx/CVE-2026-23918","description":"CVE-2026-23918 Apache mod_http2 Double-Free Detector","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-17T21:30:48Z","pushed_at":"2026-05-07T17:49:31Z","created_at":"2026-05-07T05:53:07Z","topics":[],"owner":{"login":"alt3kx","html_url":"https://github.com/alt3kx"},"clone_url":"https://github.com/alt3kx/CVE-2026-23918.git","has_code":true,"age_days":49},{"id":1232582562,"name":"Detections-CVE-2026-23918","full_name":"insomnisec/Detections-CVE-2026-23918","html_url":"https://github.com/insomnisec/Detections-CVE-2026-23918","description":"Detection rules for CVE-2026-23918 Apache http2 RCE - Credit: stringa.ai, isec.pl","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-24T21:02:10Z","pushed_at":"2026-05-18T00:16:05Z","created_at":"2026-05-08T04:26:53Z","topics":[],"owner":{"login":"insomnisec","html_url":"https://github.com/insomnisec"},"clone_url":"https://github.com/insomnisec/Detections-CVE-2026-23918.git","has_code":false,"age_days":48},{"id":1230131993,"name":"CVE-2026-23918-Passive-Audit","full_name":"aa022/CVE-2026-23918-Passive-Audit","html_url":"https://github.com/aa022/CVE-2026-23918-Passive-Audit","description":"Passive HTTP metadata auditor for CVE-2026-23918 exposure triage","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-17T15:21:09Z","pushed_at":"2026-05-17T15:21:05Z","created_at":"2026-05-05T17:55:08Z","topics":[],"owner":{"login":"aa022","html_url":"https://github.com/aa022"},"clone_url":"https://github.com/aa022/CVE-2026-23918-Passive-Audit.git","has_code":true,"age_days":51},{"id":1240552897,"name":"apache_audit_cve-2026-23918","full_name":"sibersan/apache_audit_cve-2026-23918","html_url":"https://github.com/sibersan/apache_audit_cve-2026-23918","description":"Python toolkit to audit Apache HTTP Server against CVE-2026-23918 (HTTP/2 double-free RCE) and 4 related CVEs. Passive scanner with ALPN verification + read-only local auditor. No exploits.","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-05-16T09:36:21Z","pushed_at":"2026-05-16T09:36:17Z","created_at":"2026-05-16T09:18:34Z","topics":[],"owner":{"login":"sibersan","html_url":"https://github.com/sibersan"},"clone_url":"https://github.com/sibersan/apache_audit_cve-2026-23918.git","has_code":true,"age_days":40},{"id":1237509422,"name":"CVE-2026-23918-poc","full_name":"Bencodin/CVE-2026-23918-poc","html_url":"https://github.com/Bencodin/CVE-2026-23918-poc","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-13T08:50:14Z","pushed_at":"2026-05-13T08:50:09Z","created_at":"2026-05-13T08:47:24Z","topics":[],"owner":{"login":"Bencodin","html_url":"https://github.com/Bencodin"},"clone_url":"https://github.com/Bencodin/CVE-2026-23918-poc.git","has_code":true,"age_days":43},{"id":1231213518,"name":"CVE-2026-23918-Apache-HTTP-Server-DoubleFree-PoC","full_name":"CYFARE/CVE-2026-23918-Apache-HTTP-Server-DoubleFree-PoC","html_url":"https://github.com/CYFARE/CVE-2026-23918-Apache-HTTP-Server-DoubleFree-PoC","description":"CVE-2026-23918-Apache-HTTP-Server-DoubleFree-PoC","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-06T18:40:47Z","pushed_at":"2026-05-06T18:40:43Z","created_at":"2026-05-06T18:38:18Z","topics":[],"owner":{"login":"CYFARE","html_url":"https://github.com/CYFARE"},"clone_url":"https://github.com/CYFARE/CVE-2026-23918-Apache-HTTP-Server-DoubleFree-PoC.git","has_code":true,"age_days":50},{"id":1231037250,"name":"CVE-2026-23918","full_name":"hackervlogofficial/CVE-2026-23918","html_url":"https://github.com/hackervlogofficial/CVE-2026-23918","description":"This is a proactive tool for security auditing. For your GitHub repository, you’ll want a description that highlights its safety (non-intrusive) and its specific utility for system administrators.","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-05-06T15:15:07Z","pushed_at":"2026-05-06T15:05:41Z","created_at":"2026-05-06T15:04:41Z","topics":[],"owner":{"login":"hackervlogofficial","html_url":"https://github.com/hackervlogofficial"},"clone_url":"https://github.com/hackervlogofficial/CVE-2026-23918.git","has_code":true,"age_days":50},{"id":1230844266,"name":"CVE-2026-23918","full_name":"seguridadentrerios/CVE-2026-23918","html_url":"https://github.com/seguridadentrerios/CVE-2026-23918","description":"","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-06T11:37:12Z","pushed_at":"2026-05-06T11:37:07Z","created_at":"2026-05-06T11:28:44Z","topics":[],"owner":{"login":"seguridadentrerios","html_url":"https://github.com/seguridadentrerios"},"clone_url":"https://github.com/seguridadentrerios/CVE-2026-23918.git","has_code":true,"age_days":50},{"id":1229902051,"name":"Apache-CVE-2026-23918-fix","full_name":"rshosting/Apache-CVE-2026-23918-fix","html_url":"https://github.com/rshosting/Apache-CVE-2026-23918-fix","description":"Upgrade to Apache 2.4.67 to fix CVE-2026-23918 vulneribility","stargazers_count":0,"forks_count":1,"language":"Shell","updated_at":"2026-05-05T15:09:34Z","pushed_at":"2026-05-05T15:08:35Z","created_at":"2026-05-05T13:44:40Z","topics":[],"owner":{"login":"rshosting","html_url":"https://github.com/rshosting"},"clone_url":"https://github.com/rshosting/Apache-CVE-2026-23918-fix.git","has_code":true,"age_days":51}]},{"cve_id":"CVE-2026-23921","repositories":[{"id":1264270231,"name":"analise-vulnerabilidades-zabbix-notebooklm","full_name":"RichJJ98/analise-vulnerabilidades-zabbix-notebooklm","html_url":"https://github.com/RichJJ98/analise-vulnerabilidades-zabbix-notebooklm","description":"Caderno Temático NotebookLM: análise de vulnerabilidades SQL Injection (CVE-2024-42327, CVE-2026-23921) no Zabbix, com engenharia de prompts, cadeia de ataque até RCE e miniguia de hardening","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-09T18:27:03Z","pushed_at":"2026-06-09T18:26:58Z","created_at":"2026-06-09T18:17:32Z","topics":[],"owner":{"login":"RichJJ98","html_url":"https://github.com/RichJJ98"},"clone_url":"https://github.com/RichJJ98/analise-vulnerabilidades-zabbix-notebooklm.git","has_code":false,"age_days":16}]},{"cve_id":"CVE-2026-23947","repositories":[{"id":1138854185,"name":"CVE-2026-23947-PoC","full_name":"ibreakthingsforaliving/CVE-2026-23947-PoC","html_url":"https://github.com/ibreakthingsforaliving/CVE-2026-23947-PoC","description":"CVE-2026-23947 - Orval Arbitrary Code Execution","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-01-21T08:55:37Z","pushed_at":"2026-01-21T08:05:07Z","created_at":"2026-01-21T07:48:22Z","topics":[],"owner":{"login":"ibreakthingsforaliving","html_url":"https://github.com/ibreakthingsforaliving"},"clone_url":"https://github.com/ibreakthingsforaliving/CVE-2026-23947-PoC.git","has_code":false,"age_days":155}]},{"cve_id":"CVE-2026-2395","repositories":[{"id":1139526716,"name":"CVE-2026-2395","full_name":"open-flaw/CVE-2026-2395","html_url":"https://github.com/open-flaw/CVE-2026-2395","description":"CVE-2026-2395: Tar race file collision ","stargazers_count":0,"forks_count":0,"language":"JavaScript","updated_at":"2026-05-16T13:47:08Z","pushed_at":"2026-01-22T04:31:59Z","created_at":"2026-01-22T04:28:48Z","topics":[],"owner":{"login":"open-flaw","html_url":"https://github.com/open-flaw"},"clone_url":"https://github.com/open-flaw/CVE-2026-2395.git","has_code":true,"age_days":154}]},{"cve_id":"CVE-2026-23980","repositories":[{"id":1208670928,"name":"CVE-2026-23980-Exploit","full_name":"oscar-mine/CVE-2026-23980-Exploit","html_url":"https://github.com/oscar-mine/CVE-2026-23980-Exploit","description":"Exploit for CVE-2026-23980 — Authenticated error-based SQL injection in Apache Superset \u003c 6.0.0 via sqlExpression bypass","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-12T15:45:15Z","pushed_at":"2026-04-12T15:44:42Z","created_at":"2026-04-12T15:44:33Z","topics":[],"owner":{"login":"oscar-mine","html_url":"https://github.com/oscar-mine"},"clone_url":"https://github.com/oscar-mine/CVE-2026-23980-Exploit.git","has_code":true,"age_days":74}]},{"cve_id":"CVE-2026-24009","repositories":[{"id":1167441958,"name":"docling-core-CVE-2026-24009","full_name":"BiranPeretz/docling-core-CVE-2026-24009","html_url":"https://github.com/BiranPeretz/docling-core-CVE-2026-24009","description":"Technical write-up and PoC for CVE-2026-24009, demonstrating unsafe YAML loading in docling-core and practical mitigation paths.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-02-26T11:08:33Z","pushed_at":"2026-02-26T11:08:29Z","created_at":"2026-02-26T09:49:17Z","topics":[],"owner":{"login":"BiranPeretz","html_url":"https://github.com/BiranPeretz"},"clone_url":"https://github.com/BiranPeretz/docling-core-CVE-2026-24009.git","has_code":true,"age_days":119}]},{"cve_id":"CVE-2026-24018","repositories":[{"id":1192384285,"name":"Fortinet_FortiClient_Exploit_CVE-2026-24018","full_name":"febin0x10/Fortinet_FortiClient_Exploit_CVE-2026-24018","html_url":"https://github.com/febin0x10/Fortinet_FortiClient_Exploit_CVE-2026-24018","description":"Fully Working Exploit for CVE-2026-24018: A UNIX symbolic link (Symlink) following vulnerability in Fortinet FortiClientLinux 7.4.0 through 7.4.4, FortiClientLinux 7.2.2 through 7.2.12 leads to a local and unprivileged user to escalate their privileges to root.","stargazers_count":2,"forks_count":1,"language":"Shell","updated_at":"2026-04-04T09:06:00Z","pushed_at":"2026-03-26T07:01:33Z","created_at":"2026-03-26T06:51:39Z","topics":[],"owner":{"login":"febin0x10","html_url":"https://github.com/febin0x10"},"clone_url":"https://github.com/febin0x10/Fortinet_FortiClient_Exploit_CVE-2026-24018.git","has_code":true,"age_days":91}]},{"cve_id":"CVE-2026-24049","repositories":[{"id":1150238750,"name":"wheelaudit","full_name":"kriskimmerle/wheelaudit","html_url":"https://github.com/kriskimmerle/wheelaudit","description":"Python Wheel File Security Scanner — scan .whl files for security issues before installation. Detects path traversal (CVE-2026-24049), RECORD tampering, command shadowing, secrets, zip bombs. Zero deps.","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-02-26T12:08:01Z","pushed_at":"2026-02-26T12:07:57Z","created_at":"2026-02-05T03:32:03Z","topics":[],"owner":{"login":"kriskimmerle","html_url":"https://github.com/kriskimmerle"},"clone_url":"https://github.com/kriskimmerle/wheelaudit.git","has_code":true,"age_days":140}]},{"cve_id":"CVE-2026-24055","repositories":[{"id":1238367013,"name":"CVE-2026-24055-OAuth-Langfuse","full_name":"imzanggg/CVE-2026-24055-OAuth-Langfuse","html_url":"https://github.com/imzanggg/CVE-2026-24055-OAuth-Langfuse","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-14T08:17:31Z","pushed_at":"2026-05-14T08:17:26Z","created_at":"2026-05-14T03:59:23Z","topics":[],"owner":{"login":"imzanggg","html_url":"https://github.com/imzanggg"},"clone_url":"https://github.com/imzanggg/CVE-2026-24055-OAuth-Langfuse.git","has_code":false,"age_days":42}]},{"cve_id":"CVE-2026-2406","repositories":[{"id":1145881675,"name":"Terrminus-CVE-2026-2406","full_name":"ridpath/Terrminus-CVE-2026-2406","html_url":"https://github.com/ridpath/Terrminus-CVE-2026-2406","description":" AsyncIO Scanner \u0026 Exploitation Framework for CVE-2026-24061 (Telnet NEW_ENVIRON Auth Bypass). Features high-concurrency discovery, passive fingerprinting, and authorized root shell escalation","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-04-09T10:42:42Z","pushed_at":"2026-01-30T20:26:46Z","created_at":"2026-01-30T10:33:34Z","topics":["cve-2026-24061","cybersecurity-tools","pentesting-tools","privelage-escalation","python-asyncio","rce","red-teaming","red-teaming-tools","telnet-exploit","telnet-scanner","vulnerability-scanners"],"owner":{"login":"ridpath","html_url":"https://github.com/ridpath"},"clone_url":"https://github.com/ridpath/Terrminus-CVE-2026-2406.git","has_code":true,"age_days":146},{"id":1145930302,"name":"CTT-Sovereign-Vortex","full_name":"SimoesCTT/CTT-Sovereign-Vortex","html_url":"https://github.com/SimoesCTT/CTT-Sovereign-Vortex","description":"CTT-Terrminus-Vortex (CVE-2026-2406)","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-30T11:59:32Z","pushed_at":"2026-01-30T11:59:28Z","created_at":"2026-01-30T11:56:44Z","topics":[],"owner":{"login":"SimoesCTT","html_url":"https://github.com/SimoesCTT"},"clone_url":"https://github.com/SimoesCTT/CTT-Sovereign-Vortex.git","has_code":true,"age_days":146}]},{"cve_id":"CVE-2026-24061","repositories":[{"id":1140031758,"name":"CVE-2026-24061","full_name":"SafeBreach-Labs/CVE-2026-24061","html_url":"https://github.com/SafeBreach-Labs/CVE-2026-24061","description":"Exploitation of CVE-2026-24061","stargazers_count":205,"forks_count":47,"language":"Python","updated_at":"2026-06-22T11:04:55Z","pushed_at":"2026-01-22T19:37:20Z","created_at":"2026-01-22T18:30:17Z","topics":[],"owner":{"login":"SafeBreach-Labs","html_url":"https://github.com/SafeBreach-Labs"},"clone_url":"https://github.com/SafeBreach-Labs/CVE-2026-24061.git","has_code":true,"age_days":154},{"id":1175925919,"name":"CVE-2026-24061","full_name":"jacubes/CVE-2026-24061","html_url":"https://github.com/jacubes/CVE-2026-24061","description":"CVE-2026-24061 exploit PoC","stargazers_count":203,"forks_count":51,"language":"Python","updated_at":"2026-06-24T02:18:09Z","pushed_at":"2026-06-15T18:47:49Z","created_at":"2026-03-08T11:25:39Z","topics":["cve","cve-2026-24061","cve-poc","exploit","vulnerability"],"owner":{"login":"jacubes","html_url":"https://github.com/jacubes"},"clone_url":"https://github.com/jacubes/CVE-2026-24061.git","has_code":true,"age_days":109},{"id":1139871873,"name":"CVE-2026-24061-POC","full_name":"JayGLXR/CVE-2026-24061-POC","html_url":"https://github.com/JayGLXR/CVE-2026-24061-POC","description":"","stargazers_count":66,"forks_count":11,"language":"Python","updated_at":"2026-06-09T10:18:54Z","pushed_at":"2026-01-22T14:33:43Z","created_at":"2026-01-22T14:27:50Z","topics":[],"owner":{"login":"JayGLXR","html_url":"https://github.com/JayGLXR"},"clone_url":"https://github.com/JayGLXR/CVE-2026-24061-POC.git","has_code":true,"age_days":154},{"id":1139842961,"name":"Tell-Me-Root","full_name":"parameciumzhang/Tell-Me-Root","html_url":"https://github.com/parameciumzhang/Tell-Me-Root","description":"基于cve-2026-24061 telnet远程认证绕过漏洞的批量检测利用工具","stargazers_count":20,"forks_count":4,"language":"Python","updated_at":"2026-06-22T11:04:55Z","pushed_at":"2026-01-23T08:08:59Z","created_at":"2026-01-22T13:44:54Z","topics":[],"owner":{"login":"parameciumzhang","html_url":"https://github.com/parameciumzhang"},"clone_url":"https://github.com/parameciumzhang/Tell-Me-Root.git","has_code":true,"age_days":154},{"id":1142358914,"name":"CVE-2026-24061-GUI","full_name":"Lingzesec/CVE-2026-24061-GUI","html_url":"https://github.com/Lingzesec/CVE-2026-24061-GUI","description":"CVE-2026-24061 GNU Inetutils telnetd 身份验证绕过漏洞检测与利用 GUI 工具","stargazers_count":16,"forks_count":1,"language":"Python","updated_at":"2026-06-22T11:04:56Z","pushed_at":"2026-01-28T02:28:40Z","created_at":"2026-01-26T09:58:04Z","topics":[],"owner":{"login":"Lingzesec","html_url":"https://github.com/Lingzesec"},"clone_url":"https://github.com/Lingzesec/CVE-2026-24061-GUI.git","has_code":true,"age_days":150},{"id":1138966777,"name":"inetutils-telnetd-auth-bypass","full_name":"leonjza/inetutils-telnetd-auth-bypass","html_url":"https://github.com/leonjza/inetutils-telnetd-auth-bypass","description":"A small docker lab to play with cve-2026-24061, the inetutils-telnetd authentication bypass.","stargazers_count":12,"forks_count":0,"language":"Dockerfile","updated_at":"2026-06-16T13:45:44Z","pushed_at":"2026-01-22T09:25:30Z","created_at":"2026-01-21T10:49:17Z","topics":["auth","bypass","cve-2026-24061","telnet"],"owner":{"login":"leonjza","html_url":"https://github.com/leonjza"},"clone_url":"https://github.com/leonjza/inetutils-telnetd-auth-bypass.git","has_code":true,"age_days":155},{"id":1139869296,"name":"CVE-2026-24061","full_name":"Chocapikk/CVE-2026-24061","html_url":"https://github.com/Chocapikk/CVE-2026-24061","description":"","stargazers_count":11,"forks_count":3,"language":"Go","updated_at":"2026-05-24T06:17:29Z","pushed_at":"2026-01-22T15:15:10Z","created_at":"2026-01-22T14:24:19Z","topics":[],"owner":{"login":"Chocapikk","html_url":"https://github.com/Chocapikk"},"clone_url":"https://github.com/Chocapikk/CVE-2026-24061.git","has_code":true,"age_days":154},{"id":1192668335,"name":"telnet_scan","full_name":"ekomsSavior/telnet_scan","html_url":"https://github.com/ekomsSavior/telnet_scan","description":"scanner/exploiter CVE-2026-24061 \u0026 CVE-2026-32746","stargazers_count":11,"forks_count":6,"language":"Python","updated_at":"2026-06-24T02:16:20Z","pushed_at":"2026-05-22T01:07:58Z","created_at":"2026-03-26T12:52:57Z","topics":[],"owner":{"login":"ekomsSavior","html_url":"https://github.com/ekomsSavior"},"clone_url":"https://github.com/ekomsSavior/telnet_scan.git","has_code":true,"age_days":91},{"id":1139735177,"name":"CVE-2026-24061","full_name":"TryA9ain/CVE-2026-24061","html_url":"https://github.com/TryA9ain/CVE-2026-24061","description":"CVE-2026-24061 Batch Scanning Tool","stargazers_count":8,"forks_count":4,"language":"Python","updated_at":"2026-04-17T19:08:48Z","pushed_at":"2026-01-22T10:53:22Z","created_at":"2026-01-22T10:48:22Z","topics":[],"owner":{"login":"TryA9ain","html_url":"https://github.com/TryA9ain"},"clone_url":"https://github.com/TryA9ain/CVE-2026-24061.git","has_code":true,"age_days":154},{"id":1141353816,"name":"CVE-2026-24061-POC","full_name":"0p5cur/CVE-2026-24061-POC","html_url":"https://github.com/0p5cur/CVE-2026-24061-POC","description":"CVE-2026-24061's poc : a critical authentication bypass in telnetd leading to RCE as root Affects systems with telnetd versions containing the vulnerability from 2015 onwards.","stargazers_count":7,"forks_count":4,"language":"Python","updated_at":"2026-05-31T09:54:09Z","pushed_at":"2026-02-19T13:34:28Z","created_at":"2026-01-24T17:54:40Z","topics":["cve","cve-2026-24061","poc","rce","root","telnet","telnet-server","unauthenticated-rce"],"owner":{"login":"0p5cur","html_url":"https://github.com/0p5cur"},"clone_url":"https://github.com/0p5cur/CVE-2026-24061-POC.git","has_code":true,"age_days":152},{"id":1140098827,"name":"CVE-2026-24061","full_name":"h3athen/CVE-2026-24061","html_url":"https://github.com/h3athen/CVE-2026-24061","description":"CVE-2026-24061 - Exploit","stargazers_count":7,"forks_count":1,"language":"Python","updated_at":"2026-01-28T18:35:51Z","pushed_at":"2026-01-22T20:39:11Z","created_at":"2026-01-22T20:33:24Z","topics":[],"owner":{"login":"h3athen","html_url":"https://github.com/h3athen"},"clone_url":"https://github.com/h3athen/CVE-2026-24061.git","has_code":true,"age_days":153},{"id":1140733735,"name":"CVE-2026-24061","full_name":"SystemVll/CVE-2026-24061","html_url":"https://github.com/SystemVll/CVE-2026-24061","description":"Proof of Concept: CVE-2026-24061 is a critical authentication bypass vulnerability in GNU inetutils-telnetd allowing unauthenticated remote attackers to gain instant root shell access via malicious NEW_ENVIRON telnet option exploitation.","stargazers_count":5,"forks_count":1,"language":"Python","updated_at":"2026-06-23T21:20:41Z","pushed_at":"2026-06-23T21:20:36Z","created_at":"2026-01-23T17:26:43Z","topics":["auth-bypass","cve","cve-2026-24061","cwe","exploit","flaw","nuclei","poc","proof-of-concept","telnet","telnetd"],"owner":{"login":"SystemVll","html_url":"https://github.com/SystemVll"},"clone_url":"https://github.com/SystemVll/CVE-2026-24061.git","has_code":true,"age_days":153},{"id":1141454492,"name":"Twenty-Three-Scanner","full_name":"madfxr/Twenty-Three-Scanner","html_url":"https://github.com/madfxr/Twenty-Three-Scanner","description":"CVE-2026-24061 - GNU InetUtils Telnetd Remote Authentication Bypass","stargazers_count":4,"forks_count":0,"language":"Python","updated_at":"2026-04-13T07:15:24Z","pushed_at":"2026-01-31T00:49:53Z","created_at":"2026-01-24T21:47:29Z","topics":["cve-2026-24061","ethical-hacking","exploit","gnu","inetutils","linux","offensive-security","poc","python","rce","red-team","telnetd"],"owner":{"login":"madfxr","html_url":"https://github.com/madfxr"},"clone_url":"https://github.com/madfxr/Twenty-Three-Scanner.git","has_code":true,"age_days":151},{"id":1141386138,"name":"CVE-2026-24061-setup","full_name":"shivam-bathla/CVE-2026-24061-setup","html_url":"https://github.com/shivam-bathla/CVE-2026-24061-setup","description":"Docker setup for CVE-2026-24061","stargazers_count":4,"forks_count":1,"language":"Dockerfile","updated_at":"2026-05-16T18:12:36Z","pushed_at":"2026-01-24T19:11:03Z","created_at":"2026-01-24T19:03:06Z","topics":[],"owner":{"login":"shivam-bathla","html_url":"https://github.com/shivam-bathla"},"clone_url":"https://github.com/shivam-bathla/CVE-2026-24061-setup.git","has_code":true,"age_days":152},{"id":1148398832,"name":"CVE-2026-24061-PoC","full_name":"ibrahmsql/CVE-2026-24061-PoC","html_url":"https://github.com/ibrahmsql/CVE-2026-24061-PoC","description":"CVE-2026-24061  PoC and walkthrough","stargazers_count":4,"forks_count":0,"language":"Python","updated_at":"2026-03-28T15:21:08Z","pushed_at":"2026-02-02T23:31:32Z","created_at":"2026-02-02T23:20:01Z","topics":[],"owner":{"login":"ibrahmsql","html_url":"https://github.com/ibrahmsql"},"clone_url":"https://github.com/ibrahmsql/CVE-2026-24061-PoC.git","has_code":true,"age_days":142},{"id":1140236389,"name":"CVE-2026-24061","full_name":"xuemian168/CVE-2026-24061","html_url":"https://github.com/xuemian168/CVE-2026-24061","description":"","stargazers_count":3,"forks_count":0,"language":"Dockerfile","updated_at":"2026-04-20T10:02:23Z","pushed_at":"2026-01-23T02:30:36Z","created_at":"2026-01-23T02:14:15Z","topics":[],"owner":{"login":"xuemian168","html_url":"https://github.com/xuemian168"},"clone_url":"https://github.com/xuemian168/CVE-2026-24061.git","has_code":true,"age_days":153},{"id":1147892492,"name":"CVE_2026_24061","full_name":"franckferman/CVE_2026_24061","html_url":"https://github.com/franckferman/CVE_2026_24061","description":" GNU InetUtils telnetd - Unauthenticated Remote Root via NEW-ENVIRON Variable Injection.","stargazers_count":3,"forks_count":0,"language":"Python","updated_at":"2026-04-20T11:42:26Z","pushed_at":"2026-03-27T13:51:19Z","created_at":"2026-02-02T10:30:25Z","topics":["authentication-bypass","cve","cve-2026-24061","cves","exploit","exploitation","exploiting","inetutils","redteam","root-exploit","telnet","telnet-exploit","telnet-hacking","telnetd","telnetd-rce","vulnerability","vulnerability-detection","vulnerability-research","vulnerability-scanner","vulnerability-scanners"],"owner":{"login":"franckferman","html_url":"https://github.com/franckferman"},"clone_url":"https://github.com/franckferman/CVE_2026_24061.git","has_code":true,"age_days":143},{"id":1261246903,"name":"CVE-2026-24061-PoC-Exploit","full_name":"tc4dy/CVE-2026-24061-PoC-Exploit","html_url":"https://github.com/tc4dy/CVE-2026-24061-PoC-Exploit","description":"🚀 CVE-2026-24061 - GNU inetutils-telnetd Auth Bypass Exploit - Full Control 💥 CRLF injection via NEW_ENVIRON leads to auth bypass \u0026 instant root shell. ✅ Single/Mass exploitation, multi-threading, custom port/user, pipe mode, session keep-alive, colored output, retries, timeout support. ⚡ Python \u0026 Bash versions. Critical CVSS 9.8.","stargazers_count":3,"forks_count":0,"language":"Shell","updated_at":"2026-06-22T16:36:28Z","pushed_at":"2026-06-18T20:49:19Z","created_at":"2026-06-06T12:38:43Z","topics":[],"owner":{"login":"tc4dy","html_url":"https://github.com/tc4dy"},"clone_url":"https://github.com/tc4dy/CVE-2026-24061-PoC-Exploit.git","has_code":true,"age_days":19},{"id":1145881675,"name":"Terrminus-CVE-2026-2406","full_name":"ridpath/Terrminus-CVE-2026-2406","html_url":"https://github.com/ridpath/Terrminus-CVE-2026-2406","description":" AsyncIO Scanner \u0026 Exploitation Framework for CVE-2026-24061 (Telnet NEW_ENVIRON Auth Bypass). Features high-concurrency discovery, passive fingerprinting, and authorized root shell escalation","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-04-09T10:42:42Z","pushed_at":"2026-01-30T20:26:46Z","created_at":"2026-01-30T10:33:34Z","topics":["cve-2026-24061","cybersecurity-tools","pentesting-tools","privelage-escalation","python-asyncio","rce","red-teaming","red-teaming-tools","telnet-exploit","telnet-scanner","vulnerability-scanners"],"owner":{"login":"ridpath","html_url":"https://github.com/ridpath"},"clone_url":"https://github.com/ridpath/Terrminus-CVE-2026-2406.git","has_code":true,"age_days":146},{"id":1139728682,"name":"CVE-2026-24061---telnetd","full_name":"duy-31/CVE-2026-24061---telnetd","html_url":"https://github.com/duy-31/CVE-2026-24061---telnetd","description":"Bypass d’authentification Telnet menant à un accès root","stargazers_count":2,"forks_count":1,"language":"Python","updated_at":"2026-01-25T09:55:09Z","pushed_at":"2026-01-25T09:55:06Z","created_at":"2026-01-22T10:38:31Z","topics":[],"owner":{"login":"duy-31","html_url":"https://github.com/duy-31"},"clone_url":"https://github.com/duy-31/CVE-2026-24061---telnetd.git","has_code":true,"age_days":154},{"id":1140546327,"name":"CVE-2026-24061","full_name":"balgan/CVE-2026-24061","html_url":"https://github.com/balgan/CVE-2026-24061","description":"inetutils-telnetd Authentication Bypass - working","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-03-02T12:09:30Z","pushed_at":"2026-01-23T12:36:38Z","created_at":"2026-01-23T12:33:03Z","topics":[],"owner":{"login":"balgan","html_url":"https://github.com/balgan"},"clone_url":"https://github.com/balgan/CVE-2026-24061.git","has_code":true,"age_days":153},{"id":1177128778,"name":"CVE-2026-24061","full_name":"0xBlackash/CVE-2026-24061","html_url":"https://github.com/0xBlackash/CVE-2026-24061","description":"CVE-2026-24061","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-25T14:19:26Z","pushed_at":"2026-06-25T14:18:35Z","created_at":"2026-03-09T18:12:43Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-24061.git","has_code":true,"age_days":108},{"id":1146350782,"name":"telnet-inetutils-auth-bypass-CVE-2026-24061","full_name":"0xXyc/telnet-inetutils-auth-bypass-CVE-2026-24061","html_url":"https://github.com/0xXyc/telnet-inetutils-auth-bypass-CVE-2026-24061","description":"This is a simple PoC that allows you to highlight the severity of the ongoing and actively exploited Telnet bug that is going on right now. Why people are still using Telnet... beyond me.","stargazers_count":1,"forks_count":0,"language":"Dockerfile","updated_at":"2026-05-07T00:49:08Z","pushed_at":"2026-01-31T00:43:09Z","created_at":"2026-01-31T00:41:11Z","topics":[],"owner":{"login":"0xXyc","html_url":"https://github.com/0xXyc"},"clone_url":"https://github.com/0xXyc/telnet-inetutils-auth-bypass-CVE-2026-24061.git","has_code":true,"age_days":145},{"id":1144639519,"name":"telnetd_CVE-2026-24061_tester","full_name":"dotelpenguin/telnetd_CVE-2026-24061_tester","html_url":"https://github.com/dotelpenguin/telnetd_CVE-2026-24061_tester","description":"Checks for CVE-2026-24061 Telnetd exploit","stargazers_count":1,"forks_count":1,"language":"Python","updated_at":"2026-01-29T17:16:33Z","pushed_at":"2026-01-28T22:38:00Z","created_at":"2026-01-28T22:03:09Z","topics":[],"owner":{"login":"dotelpenguin","html_url":"https://github.com/dotelpenguin"},"clone_url":"https://github.com/dotelpenguin/telnetd_CVE-2026-24061_tester.git","has_code":true,"age_days":147},{"id":1143844756,"name":"GNU-Inetutils-telnet-CVE-2026-24061-","full_name":"MY0723/GNU-Inetutils-telnet-CVE-2026-24061-","html_url":"https://github.com/MY0723/GNU-Inetutils-telnet-CVE-2026-24061-","description":"GNU Inetutils telnet远程认证绕过漏洞(CVE-2026-24061)，该漏洞源于 GNU Inetutils telnetd 组件中对环境变量处理不当，攻击者可利用该漏洞，通过构造恶意的 USER 环境变量并发送至受影响的 telnet 服务，触发认证绕过机制，进而实现无需密码直接获取root权限。","stargazers_count":1,"forks_count":1,"language":"","updated_at":"2026-04-15T01:01:50Z","pushed_at":"2026-01-28T03:02:37Z","created_at":"2026-01-28T02:54:23Z","topics":[],"owner":{"login":"MY0723","html_url":"https://github.com/MY0723"},"clone_url":"https://github.com/MY0723/GNU-Inetutils-telnet-CVE-2026-24061-.git","has_code":false,"age_days":148},{"id":1143565832,"name":"tscan","full_name":"cumakurt/tscan","html_url":"https://github.com/cumakurt/tscan","description":"Telnetd Auth Bypass Scanner (CVE-2026-24061)  A Python-based scanner for detecting and exploiting the CVE-2026-24061 vulnerability in GNU Inetutils telnetd services. This tool scans IP addresses or networks for vulnerable telnetd services that allow authentication bypass leading to root shell access.","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-11T22:24:20Z","pushed_at":"2026-01-27T18:50:38Z","created_at":"2026-01-27T18:30:07Z","topics":["cve-2026-24061","scanner","telnet","telnet-server"],"owner":{"login":"cumakurt","html_url":"https://github.com/cumakurt"},"clone_url":"https://github.com/cumakurt/tscan.git","has_code":true,"age_days":149},{"id":1143158630,"name":"CVE-2026-24061-telnet2root","full_name":"FurkanKAYAPINAR/CVE-2026-24061-telnet2root","html_url":"https://github.com/FurkanKAYAPINAR/CVE-2026-24061-telnet2root","description":"","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-01-27T19:04:20Z","pushed_at":"2026-01-27T08:39:02Z","created_at":"2026-01-27T08:32:42Z","topics":[],"owner":{"login":"FurkanKAYAPINAR","html_url":"https://github.com/FurkanKAYAPINAR"},"clone_url":"https://github.com/FurkanKAYAPINAR/CVE-2026-24061-telnet2root.git","has_code":true,"age_days":149},{"id":1141735351,"name":"CVE-2026-24061","full_name":"infat0x/CVE-2026-24061","html_url":"https://github.com/infat0x/CVE-2026-24061","description":"CVE-2026-24061 PoC","stargazers_count":1,"forks_count":0,"language":"C","updated_at":"2026-01-25T19:13:39Z","pushed_at":"2026-01-25T10:45:43Z","created_at":"2026-01-25T10:40:00Z","topics":[],"owner":{"login":"infat0x","html_url":"https://github.com/infat0x"},"clone_url":"https://github.com/infat0x/CVE-2026-24061.git","has_code":true,"age_days":151},{"id":1147490725,"name":"CVE-2026-24061_POC","full_name":"X-croot/CVE-2026-24061_POC","html_url":"https://github.com/X-croot/CVE-2026-24061_POC","description":"POC Script for CVE-2026-24061 (GNU Telnetd Exploit) ","stargazers_count":1,"forks_count":0,"language":"Shell","updated_at":"2026-03-01T13:09:32Z","pushed_at":"2026-02-01T21:01:36Z","created_at":"2026-02-01T20:32:26Z","topics":["cve-2026-24061","exploit","poc","telnet-exploit","telnetd-rce"],"owner":{"login":"X-croot","html_url":"https://github.com/X-croot"},"clone_url":"https://github.com/X-croot/CVE-2026-24061_POC.git","has_code":true,"age_days":143},{"id":1171299106,"name":"telnetd","full_name":"setuju/telnetd","html_url":"https://github.com/setuju/telnetd","description":"Idk what to do here, ill edit soon, but its for the telnetd CVE-2026-24061","stargazers_count":1,"forks_count":0,"language":"Perl","updated_at":"2026-04-02T11:47:27Z","pushed_at":"2026-03-03T04:33:38Z","created_at":"2026-03-03T04:31:50Z","topics":[],"owner":{"login":"setuju","html_url":"https://github.com/setuju"},"clone_url":"https://github.com/setuju/telnetd.git","has_code":true,"age_days":114},{"id":1263040329,"name":"CVE-2026-24061","full_name":"K3ysTr0K3R/CVE-2026-24061","html_url":"https://github.com/K3ysTr0K3R/CVE-2026-24061","description":"A PoC exploit for CVE-2026-24061 - GNU InetUtils telnetd Argument Injection Authentication Bypass","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-09T02:16:35Z","pushed_at":"2026-06-08T15:28:15Z","created_at":"2026-06-08T15:04:56Z","topics":["auth-bypass","cve-2026-24061","telnet-rce","telnetd"],"owner":{"login":"K3ysTr0K3R","html_url":"https://github.com/K3ysTr0K3R"},"clone_url":"https://github.com/K3ysTr0K3R/CVE-2026-24061.git","has_code":true,"age_days":17},{"id":1149163272,"name":"CVE-2026-24061","full_name":"obrunolima1910/CVE-2026-24061","html_url":"https://github.com/obrunolima1910/CVE-2026-24061","description":"🚨 Exploit CVE-2026-24061, a critical remote authentication bypass in GNU inetutils-telnetd, for instant root shell access without authentication.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-25T18:07:23Z","pushed_at":"2026-06-25T18:07:18Z","created_at":"2026-02-03T19:46:10Z","topics":["agent","auth","book","computer-vision","cv","deep-learning","gluon","image-classification","jupyter-notebook","machine-learning","mxnet","neural-network","person-reid","pose-estimation","root","semantic-segmentation","telnet"],"owner":{"login":"obrunolima1910","html_url":"https://github.com/obrunolima1910"},"clone_url":"https://github.com/obrunolima1910/CVE-2026-24061.git","has_code":true,"age_days":142},{"id":1141243311,"name":"CVE-2026-24061","full_name":"midox008/CVE-2026-24061","html_url":"https://github.com/midox008/CVE-2026-24061","description":"GNU Inetutils telnetd Remote Authentication Bypass","stargazers_count":0,"forks_count":0,"language":"Go","updated_at":"2026-04-28T08:59:11Z","pushed_at":"2026-04-28T08:59:14Z","created_at":"2026-01-24T14:15:05Z","topics":[],"owner":{"login":"midox008","html_url":"https://github.com/midox008"},"clone_url":"https://github.com/midox008/CVE-2026-24061.git","has_code":true,"age_days":152},{"id":1146360267,"name":"CVE-2026-24061","full_name":"buzz075/CVE-2026-24061","html_url":"https://github.com/buzz075/CVE-2026-24061","description":"Scanner for CVE-2026-24061","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-31T01:13:37Z","pushed_at":"2026-01-31T01:13:34Z","created_at":"2026-01-31T01:10:23Z","topics":[],"owner":{"login":"buzz075","html_url":"https://github.com/buzz075"},"clone_url":"https://github.com/buzz075/CVE-2026-24061.git","has_code":true,"age_days":145},{"id":1144345797,"name":"CVE-2026-24061","full_name":"Parad0x7e/CVE-2026-24061","html_url":"https://github.com/Parad0x7e/CVE-2026-24061","description":"","stargazers_count":0,"forks_count":0,"language":"Go","updated_at":"2026-01-28T15:57:22Z","pushed_at":"2026-01-28T15:46:17Z","created_at":"2026-01-28T15:41:27Z","topics":[],"owner":{"login":"Parad0x7e","html_url":"https://github.com/Parad0x7e"},"clone_url":"https://github.com/Parad0x7e/CVE-2026-24061.git","has_code":true,"age_days":148},{"id":1144297047,"name":"CVE-2026-24061","full_name":"0x7556/CVE-2026-24061","html_url":"https://github.com/0x7556/CVE-2026-24061","description":"CVE-2026-24061 Telnet RCE Exploit For Linux MacOS Windows","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-01-28T14:46:46Z","pushed_at":"2026-01-28T14:43:48Z","created_at":"2026-01-28T14:35:20Z","topics":[],"owner":{"login":"0x7556","html_url":"https://github.com/0x7556"},"clone_url":"https://github.com/0x7556/CVE-2026-24061.git","has_code":false,"age_days":148},{"id":1143759834,"name":"CVE-2026-24061_Lab","full_name":"Gabs-hub/CVE-2026-24061_Lab","html_url":"https://github.com/Gabs-hub/CVE-2026-24061_Lab","description":"Lab to show the CVE-2026-24061","stargazers_count":0,"forks_count":0,"language":"Dockerfile","updated_at":"2026-01-28T00:41:23Z","pushed_at":"2026-01-28T00:27:12Z","created_at":"2026-01-28T00:27:09Z","topics":[],"owner":{"login":"Gabs-hub","html_url":"https://github.com/Gabs-hub"},"clone_url":"https://github.com/Gabs-hub/CVE-2026-24061_Lab.git","has_code":true,"age_days":148},{"id":1143622792,"name":"Exploit-CVE-2026-24061","full_name":"novitahk/Exploit-CVE-2026-24061","html_url":"https://github.com/novitahk/Exploit-CVE-2026-24061","description":"Payload CVE-2026-24061","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-01-27T20:15:07Z","pushed_at":"2026-01-27T20:15:03Z","created_at":"2026-01-27T20:04:40Z","topics":[],"owner":{"login":"novitahk","html_url":"https://github.com/novitahk"},"clone_url":"https://github.com/novitahk/Exploit-CVE-2026-24061.git","has_code":true,"age_days":149},{"id":1143391754,"name":"CVE-2026-24061-PoC-Telnetd","full_name":"androidteacher/CVE-2026-24061-PoC-Telnetd","html_url":"https://github.com/androidteacher/CVE-2026-24061-PoC-Telnetd","description":"","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-01-27T15:20:44Z","pushed_at":"2026-01-27T15:20:40Z","created_at":"2026-01-27T14:24:19Z","topics":[],"owner":{"login":"androidteacher","html_url":"https://github.com/androidteacher"},"clone_url":"https://github.com/androidteacher/CVE-2026-24061-PoC-Telnetd.git","has_code":true,"age_days":149},{"id":1142770099,"name":"CVE-2026-24061","full_name":"LucasPDiniz/CVE-2026-24061","html_url":"https://github.com/LucasPDiniz/CVE-2026-24061","description":"Vulnerability in GNU InetUtils telnetd Enables Remote Root Access","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-01-27T05:50:02Z","pushed_at":"2026-01-27T05:49:59Z","created_at":"2026-01-26T20:46:49Z","topics":["cve-2026-24061","inetutils","root"],"owner":{"login":"LucasPDiniz","html_url":"https://github.com/LucasPDiniz"},"clone_url":"https://github.com/LucasPDiniz/CVE-2026-24061.git","has_code":false,"age_days":149},{"id":1142283613,"name":"CVE-2026-24061-Scanner","full_name":"XsanFlip/CVE-2026-24061-Scanner","html_url":"https://github.com/XsanFlip/CVE-2026-24061-Scanner","description":"CVE-2026-24061-Scanner by XsanLahci","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-01-26T08:21:02Z","pushed_at":"2026-01-26T08:20:59Z","created_at":"2026-01-26T07:47:36Z","topics":[],"owner":{"login":"XsanFlip","html_url":"https://github.com/XsanFlip"},"clone_url":"https://github.com/XsanFlip/CVE-2026-24061-Scanner.git","has_code":true,"age_days":150},{"id":1142208769,"name":"telnetd-cve-2026-24061","full_name":"punitdarji/telnetd-cve-2026-24061","html_url":"https://github.com/punitdarji/telnetd-cve-2026-24061","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-26T05:08:59Z","pushed_at":"2026-01-26T05:08:56Z","created_at":"2026-01-26T05:05:24Z","topics":[],"owner":{"login":"punitdarji","html_url":"https://github.com/punitdarji"},"clone_url":"https://github.com/punitdarji/telnetd-cve-2026-24061.git","has_code":true,"age_days":150},{"id":1140261470,"name":"CVE-2026-24061","full_name":"monstertsl/CVE-2026-24061","html_url":"https://github.com/monstertsl/CVE-2026-24061","description":"CVE-2026-24061 漏洞检测工具","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-26T05:01:54Z","pushed_at":"2026-01-26T05:01:51Z","created_at":"2026-01-23T03:16:53Z","topics":[],"owner":{"login":"monstertsl","html_url":"https://github.com/monstertsl"},"clone_url":"https://github.com/monstertsl/CVE-2026-24061.git","has_code":true,"age_days":153},{"id":1141991089,"name":"CVE-2026-24061-POC","full_name":"ms0x08-dev/CVE-2026-24061-POC","html_url":"https://github.com/ms0x08-dev/CVE-2026-24061-POC","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-25T19:42:03Z","pushed_at":"2026-01-25T19:42:00Z","created_at":"2026-01-25T19:22:38Z","topics":[],"owner":{"login":"ms0x08-dev","html_url":"https://github.com/ms0x08-dev"},"clone_url":"https://github.com/ms0x08-dev/CVE-2026-24061-POC.git","has_code":true,"age_days":151},{"id":1141663043,"name":"CVE-2026-24061","full_name":"typeconfused/CVE-2026-24061","html_url":"https://github.com/typeconfused/CVE-2026-24061","description":"GNU telnetd service from GNU InetUtils authentication-bypass","stargazers_count":0,"forks_count":0,"language":"Dockerfile","updated_at":"2026-01-25T07:35:06Z","pushed_at":"2026-01-25T07:35:02Z","created_at":"2026-01-25T07:33:48Z","topics":[],"owner":{"login":"typeconfused","html_url":"https://github.com/typeconfused"},"clone_url":"https://github.com/typeconfused/CVE-2026-24061.git","has_code":true,"age_days":151},{"id":1141488910,"name":"CVE-2026-24061-POC","full_name":"Alter-N0X/CVE-2026-24061-POC","html_url":"https://github.com/Alter-N0X/CVE-2026-24061-POC","description":"CVE-2026-24061 - GNU InetUtils telnetd authentication bypass POC + Docker lab environment for testing ","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-25T10:03:13Z","pushed_at":"2026-01-24T23:27:04Z","created_at":"2026-01-24T23:21:56Z","topics":[],"owner":{"login":"Alter-N0X","html_url":"https://github.com/Alter-N0X"},"clone_url":"https://github.com/Alter-N0X/CVE-2026-24061-POC.git","has_code":true,"age_days":151},{"id":1141216751,"name":"CVE-2026-24061","full_name":"Mr-Zapi/CVE-2026-24061","html_url":"https://github.com/Mr-Zapi/CVE-2026-24061","description":"Nuclei template for CVE-2026-24061","stargazers_count":0,"forks_count":1,"language":"","updated_at":"2026-01-24T20:50:17Z","pushed_at":"2026-01-24T20:50:14Z","created_at":"2026-01-24T13:18:54Z","topics":[],"owner":{"login":"Mr-Zapi","html_url":"https://github.com/Mr-Zapi"},"clone_url":"https://github.com/Mr-Zapi/CVE-2026-24061.git","has_code":false,"age_days":152},{"id":1141295963,"name":"Telnet-TestVuln-CVE-2026-24061","full_name":"BrainBob/Telnet-TestVuln-CVE-2026-24061","html_url":"https://github.com/BrainBob/Telnet-TestVuln-CVE-2026-24061","description":"","stargazers_count":0,"forks_count":0,"language":"Dockerfile","updated_at":"2026-01-24T16:06:34Z","pushed_at":"2026-01-24T16:06:31Z","created_at":"2026-01-24T15:59:48Z","topics":[],"owner":{"login":"BrainBob","html_url":"https://github.com/BrainBob"},"clone_url":"https://github.com/BrainBob/Telnet-TestVuln-CVE-2026-24061.git","has_code":true,"age_days":152},{"id":1141271916,"name":"CVE-2026-24061","full_name":"BrainBob/CVE-2026-24061","html_url":"https://github.com/BrainBob/CVE-2026-24061","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-24T15:46:05Z","pushed_at":"2026-01-24T15:46:01Z","created_at":"2026-01-24T15:11:28Z","topics":[],"owner":{"login":"BrainBob","html_url":"https://github.com/BrainBob"},"clone_url":"https://github.com/BrainBob/CVE-2026-24061.git","has_code":true,"age_days":152},{"id":1141086666,"name":"CVE-2026-24061","full_name":"z3n70/CVE-2026-24061","html_url":"https://github.com/z3n70/CVE-2026-24061","description":"","stargazers_count":0,"forks_count":0,"language":"Ruby","updated_at":"2026-01-24T08:16:10Z","pushed_at":"2026-01-24T08:16:06Z","created_at":"2026-01-24T08:09:02Z","topics":[],"owner":{"login":"z3n70","html_url":"https://github.com/z3n70"},"clone_url":"https://github.com/z3n70/CVE-2026-24061.git","has_code":true,"age_days":152},{"id":1140422310,"name":"CVE-2026-24061","full_name":"r00tuser111/CVE-2026-24061","html_url":"https://github.com/r00tuser111/CVE-2026-24061","description":"CVE-2026-24061 环境","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-23T09:03:49Z","pushed_at":"2026-01-23T09:03:45Z","created_at":"2026-01-23T08:59:03Z","topics":[],"owner":{"login":"r00tuser111","html_url":"https://github.com/r00tuser111"},"clone_url":"https://github.com/r00tuser111/CVE-2026-24061.git","has_code":true,"age_days":153},{"id":1141692144,"name":"Ashwesker-CVE-2026-24061","full_name":"Mefhika120/Ashwesker-CVE-2026-24061","html_url":"https://github.com/Mefhika120/Ashwesker-CVE-2026-24061","description":"CVE-2026-24061","stargazers_count":0,"forks_count":1,"language":"","updated_at":"2026-01-25T08:51:17Z","pushed_at":"2026-01-23T07:47:43Z","created_at":"2026-01-25T08:51:17Z","topics":[],"owner":{"login":"Mefhika120","html_url":"https://github.com/Mefhika120"},"clone_url":"https://github.com/Mefhika120/Ashwesker-CVE-2026-24061.git","has_code":false,"age_days":151},{"id":1158491154,"name":"chall2026-telneted","full_name":"athack-ctf/chall2026-telneted","html_url":"https://github.com/athack-ctf/chall2026-telneted","description":"[AtHack 2026] Pwn challenge about telnetd CVE-2026-24061","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-10T17:54:15Z","pushed_at":"2026-06-10T17:38:42Z","created_at":"2026-02-15T13:14:41Z","topics":[],"owner":{"login":"athack-ctf","html_url":"https://github.com/athack-ctf"},"clone_url":"https://github.com/athack-ctf/chall2026-telneted.git","has_code":true,"age_days":130},{"id":1160687660,"name":"CVE-2026-24061-GNU-Inetutils-telnetd-Remote-Authentication-Bypass-Root-Shell-","full_name":"mbanyamer/CVE-2026-24061-GNU-Inetutils-telnetd-Remote-Authentication-Bypass-Root-Shell-","html_url":"https://github.com/mbanyamer/CVE-2026-24061-GNU-Inetutils-telnetd-Remote-Authentication-Bypass-Root-Shell-","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-02-18T08:56:57Z","pushed_at":"2026-02-18T08:56:53Z","created_at":"2026-02-18T08:52:25Z","topics":[],"owner":{"login":"mbanyamer","html_url":"https://github.com/mbanyamer"},"clone_url":"https://github.com/mbanyamer/CVE-2026-24061-GNU-Inetutils-telnetd-Remote-Authentication-Bypass-Root-Shell-.git","has_code":false,"age_days":127},{"id":1157805005,"name":"CVE-2026-24061","full_name":"tiborscholtz/CVE-2026-24061","html_url":"https://github.com/tiborscholtz/CVE-2026-24061","description":"A lightweight Docker lab for experimenting with Telnet protocol negotiation, explained in the CVE-2026-24061 exploit, which contains automatic username injection using the NEW-ENVIRON option.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-02-14T10:23:37Z","pushed_at":"2026-02-14T10:23:34Z","created_at":"2026-02-14T10:22:37Z","topics":[],"owner":{"login":"tiborscholtz","html_url":"https://github.com/tiborscholtz"},"clone_url":"https://github.com/tiborscholtz/CVE-2026-24061.git","has_code":true,"age_days":131},{"id":1151601240,"name":"cve-2026-24061","full_name":"scumfrog/cve-2026-24061","html_url":"https://github.com/scumfrog/cve-2026-24061","description":"CVE-2026-24061 PoC","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-02-06T17:14:16Z","pushed_at":"2026-02-06T17:14:12Z","created_at":"2026-02-06T17:06:57Z","topics":[],"owner":{"login":"scumfrog","html_url":"https://github.com/scumfrog"},"clone_url":"https://github.com/scumfrog/cve-2026-24061.git","has_code":true,"age_days":139},{"id":1151018164,"name":"CVE-2026-24061-GNU-inetutils-Telnet-Detector","full_name":"nrnw/CVE-2026-24061-GNU-inetutils-Telnet-Detector","html_url":"https://github.com/nrnw/CVE-2026-24061-GNU-inetutils-Telnet-Detector","description":"A passive detection tool for identifying potential exposure to CVE-2026-24061 in GNU inetutils telnet installations","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-02-06T01:20:53Z","pushed_at":"2026-02-06T01:20:50Z","created_at":"2026-02-06T00:36:20Z","topics":[],"owner":{"login":"nrnw","html_url":"https://github.com/nrnw"},"clone_url":"https://github.com/nrnw/CVE-2026-24061-GNU-inetutils-Telnet-Detector.git","has_code":true,"age_days":139},{"id":1150709517,"name":"scan-cve-2026-24061","full_name":"killsystema/scan-cve-2026-24061","html_url":"https://github.com/killsystema/scan-cve-2026-24061","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-02-05T16:06:55Z","pushed_at":"2026-02-05T16:00:09Z","created_at":"2026-02-05T15:47:03Z","topics":[],"owner":{"login":"killsystema","html_url":"https://github.com/killsystema"},"clone_url":"https://github.com/killsystema/scan-cve-2026-24061.git","has_code":true,"age_days":140},{"id":1150066721,"name":"inetutils-telnetd-cve-2026-24061","full_name":"canpilayda/inetutils-telnetd-cve-2026-24061","html_url":"https://github.com/canpilayda/inetutils-telnetd-cve-2026-24061","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-02-04T21:08:39Z","pushed_at":"2026-02-04T21:08:36Z","created_at":"2026-02-04T20:59:41Z","topics":[],"owner":{"login":"canpilayda","html_url":"https://github.com/canpilayda"},"clone_url":"https://github.com/canpilayda/inetutils-telnetd-cve-2026-24061.git","has_code":false,"age_days":140},{"id":1150009382,"name":"telnet-CVE-2026-24061","full_name":"lavabyte/telnet-CVE-2026-24061","html_url":"https://github.com/lavabyte/telnet-CVE-2026-24061","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-02-04T19:57:01Z","pushed_at":"2026-02-04T19:56:50Z","created_at":"2026-02-04T19:22:29Z","topics":[],"owner":{"login":"lavabyte","html_url":"https://github.com/lavabyte"},"clone_url":"https://github.com/lavabyte/telnet-CVE-2026-24061.git","has_code":false,"age_days":141},{"id":1148243886,"name":"CVE--2026-24061","full_name":"SeptembersEND/CVE--2026-24061","html_url":"https://github.com/SeptembersEND/CVE--2026-24061","description":"A docker image for CVE-2026-24061 in InetUtils telnetd.","stargazers_count":0,"forks_count":0,"language":"Dockerfile","updated_at":"2026-02-02T22:12:45Z","pushed_at":"2026-02-02T19:56:46Z","created_at":"2026-02-02T18:36:56Z","topics":[],"owner":{"login":"SeptembersEND","html_url":"https://github.com/SeptembersEND"},"clone_url":"https://github.com/SeptembersEND/CVE--2026-24061.git","has_code":true,"age_days":143},{"id":1185646953,"name":"CVE-2026-24061","full_name":"przemytn/CVE-2026-24061","html_url":"https://github.com/przemytn/CVE-2026-24061","description":"CVE-2026-24061 PoC - telnetd auth bypass","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-18T20:01:04Z","pushed_at":"2026-03-18T20:01:00Z","created_at":"2026-03-18T19:58:51Z","topics":[],"owner":{"login":"przemytn","html_url":"https://github.com/przemytn"},"clone_url":"https://github.com/przemytn/CVE-2026-24061.git","has_code":true,"age_days":99},{"id":1183384618,"name":"CVE-2026-24061-NSE","full_name":"HD0x01/CVE-2026-24061-NSE","html_url":"https://github.com/HD0x01/CVE-2026-24061-NSE","description":"The script performs a full Telnet negotiation mirroring the exact byte sequence of a real telnet -a client session.","stargazers_count":0,"forks_count":0,"language":"Lua","updated_at":"2026-03-16T15:28:28Z","pushed_at":"2026-03-16T15:09:51Z","created_at":"2026-03-16T14:55:50Z","topics":["cve-2026-24061","inetutils","nmap","nse","penetration-testing","telnet","vulnerability-detection"],"owner":{"login":"HD0x01","html_url":"https://github.com/HD0x01"},"clone_url":"https://github.com/HD0x01/CVE-2026-24061-NSE.git","has_code":true,"age_days":101},{"id":1171391359,"name":"CVE-2026-24061","full_name":"Remnant-DB/CVE-2026-24061","html_url":"https://github.com/Remnant-DB/CVE-2026-24061","description":"CVE-2026-24061 Lab","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-03-08T11:22:08Z","pushed_at":"2026-03-08T11:22:04Z","created_at":"2026-03-03T07:14:09Z","topics":[],"owner":{"login":"Remnant-DB","html_url":"https://github.com/Remnant-DB"},"clone_url":"https://github.com/Remnant-DB/CVE-2026-24061.git","has_code":true,"age_days":114},{"id":1272637788,"name":"CVE-2026-24061-lab","full_name":"akpmarcelin/CVE-2026-24061-lab","html_url":"https://github.com/akpmarcelin/CVE-2026-24061-lab","description":"","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-17T20:02:02Z","pushed_at":"2026-06-17T20:01:46Z","created_at":"2026-06-17T19:59:24Z","topics":[],"owner":{"login":"akpmarcelin","html_url":"https://github.com/akpmarcelin"},"clone_url":"https://github.com/akpmarcelin/CVE-2026-24061-lab.git","has_code":true,"age_days":8},{"id":1263172501,"name":"CVE-2026-24061-GNU-InetUtils-telnetd","full_name":"anxs3c/CVE-2026-24061-GNU-InetUtils-telnetd","html_url":"https://github.com/anxs3c/CVE-2026-24061-GNU-InetUtils-telnetd","description":"GNU-InetUtils-telnetd-Authentication-Bypass-Vulnerability","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-08T18:50:47Z","pushed_at":"2026-06-08T18:46:26Z","created_at":"2026-06-08T17:36:36Z","topics":["authentication-bypass","cve-2026-24061","injection"],"owner":{"login":"anxs3c","html_url":"https://github.com/anxs3c"},"clone_url":"https://github.com/anxs3c/CVE-2026-24061-GNU-InetUtils-telnetd.git","has_code":false,"age_days":17},{"id":1255593984,"name":"TelnetdBypass-","full_name":"ahmadsadeeq/TelnetdBypass-","html_url":"https://github.com/ahmadsadeeq/TelnetdBypass-","description":" CVE-2026-24061 — GNU InetUtils Telnetd Authentication Bypass Scanner","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-01T02:31:47Z","pushed_at":"2026-06-01T02:27:43Z","created_at":"2026-06-01T02:03:11Z","topics":["cve","penetration-testing","python","scanner","security","telnet"],"owner":{"login":"ahmadsadeeq","html_url":"https://github.com/ahmadsadeeq"},"clone_url":"https://github.com/ahmadsadeeq/TelnetdBypass-.git","has_code":true,"age_days":24}]},{"cve_id":"CVE-2026-24072","repositories":[{"id":1230175570,"name":"CVE-2026-24072-Analysis","full_name":"EricRHancock-coder/CVE-2026-24072-Analysis","html_url":"https://github.com/EricRHancock-coder/CVE-2026-24072-Analysis","description":"Analysis of CVE-2026-24072","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-11T19:38:55Z","pushed_at":"2026-05-11T19:39:20Z","created_at":"2026-05-05T18:48:29Z","topics":[],"owner":{"login":"EricRHancock-coder","html_url":"https://github.com/EricRHancock-coder"},"clone_url":"https://github.com/EricRHancock-coder/CVE-2026-24072-Analysis.git","has_code":true,"age_days":51}]},{"cve_id":"CVE-2026-24102","repositories":[{"id":1145695212,"name":"CTT-Kernel-Resonance-io_uring-Temporal-Phase-Transition","full_name":"SimoesCTT/CTT-Kernel-Resonance-io_uring-Temporal-Phase-Transition","html_url":"https://github.com/SimoesCTT/CTT-Kernel-Resonance-io_uring-Temporal-Phase-Transition","description":"CVE-2026-24102 is a Use-After-Free (UAF) vulnerability within the Linux Kernel io_uring subsystem. While traditional exploits attempt to win a race condition through brute-force CPU pinning, SimoesCTT-Kernel-Resonance uses Temporal Layering to ensure the race is won deterministically.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-30T12:39:30Z","pushed_at":"2026-01-30T12:39:26Z","created_at":"2026-01-30T05:12:51Z","topics":[],"owner":{"login":"SimoesCTT","html_url":"https://github.com/SimoesCTT"},"clone_url":"https://github.com/SimoesCTT/CTT-Kernel-Resonance-io_uring-Temporal-Phase-Transition.git","has_code":true,"age_days":146}]},{"cve_id":"CVE-2026-24118","repositories":[{"id":1231562395,"name":"CVE-2026-24118","full_name":"HORKimhab/CVE-2026-24118","html_url":"https://github.com/HORKimhab/CVE-2026-24118","description":"","stargazers_count":0,"forks_count":0,"language":"JavaScript","updated_at":"2026-05-07T04:51:06Z","pushed_at":"2026-05-07T04:51:03Z","created_at":"2026-05-07T04:34:59Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-24118.git","has_code":true,"age_days":49}]},{"cve_id":"CVE-2026-24126","repositories":[{"id":1192547135,"name":"Weblate-CVE-2026-24126","full_name":"alexb616/Weblate-CVE-2026-24126","html_url":"https://github.com/alexb616/Weblate-CVE-2026-24126","description":"PoC CVE-2026-24126","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-18T09:31:34Z","pushed_at":"2026-03-26T10:49:17Z","created_at":"2026-03-26T10:22:08Z","topics":["cve-2026-24126","poc","weblate"],"owner":{"login":"alexb616","html_url":"https://github.com/alexb616"},"clone_url":"https://github.com/alexb616/Weblate-CVE-2026-24126.git","has_code":true,"age_days":91}]},{"cve_id":"CVE-2026-2413","repositories":[{"id":1185238821,"name":"CVE-2026-2413-POC","full_name":"p3Nt3st3r-sTAr/CVE-2026-2413-POC","html_url":"https://github.com/p3Nt3st3r-sTAr/CVE-2026-2413-POC","description":"","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-03-26T21:06:03Z","pushed_at":"2026-03-18T11:38:24Z","created_at":"2026-03-18T11:30:53Z","topics":[],"owner":{"login":"p3Nt3st3r-sTAr","html_url":"https://github.com/p3Nt3st3r-sTAr"},"clone_url":"https://github.com/p3Nt3st3r-sTAr/CVE-2026-2413-POC.git","has_code":true,"age_days":99}]},{"cve_id":"CVE-2026-24134","repositories":[{"id":1145478374,"name":"CVE-2026-24134-PoC","full_name":"FilipeGaudard/CVE-2026-24134-PoC","html_url":"https://github.com/FilipeGaudard/CVE-2026-24134-PoC","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-29T21:12:51Z","pushed_at":"2026-01-29T21:12:48Z","created_at":"2026-01-29T21:03:34Z","topics":[],"owner":{"login":"FilipeGaudard","html_url":"https://github.com/FilipeGaudard"},"clone_url":"https://github.com/FilipeGaudard/CVE-2026-24134-PoC.git","has_code":true,"age_days":146}]},{"cve_id":"CVE-2026-24135","repositories":[{"id":1151551787,"name":"CVE-2026-24135","full_name":"reschjonas/CVE-2026-24135","html_url":"https://github.com/reschjonas/CVE-2026-24135","description":"Arbitrary File Deletion in Gogs via Wiki Path Traversal","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-05-23T20:36:01Z","pushed_at":"2026-05-23T20:35:57Z","created_at":"2026-02-06T15:57:03Z","topics":[],"owner":{"login":"reschjonas","html_url":"https://github.com/reschjonas"},"clone_url":"https://github.com/reschjonas/CVE-2026-24135.git","has_code":false,"age_days":139}]},{"cve_id":"CVE-2026-24136","repositories":[{"id":1267415213,"name":"CVE-2026-24136-Lab","full_name":"BlankBire/CVE-2026-24136-Lab","html_url":"https://github.com/BlankBire/CVE-2026-24136-Lab","description":"CVE-2026-24136 | Lab khai thác lỗ hổng IDOR trên Saleor GraphQL - query order() không kiểm tra xác thực, lộ toàn bộ PII (email, địa chỉ, SĐT) của khách hàng. Bao gồm môi trường Docker, script seed data và PoC. CVSS 4.0: 8.7 HIGH.","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-12T14:27:34Z","pushed_at":"2026-06-12T14:18:10Z","created_at":"2026-06-12T14:16:36Z","topics":[],"owner":{"login":"BlankBire","html_url":"https://github.com/BlankBire"},"clone_url":"https://github.com/BlankBire/CVE-2026-24136-Lab.git","has_code":true,"age_days":13}]},{"cve_id":"CVE-2026-24291","repositories":[{"id":1186119589,"name":"CVE-2026-24291","full_name":"lennertdefauw/CVE-2026-24291","html_url":"https://github.com/lennertdefauw/CVE-2026-24291","description":"Windows privilege escalation using RegPwn","stargazers_count":4,"forks_count":3,"language":"C#","updated_at":"2026-05-08T08:45:30Z","pushed_at":"2026-03-19T09:46:08Z","created_at":"2026-03-19T09:37:26Z","topics":[],"owner":{"login":"lennertdefauw","html_url":"https://github.com/lennertdefauw"},"clone_url":"https://github.com/lennertdefauw/CVE-2026-24291.git","has_code":true,"age_days":98},{"id":1192299713,"name":"RegPwn","full_name":"tracyliving606/RegPwn","html_url":"https://github.com/tracyliving606/RegPwn","description":"Exploit Windows local privilege escalation on clients and servers using tested code for CVE-2026-24291 across multiple Windows versions","stargazers_count":3,"forks_count":0,"language":"C#","updated_at":"2026-06-25T18:36:02Z","pushed_at":"2026-06-25T18:35:19Z","created_at":"2026-03-26T04:38:27Z","topics":["assembly","capture-the-flag","cloudflare","containers","defcon","developer","free-domain","handshakes","learn-regex","opencontainers","pwntools","python","regular-expression","shellcode-development","shellcoding","wargame","website","wpa-psk"],"owner":{"login":"tracyliving606","html_url":"https://github.com/tracyliving606"},"clone_url":"https://github.com/tracyliving606/RegPwn.git","has_code":true,"age_days":91},{"id":1185493745,"name":"RegPwnBRc4BOF","full_name":"n0isegat3/RegPwnBRc4BOF","html_url":"https://github.com/n0isegat3/RegPwnBRc4BOF","description":"Brute Ratel C4 BOF of the CVE-2026-24291","stargazers_count":3,"forks_count":0,"language":"C","updated_at":"2026-05-04T19:58:45Z","pushed_at":"2026-03-18T16:39:16Z","created_at":"2026-03-18T16:34:27Z","topics":[],"owner":{"login":"n0isegat3","html_url":"https://github.com/n0isegat3"},"clone_url":"https://github.com/n0isegat3/RegPwnBRc4BOF.git","has_code":true,"age_days":99},{"id":1192690199,"name":"CVE-2026-24291","full_name":"uname1able/CVE-2026-24291","html_url":"https://github.com/uname1able/CVE-2026-24291","description":"","stargazers_count":0,"forks_count":0,"language":"C#","updated_at":"2026-03-26T13:18:46Z","pushed_at":"2026-03-26T13:18:41Z","created_at":"2026-03-26T13:18:15Z","topics":[],"owner":{"login":"uname1able","html_url":"https://github.com/uname1able"},"clone_url":"https://github.com/uname1able/CVE-2026-24291.git","has_code":true,"age_days":91}]},{"cve_id":"CVE-2026-24294","repositories":[{"id":1225228894,"name":"CVE-2026-24294","full_name":"0xNDI/CVE-2026-24294","html_url":"https://github.com/0xNDI/CVE-2026-24294","description":"CVE-2026-24294 PoC","stargazers_count":4,"forks_count":0,"language":"C","updated_at":"2026-05-26T12:18:55Z","pushed_at":"2026-04-30T04:35:37Z","created_at":"2026-04-30T04:31:14Z","topics":[],"owner":{"login":"0xNDI","html_url":"https://github.com/0xNDI"},"clone_url":"https://github.com/0xNDI/CVE-2026-24294.git","has_code":true,"age_days":56}]},{"cve_id":"CVE-2026-24306","repositories":[{"id":1143363230,"name":"CVE-2026-24306","full_name":"ExploreUnknowed/CVE-2026-24306","html_url":"https://github.com/ExploreUnknowed/CVE-2026-24306","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-01-27T13:45:40Z","pushed_at":"2026-01-26T10:49:49Z","created_at":"2026-01-27T13:45:40Z","topics":[],"owner":{"login":"ExploreUnknowed","html_url":"https://github.com/ExploreUnknowed"},"clone_url":"https://github.com/ExploreUnknowed/CVE-2026-24306.git","has_code":false,"age_days":149}]},{"cve_id":"CVE-2026-24332","repositories":[{"id":1231182313,"name":"Discord-CVE-2026-24332-demo","full_name":"WhiteTPoison100/Discord-CVE-2026-24332-demo","html_url":"https://github.com/WhiteTPoison100/Discord-CVE-2026-24332-demo","description":"","stargazers_count":0,"forks_count":0,"language":"JavaScript","updated_at":"2026-05-15T23:46:53Z","pushed_at":"2026-05-06T18:48:29Z","created_at":"2026-05-06T17:57:49Z","topics":[],"owner":{"login":"WhiteTPoison100","html_url":"https://github.com/WhiteTPoison100"},"clone_url":"https://github.com/WhiteTPoison100/Discord-CVE-2026-24332-demo.git","has_code":true,"age_days":50}]},{"cve_id":"CVE-2026-2441","repositories":[{"id":1160803995,"name":"CVE-2026-2441-PoC","full_name":"huseyinstif/CVE-2026-2441-PoC","html_url":"https://github.com/huseyinstif/CVE-2026-2441-PoC","description":"","stargazers_count":125,"forks_count":23,"language":"HTML","updated_at":"2026-06-22T11:04:58Z","pushed_at":"2026-02-18T11:53:43Z","created_at":"2026-02-18T11:46:40Z","topics":[],"owner":{"login":"huseyinstif","html_url":"https://github.com/huseyinstif"},"clone_url":"https://github.com/huseyinstif/CVE-2026-2441-PoC.git","has_code":true,"age_days":127},{"id":1171705096,"name":"CVE-2026-2441-PoC","full_name":"fartlover37/CVE-2026-2441-PoC","html_url":"https://github.com/fartlover37/CVE-2026-2441-PoC","description":"Demonstrate a proof-of-concept exploit for CVE-2026-2441, a high-risk Chrome use-after-free vulnerability in the Blink CSS engine.","stargazers_count":1,"forks_count":2,"language":"","updated_at":"2026-06-25T18:20:03Z","pushed_at":"2026-06-25T18:19:58Z","created_at":"2026-03-03T14:19:18Z","topics":["agent","agents","chinese","gluon","hacktoberfest","notebook","obfuscation","person-reid","poc","rag","semantic-segmentation","testnet","testnet-faucet","vulnerability","web3","zdi"],"owner":{"login":"fartlover37","html_url":"https://github.com/fartlover37"},"clone_url":"https://github.com/fartlover37/CVE-2026-2441-PoC.git","has_code":false,"age_days":114},{"id":1165918484,"name":"CVE-2026-2441","full_name":"NetVanguard-cmd/CVE-2026-2441","html_url":"https://github.com/NetVanguard-cmd/CVE-2026-2441","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-02-24T17:28:03Z","pushed_at":"2026-02-24T17:26:01Z","created_at":"2026-02-24T17:25:55Z","topics":[],"owner":{"login":"NetVanguard-cmd","html_url":"https://github.com/NetVanguard-cmd"},"clone_url":"https://github.com/NetVanguard-cmd/CVE-2026-2441.git","has_code":false,"age_days":121},{"id":1164576333,"name":"CVE-2026-2441_PoC","full_name":"atiilla/CVE-2026-2441_PoC","html_url":"https://github.com/atiilla/CVE-2026-2441_PoC","description":"","stargazers_count":0,"forks_count":1,"language":"HTML","updated_at":"2026-02-23T08:46:51Z","pushed_at":"2026-02-23T08:46:48Z","created_at":"2026-02-23T08:43:16Z","topics":[],"owner":{"login":"atiilla","html_url":"https://github.com/atiilla"},"clone_url":"https://github.com/atiilla/CVE-2026-2441_PoC.git","has_code":true,"age_days":122},{"id":1162160742,"name":"CVE-2026-2441-PoC","full_name":"theemperorspath/CVE-2026-2441-PoC","html_url":"https://github.com/theemperorspath/CVE-2026-2441-PoC","description":"","stargazers_count":0,"forks_count":0,"language":"HTML","updated_at":"2026-02-19T23:51:04Z","pushed_at":"2026-02-19T23:51:00Z","created_at":"2026-02-19T23:48:33Z","topics":[],"owner":{"login":"theemperorspath","html_url":"https://github.com/theemperorspath"},"clone_url":"https://github.com/theemperorspath/CVE-2026-2441-PoC.git","has_code":true,"age_days":125},{"id":1170127318,"name":"CVE-2026-2441-PoC","full_name":"D3b0j33t/CVE-2026-2441-PoC","html_url":"https://github.com/D3b0j33t/CVE-2026-2441-PoC","description":"","stargazers_count":0,"forks_count":0,"language":"HTML","updated_at":"2026-03-01T18:36:45Z","pushed_at":"2026-03-01T18:36:41Z","created_at":"2026-03-01T18:34:18Z","topics":[],"owner":{"login":"D3b0j33t","html_url":"https://github.com/D3b0j33t"},"clone_url":"https://github.com/D3b0j33t/CVE-2026-2441-PoC.git","has_code":true,"age_days":116},{"id":1231258584,"name":"CVE-2026-2441","full_name":"MartinaStarone/CVE-2026-2441","html_url":"https://github.com/MartinaStarone/CVE-2026-2441","description":"","stargazers_count":0,"forks_count":0,"language":"HTML","updated_at":"2026-05-19T14:16:41Z","pushed_at":"2026-05-19T14:07:11Z","created_at":"2026-05-06T19:40:20Z","topics":[],"owner":{"login":"MartinaStarone","html_url":"https://github.com/MartinaStarone"},"clone_url":"https://github.com/MartinaStarone/CVE-2026-2441.git","has_code":true,"age_days":50}]},{"cve_id":"CVE-2026-24415","repositories":[{"id":1208065730,"name":"CVE-2026-24415","full_name":"lukasz-rybak/CVE-2026-24415","html_url":"https://github.com/lukasz-rybak/CVE-2026-24415","description":"CVE-2026-24415 - OpenSTAManager Affected by XSS in modifica_iva.php via righe parameter","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-11T19:22:48Z","pushed_at":"2026-04-11T19:22:45Z","created_at":"2026-04-11T19:15:29Z","topics":[],"owner":{"login":"lukasz-rybak","html_url":"https://github.com/lukasz-rybak"},"clone_url":"https://github.com/lukasz-rybak/CVE-2026-24415.git","has_code":false,"age_days":75}]},{"cve_id":"CVE-2026-24416","repositories":[{"id":1208064915,"name":"CVE-2026-24416","full_name":"lukasz-rybak/CVE-2026-24416","html_url":"https://github.com/lukasz-rybak/CVE-2026-24416","description":"CVE-2026-24416 - OpenSTAManager has a Time-Based Blind SQL Injection in Article Pricing Module","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-11T19:21:57Z","pushed_at":"2026-04-11T19:21:53Z","created_at":"2026-04-11T19:14:01Z","topics":[],"owner":{"login":"lukasz-rybak","html_url":"https://github.com/lukasz-rybak"},"clone_url":"https://github.com/lukasz-rybak/CVE-2026-24416.git","has_code":false,"age_days":75}]},{"cve_id":"CVE-2026-24417","repositories":[{"id":1208064977,"name":"CVE-2026-24417","full_name":"lukasz-rybak/CVE-2026-24417","html_url":"https://github.com/lukasz-rybak/CVE-2026-24417","description":"CVE-2026-24417 - OpenSTAManager has a Time-Based Blind SQL Injection with Amplified Denial of Service","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-11T19:22:01Z","pushed_at":"2026-04-11T19:21:56Z","created_at":"2026-04-11T19:14:07Z","topics":[],"owner":{"login":"lukasz-rybak","html_url":"https://github.com/lukasz-rybak"},"clone_url":"https://github.com/lukasz-rybak/CVE-2026-24417.git","has_code":false,"age_days":75}]},{"cve_id":"CVE-2026-24418","repositories":[{"id":1208065025,"name":"CVE-2026-24418","full_name":"lukasz-rybak/CVE-2026-24418","html_url":"https://github.com/lukasz-rybak/CVE-2026-24418","description":"CVE-2026-24418 - OpenSTAManager has a SQL Injection vulnerability in the Scadenzario bulk operations module","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-11T19:22:05Z","pushed_at":"2026-04-11T19:21:59Z","created_at":"2026-04-11T19:14:13Z","topics":[],"owner":{"login":"lukasz-rybak","html_url":"https://github.com/lukasz-rybak"},"clone_url":"https://github.com/lukasz-rybak/CVE-2026-24418.git","has_code":false,"age_days":75}]},{"cve_id":"CVE-2026-24419","repositories":[{"id":1208065068,"name":"CVE-2026-24419","full_name":"lukasz-rybak/CVE-2026-24419","html_url":"https://github.com/lukasz-rybak/CVE-2026-24419","description":"CVE-2026-24419 - OpenSTAManager has a SQL Injection in the Prima Nota  module ","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-11T19:22:06Z","pushed_at":"2026-04-11T19:22:03Z","created_at":"2026-04-11T19:14:18Z","topics":[],"owner":{"login":"lukasz-rybak","html_url":"https://github.com/lukasz-rybak"},"clone_url":"https://github.com/lukasz-rybak/CVE-2026-24419.git","has_code":false,"age_days":75}]},{"cve_id":"CVE-2026-24423","repositories":[{"id":1145101064,"name":"CVE-2026-24423","full_name":"aavamin/CVE-2026-24423","html_url":"https://github.com/aavamin/CVE-2026-24423","description":"CVE-2026-24423 exp","stargazers_count":7,"forks_count":1,"language":"Python","updated_at":"2026-03-02T10:01:44Z","pushed_at":"2026-01-29T13:10:03Z","created_at":"2026-01-29T12:30:18Z","topics":[],"owner":{"login":"aavamin","html_url":"https://github.com/aavamin"},"clone_url":"https://github.com/aavamin/CVE-2026-24423.git","has_code":true,"age_days":147}]},{"cve_id":"CVE-2026-24512","repositories":[{"id":1176172409,"name":"dependency-guardian-real-advisory-demo","full_name":"mghouse17/dependency-guardian-real-advisory-demo","html_url":"https://github.com/mghouse17/dependency-guardian-real-advisory-demo","description":"Defensive dependency scanning demo using real public advisory MINI-5wmc-5rcx-fp67 (CVE-2026-24512). Detection and remediation only.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-08T18:03:19Z","pushed_at":"2026-03-08T18:03:19Z","created_at":"2026-03-08T18:03:19Z","topics":[],"owner":{"login":"mghouse17","html_url":"https://github.com/mghouse17"},"clone_url":"https://github.com/mghouse17/dependency-guardian-real-advisory-demo.git","has_code":false,"age_days":109}]},{"cve_id":"CVE-2026-24514","repositories":[{"id":1162217645,"name":"cve-2026-24514-Kubernetes-Dos","full_name":"mbanyamer/cve-2026-24514-Kubernetes-Dos","html_url":"https://github.com/mbanyamer/cve-2026-24514-Kubernetes-Dos","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-02-20T02:01:17Z","pushed_at":"2026-02-20T02:01:14Z","created_at":"2026-02-20T01:56:59Z","topics":[],"owner":{"login":"mbanyamer","html_url":"https://github.com/mbanyamer"},"clone_url":"https://github.com/mbanyamer/cve-2026-24514-Kubernetes-Dos.git","has_code":true,"age_days":125}]},{"cve_id":"CVE-2026-24516","repositories":[{"id":1188981815,"name":"CVE-2026-24516-DigitalOcean-RCE","full_name":"poxsky/CVE-2026-24516-DigitalOcean-RCE","html_url":"https://github.com/poxsky/CVE-2026-24516-DigitalOcean-RCE","description":"Critical Pre-Auth Root RCE (CVSS 10.0) in DigitalOcean Droplet Agent up to v1.3.2 via Command Injection.","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-04-02T04:58:52Z","pushed_at":"2026-04-02T04:58:49Z","created_at":"2026-03-22T20:52:57Z","topics":[],"owner":{"login":"poxsky","html_url":"https://github.com/poxsky"},"clone_url":"https://github.com/poxsky/CVE-2026-24516-DigitalOcean-RCE.git","has_code":false,"age_days":94},{"id":1200164468,"name":"CVE-2026-24516-DigitalOcean-RCE.","full_name":"poxsky/CVE-2026-24516-DigitalOcean-RCE.","html_url":"https://github.com/poxsky/CVE-2026-24516-DigitalOcean-RCE.","description":"Technical analysis and PoC for CVE-2026-24516: Unauthenticated Root Remote Code Execution in DigitalOcean Droplet Agent (CVSS 10.0).","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-03T05:40:14Z","pushed_at":"2026-04-03T05:40:11Z","created_at":"2026-04-03T05:25:18Z","topics":[],"owner":{"login":"poxsky","html_url":"https://github.com/poxsky"},"clone_url":"https://github.com/poxsky/CVE-2026-24516-DigitalOcean-RCE..git","has_code":false,"age_days":83}]},{"cve_id":"CVE-2026-2461","repositories":[{"id":1146330916,"name":"CVE-2026-2461-poc","full_name":"destiny-creates/CVE-2026-2461-poc","html_url":"https://github.com/destiny-creates/CVE-2026-2461-poc","description":"POC in python for CVE-2026-2461","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-30T23:41:29Z","pushed_at":"2026-01-30T23:41:25Z","created_at":"2026-01-30T23:38:17Z","topics":[],"owner":{"login":"destiny-creates","html_url":"https://github.com/destiny-creates"},"clone_url":"https://github.com/destiny-creates/CVE-2026-2461-poc.git","has_code":true,"age_days":145}]},{"cve_id":"CVE-2026-24688","repositories":[{"id":1276093253,"name":"cve-2026-24688","full_name":"Fomovet/cve-2026-24688","html_url":"https://github.com/Fomovet/cve-2026-24688","description":"POC for CVE-2026-24688","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-21T14:31:50Z","pushed_at":"2026-06-21T14:31:46Z","created_at":"2026-06-21T14:31:41Z","topics":[],"owner":{"login":"Fomovet","html_url":"https://github.com/Fomovet"},"clone_url":"https://github.com/Fomovet/cve-2026-24688.git","has_code":true,"age_days":4},{"id":1143166758,"name":"CVE-2026-24688","full_name":"JoakimBulow/CVE-2026-24688","html_url":"https://github.com/JoakimBulow/CVE-2026-24688","description":"CVE-2026-24688 - pypdf - DoS - POC ","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-27T09:14:34Z","pushed_at":"2026-01-27T09:14:30Z","created_at":"2026-01-27T08:44:59Z","topics":[],"owner":{"login":"JoakimBulow","html_url":"https://github.com/JoakimBulow"},"clone_url":"https://github.com/JoakimBulow/CVE-2026-24688.git","has_code":true,"age_days":149}]},{"cve_id":"CVE-2026-2472","repositories":[{"id":1168579521,"name":"CVE-2026-2472-Vertex-AI-SDK-Google-Cloud","full_name":"JoshuaProvoste/CVE-2026-2472-Vertex-AI-SDK-Google-Cloud","html_url":"https://github.com/JoshuaProvoste/CVE-2026-2472-Vertex-AI-SDK-Google-Cloud","description":"Technical PoC for CVE-2026-2472 (GCP-2026-011): Unauthenticated and Stored Cross-Site Scripting (XSS) in google-cloud-aiplatform _genai/_evals_visualization (Vertex AI Python SDK) affecting Jupyter/Colab.","stargazers_count":5,"forks_count":1,"language":"Python","updated_at":"2026-02-28T09:17:29Z","pushed_at":"2026-02-27T17:32:33Z","created_at":"2026-02-27T14:57:39Z","topics":["colab","colab-notebook","cve-2026-2472","gcp-2026-011","google","google-cloud","google-cloud-platform","jupyter","jupyter-notebook","python-aiplatform","vertex-ai","vertex-ai-sdk","xss","xss-exploitation","xss-injection","xss-payloads","xss-vulnerability"],"owner":{"login":"JoshuaProvoste","html_url":"https://github.com/JoshuaProvoste"},"clone_url":"https://github.com/JoshuaProvoste/CVE-2026-2472-Vertex-AI-SDK-Google-Cloud.git","has_code":true,"age_days":118},{"id":1177953316,"name":"CVE-2026-2472-Vertex-AI-SDK-Google-Cloud","full_name":"megafart1/CVE-2026-2472-Vertex-AI-SDK-Google-Cloud","html_url":"https://github.com/megafart1/CVE-2026-2472-Vertex-AI-SDK-Google-Cloud","description":"Expose and detail an unauthenticated stored XSS vulnerability in the Google Cloud Vertex AI Python SDK affecting versions 1.98.0 to 1.130.9.","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-06-25T18:27:46Z","pushed_at":"2026-06-25T18:24:42Z","created_at":"2026-03-10T14:40:04Z","topics":["colab","colab-notebook","cve-2026-2472","gcp-2026-011","google","google-cloud","jupyter-notebook","python-aiplatform","vertex-ai","vertex-ai-sdk","xss","xss-exploitation","xss-injection","xss-payloads","xss-vulnerability"],"owner":{"login":"megafart1","html_url":"https://github.com/megafart1"},"clone_url":"https://github.com/megafart1/CVE-2026-2472-Vertex-AI-SDK-Google-Cloud.git","has_code":true,"age_days":107}]},{"cve_id":"CVE-2026-24841","repositories":[{"id":1146408012,"name":"CVE-2026-24841_Range","full_name":"otakuliu/CVE-2026-24841_Range","html_url":"https://github.com/otakuliu/CVE-2026-24841_Range","description":"CVE-2026-24841仿真靶场，用来模拟真实环境，适合搭建Dokploy报错而无法搭建的","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-31T03:43:02Z","pushed_at":"2026-01-31T03:42:58Z","created_at":"2026-01-31T03:40:00Z","topics":[],"owner":{"login":"otakuliu","html_url":"https://github.com/otakuliu"},"clone_url":"https://github.com/otakuliu/CVE-2026-24841_Range.git","has_code":true,"age_days":145}]},{"cve_id":"CVE-2026-24849","repositories":[{"id":1261020599,"name":"CVE-2026-24849","full_name":"doany1/CVE-2026-24849","html_url":"https://github.com/doany1/CVE-2026-24849","description":"Proof-of-concept exploit for CVE-2026-24849, an authenticated path-traversal / arbitrary file read in OpenEMR's Fax/SMS (EtherFax) module. Any authenticated user  regardless of privilege level  can read arbitrary files from the server filesystem as the web-server user (database credentials, patient documents/PHI, /etc/passwd, …","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-06T07:09:17Z","pushed_at":"2026-06-06T07:09:14Z","created_at":"2026-06-06T06:19:10Z","topics":[],"owner":{"login":"doany1","html_url":"https://github.com/doany1"},"clone_url":"https://github.com/doany1/CVE-2026-24849.git","has_code":true,"age_days":19}]},{"cve_id":"CVE-2026-24854","repositories":[{"id":1149260940,"name":"CVE-2026-24854-ChurchCRM-6.7.2-Authenticated-Numeric-SQL-Injection","full_name":"mbanyamer/CVE-2026-24854-ChurchCRM-6.7.2-Authenticated-Numeric-SQL-Injection","html_url":"https://github.com/mbanyamer/CVE-2026-24854-ChurchCRM-6.7.2-Authenticated-Numeric-SQL-Injection","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-02-03T23:00:41Z","pushed_at":"2026-02-03T23:00:19Z","created_at":"2026-02-03T22:59:36Z","topics":[],"owner":{"login":"mbanyamer","html_url":"https://github.com/mbanyamer"},"clone_url":"https://github.com/mbanyamer/CVE-2026-24854-ChurchCRM-6.7.2-Authenticated-Numeric-SQL-Injection.git","has_code":true,"age_days":141}]},{"cve_id":"CVE-2026-24858","repositories":[{"id":1145648365,"name":"CVE-2026-24858-FortiCloud-SSO-Authentication-Bypass","full_name":"absholi7ly/CVE-2026-24858-FortiCloud-SSO-Authentication-Bypass","html_url":"https://github.com/absholi7ly/CVE-2026-24858-FortiCloud-SSO-Authentication-Bypass","description":"CVE-2026-24858 FortiCloud Single Sign On (SSO)  a factory default enabled feature once you register any FortiGate/FortiManager/FortiAnalyzer  contains a critical authentication bypass flaw.","stargazers_count":8,"forks_count":4,"language":"","updated_at":"2026-06-23T09:31:13Z","pushed_at":"2026-01-30T05:25:41Z","created_at":"2026-01-30T03:29:04Z","topics":[],"owner":{"login":"absholi7ly","html_url":"https://github.com/absholi7ly"},"clone_url":"https://github.com/absholi7ly/CVE-2026-24858-FortiCloud-SSO-Authentication-Bypass.git","has_code":false,"age_days":146},{"id":1154722180,"name":"cve-2026-24858","full_name":"gagaltotal/cve-2026-24858","html_url":"https://github.com/gagaltotal/cve-2026-24858","description":"CVE-2026-24858 - Administrative FortiCloud SSO authentication bypass","stargazers_count":1,"forks_count":2,"language":"Python","updated_at":"2026-02-23T10:52:23Z","pushed_at":"2026-02-10T18:20:43Z","created_at":"2026-02-10T17:51:07Z","topics":["exploit","fortigate","fortigate-firewall","fortnite","python","python3","scanner"],"owner":{"login":"gagaltotal","html_url":"https://github.com/gagaltotal"},"clone_url":"https://github.com/gagaltotal/cve-2026-24858.git","has_code":true,"age_days":135},{"id":1146557505,"name":"SCTT-2026-33-0004-FortiCloud-SSO-Identity-Singularity","full_name":"SimoesCTT/SCTT-2026-33-0004-FortiCloud-SSO-Identity-Singularity","html_url":"https://github.com/SimoesCTT/SCTT-2026-33-0004-FortiCloud-SSO-Identity-Singularity","description":"While Fortinet's January 27, 2026 mitigation for **CVE-2026-24858** focuses on blocking specific accounts like `cloud-noc@mail.io`, it fails to address the **Temporal Vulnerability** of the SAML state machine. ","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-31T09:47:07Z","pushed_at":"2026-01-31T09:47:04Z","created_at":"2026-01-31T09:41:04Z","topics":[],"owner":{"login":"SimoesCTT","html_url":"https://github.com/SimoesCTT"},"clone_url":"https://github.com/SimoesCTT/SCTT-2026-33-0004-FortiCloud-SSO-Identity-Singularity.git","has_code":true,"age_days":145},{"id":1145674135,"name":"-CTT-NSP-Convergent-Time-Theory---Network-Stack-Projection-CVE-2026-24858-","full_name":"SimoesCTT/-CTT-NSP-Convergent-Time-Theory---Network-Stack-Projection-CVE-2026-24858-","html_url":"https://github.com/SimoesCTT/-CTT-NSP-Convergent-Time-Theory---Network-Stack-Projection-CVE-2026-24858-","description":" A Proof-of-Concept demonstrating the application of 3D Navier-Stokes CTT formulations to packet flow optimization and defensive bypass.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-30T16:36:46Z","pushed_at":"2026-01-30T16:36:42Z","created_at":"2026-01-30T04:27:24Z","topics":[],"owner":{"login":"SimoesCTT","html_url":"https://github.com/SimoesCTT"},"clone_url":"https://github.com/SimoesCTT/-CTT-NSP-Convergent-Time-Theory---Network-Stack-Projection-CVE-2026-24858-.git","has_code":true,"age_days":146},{"id":1144296671,"name":"CVE-2026-24858","full_name":"m0d0ri205/CVE-2026-24858","html_url":"https://github.com/m0d0ri205/CVE-2026-24858","description":"아직 제로데이인거 같아, 공개되거나 천천히 분석할 예정....","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-01-29T14:23:21Z","pushed_at":"2026-01-29T14:23:17Z","created_at":"2026-01-28T14:34:50Z","topics":[],"owner":{"login":"m0d0ri205","html_url":"https://github.com/m0d0ri205"},"clone_url":"https://github.com/m0d0ri205/CVE-2026-24858.git","has_code":false,"age_days":148}]},{"cve_id":"CVE-2026-25047","repositories":[{"id":1146930237,"name":"deephas-1.0.7-Prototype-Pollution-PoC-CVE-2026-25047-","full_name":"mbanyamer/deephas-1.0.7-Prototype-Pollution-PoC-CVE-2026-25047-","html_url":"https://github.com/mbanyamer/deephas-1.0.7-Prototype-Pollution-PoC-CVE-2026-25047-","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-02-20T10:41:31Z","pushed_at":"2026-01-31T22:58:32Z","created_at":"2026-01-31T22:57:04Z","topics":[],"owner":{"login":"mbanyamer","html_url":"https://github.com/mbanyamer"},"clone_url":"https://github.com/mbanyamer/deephas-1.0.7-Prototype-Pollution-PoC-CVE-2026-25047-.git","has_code":true,"age_days":144}]},{"cve_id":"CVE-2026-25049","repositories":[{"id":1153346322,"name":"Expression-Sandbox-Escape-Simulation-Lab","full_name":"otakuliu/Expression-Sandbox-Escape-Simulation-Lab","html_url":"https://github.com/otakuliu/Expression-Sandbox-Escape-Simulation-Lab","description":"有关CVE-2026-25049做了一个模拟沙盒来理解","stargazers_count":1,"forks_count":0,"language":"JavaScript","updated_at":"2026-04-27T12:17:05Z","pushed_at":"2026-02-09T07:35:15Z","created_at":"2026-02-09T07:34:28Z","topics":[],"owner":{"login":"otakuliu","html_url":"https://github.com/otakuliu"},"clone_url":"https://github.com/otakuliu/Expression-Sandbox-Escape-Simulation-Lab.git","has_code":true,"age_days":136},{"id":1217003691,"name":"CVE-2026-25049","full_name":"0xBlackash/CVE-2026-25049","html_url":"https://github.com/0xBlackash/CVE-2026-25049","description":"CVE-2026-25049","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-21T13:46:33Z","pushed_at":"2026-04-21T13:46:30Z","created_at":"2026-04-21T12:57:00Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-25049.git","has_code":false,"age_days":65}]},{"cve_id":"CVE-2026-25050","repositories":[{"id":1151613235,"name":"CVE-2026-25050","full_name":"Christbowel/CVE-2026-25050","html_url":"https://github.com/Christbowel/CVE-2026-25050","description":"CVE-2026-25050 – Timing attack PoC enabling user enumeration via GraphQL authentication","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-03-24T15:02:39Z","pushed_at":"2026-02-06T17:30:17Z","created_at":"2026-02-06T17:24:24Z","topics":[],"owner":{"login":"Christbowel","html_url":"https://github.com/Christbowel"},"clone_url":"https://github.com/Christbowel/CVE-2026-25050.git","has_code":true,"age_days":139}]},{"cve_id":"CVE-2026-25075","repositories":[{"id":1192905194,"name":"CVE-2026-25075-check","full_name":"BishopFox/CVE-2026-25075-check","html_url":"https://github.com/BishopFox/CVE-2026-25075-check","description":"","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-04-15T09:14:13Z","pushed_at":"2026-03-26T21:01:33Z","created_at":"2026-03-26T17:16:37Z","topics":[],"owner":{"login":"BishopFox","html_url":"https://github.com/BishopFox"},"clone_url":"https://github.com/BishopFox/CVE-2026-25075-check.git","has_code":true,"age_days":91}]},{"cve_id":"CVE-2026-25089","repositories":[{"id":1264584768,"name":"CVE-2026-25089","full_name":"HORKimhab/CVE-2026-25089","html_url":"https://github.com/HORKimhab/CVE-2026-25089","description":"CVE-2026-25089 - Fortinet FortiSandbox","stargazers_count":5,"forks_count":1,"language":"Python","updated_at":"2026-06-12T19:18:05Z","pushed_at":"2026-06-10T02:50:07Z","created_at":"2026-06-10T02:31:51Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-25089.git","has_code":true,"age_days":15},{"id":1267677244,"name":"CVE-2026-25089","full_name":"0xBlackash/CVE-2026-25089","html_url":"https://github.com/0xBlackash/CVE-2026-25089","description":"CVE-2026-25089","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-06-13T15:39:25Z","pushed_at":"2026-06-12T19:37:36Z","created_at":"2026-06-12T19:03:33Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-25089.git","has_code":true,"age_days":13}]},{"cve_id":"CVE-2026-25099","repositories":[{"id":1194459072,"name":"CVE-2026-25099","full_name":"yahiahamza/CVE-2026-25099","html_url":"https://github.com/yahiahamza/CVE-2026-25099","description":"CVE-2026-25099 — Bludit CMS API Unrestricted File Upload to Remote Code Execution","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-28T12:31:27Z","pushed_at":"2026-03-28T12:31:24Z","created_at":"2026-03-28T11:40:29Z","topics":[],"owner":{"login":"yahiahamza","html_url":"https://github.com/yahiahamza"},"clone_url":"https://github.com/yahiahamza/CVE-2026-25099.git","has_code":true,"age_days":89}]},{"cve_id":"CVE-2026-25126","repositories":[{"id":1146515749,"name":"CVE-2026-25126","full_name":"Jvr2022/CVE-2026-25126","html_url":"https://github.com/Jvr2022/CVE-2026-25126","description":"CVE-2026-25126 Proof-of-Concept demonstrating vote count manipulation in PolarLearn due to improper runtime validation of the forum vote direction parameter. Published after upstream patch release.","stargazers_count":1,"forks_count":0,"language":"JavaScript","updated_at":"2026-01-31T09:03:26Z","pushed_at":"2026-01-31T08:09:19Z","created_at":"2026-01-31T08:07:44Z","topics":[],"owner":{"login":"Jvr2022","html_url":"https://github.com/Jvr2022"},"clone_url":"https://github.com/Jvr2022/CVE-2026-25126.git","has_code":true,"age_days":145}]},{"cve_id":"CVE-2026-25130","repositories":[{"id":1149259588,"name":"CVE-2026-25130-Cybersecurity-AI-CAI-Framework-0.5.10","full_name":"mbanyamer/CVE-2026-25130-Cybersecurity-AI-CAI-Framework-0.5.10","html_url":"https://github.com/mbanyamer/CVE-2026-25130-Cybersecurity-AI-CAI-Framework-0.5.10","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-02-03T22:57:17Z","pushed_at":"2026-02-03T22:57:14Z","created_at":"2026-02-03T22:56:18Z","topics":[],"owner":{"login":"mbanyamer","html_url":"https://github.com/mbanyamer"},"clone_url":"https://github.com/mbanyamer/CVE-2026-25130-Cybersecurity-AI-CAI-Framework-0.5.10.git","has_code":true,"age_days":141}]},{"cve_id":"CVE-2026-25172","repositories":[{"id":1254080719,"name":"RRAS-VULNERABILITY-CVE-2026-25172-CVE-2026-25173-CVE-2026--26111","full_name":"Dhananjayasj/RRAS-VULNERABILITY-CVE-2026-25172-CVE-2026-25173-CVE-2026--26111","html_url":"https://github.com/Dhananjayasj/RRAS-VULNERABILITY-CVE-2026-25172-CVE-2026-25173-CVE-2026--26111","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-30T05:53:20Z","pushed_at":"2026-05-30T05:53:17Z","created_at":"2026-05-30T05:52:23Z","topics":[],"owner":{"login":"Dhananjayasj","html_url":"https://github.com/Dhananjayasj"},"clone_url":"https://github.com/Dhananjayasj/RRAS-VULNERABILITY-CVE-2026-25172-CVE-2026-25173-CVE-2026--26111.git","has_code":true,"age_days":26}]},{"cve_id":"CVE-2026-25173","repositories":[{"id":1254080719,"name":"RRAS-VULNERABILITY-CVE-2026-25172-CVE-2026-25173-CVE-2026--26111","full_name":"Dhananjayasj/RRAS-VULNERABILITY-CVE-2026-25172-CVE-2026-25173-CVE-2026--26111","html_url":"https://github.com/Dhananjayasj/RRAS-VULNERABILITY-CVE-2026-25172-CVE-2026-25173-CVE-2026--26111","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-30T05:53:20Z","pushed_at":"2026-05-30T05:53:17Z","created_at":"2026-05-30T05:52:23Z","topics":[],"owner":{"login":"Dhananjayasj","html_url":"https://github.com/Dhananjayasj"},"clone_url":"https://github.com/Dhananjayasj/RRAS-VULNERABILITY-CVE-2026-25172-CVE-2026-25173-CVE-2026--26111.git","has_code":true,"age_days":26}]},{"cve_id":"CVE-2026-25177","repositories":[{"id":1181325458,"name":"detect_CVE-2026-25177","full_name":"danaug23/detect_CVE-2026-25177","html_url":"https://github.com/danaug23/detect_CVE-2026-25177","description":"Production-safe scanner that detects CVE-2026-25177 (AD SPN Unicode Collision) exploitation on Active Directory Domain Controllers. Read-only.","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-04-06T08:53:25Z","pushed_at":"2026-03-14T09:36:33Z","created_at":"2026-03-14T02:03:34Z","topics":[],"owner":{"login":"danaug23","html_url":"https://github.com/danaug23"},"clone_url":"https://github.com/danaug23/detect_CVE-2026-25177.git","has_code":true,"age_days":103},{"id":1271923236,"name":"CVE-2026-25177","full_name":"HORKimhab/CVE-2026-25177","html_url":"https://github.com/HORKimhab/CVE-2026-25177","description":"CVE-2026-25177 - Draft","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-17T06:08:19Z","pushed_at":"2026-06-17T06:08:06Z","created_at":"2026-06-17T06:08:03Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-25177.git","has_code":false,"age_days":8}]},{"cve_id":"CVE-2026-25197","repositories":[{"id":1203481461,"name":"CVE-2026-25197","full_name":"MichaelAdamGroberman/CVE-2026-25197","html_url":"https://github.com/MichaelAdamGroberman/CVE-2026-25197","description":"CVE-2026-25197: Authorization Bypass via IDOR — Gardyn Home Kit (ICSA-26-055-03)","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-04T20:35:30Z","pushed_at":"2026-06-04T20:34:50Z","created_at":"2026-04-07T04:37:34Z","topics":["authorization-bypass","cisa","coordinated-disclosure","cve","cve-2026-25197","cwe-639","gardyn","ics-advisory","icsa-26-055-03","idor","iot-security","security-research","vu653116","vulnerability-disclosure"],"owner":{"login":"MichaelAdamGroberman","html_url":"https://github.com/MichaelAdamGroberman"},"clone_url":"https://github.com/MichaelAdamGroberman/CVE-2026-25197.git","has_code":false,"age_days":79}]},{"cve_id":"CVE-2026-25211","repositories":[{"id":1146925319,"name":"Llama-Stack-0.4.0rc3-local-CVE-2026-25211","full_name":"mbanyamer/Llama-Stack-0.4.0rc3-local-CVE-2026-25211","html_url":"https://github.com/mbanyamer/Llama-Stack-0.4.0rc3-local-CVE-2026-25211","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-02-20T10:41:33Z","pushed_at":"2026-01-31T22:43:28Z","created_at":"2026-01-31T22:42:09Z","topics":[],"owner":{"login":"mbanyamer","html_url":"https://github.com/mbanyamer"},"clone_url":"https://github.com/mbanyamer/Llama-Stack-0.4.0rc3-local-CVE-2026-25211.git","has_code":true,"age_days":144}]},{"cve_id":"CVE-2026-25212","repositories":[{"id":1274736245,"name":"CVE-2026-25212","full_name":"5170Temp/CVE-2026-25212","html_url":"https://github.com/5170Temp/CVE-2026-25212","description":"POC for CVE-2026-25212","stargazers_count":2,"forks_count":1,"language":"Python","updated_at":"2026-06-23T09:57:10Z","pushed_at":"2026-06-19T20:55:17Z","created_at":"2026-06-19T20:50:00Z","topics":["cve","cve-2026-25212","grafana","percona","pmm","poc","postgres","vulnerability"],"owner":{"login":"5170Temp","html_url":"https://github.com/5170Temp"},"clone_url":"https://github.com/5170Temp/CVE-2026-25212.git","has_code":true,"age_days":5}]},{"cve_id":"CVE-2026-25232","repositories":[{"id":1214562295,"name":"CVE-2026-25232-PoC","full_name":"H1sok444/CVE-2026-25232-PoC","html_url":"https://github.com/H1sok444/CVE-2026-25232-PoC","description":"Proof of concept for the recent CVE-2026-25232 which is a priv esc vulnerability present in Gogs. ","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-04-19T02:02:24Z","pushed_at":"2026-04-18T18:41:14Z","created_at":"2026-04-18T18:40:54Z","topics":[],"owner":{"login":"H1sok444","html_url":"https://github.com/H1sok444"},"clone_url":"https://github.com/H1sok444/CVE-2026-25232-PoC.git","has_code":false,"age_days":68}]},{"cve_id":"CVE-2026-25242","repositories":[{"id":1162161290,"name":"CVE-2026-25242","full_name":"mindkernel/CVE-2026-25242","html_url":"https://github.com/mindkernel/CVE-2026-25242","description":"PoC for CVE-2026-25242 gogs unauthenticated file upload  ","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-02-19T23:49:48Z","pushed_at":"2026-02-19T23:49:48Z","created_at":"2026-02-19T23:49:48Z","topics":[],"owner":{"login":"mindkernel","html_url":"https://github.com/mindkernel"},"clone_url":"https://github.com/mindkernel/CVE-2026-25242.git","has_code":false,"age_days":125}]},{"cve_id":"CVE-2026-25253","repositories":[{"id":1142868567,"name":"moltbot-1click-rce","full_name":"ethiack/moltbot-1click-rce","html_url":"https://github.com/ethiack/moltbot-1click-rce","description":"Clawdbot/Moltbot/OpenClaw One-click RCE PoC 🦞 (CVE-2026-25253)","stargazers_count":91,"forks_count":15,"language":"Python","updated_at":"2026-06-22T11:04:56Z","pushed_at":"2026-01-27T01:32:52Z","created_at":"2026-01-27T00:11:25Z","topics":[],"owner":{"login":"ethiack","html_url":"https://github.com/ethiack"},"clone_url":"https://github.com/ethiack/moltbot-1click-rce.git","has_code":true,"age_days":149},{"id":1150364522,"name":"openclaw-security-monitor","full_name":"adibirzu/openclaw-security-monitor","html_url":"https://github.com/adibirzu/openclaw-security-monitor","description":"Proactive security monitoring for OpenClaw deployments. Detects ClawHavoc, AMOS stealer, CVE-2026-25253, memory poisoning, and supply chain attacks.","stargazers_count":47,"forks_count":5,"language":"Shell","updated_at":"2026-06-17T03:58:44Z","pushed_at":"2026-06-21T05:31:48Z","created_at":"2026-02-05T07:31:07Z","topics":[],"owner":{"login":"adibirzu","html_url":"https://github.com/adibirzu"},"clone_url":"https://github.com/adibirzu/openclaw-security-monitor.git","has_code":true,"age_days":140},{"id":1152671546,"name":"CVE-2026-25253-research","full_name":"al4n4n/CVE-2026-25253-research","html_url":"https://github.com/al4n4n/CVE-2026-25253-research","description":"","stargazers_count":7,"forks_count":1,"language":"HTML","updated_at":"2026-03-27T06:09:37Z","pushed_at":"2026-02-08T09:28:11Z","created_at":"2026-02-08T08:35:39Z","topics":[],"owner":{"login":"al4n4n","html_url":"https://github.com/al4n4n"},"clone_url":"https://github.com/al4n4n/CVE-2026-25253-research.git","has_code":true,"age_days":137},{"id":1163654790,"name":"openclaw_vulnerabilities_and_solutions","full_name":"FrigateCaptain/openclaw_vulnerabilities_and_solutions","html_url":"https://github.com/FrigateCaptain/openclaw_vulnerabilities_and_solutions","description":"\u003e OpenClaw security audit and hardened deployment guide — known vulnerabilities (CVE-2026-25253, malicious skills, credential leakage), architectural mitigations, and a step-by-step VPS deployment plan","stargazers_count":2,"forks_count":0,"language":"","updated_at":"2026-03-13T10:43:51Z","pushed_at":"2026-03-13T10:43:47Z","created_at":"2026-02-22T00:03:15Z","topics":["ai-agent","ai-agents","clawdbot","cybersecurity","deployment-guide","hardening-llm-security","llm-security","openclaw","security-audit","self-hosted","vps-deployment"],"owner":{"login":"FrigateCaptain","html_url":"https://github.com/FrigateCaptain"},"clone_url":"https://github.com/FrigateCaptain/openclaw_vulnerabilities_and_solutions.git","has_code":false,"age_days":123},{"id":1176659401,"name":"CVE-2026-25253","full_name":"EQSTLab/CVE-2026-25253","html_url":"https://github.com/EQSTLab/CVE-2026-25253","description":"OpenClaw Authentication Token Exfiltration","stargazers_count":2,"forks_count":0,"language":"HTML","updated_at":"2026-05-20T06:36:10Z","pushed_at":"2026-05-20T06:36:06Z","created_at":"2026-03-09T08:43:53Z","topics":[],"owner":{"login":"EQSTLab","html_url":"https://github.com/EQSTLab"},"clone_url":"https://github.com/EQSTLab/CVE-2026-25253.git","has_code":true,"age_days":108},{"id":1144272889,"name":"start-here","full_name":"msaleme/start-here","html_url":"https://github.com/msaleme/start-here","description":"Michael Saleme — Decision Governance for Autonomous Agents. 5 DOIs, 3 NIST submissions, CVE-2026-25253, 474 security tests across 33 modules.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-22T13:05:24Z","pushed_at":"2026-06-22T13:04:42Z","created_at":"2026-01-28T14:02:03Z","topics":["a2a","agent-security","ai-governance","ai-integration","ai-security","decision-making","enterprise-architecture","llm-security","mcp","oil-and-gas"],"owner":{"login":"msaleme","html_url":"https://github.com/msaleme"},"clone_url":"https://github.com/msaleme/start-here.git","has_code":false,"age_days":148},{"id":1151296434,"name":"openclaw-vuln-report","full_name":"Joseph19820124/openclaw-vuln-report","html_url":"https://github.com/Joseph19820124/openclaw-vuln-report","description":"OpenClaw CVE-2026-25253 漏洞分析中文版","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-02-06T09:40:00Z","pushed_at":"2026-02-06T09:39:56Z","created_at":"2026-02-06T09:39:29Z","topics":[],"owner":{"login":"Joseph19820124","html_url":"https://github.com/Joseph19820124"},"clone_url":"https://github.com/Joseph19820124/openclaw-vuln-report.git","has_code":false,"age_days":139},{"id":1214288905,"name":"CVE-2026-25253","full_name":"KajzingerAkos/CVE-2026-25253","html_url":"https://github.com/KajzingerAkos/CVE-2026-25253","description":"CVE-2026-25253: One-Click RCE in OpenClaw via Auth Token Theft","stargazers_count":0,"forks_count":0,"language":"HTML","updated_at":"2026-04-18T11:20:30Z","pushed_at":"2026-04-18T11:20:26Z","created_at":"2026-04-18T11:19:03Z","topics":[],"owner":{"login":"KajzingerAkos","html_url":"https://github.com/KajzingerAkos"},"clone_url":"https://github.com/KajzingerAkos/CVE-2026-25253.git","has_code":true,"age_days":68},{"id":1234447920,"name":"agentbox","full_name":"siyad01/agentbox","html_url":"https://github.com/siyad01/agentbox","description":"Open-source sandboxed runtime for AI agents — gVisor/Docker isolation,  credential vault, immutable audit log. Built after CVE-2026-25253.","stargazers_count":0,"forks_count":0,"language":"Go","updated_at":"2026-05-11T03:12:33Z","pushed_at":"2026-05-11T03:12:29Z","created_at":"2026-05-10T07:42:07Z","topics":["audit-log","docker","golang","gvisor","mcp","open-source","runtime","sandboxing","security","zero-trust"],"owner":{"login":"siyad01","html_url":"https://github.com/siyad01"},"clone_url":"https://github.com/siyad01/agentbox.git","has_code":true,"age_days":46}]},{"cve_id":"CVE-2026-25512","repositories":[{"id":1150125429,"name":"CVE-2026-25512-PoC-Group-Office-Authenticated-RCE","full_name":"mbanyamer/CVE-2026-25512-PoC-Group-Office-Authenticated-RCE","html_url":"https://github.com/mbanyamer/CVE-2026-25512-PoC-Group-Office-Authenticated-RCE","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-02-04T23:00:34Z","pushed_at":"2026-02-04T23:00:31Z","created_at":"2026-02-04T22:59:46Z","topics":[],"owner":{"login":"mbanyamer","html_url":"https://github.com/mbanyamer"},"clone_url":"https://github.com/mbanyamer/CVE-2026-25512-PoC-Group-Office-Authenticated-RCE.git","has_code":true,"age_days":140},{"id":1149608935,"name":"CVE-2026-25512","full_name":"NumberOreo1/CVE-2026-25512","html_url":"https://github.com/NumberOreo1/CVE-2026-25512","description":"RCE - Command Injection via TNEF Attachment Handler","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-02-04T10:30:05Z","pushed_at":"2026-02-04T10:30:01Z","created_at":"2026-02-04T10:05:21Z","topics":[],"owner":{"login":"NumberOreo1","html_url":"https://github.com/NumberOreo1"},"clone_url":"https://github.com/NumberOreo1/CVE-2026-25512.git","has_code":true,"age_days":141}]},{"cve_id":"CVE-2026-25513","repositories":[{"id":1208065127,"name":"CVE-2026-25513","full_name":"lukasz-rybak/CVE-2026-25513","html_url":"https://github.com/lukasz-rybak/CVE-2026-25513","description":"CVE-2026-25513 - FacturaScripts has SQL Injection in API ORDER BY Clause","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-11T19:22:13Z","pushed_at":"2026-04-11T19:22:06Z","created_at":"2026-04-11T19:14:24Z","topics":[],"owner":{"login":"lukasz-rybak","html_url":"https://github.com/lukasz-rybak"},"clone_url":"https://github.com/lukasz-rybak/CVE-2026-25513.git","has_code":false,"age_days":75}]},{"cve_id":"CVE-2026-25514","repositories":[{"id":1208065171,"name":"CVE-2026-25514","full_name":"lukasz-rybak/CVE-2026-25514","html_url":"https://github.com/lukasz-rybak/CVE-2026-25514","description":"CVE-2026-25514 - FacturaScripts has SQL Injection in Autocomplete Actions","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-11T19:22:12Z","pushed_at":"2026-04-11T19:22:09Z","created_at":"2026-04-11T19:14:29Z","topics":[],"owner":{"login":"lukasz-rybak","html_url":"https://github.com/lukasz-rybak"},"clone_url":"https://github.com/lukasz-rybak/CVE-2026-25514.git","has_code":false,"age_days":75}]},{"cve_id":"CVE-2026-25526","repositories":[{"id":1154384232,"name":"jinjava-cve-2026-25526-poc","full_name":"av4nth1ka/jinjava-cve-2026-25526-poc","html_url":"https://github.com/av4nth1ka/jinjava-cve-2026-25526-poc","description":"lab setup + exploits for CVE-2026-25526","stargazers_count":1,"forks_count":0,"language":"Java","updated_at":"2026-02-26T13:15:41Z","pushed_at":"2026-02-12T11:31:26Z","created_at":"2026-02-10T10:24:52Z","topics":["cve","cve-2026-25526","java","jinjava"],"owner":{"login":"av4nth1ka","html_url":"https://github.com/av4nth1ka"},"clone_url":"https://github.com/av4nth1ka/jinjava-cve-2026-25526-poc.git","has_code":true,"age_days":135}]},{"cve_id":"CVE-2026-25541","repositories":[{"id":1276722249,"name":"cve-2026-25541-fuel-analysis","full_name":"hanyvert/cve-2026-25541-fuel-analysis","html_url":"https://github.com/hanyvert/cve-2026-25541-fuel-analysis","description":"CVE-2026-25541 impact analysis for Fuel infrastructure (bytes crate integer overflow)","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-06-24T04:04:31Z","pushed_at":"2026-06-22T12:04:49Z","created_at":"2026-06-22T08:28:50Z","topics":[],"owner":{"login":"hanyvert","html_url":"https://github.com/hanyvert"},"clone_url":"https://github.com/hanyvert/cve-2026-25541-fuel-analysis.git","has_code":false,"age_days":3}]},{"cve_id":"CVE-2026-25546","repositories":[{"id":1150115684,"name":"CVE-2026-25546-godot-mcp-0.1.1-OS-Command-Injection","full_name":"mbanyamer/CVE-2026-25546-godot-mcp-0.1.1-OS-Command-Injection","html_url":"https://github.com/mbanyamer/CVE-2026-25546-godot-mcp-0.1.1-OS-Command-Injection","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-02-04T22:49:30Z","pushed_at":"2026-02-04T22:49:26Z","created_at":"2026-02-04T22:37:41Z","topics":[],"owner":{"login":"mbanyamer","html_url":"https://github.com/mbanyamer"},"clone_url":"https://github.com/mbanyamer/CVE-2026-25546-godot-mcp-0.1.1-OS-Command-Injection.git","has_code":true,"age_days":140}]},{"cve_id":"CVE-2026-25548","repositories":[{"id":1182545012,"name":"CVE-2026-25548","full_name":"lagathos/CVE-2026-25548","html_url":"https://github.com/lagathos/CVE-2026-25548","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-15T17:39:08Z","pushed_at":"2026-03-15T17:39:05Z","created_at":"2026-03-15T17:01:07Z","topics":[],"owner":{"login":"lagathos","html_url":"https://github.com/lagathos"},"clone_url":"https://github.com/lagathos/CVE-2026-25548.git","has_code":false,"age_days":102}]},{"cve_id":"CVE-2026-25589","repositories":[{"id":1232564197,"name":"CVE-2026-25589-25588-25243-23631-23479-REDIS","full_name":"mgiay/CVE-2026-25589-25588-25243-23631-23479-REDIS","html_url":"https://github.com/mgiay/CVE-2026-25589-25588-25243-23631-23479-REDIS","description":"Desc \"Fix Redis  CVE ultil 20260508-10h51 GMT+7\"","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-08T13:36:49Z","pushed_at":"2026-05-08T13:36:45Z","created_at":"2026-05-08T03:51:33Z","topics":[],"owner":{"login":"mgiay","html_url":"https://github.com/mgiay"},"clone_url":"https://github.com/mgiay/CVE-2026-25589-25588-25243-23631-23479-REDIS.git","has_code":true,"age_days":48}]},{"cve_id":"CVE-2026-25594","repositories":[{"id":1182589524,"name":"CVE-2026-25594","full_name":"lagathos/CVE-2026-25594","html_url":"https://github.com/lagathos/CVE-2026-25594","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-15T18:09:32Z","pushed_at":"2026-03-15T18:09:29Z","created_at":"2026-03-15T18:09:01Z","topics":[],"owner":{"login":"lagathos","html_url":"https://github.com/lagathos"},"clone_url":"https://github.com/lagathos/CVE-2026-25594.git","has_code":false,"age_days":102}]},{"cve_id":"CVE-2026-25595","repositories":[{"id":1182590057,"name":"CVE-2026-25595","full_name":"lagathos/CVE-2026-25595","html_url":"https://github.com/lagathos/CVE-2026-25595","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-15T18:10:11Z","pushed_at":"2026-03-15T18:10:08Z","created_at":"2026-03-15T18:09:55Z","topics":[],"owner":{"login":"lagathos","html_url":"https://github.com/lagathos"},"clone_url":"https://github.com/lagathos/CVE-2026-25595.git","has_code":false,"age_days":102}]},{"cve_id":"CVE-2026-25596","repositories":[{"id":1182590472,"name":"CVE-2026-25596","full_name":"lagathos/CVE-2026-25596","html_url":"https://github.com/lagathos/CVE-2026-25596","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-15T18:10:46Z","pushed_at":"2026-03-15T18:10:43Z","created_at":"2026-03-15T18:10:29Z","topics":[],"owner":{"login":"lagathos","html_url":"https://github.com/lagathos"},"clone_url":"https://github.com/lagathos/CVE-2026-25596.git","has_code":false,"age_days":102}]},{"cve_id":"CVE-2026-25604","repositories":[{"id":1217528713,"name":"CVE-2026-25604-PoC","full_name":"John-Jung/CVE-2026-25604-PoC","html_url":"https://github.com/John-Jung/CVE-2026-25604-PoC","description":"A PoC for demonstrating CVE-2026-25604","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-22T01:41:58Z","pushed_at":"2026-04-22T01:41:55Z","created_at":"2026-04-22T01:22:04Z","topics":[],"owner":{"login":"John-Jung","html_url":"https://github.com/John-Jung"},"clone_url":"https://github.com/John-Jung/CVE-2026-25604-PoC.git","has_code":true,"age_days":64}]},{"cve_id":"CVE-2026-25643","repositories":[{"id":1166075340,"name":"CVE-2026-25643","full_name":"joshuavanderpoll/CVE-2026-25643","html_url":"https://github.com/joshuavanderpoll/CVE-2026-25643","description":"CVE-2026-25643: Frigate ≤0.16.3 Blind RCE via go2rtc exec injection","stargazers_count":7,"forks_count":0,"language":"Python","updated_at":"2026-06-18T08:45:28Z","pushed_at":"2026-02-24T21:34:55Z","created_at":"2026-02-24T21:14:24Z","topics":["cve","cve-2026-25643","exploit","exploits","frigate","pentest-tool","pentesting","python","rce","security","security-tools","vulnerabilities","vulnerability"],"owner":{"login":"joshuavanderpoll","html_url":"https://github.com/joshuavanderpoll"},"clone_url":"https://github.com/joshuavanderpoll/CVE-2026-25643.git","has_code":true,"age_days":120},{"id":1150930488,"name":"CVE-2026-25643-Frigate-RCE","full_name":"jduardo2704/CVE-2026-25643-Frigate-RCE","html_url":"https://github.com/jduardo2704/CVE-2026-25643-Frigate-RCE","description":"","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-05-18T02:44:07Z","pushed_at":"2026-02-05T21:31:30Z","created_at":"2026-02-05T21:23:22Z","topics":[],"owner":{"login":"jduardo2704","html_url":"https://github.com/jduardo2704"},"clone_url":"https://github.com/jduardo2704/CVE-2026-25643-Frigate-RCE.git","has_code":true,"age_days":139}]},{"cve_id":"CVE-2026-25676","repositories":[{"id":1157607226,"name":"cve-2026-25676","full_name":"Nexxus67/cve-2026-25676","html_url":"https://github.com/Nexxus67/cve-2026-25676","description":"","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-04-07T18:04:16Z","pushed_at":"2026-02-14T03:08:01Z","created_at":"2026-02-14T03:02:50Z","topics":[],"owner":{"login":"Nexxus67","html_url":"https://github.com/Nexxus67"},"clone_url":"https://github.com/Nexxus67/cve-2026-25676.git","has_code":true,"age_days":131}]},{"cve_id":"CVE-2026-25731","repositories":[{"id":1151358112,"name":"CVE-2026-25731","full_name":"dxlerYT/CVE-2026-25731","html_url":"https://github.com/dxlerYT/CVE-2026-25731","description":"Proof of Concept for a Server-Side Template Injection (SSTI) vulnerability in Calibre’s Templite engine (GHSA-xrh9-w7qx-3gcc). Demonstrates arbitrary Python code execution via user-supplied HTML export templates in affected versions (≤ 9.1.0).","stargazers_count":5,"forks_count":0,"language":"","updated_at":"2026-04-25T02:27:56Z","pushed_at":"2026-02-07T21:36:58Z","created_at":"2026-02-06T11:14:08Z","topics":[],"owner":{"login":"dxlerYT","html_url":"https://github.com/dxlerYT"},"clone_url":"https://github.com/dxlerYT/CVE-2026-25731.git","has_code":false,"age_days":139}]},{"cve_id":"CVE-2026-25732","repositories":[{"id":1152718279,"name":"CVE-2026-25732-NiceGUI-3.6.1","full_name":"mbanyamer/CVE-2026-25732-NiceGUI-3.6.1","html_url":"https://github.com/mbanyamer/CVE-2026-25732-NiceGUI-3.6.1","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-02-08T12:07:01Z","pushed_at":"2026-02-08T12:06:57Z","created_at":"2026-02-08T10:18:51Z","topics":[],"owner":{"login":"mbanyamer","html_url":"https://github.com/mbanyamer"},"clone_url":"https://github.com/mbanyamer/CVE-2026-25732-NiceGUI-3.6.1.git","has_code":true,"age_days":137}]},{"cve_id":"CVE-2026-25746","repositories":[{"id":1148937975,"name":"CVE-2026-25746_SqlInjectionVulnerabilityOpenEMR7.0.4","full_name":"ChrisSub08/CVE-2026-25746_SqlInjectionVulnerabilityOpenEMR7.0.4","html_url":"https://github.com/ChrisSub08/CVE-2026-25746_SqlInjectionVulnerabilityOpenEMR7.0.4","description":"CVE-2026-25746 - SQL Injection Vulnerability in OpenEMR \u003c8.0.0","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-25T08:47:30Z","pushed_at":"2026-03-25T08:47:26Z","created_at":"2026-02-03T14:41:25Z","topics":["cve","cve-2026-25746","exploit","openemr","openemr-exploit","openemr-vulnerability","sql-injection","sqli","vulnerability"],"owner":{"login":"ChrisSub08","html_url":"https://github.com/ChrisSub08"},"clone_url":"https://github.com/ChrisSub08/CVE-2026-25746_SqlInjectionVulnerabilityOpenEMR7.0.4.git","has_code":true,"age_days":142}]},{"cve_id":"CVE-2026-25747","repositories":[{"id":1153427497,"name":"CVE-2026-25747","full_name":"oscerd/CVE-2026-25747","html_url":"https://github.com/oscerd/CVE-2026-25747","description":"CVE-2026-25747 - Camel LevelDB Deserialization Vulnerability","stargazers_count":0,"forks_count":0,"language":"Java","updated_at":"2026-02-18T10:26:03Z","pushed_at":"2026-02-09T09:37:56Z","created_at":"2026-02-09T09:37:26Z","topics":[],"owner":{"login":"oscerd","html_url":"https://github.com/oscerd"},"clone_url":"https://github.com/oscerd/CVE-2026-25747.git","has_code":true,"age_days":136}]},{"cve_id":"CVE-2026-25755","repositories":[{"id":1165493970,"name":"jsPDF-Object-Injection","full_name":"absholi7ly/jsPDF-Object-Injection","html_url":"https://github.com/absholi7ly/jsPDF-Object-Injection","description":"CVE-2026-25755 A critical PDF Object Injection vulnerability in jsPDF allows attackers to inject arbitrary PDF objects through the addJS() function, enabling AcroJS sandbox bypass and automatic script execution when PDFs are opened.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-02-24T08:56:10Z","pushed_at":"2026-02-24T08:56:04Z","created_at":"2026-02-24T08:18:41Z","topics":[],"owner":{"login":"absholi7ly","html_url":"https://github.com/absholi7ly"},"clone_url":"https://github.com/absholi7ly/jsPDF-Object-Injection.git","has_code":false,"age_days":121}]},{"cve_id":"CVE-2026-2576","repositories":[{"id":1193152600,"name":"CVE_2026_2576_PoC","full_name":"SowatKheang/CVE_2026_2576_PoC","html_url":"https://github.com/SowatKheang/CVE_2026_2576_PoC","description":"CVE-2026-2576 — Business Directory Plugin SQLi PoC (Local Setup). Unauthenticated Time-Based Blind SQL Injection Business Directory Plugin for WordPress ≤ 6.4.21","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-21T13:00:55Z","pushed_at":"2026-03-27T00:03:37Z","created_at":"2026-03-26T23:37:39Z","topics":[],"owner":{"login":"SowatKheang","html_url":"https://github.com/SowatKheang"},"clone_url":"https://github.com/SowatKheang/CVE_2026_2576_PoC.git","has_code":true,"age_days":90}]},{"cve_id":"CVE-2026-25769","repositories":[{"id":1155639382,"name":"CVE-2026-25769","full_name":"hakaioffsec/CVE-2026-25769","html_url":"https://github.com/hakaioffsec/CVE-2026-25769","description":"Remote Code Execution via Insecure Deserialization in Wazuh Cluster ","stargazers_count":41,"forks_count":8,"language":"Python","updated_at":"2026-06-15T16:46:11Z","pushed_at":"2026-03-17T19:59:33Z","created_at":"2026-02-11T18:29:02Z","topics":[],"owner":{"login":"hakaioffsec","html_url":"https://github.com/hakaioffsec"},"clone_url":"https://github.com/hakaioffsec/CVE-2026-25769.git","has_code":true,"age_days":134},{"id":1187946935,"name":"CVE-2026-25769---CVE-2026-25770","full_name":"Samres27/CVE-2026-25769---CVE-2026-25770","html_url":"https://github.com/Samres27/CVE-2026-25769---CVE-2026-25770","description":"repo con las pruebas de concepto","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-01T01:21:03Z","pushed_at":"2026-05-01T01:21:00Z","created_at":"2026-03-21T12:09:05Z","topics":[],"owner":{"login":"Samres27","html_url":"https://github.com/Samres27"},"clone_url":"https://github.com/Samres27/CVE-2026-25769---CVE-2026-25770.git","has_code":true,"age_days":96},{"id":1209259358,"name":"CVE-2026-25769","full_name":"0xBlackash/CVE-2026-25769","html_url":"https://github.com/0xBlackash/CVE-2026-25769","description":"CVE-2026-25769","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-13T08:58:59Z","pushed_at":"2026-04-13T08:58:56Z","created_at":"2026-04-13T08:46:54Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-25769.git","has_code":false,"age_days":73},{"id":1201944490,"name":"CVE-2026-25769","full_name":"njeru-codes/CVE-2026-25769","html_url":"https://github.com/njeru-codes/CVE-2026-25769","description":"POC for deserialization of untrusted data in wazuh leading to RCE","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-05T11:45:52Z","pushed_at":"2026-04-05T11:45:48Z","created_at":"2026-04-05T11:31:47Z","topics":[],"owner":{"login":"njeru-codes","html_url":"https://github.com/njeru-codes"},"clone_url":"https://github.com/njeru-codes/CVE-2026-25769.git","has_code":false,"age_days":81}]},{"cve_id":"CVE-2026-25770","repositories":[{"id":1187946935,"name":"CVE-2026-25769---CVE-2026-25770","full_name":"Samres27/CVE-2026-25769---CVE-2026-25770","html_url":"https://github.com/Samres27/CVE-2026-25769---CVE-2026-25770","description":"repo con las pruebas de concepto","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-01T01:21:03Z","pushed_at":"2026-05-01T01:21:00Z","created_at":"2026-03-21T12:09:05Z","topics":[],"owner":{"login":"Samres27","html_url":"https://github.com/Samres27"},"clone_url":"https://github.com/Samres27/CVE-2026-25769---CVE-2026-25770.git","has_code":true,"age_days":96}]},{"cve_id":"CVE-2026-25807","repositories":[{"id":1154111630,"name":"CVE-2026-25807-Exploit","full_name":"ibrahmsql/CVE-2026-25807-Exploit","html_url":"https://github.com/ibrahmsql/CVE-2026-25807-Exploit","description":"CVE-2026-25807  Unauthenticated Remote Code Execution via P2P Sharing in ZAI-Shell Exploit and PoC","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-03-28T15:21:06Z","pushed_at":"2026-02-10T03:03:43Z","created_at":"2026-02-10T02:54:13Z","topics":[],"owner":{"login":"ibrahmsql","html_url":"https://github.com/ibrahmsql"},"clone_url":"https://github.com/ibrahmsql/CVE-2026-25807-Exploit.git","has_code":true,"age_days":135}]},{"cve_id":"CVE-2026-25854","repositories":[{"id":1175838181,"name":"cve-2026-25854","full_name":"gregk4sec/cve-2026-25854","html_url":"https://github.com/gregk4sec/cve-2026-25854","description":"","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-04-12T09:13:16Z","pushed_at":"2026-04-12T09:06:38Z","created_at":"2026-03-08T08:40:17Z","topics":[],"owner":{"login":"gregk4sec","html_url":"https://github.com/gregk4sec"},"clone_url":"https://github.com/gregk4sec/cve-2026-25854.git","has_code":true,"age_days":109}]},{"cve_id":"CVE-2026-2586","repositories":[{"id":1256490639,"name":"CVE-2026-2586","full_name":"DeepSecurityResearch/CVE-2026-2586","html_url":"https://github.com/DeepSecurityResearch/CVE-2026-2586","description":"","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-06-12T21:47:00Z","pushed_at":"2026-06-02T02:27:15Z","created_at":"2026-06-01T20:36:17Z","topics":[],"owner":{"login":"DeepSecurityResearch","html_url":"https://github.com/DeepSecurityResearch"},"clone_url":"https://github.com/DeepSecurityResearch/CVE-2026-2586.git","has_code":true,"age_days":23}]},{"cve_id":"CVE-2026-25860","repositories":[{"id":1260590626,"name":"CVE-2026-25860","full_name":"partywavesec/CVE-2026-25860","html_url":"https://github.com/partywavesec/CVE-2026-25860","description":"CVE-2026-25860 POC git","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-05T23:30:30Z","pushed_at":"2026-06-05T23:30:26Z","created_at":"2026-06-05T16:52:51Z","topics":[],"owner":{"login":"partywavesec","html_url":"https://github.com/partywavesec"},"clone_url":"https://github.com/partywavesec/CVE-2026-25860.git","has_code":false,"age_days":20}]},{"cve_id":"CVE-2026-2587","repositories":[{"id":1245051627,"name":"CVE-2026-2587-Exploit-POC","full_name":"Bhanunamikaze/CVE-2026-2587-Exploit-POC","html_url":"https://github.com/Bhanunamikaze/CVE-2026-2587-Exploit-POC","description":"CVE-2026-2587 PoC validator for Eclipse GlassFish EL Injection RCE in the admin console gadget.jsf handler. Safe authenticated vulnerability scanner for authorized testing.","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-24T09:03:35Z","pushed_at":"2026-05-21T09:53:23Z","created_at":"2026-05-20T21:31:14Z","topics":["cve","cve-2026-2587","cwe-917","eclipse-glassfish","el-injection","exploit","expression-language-injection","glassfish","java","pentest","poc","rce","security-research","vulnerability"],"owner":{"login":"Bhanunamikaze","html_url":"https://github.com/Bhanunamikaze"},"clone_url":"https://github.com/Bhanunamikaze/CVE-2026-2587-Exploit-POC.git","has_code":true,"age_days":35}]},{"cve_id":"CVE-2026-25890","repositories":[{"id":1162086192,"name":"CVE-2026-25890-FileBrowser-Access-Control-Bypass","full_name":"mbanyamer/CVE-2026-25890-FileBrowser-Access-Control-Bypass","html_url":"https://github.com/mbanyamer/CVE-2026-25890-FileBrowser-Access-Control-Bypass","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-02-19T21:22:12Z","pushed_at":"2026-02-19T21:22:08Z","created_at":"2026-02-19T21:20:27Z","topics":[],"owner":{"login":"mbanyamer","html_url":"https://github.com/mbanyamer"},"clone_url":"https://github.com/mbanyamer/CVE-2026-25890-FileBrowser-Access-Control-Bypass.git","has_code":false,"age_days":125}]},{"cve_id":"CVE-2026-25895","repositories":[{"id":1220398537,"name":"FUXAPWN","full_name":"Hann1bl3L3ct3r/FUXAPWN","html_url":"https://github.com/Hann1bl3L3ct3r/FUXAPWN","description":"POC exploit for CVE-2026-25895 FUXA Unauthenticated Path Traversal -\u003e Arbitrary File Write -\u003e RCE","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-26T02:16:56Z","pushed_at":"2026-05-26T02:16:53Z","created_at":"2026-04-24T21:26:44Z","topics":[],"owner":{"login":"Hann1bl3L3ct3r","html_url":"https://github.com/Hann1bl3L3ct3r"},"clone_url":"https://github.com/Hann1bl3L3ct3r/FUXAPWN.git","has_code":true,"age_days":61}]},{"cve_id":"CVE-2026-25916","repositories":[{"id":1153455916,"name":"CVE-2026-25916-Roundcube-Webmail-DOM-based-XSS-Exploit-via-SVG-href-Attribute","full_name":"mbanyamer/CVE-2026-25916-Roundcube-Webmail-DOM-based-XSS-Exploit-via-SVG-href-Attribute","html_url":"https://github.com/mbanyamer/CVE-2026-25916-Roundcube-Webmail-DOM-based-XSS-Exploit-via-SVG-href-Attribute","description":"","stargazers_count":3,"forks_count":1,"language":"Python","updated_at":"2026-04-27T03:43:04Z","pushed_at":"2026-02-09T10:20:38Z","created_at":"2026-02-09T10:17:48Z","topics":[],"owner":{"login":"mbanyamer","html_url":"https://github.com/mbanyamer"},"clone_url":"https://github.com/mbanyamer/CVE-2026-25916-Roundcube-Webmail-DOM-based-XSS-Exploit-via-SVG-href-Attribute.git","has_code":true,"age_days":136}]},{"cve_id":"CVE-2026-25924","repositories":[{"id":1157115324,"name":"CVE-2026-25924","full_name":"drkim-dev/CVE-2026-25924","html_url":"https://github.com/drkim-dev/CVE-2026-25924","description":"CVE-2026-25924 | Kanboad Exploit ","stargazers_count":2,"forks_count":2,"language":"PHP","updated_at":"2026-04-23T04:55:11Z","pushed_at":"2026-02-17T16:12:53Z","created_at":"2026-02-13T12:57:21Z","topics":[],"owner":{"login":"drkim-dev","html_url":"https://github.com/drkim-dev"},"clone_url":"https://github.com/drkim-dev/CVE-2026-25924.git","has_code":true,"age_days":132}]},{"cve_id":"CVE-2026-25939","repositories":[{"id":1154396057,"name":"CVE-2026-25939-SCADA-FUXA-Unauthenticated-Remote-Arbitrary","full_name":"mbanyamer/CVE-2026-25939-SCADA-FUXA-Unauthenticated-Remote-Arbitrary","html_url":"https://github.com/mbanyamer/CVE-2026-25939-SCADA-FUXA-Unauthenticated-Remote-Arbitrary","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-02-10T10:47:58Z","pushed_at":"2026-02-10T10:47:54Z","created_at":"2026-02-10T10:41:44Z","topics":[],"owner":{"login":"mbanyamer","html_url":"https://github.com/mbanyamer"},"clone_url":"https://github.com/mbanyamer/CVE-2026-25939-SCADA-FUXA-Unauthenticated-Remote-Arbitrary.git","has_code":true,"age_days":135}]},{"cve_id":"CVE-2026-25940","repositories":[{"id":1170340021,"name":"CVE-2026-25940","full_name":"open-flaw/CVE-2026-25940","html_url":"https://github.com/open-flaw/CVE-2026-25940","description":"","stargazers_count":0,"forks_count":0,"language":"HTML","updated_at":"2026-05-16T13:46:49Z","pushed_at":"2026-03-02T02:32:17Z","created_at":"2026-03-02T02:32:14Z","topics":[],"owner":{"login":"open-flaw","html_url":"https://github.com/open-flaw"},"clone_url":"https://github.com/open-flaw/CVE-2026-25940.git","has_code":true,"age_days":115}]},{"cve_id":"CVE-2026-25961","repositories":[{"id":1154306774,"name":"CVE-2026-25961-SumatraPDF-3.5.0---3.5.2-RCE","full_name":"mbanyamer/CVE-2026-25961-SumatraPDF-3.5.0---3.5.2-RCE","html_url":"https://github.com/mbanyamer/CVE-2026-25961-SumatraPDF-3.5.0---3.5.2-RCE","description":"SumatraPDF versions 3.5.0 to 3.5.2 disable TLS hostname verification during update checks #   (using INTERNET_FLAG_IGNORE_CERT_CN_INVALID) and do not perform any signature or integrity #   validation on the downloaded installer.","stargazers_count":2,"forks_count":1,"language":"Python","updated_at":"2026-06-02T13:04:22Z","pushed_at":"2026-02-10T08:40:08Z","created_at":"2026-02-10T08:36:32Z","topics":[],"owner":{"login":"mbanyamer","html_url":"https://github.com/mbanyamer"},"clone_url":"https://github.com/mbanyamer/CVE-2026-25961-SumatraPDF-3.5.0---3.5.2-RCE.git","has_code":true,"age_days":135}]},{"cve_id":"CVE-2026-25964","repositories":[{"id":1160171678,"name":"CVE-2026-25964","full_name":"drkim-dev/CVE-2026-25964","html_url":"https://github.com/drkim-dev/CVE-2026-25964","description":"CVE-2026-25964 | Tandoor Recipes LFI","stargazers_count":2,"forks_count":1,"language":"Shell","updated_at":"2026-03-05T16:37:54Z","pushed_at":"2026-02-17T16:33:26Z","created_at":"2026-02-17T16:17:43Z","topics":[],"owner":{"login":"drkim-dev","html_url":"https://github.com/drkim-dev"},"clone_url":"https://github.com/drkim-dev/CVE-2026-25964.git","has_code":true,"age_days":128}]},{"cve_id":"CVE-2026-25991","repositories":[{"id":1160184927,"name":"CVE-2026-25991","full_name":"drkim-dev/CVE-2026-25991","html_url":"https://github.com/drkim-dev/CVE-2026-25991","description":"CVE-2026-25991 | Tandoor Recipes SSRF","stargazers_count":2,"forks_count":1,"language":"","updated_at":"2026-03-18T06:22:27Z","pushed_at":"2026-03-18T06:22:24Z","created_at":"2026-02-17T16:34:33Z","topics":[],"owner":{"login":"drkim-dev","html_url":"https://github.com/drkim-dev"},"clone_url":"https://github.com/drkim-dev/CVE-2026-25991.git","has_code":false,"age_days":128}]},{"cve_id":"CVE-2026-25994","repositories":[{"id":1203350268,"name":"cve-2026-25994_PJSIP","full_name":"VABISMO/cve-2026-25994_PJSIP","html_url":"https://github.com/VABISMO/cve-2026-25994_PJSIP","description":"PJSIP cve-2026-25994 BUFFER OVERFLOW POC","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-04-15T19:30:28Z","pushed_at":"2026-04-08T17:23:07Z","created_at":"2026-04-07T00:54:30Z","topics":["buffer-overflow","cve","cve-scanning","dos-attack","exploit"],"owner":{"login":"VABISMO","html_url":"https://github.com/VABISMO"},"clone_url":"https://github.com/VABISMO/cve-2026-25994_PJSIP.git","has_code":true,"age_days":79}]},{"cve_id":"CVE-2026-2600","repositories":[{"id":1216240382,"name":"CVE-2026-2600-POC","full_name":"FOLKS-iwd/CVE-2026-2600-POC","html_url":"https://github.com/FOLKS-iwd/CVE-2026-2600-POC","description":"CVE-2026-2600 PoC - ElementsKit Elementor Addons \u003c= 3.7.9 Stored XSS (Contributor+)","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-04-20T21:38:25Z","pushed_at":"2026-04-20T18:14:11Z","created_at":"2026-04-20T17:55:49Z","topics":[],"owner":{"login":"FOLKS-iwd","html_url":"https://github.com/FOLKS-iwd"},"clone_url":"https://github.com/FOLKS-iwd/CVE-2026-2600-POC.git","has_code":true,"age_days":66}]},{"cve_id":"CVE-2026-26012","repositories":[{"id":1159101450,"name":"CVE-2026-26012","full_name":"Dulieno/CVE-2026-26012","html_url":"https://github.com/Dulieno/CVE-2026-26012","description":"CVE-2026-26012 — Proof of Concept Vaultwarden — Full Cipher Enumeration Ignoring Organization Collection Permissions","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-02-17T10:42:32Z","pushed_at":"2026-02-17T10:42:29Z","created_at":"2026-02-16T10:14:06Z","topics":[],"owner":{"login":"Dulieno","html_url":"https://github.com/Dulieno"},"clone_url":"https://github.com/Dulieno/CVE-2026-26012.git","has_code":true,"age_days":129},{"id":1160695720,"name":"CVE-2026-26012","full_name":"diegobaelen/CVE-2026-26012","html_url":"https://github.com/diegobaelen/CVE-2026-26012","description":"CVE-2026-26012 - Vaultwarden - Authentified Organization Collection Permissions Bypass \u0026 Cipher Enumeration ","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-02-18T11:17:56Z","pushed_at":"2026-02-18T11:16:55Z","created_at":"2026-02-18T09:05:00Z","topics":[],"owner":{"login":"diegobaelen","html_url":"https://github.com/diegobaelen"},"clone_url":"https://github.com/diegobaelen/CVE-2026-26012.git","has_code":true,"age_days":127}]},{"cve_id":"CVE-2026-26026","repositories":[{"id":1218037364,"name":"CVE-2026-26026-PoC","full_name":"CEAarab/CVE-2026-26026-PoC","html_url":"https://github.com/CEAarab/CVE-2026-26026-PoC","description":"","stargazers_count":1,"forks_count":0,"language":"Shell","updated_at":"2026-05-13T14:27:30Z","pushed_at":"2026-04-22T13:23:01Z","created_at":"2026-04-22T13:21:45Z","topics":[],"owner":{"login":"CEAarab","html_url":"https://github.com/CEAarab"},"clone_url":"https://github.com/CEAarab/CVE-2026-26026-PoC.git","has_code":true,"age_days":64}]},{"cve_id":"CVE-2026-26030","repositories":[{"id":1276878433,"name":"sk-cve-2026-26030-lab","full_name":"InertFluid/sk-cve-2026-26030-lab","html_url":"https://github.com/InertFluid/sk-cve-2026-26030-lab","description":"Ethical, network-isolated Docker lab reproducing CVE-2026-26030 — Semantic Kernel in-memory vector store filter eval() RCE (patched in 1.39.4)","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-23T11:51:41Z","pushed_at":"2026-06-23T08:52:59Z","created_at":"2026-06-22T11:28:10Z","topics":[],"owner":{"login":"InertFluid","html_url":"https://github.com/InertFluid"},"clone_url":"https://github.com/InertFluid/sk-cve-2026-26030-lab.git","has_code":true,"age_days":3},{"id":1165890005,"name":"CVE-2026-26030-Microsoft-Semantic-Kernel-1.39.4-RCE","full_name":"mbanyamer/CVE-2026-26030-Microsoft-Semantic-Kernel-1.39.4-RCE","html_url":"https://github.com/mbanyamer/CVE-2026-26030-Microsoft-Semantic-Kernel-1.39.4-RCE","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-02-24T16:58:19Z","pushed_at":"2026-02-24T16:57:56Z","created_at":"2026-02-24T16:50:25Z","topics":[],"owner":{"login":"mbanyamer","html_url":"https://github.com/mbanyamer"},"clone_url":"https://github.com/mbanyamer/CVE-2026-26030-Microsoft-Semantic-Kernel-1.39.4-RCE.git","has_code":false,"age_days":121}]},{"cve_id":"CVE-2026-26114","repositories":[{"id":1213181609,"name":"cve-2026-26114","full_name":"huynambka/cve-2026-26114","html_url":"https://github.com/huynambka/cve-2026-26114","description":"","stargazers_count":2,"forks_count":0,"language":"C#","updated_at":"2026-06-21T14:17:07Z","pushed_at":"2026-06-21T14:13:28Z","created_at":"2026-04-17T05:56:51Z","topics":[],"owner":{"login":"huynambka","html_url":"https://github.com/huynambka"},"clone_url":"https://github.com/huynambka/cve-2026-26114.git","has_code":true,"age_days":69}]},{"cve_id":"CVE-2026-26118","repositories":[{"id":1184496656,"name":"mcp-attack-detection-sentinel","full_name":"j-dahl7/mcp-attack-detection-sentinel","html_url":"https://github.com/j-dahl7/mcp-attack-detection-sentinel","description":"Sentinel detection lab for MCP attack chains: CVE-2026-26118 SSRF token theft, tool poisoning, cross-server exfiltration, identity post-exploitation. Maps to OWASP Agentic Top 10. 5 analytics rules, 7 hunting queries, workbook. Companion to nineliveszerotrust.com.","stargazers_count":1,"forks_count":1,"language":"PowerShell","updated_at":"2026-03-27T22:05:38Z","pushed_at":"2026-03-17T16:46:39Z","created_at":"2026-03-17T16:37:53Z","topics":[],"owner":{"login":"j-dahl7","html_url":"https://github.com/j-dahl7"},"clone_url":"https://github.com/j-dahl7/mcp-attack-detection-sentinel.git","has_code":true,"age_days":100}]},{"cve_id":"CVE-2026-26128","repositories":[{"id":1230252108,"name":"CVE-2026-26128","full_name":"jarnovandenbrink/CVE-2026-26128","html_url":"https://github.com/jarnovandenbrink/CVE-2026-26128","description":"PoC for exploiting CVE-2026-26128.","stargazers_count":32,"forks_count":2,"language":"Python","updated_at":"2026-06-25T03:51:28Z","pushed_at":"2026-05-06T06:49:26Z","created_at":"2026-05-05T20:27:35Z","topics":[],"owner":{"login":"jarnovandenbrink","html_url":"https://github.com/jarnovandenbrink"},"clone_url":"https://github.com/jarnovandenbrink/CVE-2026-26128.git","has_code":true,"age_days":50}]},{"cve_id":"CVE-2026-26179","repositories":[{"id":1260061257,"name":"CVE-2026-26179","full_name":"nikosecurity/CVE-2026-26179","html_url":"https://github.com/nikosecurity/CVE-2026-26179","description":"PoC for CVE-2026-26179 / ZDI-26-276, my very own Secure Kernel bug","stargazers_count":0,"forks_count":1,"language":"C","updated_at":"2026-06-05T06:08:59Z","pushed_at":"2026-06-05T05:57:48Z","created_at":"2026-06-05T05:53:01Z","topics":[],"owner":{"login":"nikosecurity","html_url":"https://github.com/nikosecurity"},"clone_url":"https://github.com/nikosecurity/CVE-2026-26179.git","has_code":true,"age_days":20}]},{"cve_id":"CVE-2026-26198","repositories":[{"id":1191655539,"name":"CVE-2026-26198-analysis","full_name":"sergicortesabadia/CVE-2026-26198-analysis","html_url":"https://github.com/sergicortesabadia/CVE-2026-26198-analysis","description":"Deep dive into a critical SQL injection in Python's Ormar ORM — reproduction, fix, and tests","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-25T13:37:30Z","pushed_at":"2026-03-25T13:37:26Z","created_at":"2026-03-25T13:09:40Z","topics":[],"owner":{"login":"sergicortesabadia","html_url":"https://github.com/sergicortesabadia"},"clone_url":"https://github.com/sergicortesabadia/CVE-2026-26198-analysis.git","has_code":true,"age_days":92},{"id":1214857030,"name":"CVE-2026-26198","full_name":"NetVanguard-cmd/CVE-2026-26198","html_url":"https://github.com/NetVanguard-cmd/CVE-2026-26198","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-19T06:21:48Z","pushed_at":"2026-04-19T06:21:45Z","created_at":"2026-04-19T06:21:44Z","topics":[],"owner":{"login":"NetVanguard-cmd","html_url":"https://github.com/NetVanguard-cmd"},"clone_url":"https://github.com/NetVanguard-cmd/CVE-2026-26198.git","has_code":false,"age_days":67}]},{"cve_id":"CVE-2026-26215","repositories":[{"id":1155916109,"name":"-CVE-2026-26215-manga-image-translator-RCE","full_name":"mbanyamer/-CVE-2026-26215-manga-image-translator-RCE","html_url":"https://github.com/mbanyamer/-CVE-2026-26215-manga-image-translator-RCE","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-02-12T03:40:53Z","pushed_at":"2026-02-12T03:40:50Z","created_at":"2026-02-12T03:39:42Z","topics":[],"owner":{"login":"mbanyamer","html_url":"https://github.com/mbanyamer"},"clone_url":"https://github.com/mbanyamer/-CVE-2026-26215-manga-image-translator-RCE.git","has_code":false,"age_days":133}]},{"cve_id":"CVE-2026-26221","repositories":[{"id":1160677858,"name":"CVE-2026-26221-Hyland-OnBase-Timer-Service-Unauthenticated-RCE","full_name":"mbanyamer/CVE-2026-26221-Hyland-OnBase-Timer-Service-Unauthenticated-RCE","html_url":"https://github.com/mbanyamer/CVE-2026-26221-Hyland-OnBase-Timer-Service-Unauthenticated-RCE","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-02-18T08:38:52Z","pushed_at":"2026-02-18T08:38:48Z","created_at":"2026-02-18T08:36:53Z","topics":[],"owner":{"login":"mbanyamer","html_url":"https://github.com/mbanyamer"},"clone_url":"https://github.com/mbanyamer/CVE-2026-26221-Hyland-OnBase-Timer-Service-Unauthenticated-RCE.git","has_code":true,"age_days":127}]},{"cve_id":"CVE-2026-26235","repositories":[{"id":1156082295,"name":"CVE-2026-26235-JUNG-Smart-Visu-Server-Unauthenticated-Reboot-Shutdown","full_name":"mbanyamer/CVE-2026-26235-JUNG-Smart-Visu-Server-Unauthenticated-Reboot-Shutdown","html_url":"https://github.com/mbanyamer/CVE-2026-26235-JUNG-Smart-Visu-Server-Unauthenticated-Reboot-Shutdown","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-02-12T08:40:38Z","pushed_at":"2026-02-12T08:40:34Z","created_at":"2026-02-12T08:38:41Z","topics":[],"owner":{"login":"mbanyamer","html_url":"https://github.com/mbanyamer"},"clone_url":"https://github.com/mbanyamer/CVE-2026-26235-JUNG-Smart-Visu-Server-Unauthenticated-Reboot-Shutdown.git","has_code":true,"age_days":133}]},{"cve_id":"CVE-2026-26268","repositories":[{"id":1229974205,"name":"agentic-ioc-scanner","full_name":"dhawaldesai/agentic-ioc-scanner","html_url":"https://github.com/dhawaldesai/agentic-ioc-scanner","description":"IOC scanner for agentic AI coding tools — detects Mini Shai-Hulud, Gemini CLI RCE, Cursor CVE-2026-26268, and DPRK PromptMink.","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-20T11:17:42Z","pushed_at":"2026-05-20T11:17:39Z","created_at":"2026-05-05T14:57:30Z","topics":[],"owner":{"login":"dhawaldesai","html_url":"https://github.com/dhawaldesai"},"clone_url":"https://github.com/dhawaldesai/agentic-ioc-scanner.git","has_code":true,"age_days":51}]},{"cve_id":"CVE-2026-2631","repositories":[{"id":1187050172,"name":"CVE-2026-2631","full_name":"Nxploited/CVE-2026-2631","html_url":"https://github.com/Nxploited/CVE-2026-2631","description":"Datalogics Ecommerce Delivery – Datalogics \u003c 2.6.60 - Unauthenticated Privilege Escalation","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-06-22T23:03:20Z","pushed_at":"2026-03-20T09:35:32Z","created_at":"2026-03-20T09:32:15Z","topics":[],"owner":{"login":"Nxploited","html_url":"https://github.com/Nxploited"},"clone_url":"https://github.com/Nxploited/CVE-2026-2631.git","has_code":true,"age_days":97},{"id":1213839664,"name":"Mass-Scanner-CVE-2026-2631","full_name":"AnggaTechI/Mass-Scanner-CVE-2026-2631","html_url":"https://github.com/AnggaTechI/Mass-Scanner-CVE-2026-2631","description":"Async mass-checker for authorized internal testing of CVE-2026-2631 exposure.","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-04-17T21:14:45Z","pushed_at":"2026-04-17T20:24:30Z","created_at":"2026-04-17T20:20:58Z","topics":[],"owner":{"login":"AnggaTechI","html_url":"https://github.com/AnggaTechI"},"clone_url":"https://github.com/AnggaTechI/Mass-Scanner-CVE-2026-2631.git","has_code":true,"age_days":68}]},{"cve_id":"CVE-2026-26331","repositories":[{"id":1164069736,"name":"CVE-2026-26331","full_name":"dxlerYT/CVE-2026-26331","html_url":"https://github.com/dxlerYT/CVE-2026-26331","description":"Proof of Concept for an arbitrary command injection vulnerability in yt-dlp’s --netrc-cmd option (GHSA-g3gw-q23r-pgqm / CVE-2026-26331). Demonstrates shell command execution via maliciously crafted URLs in affected versions (≥ 2023.06.21, \u003c 2026.02.21).","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-02-22T15:51:14Z","pushed_at":"2026-02-22T15:45:28Z","created_at":"2026-02-22T15:42:57Z","topics":[],"owner":{"login":"dxlerYT","html_url":"https://github.com/dxlerYT"},"clone_url":"https://github.com/dxlerYT/CVE-2026-26331.git","has_code":false,"age_days":123}]},{"cve_id":"CVE-2026-26335","repositories":[{"id":1157720826,"name":"CVE-2026-26335-Calero-VeraSMART-RCE","full_name":"mbanyamer/CVE-2026-26335-Calero-VeraSMART-RCE","html_url":"https://github.com/mbanyamer/CVE-2026-26335-Calero-VeraSMART-RCE","description":"","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-02-14T07:35:29Z","pushed_at":"2026-02-14T07:35:26Z","created_at":"2026-02-14T07:25:30Z","topics":[],"owner":{"login":"mbanyamer","html_url":"https://github.com/mbanyamer"},"clone_url":"https://github.com/mbanyamer/CVE-2026-26335-Calero-VeraSMART-RCE.git","has_code":true,"age_days":131}]},{"cve_id":"CVE-2026-26336","repositories":[{"id":1231298776,"name":"CVE-2026-26336-PoC","full_name":"CEAarab/CVE-2026-26336-PoC","html_url":"https://github.com/CEAarab/CVE-2026-26336-PoC","description":"","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-05-06T20:40:41Z","pushed_at":"2026-05-06T20:40:36Z","created_at":"2026-05-06T20:36:44Z","topics":[],"owner":{"login":"CEAarab","html_url":"https://github.com/CEAarab"},"clone_url":"https://github.com/CEAarab/CVE-2026-26336-PoC.git","has_code":true,"age_days":49}]},{"cve_id":"CVE-2026-2636","repositories":[{"id":1167790479,"name":"CVE-2026-2636_PoC","full_name":"oxfemale/CVE-2026-2636_PoC","html_url":"https://github.com/oxfemale/CVE-2026-2636_PoC","description":"**CVE-2026-2636** is a vulnerability in the Windows Common Log File System (CLFS) driver (`CLFS.sys`). An unprivileged user can trigger an unrecoverable system state by calling the `ReadFile` API on a handle opened via `CreateLogFile`. This results in a Blue Screen of Death (BSoD), leading to a denial of service (DoS)","stargazers_count":13,"forks_count":3,"language":"C++","updated_at":"2026-06-23T09:21:15Z","pushed_at":"2026-02-26T17:41:12Z","created_at":"2026-02-26T17:28:02Z","topics":[],"owner":{"login":"oxfemale","html_url":"https://github.com/oxfemale"},"clone_url":"https://github.com/oxfemale/CVE-2026-2636_PoC.git","has_code":true,"age_days":119},{"id":1173468464,"name":"CVE-2026-2636","full_name":"uname1able/CVE-2026-2636","html_url":"https://github.com/uname1able/CVE-2026-2636","description":"","stargazers_count":0,"forks_count":0,"language":"C++","updated_at":"2026-03-19T03:34:10Z","pushed_at":"2026-03-19T03:34:06Z","created_at":"2026-03-05T11:56:54Z","topics":[],"owner":{"login":"uname1able","html_url":"https://github.com/uname1able"},"clone_url":"https://github.com/uname1able/CVE-2026-2636.git","has_code":true,"age_days":112}]},{"cve_id":"CVE-2026-26399","repositories":[{"id":1215192633,"name":"CVE-2026-26399-Disclosure","full_name":"Acen28/CVE-2026-26399-Disclosure","html_url":"https://github.com/Acen28/CVE-2026-26399-Disclosure","description":"","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-04-19T16:00:39Z","pushed_at":"2026-04-19T15:50:33Z","created_at":"2026-04-19T15:49:34Z","topics":[],"owner":{"login":"Acen28","html_url":"https://github.com/Acen28"},"clone_url":"https://github.com/Acen28/CVE-2026-26399-Disclosure.git","has_code":false,"age_days":67}]},{"cve_id":"CVE-2026-26416","repositories":[{"id":1172051057,"name":"CVE-2026-26416","full_name":"aksalsalimi/CVE-2026-26416","html_url":"https://github.com/aksalsalimi/CVE-2026-26416","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-05T18:14:29Z","pushed_at":"2026-03-05T18:13:38Z","created_at":"2026-03-03T22:28:49Z","topics":[],"owner":{"login":"aksalsalimi","html_url":"https://github.com/aksalsalimi"},"clone_url":"https://github.com/aksalsalimi/CVE-2026-26416.git","has_code":false,"age_days":113}]},{"cve_id":"CVE-2026-26417","repositories":[{"id":1172053220,"name":"CVE-2026-26417","full_name":"aksalsalimi/CVE-2026-26417","html_url":"https://github.com/aksalsalimi/CVE-2026-26417","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-05T18:14:09Z","pushed_at":"2026-03-05T18:14:05Z","created_at":"2026-03-03T22:32:46Z","topics":[],"owner":{"login":"aksalsalimi","html_url":"https://github.com/aksalsalimi"},"clone_url":"https://github.com/aksalsalimi/CVE-2026-26417.git","has_code":false,"age_days":113}]},{"cve_id":"CVE-2026-26418","repositories":[{"id":1172054067,"name":"CVE-2026-26418","full_name":"aksalsalimi/CVE-2026-26418","html_url":"https://github.com/aksalsalimi/CVE-2026-26418","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-05T18:14:53Z","pushed_at":"2026-03-05T18:14:32Z","created_at":"2026-03-03T22:34:17Z","topics":[],"owner":{"login":"aksalsalimi","html_url":"https://github.com/aksalsalimi"},"clone_url":"https://github.com/aksalsalimi/CVE-2026-26418.git","has_code":false,"age_days":113}]},{"cve_id":"CVE-2026-26555","repositories":[{"id":1259614291,"name":"axios-supply-chain-cve-2026-26555","full_name":"horrister/axios-supply-chain-cve-2026-26555","html_url":"https://github.com/horrister/axios-supply-chain-cve-2026-26555","description":"In-depth analysis of cve-2026-26555 ","stargazers_count":1,"forks_count":0,"language":"Shell","updated_at":"2026-06-06T19:15:22Z","pushed_at":"2026-06-06T19:15:19Z","created_at":"2026-06-04T17:24:23Z","topics":[],"owner":{"login":"horrister","html_url":"https://github.com/horrister"},"clone_url":"https://github.com/horrister/axios-supply-chain-cve-2026-26555.git","has_code":true,"age_days":21}]},{"cve_id":"CVE-2026-2670","repositories":[{"id":1162237521,"name":"exploit-CVE-2026-2670","full_name":"ali-py3/exploit-CVE-2026-2670","html_url":"https://github.com/ali-py3/exploit-CVE-2026-2670","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-02-20T12:48:54Z","pushed_at":"2026-02-20T03:04:18Z","created_at":"2026-02-20T02:43:04Z","topics":[],"owner":{"login":"ali-py3","html_url":"https://github.com/ali-py3"},"clone_url":"https://github.com/ali-py3/exploit-CVE-2026-2670.git","has_code":true,"age_days":125}]},{"cve_id":"CVE-2026-26720","repositories":[{"id":1130776076,"name":"CVE-2026-26720-Twenty-RCE","full_name":"dillonkirsch/CVE-2026-26720-Twenty-RCE","html_url":"https://github.com/dillonkirsch/CVE-2026-26720-Twenty-RCE","description":"","stargazers_count":0,"forks_count":0,"language":"TypeScript","updated_at":"2026-02-27T22:07:49Z","pushed_at":"2026-01-09T02:06:48Z","created_at":"2026-01-09T02:02:33Z","topics":[],"owner":{"login":"dillonkirsch","html_url":"https://github.com/dillonkirsch"},"clone_url":"https://github.com/dillonkirsch/CVE-2026-26720-Twenty-RCE.git","has_code":true,"age_days":167}]},{"cve_id":"CVE-2026-26744","repositories":[{"id":1161877388,"name":"CVE-2026-26744","full_name":"lorenzobruno7/CVE-2026-26744","html_url":"https://github.com/lorenzobruno7/CVE-2026-26744","description":"CVE-2026-26744","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-02-19T16:16:14Z","pushed_at":"2026-02-19T16:16:10Z","created_at":"2026-02-19T16:11:44Z","topics":[],"owner":{"login":"lorenzobruno7","html_url":"https://github.com/lorenzobruno7"},"clone_url":"https://github.com/lorenzobruno7/CVE-2026-26744.git","has_code":false,"age_days":126}]},{"cve_id":"CVE-2026-26746","repositories":[{"id":1162456944,"name":"CVE-2026-26746","full_name":"hungnqdz/CVE-2026-26746","html_url":"https://github.com/hungnqdz/CVE-2026-26746","description":"","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-04-22T12:12:10Z","pushed_at":"2026-04-22T12:12:07Z","created_at":"2026-02-20T09:35:49Z","topics":[],"owner":{"login":"hungnqdz","html_url":"https://github.com/hungnqdz"},"clone_url":"https://github.com/hungnqdz/CVE-2026-26746.git","has_code":false,"age_days":125}]},{"cve_id":"CVE-2026-26801","repositories":[{"id":1185167253,"name":"CVE-2026-26801-pdfmake-ssrf","full_name":"mariopepe/CVE-2026-26801-pdfmake-ssrf","html_url":"https://github.com/mariopepe/CVE-2026-26801-pdfmake-ssrf","description":"PoC for CVE-2026-26801: SSRF in pdfmake URLResolver.js (\u003e= 0.3.0-beta.2, \u003c= 0.3.5)","stargazers_count":0,"forks_count":0,"language":"JavaScript","updated_at":"2026-03-18T10:21:28Z","pushed_at":"2026-03-18T10:21:25Z","created_at":"2026-03-18T09:59:12Z","topics":[],"owner":{"login":"mariopepe","html_url":"https://github.com/mariopepe"},"clone_url":"https://github.com/mariopepe/CVE-2026-26801-pdfmake-ssrf.git","has_code":true,"age_days":99}]},{"cve_id":"CVE-2026-26830","repositories":[{"id":1190786248,"name":"npm-cve-2026-26830-26833","full_name":"zebbernCVE/npm-cve-2026-26830-26833","html_url":"https://github.com/zebbernCVE/npm-cve-2026-26830-26833","description":"Directory page for CVE-2026-26830 through CVE-2026-26833 advisories","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-03-25T23:24:14Z","pushed_at":"2026-03-24T16:39:14Z","created_at":"2026-03-24T16:06:40Z","topics":[],"owner":{"login":"zebbernCVE","html_url":"https://github.com/zebbernCVE"},"clone_url":"https://github.com/zebbernCVE/npm-cve-2026-26830-26833.git","has_code":false,"age_days":93},{"id":1190794055,"name":"CVE-2026-26830","full_name":"zebbernCVE/CVE-2026-26830","html_url":"https://github.com/zebbernCVE/CVE-2026-26830","description":"Advisory for pdf-image ⌯⌲ 10 000 weekly downloads","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-10T15:28:00Z","pushed_at":"2026-03-24T16:39:16Z","created_at":"2026-03-24T16:15:10Z","topics":["critical","cve-2026-26830","cwe-78"],"owner":{"login":"zebbernCVE","html_url":"https://github.com/zebbernCVE"},"clone_url":"https://github.com/zebbernCVE/CVE-2026-26830.git","has_code":false,"age_days":93}]},{"cve_id":"CVE-2026-26831","repositories":[{"id":1190794132,"name":"CVE-2026-26831","full_name":"zebbernCVE/CVE-2026-26831","html_url":"https://github.com/zebbernCVE/CVE-2026-26831","description":"Advisory for textract ⌯⌲ 15 000 weekly downloads","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-10T15:26:58Z","pushed_at":"2026-03-24T16:39:18Z","created_at":"2026-03-24T16:15:15Z","topics":["critical","cve-2026-26831","cwe-78"],"owner":{"login":"zebbernCVE","html_url":"https://github.com/zebbernCVE"},"clone_url":"https://github.com/zebbernCVE/CVE-2026-26831.git","has_code":false,"age_days":93}]},{"cve_id":"CVE-2026-26832","repositories":[{"id":1190794205,"name":"CVE-2026-26832","full_name":"zebbernCVE/CVE-2026-26832","html_url":"https://github.com/zebbernCVE/CVE-2026-26832","description":"Advisory for node-tesseract-ocr  ⌯⌲ 50 000 weekly downloads","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-10T15:25:57Z","pushed_at":"2026-03-24T16:39:22Z","created_at":"2026-03-24T16:15:20Z","topics":["critical","cve-2026-26832","cwe-78"],"owner":{"login":"zebbernCVE","html_url":"https://github.com/zebbernCVE"},"clone_url":"https://github.com/zebbernCVE/CVE-2026-26832.git","has_code":false,"age_days":93}]},{"cve_id":"CVE-2026-26833","repositories":[{"id":1190786248,"name":"npm-cve-2026-26830-26833","full_name":"zebbernCVE/npm-cve-2026-26830-26833","html_url":"https://github.com/zebbernCVE/npm-cve-2026-26830-26833","description":"Directory page for CVE-2026-26830 through CVE-2026-26833 advisories","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-03-25T23:24:14Z","pushed_at":"2026-03-24T16:39:14Z","created_at":"2026-03-24T16:06:40Z","topics":[],"owner":{"login":"zebbernCVE","html_url":"https://github.com/zebbernCVE"},"clone_url":"https://github.com/zebbernCVE/npm-cve-2026-26830-26833.git","has_code":false,"age_days":93},{"id":1190794462,"name":"CVE-2026-26833","full_name":"zebbernCVE/CVE-2026-26833","html_url":"https://github.com/zebbernCVE/CVE-2026-26833","description":"Advisory for thumbler","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-10T15:23:55Z","pushed_at":"2026-03-24T16:39:25Z","created_at":"2026-03-24T16:15:38Z","topics":["critical","cve-2026-26833","cwe-78"],"owner":{"login":"zebbernCVE","html_url":"https://github.com/zebbernCVE"},"clone_url":"https://github.com/zebbernCVE/CVE-2026-26833.git","has_code":false,"age_days":93}]},{"cve_id":"CVE-2026-26897","repositories":[{"id":1258603079,"name":"CVE-2026-26897-EcoOnline-DeepLink","full_name":"iwallplace/CVE-2026-26897-EcoOnline-DeepLink","html_url":"https://github.com/iwallplace/CVE-2026-26897-EcoOnline-DeepLink","description":"Public advisory \u0026 PoC for CVE-2026-26897 — Deep Link Bypass in EcoOnline EHS Android (com.airsweb.v10), fixed in 0.2.500","stargazers_count":0,"forks_count":0,"language":"HTML","updated_at":"2026-06-03T18:58:49Z","pushed_at":"2026-06-03T18:58:44Z","created_at":"2026-06-03T18:31:31Z","topics":[],"owner":{"login":"iwallplace","html_url":"https://github.com/iwallplace"},"clone_url":"https://github.com/iwallplace/CVE-2026-26897-EcoOnline-DeepLink.git","has_code":true,"age_days":22}]},{"cve_id":"CVE-2026-26898","repositories":[{"id":1135183219,"name":"CVE-2026-26898-Xiaomi-SSRF-HostHeaderInjection","full_name":"iwallplace/CVE-2026-26898-Xiaomi-SSRF-HostHeaderInjection","html_url":"https://github.com/iwallplace/CVE-2026-26898-Xiaomi-SSRF-HostHeaderInjection","description":"Unauthenticated SSRF in Xiaomi Mi Router 4A Gigabit Edition (firmware 3.0.24) via Host Header Injection — CVE-2026-26898","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-06-03T19:48:08Z","pushed_at":"2026-06-03T19:48:04Z","created_at":"2026-01-15T18:51:42Z","topics":[],"owner":{"login":"iwallplace","html_url":"https://github.com/iwallplace"},"clone_url":"https://github.com/iwallplace/CVE-2026-26898-Xiaomi-SSRF-HostHeaderInjection.git","has_code":true,"age_days":161}]},{"cve_id":"CVE-2026-26903","repositories":[{"id":1217501461,"name":"CVE-2026-26903-PoC","full_name":"John-Jung/CVE-2026-26903-PoC","html_url":"https://github.com/John-Jung/CVE-2026-26903-PoC","description":"A PoC for demonstrating CVE-2026-26903","stargazers_count":0,"forks_count":0,"language":"HTML","updated_at":"2026-04-22T01:21:53Z","pushed_at":"2026-04-22T01:11:37Z","created_at":"2026-04-22T00:28:41Z","topics":[],"owner":{"login":"John-Jung","html_url":"https://github.com/John-Jung"},"clone_url":"https://github.com/John-Jung/CVE-2026-26903-PoC.git","has_code":true,"age_days":64}]},{"cve_id":"CVE-2026-26980","repositories":[{"id":1213795823,"name":"ghost-cve-2026-26980","full_name":"dinosn/ghost-cve-2026-26980","html_url":"https://github.com/dinosn/ghost-cve-2026-26980","description":"CVE-2026-26980 — Ghost CMS Content API SQL Injection Lab (unauthenticated blind SQLi via slug filter ordering)","stargazers_count":15,"forks_count":2,"language":"Python","updated_at":"2026-06-22T15:26:44Z","pushed_at":"2026-04-18T02:55:16Z","created_at":"2026-04-17T19:15:20Z","topics":[],"owner":{"login":"dinosn","html_url":"https://github.com/dinosn"},"clone_url":"https://github.com/dinosn/ghost-cve-2026-26980.git","has_code":true,"age_days":69},{"id":1195618864,"name":"CVE-2026-26980","full_name":"vognik/CVE-2026-26980","html_url":"https://github.com/vognik/CVE-2026-26980","description":"💣 Exploit for CVE-2026-26980 — 👻 Ghost CMS Unauthenticated SQLi via Content API","stargazers_count":9,"forks_count":2,"language":"Python","updated_at":"2026-05-27T08:09:38Z","pushed_at":"2026-04-19T15:14:58Z","created_at":"2026-03-29T22:00:18Z","topics":[],"owner":{"login":"vognik","html_url":"https://github.com/vognik"},"clone_url":"https://github.com/vognik/CVE-2026-26980.git","has_code":true,"age_days":87},{"id":1251063354,"name":"CVE-2026-26980","full_name":"EQSTLab/CVE-2026-26980","html_url":"https://github.com/EQSTLab/CVE-2026-26980","description":"Ghost Content API SQL Injection","stargazers_count":3,"forks_count":1,"language":"Python","updated_at":"2026-05-28T09:54:36Z","pushed_at":"2026-05-27T14:06:29Z","created_at":"2026-05-27T07:59:41Z","topics":[],"owner":{"login":"EQSTLab","html_url":"https://github.com/EQSTLab"},"clone_url":"https://github.com/EQSTLab/CVE-2026-26980.git","has_code":true,"age_days":29},{"id":1244342979,"name":"Ghost-CMS-Code-Injection-Audit-CVE-2026-26980","full_name":"Kulik-Labs-Development/Ghost-CMS-Code-Injection-Audit-CVE-2026-26980","html_url":"https://github.com/Kulik-Labs-Development/Ghost-CMS-Code-Injection-Audit-CVE-2026-26980","description":"Outdated Ghost CMS websites that have fallen become compromised from CVE-2026-26980 can suffer from spam code injection to pages. Use this to mass clear and edit code injection fields. ","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-20T07:28:20Z","pushed_at":"2026-05-20T07:27:10Z","created_at":"2026-05-20T07:16:41Z","topics":[],"owner":{"login":"Kulik-Labs-Development","html_url":"https://github.com/Kulik-Labs-Development"},"clone_url":"https://github.com/Kulik-Labs-Development/Ghost-CMS-Code-Injection-Audit-CVE-2026-26980.git","has_code":true,"age_days":36}]},{"cve_id":"CVE-2026-26988","repositories":[{"id":1162548398,"name":"CVE-2026-26988-LibreNMS-SQLi","full_name":"mbanyamer/CVE-2026-26988-LibreNMS-SQLi","html_url":"https://github.com/mbanyamer/CVE-2026-26988-LibreNMS-SQLi","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-02-20T11:57:55Z","pushed_at":"2026-02-20T11:57:52Z","created_at":"2026-02-20T11:55:53Z","topics":[],"owner":{"login":"mbanyamer","html_url":"https://github.com/mbanyamer"},"clone_url":"https://github.com/mbanyamer/CVE-2026-26988-LibreNMS-SQLi.git","has_code":true,"age_days":125}]},{"cve_id":"CVE-2026-2699","repositories":[{"id":1191973011,"name":"watchTowr-vs-Progress-ShareFile-CVE-2026-2699","full_name":"watchtowrlabs/watchTowr-vs-Progress-ShareFile-CVE-2026-2699","html_url":"https://github.com/watchtowrlabs/watchTowr-vs-Progress-ShareFile-CVE-2026-2699","description":"","stargazers_count":3,"forks_count":0,"language":"Python","updated_at":"2026-04-19T15:08:52Z","pushed_at":"2026-03-25T19:11:17Z","created_at":"2026-03-25T19:09:25Z","topics":[],"owner":{"login":"watchtowrlabs","html_url":"https://github.com/watchtowrlabs"},"clone_url":"https://github.com/watchtowrlabs/watchTowr-vs-Progress-ShareFile-CVE-2026-2699.git","has_code":true,"age_days":92},{"id":1204256019,"name":"CVE-2026-2699","full_name":"0xBlackash/CVE-2026-2699","html_url":"https://github.com/0xBlackash/CVE-2026-2699","description":"CVE-2026-2699","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-09T07:36:21Z","pushed_at":"2026-04-09T07:36:18Z","created_at":"2026-04-07T20:55:23Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-2699.git","has_code":false,"age_days":78}]},{"cve_id":"CVE-2026-27145","repositories":[{"id":1257785371,"name":"CVE-2026-27145","full_name":"HORKimhab/CVE-2026-27145","html_url":"https://github.com/HORKimhab/CVE-2026-27145","description":"CVE-2026-27145 - Draft","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-03T02:21:50Z","pushed_at":"2026-06-03T02:21:46Z","created_at":"2026-06-03T02:21:43Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-27145.git","has_code":false,"age_days":22}]},{"cve_id":"CVE-2026-27174","repositories":[{"id":1167530565,"name":"majordomo-CVE-2026-27174-poc","full_name":"MaxMnMl/majordomo-CVE-2026-27174-poc","html_url":"https://github.com/MaxMnMl/majordomo-CVE-2026-27174-poc","description":"CVE-2026-27174 - An unauthenticated remote code execution via the admin panel's PHP console feature","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-04T19:15:23Z","pushed_at":"2026-02-26T13:17:36Z","created_at":"2026-02-26T11:51:44Z","topics":[],"owner":{"login":"MaxMnMl","html_url":"https://github.com/MaxMnMl"},"clone_url":"https://github.com/MaxMnMl/majordomo-CVE-2026-27174-poc.git","has_code":true,"age_days":119}]},{"cve_id":"CVE-2026-27179","repositories":[{"id":1170530280,"name":"MajorDoMo-CVE-2026-27179","full_name":"p3Nt3st3r-sTAr/MajorDoMo-CVE-2026-27179","html_url":"https://github.com/p3Nt3st3r-sTAr/MajorDoMo-CVE-2026-27179","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-23T09:59:39Z","pushed_at":"2026-03-23T09:59:36Z","created_at":"2026-03-02T08:20:08Z","topics":[],"owner":{"login":"p3Nt3st3r-sTAr","html_url":"https://github.com/p3Nt3st3r-sTAr"},"clone_url":"https://github.com/p3Nt3st3r-sTAr/MajorDoMo-CVE-2026-27179.git","has_code":true,"age_days":115}]},{"cve_id":"CVE-2026-27180","repositories":[{"id":1161876658,"name":"CVE-2026-27180-MajorDoMo-unauthenticated-RCE","full_name":"mbanyamer/CVE-2026-27180-MajorDoMo-unauthenticated-RCE","html_url":"https://github.com/mbanyamer/CVE-2026-27180-MajorDoMo-unauthenticated-RCE","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-02-19T21:04:21Z","pushed_at":"2026-02-19T21:04:18Z","created_at":"2026-02-19T16:10:49Z","topics":[],"owner":{"login":"mbanyamer","html_url":"https://github.com/mbanyamer"},"clone_url":"https://github.com/mbanyamer/CVE-2026-27180-MajorDoMo-unauthenticated-RCE.git","has_code":true,"age_days":126}]},{"cve_id":"CVE-2026-27199","repositories":[{"id":1162449379,"name":"CVE-2026-27199-werkzeug-safe-join-bypass-PoC","full_name":"alimezar/CVE-2026-27199-werkzeug-safe-join-bypass-PoC","html_url":"https://github.com/alimezar/CVE-2026-27199-werkzeug-safe-join-bypass-PoC","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-02-20T09:35:11Z","pushed_at":"2026-02-20T09:31:43Z","created_at":"2026-02-20T09:24:33Z","topics":[],"owner":{"login":"alimezar","html_url":"https://github.com/alimezar"},"clone_url":"https://github.com/alimezar/CVE-2026-27199-werkzeug-safe-join-bypass-PoC.git","has_code":true,"age_days":125}]},{"cve_id":"CVE-2026-27212","repositories":[{"id":1257093441,"name":"resize-image-before-upload-secure","full_name":"stealth-engine/resize-image-before-upload-secure","html_url":"https://github.com/stealth-engine/resize-image-before-upload-secure","description":"Security-hardened fork of the WordPress plugin \"Resize Image Before Upload\" — removes all ads/promotions and the bundled Swiper 8.2.4 library (CVE-2026-27212, CRITICAL). Core client-side image-resize feature unchanged. GPLv3.","stargazers_count":1,"forks_count":0,"language":"PHP","updated_at":"2026-06-05T08:39:28Z","pushed_at":"2026-06-02T17:23:24Z","created_at":"2026-06-02T11:05:13Z","topics":["cve","fork","gplv3","image-resize","security","security-hardening","wordpress","wordpress-plugin"],"owner":{"login":"stealth-engine","html_url":"https://github.com/stealth-engine"},"clone_url":"https://github.com/stealth-engine/resize-image-before-upload-secure.git","has_code":true,"age_days":23}]},{"cve_id":"CVE-2026-27384","repositories":[{"id":1250011088,"name":"CVE-2026-27384","full_name":"xxconi/CVE-2026-27384","html_url":"https://github.com/xxconi/CVE-2026-27384","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-26T09:16:33Z","pushed_at":"2026-05-26T09:16:10Z","created_at":"2026-05-26T08:16:34Z","topics":[],"owner":{"login":"xxconi","html_url":"https://github.com/xxconi"},"clone_url":"https://github.com/xxconi/CVE-2026-27384.git","has_code":true,"age_days":30}]},{"cve_id":"CVE-2026-27470","repositories":[{"id":1163460083,"name":"CVE-2026-27470","full_name":"kocaemre/CVE-2026-27470","html_url":"https://github.com/kocaemre/CVE-2026-27470","description":"ZoneMinder Second-Order SQL Injection PoC — CVE-2026-27470","stargazers_count":6,"forks_count":0,"language":"Python","updated_at":"2026-06-11T08:27:03Z","pushed_at":"2026-02-22T19:58:29Z","created_at":"2026-02-21T17:05:22Z","topics":[],"owner":{"login":"kocaemre","html_url":"https://github.com/kocaemre"},"clone_url":"https://github.com/kocaemre/CVE-2026-27470.git","has_code":true,"age_days":124},{"id":1180998758,"name":"CVE-2026-27470-POC","full_name":"d3vn0mi/CVE-2026-27470-POC","html_url":"https://github.com/d3vn0mi/CVE-2026-27470-POC","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-13T17:59:39Z","pushed_at":"2026-03-13T21:52:43Z","created_at":"2026-03-13T16:31:56Z","topics":[],"owner":{"login":"d3vn0mi","html_url":"https://github.com/d3vn0mi"},"clone_url":"https://github.com/d3vn0mi/CVE-2026-27470-POC.git","has_code":true,"age_days":104}]},{"cve_id":"CVE-2026-27483","repositories":[{"id":1174228220,"name":"cve-2026-27483","full_name":"thewhiteh4t/cve-2026-27483","html_url":"https://github.com/thewhiteh4t/cve-2026-27483","description":"MindsDB Path Traversal to RCE PoC","stargazers_count":5,"forks_count":0,"language":"Python","updated_at":"2026-04-04T16:47:16Z","pushed_at":"2026-03-07T05:04:01Z","created_at":"2026-03-06T07:52:36Z","topics":[],"owner":{"login":"thewhiteh4t","html_url":"https://github.com/thewhiteh4t"},"clone_url":"https://github.com/thewhiteh4t/cve-2026-27483.git","has_code":true,"age_days":111}]},{"cve_id":"CVE-2026-2749","repositories":[{"id":1166040116,"name":"Centreon-Exploits-2026","full_name":"hakaioffsec/Centreon-Exploits-2026","html_url":"https://github.com/hakaioffsec/Centreon-Exploits-2026","description":"Centreon exploits CVE-2026-2749, CVE-2026-2751 and CVE-2026-2750","stargazers_count":9,"forks_count":1,"language":"Python","updated_at":"2026-03-08T16:16:20Z","pushed_at":"2026-03-02T17:54:39Z","created_at":"2026-02-24T20:17:49Z","topics":[],"owner":{"login":"hakaioffsec","html_url":"https://github.com/hakaioffsec"},"clone_url":"https://github.com/hakaioffsec/Centreon-Exploits-2026.git","has_code":true,"age_days":120}]},{"cve_id":"CVE-2026-2750","repositories":[{"id":1166040116,"name":"Centreon-Exploits-2026","full_name":"hakaioffsec/Centreon-Exploits-2026","html_url":"https://github.com/hakaioffsec/Centreon-Exploits-2026","description":"Centreon exploits CVE-2026-2749, CVE-2026-2751 and CVE-2026-2750","stargazers_count":9,"forks_count":1,"language":"Python","updated_at":"2026-03-08T16:16:20Z","pushed_at":"2026-03-02T17:54:39Z","created_at":"2026-02-24T20:17:49Z","topics":[],"owner":{"login":"hakaioffsec","html_url":"https://github.com/hakaioffsec"},"clone_url":"https://github.com/hakaioffsec/Centreon-Exploits-2026.git","has_code":true,"age_days":120}]},{"cve_id":"CVE-2026-27507","repositories":[{"id":1214857203,"name":"CVE-2026-27507","full_name":"NetVanguard-cmd/CVE-2026-27507","html_url":"https://github.com/NetVanguard-cmd/CVE-2026-27507","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-19T06:22:10Z","pushed_at":"2026-04-19T06:22:07Z","created_at":"2026-04-19T06:22:06Z","topics":[],"owner":{"login":"NetVanguard-cmd","html_url":"https://github.com/NetVanguard-cmd"},"clone_url":"https://github.com/NetVanguard-cmd/CVE-2026-27507.git","has_code":false,"age_days":67}]},{"cve_id":"CVE-2026-2751","repositories":[{"id":1166040116,"name":"Centreon-Exploits-2026","full_name":"hakaioffsec/Centreon-Exploits-2026","html_url":"https://github.com/hakaioffsec/Centreon-Exploits-2026","description":"Centreon exploits CVE-2026-2749, CVE-2026-2751 and CVE-2026-2750","stargazers_count":9,"forks_count":1,"language":"Python","updated_at":"2026-03-08T16:16:20Z","pushed_at":"2026-03-02T17:54:39Z","created_at":"2026-02-24T20:17:49Z","topics":[],"owner":{"login":"hakaioffsec","html_url":"https://github.com/hakaioffsec"},"clone_url":"https://github.com/hakaioffsec/Centreon-Exploits-2026.git","has_code":true,"age_days":120}]},{"cve_id":"CVE-2026-27540","repositories":[{"id":1178524927,"name":"CVE-2026-27540-WordPress-Exploit-PoC","full_name":"DeadExpl0it/CVE-2026-27540-WordPress-Exploit-PoC","html_url":"https://github.com/DeadExpl0it/CVE-2026-27540-WordPress-Exploit-PoC","description":"PoC for CVE-2026-27540 - critical unauthenticated arbitrary file upload in WooCommerce Wholesale Lead Capture (WordPress)","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-03-14T00:21:30Z","pushed_at":"2026-03-14T00:21:27Z","created_at":"2026-03-11T05:23:27Z","topics":[],"owner":{"login":"DeadExpl0it","html_url":"https://github.com/DeadExpl0it"},"clone_url":"https://github.com/DeadExpl0it/CVE-2026-27540-WordPress-Exploit-PoC.git","has_code":false,"age_days":106},{"id":1214203447,"name":"CVE-2026-27542-CVE-2026-27540-","full_name":"Nxploited/CVE-2026-27542-CVE-2026-27540-","html_url":"https://github.com/Nxploited/CVE-2026-27542-CVE-2026-27540-","description":"Unauthenticated Privilege | Unauthenticated Arbitrary File Upload","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-04-18T08:56:37Z","pushed_at":"2026-04-18T08:56:33Z","created_at":"2026-04-18T08:51:10Z","topics":[],"owner":{"login":"Nxploited","html_url":"https://github.com/Nxploited"},"clone_url":"https://github.com/Nxploited/CVE-2026-27542-CVE-2026-27540-.git","has_code":true,"age_days":68}]},{"cve_id":"CVE-2026-27541","repositories":[{"id":1186075145,"name":"CVE-2026-27541-Analysis-Lab","full_name":"rootdirective-sec/CVE-2026-27541-Analysis-Lab","html_url":"https://github.com/rootdirective-sec/CVE-2026-27541-Analysis-Lab","description":"","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-03-19T08:59:35Z","pushed_at":"2026-03-19T08:59:31Z","created_at":"2026-03-19T08:38:30Z","topics":[],"owner":{"login":"rootdirective-sec","html_url":"https://github.com/rootdirective-sec"},"clone_url":"https://github.com/rootdirective-sec/CVE-2026-27541-Analysis-Lab.git","has_code":true,"age_days":98}]},{"cve_id":"CVE-2026-27542","repositories":[{"id":1214203447,"name":"CVE-2026-27542-CVE-2026-27540-","full_name":"Nxploited/CVE-2026-27542-CVE-2026-27540-","html_url":"https://github.com/Nxploited/CVE-2026-27542-CVE-2026-27540-","description":"Unauthenticated Privilege | Unauthenticated Arbitrary File Upload","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-04-18T08:56:37Z","pushed_at":"2026-04-18T08:56:33Z","created_at":"2026-04-18T08:51:10Z","topics":[],"owner":{"login":"Nxploited","html_url":"https://github.com/Nxploited"},"clone_url":"https://github.com/Nxploited/CVE-2026-27542-CVE-2026-27540-.git","has_code":true,"age_days":68}]},{"cve_id":"CVE-2026-27574","repositories":[{"id":1163425668,"name":"CVE-2026-27574-OneUptime-RCE","full_name":"mbanyamer/CVE-2026-27574-OneUptime-RCE","html_url":"https://github.com/mbanyamer/CVE-2026-27574-OneUptime-RCE","description":"","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-02-27T16:57:01Z","pushed_at":"2026-02-21T16:07:34Z","created_at":"2026-02-21T16:06:04Z","topics":[],"owner":{"login":"mbanyamer","html_url":"https://github.com/mbanyamer"},"clone_url":"https://github.com/mbanyamer/CVE-2026-27574-OneUptime-RCE.git","has_code":true,"age_days":124}]},{"cve_id":"CVE-2026-27579","repositories":[{"id":1169806761,"name":"CVE-2026-27579-CORS-Misconfiguration-Leading-to-Authenticated-Data-Exposure","full_name":"AdityaBhatt3010/CVE-2026-27579-CORS-Misconfiguration-Leading-to-Authenticated-Data-Exposure","html_url":"https://github.com/AdityaBhatt3010/CVE-2026-27579-CORS-Misconfiguration-Leading-to-Authenticated-Data-Exposure","description":"CVE-2026-27579 - CORS Misconfiguration – Arbitrary Origin with Credentials → Authenticated Cross-Origin Account Data Exposure","stargazers_count":3,"forks_count":0,"language":"JavaScript","updated_at":"2026-05-04T07:51:55Z","pushed_at":"2026-03-01T08:48:41Z","created_at":"2026-03-01T08:41:29Z","topics":["collab","cors","cross-origin-resource-sharing","cve","cybersecurity","exploit"],"owner":{"login":"AdityaBhatt3010","html_url":"https://github.com/AdityaBhatt3010"},"clone_url":"https://github.com/AdityaBhatt3010/CVE-2026-27579-CORS-Misconfiguration-Leading-to-Authenticated-Data-Exposure.git","has_code":true,"age_days":116},{"id":1164235357,"name":"CVE-2026-27579-CollabPlatform-Appwrite-CORS-Misconfiguration","full_name":"mbanyamer/CVE-2026-27579-CollabPlatform-Appwrite-CORS-Misconfiguration","html_url":"https://github.com/mbanyamer/CVE-2026-27579-CollabPlatform-Appwrite-CORS-Misconfiguration","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-02-22T20:47:08Z","pushed_at":"2026-02-22T20:47:04Z","created_at":"2026-02-22T20:46:03Z","topics":[],"owner":{"login":"mbanyamer","html_url":"https://github.com/mbanyamer"},"clone_url":"https://github.com/mbanyamer/CVE-2026-27579-CollabPlatform-Appwrite-CORS-Misconfiguration.git","has_code":true,"age_days":122}]},{"cve_id":"CVE-2026-27597","repositories":[{"id":1214857428,"name":"CVE-2026-27597","full_name":"NetVanguard-cmd/CVE-2026-27597","html_url":"https://github.com/NetVanguard-cmd/CVE-2026-27597","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-19T06:22:45Z","pushed_at":"2026-04-19T06:22:41Z","created_at":"2026-04-19T06:22:33Z","topics":[],"owner":{"login":"NetVanguard-cmd","html_url":"https://github.com/NetVanguard-cmd"},"clone_url":"https://github.com/NetVanguard-cmd/CVE-2026-27597.git","has_code":false,"age_days":67}]},{"cve_id":"CVE-2026-27607","repositories":[{"id":1165549663,"name":"CVE-2026-27607","full_name":"nikeee/CVE-2026-27607","html_url":"https://github.com/nikeee/CVE-2026-27607","description":"Missing post-policy validation in RustFS","stargazers_count":1,"forks_count":0,"language":"JavaScript","updated_at":"2026-04-06T18:47:49Z","pushed_at":"2026-02-24T09:53:03Z","created_at":"2026-02-24T09:34:26Z","topics":["cve"],"owner":{"login":"nikeee","html_url":"https://github.com/nikeee"},"clone_url":"https://github.com/nikeee/CVE-2026-27607.git","has_code":true,"age_days":121}]},{"cve_id":"CVE-2026-27621","repositories":[{"id":1208065684,"name":"CVE-2026-27621","full_name":"lukasz-rybak/CVE-2026-27621","html_url":"https://github.com/lukasz-rybak/CVE-2026-27621","description":"CVE-2026-27621 - TypiCMS Core has Stored Cross-Site Scripting (XSS) via SVG File Upload","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-11T19:22:47Z","pushed_at":"2026-04-11T19:22:42Z","created_at":"2026-04-11T19:15:23Z","topics":[],"owner":{"login":"lukasz-rybak","html_url":"https://github.com/lukasz-rybak"},"clone_url":"https://github.com/lukasz-rybak/CVE-2026-27621.git","has_code":false,"age_days":75}]},{"cve_id":"CVE-2026-2763","repositories":[{"id":1172905607,"name":"CVE-2026-2763-POC","full_name":"ppwwiinn/CVE-2026-2763-POC","html_url":"https://github.com/ppwwiinn/CVE-2026-2763-POC","description":"","stargazers_count":2,"forks_count":0,"language":"JavaScript","updated_at":"2026-03-07T15:15:56Z","pushed_at":"2026-03-04T22:32:55Z","created_at":"2026-03-04T20:13:49Z","topics":[],"owner":{"login":"ppwwiinn","html_url":"https://github.com/ppwwiinn"},"clone_url":"https://github.com/ppwwiinn/CVE-2026-2763-POC.git","has_code":true,"age_days":112}]},{"cve_id":"CVE-2026-27636","repositories":[{"id":1172191469,"name":"CVE-2026-27636","full_name":"rav1010/CVE-2026-27636","html_url":"https://github.com/rav1010/CVE-2026-27636","description":"Freescout-passive-scanner","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-03-12T10:57:26Z","pushed_at":"2026-03-04T03:17:43Z","created_at":"2026-03-04T03:12:39Z","topics":[],"owner":{"login":"rav1010","html_url":"https://github.com/rav1010"},"clone_url":"https://github.com/rav1010/CVE-2026-27636.git","has_code":true,"age_days":113}]},{"cve_id":"CVE-2026-27639","repositories":[{"id":1165064827,"name":"CVE-2026-27639-Mercator-XSS","full_name":"hadhub/CVE-2026-27639-Mercator-XSS","html_url":"https://github.com/hadhub/CVE-2026-27639-Mercator-XSS","description":"","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-03-12T09:48:39Z","pushed_at":"2026-02-25T19:55:45Z","created_at":"2026-02-23T19:37:36Z","topics":[],"owner":{"login":"hadhub","html_url":"https://github.com/hadhub"},"clone_url":"https://github.com/hadhub/CVE-2026-27639-Mercator-XSS.git","has_code":true,"age_days":122}]},{"cve_id":"CVE-2026-27654","repositories":[{"id":1203065092,"name":"CVE-2026-27654","full_name":"JohannesLks/CVE-2026-27654","html_url":"https://github.com/JohannesLks/CVE-2026-27654","description":"NGINX `ngx_http_dav_module` Heap Buffer Overflow via `size_t` Underflow (Remote DoS / Potential RCE)","stargazers_count":6,"forks_count":1,"language":"Shell","updated_at":"2026-06-23T01:57:03Z","pushed_at":"2026-06-01T07:33:45Z","created_at":"2026-04-06T17:27:29Z","topics":["cve","exploit","security","vulnerability"],"owner":{"login":"JohannesLks","html_url":"https://github.com/JohannesLks"},"clone_url":"https://github.com/JohannesLks/CVE-2026-27654.git","has_code":true,"age_days":80}]},{"cve_id":"CVE-2026-27771","repositories":[{"id":1251467696,"name":"CVE-2026-27771","full_name":"portbuster1337/CVE-2026-27771","html_url":"https://github.com/portbuster1337/CVE-2026-27771","description":"CVE-2026-27771 - Gitea/Forgejo Container Registry Auth Bypass Exploit PoC - Pull private container images without authentication","stargazers_count":15,"forks_count":6,"language":"Python","updated_at":"2026-06-22T11:05:04Z","pushed_at":"2026-05-27T15:56:01Z","created_at":"2026-05-27T15:54:41Z","topics":["container-registry","cve","cve-2026-27771","exploit","forgejo","gitea","security","vulnerability"],"owner":{"login":"portbuster1337","html_url":"https://github.com/portbuster1337"},"clone_url":"https://github.com/portbuster1337/CVE-2026-27771.git","has_code":true,"age_days":29},{"id":1251433152,"name":"CVE-2026-27771","full_name":"HORKimhab/CVE-2026-27771","html_url":"https://github.com/HORKimhab/CVE-2026-27771","description":"CVE-2026-27771 - Draft","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-27T15:15:01Z","pushed_at":"2026-05-27T15:14:46Z","created_at":"2026-05-27T15:14:41Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-27771.git","has_code":false,"age_days":29}]},{"cve_id":"CVE-2026-27778","repositories":[{"id":1228528627,"name":"PoC-Simulator_CVE-2026-27778","full_name":"KimJ6/PoC-Simulator_CVE-2026-27778","html_url":"https://github.com/KimJ6/PoC-Simulator_CVE-2026-27778","description":"Created with StackBlitz ⚡️","stargazers_count":0,"forks_count":0,"language":"HTML","updated_at":"2026-05-04T06:24:57Z","pushed_at":"2026-05-04T06:24:52Z","created_at":"2026-05-04T05:36:25Z","topics":[],"owner":{"login":"KimJ6","html_url":"https://github.com/KimJ6"},"clone_url":"https://github.com/KimJ6/PoC-Simulator_CVE-2026-27778.git","has_code":true,"age_days":52}]},{"cve_id":"CVE-2026-27825","repositories":[{"id":1167457009,"name":"MCPwnfluence","full_name":"plutosecurity/MCPwnfluence","html_url":"https://github.com/plutosecurity/MCPwnfluence","description":"Information about CVE-2026-27825 \u0026 CVE-2026-27826 discovered by Pluto Security and a bash script for identifying vulnerable mcp-atlassian instances allowing for automatic update to a fixed version. ","stargazers_count":7,"forks_count":1,"language":"Shell","updated_at":"2026-03-10T06:17:17Z","pushed_at":"2026-02-26T10:24:30Z","created_at":"2026-02-26T10:09:32Z","topics":[],"owner":{"login":"plutosecurity","html_url":"https://github.com/plutosecurity"},"clone_url":"https://github.com/plutosecurity/MCPwnfluence.git","has_code":true,"age_days":119},{"id":1225019541,"name":"CVE-2026-27825","full_name":"romain-deperne/CVE-2026-27825","html_url":"https://github.com/romain-deperne/CVE-2026-27825","description":"Path Traversal in mcp-atlassian via zip extraction in upload_attachment — CVSS 9.3","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-29T21:58:21Z","pushed_at":"2026-04-29T21:58:17Z","created_at":"2026-04-29T21:37:04Z","topics":[],"owner":{"login":"romain-deperne","html_url":"https://github.com/romain-deperne"},"clone_url":"https://github.com/romain-deperne/CVE-2026-27825.git","has_code":true,"age_days":56}]},{"cve_id":"CVE-2026-27826","repositories":[{"id":1167457009,"name":"MCPwnfluence","full_name":"plutosecurity/MCPwnfluence","html_url":"https://github.com/plutosecurity/MCPwnfluence","description":"Information about CVE-2026-27825 \u0026 CVE-2026-27826 discovered by Pluto Security and a bash script for identifying vulnerable mcp-atlassian instances allowing for automatic update to a fixed version. ","stargazers_count":7,"forks_count":1,"language":"Shell","updated_at":"2026-03-10T06:17:17Z","pushed_at":"2026-02-26T10:24:30Z","created_at":"2026-02-26T10:09:32Z","topics":[],"owner":{"login":"plutosecurity","html_url":"https://github.com/plutosecurity"},"clone_url":"https://github.com/plutosecurity/MCPwnfluence.git","has_code":true,"age_days":119}]},{"cve_id":"CVE-2026-27831","repositories":[{"id":1167318129,"name":"CVE-2026-27831-POC","full_name":"bluedragonsecurity/CVE-2026-27831-POC","html_url":"https://github.com/bluedragonsecurity/CVE-2026-27831-POC","description":"Poc Exploit for CVE-2026-27831 - vulnerability discovered by : Antonius","stargazers_count":5,"forks_count":1,"language":"C","updated_at":"2026-04-19T11:39:30Z","pushed_at":"2026-02-26T06:59:12Z","created_at":"2026-02-26T06:57:14Z","topics":[],"owner":{"login":"bluedragonsecurity","html_url":"https://github.com/bluedragonsecurity"},"clone_url":"https://github.com/bluedragonsecurity/CVE-2026-27831-POC.git","has_code":true,"age_days":119}]},{"cve_id":"CVE-2026-27876","repositories":[{"id":1196256465,"name":"CVE-2026-27876","full_name":"0xBlackash/CVE-2026-27876","html_url":"https://github.com/0xBlackash/CVE-2026-27876","description":"CVE-2026-27876","stargazers_count":3,"forks_count":0,"language":"Python","updated_at":"2026-05-18T02:44:07Z","pushed_at":"2026-03-30T14:50:45Z","created_at":"2026-03-30T14:19:58Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-27876.git","has_code":true,"age_days":87}]},{"cve_id":"CVE-2026-27884","repositories":[{"id":1180240020,"name":"CVE-2026-27884","full_name":"RaynLight/CVE-2026-27884","html_url":"https://github.com/RaynLight/CVE-2026-27884","description":"","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-03-13T13:57:20Z","pushed_at":"2026-03-12T21:22:30Z","created_at":"2026-03-12T21:02:05Z","topics":[],"owner":{"login":"RaynLight","html_url":"https://github.com/RaynLight"},"clone_url":"https://github.com/RaynLight/CVE-2026-27884.git","has_code":true,"age_days":104}]},{"cve_id":"CVE-2026-27886","repositories":[{"id":1246977079,"name":"CVE-2026-27886-check","full_name":"BishopFox/CVE-2026-27886-check","html_url":"https://github.com/BishopFox/CVE-2026-27886-check","description":"Detect whether a Strapi instance is vulnerable to CVE-2026-27886 (unauthenticated boolean-oracle exfiltration of administrator secrets).","stargazers_count":1,"forks_count":1,"language":"Python","updated_at":"2026-05-26T18:36:18Z","pushed_at":"2026-05-22T19:07:17Z","created_at":"2026-05-22T19:07:00Z","topics":[],"owner":{"login":"BishopFox","html_url":"https://github.com/BishopFox"},"clone_url":"https://github.com/BishopFox/CVE-2026-27886-check.git","has_code":true,"age_days":34},{"id":1262919926,"name":"CVE-2026-27886-PoC-Account-Takeover","full_name":"thesw0rd/CVE-2026-27886-PoC-Account-Takeover","html_url":"https://github.com/thesw0rd/CVE-2026-27886-PoC-Account-Takeover","description":"Account takeover full PoC for CVE-2026-27886 in Strapi CMS","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-12T06:49:36Z","pushed_at":"2026-06-09T11:47:28Z","created_at":"2026-06-08T12:55:27Z","topics":[],"owner":{"login":"thesw0rd","html_url":"https://github.com/thesw0rd"},"clone_url":"https://github.com/thesw0rd/CVE-2026-27886-PoC-Account-Takeover.git","has_code":true,"age_days":17},{"id":1256096160,"name":"CVE-2026-27886","full_name":"EvtDanya/CVE-2026-27886","html_url":"https://github.com/EvtDanya/CVE-2026-27886","description":"Strapi CVE-2026-27886. Leaking sensitive data via relational filtering due to lack of query sanitization","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-02T07:34:49Z","pushed_at":"2026-06-01T13:18:40Z","created_at":"2026-06-01T13:07:23Z","topics":["cve-2026-27886"],"owner":{"login":"EvtDanya","html_url":"https://github.com/EvtDanya"},"clone_url":"https://github.com/EvtDanya/CVE-2026-27886.git","has_code":true,"age_days":24}]},{"cve_id":"CVE-2026-27940","repositories":[{"id":1195282286,"name":"CVE-2026-27940","full_name":"ngtuonghung/CVE-2026-27940","html_url":"https://github.com/ngtuonghung/CVE-2026-27940","description":"","stargazers_count":1,"forks_count":0,"language":"C","updated_at":"2026-06-18T11:39:16Z","pushed_at":"2026-03-29T13:34:53Z","created_at":"2026-03-29T13:30:04Z","topics":[],"owner":{"login":"ngtuonghung","html_url":"https://github.com/ngtuonghung"},"clone_url":"https://github.com/ngtuonghung/CVE-2026-27940.git","has_code":true,"age_days":88}]},{"cve_id":"CVE-2026-27944","repositories":[{"id":1181342373,"name":"CVE-2026-27944","full_name":"Skynoxk/CVE-2026-27944","html_url":"https://github.com/Skynoxk/CVE-2026-27944","description":"Automated exploit script for CVE-2026-27944 (Nginx UI). Downloads/decrypts backups, extracts system secrets, and creates rogue admin accounts for full dashboard access.","stargazers_count":8,"forks_count":0,"language":"Python","updated_at":"2026-06-20T14:54:34Z","pushed_at":"2026-03-14T04:26:33Z","created_at":"2026-03-14T02:43:49Z","topics":[],"owner":{"login":"Skynoxk","html_url":"https://github.com/Skynoxk"},"clone_url":"https://github.com/Skynoxk/CVE-2026-27944.git","has_code":true,"age_days":103},{"id":1177921709,"name":"CVE-2026-27944","full_name":"NULL200OK/CVE-2026-27944","html_url":"https://github.com/NULL200OK/CVE-2026-27944","description":"CVE-2026-27944 - Nginx UI Unauthenticated Backup Download \u0026 Decryption","stargazers_count":4,"forks_count":0,"language":"Python","updated_at":"2026-04-09T00:30:02Z","pushed_at":"2026-03-10T14:16:03Z","created_at":"2026-03-10T14:05:26Z","topics":[],"owner":{"login":"NULL200OK","html_url":"https://github.com/NULL200OK"},"clone_url":"https://github.com/NULL200OK/CVE-2026-27944.git","has_code":true,"age_days":107},{"id":1177984848,"name":"-nginxui_discover","full_name":"NULL200OK/-nginxui_discover","html_url":"https://github.com/NULL200OK/-nginxui_discover","description":"Nginx UI Discovery Scanner - CVE-2026-27944 Version Detector","stargazers_count":2,"forks_count":1,"language":"Python","updated_at":"2026-04-24T20:06:45Z","pushed_at":"2026-03-11T14:46:59Z","created_at":"2026-03-10T15:14:21Z","topics":[],"owner":{"login":"NULL200OK","html_url":"https://github.com/NULL200OK"},"clone_url":"https://github.com/NULL200OK/-nginxui_discover.git","has_code":true,"age_days":107},{"id":1232357370,"name":"HTB-Snapped-Writeup","full_name":"karimelsheikh1/HTB-Snapped-Writeup","html_url":"https://github.com/karimelsheikh1/HTB-Snapped-Writeup","description":"HTB Snapped — Hard Linux machine writeup. CVE-2026-27944 (Nginx UI unauthenticated backup disclosure) chained with CVE-2026-3888 (snapd race condition LPE) to achieve full system compromise.","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-06-12T04:48:08Z","pushed_at":"2026-05-07T21:16:30Z","created_at":"2026-05-07T21:12:14Z","topics":[],"owner":{"login":"karimelsheikh1","html_url":"https://github.com/karimelsheikh1"},"clone_url":"https://github.com/karimelsheikh1/HTB-Snapped-Writeup.git","has_code":false,"age_days":48},{"id":1231382007,"name":"CVE-2026-27944","full_name":"jake-young-dev/CVE-2026-27944","html_url":"https://github.com/jake-young-dev/CVE-2026-27944","description":"An educational deep-dive into CVE-2026-27944","stargazers_count":1,"forks_count":1,"language":"Python","updated_at":"2026-05-19T16:48:05Z","pushed_at":"2026-05-06T23:04:22Z","created_at":"2026-05-06T22:58:55Z","topics":[],"owner":{"login":"jake-young-dev","html_url":"https://github.com/jake-young-dev"},"clone_url":"https://github.com/jake-young-dev/CVE-2026-27944.git","has_code":true,"age_days":49},{"id":1199972441,"name":"CVE-2026-27944-poc","full_name":"Goultarde/CVE-2026-27944-poc","html_url":"https://github.com/Goultarde/CVE-2026-27944-poc","description":"poc for CVE-2026-27944","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-02T22:45:04Z","pushed_at":"2026-04-02T22:45:04Z","created_at":"2026-04-02T22:45:04Z","topics":[],"owner":{"login":"Goultarde","html_url":"https://github.com/Goultarde"},"clone_url":"https://github.com/Goultarde/CVE-2026-27944-poc.git","has_code":false,"age_days":83}]},{"cve_id":"CVE-2026-27959","repositories":[{"id":1177181765,"name":"CVE-2026-27959-mini-lab","full_name":"mlouazir/CVE-2026-27959-mini-lab","html_url":"https://github.com/mlouazir/CVE-2026-27959-mini-lab","description":"","stargazers_count":0,"forks_count":0,"language":"JavaScript","updated_at":"2026-03-09T19:38:49Z","pushed_at":"2026-03-09T19:34:30Z","created_at":"2026-03-09T19:22:55Z","topics":[],"owner":{"login":"mlouazir","html_url":"https://github.com/mlouazir"},"clone_url":"https://github.com/mlouazir/CVE-2026-27959-mini-lab.git","has_code":true,"age_days":108}]},{"cve_id":"CVE-2026-2796","repositories":[{"id":1205429595,"name":"CVE-2026-2796","full_name":"WostGit/CVE-2026-2796","html_url":"https://github.com/WostGit/CVE-2026-2796","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-09T13:41:11Z","pushed_at":"2026-04-09T13:40:24Z","created_at":"2026-04-09T00:42:22Z","topics":[],"owner":{"login":"WostGit","html_url":"https://github.com/WostGit"},"clone_url":"https://github.com/WostGit/CVE-2026-2796.git","has_code":false,"age_days":77},{"id":1205424865,"name":"cve-2026-2796-repro","full_name":"WostGit/cve-2026-2796-repro","html_url":"https://github.com/WostGit/cve-2026-2796-repro","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-09T00:37:36Z","pushed_at":"2026-04-09T00:37:32Z","created_at":"2026-04-09T00:33:41Z","topics":[],"owner":{"login":"WostGit","html_url":"https://github.com/WostGit"},"clone_url":"https://github.com/WostGit/cve-2026-2796-repro.git","has_code":false,"age_days":77}]},{"cve_id":"CVE-2026-27966","repositories":[{"id":1171750433,"name":"CVE-2026-27966--RCE-in-Langflow","full_name":"Anon-Cyber-Team/CVE-2026-27966--RCE-in-Langflow","html_url":"https://github.com/Anon-Cyber-Team/CVE-2026-27966--RCE-in-Langflow","description":"Exploit Tools For new CVE","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-03-12T09:45:10Z","pushed_at":"2026-03-06T12:57:22Z","created_at":"2026-03-03T15:12:34Z","topics":[],"owner":{"login":"Anon-Cyber-Team","html_url":"https://github.com/Anon-Cyber-Team"},"clone_url":"https://github.com/Anon-Cyber-Team/CVE-2026-27966--RCE-in-Langflow.git","has_code":true,"age_days":114}]},{"cve_id":"CVE-2026-27978","repositories":[{"id":1220911425,"name":"Next.js-Proof-of-Concept","full_name":"Nayekah/Next.js-Proof-of-Concept","html_url":"https://github.com/Nayekah/Next.js-Proof-of-Concept","description":"Some Proof-of-Concept (POCs) for CVE-2025-29927, CVE-2026-27978, and CVE-2026-29057 in Next.js.","stargazers_count":0,"forks_count":0,"language":"JavaScript","updated_at":"2026-05-01T12:10:46Z","pushed_at":"2026-05-01T12:10:42Z","created_at":"2026-04-25T13:57:54Z","topics":[],"owner":{"login":"Nayekah","html_url":"https://github.com/Nayekah"},"clone_url":"https://github.com/Nayekah/Next.js-Proof-of-Concept.git","has_code":true,"age_days":61}]},{"cve_id":"CVE-2026-28286","repositories":[{"id":1202187731,"name":"zimaos-cve-2026-28286-arbitrary-file-write","full_name":"Rushi9/zimaos-cve-2026-28286-arbitrary-file-write","html_url":"https://github.com/Rushi9/zimaos-cve-2026-28286-arbitrary-file-write","description":"ZimaOS CVE-2026-28286 arbitrary file write PoC \u0026 verification toolkit","stargazers_count":2,"forks_count":1,"language":"Python","updated_at":"2026-04-10T20:11:04Z","pushed_at":"2026-04-05T18:48:36Z","created_at":"2026-04-05T18:01:16Z","topics":["api-security","arbitrary-file-write","bugbounty","cve-2026-28286","cybersecurity","exploit","penetration-testing","zimaos"],"owner":{"login":"Rushi9","html_url":"https://github.com/Rushi9"},"clone_url":"https://github.com/Rushi9/zimaos-cve-2026-28286-arbitrary-file-write.git","has_code":true,"age_days":81}]},{"cve_id":"CVE-2026-28289","repositories":[{"id":1173744396,"name":"CVE-2026-28289","full_name":"0xBlackash/CVE-2026-28289","html_url":"https://github.com/0xBlackash/CVE-2026-28289","description":"CVE-2026-28289","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-03-12T09:41:24Z","pushed_at":"2026-03-05T19:22:11Z","created_at":"2026-03-05T17:48:00Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-28289.git","has_code":true,"age_days":112}]},{"cve_id":"CVE-2026-28318","repositories":[{"id":1267729791,"name":"CVE-2026-28318-check","full_name":"BishopFox/CVE-2026-28318-check","html_url":"https://github.com/BishopFox/CVE-2026-28318-check","description":"Safely detect whether a SolarWinds Serv-U host is vulnerable to CVE-2026-28318","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-13T08:27:27Z","pushed_at":"2026-06-12T20:38:32Z","created_at":"2026-06-12T20:09:57Z","topics":[],"owner":{"login":"BishopFox","html_url":"https://github.com/BishopFox"},"clone_url":"https://github.com/BishopFox/CVE-2026-28318-check.git","has_code":true,"age_days":12},{"id":1264772566,"name":"servu-cve-2026-28318-poc","full_name":"EaEa0001/servu-cve-2026-28318-poc","html_url":"https://github.com/EaEa0001/servu-cve-2026-28318-poc","description":"SolarWinds Serv-U CVE-2026-28318: unauthenticated Content-Encoding: deflate crash. Root-cause analysis (invalid free of an interior pointer -\u003e heap corruption) + DoS-only PoC. Fixed in 15.5.4 Hotfix 1.","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-10T09:32:03Z","pushed_at":"2026-06-10T07:02:51Z","created_at":"2026-06-10T07:02:47Z","topics":[],"owner":{"login":"EaEa0001","html_url":"https://github.com/EaEa0001"},"clone_url":"https://github.com/EaEa0001/servu-cve-2026-28318-poc.git","has_code":true,"age_days":15},{"id":1263896007,"name":"CVE-2026-28318","full_name":"jenniferreire26/CVE-2026-28318","html_url":"https://github.com/jenniferreire26/CVE-2026-28318","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-09T11:17:08Z","pushed_at":"2026-06-09T11:17:06Z","created_at":"2026-06-09T11:17:03Z","topics":[],"owner":{"login":"jenniferreire26","html_url":"https://github.com/jenniferreire26"},"clone_url":"https://github.com/jenniferreire26/CVE-2026-28318.git","has_code":false,"age_days":16}]},{"cve_id":"CVE-2026-28363","repositories":[{"id":1201666272,"name":"CVE-2026-28363","full_name":"kaleth4/CVE-2026-28363","html_url":"https://github.com/kaleth4/CVE-2026-28363","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-05T01:45:23Z","pushed_at":"2026-04-05T01:45:19Z","created_at":"2026-04-05T01:41:19Z","topics":[],"owner":{"login":"kaleth4","html_url":"https://github.com/kaleth4"},"clone_url":"https://github.com/kaleth4/CVE-2026-28363.git","has_code":true,"age_days":81}]},{"cve_id":"CVE-2026-28372","repositories":[{"id":1175014507,"name":"CVE-2026-28372-telnetd-Privilege-Escalation","full_name":"Rohitberiwala/CVE-2026-28372-telnetd-Privilege-Escalation","html_url":"https://github.com/Rohitberiwala/CVE-2026-28372-telnetd-Privilege-Escalation","description":"This Proof‑of‑Concept demonstrates a **Local Privilege Escalation** vulnerability in GNU inetutils `telnetd`.  `telnetd` improperly passes client‑controlled environment variables to `login(1)`. By setting:","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-03-12T05:50:19Z","pushed_at":"2026-03-07T08:35:32Z","created_at":"2026-03-07T05:31:00Z","topics":[],"owner":{"login":"Rohitberiwala","html_url":"https://github.com/Rohitberiwala"},"clone_url":"https://github.com/Rohitberiwala/CVE-2026-28372-telnetd-Privilege-Escalation.git","has_code":true,"age_days":110},{"id":1168789243,"name":"CVE-2026-28372-GNU-inetutils-telnetd-Privilege-Escalation","full_name":"mbanyamer/CVE-2026-28372-GNU-inetutils-telnetd-Privilege-Escalation","html_url":"https://github.com/mbanyamer/CVE-2026-28372-GNU-inetutils-telnetd-Privilege-Escalation","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-02T09:00:48Z","pushed_at":"2026-04-02T09:00:45Z","created_at":"2026-02-27T19:54:43Z","topics":[],"owner":{"login":"mbanyamer","html_url":"https://github.com/mbanyamer"},"clone_url":"https://github.com/mbanyamer/CVE-2026-28372-GNU-inetutils-telnetd-Privilege-Escalation.git","has_code":true,"age_days":118},{"id":1168949890,"name":"CVE-2026-28372-GNU-inetutils-telnetd-Privilege-Escalation-main","full_name":"kalibb/CVE-2026-28372-GNU-inetutils-telnetd-Privilege-Escalation-main","html_url":"https://github.com/kalibb/CVE-2026-28372-GNU-inetutils-telnetd-Privilege-Escalation-main","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-02-28T01:32:37Z","pushed_at":"2026-02-28T01:32:34Z","created_at":"2026-02-28T01:28:54Z","topics":[],"owner":{"login":"kalibb","html_url":"https://github.com/kalibb"},"clone_url":"https://github.com/kalibb/CVE-2026-28372-GNU-inetutils-telnetd-Privilege-Escalation-main.git","has_code":true,"age_days":117}]},{"cve_id":"CVE-2026-28466","repositories":[{"id":1194505607,"name":"CVE-2026-28466","full_name":"Orioning/CVE-2026-28466","html_url":"https://github.com/Orioning/CVE-2026-28466","description":"CVE-2026-28466复现脚本","stargazers_count":3,"forks_count":0,"language":"Python","updated_at":"2026-06-14T09:25:20Z","pushed_at":"2026-03-28T13:05:52Z","created_at":"2026-03-28T12:59:12Z","topics":["cve-2026-28466","openclaw"],"owner":{"login":"Orioning","html_url":"https://github.com/Orioning"},"clone_url":"https://github.com/Orioning/CVE-2026-28466.git","has_code":true,"age_days":89}]},{"cve_id":"CVE-2026-28699","repositories":[{"id":1265698070,"name":"gitea-CVE-2026-28699","full_name":"Alardiians/gitea-CVE-2026-28699","html_url":"https://github.com/Alardiians/gitea-CVE-2026-28699","description":"Lab + writeup for CVE-2026-28699: Gitea OAuth2 scope enforcement bypass via HTTP Basic auth","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-12T06:56:26Z","pushed_at":"2026-06-11T03:56:46Z","created_at":"2026-06-11T02:23:10Z","topics":["access-control","authentication","authorization-bypass","bug-bounty","cve","cve-2026-28699","exploit","gitea","golang","http-basic-auth","oauth2","poc","scope-bypass","security-research","vulnerability"],"owner":{"login":"Alardiians","html_url":"https://github.com/Alardiians"},"clone_url":"https://github.com/Alardiians/gitea-CVE-2026-28699.git","has_code":true,"age_days":14}]},{"cve_id":"CVE-2026-28766","repositories":[{"id":1203481484,"name":"CVE-2026-28766","full_name":"MichaelAdamGroberman/CVE-2026-28766","html_url":"https://github.com/MichaelAdamGroberman/CVE-2026-28766","description":"CVE-2026-28766: Missing Authentication on User Account Endpoint — Gardyn Home Kit (ICSA-26-055-03)","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-04T20:35:30Z","pushed_at":"2026-06-04T20:34:52Z","created_at":"2026-04-07T04:37:37Z","topics":["cisa","coordinated-disclosure","cve","cve-2026-28766","cwe-306","gardyn","ics-advisory","icsa-26-055-03","iot-security","missing-authentication","pii-exposure","security-research","vu653116","vulnerability-disclosure"],"owner":{"login":"MichaelAdamGroberman","html_url":"https://github.com/MichaelAdamGroberman"},"clone_url":"https://github.com/MichaelAdamGroberman/CVE-2026-28766.git","has_code":false,"age_days":79}]},{"cve_id":"CVE-2026-28767","repositories":[{"id":1203481513,"name":"CVE-2026-28767","full_name":"MichaelAdamGroberman/CVE-2026-28767","html_url":"https://github.com/MichaelAdamGroberman/CVE-2026-28767","description":"CVE-2026-28767: Missing Authentication on Admin Notifications Endpoint — Gardyn Home Kit (ICSA-26-055-03)","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-04T20:35:32Z","pushed_at":"2026-06-04T20:34:54Z","created_at":"2026-04-07T04:37:39Z","topics":["admin-api","cisa","coordinated-disclosure","cve","cve-2026-28767","cwe-306","gardyn","ics-advisory","icsa-26-055-03","iot-security","missing-authentication","security-research","vu653116","vulnerability-disclosure"],"owner":{"login":"MichaelAdamGroberman","html_url":"https://github.com/MichaelAdamGroberman"},"clone_url":"https://github.com/MichaelAdamGroberman/CVE-2026-28767.git","has_code":false,"age_days":79}]},{"cve_id":"CVE-2026-28858","repositories":[{"id":1203088044,"name":"CVE-2026-28858","full_name":"kaleth4/CVE-2026-28858","html_url":"https://github.com/kaleth4/CVE-2026-28858","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-06T17:57:10Z","pushed_at":"2026-04-06T17:57:06Z","created_at":"2026-04-06T17:54:28Z","topics":[],"owner":{"login":"kaleth4","html_url":"https://github.com/kaleth4"},"clone_url":"https://github.com/kaleth4/CVE-2026-28858.git","has_code":true,"age_days":80}]},{"cve_id":"CVE-2026-2898","repositories":[{"id":1165409806,"name":"CVE-2026-2898-FunAdmin-Deserialization","full_name":"aykhan32/CVE-2026-2898-FunAdmin-Deserialization","html_url":"https://github.com/aykhan32/CVE-2026-2898-FunAdmin-Deserialization","description":"","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-02-26T10:41:37Z","pushed_at":"2026-02-24T06:25:45Z","created_at":"2026-02-24T06:12:18Z","topics":[],"owner":{"login":"aykhan32","html_url":"https://github.com/aykhan32"},"clone_url":"https://github.com/aykhan32/CVE-2026-2898-FunAdmin-Deserialization.git","has_code":true,"age_days":121}]},{"cve_id":"CVE-2026-28990","repositories":[{"id":1249171835,"name":"exr-imageio-poc","full_name":"Billy-Ellis/exr-imageio-poc","html_url":"https://github.com/Billy-Ellis/exr-imageio-poc","description":"PoC for CVE-2026-28990, an ImageIO bug patched in iOS/macOS 26.5","stargazers_count":43,"forks_count":6,"language":"Python","updated_at":"2026-06-22T16:12:36Z","pushed_at":"2026-06-02T14:04:47Z","created_at":"2026-05-25T12:27:16Z","topics":[],"owner":{"login":"Billy-Ellis","html_url":"https://github.com/Billy-Ellis"},"clone_url":"https://github.com/Billy-Ellis/exr-imageio-poc.git","has_code":true,"age_days":31}]},{"cve_id":"CVE-2026-28992","repositories":[{"id":1157613888,"name":"CVE-2026-28992-IOHIDFamily-FastPathUserClient-Race-Conditions","full_name":"zeroxjf/CVE-2026-28992-IOHIDFamily-FastPathUserClient-Race-Conditions","html_url":"https://github.com/zeroxjf/CVE-2026-28992-IOHIDFamily-FastPathUserClient-Race-Conditions","description":"UAF and AOP coprocessor panic in IOHIDEventServiceFastPathUserClient. No entitlements, reachable from app sandbox.","stargazers_count":12,"forks_count":3,"language":"Objective-C","updated_at":"2026-06-07T11:26:12Z","pushed_at":"2026-05-11T19:46:38Z","created_at":"2026-02-14T03:20:49Z","topics":[],"owner":{"login":"zeroxjf","html_url":"https://github.com/zeroxjf"},"clone_url":"https://github.com/zeroxjf/CVE-2026-28992-IOHIDFamily-FastPathUserClient-Race-Conditions.git","has_code":true,"age_days":131}]},{"cve_id":"CVE-2026-29000","repositories":[{"id":1173849939,"name":"CVE-2026-29000","full_name":"kernelzeroday/CVE-2026-29000","html_url":"https://github.com/kernelzeroday/CVE-2026-29000","description":"pac4j-jwt JwtAuthenticator auth bypass (CVE-2026-29000) writeup and PoCs","stargazers_count":7,"forks_count":3,"language":"Python","updated_at":"2026-04-22T03:56:21Z","pushed_at":"2026-03-06T02:08:21Z","created_at":"2026-03-05T20:19:58Z","topics":[],"owner":{"login":"kernelzeroday","html_url":"https://github.com/kernelzeroday"},"clone_url":"https://github.com/kernelzeroday/CVE-2026-29000.git","has_code":true,"age_days":111},{"id":1227803482,"name":"CVE-2026-29000-pac4j-jwt","full_name":"Strikoder-Premium/CVE-2026-29000-pac4j-jwt","html_url":"https://github.com/Strikoder-Premium/CVE-2026-29000-pac4j-jwt","description":"CVE-2026-29000 PoC: pac4j-jwt PlainJWT-in-JWE authentication bypass.","stargazers_count":3,"forks_count":0,"language":"Python","updated_at":"2026-06-05T09:48:54Z","pushed_at":"2026-05-03T07:24:49Z","created_at":"2026-05-03T07:20:31Z","topics":[],"owner":{"login":"Strikoder-Premium","html_url":"https://github.com/Strikoder-Premium"},"clone_url":"https://github.com/Strikoder-Premium/CVE-2026-29000-pac4j-jwt.git","has_code":true,"age_days":53},{"id":1182907446,"name":"cve-2026-29000","full_name":"RootX111/cve-2026-29000","html_url":"https://github.com/RootX111/cve-2026-29000","description":"cve-2026-29000 exploit","stargazers_count":2,"forks_count":1,"language":"Python","updated_at":"2026-03-31T12:26:41Z","pushed_at":"2026-03-16T17:25:18Z","created_at":"2026-03-16T04:32:05Z","topics":[],"owner":{"login":"RootX111","html_url":"https://github.com/RootX111"},"clone_url":"https://github.com/RootX111/cve-2026-29000.git","has_code":true,"age_days":101},{"id":1236831869,"name":"CVE-2026-29000-PoC-Exploit","full_name":"tc4dy/CVE-2026-29000-PoC-Exploit","html_url":"https://github.com/tc4dy/CVE-2026-29000-PoC-Exploit","description":"CVE-2026-29000 – pac4j-jwt Authentication Bypass (🔥 CVSS 10.0). One-click admin forge via public key JWE wrapping. Leaks configs, users, secrets. Keep-alive, proxy, custom JWKS.⚙️ Educational PoC Exploit tool.","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-06-22T16:36:34Z","pushed_at":"2026-06-06T12:57:37Z","created_at":"2026-05-12T16:03:01Z","topics":[],"owner":{"login":"tc4dy","html_url":"https://github.com/tc4dy"},"clone_url":"https://github.com/tc4dy/CVE-2026-29000-PoC-Exploit.git","has_code":true,"age_days":44},{"id":1181119944,"name":"CVE-2026-29000","full_name":"otuva/CVE-2026-29000","html_url":"https://github.com/otuva/CVE-2026-29000","description":"","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-03-13T20:55:25Z","pushed_at":"2026-03-13T19:30:00Z","created_at":"2026-03-13T19:15:29Z","topics":[],"owner":{"login":"otuva","html_url":"https://github.com/otuva"},"clone_url":"https://github.com/otuva/CVE-2026-29000.git","has_code":true,"age_days":104},{"id":1180708593,"name":"CVE-2026-29000-Python-PoC-pac4j-JWT-AuthenticationBypass-Poc","full_name":"alihussainzada/CVE-2026-29000-Python-PoC-pac4j-JWT-AuthenticationBypass-Poc","html_url":"https://github.com/alihussainzada/CVE-2026-29000-Python-PoC-pac4j-JWT-AuthenticationBypass-Poc","description":"","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-27T11:30:03Z","pushed_at":"2026-03-13T10:27:07Z","created_at":"2026-03-13T10:23:19Z","topics":[],"owner":{"login":"alihussainzada","html_url":"https://github.com/alihussainzada"},"clone_url":"https://github.com/alihussainzada/CVE-2026-29000-Python-PoC-pac4j-JWT-AuthenticationBypass-Poc.git","has_code":true,"age_days":104},{"id":1180413307,"name":"CVE-2026-29000---pac4j-jwt-Authentication-Bypass-PoC","full_name":"manbahadurthapa1248/CVE-2026-29000---pac4j-jwt-Authentication-Bypass-PoC","html_url":"https://github.com/manbahadurthapa1248/CVE-2026-29000---pac4j-jwt-Authentication-Bypass-PoC","description":"CVE-2026-29000 - pac4j-jwt Authentication Bypass PoC","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-03-15T22:45:40Z","pushed_at":"2026-03-13T02:43:08Z","created_at":"2026-03-13T02:38:37Z","topics":[],"owner":{"login":"manbahadurthapa1248","html_url":"https://github.com/manbahadurthapa1248"},"clone_url":"https://github.com/manbahadurthapa1248/CVE-2026-29000---pac4j-jwt-Authentication-Bypass-PoC.git","has_code":true,"age_days":104},{"id":1197028303,"name":"CVE-2026-29000","full_name":"ClayOfGilgamesh/CVE-2026-29000","html_url":"https://github.com/ClayOfGilgamesh/CVE-2026-29000","description":"CVE-2026-29000","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-01T03:32:03Z","pushed_at":"2026-04-01T03:31:59Z","created_at":"2026-03-31T09:06:17Z","topics":[],"owner":{"login":"ClayOfGilgamesh","html_url":"https://github.com/ClayOfGilgamesh"},"clone_url":"https://github.com/ClayOfGilgamesh/CVE-2026-29000.git","has_code":true,"age_days":86},{"id":1197132524,"name":"CVE-2026-29000","full_name":"0xW1LD/CVE-2026-29000","html_url":"https://github.com/0xW1LD/CVE-2026-29000","description":"Just a simple Rust automation for CVE-2026-29000, designed to work against ippsec's Principal box on HackTheBox","stargazers_count":0,"forks_count":0,"language":"Rust","updated_at":"2026-04-27T13:11:40Z","pushed_at":"2026-03-31T11:21:08Z","created_at":"2026-03-31T10:58:29Z","topics":["cve-2026-29000"],"owner":{"login":"0xW1LD","html_url":"https://github.com/0xW1LD"},"clone_url":"https://github.com/0xW1LD/CVE-2026-29000.git","has_code":true,"age_days":86},{"id":1190432524,"name":"CVE-2026-29000-pac4j-jwt-auth-bypass","full_name":"PtechAmanja/CVE-2026-29000-pac4j-jwt-auth-bypass","html_url":"https://github.com/PtechAmanja/CVE-2026-29000-pac4j-jwt-auth-bypass","description":"Proof-of-Concept (PoC) for an authentication bypass vulnerability affecting applications using pac4j-jwt with JWE (JSON Web Encryption).","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-24T09:40:59Z","pushed_at":"2026-03-24T09:40:55Z","created_at":"2026-03-24T09:24:49Z","topics":["authentication-bypass","cve-2026-29000","hackthebox"],"owner":{"login":"PtechAmanja","html_url":"https://github.com/PtechAmanja"},"clone_url":"https://github.com/PtechAmanja/CVE-2026-29000-pac4j-jwt-auth-bypass.git","has_code":true,"age_days":93},{"id":1180680792,"name":"CVE-2026-29000","full_name":"Crims-on/CVE-2026-29000","html_url":"https://github.com/Crims-on/CVE-2026-29000","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-13T09:48:26Z","pushed_at":"2026-03-13T09:48:23Z","created_at":"2026-03-13T09:46:45Z","topics":[],"owner":{"login":"Crims-on","html_url":"https://github.com/Crims-on"},"clone_url":"https://github.com/Crims-on/CVE-2026-29000.git","has_code":true,"age_days":104},{"id":1178685428,"name":"CVE-2026-29000-Lab","full_name":"rootdirective-sec/CVE-2026-29000-Lab","html_url":"https://github.com/rootdirective-sec/CVE-2026-29000-Lab","description":"","stargazers_count":0,"forks_count":0,"language":"Java","updated_at":"2026-03-11T09:11:38Z","pushed_at":"2026-03-11T09:11:34Z","created_at":"2026-03-11T09:09:24Z","topics":[],"owner":{"login":"rootdirective-sec","html_url":"https://github.com/rootdirective-sec"},"clone_url":"https://github.com/rootdirective-sec/CVE-2026-29000-Lab.git","has_code":true,"age_days":106},{"id":1225836828,"name":"CVE-2026-29000","full_name":"jake-young-dev/CVE-2026-29000","html_url":"https://github.com/jake-young-dev/CVE-2026-29000","description":"An educational deep-dive into CVE-2026-29000","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-30T17:58:39Z","pushed_at":"2026-04-30T17:58:04Z","created_at":"2026-04-30T17:36:04Z","topics":[],"owner":{"login":"jake-young-dev","html_url":"https://github.com/jake-young-dev"},"clone_url":"https://github.com/jake-young-dev/CVE-2026-29000.git","has_code":true,"age_days":56},{"id":1206632346,"name":"CVE-2026-29000","full_name":"Gajraj238/CVE-2026-29000","html_url":"https://github.com/Gajraj238/CVE-2026-29000","description":"","stargazers_count":0,"forks_count":1,"language":"","updated_at":"2026-04-17T12:28:23Z","pushed_at":"2026-04-17T12:28:19Z","created_at":"2026-04-10T05:23:54Z","topics":[],"owner":{"login":"Gajraj238","html_url":"https://github.com/Gajraj238"},"clone_url":"https://github.com/Gajraj238/CVE-2026-29000.git","has_code":false,"age_days":76},{"id":1213015916,"name":"CVE-2026-29000","full_name":"cipher1x1/CVE-2026-29000","html_url":"https://github.com/cipher1x1/CVE-2026-29000","description":"Proof of Concept for CVE-2026-29000, a vulnerability in pac4j-jwt","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-05T09:04:59Z","pushed_at":"2026-04-17T00:53:04Z","created_at":"2026-04-17T00:51:16Z","topics":[],"owner":{"login":"cipher1x1","html_url":"https://github.com/cipher1x1"},"clone_url":"https://github.com/cipher1x1/CVE-2026-29000.git","has_code":true,"age_days":69},{"id":1200207711,"name":"CVE-2026-29000","full_name":"yasirr10/CVE-2026-29000","html_url":"https://github.com/yasirr10/CVE-2026-29000","description":"CVE-2026-29000: Critical Authentication Bypass in pac4j-jwt - Using Only a Public Key (CVSS 10)","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-03T06:41:03Z","pushed_at":"2026-04-03T06:40:59Z","created_at":"2026-04-03T06:37:06Z","topics":[],"owner":{"login":"yasirr10","html_url":"https://github.com/yasirr10"},"clone_url":"https://github.com/yasirr10/CVE-2026-29000.git","has_code":true,"age_days":83},{"id":1254143536,"name":"CVE-2026-29000","full_name":"c0gnit00/CVE-2026-29000","html_url":"https://github.com/c0gnit00/CVE-2026-29000","description":"Python POC, Exploit for CVE-2026-29000","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-30T07:34:53Z","pushed_at":"2026-05-30T07:34:48Z","created_at":"2026-05-30T07:34:02Z","topics":[],"owner":{"login":"c0gnit00","html_url":"https://github.com/c0gnit00"},"clone_url":"https://github.com/c0gnit00/CVE-2026-29000.git","has_code":true,"age_days":26},{"id":1230312536,"name":"CVE-2026-29000","full_name":"zF-tm/CVE-2026-29000","html_url":"https://github.com/zF-tm/CVE-2026-29000","description":"PoC of the CVE-2026-29000 ","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-05-05T22:13:26Z","pushed_at":"2026-05-05T22:13:22Z","created_at":"2026-05-05T21:59:34Z","topics":[],"owner":{"login":"zF-tm","html_url":"https://github.com/zF-tm"},"clone_url":"https://github.com/zF-tm/CVE-2026-29000.git","has_code":true,"age_days":50},{"id":1229982662,"name":"Principal-HackTheBox","full_name":"ledksv/Principal-HackTheBox","html_url":"https://github.com/ledksv/Principal-HackTheBox","description":"Writeup for Principal — HackTheBox Medium Linux box. CVE-2026-29000 pac4j JWT bypass, credentials from API settings, SSH CA privesc to root.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-05T15:11:28Z","pushed_at":"2026-05-05T15:06:23Z","created_at":"2026-05-05T15:06:20Z","topics":[],"owner":{"login":"ledksv","html_url":"https://github.com/ledksv"},"clone_url":"https://github.com/ledksv/Principal-HackTheBox.git","has_code":false,"age_days":51},{"id":1255970516,"name":"CVE-2026-29000","full_name":"lucastran05/CVE-2026-29000","html_url":"https://github.com/lucastran05/CVE-2026-29000","description":"","stargazers_count":0,"forks_count":0,"language":"Java","updated_at":"2026-06-04T06:44:39Z","pushed_at":"2026-06-04T06:44:35Z","created_at":"2026-06-01T10:42:44Z","topics":[],"owner":{"login":"lucastran05","html_url":"https://github.com/lucastran05"},"clone_url":"https://github.com/lucastran05/CVE-2026-29000.git","has_code":true,"age_days":24}]},{"cve_id":"CVE-2026-29041","repositories":[{"id":1174315237,"name":"CVE-2026-29041","full_name":"kx00007/CVE-2026-29041","html_url":"https://github.com/kx00007/CVE-2026-29041","description":"Hi, I’m K, This is my first CVE, which is a Remote Code Execution (RCE) vulnerability. It is the beginning of my journey as a security researcher.","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-06-23T09:49:12Z","pushed_at":"2026-03-06T10:26:04Z","created_at":"2026-03-06T09:54:58Z","topics":[],"owner":{"login":"kx00007","html_url":"https://github.com/kx00007"},"clone_url":"https://github.com/kx00007/CVE-2026-29041.git","has_code":true,"age_days":111}]},{"cve_id":"CVE-2026-29053","repositories":[{"id":1179712158,"name":"CVE-2026-29053","full_name":"rootxran/CVE-2026-29053","html_url":"https://github.com/rootxran/CVE-2026-29053","description":"","stargazers_count":0,"forks_count":0,"language":"CSS","updated_at":"2026-03-12T10:04:01Z","pushed_at":"2026-03-12T10:03:57Z","created_at":"2026-03-12T09:55:54Z","topics":[],"owner":{"login":"rootxran","html_url":"https://github.com/rootxran"},"clone_url":"https://github.com/rootxran/CVE-2026-29053.git","has_code":true,"age_days":105},{"id":1217483818,"name":"CVE-2026-29053","full_name":"AC8999/CVE-2026-29053","html_url":"https://github.com/AC8999/CVE-2026-29053","description":"(RCE) vulnerability discovered in Ghost CMS (specifically affecting versions 0.7.2 through 6.19.0)","stargazers_count":0,"forks_count":0,"language":"CSS","updated_at":"2026-04-21T23:57:24Z","pushed_at":"2026-04-21T23:57:20Z","created_at":"2026-04-21T23:50:12Z","topics":[],"owner":{"login":"AC8999","html_url":"https://github.com/AC8999"},"clone_url":"https://github.com/AC8999/CVE-2026-29053.git","has_code":true,"age_days":64}]},{"cve_id":"CVE-2026-29057","repositories":[{"id":1220911425,"name":"Next.js-Proof-of-Concept","full_name":"Nayekah/Next.js-Proof-of-Concept","html_url":"https://github.com/Nayekah/Next.js-Proof-of-Concept","description":"Some Proof-of-Concept (POCs) for CVE-2025-29927, CVE-2026-27978, and CVE-2026-29057 in Next.js.","stargazers_count":0,"forks_count":0,"language":"JavaScript","updated_at":"2026-05-01T12:10:46Z","pushed_at":"2026-05-01T12:10:42Z","created_at":"2026-04-25T13:57:54Z","topics":[],"owner":{"login":"Nayekah","html_url":"https://github.com/Nayekah"},"clone_url":"https://github.com/Nayekah/Next.js-Proof-of-Concept.git","has_code":true,"age_days":61}]},{"cve_id":"CVE-2026-29059","repositories":[{"id":1131928459,"name":"Windfall","full_name":"Chocapikk/Windfall","html_url":"https://github.com/Chocapikk/Windfall","description":"Windfall - Unauthenticated RCE exploit chain for Windmill \u0026 Nextcloud Flow (CVE-2026-29059). Path traversal + credential leak + PostgreSQL heap dump + Nextcloud AppAPI takeover.","stargazers_count":15,"forks_count":2,"language":"Ruby","updated_at":"2026-06-22T14:07:02Z","pushed_at":"2026-04-07T17:20:20Z","created_at":"2026-01-11T00:57:54Z","topics":["cve","cve-2026-22683","cve-2026-23696","cve-2026-29059","exploit","nextcloud","path-traversal","pentesting","python","rce","security","security-research","sql-injection","windmill"],"owner":{"login":"Chocapikk","html_url":"https://github.com/Chocapikk"},"clone_url":"https://github.com/Chocapikk/Windfall.git","has_code":true,"age_days":165}]},{"cve_id":"CVE-2026-29145","repositories":[{"id":1175839127,"name":"cve-2026-29145","full_name":"gregk4sec/cve-2026-29145","html_url":"https://github.com/gregk4sec/cve-2026-29145","description":"","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-04-12T09:12:43Z","pushed_at":"2026-04-12T09:07:16Z","created_at":"2026-03-08T08:42:07Z","topics":[],"owner":{"login":"gregk4sec","html_url":"https://github.com/gregk4sec"},"clone_url":"https://github.com/gregk4sec/cve-2026-29145.git","has_code":true,"age_days":109},{"id":1219250671,"name":"CVE-2026-29145-Tester","full_name":"sancliffe/CVE-2026-29145-Tester","html_url":"https://github.com/sancliffe/CVE-2026-29145-Tester","description":"This repository contains a proof-of-concept (PoC) environment designed to test for CVE-2026-29145.","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-24T12:20:01Z","pushed_at":"2026-04-25T07:02:06Z","created_at":"2026-04-23T17:26:33Z","topics":["bash","python","tls","tomcat"],"owner":{"login":"sancliffe","html_url":"https://github.com/sancliffe"},"clone_url":"https://github.com/sancliffe/CVE-2026-29145-Tester.git","has_code":true,"age_days":63},{"id":1232473562,"name":"CVE-2026-29145-Tester","full_name":"Chenjp/CVE-2026-29145-Tester","html_url":"https://github.com/Chenjp/CVE-2026-29145-Tester","description":"This repository contains a proof-of-concept (PoC) environment designed to test for CVE-2026-29145.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-08T01:04:54Z","pushed_at":"2026-04-25T07:02:06Z","created_at":"2026-05-08T01:04:54Z","topics":[],"owner":{"login":"Chenjp","html_url":"https://github.com/Chenjp"},"clone_url":"https://github.com/Chenjp/CVE-2026-29145-Tester.git","has_code":false,"age_days":48}]},{"cve_id":"CVE-2026-29187","repositories":[{"id":1154250273,"name":"CVE-2026-29187_SqlInjectionVulnerabilityOpenEMR7.0.4","full_name":"ChrisSub08/CVE-2026-29187_SqlInjectionVulnerabilityOpenEMR7.0.4","html_url":"https://github.com/ChrisSub08/CVE-2026-29187_SqlInjectionVulnerabilityOpenEMR7.0.4","description":"CVE-2026-29187: SQL Injection Vulnerability in OpenEMR \u003c8.0.0.3","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-26T08:48:04Z","pushed_at":"2026-03-26T08:38:44Z","created_at":"2026-02-10T07:08:38Z","topics":[],"owner":{"login":"ChrisSub08","html_url":"https://github.com/ChrisSub08"},"clone_url":"https://github.com/ChrisSub08/CVE-2026-29187_SqlInjectionVulnerabilityOpenEMR7.0.4.git","has_code":false,"age_days":135}]},{"cve_id":"CVE-2026-29198","repositories":[{"id":1257834591,"name":"CVE-2026-29198-POC","full_name":"hieuminhnv/CVE-2026-29198-POC","html_url":"https://github.com/hieuminhnv/CVE-2026-29198-POC","description":"Rocket.Chat OAuth2 NoSQL Injection","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-03T03:57:06Z","pushed_at":"2026-06-03T03:57:02Z","created_at":"2026-06-03T03:43:46Z","topics":[],"owner":{"login":"hieuminhnv","html_url":"https://github.com/hieuminhnv"},"clone_url":"https://github.com/hieuminhnv/CVE-2026-29198-POC.git","has_code":true,"age_days":22}]},{"cve_id":"CVE-2026-29204","repositories":[{"id":1237536928,"name":"cve-2026-29204-whmcs-clientarea-addonid","full_name":"bogdanrotariu/cve-2026-29204-whmcs-clientarea-addonid","html_url":"https://github.com/bogdanrotariu/cve-2026-29204-whmcs-clientarea-addonid","description":"","stargazers_count":0,"forks_count":0,"language":"PHP","updated_at":"2026-05-13T09:37:57Z","pushed_at":"2026-05-13T09:37:53Z","created_at":"2026-05-13T09:18:51Z","topics":[],"owner":{"login":"bogdanrotariu","html_url":"https://github.com/bogdanrotariu"},"clone_url":"https://github.com/bogdanrotariu/cve-2026-29204-whmcs-clientarea-addonid.git","has_code":true,"age_days":43}]},{"cve_id":"CVE-2026-2942","repositories":[{"id":1249873342,"name":"CVE-2026-2942","full_name":"xxconi/CVE-2026-2942","html_url":"https://github.com/xxconi/CVE-2026-2942","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-26T05:48:06Z","pushed_at":"2026-05-26T05:48:03Z","created_at":"2026-05-26T05:34:31Z","topics":[],"owner":{"login":"xxconi","html_url":"https://github.com/xxconi"},"clone_url":"https://github.com/xxconi/CVE-2026-2942.git","has_code":true,"age_days":30}]},{"cve_id":"CVE-2026-29597","repositories":[{"id":1195941277,"name":"CVE-2026-29597","full_name":"padayali-JD/CVE-2026-29597","html_url":"https://github.com/padayali-JD/CVE-2026-29597","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-31T04:35:21Z","pushed_at":"2026-03-31T04:35:18Z","created_at":"2026-03-30T08:04:28Z","topics":[],"owner":{"login":"padayali-JD","html_url":"https://github.com/padayali-JD"},"clone_url":"https://github.com/padayali-JD/CVE-2026-29597.git","has_code":false,"age_days":87}]},{"cve_id":"CVE-2026-29598","repositories":[{"id":1196820327,"name":"CVE-2026-29598","full_name":"padayali-JD/CVE-2026-29598","html_url":"https://github.com/padayali-JD/CVE-2026-29598","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-31T04:27:27Z","pushed_at":"2026-03-31T04:27:23Z","created_at":"2026-03-31T04:26:38Z","topics":[],"owner":{"login":"padayali-JD","html_url":"https://github.com/padayali-JD"},"clone_url":"https://github.com/padayali-JD/CVE-2026-29598.git","has_code":false,"age_days":86}]},{"cve_id":"CVE-2026-29628","repositories":[{"id":1203852501,"name":"CVE-2026-29628","full_name":"kiyochii/CVE-2026-29628","html_url":"https://github.com/kiyochii/CVE-2026-29628","description":"","stargazers_count":0,"forks_count":0,"language":"C++","updated_at":"2026-04-13T12:57:47Z","pushed_at":"2026-04-13T12:57:44Z","created_at":"2026-04-07T12:54:09Z","topics":[],"owner":{"login":"kiyochii","html_url":"https://github.com/kiyochii"},"clone_url":"https://github.com/kiyochii/CVE-2026-29628.git","has_code":true,"age_days":79}]},{"cve_id":"CVE-2026-2964","repositories":[{"id":1187125326,"name":"CVE-2026-2964-Lab","full_name":"thegenetic/CVE-2026-2964-Lab","html_url":"https://github.com/thegenetic/CVE-2026-2964-Lab","description":"","stargazers_count":0,"forks_count":0,"language":"JavaScript","updated_at":"2026-03-20T13:36:26Z","pushed_at":"2026-03-20T13:36:23Z","created_at":"2026-03-20T11:19:09Z","topics":[],"owner":{"login":"thegenetic","html_url":"https://github.com/thegenetic"},"clone_url":"https://github.com/thegenetic/CVE-2026-2964-Lab.git","has_code":true,"age_days":97}]},{"cve_id":"CVE-2026-29780","repositories":[{"id":1177536555,"name":"CVE-2026-29780","full_name":"redyank/CVE-2026-29780","html_url":"https://github.com/redyank/CVE-2026-29780","description":"CVE-2026-29780 eml-parser","stargazers_count":0,"forks_count":1,"language":"","updated_at":"2026-04-03T02:29:13Z","pushed_at":"2026-04-03T02:29:10Z","created_at":"2026-03-10T05:46:46Z","topics":[],"owner":{"login":"redyank","html_url":"https://github.com/redyank"},"clone_url":"https://github.com/redyank/CVE-2026-29780.git","has_code":false,"age_days":107}]},{"cve_id":"CVE-2026-29781","repositories":[{"id":1168921965,"name":"CVE-2026-29781","full_name":"skoveit/CVE-2026-29781","html_url":"https://github.com/skoveit/CVE-2026-29781","description":"CVE-2026-29781 PoC - uno reverse","stargazers_count":4,"forks_count":1,"language":"Go","updated_at":"2026-04-25T23:56:28Z","pushed_at":"2026-03-23T16:07:47Z","created_at":"2026-02-28T00:20:22Z","topics":["cve-2026-29781","exploit","poc","red-teaming","sliver","sliver-c2","vulnerability-research"],"owner":{"login":"skoveit","html_url":"https://github.com/skoveit"},"clone_url":"https://github.com/skoveit/CVE-2026-29781.git","has_code":true,"age_days":117}]},{"cve_id":"CVE-2026-29786","repositories":[{"id":1177571914,"name":"NodeJS-Tar-Symlink-Exploit-CVE-2026-29786","full_name":"Rohitberiwala/NodeJS-Tar-Symlink-Exploit-CVE-2026-29786","html_url":"https://github.com/Rohitberiwala/NodeJS-Tar-Symlink-Exploit-CVE-2026-29786","description":"Technical analysis and Proof-of-Concept (PoC) for a critical Path Traversal vulnerability via Symlink manipulation in the Node.js 'tar' package (CVE-2026-29786)","stargazers_count":1,"forks_count":0,"language":"JavaScript","updated_at":"2026-03-10T15:21:06Z","pushed_at":"2026-03-10T06:48:39Z","created_at":"2026-03-10T06:40:34Z","topics":[],"owner":{"login":"Rohitberiwala","html_url":"https://github.com/Rohitberiwala"},"clone_url":"https://github.com/Rohitberiwala/NodeJS-Tar-Symlink-Exploit-CVE-2026-29786.git","has_code":true,"age_days":107},{"id":1173939877,"name":"CVE-2026-29786","full_name":"Jvr2022/CVE-2026-29786","html_url":"https://github.com/Jvr2022/CVE-2026-29786","description":"PoC for CVE-2026-29786 demonstrating a node-tar hardlink path traversal that allows overwriting files outside the extraction directory.","stargazers_count":1,"forks_count":0,"language":"JavaScript","updated_at":"2026-03-05T22:57:04Z","pushed_at":"2026-03-05T22:56:51Z","created_at":"2026-03-05T22:53:22Z","topics":[],"owner":{"login":"Jvr2022","html_url":"https://github.com/Jvr2022"},"clone_url":"https://github.com/Jvr2022/CVE-2026-29786.git","has_code":true,"age_days":111}]},{"cve_id":"CVE-2026-29861","repositories":[{"id":1206551996,"name":"CVE-2026-29861","full_name":"amanyadav78/CVE-2026-29861","html_url":"https://github.com/amanyadav78/CVE-2026-29861","description":"","stargazers_count":2,"forks_count":0,"language":"","updated_at":"2026-06-20T12:29:36Z","pushed_at":"2026-04-10T03:00:23Z","created_at":"2026-04-10T02:58:07Z","topics":[],"owner":{"login":"amanyadav78","html_url":"https://github.com/amanyadav78"},"clone_url":"https://github.com/amanyadav78/CVE-2026-29861.git","has_code":false,"age_days":76}]},{"cve_id":"CVE-2026-29909","repositories":[{"id":1193158185,"name":"CVE-2026-29909-MRCMS-vulnerability","full_name":"qflksheep/CVE-2026-29909-MRCMS-vulnerability","html_url":"https://github.com/qflksheep/CVE-2026-29909-MRCMS-vulnerability","description":"MRCMS V3.1.2 contains an unauthenticated directory enumeration vulnerability in the file management module. The `/admin/file/list.do` endpoint lacks authentication controls and proper input validation, allowing remote attackers to enumerate directory contents on the server without any credentials.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-27T00:01:17Z","pushed_at":"2026-03-27T00:01:13Z","created_at":"2026-03-26T23:49:16Z","topics":[],"owner":{"login":"qflksheep","html_url":"https://github.com/qflksheep"},"clone_url":"https://github.com/qflksheep/CVE-2026-29909-MRCMS-vulnerability.git","has_code":false,"age_days":90}]},{"cve_id":"CVE-2026-2991","repositories":[{"id":1185612959,"name":"CVE-2026-2991","full_name":"joshuavanderpoll/CVE-2026-2991","html_url":"https://github.com/joshuavanderpoll/CVE-2026-2991","description":"PoC exploit for CVE-2026-2991 — authentication bypass in KiviCare WordPress plugin (≤4.1.2) allowing unauthenticated patient account takeover and admin session extraction.","stargazers_count":2,"forks_count":0,"language":"PHP","updated_at":"2026-06-18T08:45:58Z","pushed_at":"2026-03-18T19:25:25Z","created_at":"2026-03-18T19:09:24Z","topics":["auth-bypass","cve","cve-2026-2991","exploit","exploits","pentest-tool","pentesting","python","secrity-tools","security","vulnerabilities","vulnerability","wordpress","wordpress-exploit"],"owner":{"login":"joshuavanderpoll","html_url":"https://github.com/joshuavanderpoll"},"clone_url":"https://github.com/joshuavanderpoll/CVE-2026-2991.git","has_code":true,"age_days":99}]},{"cve_id":"CVE-2026-29923","repositories":[{"id":1206971957,"name":"CVE-2026-29923","full_name":"athenasec16/CVE-2026-29923","html_url":"https://github.com/athenasec16/CVE-2026-29923","description":"A newly discovered vulnerable driver, pstrip64.sys (CVE-2026-29923) allows an unprivileged user to escalate privileges to SYSTEM via a crafted IOCTL request ","stargazers_count":24,"forks_count":3,"language":"C++","updated_at":"2026-06-22T15:16:06Z","pushed_at":"2026-04-11T13:56:20Z","created_at":"2026-04-10T12:48:55Z","topics":[],"owner":{"login":"athenasec16","html_url":"https://github.com/athenasec16"},"clone_url":"https://github.com/athenasec16/CVE-2026-29923.git","has_code":true,"age_days":76},{"id":1140186908,"name":"CVE-2026-29923","full_name":"Smarttfoxx/CVE-2026-29923","html_url":"https://github.com/Smarttfoxx/CVE-2026-29923","description":"The pstrip64.sys kernel driver exposes an IOCTL that allows low-privileged users to map arbitrary ranges of physical memory into their own virtual address space. This primitive allows full read/write access to the system's physical RAM, enabling attackers to modify   critical kernel structures and escalate privileges to NT AUTHORITY\\SYSTEM.","stargazers_count":4,"forks_count":1,"language":"","updated_at":"2026-04-22T00:58:54Z","pushed_at":"2026-04-05T19:00:54Z","created_at":"2026-01-23T00:02:29Z","topics":[],"owner":{"login":"Smarttfoxx","html_url":"https://github.com/Smarttfoxx"},"clone_url":"https://github.com/Smarttfoxx/CVE-2026-29923.git","has_code":false,"age_days":153},{"id":1248638009,"name":"cve-2026-29923","full_name":"mein-0/cve-2026-29923","html_url":"https://github.com/mein-0/cve-2026-29923","description":"","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-24T22:39:12Z","pushed_at":"2026-05-24T22:39:07Z","created_at":"2026-05-24T22:36:56Z","topics":[],"owner":{"login":"mein-0","html_url":"https://github.com/mein-0"},"clone_url":"https://github.com/mein-0/cve-2026-29923.git","has_code":true,"age_days":31}]},{"cve_id":"CVE-2026-29954","repositories":[{"id":1193356379,"name":"CVE-2026-29954","full_name":"b0b0haha/CVE-2026-29954","html_url":"https://github.com/b0b0haha/CVE-2026-29954","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-27T06:12:39Z","pushed_at":"2026-03-27T06:12:36Z","created_at":"2026-03-27T06:11:47Z","topics":[],"owner":{"login":"b0b0haha","html_url":"https://github.com/b0b0haha"},"clone_url":"https://github.com/b0b0haha/CVE-2026-29954.git","has_code":false,"age_days":90}]},{"cve_id":"CVE-2026-29955","repositories":[{"id":1193350545,"name":"CVE-2026-29955","full_name":"b0b0haha/CVE-2026-29955","html_url":"https://github.com/b0b0haha/CVE-2026-29955","description":"The details for CVE-2026-29955","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-27T06:04:45Z","pushed_at":"2026-03-27T06:04:42Z","created_at":"2026-03-27T06:02:37Z","topics":[],"owner":{"login":"b0b0haha","html_url":"https://github.com/b0b0haha"},"clone_url":"https://github.com/b0b0haha/CVE-2026-29955.git","has_code":false,"age_days":90}]},{"cve_id":"CVE-2026-29971","repositories":[{"id":1193133149,"name":"CVE-2026-29971","full_name":"Tharooon/CVE-2026-29971","html_url":"https://github.com/Tharooon/CVE-2026-29971","description":"An attacker can execute arbitrary JavaScript in the victim's browser, potentially leading to session hijacking or privilege escalation.","stargazers_count":0,"forks_count":1,"language":"","updated_at":"2026-05-28T03:15:33Z","pushed_at":"2026-05-28T03:15:29Z","created_at":"2026-03-26T22:56:31Z","topics":[],"owner":{"login":"Tharooon","html_url":"https://github.com/Tharooon"},"clone_url":"https://github.com/Tharooon/CVE-2026-29971.git","has_code":false,"age_days":90},{"id":1193124402,"name":"BACkupCVE-2026-29971","full_name":"tharunchidurala-cyber/BACkupCVE-2026-29971","html_url":"https://github.com/tharunchidurala-cyber/BACkupCVE-2026-29971","description":"An attacker can execute arbitrary JavaScript in the victim's browser, potentially leading to session hijacking or privilege escalation.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-26T22:57:01Z","pushed_at":"2026-03-26T22:56:58Z","created_at":"2026-03-26T22:39:43Z","topics":[],"owner":{"login":"tharunchidurala-cyber","html_url":"https://github.com/tharunchidurala-cyber"},"clone_url":"https://github.com/tharunchidurala-cyber/BACkupCVE-2026-29971.git","has_code":false,"age_days":90}]},{"cve_id":"CVE-2026-30","repositories":[{"id":1196656918,"name":"ICS-MoxieManager-FileUpload-PoC","full_name":"itsismarcos/ICS-MoxieManager-FileUpload-PoC","html_url":"https://github.com/itsismarcos/ICS-MoxieManager-FileUpload-PoC","description":"CVE-2026-30-03 9.8 (Crítico) Possível RCE Jenzabar ICS + MoxieManager","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-04-18T06:12:33Z","pushed_at":"2026-03-31T00:22:12Z","created_at":"2026-03-30T23:06:10Z","topics":[],"owner":{"login":"itsismarcos","html_url":"https://github.com/itsismarcos"},"clone_url":"https://github.com/itsismarcos/ICS-MoxieManager-FileUpload-PoC.git","has_code":true,"age_days":86}]},{"cve_id":"CVE-2026-30039","repositories":[{"id":1192232315,"name":"CVE-2026-30039","full_name":"bx33661/CVE-2026-30039","html_url":"https://github.com/bx33661/CVE-2026-30039","description":"Security advisory and bilingual write-up for CVE-2026-30039 in rarfile","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-26T02:46:41Z","pushed_at":"2026-03-26T02:46:37Z","created_at":"2026-03-26T02:38:23Z","topics":["archive-extraction","cve","python","rarfile","security","symlink","vulnerability"],"owner":{"login":"bx33661","html_url":"https://github.com/bx33661"},"clone_url":"https://github.com/bx33661/CVE-2026-30039.git","has_code":false,"age_days":91}]},{"cve_id":"CVE-2026-30048","repositories":[{"id":1184532570,"name":"CVE-2026-30048","full_name":"0xN4no/CVE-2026-30048","html_url":"https://github.com/0xN4no/CVE-2026-30048","description":"Stored XSS in NotChatbot WebChat \u003c= 1.5.0 (CVE-2026-30048)","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-17T21:18:47Z","pushed_at":"2026-03-17T21:09:55Z","created_at":"2026-03-17T17:19:01Z","topics":[],"owner":{"login":"0xN4no","html_url":"https://github.com/0xN4no"},"clone_url":"https://github.com/0xN4no/CVE-2026-30048.git","has_code":false,"age_days":100}]},{"cve_id":"CVE-2026-3008","repositories":[{"id":1215949678,"name":"cve-2026-3008","full_name":"llgsjsm/cve-2026-3008","html_url":"https://github.com/llgsjsm/cve-2026-3008","description":"repo for cve-2026-3008","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-27T06:00:40Z","pushed_at":"2026-04-20T12:23:25Z","created_at":"2026-04-20T12:16:23Z","topics":[],"owner":{"login":"llgsjsm","html_url":"https://github.com/llgsjsm"},"clone_url":"https://github.com/llgsjsm/cve-2026-3008.git","has_code":false,"age_days":66}]},{"cve_id":"CVE-2026-30081","repositories":[{"id":1196874045,"name":"CVE-2026-30081","full_name":"rakeshelamaran98/CVE-2026-30081","html_url":"https://github.com/rakeshelamaran98/CVE-2026-30081","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-31T07:20:10Z","pushed_at":"2026-03-31T07:20:06Z","created_at":"2026-03-31T05:56:25Z","topics":[],"owner":{"login":"rakeshelamaran98","html_url":"https://github.com/rakeshelamaran98"},"clone_url":"https://github.com/rakeshelamaran98/CVE-2026-30081.git","has_code":false,"age_days":86}]},{"cve_id":"CVE-2026-30082","repositories":[{"id":1195714122,"name":"CVE-2026-30082","full_name":"Cr0wld3r/CVE-2026-30082","html_url":"https://github.com/Cr0wld3r/CVE-2026-30082","description":"Stored cross-site scripting (XSS) vulnerabilities in IngEstate Server v11.14.0","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-30T02:14:53Z","pushed_at":"2026-03-30T02:14:50Z","created_at":"2026-03-30T01:46:48Z","topics":[],"owner":{"login":"Cr0wld3r","html_url":"https://github.com/Cr0wld3r"},"clone_url":"https://github.com/Cr0wld3r/CVE-2026-30082.git","has_code":false,"age_days":87}]},{"cve_id":"CVE-2026-30332","repositories":[{"id":1198472052,"name":"CVE-2026-30332","full_name":"B1tBreaker/CVE-2026-30332","html_url":"https://github.com/B1tBreaker/CVE-2026-30332","description":"Balena Etcher versions prior to v2.1.4 on Windows are affected by a Time-of-Check to Time-of-Use (TOCTOU) race condition in the temporary file handling.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-02T16:22:53Z","pushed_at":"2026-04-02T16:22:49Z","created_at":"2026-04-01T13:06:15Z","topics":[],"owner":{"login":"B1tBreaker","html_url":"https://github.com/B1tBreaker"},"clone_url":"https://github.com/B1tBreaker/CVE-2026-30332.git","has_code":true,"age_days":85}]},{"cve_id":"CVE-2026-30345","repositories":[{"id":1184381642,"name":"CVE-2026-30345","full_name":"syphonetic/CVE-2026-30345","html_url":"https://github.com/syphonetic/CVE-2026-30345","description":"","stargazers_count":5,"forks_count":0,"language":"Python","updated_at":"2026-03-28T04:46:54Z","pushed_at":"2026-03-18T02:39:18Z","created_at":"2026-03-17T14:32:24Z","topics":[],"owner":{"login":"syphonetic","html_url":"https://github.com/syphonetic"},"clone_url":"https://github.com/syphonetic/CVE-2026-30345.git","has_code":true,"age_days":100}]},{"cve_id":"CVE-2026-30368","repositories":[{"id":1217604950,"name":"ls-poc","full_name":"truekas/ls-poc","html_url":"https://github.com/truekas/ls-poc","description":"CVE-2026-30368 proof of concept","stargazers_count":15,"forks_count":2,"language":"JavaScript","updated_at":"2026-05-01T14:11:37Z","pushed_at":"2026-04-26T22:34:05Z","created_at":"2026-04-22T03:40:06Z","topics":[],"owner":{"login":"truekas","html_url":"https://github.com/truekas"},"clone_url":"https://github.com/truekas/ls-poc.git","has_code":true,"age_days":64}]},{"cve_id":"CVE-2026-30480","repositories":[{"id":1147174396,"name":"CVE-2026-30480","full_name":"parlakbarann/CVE-2026-30480","html_url":"https://github.com/parlakbarann/CVE-2026-30480","description":"","stargazers_count":0,"forks_count":0,"language":"PHP","updated_at":"2026-04-30T10:32:29Z","pushed_at":"2026-04-14T19:33:17Z","created_at":"2026-02-01T10:23:07Z","topics":[],"owner":{"login":"parlakbarann","html_url":"https://github.com/parlakbarann"},"clone_url":"https://github.com/parlakbarann/CVE-2026-30480.git","has_code":true,"age_days":144}]},{"cve_id":"CVE-2026-30498","repositories":[{"id":1189833005,"name":"CVE-2026-30498","full_name":"Mehdi-Ben-Hamou/CVE-2026-30498","html_url":"https://github.com/Mehdi-Ben-Hamou/CVE-2026-30498","description":"CVE-2026-30498 - CSRF vulnerability in AdminPanel 4.0","stargazers_count":1,"forks_count":0,"language":"PHP","updated_at":"2026-04-18T12:58:39Z","pushed_at":"2026-03-24T21:55:23Z","created_at":"2026-03-23T17:58:37Z","topics":["csrf","cve","cybersecurity","exploit","pentesting","vulnerability"],"owner":{"login":"Mehdi-Ben-Hamou","html_url":"https://github.com/Mehdi-Ben-Hamou"},"clone_url":"https://github.com/Mehdi-Ben-Hamou/CVE-2026-30498.git","has_code":true,"age_days":94}]},{"cve_id":"CVE-2026-30502","repositories":[{"id":1146755310,"name":"CVE-2026-30502-OpenKM-6.3.12-Reflected-XSS","full_name":"dharmstm/CVE-2026-30502-OpenKM-6.3.12-Reflected-XSS","html_url":"https://github.com/dharmstm/CVE-2026-30502-OpenKM-6.3.12-Reflected-XSS","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-04T08:53:58Z","pushed_at":"2026-06-04T08:41:06Z","created_at":"2026-01-31T16:20:04Z","topics":[],"owner":{"login":"dharmstm","html_url":"https://github.com/dharmstm"},"clone_url":"https://github.com/dharmstm/CVE-2026-30502-OpenKM-6.3.12-Reflected-XSS.git","has_code":false,"age_days":145}]},{"cve_id":"CVE-2026-30503","repositories":[{"id":1147584555,"name":"CVE-2026-30503-OpenKM-6.3.12-Stored-XSS","full_name":"dharmstm/CVE-2026-30503-OpenKM-6.3.12-Stored-XSS","html_url":"https://github.com/dharmstm/CVE-2026-30503-OpenKM-6.3.12-Stored-XSS","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-04T08:54:40Z","pushed_at":"2026-06-04T08:35:17Z","created_at":"2026-02-02T00:42:15Z","topics":[],"owner":{"login":"dharmstm","html_url":"https://github.com/dharmstm"},"clone_url":"https://github.com/dharmstm/CVE-2026-30503-OpenKM-6.3.12-Stored-XSS.git","has_code":false,"age_days":143}]},{"cve_id":"CVE-2026-3055","repositories":[{"id":1197500915,"name":"CVE-2026-3055-Scanner---Herramienta-de-Detecci-n","full_name":"fevar54/CVE-2026-3055-Scanner---Herramienta-de-Detecci-n","html_url":"https://github.com/fevar54/CVE-2026-3055-Scanner---Herramienta-de-Detecci-n","description":"Herramienta de detección para CVE-2026-3055 que identifica NetScaler ADC y Gateway vulnerables a memory overread. Realiza escaneo individual, por red o lista de hosts, detecta memory leak en /wsfed/passive?wctx, extrae session IDs, verifica versiones y genera reportes JSON, HTML o CSV con hosts vulnerables.","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-05T15:08:22Z","pushed_at":"2026-03-31T16:27:58Z","created_at":"2026-03-31T16:23:12Z","topics":[],"owner":{"login":"fevar54","html_url":"https://github.com/fevar54"},"clone_url":"https://github.com/fevar54/CVE-2026-3055-Scanner---Herramienta-de-Detecci-n.git","has_code":true,"age_days":86},{"id":1197484845,"name":"CVE-2026-3055---Citrix-NetScaler-Memory-Overread-PoC","full_name":"fevar54/CVE-2026-3055---Citrix-NetScaler-Memory-Overread-PoC","html_url":"https://github.com/fevar54/CVE-2026-3055---Citrix-NetScaler-Memory-Overread-PoC","description":"Exploit funcional para CVE-2026-3055 en Citrix NetScaler ADC y Gateway. Aprovecha memory overread en endpoint /wsfed/passive?wctx para filtrar memoria del sistema, extrayendo session IDs administrativas, cookies y datos sensibles que permiten hijacking de sesiones y compromiso total del appliance vulnerable.","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-05T15:08:30Z","pushed_at":"2026-03-31T16:13:26Z","created_at":"2026-03-31T16:07:38Z","topics":[],"owner":{"login":"fevar54","html_url":"https://github.com/fevar54"},"clone_url":"https://github.com/fevar54/CVE-2026-3055---Citrix-NetScaler-Memory-Overread-PoC.git","has_code":true,"age_days":86},{"id":1198828793,"name":"check-cve-2026-3055-netscaler","full_name":"l0lsec/check-cve-2026-3055-netscaler","html_url":"https://github.com/l0lsec/check-cve-2026-3055-netscaler","description":"Low-impact probe for Citrix NetScaler CVE-2026-3055 (SAML IdP memory overread)","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-05T15:08:13Z","pushed_at":"2026-04-01T19:53:27Z","created_at":"2026-04-01T19:53:25Z","topics":["advisory","citrix","cve","cve-2026-3055","memory-corruption","netscaler","network-security","probe","python","saml","security-research","security-tools","vulnerability-scanner"],"owner":{"login":"l0lsec","html_url":"https://github.com/l0lsec"},"clone_url":"https://github.com/l0lsec/check-cve-2026-3055-netscaler.git","has_code":true,"age_days":85},{"id":1195190427,"name":"CVE-2026-3055","full_name":"0xBlackash/CVE-2026-3055","html_url":"https://github.com/0xBlackash/CVE-2026-3055","description":"CVE-2026-3055","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-29T11:01:40Z","pushed_at":"2026-03-29T11:01:36Z","created_at":"2026-03-29T10:58:13Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-3055.git","has_code":false,"age_days":88},{"id":1214857509,"name":"CVE-2026-3055","full_name":"NetVanguard-cmd/CVE-2026-3055","html_url":"https://github.com/NetVanguard-cmd/CVE-2026-3055","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-19T06:22:47Z","pushed_at":"2026-04-19T06:22:45Z","created_at":"2026-04-19T06:22:41Z","topics":[],"owner":{"login":"NetVanguard-cmd","html_url":"https://github.com/NetVanguard-cmd"},"clone_url":"https://github.com/NetVanguard-cmd/CVE-2026-3055.git","has_code":false,"age_days":67}]},{"cve_id":"CVE-2026-30615","repositories":[{"id":1215681296,"name":"ai-ide-config-guard","full_name":"TreRB/ai-ide-config-guard","html_url":"https://github.com/TreRB/ai-ide-config-guard","description":"Scan a repo for AI-IDE config files that can trigger RCE via Claude Code hooks, Cursor rules, MCP auto-registration. Detects CVE-2025-59536, CVE-2026-21852, CVE-2026-30615 + Pillar Rules File Backdoor patterns.","stargazers_count":0,"forks_count":0,"language":"JavaScript","updated_at":"2026-04-20T06:41:08Z","pushed_at":"2026-04-20T06:41:05Z","created_at":"2026-04-20T06:41:02Z","topics":[],"owner":{"login":"TreRB","html_url":"https://github.com/TreRB"},"clone_url":"https://github.com/TreRB/ai-ide-config-guard.git","has_code":true,"age_days":66}]},{"cve_id":"CVE-2026-30655","repositories":[{"id":1190123495,"name":"CVE-2026-30655","full_name":"brynax/CVE-2026-30655","html_url":"https://github.com/brynax/CVE-2026-30655","description":"Security advisory for CVE-2026-30655: unauthenticated SQL injection in esiclivre (/reset/index.php).","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-24T01:44:47Z","pushed_at":"2026-03-24T01:44:44Z","created_at":"2026-03-24T01:43:34Z","topics":[],"owner":{"login":"brynax","html_url":"https://github.com/brynax"},"clone_url":"https://github.com/brynax/CVE-2026-30655.git","has_code":false,"age_days":93}]},{"cve_id":"CVE-2026-30690","repositories":[{"id":1251602053,"name":"CVE-2026-30690","full_name":"walidriouah/CVE-2026-30690","html_url":"https://github.com/walidriouah/CVE-2026-30690","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-27T18:33:34Z","pushed_at":"2026-05-27T18:33:34Z","created_at":"2026-05-27T18:33:33Z","topics":[],"owner":{"login":"walidriouah","html_url":"https://github.com/walidriouah"},"clone_url":"https://github.com/walidriouah/CVE-2026-30690.git","has_code":false,"age_days":29}]},{"cve_id":"CVE-2026-30691","repositories":[{"id":1243656264,"name":"CVE-2026-30691","full_name":"walidriouah/CVE-2026-30691","html_url":"https://github.com/walidriouah/CVE-2026-30691","description":"CVE-2026-30691: Stored Cross-Site Scripting (XSS) in @cyntler/react-doc-viewer","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-19T15:23:19Z","pushed_at":"2026-05-19T15:06:51Z","created_at":"2026-05-19T14:39:40Z","topics":[],"owner":{"login":"walidriouah","html_url":"https://github.com/walidriouah"},"clone_url":"https://github.com/walidriouah/CVE-2026-30691.git","has_code":false,"age_days":37}]},{"cve_id":"CVE-2026-30695","repositories":[{"id":1186342293,"name":"CVE-2026-30695","full_name":"iremnurylmz/CVE-2026-30695","html_url":"https://github.com/iremnurylmz/CVE-2026-30695","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-19T14:47:54Z","pushed_at":"2026-03-19T14:44:15Z","created_at":"2026-03-19T14:24:11Z","topics":[],"owner":{"login":"iremnurylmz","html_url":"https://github.com/iremnurylmz"},"clone_url":"https://github.com/iremnurylmz/CVE-2026-30695.git","has_code":false,"age_days":98}]},{"cve_id":"CVE-2026-30741","repositories":[{"id":1177954059,"name":"CVE-2026-30741","full_name":"Named1ess/CVE-2026-30741","html_url":"https://github.com/Named1ess/CVE-2026-30741","description":"","stargazers_count":4,"forks_count":0,"language":"JavaScript","updated_at":"2026-04-09T07:12:00Z","pushed_at":"2026-03-10T15:02:40Z","created_at":"2026-03-10T14:40:51Z","topics":[],"owner":{"login":"Named1ess","html_url":"https://github.com/Named1ess"},"clone_url":"https://github.com/Named1ess/CVE-2026-30741.git","has_code":true,"age_days":107}]},{"cve_id":"CVE-2026-30824","repositories":[{"id":1224786960,"name":"CVE-2026-30824-Flowise-NVIDIA-NIM-Authentication","full_name":"dylvie/CVE-2026-30824-Flowise-NVIDIA-NIM-Authentication","html_url":"https://github.com/dylvie/CVE-2026-30824-Flowise-NVIDIA-NIM-Authentication","description":"A proof-of-concept exploit for **CVE-2026-30824**, a critical authentication bypass vulnerability in Flowise that exposes NVIDIA NIM API endpoints without authentication.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-29T16:41:47Z","pushed_at":"2026-04-29T16:41:42Z","created_at":"2026-04-29T16:18:01Z","topics":[],"owner":{"login":"dylvie","html_url":"https://github.com/dylvie"},"clone_url":"https://github.com/dylvie/CVE-2026-30824-Flowise-NVIDIA-NIM-Authentication.git","has_code":true,"age_days":57}]},{"cve_id":"CVE-2026-30849","repositories":[{"id":1261304906,"name":"CVE-2026-30849-PoC","full_name":"Gumbraise/CVE-2026-30849-PoC","html_url":"https://github.com/Gumbraise/CVE-2026-30849-PoC","description":"Proof-of-Concept checker/exploit for MantisBT SOAP auth bypass (CVE-2026-30849 / GHSA-phrq-pc6r-f6gh)","stargazers_count":0,"forks_count":0,"language":"TypeScript","updated_at":"2026-06-06T16:21:22Z","pushed_at":"2026-06-06T14:14:00Z","created_at":"2026-06-06T14:06:01Z","topics":["cve","cve-2026-30849","mantis","mantisbt","poc","proof-of-concept"],"owner":{"login":"Gumbraise","html_url":"https://github.com/Gumbraise"},"clone_url":"https://github.com/Gumbraise/CVE-2026-30849-PoC.git","has_code":true,"age_days":19}]},{"cve_id":"CVE-2026-30862","repositories":[{"id":1176879171,"name":"CVE-2026-30862","full_name":"drkim-dev/CVE-2026-30862","html_url":"https://github.com/drkim-dev/CVE-2026-30862","description":"CVE-2026-30862 | appsmith Privilege Escalation(xss)","stargazers_count":2,"forks_count":1,"language":"","updated_at":"2026-04-23T04:54:56Z","pushed_at":"2026-04-10T22:48:05Z","created_at":"2026-03-09T13:24:42Z","topics":[],"owner":{"login":"drkim-dev","html_url":"https://github.com/drkim-dev"},"clone_url":"https://github.com/drkim-dev/CVE-2026-30862.git","has_code":false,"age_days":108}]},{"cve_id":"CVE-2026-30863","repositories":[{"id":1175872718,"name":"CVE-2026-30863-Exploit","full_name":"Worthes/CVE-2026-30863-Exploit","html_url":"https://github.com/Worthes/CVE-2026-30863-Exploit","description":"CWE-287: Improper Authentication in parse-community parse-server","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-08T10:08:27Z","pushed_at":"2026-03-08T10:08:24Z","created_at":"2026-03-08T09:47:38Z","topics":[],"owner":{"login":"Worthes","html_url":"https://github.com/Worthes"},"clone_url":"https://github.com/Worthes/CVE-2026-30863-Exploit.git","has_code":false,"age_days":109}]},{"cve_id":"CVE-2026-30944","repositories":[{"id":1178374703,"name":"CVE-2026-30944-PoC","full_name":"FilipeGaudard/CVE-2026-30944-PoC","html_url":"https://github.com/FilipeGaudard/CVE-2026-30944-PoC","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-11T00:58:31Z","pushed_at":"2026-03-11T00:58:28Z","created_at":"2026-03-11T00:53:54Z","topics":[],"owner":{"login":"FilipeGaudard","html_url":"https://github.com/FilipeGaudard"},"clone_url":"https://github.com/FilipeGaudard/CVE-2026-30944-PoC.git","has_code":true,"age_days":106}]},{"cve_id":"CVE-2026-30945","repositories":[{"id":1179303156,"name":"CVE-2026-30945-PoC","full_name":"FilipeGaudard/CVE-2026-30945-PoC","html_url":"https://github.com/FilipeGaudard/CVE-2026-30945-PoC","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-11T22:34:53Z","pushed_at":"2026-03-11T22:34:50Z","created_at":"2026-03-11T22:33:02Z","topics":[],"owner":{"login":"FilipeGaudard","html_url":"https://github.com/FilipeGaudard"},"clone_url":"https://github.com/FilipeGaudard/CVE-2026-30945-PoC.git","has_code":true,"age_days":105}]},{"cve_id":"CVE-2026-30950","repositories":[{"id":1244946141,"name":"autogpt-CVE-2026-30950-poc","full_name":"ZeroPathAI/autogpt-CVE-2026-30950-poc","html_url":"https://github.com/ZeroPathAI/autogpt-CVE-2026-30950-poc","description":"POC for CVE-2026-30950 which allows session hijacking in AutoGpt","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-20T22:38:57Z","pushed_at":"2026-05-20T22:38:54Z","created_at":"2026-05-20T18:55:58Z","topics":[],"owner":{"login":"ZeroPathAI","html_url":"https://github.com/ZeroPathAI"},"clone_url":"https://github.com/ZeroPathAI/autogpt-CVE-2026-30950-poc.git","has_code":true,"age_days":36}]},{"cve_id":"CVE-2026-30951","repositories":[{"id":1202173227,"name":"CVE-2026-30951","full_name":"EQSTLab/CVE-2026-30951","html_url":"https://github.com/EQSTLab/CVE-2026-30951","description":"Sequelize JSON Cast SQL Injection","stargazers_count":1,"forks_count":0,"language":"JavaScript","updated_at":"2026-04-27T06:20:03Z","pushed_at":"2026-04-27T06:20:00Z","created_at":"2026-04-05T17:37:20Z","topics":[],"owner":{"login":"EQSTLab","html_url":"https://github.com/EQSTLab"},"clone_url":"https://github.com/EQSTLab/CVE-2026-30951.git","has_code":true,"age_days":81}]},{"cve_id":"CVE-2026-30952","repositories":[{"id":1178681193,"name":"CVE-2026-30952-PoC","full_name":"MorielHarush/CVE-2026-30952-PoC","html_url":"https://github.com/MorielHarush/CVE-2026-30952-PoC","description":"PoC for CVE-2026-30952: Path Traversal vulnerability in liquidjs via absolute paths in layout, render, and include tags.","stargazers_count":0,"forks_count":0,"language":"JavaScript","updated_at":"2026-03-11T09:40:31Z","pushed_at":"2026-03-11T09:40:28Z","created_at":"2026-03-11T09:04:20Z","topics":[],"owner":{"login":"MorielHarush","html_url":"https://github.com/MorielHarush"},"clone_url":"https://github.com/MorielHarush/CVE-2026-30952-PoC.git","has_code":true,"age_days":106}]},{"cve_id":"CVE-2026-3098","repositories":[{"id":1159531043,"name":"LLM-Jailbreak-via-Chain-of-Logic-Injection-CVE-2026-3098","full_name":"George0Papasotiriou/LLM-Jailbreak-via-Chain-of-Logic-Injection-CVE-2026-3098","html_url":"https://github.com/George0Papasotiriou/LLM-Jailbreak-via-Chain-of-Logic-Injection-CVE-2026-3098","description":"Report","stargazers_count":3,"forks_count":0,"language":"","updated_at":"2026-06-17T04:10:01Z","pushed_at":"2026-02-16T21:16:20Z","created_at":"2026-02-16T20:57:08Z","topics":[],"owner":{"login":"George0Papasotiriou","html_url":"https://github.com/George0Papasotiriou"},"clone_url":"https://github.com/George0Papasotiriou/LLM-Jailbreak-via-Chain-of-Logic-Injection-CVE-2026-3098.git","has_code":false,"age_days":128}]},{"cve_id":"CVE-2026-3102","repositories":[{"id":1246227845,"name":"CVE-2026-3102","full_name":"HORKimhab/CVE-2026-3102","html_url":"https://github.com/HORKimhab/CVE-2026-3102","description":"CVE-2026-3102","stargazers_count":1,"forks_count":0,"language":"Shell","updated_at":"2026-05-22T06:01:19Z","pushed_at":"2026-05-22T02:25:31Z","created_at":"2026-05-22T02:03:08Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-3102.git","has_code":true,"age_days":34}]},{"cve_id":"CVE-2026-31024","repositories":[{"id":1135052215,"name":"CVE-2026-31024","full_name":"ErikDervishi03/CVE-2026-31024","html_url":"https://github.com/ErikDervishi03/CVE-2026-31024","description":"Proof of Concept (PoC) for a stack-based buffer overflow in Steghide 0.5.1. Demonstrates how long file paths trigger a crash (DoS) and leak sensitive data (passwords) via system core dumps.","stargazers_count":2,"forks_count":0,"language":"","updated_at":"2026-05-19T10:44:38Z","pushed_at":"2026-05-17T10:18:42Z","created_at":"2026-01-15T15:17:00Z","topics":["buffer-overflow","cve","exploit","information-disclosure","linux-exploits","memory-corruption","poc","security-research","stack-overflow","vulnerability-report"],"owner":{"login":"ErikDervishi03","html_url":"https://github.com/ErikDervishi03"},"clone_url":"https://github.com/ErikDervishi03/CVE-2026-31024.git","has_code":false,"age_days":161}]},{"cve_id":"CVE-2026-31048","repositories":[{"id":1207154083,"name":"security-advisories","full_name":"Sif-0x01/security-advisories","html_url":"https://github.com/Sif-0x01/security-advisories","description":"Security advisory for CVE-2026-31048","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-10T16:25:50Z","pushed_at":"2026-04-10T16:25:42Z","created_at":"2026-04-10T16:25:41Z","topics":[],"owner":{"login":"Sif-0x01","html_url":"https://github.com/Sif-0x01"},"clone_url":"https://github.com/Sif-0x01/security-advisories.git","has_code":false,"age_days":76}]},{"cve_id":"CVE-2026-31156","repositories":[{"id":1237498749,"name":"CVE-2026-31156","full_name":"unicorn-hyh/CVE-2026-31156","html_url":"https://github.com/unicorn-hyh/CVE-2026-31156","description":"There is a path injection vulnerability in OpenPLC-v3, which arises from the program not performing any validity checks on the file path parameters passed in from the command line. Attackers can read any readable file by constructing malicious paths, posing a risk of information leakage.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-13T09:45:41Z","pushed_at":"2026-05-13T09:45:25Z","created_at":"2026-05-13T08:34:45Z","topics":[],"owner":{"login":"unicorn-hyh","html_url":"https://github.com/unicorn-hyh"},"clone_url":"https://github.com/unicorn-hyh/CVE-2026-31156.git","has_code":false,"age_days":43}]},{"cve_id":"CVE-2026-31266","repositories":[{"id":1150067674,"name":"Craftcms-PoC-CVE-2026-31266","full_name":"0xrixet/Craftcms-PoC-CVE-2026-31266","html_url":"https://github.com/0xrixet/Craftcms-PoC-CVE-2026-31266","description":"Security research on Craft CMS authentication mechanism","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-05T14:53:04Z","pushed_at":"2026-06-05T14:52:46Z","created_at":"2026-02-04T21:01:26Z","topics":["craft-cms","cve-2026-31266","missing-authorization-check","poc","security"],"owner":{"login":"0xrixet","html_url":"https://github.com/0xrixet"},"clone_url":"https://github.com/0xrixet/Craftcms-PoC-CVE-2026-31266.git","has_code":false,"age_days":140}]},{"cve_id":"CVE-2026-31280","repositories":[{"id":1207264865,"name":"CVE-2026-31280-Insecure-Bluetooth-RFCOMM-Leading-to-Device-Crash-in-Parani-M10-Intercom","full_name":"CipherX1802/CVE-2026-31280-Insecure-Bluetooth-RFCOMM-Leading-to-Device-Crash-in-Parani-M10-Intercom","html_url":"https://github.com/CipherX1802/CVE-2026-31280-Insecure-Bluetooth-RFCOMM-Leading-to-Device-Crash-in-Parani-M10-Intercom","description":"A Bluetooth Classic RFCOMM service is exposed without enforcing secure authentication or proper access control.  Once within range, any device can:  Establish a connection without proper pairing restrictions Access RFCOMM channels directly Send arbitrary or malformed payloads","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-10T18:54:09Z","pushed_at":"2026-04-10T18:54:04Z","created_at":"2026-04-10T18:51:42Z","topics":[],"owner":{"login":"CipherX1802","html_url":"https://github.com/CipherX1802"},"clone_url":"https://github.com/CipherX1802/CVE-2026-31280-Insecure-Bluetooth-RFCOMM-Leading-to-Device-Crash-in-Parani-M10-Intercom.git","has_code":false,"age_days":76}]},{"cve_id":"CVE-2026-31281","repositories":[{"id":1209211666,"name":"CVE-2026-31281","full_name":"saykino/CVE-2026-31281","html_url":"https://github.com/saykino/CVE-2026-31281","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-13T08:07:45Z","pushed_at":"2026-04-13T08:07:42Z","created_at":"2026-04-13T07:48:27Z","topics":[],"owner":{"login":"saykino","html_url":"https://github.com/saykino"},"clone_url":"https://github.com/saykino/CVE-2026-31281.git","has_code":false,"age_days":73}]},{"cve_id":"CVE-2026-31282","repositories":[{"id":1209232901,"name":"CVE-2026-31282","full_name":"saykino/CVE-2026-31282","html_url":"https://github.com/saykino/CVE-2026-31282","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-13T08:21:28Z","pushed_at":"2026-04-13T08:21:25Z","created_at":"2026-04-13T08:14:55Z","topics":[],"owner":{"login":"saykino","html_url":"https://github.com/saykino"},"clone_url":"https://github.com/saykino/CVE-2026-31282.git","has_code":false,"age_days":73}]},{"cve_id":"CVE-2026-31283","repositories":[{"id":1209204855,"name":"CVE-2026-31283","full_name":"saykino/CVE-2026-31283","html_url":"https://github.com/saykino/CVE-2026-31283","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-13T08:13:13Z","pushed_at":"2026-04-13T08:13:10Z","created_at":"2026-04-13T07:39:47Z","topics":[],"owner":{"login":"saykino","html_url":"https://github.com/saykino"},"clone_url":"https://github.com/saykino/CVE-2026-31283.git","has_code":false,"age_days":73}]},{"cve_id":"CVE-2026-31341","repositories":[{"id":1229174478,"name":"cve-2026-31341-copy-fail-checker","full_name":"Sc2-Ciberdefensa/cve-2026-31341-copy-fail-checker","html_url":"https://github.com/Sc2-Ciberdefensa/cve-2026-31341-copy-fail-checker","description":"","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-04T19:30:27Z","pushed_at":"2026-05-04T19:30:23Z","created_at":"2026-05-04T19:23:06Z","topics":[],"owner":{"login":"Sc2-Ciberdefensa","html_url":"https://github.com/Sc2-Ciberdefensa"},"clone_url":"https://github.com/Sc2-Ciberdefensa/cve-2026-31341-copy-fail-checker.git","has_code":true,"age_days":52}]},{"cve_id":"CVE-2026-31402","repositories":[{"id":1206290660,"name":"CVE-2026-31402","full_name":"0xBlackash/CVE-2026-31402","html_url":"https://github.com/0xBlackash/CVE-2026-31402","description":"CVE-2026-31402","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-04-09T19:31:45Z","pushed_at":"2026-04-09T19:31:39Z","created_at":"2026-04-09T19:10:44Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-31402.git","has_code":true,"age_days":77}]},{"cve_id":"CVE-2026-31413","repositories":[{"id":1208478299,"name":"CVE-2026-31413-BPF-Container-Escape","full_name":"Rat5ak/CVE-2026-31413-BPF-Container-Escape","html_url":"https://github.com/Rat5ak/CVE-2026-31413-BPF-Container-Escape","description":"CVE-2026-31413: BPF verifier soundness bug - container escape","stargazers_count":1,"forks_count":1,"language":"C","updated_at":"2026-04-18T03:55:58Z","pushed_at":"2026-04-18T03:55:54Z","created_at":"2026-04-12T10:41:02Z","topics":[],"owner":{"login":"Rat5ak","html_url":"https://github.com/Rat5ak"},"clone_url":"https://github.com/Rat5ak/CVE-2026-31413-BPF-Container-Escape.git","has_code":true,"age_days":74}]},{"cve_id":"CVE-2026-31429","repositories":[{"id":1219709404,"name":"CVE-2026-31429-POC","full_name":"bluedragonsecurity/CVE-2026-31429-POC","html_url":"https://github.com/bluedragonsecurity/CVE-2026-31429-POC","description":"POC for CVE-2026-31429 (Linux Kernel \u003e= 6.3 \u003c 6.12.82 Slab Cross-Cache Confusion) - vulnerability discovered by Antonius - w1sdom - bluedragonsec.com","stargazers_count":1,"forks_count":0,"language":"C","updated_at":"2026-04-28T03:57:37Z","pushed_at":"2026-04-24T06:52:12Z","created_at":"2026-04-24T06:30:29Z","topics":[],"owner":{"login":"bluedragonsecurity","html_url":"https://github.com/bluedragonsecurity"},"clone_url":"https://github.com/bluedragonsecurity/CVE-2026-31429-POC.git","has_code":true,"age_days":62}]},{"cve_id":"CVE-2026-3143","repositories":[{"id":1232309721,"name":"fix-cve-2026-3143","full_name":"ClimbMunchkin/fix-cve-2026-3143","html_url":"https://github.com/ClimbMunchkin/fix-cve-2026-3143","description":"Диагностика и исправление уязвимости CVE-2026-31431 (copy fail)","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-08T01:16:43Z","pushed_at":"2026-05-08T01:16:40Z","created_at":"2026-05-07T19:58:27Z","topics":[],"owner":{"login":"ClimbMunchkin","html_url":"https://github.com/ClimbMunchkin"},"clone_url":"https://github.com/ClimbMunchkin/fix-cve-2026-3143.git","has_code":true,"age_days":49}]},{"cve_id":"CVE-2026-31431","repositories":[{"id":1224571990,"name":"copy-fail-CVE-2026-31431","full_name":"theori-io/copy-fail-CVE-2026-31431","html_url":"https://github.com/theori-io/copy-fail-CVE-2026-31431","description":"Copy Fail (CVE-2026-31431): 9-year-old Linux kernel LPE found by Theori's Xint Code","stargazers_count":3972,"forks_count":890,"language":"Python","updated_at":"2026-06-25T18:40:43Z","pushed_at":"2026-04-29T21:21:46Z","created_at":"2026-04-29T12:15:28Z","topics":["ai-security","cve-2026-31431","exploit","linux-kernel","privilege-escalation","privilege-escalation-exploits","security-research","theori","vulnerability","xint-code"],"owner":{"login":"theori-io","html_url":"https://github.com/theori-io"},"clone_url":"https://github.com/theori-io/copy-fail-CVE-2026-31431.git","has_code":true,"age_days":57},{"id":1225075622,"name":"copy-fail-c","full_name":"tgies/copy-fail-c","html_url":"https://github.com/tgies/copy-fail-c","description":"Cross-platform C port of the Copy Fail Linux LPE (CVE-2026-31431). Disclosed 2026-04-29 by Theori / Xint.","stargazers_count":430,"forks_count":120,"language":"C","updated_at":"2026-06-25T00:00:24Z","pushed_at":"2026-05-22T11:51:03Z","created_at":"2026-04-29T23:29:14Z","topics":["af-alg","copy-fail","cve-2026-31431","exploit","kernel-exploit","linux-kernel","local-privilege-escalation","nolibc","portable-c","privilege-escalation","proof-of-concept","security-research"],"owner":{"login":"tgies","html_url":"https://github.com/tgies"},"clone_url":"https://github.com/tgies/copy-fail-c.git","has_code":true,"age_days":56},{"id":1225057823,"name":"copyfail-go","full_name":"badsectorlabs/copyfail-go","html_url":"https://github.com/badsectorlabs/copyfail-go","description":"A Go implementation of copyfail (CVE-2026-31431)","stargazers_count":355,"forks_count":77,"language":"Assembly","updated_at":"2026-06-23T09:56:13Z","pushed_at":"2026-05-01T03:24:14Z","created_at":"2026-04-29T22:51:24Z","topics":[],"owner":{"login":"badsectorlabs","html_url":"https://github.com/badsectorlabs"},"clone_url":"https://github.com/badsectorlabs/copyfail-go.git","has_code":true,"age_days":56},{"id":1225536774,"name":"Copy-Fail-CVE-2026-31431-Kubernetes-PoC","full_name":"Percivalll/Copy-Fail-CVE-2026-31431-Kubernetes-PoC","html_url":"https://github.com/Percivalll/Copy-Fail-CVE-2026-31431-Kubernetes-PoC","description":"PoC: fully unprivileged container escape to node-level code execution on Kubernetes via CVE-2026-31431 page-cache corruption + shared image layers. Validated on Alibaba Cloud ACK, Amazon EKS and Google GKE.","stargazers_count":173,"forks_count":27,"language":"C","updated_at":"2026-06-24T23:02:25Z","pushed_at":"2026-05-07T09:04:29Z","created_at":"2026-04-30T11:33:22Z","topics":["container-escape","cve-2026-31431","eks","exploit","kubernetes","linux-kernel","privilege-escalation","proof-of-concept","security-research","vulnerability"],"owner":{"login":"Percivalll","html_url":"https://github.com/Percivalll"},"clone_url":"https://github.com/Percivalll/Copy-Fail-CVE-2026-31431-Kubernetes-PoC.git","has_code":true,"age_days":56},{"id":1225178660,"name":"CVE-2026-31431-Advanced-Exploit","full_name":"Sndav/CVE-2026-31431-Advanced-Exploit","html_url":"https://github.com/Sndav/CVE-2026-31431-Advanced-Exploit","description":"CVE-2026-31431 纯文件利用","stargazers_count":110,"forks_count":30,"language":"Python","updated_at":"2026-06-24T17:25:21Z","pushed_at":"2026-04-30T16:24:17Z","created_at":"2026-04-30T02:55:03Z","topics":[],"owner":{"login":"Sndav","html_url":"https://github.com/Sndav"},"clone_url":"https://github.com/Sndav/CVE-2026-31431-Advanced-Exploit.git","has_code":true,"age_days":56},{"id":1225003339,"name":"Copy-Fail-Exploit-CVE-2026-31431","full_name":"painoob/Copy-Fail-Exploit-CVE-2026-31431","html_url":"https://github.com/painoob/Copy-Fail-Exploit-CVE-2026-31431","description":"Most Linux LPEs need a race window or a kernel-specific offset. Copy Fail is a straight-line logic flaw, it needs neither. The same 732-byte Python script (or .c elf) roots every Linux distribution shipped since 2017.","stargazers_count":98,"forks_count":22,"language":"Python","updated_at":"2026-06-13T09:40:39Z","pushed_at":"2026-04-29T21:22:27Z","created_at":"2026-04-29T21:08:42Z","topics":[],"owner":{"login":"painoob","html_url":"https://github.com/painoob"},"clone_url":"https://github.com/painoob/Copy-Fail-Exploit-CVE-2026-31431.git","has_code":true,"age_days":56},{"id":1230430873,"name":"page_inject","full_name":"sgkdev/page_inject","html_url":"https://github.com/sgkdev/page_inject","description":"CVE-2026-31431-killed page-cache exploit — code exec into containers sharing the same image layer","stargazers_count":64,"forks_count":11,"language":"C","updated_at":"2026-06-12T06:57:01Z","pushed_at":"2026-05-06T19:32:18Z","created_at":"2026-05-06T01:51:02Z","topics":[],"owner":{"login":"sgkdev","html_url":"https://github.com/sgkdev"},"clone_url":"https://github.com/sgkdev/page_inject.git","has_code":true,"age_days":50},{"id":1225103720,"name":"copy-fail-tiny-elf-CVE-2026-31431","full_name":"Crihexe/copy-fail-tiny-elf-CVE-2026-31431","html_url":"https://github.com/Crihexe/copy-fail-tiny-elf-CVE-2026-31431","description":"Minimal no-libc Linux x86_64 ELF PoC build for Copy Fail (CVE-2026-31431)","stargazers_count":61,"forks_count":10,"language":"Shell","updated_at":"2026-05-20T22:42:26Z","pushed_at":"2026-05-03T01:42:43Z","created_at":"2026-04-30T00:30:40Z","topics":["af-alg","algif-aead","copy-fail","cve-2026-31431","elf","kernel-security","linux-kernel","linux-security","no-libc","poc","security-research","splice","tiny-elf","vulnerability-research","x86-64"],"owner":{"login":"Crihexe","html_url":"https://github.com/Crihexe"},"clone_url":"https://github.com/Crihexe/copy-fail-tiny-elf-CVE-2026-31431.git","has_code":true,"age_days":56},{"id":1225504202,"name":"CVE-2026-31431-CopyFail-Universal-LPE","full_name":"shadowabi/CVE-2026-31431-CopyFail-Universal-LPE","html_url":"https://github.com/shadowabi/CVE-2026-31431-CopyFail-Universal-LPE","description":"CVE-2026-31431 Copy Fail — Universal LPE exploit. Dynamic ELF offset + full-binary overwrite, Python 2/3 compatible with ctypes splice fallback","stargazers_count":58,"forks_count":12,"language":"Python","updated_at":"2026-06-22T07:54:08Z","pushed_at":"2026-05-06T16:22:13Z","created_at":"2026-04-30T10:49:03Z","topics":["container-escape","copy-fail","cve-2026-31431","exploit","linux-kernel","lpe","privilege-escalation"],"owner":{"login":"shadowabi","html_url":"https://github.com/shadowabi"},"clone_url":"https://github.com/shadowabi/CVE-2026-31431-CopyFail-Universal-LPE.git","has_code":true,"age_days":56},{"id":1225221498,"name":"CVE-2026-31431-Linux-Copy-Fail","full_name":"iss4cf0ng/CVE-2026-31431-Linux-Copy-Fail","html_url":"https://github.com/iss4cf0ng/CVE-2026-31431-Linux-Copy-Fail","description":"Rust implementation Exploit/PoC of CVE-2026-31431-Linux-Copy-Fail, allow executing customized shellcode (such as Meterpreter).","stargazers_count":55,"forks_count":20,"language":"Rust","updated_at":"2026-06-24T17:33:24Z","pushed_at":"2026-04-30T15:39:36Z","created_at":"2026-04-30T04:16:32Z","topics":["cve","cve-2026-31431","exploit","explotation","linux","linux-vulnerability","poc","privilege-escalation","privilege-escalation-exploits","proof-of-concept","rust","vulnerability","vulnerable"],"owner":{"login":"iss4cf0ng","html_url":"https://github.com/iss4cf0ng"},"clone_url":"https://github.com/iss4cf0ng/CVE-2026-31431-Linux-Copy-Fail.git","has_code":true,"age_days":56},{"id":1225225736,"name":"cve-2026-31431","full_name":"adysec/cve-2026-31431","html_url":"https://github.com/adysec/cve-2026-31431","description":"CVE-2026-31431: Copy Fail | A minimal exploit for Linux authencesn + AF_ALG + splice() page cache write.","stargazers_count":45,"forks_count":40,"language":"Rust","updated_at":"2026-06-22T21:21:52Z","pushed_at":"2026-04-30T04:30:27Z","created_at":"2026-04-30T04:25:00Z","topics":[],"owner":{"login":"adysec","html_url":"https://github.com/adysec"},"clone_url":"https://github.com/adysec/cve-2026-31431.git","has_code":true,"age_days":56},{"id":1225330169,"name":"CVE-2026-31431","full_name":"0xShe/CVE-2026-31431","html_url":"https://github.com/0xShe/CVE-2026-31431","description":"","stargazers_count":37,"forks_count":18,"language":"C","updated_at":"2026-06-25T12:45:49Z","pushed_at":"2026-04-30T07:24:20Z","created_at":"2026-04-30T07:09:23Z","topics":[],"owner":{"login":"0xShe","html_url":"https://github.com/0xShe"},"clone_url":"https://github.com/0xShe/CVE-2026-31431.git","has_code":true,"age_days":56},{"id":1225714491,"name":"copy-fail-blocker","full_name":"cozystack/copy-fail-blocker","html_url":"https://github.com/cozystack/copy-fail-blocker","description":"BPF-LSM mitigation for CVE-2026-31431 (Copy Fail) — denies AF_ALG socket creation cluster-wide","stargazers_count":31,"forks_count":5,"language":"Makefile","updated_at":"2026-05-24T01:35:40Z","pushed_at":"2026-05-08T08:30:28Z","created_at":"2026-04-30T15:02:00Z","topics":[],"owner":{"login":"cozystack","html_url":"https://github.com/cozystack"},"clone_url":"https://github.com/cozystack/copy-fail-blocker.git","has_code":true,"age_days":56},{"id":1225421788,"name":"copy-fail-CVE-2026-31431-IOC","full_name":"kadir/copy-fail-CVE-2026-31431-IOC","html_url":"https://github.com/kadir/copy-fail-CVE-2026-31431-IOC","description":"Detection, mitigation, and IOC toolkit for Copy Fail CVE-2026-31431 Linux kernel page-cache privilege escalation","stargazers_count":31,"forks_count":1,"language":"Python","updated_at":"2026-05-07T06:22:07Z","pushed_at":"2026-04-30T09:21:00Z","created_at":"2026-04-30T09:02:51Z","topics":["copy-fail","copyfail","cve-2026-31431","incident-response","ioc","linux","linux-kernel","privilege-escalation","yara"],"owner":{"login":"kadir","html_url":"https://github.com/kadir"},"clone_url":"https://github.com/kadir/copy-fail-CVE-2026-31431-IOC.git","has_code":true,"age_days":56},{"id":1225972555,"name":"CVE-2026-31431-Copy-Fail---Vulnerability-Detection-Script","full_name":"liamromanis101/CVE-2026-31431-Copy-Fail---Vulnerability-Detection-Script","html_url":"https://github.com/liamromanis101/CVE-2026-31431-Copy-Fail---Vulnerability-Detection-Script","description":"Detection Only.. working on an exploit PoC","stargazers_count":25,"forks_count":2,"language":"Shell","updated_at":"2026-06-04T17:18:54Z","pushed_at":"2026-05-06T14:09:40Z","created_at":"2026-04-30T20:54:56Z","topics":["cve-2026-31431","docker","kubernetes","linux"],"owner":{"login":"liamromanis101","html_url":"https://github.com/liamromanis101"},"clone_url":"https://github.com/liamromanis101/CVE-2026-31431-Copy-Fail---Vulnerability-Detection-Script.git","has_code":true,"age_days":55},{"id":1225656875,"name":"wg.copyfail.patch","full_name":"wgnet/wg.copyfail.patch","html_url":"https://github.com/wgnet/wg.copyfail.patch","description":"CVE-2026-31431 eBPF fix","stargazers_count":25,"forks_count":5,"language":"C","updated_at":"2026-05-13T05:15:39Z","pushed_at":"2026-04-30T14:54:14Z","created_at":"2026-04-30T13:55:25Z","topics":["copy-fail","cve-2026-31431","ebpf","fix","lsm","workaround"],"owner":{"login":"wgnet","html_url":"https://github.com/wgnet"},"clone_url":"https://github.com/wgnet/wg.copyfail.patch.git","has_code":true,"age_days":56},{"id":1227638235,"name":"copy-fail-check","full_name":"jbnetwork-git/copy-fail-check","html_url":"https://github.com/jbnetwork-git/copy-fail-check","description":"CVE-2026-31431  Helper basado en https://copy.fail/","stargazers_count":25,"forks_count":5,"language":"Shell","updated_at":"2026-05-24T12:17:34Z","pushed_at":"2026-05-03T02:23:33Z","created_at":"2026-05-03T00:39:17Z","topics":[],"owner":{"login":"jbnetwork-git","html_url":"https://github.com/jbnetwork-git"},"clone_url":"https://github.com/jbnetwork-git/copy-fail-check.git","has_code":true,"age_days":53},{"id":1226964803,"name":"CVE-2026-31431-Container-Escape","full_name":"qi4L/CVE-2026-31431-Container-Escape","html_url":"https://github.com/qi4L/CVE-2026-31431-Container-Escape","description":"CVE-2026-31431 容器逃逸","stargazers_count":20,"forks_count":6,"language":"Go","updated_at":"2026-06-18T09:22:15Z","pushed_at":"2026-05-02T03:20:36Z","created_at":"2026-05-02T03:13:02Z","topics":[],"owner":{"login":"qi4L","html_url":"https://github.com/qi4L"},"clone_url":"https://github.com/qi4L/CVE-2026-31431-Container-Escape.git","has_code":true,"age_days":54},{"id":1225665324,"name":"copyfail-rs","full_name":"diemoeve/copyfail-rs","html_url":"https://github.com/diemoeve/copyfail-rs","description":"CopyFail (CVE-2026-31431): Linux kernel page-cache PrivEsc PoC + the only public detection tool. Novel PAM auth-bypass vector + Sigma/auditd/eBPF rules.","stargazers_count":19,"forks_count":3,"language":"Rust","updated_at":"2026-05-23T05:05:42Z","pushed_at":"2026-05-06T12:42:59Z","created_at":"2026-04-30T14:04:58Z","topics":["af-alg","auditd","copyfail","cve-2026-31431","detection-engineering","ebpf","linux-kernel","no-std","page-cache","privilege-escalation","purple-team","rust","security","sigma-rules"],"owner":{"login":"diemoeve","html_url":"https://github.com/diemoeve"},"clone_url":"https://github.com/diemoeve/copyfail-rs.git","has_code":true,"age_days":56},{"id":1225094797,"name":"CopyFail-CVE-2026-31431","full_name":"ZephrFish/CopyFail-CVE-2026-31431","html_url":"https://github.com/ZephrFish/CopyFail-CVE-2026-31431","description":"","stargazers_count":19,"forks_count":9,"language":"Python","updated_at":"2026-06-08T15:34:42Z","pushed_at":"2026-04-30T00:15:44Z","created_at":"2026-04-30T00:11:10Z","topics":[],"owner":{"login":"ZephrFish","html_url":"https://github.com/ZephrFish"},"clone_url":"https://github.com/ZephrFish/CopyFail-CVE-2026-31431.git","has_code":true,"age_days":56},{"id":1233022468,"name":"DIRTYFAIL","full_name":"KaraZajac/DIRTYFAIL","html_url":"https://github.com/KaraZajac/DIRTYFAIL","description":"Detector + PoC for Linux page-cache write vulnerabilities: Copy Fail (CVE-2026-31431) and Dirty Frag (CVE-2026-43284/43500). Authorized security research only.","stargazers_count":19,"forks_count":10,"language":"C","updated_at":"2026-06-18T13:50:07Z","pushed_at":"2026-05-17T14:38:43Z","created_at":"2026-05-08T14:05:37Z","topics":[],"owner":{"login":"KaraZajac","html_url":"https://github.com/KaraZajac"},"clone_url":"https://github.com/KaraZajac/DIRTYFAIL.git","has_code":true,"age_days":48},{"id":1226752376,"name":"copyfail","full_name":"Smarttfoxx/copyfail","html_url":"https://github.com/Smarttfoxx/copyfail","description":"CVE-2026-31431 (Copy Fail) PoC - Linux kernel page cache corruption via authencesn AF_ALG + splice()","stargazers_count":18,"forks_count":7,"language":"C","updated_at":"2026-06-03T12:30:42Z","pushed_at":"2026-05-12T13:44:11Z","created_at":"2026-05-01T19:44:57Z","topics":[],"owner":{"login":"Smarttfoxx","html_url":"https://github.com/Smarttfoxx"},"clone_url":"https://github.com/Smarttfoxx/copyfail.git","has_code":true,"age_days":55},{"id":1244226886,"name":"ptrace_may_dream","full_name":"sgkdev/ptrace_may_dream","html_url":"https://github.com/sgkdev/ptrace_may_dream","description":"CVE-2026-31431-killed page-cache exploit — code exec into containers sharing the same image layer","stargazers_count":15,"forks_count":3,"language":"C","updated_at":"2026-06-02T21:22:55Z","pushed_at":"2026-05-20T04:52:41Z","created_at":"2026-05-20T04:37:35Z","topics":[],"owner":{"login":"sgkdev","html_url":"https://github.com/sgkdev"},"clone_url":"https://github.com/sgkdev/ptrace_may_dream.git","has_code":true,"age_days":36},{"id":1225685126,"name":"copyfail-rs","full_name":"sammwyy/copyfail-rs","html_url":"https://github.com/sammwyy/copyfail-rs","description":"Copy Fail exploit (CVE-2026-31431) but in Rust.","stargazers_count":14,"forks_count":2,"language":"Rust","updated_at":"2026-05-11T16:06:57Z","pushed_at":"2026-04-30T14:44:20Z","created_at":"2026-04-30T14:28:00Z","topics":["copy-fail","copyfail","cve","cve-2026-31431","local-privilege-escalation","lpe","poc","privilege-escalation"],"owner":{"login":"sammwyy","html_url":"https://github.com/sammwyy"},"clone_url":"https://github.com/sammwyy/copyfail-rs.git","has_code":true,"age_days":56},{"id":1228713671,"name":"copyfail-exploit","full_name":"xeloxa/copyfail-exploit","html_url":"https://github.com/xeloxa/copyfail-exploit","description":"Copy Fail (CVE-2026-31431) LPE exploit. A clean, multi-arch Python reimplementation targeting the Linux kernel AF_ALG page cache vulnerability.","stargazers_count":14,"forks_count":2,"language":"Python","updated_at":"2026-06-25T08:06:19Z","pushed_at":"2026-05-05T07:01:53Z","created_at":"2026-05-04T09:48:59Z","topics":["af-alg","copy-fail","cve-2026-31431","exploit","linux-kernel","lpe","privilege-escalation","security-research","xint","zeroday"],"owner":{"login":"xeloxa","html_url":"https://github.com/xeloxa"},"clone_url":"https://github.com/xeloxa/copyfail-exploit.git","has_code":true,"age_days":52},{"id":1225604678,"name":"CVE-2026-31431","full_name":"JuanBindez/CVE-2026-31431","html_url":"https://github.com/JuanBindez/CVE-2026-31431","description":"Copy Fail - CVE-2026-31431","stargazers_count":13,"forks_count":5,"language":"Python","updated_at":"2026-06-15T07:33:57Z","pushed_at":"2026-06-05T02:59:22Z","created_at":"2026-04-30T12:59:11Z","topics":[],"owner":{"login":"JuanBindez","html_url":"https://github.com/JuanBindez"},"clone_url":"https://github.com/JuanBindez/CVE-2026-31431.git","has_code":true,"age_days":56},{"id":1225776432,"name":"cve-2026-31431","full_name":"SeanRickerd/cve-2026-31431","html_url":"https://github.com/SeanRickerd/cve-2026-31431","description":"Exploit for cve-2026-31431","stargazers_count":12,"forks_count":5,"language":"Python","updated_at":"2026-05-21T21:11:58Z","pushed_at":"2026-05-01T15:10:22Z","created_at":"2026-04-30T16:18:31Z","topics":[],"owner":{"login":"SeanRickerd","html_url":"https://github.com/SeanRickerd"},"clone_url":"https://github.com/SeanRickerd/cve-2026-31431.git","has_code":true,"age_days":56},{"id":1231023679,"name":"cve-2026-31431-ftrace","full_name":"philfry/cve-2026-31431-ftrace","html_url":"https://github.com/philfry/cve-2026-31431-ftrace","description":"mitigation of cve-2026-31431 using ftrace","stargazers_count":12,"forks_count":3,"language":"C","updated_at":"2026-05-12T07:19:30Z","pushed_at":"2026-05-12T07:19:26Z","created_at":"2026-05-06T14:50:12Z","topics":[],"owner":{"login":"philfry","html_url":"https://github.com/philfry"},"clone_url":"https://github.com/philfry/cve-2026-31431-ftrace.git","has_code":true,"age_days":50},{"id":1226395523,"name":"copy-fail-exploit-on-c-redteam","full_name":"toxy4ny/copy-fail-exploit-on-c-redteam","html_url":"https://github.com/toxy4ny/copy-fail-exploit-on-c-redteam","description":"Copy Fail -- CVE-2026-31431 - Hardened AF_ALG/splice page-cache mutation primitive for RedTeam Ops.","stargazers_count":11,"forks_count":0,"language":"C","updated_at":"2026-06-20T09:58:27Z","pushed_at":"2026-05-01T16:19:38Z","created_at":"2026-05-01T10:43:26Z","topics":["bypass-edr","cve-2026-31431","education","exploit","exploitation","hardening","linux","redteam","redteaming","remake"],"owner":{"login":"toxy4ny","html_url":"https://github.com/toxy4ny"},"clone_url":"https://github.com/toxy4ny/copy-fail-exploit-on-c-redteam.git","has_code":true,"age_days":55},{"id":1225547505,"name":"yc-mk8s-copy-fail-mitigation","full_name":"yandex-cloud-examples/yc-mk8s-copy-fail-mitigation","html_url":"https://github.com/yandex-cloud-examples/yc-mk8s-copy-fail-mitigation","description":"DaemonSet для митигации уязвимости CVE-2026-31431 (Copy Fail)","stargazers_count":10,"forks_count":1,"language":"","updated_at":"2026-05-19T20:50:12Z","pushed_at":"2026-05-12T09:17:28Z","created_at":"2026-04-30T11:47:33Z","topics":["kubernetes","mk8s","security","yandex-cloud","yandexcloud"],"owner":{"login":"yandex-cloud-examples","html_url":"https://github.com/yandex-cloud-examples"},"clone_url":"https://github.com/yandex-cloud-examples/yc-mk8s-copy-fail-mitigation.git","has_code":false,"age_days":56},{"id":1228541987,"name":"copy-fail-CVE-2026-31431-detection-probe","full_name":"ochebotar/copy-fail-CVE-2026-31431-detection-probe","html_url":"https://github.com/ochebotar/copy-fail-CVE-2026-31431-detection-probe","description":"Safe detection tooling for CVE-2026-31431 \"Copy Fail\" and CVE-2026-43284 \"Dirty Frag\" — a local privilege escalation in the Linux kernel's algif_aead module affecting all major distributions since 2017.","stargazers_count":10,"forks_count":2,"language":"Shell","updated_at":"2026-06-03T10:14:17Z","pushed_at":"2026-05-18T12:37:20Z","created_at":"2026-05-04T05:58:50Z","topics":[],"owner":{"login":"ochebotar","html_url":"https://github.com/ochebotar"},"clone_url":"https://github.com/ochebotar/copy-fail-CVE-2026-31431-detection-probe.git","has_code":true,"age_days":52},{"id":1227067224,"name":"copy-fail-CVE-2026-31431-php","full_name":"MartinPham/copy-fail-CVE-2026-31431-php","html_url":"https://github.com/MartinPham/copy-fail-CVE-2026-31431-php","description":"CVE-2026-31431 (Copy Fail) PHP PoC","stargazers_count":9,"forks_count":0,"language":"PHP","updated_at":"2026-05-04T07:14:52Z","pushed_at":"2026-05-02T07:31:00Z","created_at":"2026-05-02T06:42:33Z","topics":[],"owner":{"login":"MartinPham","html_url":"https://github.com/MartinPham"},"clone_url":"https://github.com/MartinPham/copy-fail-CVE-2026-31431-php.git","has_code":true,"age_days":54},{"id":1227031225,"name":"CVE-2026-31431","full_name":"malwarekid/CVE-2026-31431","html_url":"https://github.com/malwarekid/CVE-2026-31431","description":"CopyFail is a proof-of-concept exploit for CVE-2026-31431, targeting a memory corruption vulnerability in the Linux Kernel Crypto API (`AF_ALG`). The exploit leverages the `splice` system call to perform unauthorized page-cache patching of the `/usr/bin/su` binary, enabling a password-less escalation to root.","stargazers_count":9,"forks_count":0,"language":"Go","updated_at":"2026-05-29T01:34:08Z","pushed_at":"2026-05-02T06:04:26Z","created_at":"2026-05-02T05:44:02Z","topics":[],"owner":{"login":"malwarekid","html_url":"https://github.com/malwarekid"},"clone_url":"https://github.com/malwarekid/CVE-2026-31431.git","has_code":true,"age_days":54},{"id":1226337482,"name":"copy-fail-cve-2026-31431","full_name":"ErdemOzgen/copy-fail-cve-2026-31431","html_url":"https://github.com/ErdemOzgen/copy-fail-cve-2026-31431","description":"Golang port of copy-fail-cve-2026-31431","stargazers_count":8,"forks_count":0,"language":"Go","updated_at":"2026-05-15T02:45:51Z","pushed_at":"2026-05-01T21:25:09Z","created_at":"2026-05-01T09:06:10Z","topics":["binary","copy-fail","cve-2026-31431","cybersecurity","golang"],"owner":{"login":"ErdemOzgen","html_url":"https://github.com/ErdemOzgen"},"clone_url":"https://github.com/ErdemOzgen/copy-fail-cve-2026-31431.git","has_code":true,"age_days":55},{"id":1225973665,"name":"COPY-FAIL-Detection-with-Wazuh-4.14.4","full_name":"mym0us3r/COPY-FAIL-Detection-with-Wazuh-4.14.4","html_url":"https://github.com/mym0us3r/COPY-FAIL-Detection-with-Wazuh-4.14.4","description":"Wazuh 4.14.4 detection rules for CVE-2026-31431 (Copy Fail) - Linux Local Privilege Escalation via authencesn page cache write","stargazers_count":7,"forks_count":0,"language":"","updated_at":"2026-06-10T07:23:50Z","pushed_at":"2026-05-04T14:42:14Z","created_at":"2026-04-30T20:56:49Z","topics":["auditd","blueteam","copy-fail","cve-2026-31431","detection-engineering","kali","linux","lpe","sca","siem","wazuh"],"owner":{"login":"mym0us3r","html_url":"https://github.com/mym0us3r"},"clone_url":"https://github.com/mym0us3r/COPY-FAIL-Detection-with-Wazuh-4.14.4.git","has_code":false,"age_days":55},{"id":1225885417,"name":"CVE-2026-31431-mitigation","full_name":"Dabbleam/CVE-2026-31431-mitigation","html_url":"https://github.com/Dabbleam/CVE-2026-31431-mitigation","description":"eBPF-based daemon to mitigate CVE-2026-31431 on systems where `algif_aead` is built into the kernel, without a reboot!","stargazers_count":7,"forks_count":0,"language":"C","updated_at":"2026-05-17T11:18:04Z","pushed_at":"2026-04-30T19:13:28Z","created_at":"2026-04-30T18:42:24Z","topics":[],"owner":{"login":"Dabbleam","html_url":"https://github.com/Dabbleam"},"clone_url":"https://github.com/Dabbleam/CVE-2026-31431-mitigation.git","has_code":true,"age_days":56},{"id":1225203827,"name":"CVE-2026-31431","full_name":"desultory/CVE-2026-31431","html_url":"https://github.com/desultory/CVE-2026-31431","description":"","stargazers_count":7,"forks_count":0,"language":"Python","updated_at":"2026-05-12T02:46:05Z","pushed_at":"2026-04-30T04:44:52Z","created_at":"2026-04-30T03:42:24Z","topics":[],"owner":{"login":"desultory","html_url":"https://github.com/desultory"},"clone_url":"https://github.com/desultory/CVE-2026-31431.git","has_code":true,"age_days":56},{"id":1226415858,"name":"block-copyfail","full_name":"atgreen/block-copyfail","html_url":"https://github.com/atgreen/block-copyfail","description":"BPF LSM blocker for CVE-2026-31431 (Copy Fail) — blocks authencesn AF_ALG binds at runtime without rebooting","stargazers_count":7,"forks_count":3,"language":"Common Lisp","updated_at":"2026-05-10T13:25:01Z","pushed_at":"2026-05-07T00:28:50Z","created_at":"2026-05-01T11:17:59Z","topics":[],"owner":{"login":"atgreen","html_url":"https://github.com/atgreen"},"clone_url":"https://github.com/atgreen/block-copyfail.git","has_code":true,"age_days":55},{"id":1226789719,"name":"CopyFail-Exploits-CVE-2026-31431","full_name":"Shotafry/CopyFail-Exploits-CVE-2026-31431","html_url":"https://github.com/Shotafry/CopyFail-Exploits-CVE-2026-31431","description":"","stargazers_count":7,"forks_count":0,"language":"Rust","updated_at":"2026-06-14T08:07:27Z","pushed_at":"2026-05-01T22:34:31Z","created_at":"2026-05-01T20:49:56Z","topics":[],"owner":{"login":"Shotafry","html_url":"https://github.com/Shotafry"},"clone_url":"https://github.com/Shotafry/CopyFail-Exploits-CVE-2026-31431.git","has_code":true,"age_days":54},{"id":1226376399,"name":"CVE-2026-31431","full_name":"AliHzSec/CVE-2026-31431","html_url":"https://github.com/AliHzSec/CVE-2026-31431","description":"CVE-2026-31431 Linux Local Privilege Escalation (LPE) Proof of Concept exploit","stargazers_count":7,"forks_count":4,"language":"Python","updated_at":"2026-06-21T01:17:51Z","pushed_at":"2026-05-01T10:29:02Z","created_at":"2026-05-01T10:12:37Z","topics":["cve","cve-2026-31431","cve-2026-31431-lpe-exploit","cve-2026-31431-poc","ethical-hacking","exploit","kernel-exploit","kernel-exploitation","linux-exploits","linux-lpe-cve-2026-31431","local-privilege-escalation","lpe","offensive-security","poc","privilege-escalation","proof-of-concept","security","vulnerability"],"owner":{"login":"AliHzSec","html_url":"https://github.com/AliHzSec"},"clone_url":"https://github.com/AliHzSec/CVE-2026-31431.git","has_code":true,"age_days":55},{"id":1225142784,"name":"CVE-2026-31431-C","full_name":"b5null/CVE-2026-31431-C","html_url":"https://github.com/b5null/CVE-2026-31431-C","description":"","stargazers_count":6,"forks_count":4,"language":"C","updated_at":"2026-05-22T18:31:13Z","pushed_at":"2026-04-30T01:53:49Z","created_at":"2026-04-30T01:47:40Z","topics":[],"owner":{"login":"b5null","html_url":"https://github.com/b5null"},"clone_url":"https://github.com/b5null/CVE-2026-31431-C.git","has_code":true,"age_days":56},{"id":1242068559,"name":"CVE-2026-31431-Copy-Fail","full_name":"4xura/CVE-2026-31431-Copy-Fail","html_url":"https://github.com/4xura/CVE-2026-31431-Copy-Fail","description":"Research artifacts, PoC scripts, and lab assets for the Copy Fail Linux local privilege escalation writeup on https://4xura.com/binex/kernel/copy-fail","stargazers_count":6,"forks_count":0,"language":"C","updated_at":"2026-05-21T06:18:02Z","pushed_at":"2026-05-19T09:22:29Z","created_at":"2026-05-18T05:23:15Z","topics":[],"owner":{"login":"4xura","html_url":"https://github.com/4xura"},"clone_url":"https://github.com/4xura/CVE-2026-31431-Copy-Fail.git","has_code":true,"age_days":38},{"id":1232934547,"name":"ansible-mitigate-copyfail-dirtyfrag","full_name":"infiniroot/ansible-mitigate-copyfail-dirtyfrag","html_url":"https://github.com/infiniroot/ansible-mitigate-copyfail-dirtyfrag","description":"Simple Ansible Playbook to mitigate against CopyFail (CVE-2026-31431) and DirtyFrag (CVE-2026-43284) vulnerabilities.","stargazers_count":6,"forks_count":0,"language":"","updated_at":"2026-05-14T11:46:41Z","pushed_at":"2026-05-14T11:46:15Z","created_at":"2026-05-08T12:26:13Z","topics":["ansible","copyfail","cve-2026-31431","cve-2026-43284","cve-2026-46300","dirtyfrag","fragnesia","linux-kernel","mitigation","vulnerability"],"owner":{"login":"infiniroot","html_url":"https://github.com/infiniroot"},"clone_url":"https://github.com/infiniroot/ansible-mitigate-copyfail-dirtyfrag.git","has_code":false,"age_days":48},{"id":1227190575,"name":"CVE-2026-31431-RCE-Exploit","full_name":"M4xSec/CVE-2026-31431-RCE-Exploit","html_url":"https://github.com/M4xSec/CVE-2026-31431-RCE-Exploit","description":"CVE-2026-31431 RCE Exploit. A critical Linux kernel LPE in the algif_aead crypto subsystem. Any unprivileged user can write 4 bytes into the page cache of any readable file and get root.","stargazers_count":6,"forks_count":2,"language":"Python","updated_at":"2026-06-21T01:18:05Z","pushed_at":"2026-05-02T11:00:13Z","created_at":"2026-05-02T10:37:47Z","topics":["cve-2026-31431","cve-2026-31431-lpe-exploit","cve-2026-31431-poc","exploit","linux-kernel","python","rce","reverse-shell"],"owner":{"login":"M4xSec","html_url":"https://github.com/M4xSec"},"clone_url":"https://github.com/M4xSec/CVE-2026-31431-RCE-Exploit.git","has_code":true,"age_days":54},{"id":1225638895,"name":"CVE-2026-31431","full_name":"wesmar/CVE-2026-31431","html_url":"https://github.com/wesmar/CVE-2026-31431","description":"CVE-2026-31431 is a bug in the handling of scatter-gather I/O operations and page cache references in the Linux kernel cryptographic subsystem — specifically in the AF_ALG socket implementation for AEAD algorithms (crypto/af_alg.c, crypto/aead.c).","stargazers_count":5,"forks_count":0,"language":"C","updated_at":"2026-06-04T16:55:46Z","pushed_at":"2026-04-30T14:46:40Z","created_at":"2026-04-30T13:38:34Z","topics":[],"owner":{"login":"wesmar","html_url":"https://github.com/wesmar"},"clone_url":"https://github.com/wesmar/CVE-2026-31431.git","has_code":true,"age_days":56},{"id":1225252358,"name":"copy-fail-CVE-2026-31431-C","full_name":"bigwario/copy-fail-CVE-2026-31431-C","html_url":"https://github.com/bigwario/copy-fail-CVE-2026-31431-C","description":"","stargazers_count":4,"forks_count":1,"language":"C","updated_at":"2026-05-06T08:27:31Z","pushed_at":"2026-05-06T08:27:27Z","created_at":"2026-04-30T05:14:50Z","topics":[],"owner":{"login":"bigwario","html_url":"https://github.com/bigwario"},"clone_url":"https://github.com/bigwario/copy-fail-CVE-2026-31431-C.git","has_code":true,"age_days":56},{"id":1225772536,"name":"CVE-2026-31431-rs","full_name":"Xerxes-2/CVE-2026-31431-rs","html_url":"https://github.com/Xerxes-2/CVE-2026-31431-rs","description":"","stargazers_count":4,"forks_count":1,"language":"Rust","updated_at":"2026-05-01T09:09:28Z","pushed_at":"2026-05-01T09:09:24Z","created_at":"2026-04-30T16:13:19Z","topics":[],"owner":{"login":"Xerxes-2","html_url":"https://github.com/Xerxes-2"},"clone_url":"https://github.com/Xerxes-2/CVE-2026-31431-rs.git","has_code":true,"age_days":56},{"id":1225294574,"name":"CVE-2026-31431-exploit","full_name":"wuwu001/CVE-2026-31431-exploit","html_url":"https://github.com/wuwu001/CVE-2026-31431-exploit","description":"Linux local privilege escalation exploits for CVE-2026-31431, including raw and recoverable workflows.","stargazers_count":4,"forks_count":0,"language":"C","updated_at":"2026-05-01T09:00:24Z","pushed_at":"2026-04-30T12:34:55Z","created_at":"2026-04-30T06:22:46Z","topics":[],"owner":{"login":"wuwu001","html_url":"https://github.com/wuwu001"},"clone_url":"https://github.com/wuwu001/CVE-2026-31431-exploit.git","has_code":true,"age_days":56},{"id":1228525111,"name":"copy-fail-checker","full_name":"samanzamani/copy-fail-checker","html_url":"https://github.com/samanzamani/copy-fail-checker","description":"Read-only Bash checker for the Copy Fail Linux kernel vulnerability (CVE-2026-31431)","stargazers_count":4,"forks_count":1,"language":"Shell","updated_at":"2026-05-23T06:05:44Z","pushed_at":"2026-05-23T06:07:32Z","created_at":"2026-05-04T05:30:03Z","topics":[],"owner":{"login":"samanzamani","html_url":"https://github.com/samanzamani"},"clone_url":"https://github.com/samanzamani/copy-fail-checker.git","has_code":true,"age_days":52},{"id":1227166041,"name":"CVE-2026-31431-mitigation-suite","full_name":"mahdi13830510/CVE-2026-31431-mitigation-suite","html_url":"https://github.com/mahdi13830510/CVE-2026-31431-mitigation-suite","description":"A defensive security toolkit specifically engineered to detect and mitigate CVE-2026-31431 and similar nftables / AF_ALG vulnerabilities. Includes non-destructive behavioral probes, module blacklisting automation, and Auditd/eBPF rules for real-time threat detection.","stargazers_count":4,"forks_count":0,"language":"Python","updated_at":"2026-05-02T12:50:02Z","pushed_at":"2026-05-02T10:12:07Z","created_at":"2026-05-02T09:52:46Z","topics":["ansible","audit","cve","cve-2026-31431","ebpf","exploit","linux-kernel","tookit","vulnerability"],"owner":{"login":"mahdi13830510","html_url":"https://github.com/mahdi13830510"},"clone_url":"https://github.com/mahdi13830510/CVE-2026-31431-mitigation-suite.git","has_code":true,"age_days":54},{"id":1226606029,"name":"CVE-2026-31431-Exploit","full_name":"ben-slates/CVE-2026-31431-Exploit","html_url":"https://github.com/ben-slates/CVE-2026-31431-Exploit","description":"","stargazers_count":4,"forks_count":0,"language":"Python","updated_at":"2026-05-16T09:17:21Z","pushed_at":"2026-05-01T16:09:42Z","created_at":"2026-05-01T16:01:03Z","topics":[],"owner":{"login":"ben-slates","html_url":"https://github.com/ben-slates"},"clone_url":"https://github.com/ben-slates/CVE-2026-31431-Exploit.git","has_code":true,"age_days":55},{"id":1226435950,"name":"Linux-CopyFail-C-Version-CVE-2026-31431","full_name":"beatbeast007/Linux-CopyFail-C-Version-CVE-2026-31431","html_url":"https://github.com/beatbeast007/Linux-CopyFail-C-Version-CVE-2026-31431","description":"Clean C version of Copy Fail (CVE-2026-31431) - Linux Local Privilege Escalation exploit using AF_ALG + authencesn + splice primitive.  Overwrites the page cache of /usr/bin/su with a tiny setuid shellcode to gain root privileges.  Educational proof-of-concept only.","stargazers_count":4,"forks_count":0,"language":"C","updated_at":"2026-05-03T03:37:31Z","pushed_at":"2026-05-01T14:07:35Z","created_at":"2026-05-01T11:51:55Z","topics":[],"owner":{"login":"beatbeast007","html_url":"https://github.com/beatbeast007"},"clone_url":"https://github.com/beatbeast007/Linux-CopyFail-C-Version-CVE-2026-31431.git","has_code":true,"age_days":55},{"id":1230764728,"name":"CVE-2026-31431-Linux-Copy-Fail","full_name":"Dullpurple-sloop726/CVE-2026-31431-Linux-Copy-Fail","html_url":"https://github.com/Dullpurple-sloop726/CVE-2026-31431-Linux-Copy-Fail","description":"Exploit CVE-2026-31431 on Linux using a Rust implementation to achieve local privilege escalation via an arbitrary page cache write primitive.","stargazers_count":3,"forks_count":0,"language":"Rust","updated_at":"2026-06-25T18:55:34Z","pushed_at":"2026-06-25T18:55:30Z","created_at":"2026-05-06T09:49:14Z","topics":["af-alg","container-security","copy-fail","cve-2026-31431","educational","explotation","kernel-exploit","linux-vulnerability","nolibc","page-cache","poc","proof-of-concept","vulnerability","x86-64","yara"],"owner":{"login":"Dullpurple-sloop726","html_url":"https://github.com/Dullpurple-sloop726"},"clone_url":"https://github.com/Dullpurple-sloop726/CVE-2026-31431-Linux-Copy-Fail.git","has_code":true,"age_days":50},{"id":1225461753,"name":"CVE-2026-31431-exp","full_name":"lonelyor/CVE-2026-31431-exp","html_url":"https://github.com/lonelyor/CVE-2026-31431-exp","description":"根据py版本，升级成了c和rust版本，带加密混淆、0依赖（仅技术学习与分享）","stargazers_count":3,"forks_count":1,"language":"Rust","updated_at":"2026-06-22T04:02:26Z","pushed_at":"2026-05-11T06:34:14Z","created_at":"2026-04-30T09:52:21Z","topics":[],"owner":{"login":"lonelyor","html_url":"https://github.com/lonelyor"},"clone_url":"https://github.com/lonelyor/CVE-2026-31431-exp.git","has_code":true,"age_days":56},{"id":1225588136,"name":"copyfail-rs","full_name":"Boos4721/copyfail-rs","html_url":"https://github.com/Boos4721/copyfail-rs","description":"CVE-2026-31431","stargazers_count":3,"forks_count":0,"language":"Rust","updated_at":"2026-05-01T12:06:10Z","pushed_at":"2026-05-01T01:32:42Z","created_at":"2026-04-30T12:39:26Z","topics":[],"owner":{"login":"Boos4721","html_url":"https://github.com/Boos4721"},"clone_url":"https://github.com/Boos4721/copyfail-rs.git","has_code":true,"age_days":56},{"id":1225932886,"name":"cve-2026-31431-poc","full_name":"yuspring/cve-2026-31431-poc","html_url":"https://github.com/yuspring/cve-2026-31431-poc","description":"","stargazers_count":3,"forks_count":3,"language":"Python","updated_at":"2026-06-05T11:04:52Z","pushed_at":"2026-05-01T00:07:59Z","created_at":"2026-04-30T19:52:27Z","topics":[],"owner":{"login":"yuspring","html_url":"https://github.com/yuspring"},"clone_url":"https://github.com/yuspring/cve-2026-31431-poc.git","has_code":true,"age_days":56},{"id":1225616932,"name":"CVE-2026-31431-Patch","full_name":"XsanFlip/CVE-2026-31431-Patch","html_url":"https://github.com/XsanFlip/CVE-2026-31431-Patch","description":"CVE-2026-31431-Patch","stargazers_count":3,"forks_count":1,"language":"Shell","updated_at":"2026-04-30T23:04:22Z","pushed_at":"2026-04-30T13:20:18Z","created_at":"2026-04-30T13:13:48Z","topics":[],"owner":{"login":"XsanFlip","html_url":"https://github.com/XsanFlip"},"clone_url":"https://github.com/XsanFlip/CVE-2026-31431-Patch.git","has_code":true,"age_days":56},{"id":1225227927,"name":"copy-fail-CVE-2026-31431-C","full_name":"novysodope/copy-fail-CVE-2026-31431-C","html_url":"https://github.com/novysodope/copy-fail-CVE-2026-31431-C","description":"CVE-2026-31431 - standalone binary exploit (no Python required)","stargazers_count":3,"forks_count":0,"language":"C","updated_at":"2026-06-18T02:57:16Z","pushed_at":"2026-04-30T05:20:24Z","created_at":"2026-04-30T04:29:21Z","topics":[],"owner":{"login":"novysodope","html_url":"https://github.com/novysodope"},"clone_url":"https://github.com/novysodope/copy-fail-CVE-2026-31431-C.git","has_code":true,"age_days":56},{"id":1225143519,"name":"Copy-Fail-CVE-2026-31431-Statically-PoC","full_name":"Percivalll/Copy-Fail-CVE-2026-31431-Statically-PoC","html_url":"https://github.com/Percivalll/Copy-Fail-CVE-2026-31431-Statically-PoC","description":"","stargazers_count":3,"forks_count":1,"language":"Go","updated_at":"2026-06-18T07:46:05Z","pushed_at":"2026-04-30T03:51:00Z","created_at":"2026-04-30T01:49:01Z","topics":[],"owner":{"login":"Percivalll","html_url":"https://github.com/Percivalll"},"clone_url":"https://github.com/Percivalll/Copy-Fail-CVE-2026-31431-Statically-PoC.git","has_code":true,"age_days":56},{"id":1241790762,"name":"asm-copyfail","full_name":"Pithase/asm-copyfail","html_url":"https://github.com/Pithase/asm-copyfail","description":"CVE-2026-31431 (Copy Fail) — Análisis y desarrollo en Ensamblador x86-64 | Analysis and development in x86-64 Assembly","stargazers_count":3,"forks_count":0,"language":"","updated_at":"2026-06-04T15:10:46Z","pushed_at":"2026-05-17T21:06:23Z","created_at":"2026-05-17T20:23:09Z","topics":[],"owner":{"login":"Pithase","html_url":"https://github.com/Pithase"},"clone_url":"https://github.com/Pithase/asm-copyfail.git","has_code":false,"age_days":38},{"id":1237516631,"name":"Copyfail-sh","full_name":"Koshmare-Blossom/Copyfail-sh","html_url":"https://github.com/Koshmare-Blossom/Copyfail-sh","description":"A Bash implementation of copyfail (CVE-2026-31431)","stargazers_count":3,"forks_count":1,"language":"Shell","updated_at":"2026-06-01T15:12:56Z","pushed_at":"2026-05-14T11:42:10Z","created_at":"2026-05-13T08:55:17Z","topics":[],"owner":{"login":"Koshmare-Blossom","html_url":"https://github.com/Koshmare-Blossom"},"clone_url":"https://github.com/Koshmare-Blossom/Copyfail-sh.git","has_code":true,"age_days":43},{"id":1233944093,"name":"CVE-2026-31431-check","full_name":"haydenjames/CVE-2026-31431-check","html_url":"https://github.com/haydenjames/CVE-2026-31431-check","description":"Read-only checker for CVE-2026-31431 (algif_aead local root). Reports kernel/module state and suggests mitigations.","stargazers_count":3,"forks_count":0,"language":"Shell","updated_at":"2026-06-05T15:57:11Z","pushed_at":"2026-05-12T15:20:29Z","created_at":"2026-05-09T14:47:57Z","topics":[],"owner":{"login":"haydenjames","html_url":"https://github.com/haydenjames"},"clone_url":"https://github.com/haydenjames/CVE-2026-31431-check.git","has_code":true,"age_days":47},{"id":1232391663,"name":"CVE-2026-31431","full_name":"guiimoraes/CVE-2026-31431","html_url":"https://github.com/guiimoraes/CVE-2026-31431","description":"One-liner Python LPE for CVE-2026-31431 (CopyFail2). No compilation, no dependencies beyond Python+OpenSSL. Just curl | python3 and get root on Linux 6.5+.","stargazers_count":3,"forks_count":0,"language":"Python","updated_at":"2026-06-06T00:18:41Z","pushed_at":"2026-05-08T00:01:22Z","created_at":"2026-05-07T22:14:36Z","topics":[],"owner":{"login":"guiimoraes","html_url":"https://github.com/guiimoraes"},"clone_url":"https://github.com/guiimoraes/CVE-2026-31431.git","has_code":true,"age_days":48},{"id":1229008425,"name":"CVE-2026-31431","full_name":"AdityaBhatt3010/CVE-2026-31431","html_url":"https://github.com/AdityaBhatt3010/CVE-2026-31431","description":"Linux Privilege Escalation | AF_ALG Crypto Abuse → Exploiting AEAD socket handling (CVE-2026-31431) to gain root via kernel-level manipulation","stargazers_count":3,"forks_count":0,"language":"Python","updated_at":"2026-05-08T07:17:11Z","pushed_at":"2026-05-06T07:36:25Z","created_at":"2026-05-04T15:52:47Z","topics":[],"owner":{"login":"AdityaBhatt3010","html_url":"https://github.com/AdityaBhatt3010"},"clone_url":"https://github.com/AdityaBhatt3010/CVE-2026-31431.git","has_code":true,"age_days":52},{"id":1227316319,"name":"CVE-2026-31431-PoC","full_name":"Sl4cK0TH/CVE-2026-31431-PoC","html_url":"https://github.com/Sl4cK0TH/CVE-2026-31431-PoC","description":"","stargazers_count":3,"forks_count":1,"language":"Python","updated_at":"2026-05-07T04:36:18Z","pushed_at":"2026-05-02T15:10:46Z","created_at":"2026-05-02T14:12:06Z","topics":[],"owner":{"login":"Sl4cK0TH","html_url":"https://github.com/Sl4cK0TH"},"clone_url":"https://github.com/Sl4cK0TH/CVE-2026-31431-PoC.git","has_code":true,"age_days":54},{"id":1227305043,"name":"autorootlinux","full_name":"Huchangzhi/autorootlinux","html_url":"https://github.com/Huchangzhi/autorootlinux","description":"基于CVE-2026-31431的自动root脚本","stargazers_count":3,"forks_count":0,"language":"Shell","updated_at":"2026-05-26T14:37:52Z","pushed_at":"2026-05-02T14:58:49Z","created_at":"2026-05-02T13:53:49Z","topics":[],"owner":{"login":"Huchangzhi","html_url":"https://github.com/Huchangzhi"},"clone_url":"https://github.com/Huchangzhi/autorootlinux.git","has_code":true,"age_days":54},{"id":1226528504,"name":"CVE-2026-31431","full_name":"povzayd/CVE-2026-31431","html_url":"https://github.com/povzayd/CVE-2026-31431","description":"Python exploit demonstrating an in‑memory AF_ALG‑based kernel vulnerability on certain Linux kernels. ","stargazers_count":3,"forks_count":0,"language":"Python","updated_at":"2026-05-05T17:29:34Z","pushed_at":"2026-05-01T14:16:41Z","created_at":"2026-05-01T14:14:17Z","topics":[],"owner":{"login":"povzayd","html_url":"https://github.com/povzayd"},"clone_url":"https://github.com/povzayd/CVE-2026-31431.git","has_code":true,"age_days":55},{"id":1226478063,"name":"copy_fail","full_name":"SpenserCai/copy_fail","html_url":"https://github.com/SpenserCai/copy_fail","description":"CVE-2026-31431 (Copy Fail) — Rust exploit PoC + eBPF runtime defense. Blocks Linux kernel AF_ALG page-cache LPE without rebooting (LSM/kprobe dual-mode).","stargazers_count":3,"forks_count":0,"language":"Rust","updated_at":"2026-05-06T09:29:19Z","pushed_at":"2026-05-01T14:07:09Z","created_at":"2026-05-01T12:59:54Z","topics":["af-alg","copy-fail","cve-2026-31431","ebpf","ebpf-lsm","exploit","kernel-security","kprobe","linux-kernel","lpe","mitigation","page-cache","privilege-escalation","rust","security"],"owner":{"login":"SpenserCai","html_url":"https://github.com/SpenserCai"},"clone_url":"https://github.com/SpenserCai/copy_fail.git","has_code":true,"age_days":55},{"id":1226218166,"name":"copy-fail-python","full_name":"cyber-joker/copy-fail-python","html_url":"https://github.com/cyber-joker/copy-fail-python","description":"Python implementation of copyfail (CVE-2026-31431)","stargazers_count":3,"forks_count":0,"language":"Python","updated_at":"2026-05-27T17:36:35Z","pushed_at":"2026-05-01T05:44:12Z","created_at":"2026-05-01T05:37:29Z","topics":[],"owner":{"login":"cyber-joker","html_url":"https://github.com/cyber-joker"},"clone_url":"https://github.com/cyber-joker/copy-fail-python.git","has_code":true,"age_days":55},{"id":1226166399,"name":"cve-2026-31431-ansible","full_name":"aestechno/cve-2026-31431-ansible","html_url":"https://github.com/aestechno/cve-2026-31431-ansible","description":"cve-2026-31431 fix with ansible","stargazers_count":3,"forks_count":0,"language":"Shell","updated_at":"2026-05-02T12:16:40Z","pushed_at":"2026-05-01T03:54:02Z","created_at":"2026-05-01T03:43:03Z","topics":[],"owner":{"login":"aestechno","html_url":"https://github.com/aestechno"},"clone_url":"https://github.com/aestechno/cve-2026-31431-ansible.git","has_code":true,"age_days":55},{"id":1228239811,"name":"copyfail-guard","full_name":"juliosuas/copyfail-guard","html_url":"https://github.com/juliosuas/copyfail-guard","description":"Fast, auditable Linux mitigation for CVE-2026-31431 Copy Fail: algif_aead block, verification, and AF_ALG seccomp hardening.","stargazers_count":2,"forks_count":0,"language":"Shell","updated_at":"2026-06-24T06:17:40Z","pushed_at":"2026-06-24T06:17:37Z","created_at":"2026-05-03T19:22:37Z","topics":["af-alg","container-security","copy-fail","cve","cve-2026-31431","devsecops","docker-security","incident-response","kernel-hardening","kubernetes-security","linux","linux-kernel","seccomp","security","sysadmin"],"owner":{"login":"juliosuas","html_url":"https://github.com/juliosuas"},"clone_url":"https://github.com/juliosuas/copyfail-guard.git","has_code":true,"age_days":53},{"id":1233207148,"name":"vcheck","full_name":"krisiasty/vcheck","html_url":"https://github.com/krisiasty/vcheck","description":"Vulnerability detection and mitigation tool for Copy Fail and Dirty Frag bugs (CVE-2026-31431, CVE-2026-43284, CVE-2026-43500)","stargazers_count":2,"forks_count":0,"language":"Go","updated_at":"2026-06-22T08:51:13Z","pushed_at":"2026-06-22T08:51:16Z","created_at":"2026-05-08T17:54:04Z","topics":["audit","cve","fix","kernel-modules","linux","mitigation","security","security-audit","security-tools","ssh","vulnerability"],"owner":{"login":"krisiasty","html_url":"https://github.com/krisiasty"},"clone_url":"https://github.com/krisiasty/vcheck.git","has_code":true,"age_days":48},{"id":1225193020,"name":"Detections-CVE-2026-31431","full_name":"insomnisec/Detections-CVE-2026-31431","html_url":"https://github.com/insomnisec/Detections-CVE-2026-31431","description":"Detection rules for CVE-2026-31431 Linux LPE Vulnerability - Credit: (Copy Fail) https://copy.fail","stargazers_count":2,"forks_count":0,"language":"","updated_at":"2026-05-18T00:15:48Z","pushed_at":"2026-05-18T00:15:44Z","created_at":"2026-04-30T03:22:01Z","topics":[],"owner":{"login":"insomnisec","html_url":"https://github.com/insomnisec"},"clone_url":"https://github.com/insomnisec/Detections-CVE-2026-31431.git","has_code":false,"age_days":56},{"id":1225342137,"name":"RootRemover","full_name":"Aurillium/RootRemover","html_url":"https://github.com/Aurillium/RootRemover","description":"Temporarily removes the root password using CVE-2026-31431","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-05-22T09:07:08Z","pushed_at":"2026-05-17T11:23:11Z","created_at":"2026-04-30T07:20:26Z","topics":[],"owner":{"login":"Aurillium","html_url":"https://github.com/Aurillium"},"clone_url":"https://github.com/Aurillium/RootRemover.git","has_code":true,"age_days":56},{"id":1225929597,"name":"harden-docker-seccomp","full_name":"devstuff/harden-docker-seccomp","html_url":"https://github.com/devstuff/harden-docker-seccomp","description":"Docker mitigation for CVE-2026-31431 ('Copy Fail'). Includes Kubernetes templates as well.","stargazers_count":2,"forks_count":1,"language":"Python","updated_at":"2026-05-03T21:17:54Z","pushed_at":"2026-05-01T18:11:26Z","created_at":"2026-04-30T19:47:18Z","topics":[],"owner":{"login":"devstuff","html_url":"https://github.com/devstuff"},"clone_url":"https://github.com/devstuff/harden-docker-seccomp.git","has_code":true,"age_days":56},{"id":1225524211,"name":"Copy-Fail_Detect_and_mitigate_CVE-2026-31431","full_name":"Webhosting4U/Copy-Fail_Detect_and_mitigate_CVE-2026-31431","html_url":"https://github.com/Webhosting4U/Copy-Fail_Detect_and_mitigate_CVE-2026-31431","description":"Detect and mitigate CVE-2026-31431","stargazers_count":2,"forks_count":0,"language":"Shell","updated_at":"2026-05-09T08:50:29Z","pushed_at":"2026-05-01T16:08:45Z","created_at":"2026-04-30T11:16:17Z","topics":[],"owner":{"login":"Webhosting4U","html_url":"https://github.com/Webhosting4U"},"clone_url":"https://github.com/Webhosting4U/Copy-Fail_Detect_and_mitigate_CVE-2026-31431.git","has_code":true,"age_days":56},{"id":1225754609,"name":"CVE-2026-31431-Copy-Fail","full_name":"sec17br/CVE-2026-31431-Copy-Fail","html_url":"https://github.com/sec17br/CVE-2026-31431-Copy-Fail","description":"","stargazers_count":2,"forks_count":1,"language":"Shell","updated_at":"2026-05-02T06:53:20Z","pushed_at":"2026-04-30T17:02:19Z","created_at":"2026-04-30T15:50:45Z","topics":[],"owner":{"login":"sec17br","html_url":"https://github.com/sec17br"},"clone_url":"https://github.com/sec17br/CVE-2026-31431-Copy-Fail.git","has_code":true,"age_days":56},{"id":1225711769,"name":"Paranoid-Copy-Fail-CVE-2026-31431","full_name":"scriptzteam/Paranoid-Copy-Fail-CVE-2026-31431","html_url":"https://github.com/scriptzteam/Paranoid-Copy-Fail-CVE-2026-31431","description":"Paranoid disable whole AF_ALG + algif_* modules - Copy Fail (CVE-2026-31431)","stargazers_count":2,"forks_count":1,"language":"Shell","updated_at":"2026-05-02T10:20:15Z","pushed_at":"2026-04-30T15:03:43Z","created_at":"2026-04-30T14:58:49Z","topics":[],"owner":{"login":"scriptzteam","html_url":"https://github.com/scriptzteam"},"clone_url":"https://github.com/scriptzteam/Paranoid-Copy-Fail-CVE-2026-31431.git","has_code":true,"age_days":56},{"id":1225478530,"name":"CVE-2026-31431","full_name":"0xBlackash/CVE-2026-31431","html_url":"https://github.com/0xBlackash/CVE-2026-31431","description":"CVE-2026-31431","stargazers_count":2,"forks_count":1,"language":"Shell","updated_at":"2026-05-06T15:54:24Z","pushed_at":"2026-04-30T10:24:44Z","created_at":"2026-04-30T10:14:18Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-31431.git","has_code":true,"age_days":56},{"id":1225369085,"name":"CVE-2026-31431","full_name":"pascal-gujer/CVE-2026-31431","html_url":"https://github.com/pascal-gujer/CVE-2026-31431","description":"","stargazers_count":2,"forks_count":1,"language":"Python","updated_at":"2026-05-12T19:16:25Z","pushed_at":"2026-04-30T08:04:03Z","created_at":"2026-04-30T07:55:41Z","topics":[],"owner":{"login":"pascal-gujer","html_url":"https://github.com/pascal-gujer"},"clone_url":"https://github.com/pascal-gujer/CVE-2026-31431.git","has_code":true,"age_days":56},{"id":1225179698,"name":"CVE-2026-31431","full_name":"luotian2/CVE-2026-31431","html_url":"https://github.com/luotian2/CVE-2026-31431","description":"","stargazers_count":2,"forks_count":2,"language":"C","updated_at":"2026-05-19T13:20:03Z","pushed_at":"2026-04-30T03:13:25Z","created_at":"2026-04-30T02:57:05Z","topics":[],"owner":{"login":"luotian2","html_url":"https://github.com/luotian2"},"clone_url":"https://github.com/luotian2/CVE-2026-31431.git","has_code":true,"age_days":56},{"id":1224986082,"name":"CVE-2026-31431","full_name":"Alfredooe/CVE-2026-31431","html_url":"https://github.com/Alfredooe/CVE-2026-31431","description":"Golang implementation of CopyFail CVE-2026-31431","stargazers_count":2,"forks_count":1,"language":"Go","updated_at":"2026-05-16T14:52:33Z","pushed_at":"2026-04-29T21:02:59Z","created_at":"2026-04-29T20:41:01Z","topics":[],"owner":{"login":"Alfredooe","html_url":"https://github.com/Alfredooe"},"clone_url":"https://github.com/Alfredooe/CVE-2026-31431.git","has_code":true,"age_days":56},{"id":1248333828,"name":"copy_fail","full_name":"Iamliuxiaozhen/copy_fail","html_url":"https://github.com/Iamliuxiaozhen/copy_fail","description":"copy_fail:CVE-2026-31431","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-05-26T12:56:14Z","pushed_at":"2026-05-26T12:56:09Z","created_at":"2026-05-24T14:04:08Z","topics":["ai-security","cve-2026-31431","exploit","linux-kernel","privilege-escalation","privilege-escalation-exploits","security-research","theoriz","vulnerability","xint-code"],"owner":{"login":"Iamliuxiaozhen","html_url":"https://github.com/Iamliuxiaozhen"},"clone_url":"https://github.com/Iamliuxiaozhen/copy_fail.git","has_code":true,"age_days":32},{"id":1246403396,"name":"copyfail-safe-check","full_name":"waltrone1/copyfail-safe-check","html_url":"https://github.com/waltrone1/copyfail-safe-check","description":"A safe read-only Linux check for CVE-2026-31431 / Copy Fail without running exploit code.","stargazers_count":2,"forks_count":0,"language":"Shell","updated_at":"2026-05-22T15:31:42Z","pushed_at":"2026-05-22T08:02:39Z","created_at":"2026-05-22T06:55:13Z","topics":[],"owner":{"login":"waltrone1","html_url":"https://github.com/waltrone1"},"clone_url":"https://github.com/waltrone1/copyfail-safe-check.git","has_code":true,"age_days":34},{"id":1240822761,"name":"CVE-2026-31431-Metasploit-exploit","full_name":"adityasingh108/CVE-2026-31431-Metasploit-exploit","html_url":"https://github.com/adityasingh108/CVE-2026-31431-Metasploit-exploit","description":"Automated Metasploit post-exploitation module for CVE-2026-31431 (\"Copy Fail\"). Weaponizes a deterministic logic flaw in the Linux kernel AF_ALG subsystem to achieve local privilege escalation (LPE) to root by safely corrupting a setuid binary directly in the shared Page Cache (RAM) without modifying files on disk","stargazers_count":2,"forks_count":0,"language":"Ruby","updated_at":"2026-05-18T16:51:32Z","pushed_at":"2026-05-17T10:55:32Z","created_at":"2026-05-16T16:02:14Z","topics":[],"owner":{"login":"adityasingh108","html_url":"https://github.com/adityasingh108"},"clone_url":"https://github.com/adityasingh108/CVE-2026-31431-Metasploit-exploit.git","has_code":true,"age_days":40},{"id":1226638408,"name":"copyfail-deconstructed","full_name":"bootsareme/copyfail-deconstructed","html_url":"https://github.com/bootsareme/copyfail-deconstructed","description":"Easy-to-understand version of CVE-2026-31431","stargazers_count":2,"forks_count":1,"language":"C","updated_at":"2026-05-14T14:21:00Z","pushed_at":"2026-05-14T14:20:54Z","created_at":"2026-05-01T16:48:03Z","topics":[],"owner":{"login":"bootsareme","html_url":"https://github.com/bootsareme"},"clone_url":"https://github.com/bootsareme/copyfail-deconstructed.git","has_code":true,"age_days":55},{"id":1226470118,"name":"CVE-2026-31431","full_name":"rvzsec/CVE-2026-31431","html_url":"https://github.com/rvzsec/CVE-2026-31431","description":"CVE-2026-31431 - Copy Fail | Linux LPE via authencesn page cache write. Unprivileged user to root on most distros since 2017. PoC in C and Python.","stargazers_count":2,"forks_count":0,"language":"Shell","updated_at":"2026-05-09T09:22:11Z","pushed_at":"2026-05-08T12:50:16Z","created_at":"2026-05-01T12:47:26Z","topics":["copyfail","cve-2026-31431"],"owner":{"login":"rvzsec","html_url":"https://github.com/rvzsec"},"clone_url":"https://github.com/rvzsec/CVE-2026-31431.git","has_code":true,"age_days":55},{"id":1227157867,"name":"CVE-2026-31431-copyfail-rs","full_name":"KanbaraAkihito/CVE-2026-31431-copyfail-rs","html_url":"https://github.com/KanbaraAkihito/CVE-2026-31431-copyfail-rs","description":"","stargazers_count":2,"forks_count":0,"language":"Rust","updated_at":"2026-05-06T04:19:36Z","pushed_at":"2026-05-06T04:19:32Z","created_at":"2026-05-02T09:37:50Z","topics":[],"owner":{"login":"KanbaraAkihito","html_url":"https://github.com/KanbaraAkihito"},"clone_url":"https://github.com/KanbaraAkihito/CVE-2026-31431-copyfail-rs.git","has_code":true,"age_days":54},{"id":1227435621,"name":"copyfail-guard","full_name":"ctzisme/copyfail-guard","html_url":"https://github.com/ctzisme/copyfail-guard","description":"Detect and mitigate CVE-2026-31431 (Copy Fail) on Linux systems.","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-05-15T10:23:34Z","pushed_at":"2026-05-05T13:50:55Z","created_at":"2026-05-02T17:20:10Z","topics":["copy-fail","cve","cve-2026-31431","kernel","linux","python","security"],"owner":{"login":"ctzisme","html_url":"https://github.com/ctzisme"},"clone_url":"https://github.com/ctzisme/copyfail-guard.git","has_code":true,"age_days":54},{"id":1229693439,"name":"copyfail-arm64","full_name":"sudoytang/copyfail-arm64","html_url":"https://github.com/sudoytang/copyfail-arm64","description":"Analysis and ARM64 reproduction of Copy Fail (CVE-2026-31431)","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-05-11T07:21:02Z","pushed_at":"2026-05-05T09:46:09Z","created_at":"2026-05-05T09:45:46Z","topics":[],"owner":{"login":"sudoytang","html_url":"https://github.com/sudoytang"},"clone_url":"https://github.com/sudoytang/copyfail-arm64.git","has_code":true,"age_days":51},{"id":1229354119,"name":"CVE-2026-31431-Copy-Fail","full_name":"rippsec/CVE-2026-31431-Copy-Fail","html_url":"https://github.com/rippsec/CVE-2026-31431-Copy-Fail","description":"","stargazers_count":2,"forks_count":0,"language":"Shell","updated_at":"2026-05-14T14:14:25Z","pushed_at":"2026-05-05T00:46:21Z","created_at":"2026-05-05T00:44:07Z","topics":[],"owner":{"login":"rippsec","html_url":"https://github.com/rippsec"},"clone_url":"https://github.com/rippsec/CVE-2026-31431-Copy-Fail.git","has_code":true,"age_days":51},{"id":1226766008,"name":"cfDr","full_name":"parmstro/cfDr","html_url":"https://github.com/parmstro/cfDr","description":"Ansible playbook for detecting and remediating CVE-2026-31431 (Copy Fail) - Linux kernel local privilege escalation vulnerability","stargazers_count":2,"forks_count":0,"language":"Jinja","updated_at":"2026-05-04T14:48:14Z","pushed_at":"2026-05-04T14:47:26Z","created_at":"2026-05-01T20:08:28Z","topics":[],"owner":{"login":"parmstro","html_url":"https://github.com/parmstro"},"clone_url":"https://github.com/parmstro/cfDr.git","has_code":true,"age_days":54},{"id":1228656915,"name":"RK35xx-CopyFail-Hotfix","full_name":"Qengineering/RK35xx-CopyFail-Hotfix","html_url":"https://github.com/Qengineering/RK35xx-CopyFail-Hotfix","description":"RK35xx CopyFail Hotfix: CVE-2026-31431 Patch for Ubuntu 24.04","stargazers_count":2,"forks_count":2,"language":"","updated_at":"2026-06-18T13:53:58Z","pushed_at":"2026-05-04T09:54:42Z","created_at":"2026-05-04T08:32:59Z","topics":["radxa-boards","ubuntu2404"],"owner":{"login":"Qengineering","html_url":"https://github.com/Qengineering"},"clone_url":"https://github.com/Qengineering/RK35xx-CopyFail-Hotfix.git","has_code":false,"age_days":52},{"id":1228620276,"name":"copy-fail-CVE-2026-31431-shell","full_name":"g1nt0n1x/copy-fail-CVE-2026-31431-shell","html_url":"https://github.com/g1nt0n1x/copy-fail-CVE-2026-31431-shell","description":"PoC shell exploit for CVE-2026-31431 (copy_fail) — Linux LPE via AF_ALG + splice page-cache overwrite. Single-shot, no race condition, kernel 4.9–6.18.","stargazers_count":2,"forks_count":0,"language":"Shell","updated_at":"2026-06-16T16:54:29Z","pushed_at":"2026-05-04T07:55:53Z","created_at":"2026-05-04T07:53:33Z","topics":[],"owner":{"login":"g1nt0n1x","html_url":"https://github.com/g1nt0n1x"},"clone_url":"https://github.com/g1nt0n1x/copy-fail-CVE-2026-31431-shell.git","has_code":true,"age_days":52},{"id":1228380419,"name":"CVE-2026-31431_CopyFail_LinuxKernel_LPE","full_name":"xn0kkx/CVE-2026-31431_CopyFail_LinuxKernel_LPE","html_url":"https://github.com/xn0kkx/CVE-2026-31431_CopyFail_LinuxKernel_LPE","description":"Educational rewrite of the Copy Fail PoC (CVE-2026-31431) — Linux kernel LPE via algif_aead in-place crypto + splice() page-cache write","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-05-12T13:03:02Z","pushed_at":"2026-05-04T02:02:52Z","created_at":"2026-05-04T00:28:27Z","topics":["copy-fail","cve-2026-31431","educational","exploit","linux-kernel","lpe","security-research"],"owner":{"login":"xn0kkx","html_url":"https://github.com/xn0kkx"},"clone_url":"https://github.com/xn0kkx/CVE-2026-31431_CopyFail_LinuxKernel_LPE.git","has_code":true,"age_days":52},{"id":1228322827,"name":"copyfail-check","full_name":"codesource/copyfail-check","html_url":"https://github.com/codesource/copyfail-check","description":"Shell script to detect CVE-2026-31431 (Copy Fail) exposure and mitigations on Linux systems: kernel check, module state, boot params, AF_ALG reachability, and distro patch status.","stargazers_count":2,"forks_count":0,"language":"Shell","updated_at":"2026-05-07T10:20:08Z","pushed_at":"2026-05-03T22:25:11Z","created_at":"2026-05-03T22:04:33Z","topics":[],"owner":{"login":"codesource","html_url":"https://github.com/codesource"},"clone_url":"https://github.com/codesource/copyfail-check.git","has_code":true,"age_days":52},{"id":1227100100,"name":"Copy-Fail-CVE-2026-31431-modernized","full_name":"EynaExp/Copy-Fail-CVE-2026-31431-modernized","html_url":"https://github.com/EynaExp/Copy-Fail-CVE-2026-31431-modernized","description":"A modernized version of Copy Fail PE","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-05-11T06:17:44Z","pushed_at":"2026-05-02T07:50:43Z","created_at":"2026-05-02T07:46:28Z","topics":[],"owner":{"login":"EynaExp","html_url":"https://github.com/EynaExp"},"clone_url":"https://github.com/EynaExp/Copy-Fail-CVE-2026-31431-modernized.git","has_code":true,"age_days":54},{"id":1226601265,"name":"CVE-2026-31431","full_name":"ExploitEoom/CVE-2026-31431","html_url":"https://github.com/ExploitEoom/CVE-2026-31431","description":"CopyFail","stargazers_count":2,"forks_count":1,"language":"","updated_at":"2026-05-01T19:03:33Z","pushed_at":"2026-05-01T17:36:04Z","created_at":"2026-05-01T15:54:09Z","topics":[],"owner":{"login":"ExploitEoom","html_url":"https://github.com/ExploitEoom"},"clone_url":"https://github.com/ExploitEoom/CVE-2026-31431.git","has_code":false,"age_days":55},{"id":1226407574,"name":"CVE-2026-31431-live-process-code-injection","full_name":"kvakirsanov/CVE-2026-31431-live-process-code-injection","html_url":"https://github.com/kvakirsanov/CVE-2026-31431-live-process-code-injection","description":"CVE-2026-31431 (Copy Fail) — Live Process Code Injection PoC","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-05-01T22:22:13Z","pushed_at":"2026-05-01T11:46:54Z","created_at":"2026-05-01T11:03:58Z","topics":[],"owner":{"login":"kvakirsanov","html_url":"https://github.com/kvakirsanov"},"clone_url":"https://github.com/kvakirsanov/CVE-2026-31431-live-process-code-injection.git","has_code":true,"age_days":55},{"id":1226286065,"name":"copyfail-mitigation","full_name":"mahradbt/copyfail-mitigation","html_url":"https://github.com/mahradbt/copyfail-mitigation","description":"Ansible playbooks to audit and mitigate CVE-2026-31431 (\"Copy Fail\"), a local privilege escalation vulnerability in the Linux kernel's `algif_aead` module affecting all major distributions since 2017.","stargazers_count":2,"forks_count":0,"language":"","updated_at":"2026-05-04T04:33:08Z","pushed_at":"2026-05-01T07:48:25Z","created_at":"2026-05-01T07:43:40Z","topics":[],"owner":{"login":"mahradbt","html_url":"https://github.com/mahradbt"},"clone_url":"https://github.com/mahradbt/copyfail-mitigation.git","has_code":false,"age_days":55},{"id":1225962329,"name":"copy-fail","full_name":"Juguitos/copy-fail","html_url":"https://github.com/Juguitos/copy-fail","description":"CVE-2026-31431 - Copy Fail PoC (Python 3.10+)","stargazers_count":1,"forks_count":1,"language":"Python","updated_at":"2026-06-25T18:36:55Z","pushed_at":"2026-05-09T17:48:00Z","created_at":"2026-04-30T20:38:16Z","topics":[],"owner":{"login":"Juguitos","html_url":"https://github.com/Juguitos"},"clone_url":"https://github.com/Juguitos/copy-fail.git","has_code":true,"age_days":55},{"id":1225560648,"name":"CVE-2026-31431","full_name":"mfloresdacunha/CVE-2026-31431","html_url":"https://github.com/mfloresdacunha/CVE-2026-31431","description":"PoC exploit for CVE-2026-31431 (Copy Fail) — algif_aead page-cache scratch-write LPE","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-05T07:44:56Z","pushed_at":"2026-05-04T10:26:13Z","created_at":"2026-04-30T12:04:39Z","topics":[],"owner":{"login":"mfloresdacunha","html_url":"https://github.com/mfloresdacunha"},"clone_url":"https://github.com/mfloresdacunha/CVE-2026-31431.git","has_code":true,"age_days":56},{"id":1225462558,"name":"Copy-Fail","full_name":"Phalanx-CCS/Copy-Fail","html_url":"https://github.com/Phalanx-CCS/Copy-Fail","description":"CVE-2026-31431 \"Copy Fail\" – Reachability Checker","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-06T08:21:34Z","pushed_at":"2026-05-04T08:27:57Z","created_at":"2026-04-30T09:53:25Z","topics":[],"owner":{"login":"Phalanx-CCS","html_url":"https://github.com/Phalanx-CCS"},"clone_url":"https://github.com/Phalanx-CCS/Copy-Fail.git","has_code":true,"age_days":56},{"id":1225993908,"name":"CVE-2026-31431---Copy-Fail-PoC","full_name":"maniakh/CVE-2026-31431---Copy-Fail-PoC","html_url":"https://github.com/maniakh/CVE-2026-31431---Copy-Fail-PoC","description":"Bu depo, Linux cekirdeginde (kernel) bulunan CVE-2026-31431 (Copy Fail) zafiyetini icermektedir. Zafiyet, algif_aead modülündeki bir optimizasyon hatasini kullanarak sayfa onbellegindeki (page cache) salt-okunur dosyalari manipule etmeye olanak tanir.","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-01T21:51:59Z","pushed_at":"2026-05-01T21:51:55Z","created_at":"2026-04-30T21:32:23Z","topics":[],"owner":{"login":"maniakh","html_url":"https://github.com/maniakh"},"clone_url":"https://github.com/maniakh/CVE-2026-31431---Copy-Fail-PoC.git","has_code":true,"age_days":55},{"id":1225770619,"name":"CopyFail-Patcher","full_name":"mhdgning131/CopyFail-Patcher","html_url":"https://github.com/mhdgning131/CopyFail-Patcher","description":"Here is patch script to CVE-2026-31431 CopyFail","stargazers_count":1,"forks_count":0,"language":"Shell","updated_at":"2026-05-10T16:53:00Z","pushed_at":"2026-05-01T20:07:38Z","created_at":"2026-04-30T16:10:50Z","topics":[],"owner":{"login":"mhdgning131","html_url":"https://github.com/mhdgning131"},"clone_url":"https://github.com/mhdgning131/CopyFail-Patcher.git","has_code":true,"age_days":56},{"id":1225358435,"name":"cve-2026-31431","full_name":"nisec-eric/cve-2026-31431","html_url":"https://github.com/nisec-eric/cve-2026-31431","description":"AI for Work. x86_64 tested","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-13T13:33:21Z","pushed_at":"2026-05-01T11:43:25Z","created_at":"2026-04-30T07:41:25Z","topics":[],"owner":{"login":"nisec-eric","html_url":"https://github.com/nisec-eric"},"clone_url":"https://github.com/nisec-eric/cve-2026-31431.git","has_code":true,"age_days":56},{"id":1226051708,"name":"CVE-2026-31431.c","full_name":"poyea/CVE-2026-31431.c","html_url":"https://github.com/poyea/CVE-2026-31431.c","description":"CVE-2026-31431 in C","stargazers_count":1,"forks_count":0,"language":"C","updated_at":"2026-05-01T01:44:00Z","pushed_at":"2026-05-01T01:43:28Z","created_at":"2026-04-30T23:29:50Z","topics":[],"owner":{"login":"poyea","html_url":"https://github.com/poyea"},"clone_url":"https://github.com/poyea/CVE-2026-31431.c.git","has_code":true,"age_days":55},{"id":1225965903,"name":"CVE-2026-31431-poc","full_name":"DENNISDGR/CVE-2026-31431-poc","html_url":"https://github.com/DENNISDGR/CVE-2026-31431-poc","description":"An adapted version of the copy fail exploit to use parameters instead of dropping you into a root shell","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-06T05:34:30Z","pushed_at":"2026-04-30T21:10:12Z","created_at":"2026-04-30T20:44:03Z","topics":[],"owner":{"login":"DENNISDGR","html_url":"https://github.com/DENNISDGR"},"clone_url":"https://github.com/DENNISDGR/CVE-2026-31431-poc.git","has_code":true,"age_days":55},{"id":1225960344,"name":"CVE_2026_31431","full_name":"mishl-dev/CVE_2026_31431","html_url":"https://github.com/mishl-dev/CVE_2026_31431","description":"CVE-2026-31431 is a deterministic race‑free logic bug in the Linux kernel","stargazers_count":1,"forks_count":0,"language":"C","updated_at":"2026-05-01T08:31:01Z","pushed_at":"2026-04-30T21:10:00Z","created_at":"2026-04-30T20:35:09Z","topics":[],"owner":{"login":"mishl-dev","html_url":"https://github.com/mishl-dev"},"clone_url":"https://github.com/mishl-dev/CVE_2026_31431.git","has_code":true,"age_days":55},{"id":1225484616,"name":"cve-2026-31431-mitigation","full_name":"amdisrar/cve-2026-31431-mitigation","html_url":"https://github.com/amdisrar/cve-2026-31431-mitigation","description":"Temporary mitigation for Linux kernel local privilege escalation CVE-2026-31431 (AF_ALG interface)","stargazers_count":1,"forks_count":0,"language":"Shell","updated_at":"2026-05-01T14:21:48Z","pushed_at":"2026-04-30T21:01:53Z","created_at":"2026-04-30T10:22:31Z","topics":[],"owner":{"login":"amdisrar","html_url":"https://github.com/amdisrar"},"clone_url":"https://github.com/amdisrar/cve-2026-31431-mitigation.git","has_code":true,"age_days":56},{"id":1225777428,"name":"CVE-2026-31431","full_name":"abdullaabdullazade/CVE-2026-31431","html_url":"https://github.com/abdullaabdullazade/CVE-2026-31431","description":"CVE-2026-31431","stargazers_count":1,"forks_count":0,"language":"Shell","updated_at":"2026-05-11T11:28:48Z","pushed_at":"2026-04-30T16:28:21Z","created_at":"2026-04-30T16:19:53Z","topics":["cve-2026-31431"],"owner":{"login":"abdullaabdullazade","html_url":"https://github.com/abdullaabdullazade"},"clone_url":"https://github.com/abdullaabdullazade/CVE-2026-31431.git","has_code":true,"age_days":56},{"id":1225711440,"name":"PATCH-CVE-2026-31431-Ubuntu_Debian","full_name":"SunL0w/PATCH-CVE-2026-31431-Ubuntu_Debian","html_url":"https://github.com/SunL0w/PATCH-CVE-2026-31431-Ubuntu_Debian","description":"Permanent Mitigation Script for CVE-2026-31431","stargazers_count":1,"forks_count":0,"language":"Shell","updated_at":"2026-04-30T18:03:15Z","pushed_at":"2026-04-30T15:36:48Z","created_at":"2026-04-30T14:58:26Z","topics":[],"owner":{"login":"SunL0w","html_url":"https://github.com/SunL0w"},"clone_url":"https://github.com/SunL0w/PATCH-CVE-2026-31431-Ubuntu_Debian.git","has_code":true,"age_days":56},{"id":1225728094,"name":"CVE-2026-31431-cleaned","full_name":"galoryber/CVE-2026-31431-cleaned","html_url":"https://github.com/galoryber/CVE-2026-31431-cleaned","description":"CVE-2026-31431 cleaned up to be readable and thoroughly explained, including the embedded ELF","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-04-30T21:02:13Z","pushed_at":"2026-04-30T15:19:01Z","created_at":"2026-04-30T15:18:04Z","topics":[],"owner":{"login":"galoryber","html_url":"https://github.com/galoryber"},"clone_url":"https://github.com/galoryber/CVE-2026-31431-cleaned.git","has_code":true,"age_days":56},{"id":1225666349,"name":"CVE-2026-31431","full_name":"yxdm02/CVE-2026-31431","html_url":"https://github.com/yxdm02/CVE-2026-31431","description":"CVE-2026-31431","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-04-30T14:18:01Z","pushed_at":"2026-04-30T14:16:12Z","created_at":"2026-04-30T14:06:09Z","topics":[],"owner":{"login":"yxdm02","html_url":"https://github.com/yxdm02"},"clone_url":"https://github.com/yxdm02/CVE-2026-31431.git","has_code":true,"age_days":56},{"id":1225659577,"name":"copy-fail-go","full_name":"cs8425/copy-fail-go","html_url":"https://github.com/cs8425/copy-fail-go","description":"Copy Fail - CVE-2026-31431 in golang","stargazers_count":1,"forks_count":2,"language":"Go","updated_at":"2026-04-30T16:12:31Z","pushed_at":"2026-04-30T14:02:45Z","created_at":"2026-04-30T13:58:35Z","topics":["cve-2026-31431","local-privilege-escalation"],"owner":{"login":"cs8425","html_url":"https://github.com/cs8425"},"clone_url":"https://github.com/cs8425/copy-fail-go.git","has_code":true,"age_days":56},{"id":1225513243,"name":"CVE-2026-31431","full_name":"slauger/CVE-2026-31431","html_url":"https://github.com/slauger/CVE-2026-31431","description":"CVE-2026-31431 (Copy Fail) - Analysis and Mitigation for RHEL and OpenShift","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-06-15T00:37:21Z","pushed_at":"2026-04-30T11:34:11Z","created_at":"2026-04-30T11:01:20Z","topics":[],"owner":{"login":"slauger","html_url":"https://github.com/slauger"},"clone_url":"https://github.com/slauger/CVE-2026-31431.git","has_code":false,"age_days":56},{"id":1225234497,"name":"cve-2026-31431-detection","full_name":"thrandomv/cve-2026-31431-detection","html_url":"https://github.com/thrandomv/cve-2026-31431-detection","description":"Defensive detection package for CVE-2026-31431 (Linux kernel AF_ALG LPE). Sigma, Falco, auditd, KQL, and EQL rules mapped to MITRE ATT\u0026CK T1068/T1611. Includes detection logic designed for auditd, eBPF, and EDR telemetry pipelines.","stargazers_count":1,"forks_count":1,"language":"","updated_at":"2026-06-10T20:47:38Z","pushed_at":"2026-04-30T05:28:22Z","created_at":"2026-04-30T04:42:02Z","topics":[],"owner":{"login":"thrandomv","html_url":"https://github.com/thrandomv"},"clone_url":"https://github.com/thrandomv/cve-2026-31431-detection.git","has_code":false,"age_days":56},{"id":1225239300,"name":"copy-fail-CVE-2026-31431-universal","full_name":"Y5neKO/copy-fail-CVE-2026-31431-universal","html_url":"https://github.com/Y5neKO/copy-fail-CVE-2026-31431-universal","description":"Multi-language implementation and compatibility with older versions of Python.","stargazers_count":1,"forks_count":0,"language":"C","updated_at":"2026-05-18T12:38:34Z","pushed_at":"2026-04-30T04:51:00Z","created_at":"2026-04-30T04:50:57Z","topics":[],"owner":{"login":"Y5neKO","html_url":"https://github.com/Y5neKO"},"clone_url":"https://github.com/Y5neKO/copy-fail-CVE-2026-31431-universal.git","has_code":true,"age_days":56},{"id":1225193075,"name":"CopyFail-CVE-2026-31431","full_name":"JnamerZ/CopyFail-CVE-2026-31431","html_url":"https://github.com/JnamerZ/CopyFail-CVE-2026-31431","description":"Rewrite https://github.com/theori-io/copy-fail-CVE-2026-31431 to C code","stargazers_count":1,"forks_count":1,"language":"C","updated_at":"2026-05-11T09:24:16Z","pushed_at":"2026-04-30T03:24:25Z","created_at":"2026-04-30T03:22:07Z","topics":[],"owner":{"login":"JnamerZ","html_url":"https://github.com/JnamerZ"},"clone_url":"https://github.com/JnamerZ/CopyFail-CVE-2026-31431.git","has_code":true,"age_days":56},{"id":1225158137,"name":"CVE-2026-31431","full_name":"yiyihuohuo/CVE-2026-31431","html_url":"https://github.com/yiyihuohuo/CVE-2026-31431","description":"CVE-2026-31431EXP","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-04-30T02:19:21Z","pushed_at":"2026-04-30T02:19:12Z","created_at":"2026-04-30T02:17:25Z","topics":[],"owner":{"login":"yiyihuohuo","html_url":"https://github.com/yiyihuohuo"},"clone_url":"https://github.com/yiyihuohuo/CVE-2026-31431.git","has_code":true,"age_days":56},{"id":1246118193,"name":"copyfail-alpine","full_name":"4n4s4zi/copyfail-alpine","html_url":"https://github.com/4n4s4zi/copyfail-alpine","description":"More portable POC of copyfail LPE (CVE-2026-31431) that works on Alpine Linux","stargazers_count":1,"forks_count":0,"language":"Go","updated_at":"2026-06-16T16:41:54Z","pushed_at":"2026-06-04T01:15:00Z","created_at":"2026-05-21T22:24:45Z","topics":["alpine-linux","copyfail","cve-2026-31431","cve-2026-31431-poc"],"owner":{"login":"4n4s4zi","html_url":"https://github.com/4n4s4zi"},"clone_url":"https://github.com/4n4s4zi/copyfail-alpine.git","has_code":true,"age_days":34},{"id":1236371334,"name":"CVE-2026-31431","full_name":"gbonacini/CVE-2026-31431","html_url":"https://github.com/gbonacini/CVE-2026-31431","description":"A CVE-2026-31431 implementation in c++ and inline assembly dependency free","stargazers_count":1,"forks_count":0,"language":"C++","updated_at":"2026-06-10T16:32:20Z","pushed_at":"2026-05-19T19:45:33Z","created_at":"2026-05-12T07:30:56Z","topics":["assembly","cpp20","cve-2026-31431"],"owner":{"login":"gbonacini","html_url":"https://github.com/gbonacini"},"clone_url":"https://github.com/gbonacini/CVE-2026-31431.git","has_code":true,"age_days":44},{"id":1241259405,"name":"public-passwd","full_name":"Aurillium/public-passwd","html_url":"https://github.com/Aurillium/public-passwd","description":"Use CVE-2026-46333 and CVE-2026-31431 to change any user's password.","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-22T09:07:09Z","pushed_at":"2026-05-17T07:46:29Z","created_at":"2026-05-17T06:44:40Z","topics":[],"owner":{"login":"Aurillium","html_url":"https://github.com/Aurillium"},"clone_url":"https://github.com/Aurillium/public-passwd.git","has_code":true,"age_days":39},{"id":1238225490,"name":"cve-2026-31431","full_name":"Sebastian294/cve-2026-31431","html_url":"https://github.com/Sebastian294/cve-2026-31431","description":"Analísis - POC - Mitigación","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-15T03:01:07Z","pushed_at":"2026-05-15T03:01:04Z","created_at":"2026-05-13T23:49:20Z","topics":["cve-2026-31431","docker","labs","linux-kernel","mitigation","poc"],"owner":{"login":"Sebastian294","html_url":"https://github.com/Sebastian294"},"clone_url":"https://github.com/Sebastian294/cve-2026-31431.git","has_code":true,"age_days":42},{"id":1236382288,"name":"CVE-2026-31431","full_name":"studiogangster/CVE-2026-31431","html_url":"https://github.com/studiogangster/CVE-2026-31431","description":"oen liner CVE-2026-31431 test. Created 'sandbox' on sudo user and tests if ir can escape to root","stargazers_count":1,"forks_count":0,"language":"Shell","updated_at":"2026-05-17T20:15:57Z","pushed_at":"2026-05-12T10:40:13Z","created_at":"2026-05-12T07:40:49Z","topics":[],"owner":{"login":"studiogangster","html_url":"https://github.com/studiogangster"},"clone_url":"https://github.com/studiogangster/CVE-2026-31431.git","has_code":true,"age_days":44},{"id":1235845955,"name":"CopyFile_CVE-2026-31431","full_name":"dgrobinson0/CopyFile_CVE-2026-31431","html_url":"https://github.com/dgrobinson0/CopyFile_CVE-2026-31431","description":"Exploit for CVE-2026-31431 (Copy Fail)","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-11T18:43:04Z","pushed_at":"2026-05-11T18:43:00Z","created_at":"2026-05-11T17:58:20Z","topics":[],"owner":{"login":"dgrobinson0","html_url":"https://github.com/dgrobinson0"},"clone_url":"https://github.com/dgrobinson0/CopyFile_CVE-2026-31431.git","has_code":true,"age_days":45},{"id":1226065234,"name":"Porting-CVE-2026-31431-Copy-Fail-to-a-Constrained-Java-Runner","full_name":"karollooool/Porting-CVE-2026-31431-Copy-Fail-to-a-Constrained-Java-Runner","html_url":"https://github.com/karollooool/Porting-CVE-2026-31431-Copy-Fail-to-a-Constrained-Java-Runner","description":"CVE-2026-31431 (copy.fail) — adapted for constrained Java execution environments via FFM syscall layer + javac   annotation processor delivery","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-10T09:51:39Z","pushed_at":"2026-05-10T09:51:35Z","created_at":"2026-05-01T00:01:07Z","topics":["af-alg","copyfail","cve-2026-31431","java","linux-kernel","lpe","page-cache","security-research"],"owner":{"login":"karollooool","html_url":"https://github.com/karollooool"},"clone_url":"https://github.com/karollooool/Porting-CVE-2026-31431-Copy-Fail-to-a-Constrained-Java-Runner.git","has_code":true,"age_days":55},{"id":1232748094,"name":"c-copy-fail","full_name":"OpenPixelSystems/c-copy-fail","html_url":"https://github.com/OpenPixelSystems/c-copy-fail","description":"CVE-2026-31431 in C for aarch64 and amd64","stargazers_count":1,"forks_count":0,"language":"C","updated_at":"2026-05-28T09:04:57Z","pushed_at":"2026-05-08T09:52:03Z","created_at":"2026-05-08T08:24:22Z","topics":[],"owner":{"login":"OpenPixelSystems","html_url":"https://github.com/OpenPixelSystems"},"clone_url":"https://github.com/OpenPixelSystems/c-copy-fail.git","has_code":true,"age_days":48},{"id":1229911854,"name":"afalg-check","full_name":"itsystem/afalg-check","html_url":"https://github.com/itsystem/afalg-check","description":"Утилита для Linux, которая проверяет доступность `AF_ALG`/`algif_aead` и помогает оценить риск по `CVE-2026-31431`.","stargazers_count":1,"forks_count":0,"language":"Go","updated_at":"2026-05-08T08:26:20Z","pushed_at":"2026-05-08T08:28:45Z","created_at":"2026-05-05T13:54:41Z","topics":[],"owner":{"login":"itsystem","html_url":"https://github.com/itsystem"},"clone_url":"https://github.com/itsystem/afalg-check.git","has_code":true,"age_days":51},{"id":1231522737,"name":"cve-2026-31431-copy-fail","full_name":"gagaltotal/cve-2026-31431-copy-fail","html_url":"https://github.com/gagaltotal/cve-2026-31431-copy-fail","description":"CVE-2026-31431 Copy Fail","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-07T17:55:22Z","pushed_at":"2026-05-07T17:48:59Z","created_at":"2026-05-07T03:25:42Z","topics":["archlinux","cve","cve-scanning","debian","debian-linux","fedora-linux","linux","linux-kernel","network","networking","opensuse","python","python3","server","subnetting","ubuntu"],"owner":{"login":"gagaltotal","html_url":"https://github.com/gagaltotal"},"clone_url":"https://github.com/gagaltotal/cve-2026-31431-copy-fail.git","has_code":true,"age_days":49},{"id":1231906888,"name":"deny-af-alg-bpf","full_name":"Vatson112/deny-af-alg-bpf","html_url":"https://github.com/Vatson112/deny-af-alg-bpf","description":"BPF prog to fix CVE-2026-31431","stargazers_count":1,"forks_count":0,"language":"C","updated_at":"2026-05-07T12:37:12Z","pushed_at":"2026-05-07T12:36:42Z","created_at":"2026-05-07T11:59:53Z","topics":[],"owner":{"login":"Vatson112","html_url":"https://github.com/Vatson112"},"clone_url":"https://github.com/Vatson112/deny-af-alg-bpf.git","has_code":true,"age_days":49},{"id":1231911578,"name":"copyfail","full_name":"kwilck/copyfail","html_url":"https://github.com/kwilck/copyfail","description":"Copy Fail (CVE-2026-31431) is a logic flaw in the Linux kernel's algif_aead module — part of the AF_ALG userspace crypto API. It was disclosed on April 29, 2026 by Theori / Xint Code.","stargazers_count":1,"forks_count":0,"language":"Shell","updated_at":"2026-06-15T06:06:02Z","pushed_at":"2026-05-07T12:10:33Z","created_at":"2026-05-07T12:05:20Z","topics":["cve","cve-2026-31431","cve-scanning","cybersecurity","cybersecurity-tools","linux","linux-kernel","privilege-escalation"],"owner":{"login":"kwilck","html_url":"https://github.com/kwilck"},"clone_url":"https://github.com/kwilck/copyfail.git","has_code":true,"age_days":49},{"id":1231662576,"name":"CVE-2026-31431-Copy-Fail-add-arm64","full_name":"cx330zer0/CVE-2026-31431-Copy-Fail-add-arm64","html_url":"https://github.com/cx330zer0/CVE-2026-31431-Copy-Fail-add-arm64","description":"CVE-2026-31431 漏洞利用python脚本，支持arm64,x86架构","stargazers_count":1,"forks_count":1,"language":"Python","updated_at":"2026-05-11T07:23:23Z","pushed_at":"2026-05-07T07:11:51Z","created_at":"2026-05-07T07:04:30Z","topics":[],"owner":{"login":"cx330zer0","html_url":"https://github.com/cx330zer0"},"clone_url":"https://github.com/cx330zer0/CVE-2026-31431-Copy-Fail-add-arm64.git","has_code":true,"age_days":49},{"id":1230636616,"name":"CVE-2026-31431-Checker-Mitigator","full_name":"zenzue/CVE-2026-31431-Checker-Mitigator","html_url":"https://github.com/zenzue/CVE-2026-31431-Checker-Mitigator","description":"","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-06T09:40:40Z","pushed_at":"2026-05-06T09:40:36Z","created_at":"2026-05-06T07:18:04Z","topics":[],"owner":{"login":"zenzue","html_url":"https://github.com/zenzue"},"clone_url":"https://github.com/zenzue/CVE-2026-31431-Checker-Mitigator.git","has_code":true,"age_days":50},{"id":1226655559,"name":"Linux-copy-fail-CVE-2026-31431","full_name":"1amBa7Man/Linux-copy-fail-CVE-2026-31431","html_url":"https://github.com/1amBa7Man/Linux-copy-fail-CVE-2026-31431","description":"Proof-of-concept and technical analysis of CVE-2026-31431 (Copy Fail), a Linux kernel privilege escalation vulnerability affecting page cache integrity.","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-06T05:19:52Z","pushed_at":"2026-05-06T05:19:48Z","created_at":"2026-05-01T17:13:14Z","topics":[],"owner":{"login":"1amBa7Man","html_url":"https://github.com/1amBa7Man"},"clone_url":"https://github.com/1amBa7Man/Linux-copy-fail-CVE-2026-31431.git","has_code":true,"age_days":55},{"id":1230498007,"name":"copy-fail-CVE-2026-31431-pythonlower3.10","full_name":"OneDemobird/copy-fail-CVE-2026-31431-pythonlower3.10","html_url":"https://github.com/OneDemobird/copy-fail-CVE-2026-31431-pythonlower3.10","description":"python3.10以下没有os.splice，搞了一个3.10以下版本也可以用的","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-06T03:59:07Z","pushed_at":"2026-05-06T03:55:49Z","created_at":"2026-05-06T03:51:41Z","topics":[],"owner":{"login":"OneDemobird","html_url":"https://github.com/OneDemobird"},"clone_url":"https://github.com/OneDemobird/copy-fail-CVE-2026-31431-pythonlower3.10.git","has_code":true,"age_days":50},{"id":1230423569,"name":"cve-2026-31431-copyfail","full_name":"darioomatos/cve-2026-31431-copyfail","html_url":"https://github.com/darioomatos/cve-2026-31431-copyfail","description":"CVE-2026-31431 Copy Fail - LPE no kernel Linux","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-06-23T03:37:50Z","pushed_at":"2026-05-06T01:51:49Z","created_at":"2026-05-06T01:37:25Z","topics":["af-alg","copy-fail","cve-2026-31431","educational","kernel-exploit","linux-kernel","lpe","page-cache","privilege-escalation","security-research"],"owner":{"login":"darioomatos","html_url":"https://github.com/darioomatos"},"clone_url":"https://github.com/darioomatos/cve-2026-31431-copyfail.git","has_code":false,"age_days":50},{"id":1227582535,"name":"copy-fail-CVE-2026-31431-Python-Golfing","full_name":"AvPrince26/copy-fail-CVE-2026-31431-Python-Golfing","html_url":"https://github.com/AvPrince26/copy-fail-CVE-2026-31431-Python-Golfing","description":"Golf Challenge for https://copy.golf/ ","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-05T14:18:37Z","pushed_at":"2026-05-05T14:16:41Z","created_at":"2026-05-02T22:10:37Z","topics":[],"owner":{"login":"AvPrince26","html_url":"https://github.com/AvPrince26"},"clone_url":"https://github.com/AvPrince26/copy-fail-CVE-2026-31431-Python-Golfing.git","has_code":true,"age_days":53},{"id":1226408847,"name":"CVE-2026-31431","full_name":"TheMalwareGuardian/CVE-2026-31431","html_url":"https://github.com/TheMalwareGuardian/CVE-2026-31431","description":"A structured explanation of CVE-2026-31431 (Copy Fail), connecting the three kernel changes that introduced the vulnerability and enabled its exploitation.","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-05-05T17:33:59Z","pushed_at":"2026-05-05T10:07:55Z","created_at":"2026-05-01T11:06:03Z","topics":["cve-2026-31431","exploit"],"owner":{"login":"TheMalwareGuardian","html_url":"https://github.com/TheMalwareGuardian"},"clone_url":"https://github.com/TheMalwareGuardian/CVE-2026-31431.git","has_code":false,"age_days":55},{"id":1226647484,"name":"block-copyfail","full_name":"mrunalp/block-copyfail","html_url":"https://github.com/mrunalp/block-copyfail","description":"BPF LSM blocker for CVE-2026-31431 (Copy Fail) - zero-reboot remediation for OpenShift 4","stargazers_count":1,"forks_count":2,"language":"C","updated_at":"2026-05-04T21:54:12Z","pushed_at":"2026-05-04T21:54:07Z","created_at":"2026-05-01T17:01:17Z","topics":[],"owner":{"login":"mrunalp","html_url":"https://github.com/mrunalp"},"clone_url":"https://github.com/mrunalp/block-copyfail.git","has_code":true,"age_days":55},{"id":1229084743,"name":"CVE_kernellinux_jsh","full_name":"jshDevs/CVE_kernellinux_jsh","html_url":"https://github.com/jshDevs/CVE_kernellinux_jsh","description":"Framework modular Bash para auditar CVE-2026-31431 (CopyFail) y CVEs relacionados del kernel Linux en distros RPM-based (AlmaLinux, Rocky, CentOS Stream 8/9/10)","stargazers_count":1,"forks_count":0,"language":"Shell","updated_at":"2026-05-04T17:28:38Z","pushed_at":"2026-05-04T17:27:44Z","created_at":"2026-05-04T17:25:17Z","topics":[],"owner":{"login":"jshDevs","html_url":"https://github.com/jshDevs"},"clone_url":"https://github.com/jshDevs/CVE_kernellinux_jsh.git","has_code":true,"age_days":52},{"id":1229003543,"name":"CVE-2026-31431-mitigacion","full_name":"alvaroguzmancode/CVE-2026-31431-mitigacion","html_url":"https://github.com/alvaroguzmancode/CVE-2026-31431-mitigacion","description":"Explicación de la vulnerabilidad y cómo mitigarla","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-05-04T16:05:26Z","pushed_at":"2026-05-04T16:05:22Z","created_at":"2026-05-04T15:47:14Z","topics":[],"owner":{"login":"alvaroguzmancode","html_url":"https://github.com/alvaroguzmancode"},"clone_url":"https://github.com/alvaroguzmancode/CVE-2026-31431-mitigacion.git","has_code":false,"age_days":52},{"id":1228082092,"name":"CopyFail-for-dummies","full_name":"ChernStepanov/CopyFail-for-dummies","html_url":"https://github.com/ChernStepanov/CopyFail-for-dummies","description":"A tiny explanation + PoC for CVE-2026-31431","stargazers_count":1,"forks_count":0,"language":"C++","updated_at":"2026-05-03T19:57:38Z","pushed_at":"2026-05-03T19:57:34Z","created_at":"2026-05-03T15:14:54Z","topics":[],"owner":{"login":"ChernStepanov","html_url":"https://github.com/ChernStepanov"},"clone_url":"https://github.com/ChernStepanov/CopyFail-for-dummies.git","has_code":true,"age_days":53},{"id":1226881539,"name":"cPanel-Fix","full_name":"MrAriaNet/cPanel-Fix","html_url":"https://github.com/MrAriaNet/cPanel-Fix","description":"One security-remediation.sh for CVE-2026-41940 (cPanel), CVE-2026-31431 (kernel \"Copy Fail\"), CSF, optional domain/proxy cleanup, and optional operator hardening.","stargazers_count":1,"forks_count":2,"language":"Shell","updated_at":"2026-05-03T12:30:54Z","pushed_at":"2026-05-03T12:30:50Z","created_at":"2026-05-01T23:47:17Z","topics":[],"owner":{"login":"MrAriaNet","html_url":"https://github.com/MrAriaNet"},"clone_url":"https://github.com/MrAriaNet/cPanel-Fix.git","has_code":true,"age_days":54},{"id":1227680438,"name":"copy-fail-CVE-2026-31431","full_name":"pyroceper/copy-fail-CVE-2026-31431","html_url":"https://github.com/pyroceper/copy-fail-CVE-2026-31431","description":"CopyFail PoC in C","stargazers_count":1,"forks_count":0,"language":"C","updated_at":"2026-06-09T08:21:48Z","pushed_at":"2026-05-03T03:02:51Z","created_at":"2026-05-03T02:37:39Z","topics":["af-alg","copy-fail","cve-2026-31431","exploit","linux-kernel","no-shellcode","passwd","privilege-escalation","proof-of-concept","security-research"],"owner":{"login":"pyroceper","html_url":"https://github.com/pyroceper"},"clone_url":"https://github.com/pyroceper/copy-fail-CVE-2026-31431.git","has_code":true,"age_days":53},{"id":1226561476,"name":"cve-checker-2026","full_name":"sebinxavi/cve-checker-2026","html_url":"https://github.com/sebinxavi/cve-checker-2026","description":"Multi-OS vulnerability checker for CVE-2026-31431 (Linux kernel) and CVE-2026-41940 (cPanel)","stargazers_count":1,"forks_count":1,"language":"Shell","updated_at":"2026-05-03T00:06:04Z","pushed_at":"2026-05-03T00:05:59Z","created_at":"2026-05-01T14:59:42Z","topics":[],"owner":{"login":"sebinxavi","html_url":"https://github.com/sebinxavi"},"clone_url":"https://github.com/sebinxavi/cve-checker-2026.git","has_code":true,"age_days":55},{"id":1227606657,"name":"copy-fail","full_name":"pedromizz/copy-fail","html_url":"https://github.com/pedromizz/copy-fail","description":"PoC of CVE-2026-31431","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-07T14:19:57Z","pushed_at":"2026-05-02T23:18:56Z","created_at":"2026-05-02T23:12:23Z","topics":[],"owner":{"login":"pedromizz","html_url":"https://github.com/pedromizz"},"clone_url":"https://github.com/pedromizz/copy-fail.git","has_code":true,"age_days":53},{"id":1227370290,"name":"CVE-2026-31431","full_name":"Gr-1m/CVE-2026-31431","html_url":"https://github.com/Gr-1m/CVE-2026-31431","description":"Copyfail (CVE-2026-31431) exp rewrite by Golang","stargazers_count":1,"forks_count":0,"language":"Go","updated_at":"2026-05-10T13:38:42Z","pushed_at":"2026-05-02T15:54:25Z","created_at":"2026-05-02T15:35:03Z","topics":[],"owner":{"login":"Gr-1m","html_url":"https://github.com/Gr-1m"},"clone_url":"https://github.com/Gr-1m/CVE-2026-31431.git","has_code":true,"age_days":54},{"id":1226879619,"name":"copy-fail-zig","full_name":"Emmmmllll/copy-fail-zig","html_url":"https://github.com/Emmmmllll/copy-fail-zig","description":"Zig implementation of the Copy Fail Linux LPE (CVE-2026-31431) https://copy.fail for security-research and defensive-detection purposes","stargazers_count":1,"forks_count":0,"language":"Zig","updated_at":"2026-06-11T13:27:31Z","pushed_at":"2026-05-02T13:06:59Z","created_at":"2026-05-01T23:42:56Z","topics":["af-alg","copy-fail","cross-platform","cve-2026-31431","exploit","kernel-exploit","linux-kernel","local-privilege-escalation","privilege-escalation","proof-of-concept","security-research","zig"],"owner":{"login":"Emmmmllll","html_url":"https://github.com/Emmmmllll"},"clone_url":"https://github.com/Emmmmllll/copy-fail-zig.git","has_code":true,"age_days":54},{"id":1227109810,"name":"copyfail-CVE-2026-31431","full_name":"Trex1e/copyfail-CVE-2026-31431","html_url":"https://github.com/Trex1e/copyfail-CVE-2026-31431","description":"Original repo: https://github.com/theori-io/copy-fail-CVE-2026-31431","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-09T01:55:48Z","pushed_at":"2026-05-02T08:35:03Z","created_at":"2026-05-02T08:05:51Z","topics":[],"owner":{"login":"Trex1e","html_url":"https://github.com/Trex1e"},"clone_url":"https://github.com/Trex1e/copyfail-CVE-2026-31431.git","has_code":true,"age_days":54},{"id":1227083228,"name":"CVE-2026-31431-Report-Copy-fail-Vulnerability-","full_name":"krish-foren6/CVE-2026-31431-Report-Copy-fail-Vulnerability-","html_url":"https://github.com/krish-foren6/CVE-2026-31431-Report-Copy-fail-Vulnerability-","description":"Detailed analysis of the Copy Fail vulnerability (CVE-2026-31431) in the Linux kernel, including memory corruption mechanism, privilege escalation flow, and security impact.","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-05-02T08:39:57Z","pushed_at":"2026-05-02T07:37:36Z","created_at":"2026-05-02T07:13:38Z","topics":[],"owner":{"login":"krish-foren6","html_url":"https://github.com/krish-foren6"},"clone_url":"https://github.com/krish-foren6/CVE-2026-31431-Report-Copy-fail-Vulnerability-.git","has_code":false,"age_days":54},{"id":1226751063,"name":"copyfail-dfir","full_name":"ledlight33/copyfail-dfir","html_url":"https://github.com/ledlight33/copyfail-dfir","description":"Interactive DFIR walkthrough of CVE-2026-31431 (Copy Fail) - from SIEM alert to confirmed verdict. Real Volatility 3 commands, verified methodology.","stargazers_count":1,"forks_count":0,"language":"HTML","updated_at":"2026-05-03T12:06:36Z","pushed_at":"2026-05-01T20:25:16Z","created_at":"2026-05-01T19:42:36Z","topics":[],"owner":{"login":"ledlight33","html_url":"https://github.com/ledlight33"},"clone_url":"https://github.com/ledlight33/copyfail-dfir.git","has_code":true,"age_days":55},{"id":1226662562,"name":"CopyFail-Experiment","full_name":"Lyutoon/CopyFail-Experiment","html_url":"https://github.com/Lyutoon/CopyFail-Experiment","description":"Fully LLM generated exploit for CVE-2026-31431, written in C","stargazers_count":1,"forks_count":0,"language":"C","updated_at":"2026-05-11T06:30:06Z","pushed_at":"2026-05-01T17:29:01Z","created_at":"2026-05-01T17:23:28Z","topics":[],"owner":{"login":"Lyutoon","html_url":"https://github.com/Lyutoon"},"clone_url":"https://github.com/Lyutoon/CopyFail-Experiment.git","has_code":true,"age_days":55},{"id":1226443181,"name":"CVE-2026-31431_je_sappelle_RoOt","full_name":"sbeteta42/CVE-2026-31431_je_sappelle_RoOt","html_url":"https://github.com/sbeteta42/CVE-2026-31431_je_sappelle_RoOt","description":"CVE-2026-31431 -  Guide de Remédiation et Mesures de Protection","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-06T09:52:33Z","pushed_at":"2026-05-01T13:46:58Z","created_at":"2026-05-01T12:03:56Z","topics":["cyber","linux","pyrhon","shell"],"owner":{"login":"sbeteta42","html_url":"https://github.com/sbeteta42"},"clone_url":"https://github.com/sbeteta42/CVE-2026-31431_je_sappelle_RoOt.git","has_code":true,"age_days":55},{"id":1226144308,"name":"copy-fail-go","full_name":"3jee/copy-fail-go","html_url":"https://github.com/3jee/copy-fail-go","description":"CVE-2026-31431 (copy-fail) - Go port of grenkoca's PoC with automatic SUID world-readable binary enumeration","stargazers_count":1,"forks_count":0,"language":"Go","updated_at":"2026-05-02T15:39:14Z","pushed_at":"2026-05-01T03:20:50Z","created_at":"2026-05-01T02:54:49Z","topics":[],"owner":{"login":"3jee","html_url":"https://github.com/3jee"},"clone_url":"https://github.com/3jee/copy-fail-go.git","has_code":true,"age_days":55},{"id":1226092217,"name":"copy-fail-fix","full_name":"bryanvine/copy-fail-fix","html_url":"https://github.com/bryanvine/copy-fail-fix","description":"Per-distro mitigation scripts for CVE-2026-31431 (\"Copy Fail\") Linux kernel LPE.","stargazers_count":1,"forks_count":0,"language":"Shell","updated_at":"2026-05-11T08:55:24Z","pushed_at":"2026-05-01T02:21:16Z","created_at":"2026-05-01T01:00:46Z","topics":[],"owner":{"login":"bryanvine","html_url":"https://github.com/bryanvine"},"clone_url":"https://github.com/bryanvine/copy-fail-fix.git","has_code":true,"age_days":55},{"id":1229483364,"name":"copyfail-rs","full_name":"Liverwortenuresis371/copyfail-rs","html_url":"https://github.com/Liverwortenuresis371/copyfail-rs","description":"Exploit and detect CVE-2026-31431 vulnerabilities using a static binary that monitors system integrity and bypasses PAM authentication.","stargazers_count":0,"forks_count":0,"language":"Rust","updated_at":"2026-06-25T18:54:57Z","pushed_at":"2026-06-25T18:54:53Z","created_at":"2026-05-05T04:58:21Z","topics":["af-alg","auditd","copyfail","cve","cve-2026-31431","detection-engineering","ebpf","local-privilege-escalation","lpe","no-std","poc","privilege-escalation","rust","security","sigma-rules"],"owner":{"login":"Liverwortenuresis371","html_url":"https://github.com/Liverwortenuresis371"},"clone_url":"https://github.com/Liverwortenuresis371/copyfail-rs.git","has_code":true,"age_days":51},{"id":1278804377,"name":"rootpacket-cve-2026-31431","full_name":"kinryulabs/rootpacket-cve-2026-31431","html_url":"https://github.com/kinryulabs/rootpacket-cve-2026-31431","description":"CVE-2026-31431 getroot from a Turkish Cryptominer","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-25T15:26:09Z","pushed_at":"2026-06-24T10:21:00Z","created_at":"2026-06-24T05:41:21Z","topics":[],"owner":{"login":"kinryulabs","html_url":"https://github.com/kinryulabs"},"clone_url":"https://github.com/kinryulabs/rootpacket-cve-2026-31431.git","has_code":true,"age_days":1},{"id":1237022452,"name":"CVE-2026-31431-copyfail-aarch64","full_name":"SystemVll/CVE-2026-31431-copyfail-aarch64","html_url":"https://github.com/SystemVll/CVE-2026-31431-copyfail-aarch64","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-23T21:20:41Z","pushed_at":"2026-06-23T21:20:37Z","created_at":"2026-05-12T19:56:36Z","topics":[],"owner":{"login":"SystemVll","html_url":"https://github.com/SystemVll"},"clone_url":"https://github.com/SystemVll/CVE-2026-31431-copyfail-aarch64.git","has_code":true,"age_days":44},{"id":1176158184,"name":"CVE-2026-31431-CopyFail-Linux-PrivEsc","full_name":"John-Popovici/CVE-2026-31431-CopyFail-Linux-PrivEsc","html_url":"https://github.com/John-Popovici/CVE-2026-31431-CopyFail-Linux-PrivEsc","description":"A demo and explanation of CVE-2026-31431","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-08T18:45:08Z","pushed_at":"2026-06-08T18:44:38Z","created_at":"2026-03-08T17:40:11Z","topics":[],"owner":{"login":"John-Popovici","html_url":"https://github.com/John-Popovici"},"clone_url":"https://github.com/John-Popovici/CVE-2026-31431-CopyFail-Linux-PrivEsc.git","has_code":true,"age_days":109},{"id":1225464900,"name":"CVE-2026-31431_SCA_WAZUH","full_name":"adampielak/CVE-2026-31431_SCA_WAZUH","html_url":"https://github.com/adampielak/CVE-2026-31431_SCA_WAZUH","description":"Wazuh SCA Linux hardening policy for Copy Fail (CVE-2026-31431)","stargazers_count":0,"forks_count":2,"language":"Shell","updated_at":"2026-06-16T21:33:28Z","pushed_at":"2026-06-16T21:32:46Z","created_at":"2026-04-30T09:56:23Z","topics":["cve","linux-hardening","security","wazuh","wazuh-sca"],"owner":{"login":"adampielak","html_url":"https://github.com/adampielak"},"clone_url":"https://github.com/adampielak/CVE-2026-31431_SCA_WAZUH.git","has_code":true,"age_days":56},{"id":1225578145,"name":"CVE-2026-43500","full_name":"attaattaatta/CVE-2026-43500","html_url":"https://github.com/attaattaatta/CVE-2026-43500","description":"CVE-2026-43500 / CVE-2026-31431 / CVE-2026-43284 golang hotfix","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-31T06:56:16Z","pushed_at":"2026-05-31T06:56:13Z","created_at":"2026-04-30T12:27:15Z","topics":["cve-2026-31431","cve-2026-43284","cve-2026-43500","hotfix"],"owner":{"login":"attaattaatta","html_url":"https://github.com/attaattaatta"},"clone_url":"https://github.com/attaattaatta/CVE-2026-43500.git","has_code":false,"age_days":56},{"id":1225311743,"name":"CVE-2026-31431","full_name":"ryan2929/CVE-2026-31431","html_url":"https://github.com/ryan2929/CVE-2026-31431","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-28T07:04:24Z","pushed_at":"2026-05-28T07:04:20Z","created_at":"2026-04-30T06:47:01Z","topics":[],"owner":{"login":"ryan2929","html_url":"https://github.com/ryan2929"},"clone_url":"https://github.com/ryan2929/CVE-2026-31431.git","has_code":true,"age_days":56},{"id":1225900557,"name":"mks-copy-fail-mitigation","full_name":"selectel/mks-copy-fail-mitigation","html_url":"https://github.com/selectel/mks-copy-fail-mitigation","description":"DaemonSet с реализацией временной меры для митигации уязвимости Copy Fail (CVE-2026-31431)","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-19T17:38:39Z","pushed_at":"2026-05-19T17:38:31Z","created_at":"2026-04-30T19:04:54Z","topics":[],"owner":{"login":"selectel","html_url":"https://github.com/selectel"},"clone_url":"https://github.com/selectel/mks-copy-fail-mitigation.git","has_code":false,"age_days":56},{"id":1225166437,"name":"CVE-2026-31431","full_name":"gubaiovo/CVE-2026-31431","html_url":"https://github.com/gubaiovo/CVE-2026-31431","description":"CVE-2026-31431 POC by C","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-07T01:25:31Z","pushed_at":"2026-05-07T01:25:28Z","created_at":"2026-04-30T02:31:56Z","topics":[],"owner":{"login":"gubaiovo","html_url":"https://github.com/gubaiovo"},"clone_url":"https://github.com/gubaiovo/CVE-2026-31431.git","has_code":true,"age_days":56},{"id":1225716790,"name":"cve-2026-31431","full_name":"leelong2020/cve-2026-31431","html_url":"https://github.com/leelong2020/cve-2026-31431","description":"","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-01T07:22:01Z","pushed_at":"2026-05-01T07:21:58Z","created_at":"2026-04-30T15:04:42Z","topics":[],"owner":{"login":"leelong2020","html_url":"https://github.com/leelong2020"},"clone_url":"https://github.com/leelong2020/cve-2026-31431.git","has_code":true,"age_days":56},{"id":1226044650,"name":"CVE-2026-31431","full_name":"offsecguy/CVE-2026-31431","html_url":"https://github.com/offsecguy/CVE-2026-31431","description":"Copy Fail is a straight-line logic flaw | C port | CVE-2026-31431","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-01T00:23:06Z","pushed_at":"2026-05-01T00:23:03Z","created_at":"2026-04-30T23:13:37Z","topics":[],"owner":{"login":"offsecguy","html_url":"https://github.com/offsecguy"},"clone_url":"https://github.com/offsecguy/CVE-2026-31431.git","has_code":true,"age_days":55},{"id":1226036200,"name":"copy-fail-cve-2026-31431","full_name":"effiesec/copy-fail-cve-2026-31431","html_url":"https://github.com/effiesec/copy-fail-cve-2026-31431","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-30T22:55:20Z","pushed_at":"2026-04-30T22:03:02Z","created_at":"2026-04-30T22:55:20Z","topics":[],"owner":{"login":"effiesec","html_url":"https://github.com/effiesec"},"clone_url":"https://github.com/effiesec/copy-fail-cve-2026-31431.git","has_code":false,"age_days":55},{"id":1225996272,"name":"copyfailautopatch","full_name":"meowteusz/copyfailautopatch","html_url":"https://github.com/meowteusz/copyfailautopatch","description":"Detect and fix copy.fail CVE-2026-31431","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-30T21:38:39Z","pushed_at":"2026-04-30T21:38:35Z","created_at":"2026-04-30T21:36:54Z","topics":[],"owner":{"login":"meowteusz","html_url":"https://github.com/meowteusz"},"clone_url":"https://github.com/meowteusz/copyfailautopatch.git","has_code":true,"age_days":55},{"id":1225977479,"name":"copy-fail-CVE-2026-31431","full_name":"B1gN0Se/copy-fail-CVE-2026-31431","html_url":"https://github.com/B1gN0Se/copy-fail-CVE-2026-31431","description":"","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-04-30T21:06:07Z","pushed_at":"2026-04-30T21:06:03Z","created_at":"2026-04-30T21:03:41Z","topics":[],"owner":{"login":"B1gN0Se","html_url":"https://github.com/B1gN0Se"},"clone_url":"https://github.com/B1gN0Se/copy-fail-CVE-2026-31431.git","has_code":true,"age_days":55},{"id":1225862219,"name":"CVE-2026-31431","full_name":"websecnl/CVE-2026-31431","html_url":"https://github.com/websecnl/CVE-2026-31431","description":" Linux algif_aead page-cache write to root - Local Privilege Escalation Exploit","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-30T18:18:19Z","pushed_at":"2026-04-30T18:18:15Z","created_at":"2026-04-30T18:09:42Z","topics":[],"owner":{"login":"websecnl","html_url":"https://github.com/websecnl"},"clone_url":"https://github.com/websecnl/CVE-2026-31431.git","has_code":true,"age_days":56},{"id":1225626691,"name":"CVE-2026-31431-patch","full_name":"rshosting/CVE-2026-31431-patch","html_url":"https://github.com/rshosting/CVE-2026-31431-patch","description":"A temporary mitigation for CVE-2026-31431 vulneribility","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-04-30T18:11:24Z","pushed_at":"2026-04-30T18:10:49Z","created_at":"2026-04-30T13:25:16Z","topics":[],"owner":{"login":"rshosting","html_url":"https://github.com/rshosting"},"clone_url":"https://github.com/rshosting/CVE-2026-31431-patch.git","has_code":true,"age_days":56},{"id":1225788769,"name":"copy-fail","full_name":"weirdindiankid/copy-fail","html_url":"https://github.com/weirdindiankid/copy-fail","description":"CVE-2026-31431 proof of concept.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-30T16:34:41Z","pushed_at":"2026-04-30T16:34:36Z","created_at":"2026-04-30T16:34:27Z","topics":[],"owner":{"login":"weirdindiankid","html_url":"https://github.com/weirdindiankid"},"clone_url":"https://github.com/weirdindiankid/copy-fail.git","has_code":true,"age_days":56},{"id":1225743455,"name":"Copy-Fail-CVE-2026-31431","full_name":"MohamedKarrab/Copy-Fail-CVE-2026-31431","html_url":"https://github.com/MohamedKarrab/Copy-Fail-CVE-2026-31431","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-30T16:34:03Z","pushed_at":"2026-04-30T16:32:15Z","created_at":"2026-04-30T15:36:35Z","topics":[],"owner":{"login":"MohamedKarrab","html_url":"https://github.com/MohamedKarrab"},"clone_url":"https://github.com/MohamedKarrab/Copy-Fail-CVE-2026-31431.git","has_code":true,"age_days":56},{"id":1225753891,"name":"CVE-2026-31431-PoC","full_name":"w3llr00t3d/CVE-2026-31431-PoC","html_url":"https://github.com/w3llr00t3d/CVE-2026-31431-PoC","description":"LPE exploit for CVE-2026-31431 CopyFail. Compatible with Python 3.9.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-30T16:14:42Z","pushed_at":"2026-04-30T16:14:39Z","created_at":"2026-04-30T15:49:50Z","topics":[],"owner":{"login":"w3llr00t3d","html_url":"https://github.com/w3llr00t3d"},"clone_url":"https://github.com/w3llr00t3d/CVE-2026-31431-PoC.git","has_code":true,"age_days":56},{"id":1225741335,"name":"fail-CVE-2026-31431","full_name":"vynazevedo/fail-CVE-2026-31431","html_url":"https://github.com/vynazevedo/fail-CVE-2026-31431","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-30T15:34:27Z","pushed_at":"2026-04-30T15:34:23Z","created_at":"2026-04-30T15:34:05Z","topics":[],"owner":{"login":"vynazevedo","html_url":"https://github.com/vynazevedo"},"clone_url":"https://github.com/vynazevedo/fail-CVE-2026-31431.git","has_code":false,"age_days":56},{"id":1225672538,"name":"CVE-2026-31431-old-python","full_name":"grishinpv/CVE-2026-31431-old-python","html_url":"https://github.com/grishinpv/CVE-2026-31431-old-python","description":"CVE-2026-31431 for python versions lower 3.10","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-30T14:21:18Z","pushed_at":"2026-04-30T14:18:14Z","created_at":"2026-04-30T14:13:14Z","topics":[],"owner":{"login":"grishinpv","html_url":"https://github.com/grishinpv"},"clone_url":"https://github.com/grishinpv/CVE-2026-31431-old-python.git","has_code":true,"age_days":56},{"id":1225590950,"name":"CVE-2026-31431","full_name":"eximiait/CVE-2026-31431","html_url":"https://github.com/eximiait/CVE-2026-31431","description":"Receta de ansible para verificar y mitigar CVE-2026-31431","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-04-30T12:47:45Z","pushed_at":"2026-04-30T12:46:59Z","created_at":"2026-04-30T12:42:51Z","topics":[],"owner":{"login":"eximiait","html_url":"https://github.com/eximiait"},"clone_url":"https://github.com/eximiait/CVE-2026-31431.git","has_code":true,"age_days":56},{"id":1225396365,"name":"cve-2026-31431-mitigation","full_name":"Linux-zs/cve-2026-31431-mitigation","html_url":"https://github.com/Linux-zs/cve-2026-31431-mitigation","description":"cve-2026-31431 seccomp mitigation","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-04-30T12:44:53Z","pushed_at":"2026-04-30T12:44:50Z","created_at":"2026-04-30T08:31:56Z","topics":[],"owner":{"login":"Linux-zs","html_url":"https://github.com/Linux-zs"},"clone_url":"https://github.com/Linux-zs/cve-2026-31431-mitigation.git","has_code":true,"age_days":56},{"id":1225542121,"name":"Copy_Fail_CVE-2026-31431_test_and_fix","full_name":"dicatalin/Copy_Fail_CVE-2026-31431_test_and_fix","html_url":"https://github.com/dicatalin/Copy_Fail_CVE-2026-31431_test_and_fix","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-30T12:42:28Z","pushed_at":"2026-04-30T12:42:24Z","created_at":"2026-04-30T11:40:34Z","topics":[],"owner":{"login":"dicatalin","html_url":"https://github.com/dicatalin"},"clone_url":"https://github.com/dicatalin/Copy_Fail_CVE-2026-31431_test_and_fix.git","has_code":true,"age_days":56},{"id":1225535151,"name":"TEST-CVE-2026-31431","full_name":"gmeghnag/TEST-CVE-2026-31431","html_url":"https://github.com/gmeghnag/TEST-CVE-2026-31431","description":"","stargazers_count":0,"forks_count":1,"language":"Dockerfile","updated_at":"2026-04-30T12:10:22Z","pushed_at":"2026-04-30T12:10:18Z","created_at":"2026-04-30T11:31:11Z","topics":[],"owner":{"login":"gmeghnag","html_url":"https://github.com/gmeghnag"},"clone_url":"https://github.com/gmeghnag/TEST-CVE-2026-31431.git","has_code":true,"age_days":56},{"id":1225500413,"name":"copy-fail-CVE-2026-31431","full_name":"rio128128/copy-fail-CVE-2026-31431","html_url":"https://github.com/rio128128/copy-fail-CVE-2026-31431","description":"Copy Fail: 732 Bytes to Root on Every Major Linux Distribution.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-30T10:53:01Z","pushed_at":"2026-04-30T10:52:57Z","created_at":"2026-04-30T10:44:11Z","topics":[],"owner":{"login":"rio128128","html_url":"https://github.com/rio128128"},"clone_url":"https://github.com/rio128128/copy-fail-CVE-2026-31431.git","has_code":true,"age_days":56},{"id":1225484698,"name":"CVE-2026-31431","full_name":"G01d3nW01f/CVE-2026-31431","html_url":"https://github.com/G01d3nW01f/CVE-2026-31431","description":"","stargazers_count":0,"forks_count":0,"language":"Rust","updated_at":"2026-04-30T10:23:35Z","pushed_at":"2026-04-30T10:23:32Z","created_at":"2026-04-30T10:22:37Z","topics":[],"owner":{"login":"G01d3nW01f","html_url":"https://github.com/G01d3nW01f"},"clone_url":"https://github.com/G01d3nW01f/CVE-2026-31431.git","has_code":true,"age_days":56},{"id":1225482951,"name":"copy-fail_LPE_Interactive","full_name":"H1d3r/copy-fail_LPE_Interactive","html_url":"https://github.com/H1d3r/copy-fail_LPE_Interactive","description":"CVE-2026-31431","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-04-30T10:21:23Z","pushed_at":"2026-04-30T10:21:20Z","created_at":"2026-04-30T10:20:19Z","topics":[],"owner":{"login":"H1d3r","html_url":"https://github.com/H1d3r"},"clone_url":"https://github.com/H1d3r/copy-fail_LPE_Interactive.git","has_code":true,"age_days":56},{"id":1225472478,"name":"CVE-2026-31431","full_name":"dorianhhuc/CVE-2026-31431","html_url":"https://github.com/dorianhhuc/CVE-2026-31431","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-30T10:13:32Z","pushed_at":"2026-04-30T10:13:26Z","created_at":"2026-04-30T10:06:18Z","topics":[],"owner":{"login":"dorianhhuc","html_url":"https://github.com/dorianhhuc"},"clone_url":"https://github.com/dorianhhuc/CVE-2026-31431.git","has_code":false,"age_days":56},{"id":1225429268,"name":"copy.fail-mitigation-MLM","full_name":"jbiniek/copy.fail-mitigation-MLM","html_url":"https://github.com/jbiniek/copy.fail-mitigation-MLM","description":"Salt state to deploy a mitigation of the copy.fail vulnerability (CVE-2026-31431)","stargazers_count":0,"forks_count":0,"language":"SaltStack","updated_at":"2026-04-30T10:10:33Z","pushed_at":"2026-04-30T10:10:28Z","created_at":"2026-04-30T09:11:38Z","topics":[],"owner":{"login":"jbiniek","html_url":"https://github.com/jbiniek"},"clone_url":"https://github.com/jbiniek/copy.fail-mitigation-MLM.git","has_code":true,"age_days":56},{"id":1225465296,"name":"CVE-2026-31431-exploit_py2_py3","full_name":"jiangban046-spec/CVE-2026-31431-exploit_py2_py3","html_url":"https://github.com/jiangban046-spec/CVE-2026-31431-exploit_py2_py3","description":"一个兼容python2和python3的CVE-2026-31431脚本","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-30T10:02:42Z","pushed_at":"2026-04-30T10:02:38Z","created_at":"2026-04-30T09:56:56Z","topics":[],"owner":{"login":"jiangban046-spec","html_url":"https://github.com/jiangban046-spec"},"clone_url":"https://github.com/jiangban046-spec/CVE-2026-31431-exploit_py2_py3.git","has_code":true,"age_days":56},{"id":1225454823,"name":"CVE-2026-31431-Copy-Fail-Detection-Toolkit","full_name":"makitos666/CVE-2026-31431-Copy-Fail-Detection-Toolkit","html_url":"https://github.com/makitos666/CVE-2026-31431-Copy-Fail-Detection-Toolkit","description":"","stargazers_count":0,"forks_count":1,"language":"PowerShell","updated_at":"2026-04-30T09:44:10Z","pushed_at":"2026-04-30T09:44:06Z","created_at":"2026-04-30T09:43:16Z","topics":[],"owner":{"login":"makitos666","html_url":"https://github.com/makitos666"},"clone_url":"https://github.com/makitos666/CVE-2026-31431-Copy-Fail-Detection-Toolkit.git","has_code":true,"age_days":56},{"id":1225400692,"name":"fuck_cve_2026_31431","full_name":"dixyes/fuck_cve_2026_31431","html_url":"https://github.com/dixyes/fuck_cve_2026_31431","description":"fuck CVE-2026-31431 for not stoppable machines","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-04-30T09:20:46Z","pushed_at":"2026-04-30T09:20:42Z","created_at":"2026-04-30T08:37:34Z","topics":[],"owner":{"login":"dixyes","html_url":"https://github.com/dixyes"},"clone_url":"https://github.com/dixyes/fuck_cve_2026_31431.git","has_code":true,"age_days":56},{"id":1225380973,"name":"CVE-2026-31431-Golang","full_name":"eleveni386/CVE-2026-31431-Golang","html_url":"https://github.com/eleveni386/CVE-2026-31431-Golang","description":"CVE-2026-31431 Golang版本。摆脱Python3.10依赖","stargazers_count":0,"forks_count":1,"language":"Go","updated_at":"2026-04-30T08:23:06Z","pushed_at":"2026-04-30T08:23:02Z","created_at":"2026-04-30T08:11:37Z","topics":[],"owner":{"login":"eleveni386","html_url":"https://github.com/eleveni386"},"clone_url":"https://github.com/eleveni386/CVE-2026-31431-Golang.git","has_code":true,"age_days":56},{"id":1225290691,"name":"check-cve-2026-31431","full_name":"arkdev1/check-cve-2026-31431","html_url":"https://github.com/arkdev1/check-cve-2026-31431","description":"","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-04-30T08:09:57Z","pushed_at":"2026-04-30T08:09:53Z","created_at":"2026-04-30T06:16:55Z","topics":[],"owner":{"login":"arkdev1","html_url":"https://github.com/arkdev1"},"clone_url":"https://github.com/arkdev1/check-cve-2026-31431.git","has_code":true,"age_days":56},{"id":1225355295,"name":"copy-fail-mitigate-no-reboot","full_name":"mrowkoob/copy-fail-mitigate-no-reboot","html_url":"https://github.com/mrowkoob/copy-fail-mitigate-no-reboot","description":"Quick mitigation for copy-fail kernel bug CVE-2026-31431","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-04-30T07:55:24Z","pushed_at":"2026-04-30T07:55:20Z","created_at":"2026-04-30T07:37:17Z","topics":[],"owner":{"login":"mrowkoob","html_url":"https://github.com/mrowkoob"},"clone_url":"https://github.com/mrowkoob/copy-fail-mitigate-no-reboot.git","has_code":true,"age_days":56},{"id":1225332828,"name":"cve-2026-31431-fleet-remediator","full_name":"WavesMan/cve-2026-31431-fleet-remediator","html_url":"https://github.com/WavesMan/cve-2026-31431-fleet-remediator","description":"Fleet-scale CVE-2026-31431 audit and remediation orchestrator for Linux hosts via SSH, with strict host-key verification and multi-format reporting.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-30T07:50:48Z","pushed_at":"2026-04-30T07:50:43Z","created_at":"2026-04-30T07:11:44Z","topics":[],"owner":{"login":"WavesMan","html_url":"https://github.com/WavesMan"},"clone_url":"https://github.com/WavesMan/cve-2026-31431-fleet-remediator.git","has_code":true,"age_days":56},{"id":1225339348,"name":"copy-fail-CVE-2026-31431","full_name":"wuzuowei/copy-fail-CVE-2026-31431","html_url":"https://github.com/wuzuowei/copy-fail-CVE-2026-31431","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-30T07:29:42Z","pushed_at":"2026-04-30T07:29:38Z","created_at":"2026-04-30T07:17:46Z","topics":[],"owner":{"login":"wuzuowei","html_url":"https://github.com/wuzuowei"},"clone_url":"https://github.com/wuzuowei/copy-fail-CVE-2026-31431.git","has_code":true,"age_days":56},{"id":1225342098,"name":"copy-fail-cve-2026-31431-aarch64","full_name":"Isw-9/copy-fail-cve-2026-31431-aarch64","html_url":"https://github.com/Isw-9/copy-fail-cve-2026-31431-aarch64","description":"References: https://github.com/theori-io/copy-fail-CVE-2026-31431; https://github.com/bigwario/copy-fail-CVE-2026-31431-C","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-30T07:26:08Z","pushed_at":"2026-04-30T07:26:03Z","created_at":"2026-04-30T07:20:25Z","topics":[],"owner":{"login":"Isw-9","html_url":"https://github.com/Isw-9"},"clone_url":"https://github.com/Isw-9/copy-fail-cve-2026-31431-aarch64.git","has_code":true,"age_days":56},{"id":1225342881,"name":"CVE-2026-31431","full_name":"freelabz/CVE-2026-31431","html_url":"https://github.com/freelabz/CVE-2026-31431","description":"POC for CVE-2026-31431","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-30T07:24:56Z","pushed_at":"2026-04-30T07:24:51Z","created_at":"2026-04-30T07:21:23Z","topics":[],"owner":{"login":"freelabz","html_url":"https://github.com/freelabz"},"clone_url":"https://github.com/freelabz/CVE-2026-31431.git","has_code":true,"age_days":56},{"id":1225271219,"name":"CVE-2026-31431-","full_name":"twowb/CVE-2026-31431-","html_url":"https://github.com/twowb/CVE-2026-31431-","description":"Linux提权漏洞二进制版CVE-2026-31431 ","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-30T05:50:12Z","pushed_at":"2026-04-30T05:50:09Z","created_at":"2026-04-30T05:46:47Z","topics":[],"owner":{"login":"twowb","html_url":"https://github.com/twowb"},"clone_url":"https://github.com/twowb/CVE-2026-31431-.git","has_code":false,"age_days":56},{"id":1225213210,"name":"copyFail-CVE-2026-31431-workaround-bash","full_name":"someCorp/copyFail-CVE-2026-31431-workaround-bash","html_url":"https://github.com/someCorp/copyFail-CVE-2026-31431-workaround-bash","description":"copyFail-CVE-2026-31431-workaround-bash","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-04-30T05:00:17Z","pushed_at":"2026-04-30T05:00:13Z","created_at":"2026-04-30T04:00:24Z","topics":[],"owner":{"login":"someCorp","html_url":"https://github.com/someCorp"},"clone_url":"https://github.com/someCorp/copyFail-CVE-2026-31431-workaround-bash.git","has_code":true,"age_days":56},{"id":1225196738,"name":"copy-fail-CVE-2026-31431","full_name":"vishwanathakuthota/copy-fail-CVE-2026-31431","html_url":"https://github.com/vishwanathakuthota/copy-fail-CVE-2026-31431","description":"copy-fail-CVE-2026-31431","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-30T03:31:19Z","pushed_at":"2026-04-30T03:31:14Z","created_at":"2026-04-30T03:29:15Z","topics":[],"owner":{"login":"vishwanathakuthota","html_url":"https://github.com/vishwanathakuthota"},"clone_url":"https://github.com/vishwanathakuthota/copy-fail-CVE-2026-31431.git","has_code":true,"age_days":56},{"id":1225160135,"name":"cve-2026-31431","full_name":"ruattd/cve-2026-31431","html_url":"https://github.com/ruattd/cve-2026-31431","description":"Copy fail action runner test","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-30T03:24:08Z","pushed_at":"2026-04-30T03:24:05Z","created_at":"2026-04-30T02:21:09Z","topics":[],"owner":{"login":"ruattd","html_url":"https://github.com/ruattd"},"clone_url":"https://github.com/ruattd/cve-2026-31431.git","has_code":false,"age_days":56},{"id":1233626689,"name":"copy-fail-cve-2026-31431-linux-kernel-page-cache-lpe","full_name":"Hunt-Benito/copy-fail-cve-2026-31431-linux-kernel-page-cache-lpe","html_url":"https://github.com/Hunt-Benito/copy-fail-cve-2026-31431-linux-kernel-page-cache-lpe","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-21T07:20:03Z","pushed_at":"2026-06-21T07:19:59Z","created_at":"2026-05-09T06:55:25Z","topics":[],"owner":{"login":"Hunt-Benito","html_url":"https://github.com/Hunt-Benito"},"clone_url":"https://github.com/Hunt-Benito/copy-fail-cve-2026-31431-linux-kernel-page-cache-lpe.git","has_code":true,"age_days":47},{"id":1226857673,"name":"copyfailscan","full_name":"monobrau/copyfailscan","html_url":"https://github.com/monobrau/copyfailscan","description":"SSH posture helper for CVE-2026-31431 (Copy Fail): kernel and algif_aead inventory","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-11T00:03:25Z","pushed_at":"2026-06-11T00:03:21Z","created_at":"2026-05-01T22:54:44Z","topics":[],"owner":{"login":"monobrau","html_url":"https://github.com/monobrau"},"clone_url":"https://github.com/monobrau/copyfailscan.git","has_code":true,"age_days":54},{"id":1235604978,"name":"CVE-2026-31431-Analysis","full_name":"mauricioportela/CVE-2026-31431-Analysis","html_url":"https://github.com/mauricioportela/CVE-2026-31431-Analysis","description":"Relatório de Análise Técnica: Exploração de Falha de Isolamento no Kernel Linux (CVE-2026-31431)","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-10T18:31:55Z","pushed_at":"2026-06-10T18:31:38Z","created_at":"2026-05-11T13:35:49Z","topics":[],"owner":{"login":"mauricioportela","html_url":"https://github.com/mauricioportela"},"clone_url":"https://github.com/mauricioportela/CVE-2026-31431-Analysis.git","has_code":true,"age_days":45},{"id":1235059624,"name":"CVE-2026-31431","full_name":"Lutfifakee-Project/CVE-2026-31431","html_url":"https://github.com/Lutfifakee-Project/CVE-2026-31431","description":"CVE-2026-31431 - Linux Kernel Page Cache Vulnerability","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-31T13:36:53Z","pushed_at":"2026-05-31T13:36:50Z","created_at":"2026-05-11T01:14:12Z","topics":["cve-2026-31431","cve-2026-31431-lpe-exploit","cve-2026-31431-poc","linux-kernel","security-research"],"owner":{"login":"Lutfifakee-Project","html_url":"https://github.com/Lutfifakee-Project"},"clone_url":"https://github.com/Lutfifakee-Project/CVE-2026-31431.git","has_code":true,"age_days":45},{"id":1226491425,"name":"CVE-2026-31431-EXPLOIT","full_name":"K3ysTr0K3R/CVE-2026-31431-EXPLOIT","html_url":"https://github.com/K3ysTr0K3R/CVE-2026-31431-EXPLOIT","description":"CVE-2026-31431 - Copy Fail - PoC exploit","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-08T13:54:54Z","pushed_at":"2026-05-30T16:59:02Z","created_at":"2026-05-01T13:20:31Z","topics":["cve-2026-31431","exploit","proof-of-concept","root-privileges"],"owner":{"login":"K3ysTr0K3R","html_url":"https://github.com/K3ysTr0K3R"},"clone_url":"https://github.com/K3ysTr0K3R/CVE-2026-31431-EXPLOIT.git","has_code":true,"age_days":55},{"id":1227182141,"name":"CVE-2026-31431","full_name":"suominen/CVE-2026-31431","html_url":"https://github.com/suominen/CVE-2026-31431","description":"Tracking CVE-2026-31431","stargazers_count":0,"forks_count":0,"language":"HTML","updated_at":"2026-05-29T07:58:52Z","pushed_at":"2026-05-29T07:58:48Z","created_at":"2026-05-02T10:22:01Z","topics":["linux","security"],"owner":{"login":"suominen","html_url":"https://github.com/suominen"},"clone_url":"https://github.com/suominen/CVE-2026-31431.git","has_code":true,"age_days":54},{"id":1252866662,"name":"Detection-Tool-Kit-for-CVE-2026-31431","full_name":"vishvacyber/Detection-Tool-Kit-for-CVE-2026-31431","html_url":"https://github.com/vishvacyber/Detection-Tool-Kit-for-CVE-2026-31431","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-29T00:32:01Z","pushed_at":"2026-05-29T00:31:57Z","created_at":"2026-05-29T00:29:50Z","topics":[],"owner":{"login":"vishvacyber","html_url":"https://github.com/vishvacyber"},"clone_url":"https://github.com/vishvacyber/Detection-Tool-Kit-for-CVE-2026-31431.git","has_code":true,"age_days":27},{"id":1252414751,"name":"CVE-2026-31431","full_name":"songzzzz/CVE-2026-31431","html_url":"https://github.com/songzzzz/CVE-2026-31431","description":"aarch64 and x64 python POC","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-28T14:06:47Z","pushed_at":"2026-05-28T14:05:11Z","created_at":"2026-05-28T13:52:15Z","topics":[],"owner":{"login":"songzzzz","html_url":"https://github.com/songzzzz"},"clone_url":"https://github.com/songzzzz/CVE-2026-31431.git","has_code":true,"age_days":28},{"id":1240343224,"name":"ProyectoFinalSO","full_name":"zKaaanon/ProyectoFinalSO","html_url":"https://github.com/zKaaanon/ProyectoFinalSO","description":"Estudio del bug CVE-2026-31431","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-26T23:48:36Z","pushed_at":"2026-05-26T23:48:32Z","created_at":"2026-05-16T03:07:04Z","topics":[],"owner":{"login":"zKaaanon","html_url":"https://github.com/zKaaanon"},"clone_url":"https://github.com/zKaaanon/ProyectoFinalSO.git","has_code":true,"age_days":40},{"id":1227691582,"name":"CVE-2026-31431-copy-fail","full_name":"aexdyhaxor/CVE-2026-31431-copy-fail","html_url":"https://github.com/aexdyhaxor/CVE-2026-31431-copy-fail","description":"CVE-2026-31431 merupakan celah keamanan yang terjadi akibat kegagalan dalam proses penyalinan data (copy operation failure). Kerentanan ini muncul ketika sistem tidak melakukan validasi atau penanganan error dengan benar saat melakukan proses copy data dari satu buffer ke buffer lain","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-24T04:24:28Z","pushed_at":"2026-05-24T04:24:25Z","created_at":"2026-05-03T03:08:04Z","topics":[],"owner":{"login":"aexdyhaxor","html_url":"https://github.com/aexdyhaxor"},"clone_url":"https://github.com/aexdyhaxor/CVE-2026-31431-copy-fail.git","has_code":true,"age_days":53},{"id":1247113589,"name":"linux-kernel-algif-aead-checker","full_name":"ridhinva/linux-kernel-algif-aead-checker","html_url":"https://github.com/ridhinva/linux-kernel-algif-aead-checker","description":"CVE-2026-31431 / Copy Fail Linux kernel vulnerability checker - algif_aead attack path detection","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-03T17:53:21Z","pushed_at":"2026-05-22T23:16:05Z","created_at":"2026-05-22T23:15:41Z","topics":[],"owner":{"login":"ridhinva","html_url":"https://github.com/ridhinva"},"clone_url":"https://github.com/ridhinva/linux-kernel-algif-aead-checker.git","has_code":true,"age_days":33},{"id":1246968706,"name":"copy-fail-python","full_name":"wh1sky02/copy-fail-python","html_url":"https://github.com/wh1sky02/copy-fail-python","description":"Portable Python PoC for CVE-2026-31431 (Copy Fail)","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-22T18:58:31Z","pushed_at":"2026-05-22T18:58:27Z","created_at":"2026-05-22T18:54:41Z","topics":[],"owner":{"login":"wh1sky02","html_url":"https://github.com/wh1sky02"},"clone_url":"https://github.com/wh1sky02/copy-fail-python.git","has_code":true,"age_days":34},{"id":1246019048,"name":"CVE-2026-31431-Copy-Fail---Minified-LPE-PoC","full_name":"JimmyPughtron/CVE-2026-31431-Copy-Fail---Minified-LPE-PoC","html_url":"https://github.com/JimmyPughtron/CVE-2026-31431-Copy-Fail---Minified-LPE-PoC","description":"CVE-2026-31431-CopyFail---Minified-LPE-PoC","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-22T13:25:26Z","pushed_at":"2026-05-21T20:09:34Z","created_at":"2026-05-21T19:43:50Z","topics":["cve-2026-31431-copy-fail-privilege-escalation-lpe"],"owner":{"login":"JimmyPughtron","html_url":"https://github.com/JimmyPughtron"},"clone_url":"https://github.com/JimmyPughtron/CVE-2026-31431-Copy-Fail---Minified-LPE-PoC.git","has_code":true,"age_days":35},{"id":1245407320,"name":"CVE-2026-31431-C","full_name":"yangh-beep/CVE-2026-31431-C","html_url":"https://github.com/yangh-beep/CVE-2026-31431-C","description":"","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-21T07:37:34Z","pushed_at":"2026-05-21T07:37:30Z","created_at":"2026-05-21T07:36:55Z","topics":[],"owner":{"login":"yangh-beep","html_url":"https://github.com/yangh-beep"},"clone_url":"https://github.com/yangh-beep/CVE-2026-31431-C.git","has_code":true,"age_days":35},{"id":1234358906,"name":"copyfail2_electric_boogaloo_fix","full_name":"vorkampfer/copyfail2_electric_boogaloo_fix","html_url":"https://github.com/vorkampfer/copyfail2_electric_boogaloo_fix","description":"A temporary mitigation against copy_fail variant (copyfail2_electric_boogaloo) - Unprivileged Linux LPE via xfrm ESP-in-UDP MSG_SPLICE_PAGES no-COW fast path. Page-cache write into any readable file. Overwrites a nologin line in /etc/passwd with sick::0:0:…:/:/bin/bash and sus into it. Same class as Copy Fail (CVE-2026-31431), different subsystem.","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-19T16:09:45Z","pushed_at":"2026-05-19T16:06:53Z","created_at":"2026-05-10T04:38:21Z","topics":[],"owner":{"login":"vorkampfer","html_url":"https://github.com/vorkampfer"},"clone_url":"https://github.com/vorkampfer/copyfail2_electric_boogaloo_fix.git","has_code":true,"age_days":46},{"id":1242816393,"name":"cve-2026-31431-mitigation","full_name":"Yakovyakov/cve-2026-31431-mitigation","html_url":"https://github.com/Yakovyakov/cve-2026-31431-mitigation","description":"    Detection and mitigation tooling for CVE-2026-31431 (Copy Fail) on Linux kernels. Includes Phalanx-CCS and Silent4Labs scripts plus an Ansible playbook to apply temporary mitigation (block algif_aead module or boot parameter) across servers.","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-19T13:29:43Z","pushed_at":"2026-05-19T13:25:55Z","created_at":"2026-05-18T19:32:12Z","topics":["ansible","cve-2026-31431","mitigation"],"owner":{"login":"Yakovyakov","html_url":"https://github.com/Yakovyakov"},"clone_url":"https://github.com/Yakovyakov/cve-2026-31431-mitigation.git","has_code":true,"age_days":38},{"id":1237654676,"name":"Copy-Fail-CVE-2026-31431-Lab","full_name":"kuniyal08/Copy-Fail-CVE-2026-31431-Lab","html_url":"https://github.com/kuniyal08/Copy-Fail-CVE-2026-31431-Lab","description":"Reproduced the fileless LPE CVE‑2026‑31431 (“Copy Fail”) on Kali Linux, then built auditd, Sigma \u0026 YARA detections to catch this stealthy kernel exploit that leaves no disk footprint.","stargazers_count":0,"forks_count":0,"language":"YARA","updated_at":"2026-05-19T11:04:28Z","pushed_at":"2026-05-19T11:04:24Z","created_at":"2026-05-13T11:36:00Z","topics":[],"owner":{"login":"kuniyal08","html_url":"https://github.com/kuniyal08"},"clone_url":"https://github.com/kuniyal08/Copy-Fail-CVE-2026-31431-Lab.git","has_code":true,"age_days":43},{"id":1243354056,"name":"cve-2026-31431-checker","full_name":"GubiczaP/cve-2026-31431-checker","html_url":"https://github.com/GubiczaP/cve-2026-31431-checker","description":"Shell scanner for CVE-2026-31431 \"Copy Fail\" — a local privilege escalation via Linux kernel page cache corruption (algif_aead/AF_ALG). Checks kernel version, patch status, module state, setuid exposure and mitigations. Supports Debian 11–13 and Ubuntu 20.04–25.10. CI/CD-ready (exit codes + JSON output).","stargazers_count":0,"forks_count":1,"language":"Shell","updated_at":"2026-05-19T09:13:17Z","pushed_at":"2026-05-19T09:13:13Z","created_at":"2026-05-19T09:07:59Z","topics":[],"owner":{"login":"GubiczaP","html_url":"https://github.com/GubiczaP"},"clone_url":"https://github.com/GubiczaP/cve-2026-31431-checker.git","has_code":true,"age_days":37},{"id":1242921991,"name":"OCI-Ansible-Fix-CVE-2026-31431","full_name":"cj667113/OCI-Ansible-Fix-CVE-2026-31431","html_url":"https://github.com/cj667113/OCI-Ansible-Fix-CVE-2026-31431","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-18T22:14:29Z","pushed_at":"2026-05-18T22:14:24Z","created_at":"2026-05-18T22:14:21Z","topics":[],"owner":{"login":"cj667113","html_url":"https://github.com/cj667113"},"clone_url":"https://github.com/cj667113/OCI-Ansible-Fix-CVE-2026-31431.git","has_code":false,"age_days":37},{"id":1233730308,"name":"CVE-2026-31431_exp.c","full_name":"Helios973/CVE-2026-31431_exp.c","html_url":"https://github.com/Helios973/CVE-2026-31431_exp.c","description":"","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-18T12:50:15Z","pushed_at":"2026-05-18T12:49:50Z","created_at":"2026-05-09T09:35:17Z","topics":[],"owner":{"login":"Helios973","html_url":"https://github.com/Helios973"},"clone_url":"https://github.com/Helios973/CVE-2026-31431_exp.c.git","has_code":true,"age_days":47},{"id":1242185450,"name":"CVE-2026-31431","full_name":"royayub/CVE-2026-31431","html_url":"https://github.com/royayub/CVE-2026-31431","description":"Local Privilege Escalation. Flips the running user's UID to 0 in /etc/passwd's page cache, then invokes su for a root shell.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-18T07:50:50Z","pushed_at":"2026-05-18T07:50:46Z","created_at":"2026-05-18T07:44:05Z","topics":[],"owner":{"login":"royayub","html_url":"https://github.com/royayub"},"clone_url":"https://github.com/royayub/CVE-2026-31431.git","has_code":true,"age_days":38},{"id":1241001297,"name":"CVE-2026-31431-Copy-Fail-R-pertoire-de-Pr-vention","full_name":"Maxime288/CVE-2026-31431-Copy-Fail-R-pertoire-de-Pr-vention","html_url":"https://github.com/Maxime288/CVE-2026-31431-Copy-Fail-R-pertoire-de-Pr-vention","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-18T00:08:29Z","pushed_at":"2026-05-18T00:08:25Z","created_at":"2026-05-16T20:53:45Z","topics":[],"owner":{"login":"Maxime288","html_url":"https://github.com/Maxime288"},"clone_url":"https://github.com/Maxime288/CVE-2026-31431-Copy-Fail-R-pertoire-de-Pr-vention.git","has_code":true,"age_days":39},{"id":1226281843,"name":"CVE-2026-31431","full_name":"HulnotHutu/CVE-2026-31431","html_url":"https://github.com/HulnotHutu/CVE-2026-31431","description":"对 CVE-2026-31431 的复现分析、C 改编的 exp。","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-16T08:55:52Z","pushed_at":"2026-05-16T08:55:48Z","created_at":"2026-05-01T07:36:05Z","topics":[],"owner":{"login":"HulnotHutu","html_url":"https://github.com/HulnotHutu"},"clone_url":"https://github.com/HulnotHutu/CVE-2026-31431.git","has_code":true,"age_days":55},{"id":1226206997,"name":"d8-copy-fail-mitigation","full_name":"deckhouse/d8-copy-fail-mitigation","html_url":"https://github.com/deckhouse/d8-copy-fail-mitigation","description":"CVE-2026-31431 mitigation (Copy Fail)","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-15T16:23:16Z","pushed_at":"2026-05-15T16:23:11Z","created_at":"2026-05-01T05:13:42Z","topics":[],"owner":{"login":"deckhouse","html_url":"https://github.com/deckhouse"},"clone_url":"https://github.com/deckhouse/d8-copy-fail-mitigation.git","has_code":false,"age_days":55},{"id":1238971610,"name":"CopyFail","full_name":"dotPY-hax/CopyFail","html_url":"https://github.com/dotPY-hax/CopyFail","description":"A CopyFail CVE-2026-31431 implementation in python that isnt slop! Bring your own payload","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-05-14T16:28:31Z","pushed_at":"2026-05-14T16:28:26Z","created_at":"2026-05-14T16:24:24Z","topics":[],"owner":{"login":"dotPY-hax","html_url":"https://github.com/dotPY-hax"},"clone_url":"https://github.com/dotPY-hax/CopyFail.git","has_code":true,"age_days":42},{"id":1238465365,"name":"CVE-2026-31431-CopyFail","full_name":"0xFuffM3/CVE-2026-31431-CopyFail","html_url":"https://github.com/0xFuffM3/CVE-2026-31431-CopyFail","description":"","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-14T09:16:48Z","pushed_at":"2026-05-14T09:16:44Z","created_at":"2026-05-14T06:32:14Z","topics":[],"owner":{"login":"0xFuffM3","html_url":"https://github.com/0xFuffM3"},"clone_url":"https://github.com/0xFuffM3/CVE-2026-31431-CopyFail.git","has_code":true,"age_days":42},{"id":1237824325,"name":"copy-fail-CVE-2026-31431","full_name":"SilverRuler/copy-fail-CVE-2026-31431","html_url":"https://github.com/SilverRuler/copy-fail-CVE-2026-31431","description":"copy-fail-CVE-2026-31431","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-13T15:15:37Z","pushed_at":"2026-05-13T14:45:00Z","created_at":"2026-05-13T14:43:00Z","topics":[],"owner":{"login":"SilverRuler","html_url":"https://github.com/SilverRuler"},"clone_url":"https://github.com/SilverRuler/copy-fail-CVE-2026-31431.git","has_code":true,"age_days":43},{"id":1237230551,"name":"SplicePrivillegeEscalationFIX","full_name":"DroPZsec/SplicePrivillegeEscalationFIX","html_url":"https://github.com/DroPZsec/SplicePrivillegeEscalationFIX","description":"this little script blocks the new splice-ram-privlilleg ecalation fastly befor the contributers do it ( CVE-2026-31431)  (CopyFail fix)","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-13T02:14:23Z","pushed_at":"2026-05-13T02:02:08Z","created_at":"2026-05-13T02:01:30Z","topics":[],"owner":{"login":"DroPZsec","html_url":"https://github.com/DroPZsec"},"clone_url":"https://github.com/DroPZsec/SplicePrivillegeEscalationFIX.git","has_code":true,"age_days":43},{"id":1236764293,"name":"copyfail-fix","full_name":"hyz-is/copyfail-fix","html_url":"https://github.com/hyz-is/copyfail-fix","description":"Quick mitigation and patch script for CVE-2026-31431 (Copy Fail) on Ubuntu/Debian VPS","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-12T18:12:45Z","pushed_at":"2026-05-12T15:25:59Z","created_at":"2026-05-12T14:50:38Z","topics":[],"owner":{"login":"hyz-is","html_url":"https://github.com/hyz-is"},"clone_url":"https://github.com/hyz-is/copyfail-fix.git","has_code":true,"age_days":44},{"id":1232772151,"name":"Copy-Fail","full_name":"p401a-ops/Copy-Fail","html_url":"https://github.com/p401a-ops/Copy-Fail","description":"CVE-2026-31431 (\"Copy Fail\") vulnerability detector \u0026 exploit on Astra linux 1.7.6 with 3.7+ python","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-12T08:37:52Z","pushed_at":"2026-05-12T08:37:40Z","created_at":"2026-05-08T08:55:08Z","topics":["astra-linux","copy-fail"],"owner":{"login":"p401a-ops","html_url":"https://github.com/p401a-ops"},"clone_url":"https://github.com/p401a-ops/Copy-Fail.git","has_code":true,"age_days":48},{"id":1235913979,"name":"copyfail","full_name":"polyakovavv/copyfail","html_url":"https://github.com/polyakovavv/copyfail","description":"Copy Fail (CVE-2026-31431)","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-11T19:28:16Z","pushed_at":"2026-05-11T19:28:11Z","created_at":"2026-05-11T19:23:03Z","topics":[],"owner":{"login":"polyakovavv","html_url":"https://github.com/polyakovavv"},"clone_url":"https://github.com/polyakovavv/copyfail.git","has_code":true,"age_days":45},{"id":1231866890,"name":"linux-copy-fail-CVE-2026-31431","full_name":"adilkurtulmus/linux-copy-fail-CVE-2026-31431","html_url":"https://github.com/adilkurtulmus/linux-copy-fail-CVE-2026-31431","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-11T10:51:16Z","pushed_at":"2026-05-11T10:51:11Z","created_at":"2026-05-07T11:12:07Z","topics":[],"owner":{"login":"adilkurtulmus","html_url":"https://github.com/adilkurtulmus"},"clone_url":"https://github.com/adilkurtulmus/linux-copy-fail-CVE-2026-31431.git","has_code":true,"age_days":49},{"id":1235439128,"name":"CVE-2026-31431-CopyFail-Lab","full_name":"u1tr0nex/CVE-2026-31431-CopyFail-Lab","html_url":"https://github.com/u1tr0nex/CVE-2026-31431-CopyFail-Lab","description":"Lab testing documentation for CVE-2026-31431 (Copy Fail) Linux kernel LPE","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-18T11:30:16Z","pushed_at":"2026-05-11T10:48:11Z","created_at":"2026-05-11T10:23:45Z","topics":[],"owner":{"login":"u1tr0nex","html_url":"https://github.com/u1tr0nex"},"clone_url":"https://github.com/u1tr0nex/CVE-2026-31431-CopyFail-Lab.git","has_code":true,"age_days":45},{"id":1234921588,"name":"CVE-2026-31431","full_name":"Karim33z/CVE-2026-31431","html_url":"https://github.com/Karim33z/CVE-2026-31431","description":"Educational Proof of Concept for CVE-2026-31431 / Copy Fail Linux local privilege escalation via AF_ALG algif_aead","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-10T21:08:44Z","pushed_at":"2026-05-10T20:23:46Z","created_at":"2026-05-10T20:12:29Z","topics":[],"owner":{"login":"Karim33z","html_url":"https://github.com/Karim33z"},"clone_url":"https://github.com/Karim33z/CVE-2026-31431.git","has_code":true,"age_days":45},{"id":1234242356,"name":"Copy_Grail","full_name":"cleozi/Copy_Grail","html_url":"https://github.com/cleozi/Copy_Grail","description":"Elegant C++ exploit for CVE-2026-31431 (Copy Fail) using AF_ALG authenticated encryption + splice(2) to overwrite setuid binary memory","stargazers_count":0,"forks_count":0,"language":"C++","updated_at":"2026-05-10T12:38:29Z","pushed_at":"2026-05-10T12:38:25Z","created_at":"2026-05-09T23:36:35Z","topics":[],"owner":{"login":"cleozi","html_url":"https://github.com/cleozi"},"clone_url":"https://github.com/cleozi/Copy_Grail.git","has_code":true,"age_days":46},{"id":1232670247,"name":"copy-fail-CVE-2026-31431","full_name":"Morton-Li/copy-fail-CVE-2026-31431","html_url":"https://github.com/Morton-Li/copy-fail-CVE-2026-31431","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-10T10:18:35Z","pushed_at":"2026-05-10T10:18:32Z","created_at":"2026-05-08T06:41:35Z","topics":[],"owner":{"login":"Morton-Li","html_url":"https://github.com/Morton-Li"},"clone_url":"https://github.com/Morton-Li/copy-fail-CVE-2026-31431.git","has_code":true,"age_days":48},{"id":1233538105,"name":"copy_fail_mitigation","full_name":"vorkampfer/copy_fail_mitigation","html_url":"https://github.com/vorkampfer/copy_fail_mitigation","description":"This script will attempt to mitigate the copy_fail attack. CVE-2026-31431","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-09T04:40:24Z","pushed_at":"2026-05-09T04:40:21Z","created_at":"2026-05-09T04:20:08Z","topics":[],"owner":{"login":"vorkampfer","html_url":"https://github.com/vorkampfer"},"clone_url":"https://github.com/vorkampfer/copy_fail_mitigation.git","has_code":true,"age_days":47},{"id":1230675521,"name":"copyfail-c","full_name":"luoqianlin/copyfail-c","html_url":"https://github.com/luoqianlin/copyfail-c","description":"C implementation for researching Copy Fail (CVE-2026-31431)","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-09T00:22:37Z","pushed_at":"2026-05-09T00:22:34Z","created_at":"2026-05-06T08:05:13Z","topics":[],"owner":{"login":"luoqianlin","html_url":"https://github.com/luoqianlin"},"clone_url":"https://github.com/luoqianlin/copyfail-c.git","has_code":true,"age_days":50},{"id":1229416911,"name":"Copy-Fail-CVE-2026-31431-dirty-frag-CVE-2026-43284","full_name":"6abc/Copy-Fail-CVE-2026-31431-dirty-frag-CVE-2026-43284","html_url":"https://github.com/6abc/Copy-Fail-CVE-2026-31431-dirty-frag-CVE-2026-43284","description":"","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-08T17:20:53Z","pushed_at":"2026-05-08T17:20:49Z","created_at":"2026-05-05T02:50:48Z","topics":[],"owner":{"login":"6abc","html_url":"https://github.com/6abc"},"clone_url":"https://github.com/6abc/Copy-Fail-CVE-2026-31431-dirty-frag-CVE-2026-43284.git","has_code":true,"age_days":51},{"id":1233130669,"name":"CVE-2026-31431-Verificador-Exploit","full_name":"hori0729/CVE-2026-31431-Verificador-Exploit","html_url":"https://github.com/hori0729/CVE-2026-31431-Verificador-Exploit","description":"Linux Kernel Local Privilege Escalation","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-08T16:31:26Z","pushed_at":"2026-05-08T16:31:05Z","created_at":"2026-05-08T16:14:49Z","topics":[],"owner":{"login":"hori0729","html_url":"https://github.com/hori0729"},"clone_url":"https://github.com/hori0729/CVE-2026-31431-Verificador-Exploit.git","has_code":true,"age_days":48},{"id":1233060632,"name":"MitigationToolkit-ROSN-LR5-Full","full_name":"ROSNLR5/MitigationToolkit-ROSN-LR5-Full","html_url":"https://github.com/ROSNLR5/MitigationToolkit-ROSN-LR5-Full","description":"Kernel LPE PoC \u0026 Mitigation Toolkit - ROSN-LR5-Full (CVE-2026-31431)","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-08T15:03:07Z","pushed_at":"2026-05-08T15:02:55Z","created_at":"2026-05-08T14:50:17Z","topics":[],"owner":{"login":"ROSNLR5","html_url":"https://github.com/ROSNLR5"},"clone_url":"https://github.com/ROSNLR5/MitigationToolkit-ROSN-LR5-Full.git","has_code":true,"age_days":48},{"id":1226941225,"name":"modrosnlr5","full_name":"ROSNLR5/modrosnlr5","html_url":"https://github.com/ROSNLR5/modrosnlr5","description":"Linux Kernel LPE PoC (CVE-2026-31431)","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-08T14:56:02Z","pushed_at":"2026-05-08T14:55:59Z","created_at":"2026-05-02T02:15:42Z","topics":[],"owner":{"login":"ROSNLR5","html_url":"https://github.com/ROSNLR5"},"clone_url":"https://github.com/ROSNLR5/modrosnlr5.git","has_code":true,"age_days":54},{"id":1226318839,"name":"almalinux-fix-cve-2026-31431","full_name":"OmerAti/almalinux-fix-cve-2026-31431","html_url":"https://github.com/OmerAti/almalinux-fix-cve-2026-31431","description":"CVE-2026-31431 Kernel Fix Script","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-08T11:58:12Z","pushed_at":"2026-05-08T11:58:08Z","created_at":"2026-05-01T08:33:26Z","topics":[],"owner":{"login":"OmerAti","html_url":"https://github.com/OmerAti"},"clone_url":"https://github.com/OmerAti/almalinux-fix-cve-2026-31431.git","has_code":true,"age_days":55},{"id":1228787321,"name":"cve-2026-31431","full_name":"Mrhudson69/cve-2026-31431","html_url":"https://github.com/Mrhudson69/cve-2026-31431","description":"","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-08T08:20:40Z","pushed_at":"2026-05-08T08:20:37Z","created_at":"2026-05-04T11:30:32Z","topics":[],"owner":{"login":"Mrhudson69","html_url":"https://github.com/Mrhudson69"},"clone_url":"https://github.com/Mrhudson69/cve-2026-31431.git","has_code":true,"age_days":52},{"id":1231576345,"name":"Copy-fail-CVE-2026-31431-Exploit-in-C","full_name":"Mr-bv/Copy-fail-CVE-2026-31431-Exploit-in-C","html_url":"https://github.com/Mr-bv/Copy-fail-CVE-2026-31431-Exploit-in-C","description":"Discovery and original disclosure of CVE-2026-31431: Theori / Xint. Public writeup: https://copy.fail/.","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-08T07:57:24Z","pushed_at":"2026-05-08T07:57:20Z","created_at":"2026-05-07T04:59:57Z","topics":[],"owner":{"login":"Mr-bv","html_url":"https://github.com/Mr-bv"},"clone_url":"https://github.com/Mr-bv/Copy-fail-CVE-2026-31431-Exploit-in-C.git","has_code":true,"age_days":49},{"id":1231506841,"name":"CVE-2026-31431-live-code-corruption","full_name":"ikow/CVE-2026-31431-live-code-corruption","html_url":"https://github.com/ikow/CVE-2026-31431-live-code-corruption","description":"CVE-2026-31431 (Copy Fail) novel exploit: live code corruption via page cache. Overwrites libc exit() code through MAP_PRIVATE page sharing — affects ALL running processes.","stargazers_count":0,"forks_count":1,"language":"C","updated_at":"2026-05-08T03:39:30Z","pushed_at":"2026-05-08T03:39:27Z","created_at":"2026-05-07T02:58:48Z","topics":[],"owner":{"login":"ikow","html_url":"https://github.com/ikow"},"clone_url":"https://github.com/ikow/CVE-2026-31431-live-code-corruption.git","has_code":true,"age_days":49},{"id":1232309721,"name":"fix-cve-2026-3143","full_name":"ClimbMunchkin/fix-cve-2026-3143","html_url":"https://github.com/ClimbMunchkin/fix-cve-2026-3143","description":"Диагностика и исправление уязвимости CVE-2026-31431 (copy fail)","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-08T01:16:43Z","pushed_at":"2026-05-08T01:16:40Z","created_at":"2026-05-07T19:58:27Z","topics":[],"owner":{"login":"ClimbMunchkin","html_url":"https://github.com/ClimbMunchkin"},"clone_url":"https://github.com/ClimbMunchkin/fix-cve-2026-3143.git","has_code":true,"age_days":49},{"id":1232283257,"name":"CVE-2026-31431-python-copyfail-POC","full_name":"julichaan/CVE-2026-31431-python-copyfail-POC","html_url":"https://github.com/julichaan/CVE-2026-31431-python-copyfail-POC","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-07T20:10:21Z","pushed_at":"2026-05-07T20:10:11Z","created_at":"2026-05-07T19:21:15Z","topics":[],"owner":{"login":"julichaan","html_url":"https://github.com/julichaan"},"clone_url":"https://github.com/julichaan/CVE-2026-31431-python-copyfail-POC.git","has_code":true,"age_days":49},{"id":1232082114,"name":"copy-fail-mitigation-with-bpftrace","full_name":"tang-yikai/copy-fail-mitigation-with-bpftrace","html_url":"https://github.com/tang-yikai/copy-fail-mitigation-with-bpftrace","description":"CVE-2026-31431, AKA Copy Fail, can be mitigated in one-line with bpftrace","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-07T16:49:54Z","pushed_at":"2026-05-07T16:49:50Z","created_at":"2026-05-07T15:12:42Z","topics":[],"owner":{"login":"tang-yikai","html_url":"https://github.com/tang-yikai"},"clone_url":"https://github.com/tang-yikai/copy-fail-mitigation-with-bpftrace.git","has_code":true,"age_days":49},{"id":1232151422,"name":"CVE-2026-31431-Analysis-and-Fix","full_name":"abdelkabirouadoukou/CVE-2026-31431-Analysis-and-Fix","html_url":"https://github.com/abdelkabirouadoukou/CVE-2026-31431-Analysis-and-Fix","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-07T16:37:04Z","pushed_at":"2026-05-07T16:35:30Z","created_at":"2026-05-07T16:31:58Z","topics":[],"owner":{"login":"abdelkabirouadoukou","html_url":"https://github.com/abdelkabirouadoukou"},"clone_url":"https://github.com/abdelkabirouadoukou/CVE-2026-31431-Analysis-and-Fix.git","has_code":false,"age_days":49},{"id":1231938544,"name":"cve-2026-31431","full_name":"pvpaulo01/cve-2026-31431","html_url":"https://github.com/pvpaulo01/cve-2026-31431","description":"Esse documento descreve o Exploit publico em python","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-07T12:38:41Z","pushed_at":"2026-05-07T12:38:26Z","created_at":"2026-05-07T12:36:41Z","topics":[],"owner":{"login":"pvpaulo01","html_url":"https://github.com/pvpaulo01"},"clone_url":"https://github.com/pvpaulo01/cve-2026-31431.git","has_code":true,"age_days":49},{"id":1231737932,"name":"CVE-2026-31431","full_name":"361way/CVE-2026-31431","html_url":"https://github.com/361way/CVE-2026-31431","description":"CVE-2026-31431检测和测试","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-07T08:40:58Z","pushed_at":"2026-05-07T08:40:54Z","created_at":"2026-05-07T08:35:34Z","topics":[],"owner":{"login":"361way","html_url":"https://github.com/361way"},"clone_url":"https://github.com/361way/CVE-2026-31431.git","has_code":true,"age_days":49},{"id":1231051096,"name":"CVE-2026-31431-Copy-Fail-Container-Escape","full_name":"hans362/CVE-2026-31431-Copy-Fail-Container-Escape","html_url":"https://github.com/hans362/CVE-2026-31431-Copy-Fail-Container-Escape","description":"Container escape on any docker container with healthcheck enabled via CVE-2026-31431","stargazers_count":0,"forks_count":2,"language":"C","updated_at":"2026-05-07T01:42:46Z","pushed_at":"2026-05-07T01:42:42Z","created_at":"2026-05-06T15:19:59Z","topics":[],"owner":{"login":"hans362","html_url":"https://github.com/hans362"},"clone_url":"https://github.com/hans362/CVE-2026-31431-Copy-Fail-Container-Escape.git","has_code":true,"age_days":50},{"id":1231287640,"name":"Estudo-de-Caso-CVE-2026-31431-CopyFail","full_name":"pedro-lucas-melo/Estudo-de-Caso-CVE-2026-31431-CopyFail","html_url":"https://github.com/pedro-lucas-melo/Estudo-de-Caso-CVE-2026-31431-CopyFail","description":"🔐 Estudo de caso completo do CVE-2026-31431 (CopyFail) — vulnerabilidade crítica de escalada de privilégio no kernel Linux. Inclui análise técnica, scripts de verificação, hardening e playbook de resposta a incidentes. Fins educacionais.","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-17T18:56:41Z","pushed_at":"2026-05-07T00:08:07Z","created_at":"2026-05-06T20:21:32Z","topics":["cve","hardening","kernel","linux","privilege-escalation","python","security","shell"],"owner":{"login":"pedro-lucas-melo","html_url":"https://github.com/pedro-lucas-melo"},"clone_url":"https://github.com/pedro-lucas-melo/Estudo-de-Caso-CVE-2026-31431-CopyFail.git","has_code":true,"age_days":49},{"id":1231072697,"name":"CVE-2026-31431","full_name":"StarxSky/CVE-2026-31431","html_url":"https://github.com/StarxSky/CVE-2026-31431","description":"\"Copy Fail\" ","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-06T16:57:43Z","pushed_at":"2026-05-06T16:57:38Z","created_at":"2026-05-06T15:44:26Z","topics":[],"owner":{"login":"StarxSky","html_url":"https://github.com/StarxSky"},"clone_url":"https://github.com/StarxSky/CVE-2026-31431.git","has_code":true,"age_days":50},{"id":1227335079,"name":"ansible-role-cve-2026-31431","full_name":"joltcan/ansible-role-cve-2026-31431","html_url":"https://github.com/joltcan/ansible-role-cve-2026-31431","description":"Ansible role: CVE-2026-31431 (Copy Fail) modprobe.d mitigation — disables algif_aead","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-06T14:53:13Z","pushed_at":"2026-05-06T14:34:07Z","created_at":"2026-05-02T14:41:08Z","topics":[],"owner":{"login":"joltcan","html_url":"https://github.com/joltcan"},"clone_url":"https://github.com/joltcan/ansible-role-cve-2026-31431.git","has_code":true,"age_days":54},{"id":1230883253,"name":"XCP_ng_CVE-2026-31431_tester","full_name":"grabesec/XCP_ng_CVE-2026-31431_tester","html_url":"https://github.com/grabesec/XCP_ng_CVE-2026-31431_tester","description":"Test XCP_ng 8.3 for CVE-2026-31431Vulnerability","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-06T12:36:46Z","pushed_at":"2026-05-06T12:36:42Z","created_at":"2026-05-06T12:15:18Z","topics":[],"owner":{"login":"grabesec","html_url":"https://github.com/grabesec"},"clone_url":"https://github.com/grabesec/XCP_ng_CVE-2026-31431_tester.git","has_code":true,"age_days":50},{"id":1230877837,"name":"CVE-2026-31431-Copy-Fail---Advanced-LPE-Proof-of-Concept---C-Rewrite","full_name":"iblamenear/CVE-2026-31431-Copy-Fail---Advanced-LPE-Proof-of-Concept---C-Rewrite","html_url":"https://github.com/iblamenear/CVE-2026-31431-Copy-Fail---Advanced-LPE-Proof-of-Concept---C-Rewrite","description":"Copy Fail (CVE-2026-31431) is a logic bug in the Linux kernel's authencesn cryptographic template. It lets an unprivileged local user trigger a deterministic, controlled 4-byte write into the page cache of any readable file on the system.","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-06T12:13:57Z","pushed_at":"2026-05-06T12:13:54Z","created_at":"2026-05-06T12:08:45Z","topics":[],"owner":{"login":"iblamenear","html_url":"https://github.com/iblamenear"},"clone_url":"https://github.com/iblamenear/CVE-2026-31431-Copy-Fail---Advanced-LPE-Proof-of-Concept---C-Rewrite.git","has_code":true,"age_days":50},{"id":1230211529,"name":"GhostShell","full_name":"RazvanDuda/GhostShell","html_url":"https://github.com/RazvanDuda/GhostShell","description":"CVE-2026-31431 — Local Privilege Escalation via Linux Kernel Page Cache Corruption","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-06T10:11:30Z","pushed_at":"2026-05-06T10:11:26Z","created_at":"2026-05-05T19:33:48Z","topics":[],"owner":{"login":"RazvanDuda","html_url":"https://github.com/RazvanDuda"},"clone_url":"https://github.com/RazvanDuda/GhostShell.git","has_code":true,"age_days":51},{"id":1230754185,"name":"CVE-2026-31431","full_name":"0xN7y/CVE-2026-31431","html_url":"https://github.com/0xN7y/CVE-2026-31431","description":" Logic bug in the kernel's authencesn cryptographic template that escalate privilege","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-06T09:42:53Z","pushed_at":"2026-05-06T09:42:49Z","created_at":"2026-05-06T09:36:39Z","topics":[],"owner":{"login":"0xN7y","html_url":"https://github.com/0xN7y"},"clone_url":"https://github.com/0xN7y/CVE-2026-31431.git","has_code":true,"age_days":50},{"id":1230682952,"name":"CVE-2026-31431-Check","full_name":"tangjie1/CVE-2026-31431-Check","html_url":"https://github.com/tangjie1/CVE-2026-31431-Check","description":"CVE-2026-31431 Copy Fail Linux kernel vulnerability detection script","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-06T08:15:14Z","pushed_at":"2026-05-06T08:15:11Z","created_at":"2026-05-06T08:14:04Z","topics":[],"owner":{"login":"tangjie1","html_url":"https://github.com/tangjie1"},"clone_url":"https://github.com/tangjie1/CVE-2026-31431-Check.git","has_code":true,"age_days":50},{"id":1230645940,"name":"copy-fail","full_name":"voxcia-io/copy-fail","html_url":"https://github.com/voxcia-io/copy-fail","description":"Tutorial Completo: Como Proteger seu contra a Vulnerabilidade CopyFail (CVE-2026-31431)","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-06T07:34:58Z","pushed_at":"2026-05-06T07:34:54Z","created_at":"2026-05-06T07:29:04Z","topics":[],"owner":{"login":"voxcia-io","html_url":"https://github.com/voxcia-io"},"clone_url":"https://github.com/voxcia-io/copy-fail.git","has_code":false,"age_days":50},{"id":1230544298,"name":"CVE-2026-31431-fix","full_name":"ECHO6789/CVE-2026-31431-fix","html_url":"https://github.com/ECHO6789/CVE-2026-31431-fix","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-06T05:15:41Z","pushed_at":"2026-05-06T05:15:41Z","created_at":"2026-05-06T05:15:41Z","topics":[],"owner":{"login":"ECHO6789","html_url":"https://github.com/ECHO6789"},"clone_url":"https://github.com/ECHO6789/CVE-2026-31431-fix.git","has_code":false,"age_days":50},{"id":1230530879,"name":"CVE-2026-31431-Copy-Fail","full_name":"reubensammut/CVE-2026-31431-Copy-Fail","html_url":"https://github.com/reubensammut/CVE-2026-31431-Copy-Fail","description":"My C rewrite of the Copy Fail exploit","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-06T05:10:45Z","pushed_at":"2026-05-06T04:55:14Z","created_at":"2026-05-06T04:52:17Z","topics":[],"owner":{"login":"reubensammut","html_url":"https://github.com/reubensammut"},"clone_url":"https://github.com/reubensammut/CVE-2026-31431-Copy-Fail.git","has_code":true,"age_days":50},{"id":1229777395,"name":"CVE-2026-31431-CopyFail-static-ELF--POC","full_name":"Rat5ak/CVE-2026-31431-CopyFail-static-ELF--POC","html_url":"https://github.com/Rat5ak/CVE-2026-31431-CopyFail-static-ELF--POC","description":"587-byte x86_64 LPE for CVE-2026-31431","stargazers_count":0,"forks_count":0,"language":"Assembly","updated_at":"2026-05-05T22:45:03Z","pushed_at":"2026-05-05T22:44:59Z","created_at":"2026-05-05T11:26:41Z","topics":[],"owner":{"login":"Rat5ak","html_url":"https://github.com/Rat5ak"},"clone_url":"https://github.com/Rat5ak/CVE-2026-31431-CopyFail-static-ELF--POC.git","has_code":true,"age_days":51},{"id":1228865198,"name":"Mitigaciones","full_name":"net0bsd/Mitigaciones","html_url":"https://github.com/net0bsd/Mitigaciones","description":"Mitigacion del CVE-2026-31431 BASH","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-05T19:19:08Z","pushed_at":"2026-05-05T19:19:04Z","created_at":"2026-05-04T13:09:07Z","topics":[],"owner":{"login":"net0bsd","html_url":"https://github.com/net0bsd"},"clone_url":"https://github.com/net0bsd/Mitigaciones.git","has_code":true,"age_days":52},{"id":1230118294,"name":"CopyFail-Scanner-CVE-2026-31431","full_name":"Raptoratack/CopyFail-Scanner-CVE-2026-31431","html_url":"https://github.com/Raptoratack/CopyFail-Scanner-CVE-2026-31431","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-05T19:16:11Z","pushed_at":"2026-05-05T19:16:07Z","created_at":"2026-05-05T17:38:43Z","topics":[],"owner":{"login":"Raptoratack","html_url":"https://github.com/Raptoratack"},"clone_url":"https://github.com/Raptoratack/CopyFail-Scanner-CVE-2026-31431.git","has_code":true,"age_days":51},{"id":1230157973,"name":"ubuntu-cve-2026-31431-mitigation","full_name":"mrmtwoj/ubuntu-cve-2026-31431-mitigation","html_url":"https://github.com/mrmtwoj/ubuntu-cve-2026-31431-mitigation","description":"دستورالعمل‌های کاهش ریسک و به‌روزرسانی برای CVE-2026-31431 در سیستم‌های اوبونتو، شامل مراحل ارتقاء کرنل و kmod.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-05T18:50:49Z","pushed_at":"2026-05-05T18:50:44Z","created_at":"2026-05-05T18:26:46Z","topics":["cve","cve-2026-31431","infra","kernel","kmod","linux","mirror","mirror-iran","offline-mirror","security","sysadmin","ubuntu","update"],"owner":{"login":"mrmtwoj","html_url":"https://github.com/mrmtwoj"},"clone_url":"https://github.com/mrmtwoj/ubuntu-cve-2026-31431-mitigation.git","has_code":false,"age_days":51},{"id":1230156036,"name":"CVE-2026-31431","full_name":"devtint/CVE-2026-31431","html_url":"https://github.com/devtint/CVE-2026-31431","description":"https://devtint.github.io/CVE-2026-31431","stargazers_count":0,"forks_count":0,"language":"HTML","updated_at":"2026-05-09T04:59:13Z","pushed_at":"2026-05-05T18:25:34Z","created_at":"2026-05-05T18:24:20Z","topics":[],"owner":{"login":"devtint","html_url":"https://github.com/devtint"},"clone_url":"https://github.com/devtint/CVE-2026-31431.git","has_code":true,"age_days":51},{"id":1230060787,"name":"CVE-2026-31431-copy-fail","full_name":"ozergoker/CVE-2026-31431-copy-fail","html_url":"https://github.com/ozergoker/CVE-2026-31431-copy-fail","description":"32-byte Python script roots every Linux distribution","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-05T16:42:06Z","pushed_at":"2026-05-05T16:42:02Z","created_at":"2026-05-05T16:31:16Z","topics":[],"owner":{"login":"ozergoker","html_url":"https://github.com/ozergoker"},"clone_url":"https://github.com/ozergoker/CVE-2026-31431-copy-fail.git","has_code":true,"age_days":51},{"id":1230051555,"name":"CVE-2026-31431-detection-defense","full_name":"Detect-DefenseLab/CVE-2026-31431-detection-defense","html_url":"https://github.com/Detect-DefenseLab/CVE-2026-31431-detection-defense","description":"CVE-2026-31431: Detection \u0026 Defense Against io_uring Bypass of Existing Detection","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-05T16:23:28Z","pushed_at":"2026-05-05T16:23:22Z","created_at":"2026-05-05T16:20:45Z","topics":[],"owner":{"login":"Detect-DefenseLab","html_url":"https://github.com/Detect-DefenseLab"},"clone_url":"https://github.com/Detect-DefenseLab/CVE-2026-31431-detection-defense.git","has_code":false,"age_days":51},{"id":1229910115,"name":"cve-2026-31431","full_name":"zhanghangorg/cve-2026-31431","html_url":"https://github.com/zhanghangorg/cve-2026-31431","description":"","stargazers_count":0,"forks_count":0,"language":"Rust","updated_at":"2026-05-05T13:54:59Z","pushed_at":"2026-05-05T13:54:01Z","created_at":"2026-05-05T13:52:50Z","topics":[],"owner":{"login":"zhanghangorg","html_url":"https://github.com/zhanghangorg"},"clone_url":"https://github.com/zhanghangorg/cve-2026-31431.git","has_code":true,"age_days":51},{"id":1229748919,"name":"CVE-2026-31431-Copy-Fail","full_name":"Industri4l-H3ll-Xpl0it3rs/CVE-2026-31431-Copy-Fail","html_url":"https://github.com/Industri4l-H3ll-Xpl0it3rs/CVE-2026-31431-Copy-Fail","description":"CVE-2026-31431 Exploit | by infrar3d","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-05T10:59:44Z","pushed_at":"2026-05-05T10:57:32Z","created_at":"2026-05-05T10:51:39Z","topics":["exploit"],"owner":{"login":"Industri4l-H3ll-Xpl0it3rs","html_url":"https://github.com/Industri4l-H3ll-Xpl0it3rs"},"clone_url":"https://github.com/Industri4l-H3ll-Xpl0it3rs/CVE-2026-31431-Copy-Fail.git","has_code":true,"age_days":51},{"id":1229714397,"name":"Copy-Fail---CVE-2026-31431","full_name":"MrMixies/Copy-Fail---CVE-2026-31431","html_url":"https://github.com/MrMixies/Copy-Fail---CVE-2026-31431","description":"Script Python pour verifier si un systeme Linux est vulnerable a la faille CVE-2026-31431 (Copy Fail), une elevation de privileges locale dans le noyau Linux.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-05T12:14:17Z","pushed_at":"2026-05-05T10:18:06Z","created_at":"2026-05-05T10:09:36Z","topics":[],"owner":{"login":"MrMixies","html_url":"https://github.com/MrMixies"},"clone_url":"https://github.com/MrMixies/Copy-Fail---CVE-2026-31431.git","has_code":true,"age_days":51},{"id":1229587224,"name":"mitigate-copy-fail.yml","full_name":"deadRabbit92/mitigate-copy-fail.yml","html_url":"https://github.com/deadRabbit92/mitigate-copy-fail.yml","description":"Mitigates CVE-2026-31431 (Copy Fail) by unloading and blacklisting algif_aead kernel module if it is loadable and has no active references.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-05T08:14:13Z","pushed_at":"2026-05-05T08:14:09Z","created_at":"2026-05-05T07:38:04Z","topics":[],"owner":{"login":"deadRabbit92","html_url":"https://github.com/deadRabbit92"},"clone_url":"https://github.com/deadRabbit92/mitigate-copy-fail.yml.git","has_code":false,"age_days":51},{"id":1228682739,"name":"CVE-2026-31431_Kernel_Checker","full_name":"ShahaB108/CVE-2026-31431_Kernel_Checker","html_url":"https://github.com/ShahaB108/CVE-2026-31431_Kernel_Checker","description":"checking if kernel is VULNERABLE","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-05T07:47:34Z","pushed_at":"2026-05-05T07:47:30Z","created_at":"2026-05-04T09:07:38Z","topics":[],"owner":{"login":"ShahaB108","html_url":"https://github.com/ShahaB108"},"clone_url":"https://github.com/ShahaB108/CVE-2026-31431_Kernel_Checker.git","has_code":true,"age_days":52},{"id":1229267211,"name":"CVE-2026-31431","full_name":"KhaosFarbauti/CVE-2026-31431","html_url":"https://github.com/KhaosFarbauti/CVE-2026-31431","description":"PoC for CVE-2026-31431 (Copy Fail)","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-05-05T06:20:25Z","pushed_at":"2026-05-05T06:20:22Z","created_at":"2026-05-04T21:46:56Z","topics":[],"owner":{"login":"KhaosFarbauti","html_url":"https://github.com/KhaosFarbauti"},"clone_url":"https://github.com/KhaosFarbauti/CVE-2026-31431.git","has_code":true,"age_days":51},{"id":1229385888,"name":"check-copyfail-cve-2026-31431","full_name":"Silent4Labs/check-copyfail-cve-2026-31431","html_url":"https://github.com/Silent4Labs/check-copyfail-cve-2026-31431","description":"It’s a read-only Linux risk assessment script for CVE-2026-31431 (\"Copy Fail\").","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-05T01:52:56Z","pushed_at":"2026-05-05T01:52:52Z","created_at":"2026-05-05T01:48:17Z","topics":[],"owner":{"login":"Silent4Labs","html_url":"https://github.com/Silent4Labs"},"clone_url":"https://github.com/Silent4Labs/check-copyfail-cve-2026-31431.git","has_code":true,"age_days":51},{"id":1228903831,"name":"play-go-copy-fail-cve-2026-31431","full_name":"imkk000/play-go-copy-fail-cve-2026-31431","html_url":"https://github.com/imkk000/play-go-copy-fail-cve-2026-31431","description":"","stargazers_count":0,"forks_count":0,"language":"Go","updated_at":"2026-05-05T01:19:31Z","pushed_at":"2026-05-05T01:19:27Z","created_at":"2026-05-04T13:52:54Z","topics":[],"owner":{"login":"imkk000","html_url":"https://github.com/imkk000"},"clone_url":"https://github.com/imkk000/play-go-copy-fail-cve-2026-31431.git","has_code":true,"age_days":52},{"id":1228016894,"name":"copy-fail-rs","full_name":"ncmprbll/copy-fail-rs","html_url":"https://github.com/ncmprbll/copy-fail-rs","description":"CVE-2026-31431","stargazers_count":0,"forks_count":0,"language":"Rust","updated_at":"2026-05-04T19:00:53Z","pushed_at":"2026-05-04T19:00:49Z","created_at":"2026-05-03T13:36:06Z","topics":[],"owner":{"login":"ncmprbll","html_url":"https://github.com/ncmprbll"},"clone_url":"https://github.com/ncmprbll/copy-fail-rs.git","has_code":true,"age_days":53},{"id":1226145956,"name":"alg_check","full_name":"professional-slacker/alg_check","html_url":"https://github.com/professional-slacker/alg_check","description":"CVE-2026-31431","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-04T14:50:15Z","pushed_at":"2026-05-04T14:50:10Z","created_at":"2026-05-01T02:58:17Z","topics":[],"owner":{"login":"professional-slacker","html_url":"https://github.com/professional-slacker"},"clone_url":"https://github.com/professional-slacker/alg_check.git","has_code":true,"age_days":55},{"id":1228080038,"name":"copy-fail-CVE-2026-31431","full_name":"ravindercodes/copy-fail-CVE-2026-31431","html_url":"https://github.com/ravindercodes/copy-fail-CVE-2026-31431","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-04T08:37:28Z","pushed_at":"2026-05-04T08:37:24Z","created_at":"2026-05-03T15:11:43Z","topics":[],"owner":{"login":"ravindercodes","html_url":"https://github.com/ravindercodes"},"clone_url":"https://github.com/ravindercodes/copy-fail-CVE-2026-31431.git","has_code":true,"age_days":53},{"id":1228502015,"name":"CopyFail-Penguin","full_name":"chavezvic/CopyFail-Penguin","html_url":"https://github.com/chavezvic/CopyFail-Penguin","description":"A safe Linux checker for CopyFail/CVE-2026-31431 that reviews kernel version, update status, reboot status, and algif_aead exposure indicators.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-04T04:48:50Z","pushed_at":"2026-05-04T04:48:46Z","created_at":"2026-05-04T04:47:31Z","topics":[],"owner":{"login":"chavezvic","html_url":"https://github.com/chavezvic"},"clone_url":"https://github.com/chavezvic/CopyFail-Penguin.git","has_code":false,"age_days":52},{"id":1228476487,"name":"BigFix-CopyFail-AlmaLinux-Content","full_name":"kvendler/BigFix-CopyFail-AlmaLinux-Content","html_url":"https://github.com/kvendler/BigFix-CopyFail-AlmaLinux-Content","description":"This repository contains BigFix Content that I created for identifying the AlmaLinux systems that require patching to remediate CVE-2026-31431","stargazers_count":0,"forks_count":0,"language":"HTML","updated_at":"2026-05-04T04:01:18Z","pushed_at":"2026-05-04T04:01:14Z","created_at":"2026-05-04T03:56:24Z","topics":[],"owner":{"login":"kvendler","html_url":"https://github.com/kvendler"},"clone_url":"https://github.com/kvendler/BigFix-CopyFail-AlmaLinux-Content.git","has_code":true,"age_days":52},{"id":1228455546,"name":"CVE-2026-31431","full_name":"MetaspIoit/CVE-2026-31431","html_url":"https://github.com/MetaspIoit/CVE-2026-31431","description":"\"Copy Fail\" privilege escalation","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-04T08:10:38Z","pushed_at":"2026-05-04T03:17:07Z","created_at":"2026-05-04T03:15:07Z","topics":[],"owner":{"login":"MetaspIoit","html_url":"https://github.com/MetaspIoit"},"clone_url":"https://github.com/MetaspIoit/CVE-2026-31431.git","has_code":true,"age_days":52},{"id":1228223117,"name":"CVE-2026-31431","full_name":"mCub3/CVE-2026-31431","html_url":"https://github.com/mCub3/CVE-2026-31431","description":"CVE-2026-31431 (Copy Fail) – unprivileged root via AF_ALG page cache corruption. C PoC.","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-03T19:28:56Z","pushed_at":"2026-05-03T19:28:53Z","created_at":"2026-05-03T18:53:48Z","topics":[],"owner":{"login":"mCub3","html_url":"https://github.com/mCub3"},"clone_url":"https://github.com/mCub3/CVE-2026-31431.git","has_code":true,"age_days":53},{"id":1228221745,"name":"CVE-2026-31431","full_name":"kaleth4/CVE-2026-31431","html_url":"https://github.com/kaleth4/CVE-2026-31431","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-03T19:02:49Z","pushed_at":"2026-05-03T19:02:45Z","created_at":"2026-05-03T18:51:34Z","topics":[],"owner":{"login":"kaleth4","html_url":"https://github.com/kaleth4"},"clone_url":"https://github.com/kaleth4/CVE-2026-31431.git","has_code":true,"age_days":53},{"id":1228070815,"name":"CVE-2026-31431","full_name":"tfawnies/CVE-2026-31431","html_url":"https://github.com/tfawnies/CVE-2026-31431","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-03T15:14:32Z","pushed_at":"2026-05-03T15:01:56Z","created_at":"2026-05-03T14:57:49Z","topics":[],"owner":{"login":"tfawnies","html_url":"https://github.com/tfawnies"},"clone_url":"https://github.com/tfawnies/CVE-2026-31431.git","has_code":true,"age_days":53},{"id":1228024051,"name":"Weekly-Breach-Investigation--006","full_name":"jamal-soc21/Weekly-Breach-Investigation--006","html_url":"https://github.com/jamal-soc21/Weekly-Breach-Investigation--006","description":"Repository documenting the Copy Fail (CVE-2026-31431) Linux kernel vulnerability, a local privilege escalation flaw enabling root access and mapped to MITRE ATT\u0026CK techniques.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-03T13:49:04Z","pushed_at":"2026-05-03T13:49:00Z","created_at":"2026-05-03T13:47:08Z","topics":[],"owner":{"login":"jamal-soc21","html_url":"https://github.com/jamal-soc21"},"clone_url":"https://github.com/jamal-soc21/Weekly-Breach-Investigation--006.git","has_code":false,"age_days":53},{"id":1228003575,"name":"cve-2026-31431-checker","full_name":"sibersan/cve-2026-31431-checker","html_url":"https://github.com/sibersan/cve-2026-31431-checker","description":"Detection tool for CVE-2026-31431 Copy Fail vulnerability in Linux kernels. Detection only - does not exploit.","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-05-03T13:45:06Z","pushed_at":"2026-05-03T13:45:02Z","created_at":"2026-05-03T13:14:43Z","topics":[],"owner":{"login":"sibersan","html_url":"https://github.com/sibersan"},"clone_url":"https://github.com/sibersan/cve-2026-31431-checker.git","has_code":true,"age_days":53},{"id":1227861478,"name":"CVE-2026-31431-Linux-Kernel-Copy-Fail-Detector","full_name":"nrnw/CVE-2026-31431-Linux-Kernel-Copy-Fail-Detector","html_url":"https://github.com/nrnw/CVE-2026-31431-Linux-Kernel-Copy-Fail-Detector","description":"Passive detection and OS-aware remediation for CVE-2026-31431 Linux kernel copy-fail vulnerability with Ansible automation support.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-03T09:14:22Z","pushed_at":"2026-05-03T09:14:22Z","created_at":"2026-05-03T09:14:21Z","topics":[],"owner":{"login":"nrnw","html_url":"https://github.com/nrnw"},"clone_url":"https://github.com/nrnw/CVE-2026-31431-Linux-Kernel-Copy-Fail-Detector.git","has_code":false,"age_days":53},{"id":1227820896,"name":"CVE-2026-31431","full_name":"vyahello/CVE-2026-31431","html_url":"https://github.com/vyahello/CVE-2026-31431","description":"🚨 Linux local privilege escalation PoC for CVE-2026-31431","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-16T19:06:29Z","pushed_at":"2026-05-03T08:20:02Z","created_at":"2026-05-03T07:55:28Z","topics":[],"owner":{"login":"vyahello","html_url":"https://github.com/vyahello"},"clone_url":"https://github.com/vyahello/CVE-2026-31431.git","has_code":true,"age_days":53},{"id":1227725147,"name":"cve-2026-31431-check","full_name":"ForensicFoundry/cve-2026-31431-check","html_url":"https://github.com/ForensicFoundry/cve-2026-31431-check","description":"Check local Linux mitigation/exposure status for CVE-2026-31431 \"Copy Fail\"","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-03T05:30:49Z","pushed_at":"2026-05-03T05:25:02Z","created_at":"2026-05-03T04:37:22Z","topics":["af-alg","algif-aead","copy-f","cve-2026-31431","debian","incident-response","privilege-escalation","ubuntu","vulnerability","vulnerability-detection"],"owner":{"login":"ForensicFoundry","html_url":"https://github.com/ForensicFoundry"},"clone_url":"https://github.com/ForensicFoundry/cve-2026-31431-check.git","has_code":true,"age_days":53},{"id":1227696986,"name":"Copy-Fail-CVE-2026-31431-Linux-exp-tools-C-EXP","full_name":"YuCc777/Copy-Fail-CVE-2026-31431-Linux-exp-tools-C-EXP","html_url":"https://github.com/YuCc777/Copy-Fail-CVE-2026-31431-Linux-exp-tools-C-EXP","description":"Copy Fail-CVE-2026-31431\u0026Linux 提权工具\u0026Linux-exp-tools\u0026C-EXP","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-03T03:22:11Z","pushed_at":"2026-05-03T03:22:11Z","created_at":"2026-05-03T03:22:11Z","topics":[],"owner":{"login":"YuCc777","html_url":"https://github.com/YuCc777"},"clone_url":"https://github.com/YuCc777/Copy-Fail-CVE-2026-31431-Linux-exp-tools-C-EXP.git","has_code":false,"age_days":53},{"id":1227669440,"name":"CVE-2026-31431-REVSHELL","full_name":"danimrtzp/CVE-2026-31431-REVSHELL","html_url":"https://github.com/danimrtzp/CVE-2026-31431-REVSHELL","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-03T02:24:19Z","pushed_at":"2026-05-03T02:24:15Z","created_at":"2026-05-03T02:08:12Z","topics":[],"owner":{"login":"danimrtzp","html_url":"https://github.com/danimrtzp"},"clone_url":"https://github.com/danimrtzp/CVE-2026-31431-REVSHELL.git","has_code":true,"age_days":53},{"id":1227632844,"name":"copy-fail-CVE-2026-31431","full_name":"astounds/copy-fail-CVE-2026-31431","html_url":"https://github.com/astounds/copy-fail-CVE-2026-31431","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-03T00:24:57Z","pushed_at":"2026-05-03T00:24:53Z","created_at":"2026-05-03T00:24:12Z","topics":[],"owner":{"login":"astounds","html_url":"https://github.com/astounds"},"clone_url":"https://github.com/astounds/copy-fail-CVE-2026-31431.git","has_code":true,"age_days":53},{"id":1227324637,"name":"CVE-2026-31431","full_name":"pulentoski/CVE-2026-31431","html_url":"https://github.com/pulentoski/CVE-2026-31431","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-03T00:07:14Z","pushed_at":"2026-05-03T00:07:11Z","created_at":"2026-05-02T14:25:12Z","topics":[],"owner":{"login":"pulentoski","html_url":"https://github.com/pulentoski"},"clone_url":"https://github.com/pulentoski/CVE-2026-31431.git","has_code":true,"age_days":54},{"id":1228708687,"name":"cve-2026-31431","full_name":"vasyapokemon/cve-2026-31431","html_url":"https://github.com/vasyapokemon/cve-2026-31431","description":"CVE-2026-31431 Copy Fail: Linux kernel algif_aead LPE — research, detection tooling, YARA rules, and patching guide","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-04T09:42:29Z","pushed_at":"2026-05-02T21:15:28Z","created_at":"2026-05-04T09:42:28Z","topics":[],"owner":{"login":"vasyapokemon","html_url":"https://github.com/vasyapokemon"},"clone_url":"https://github.com/vasyapokemon/cve-2026-31431.git","has_code":false,"age_days":52},{"id":1227476514,"name":"copy-success","full_name":"rivaldofwijaya/copy-success","html_url":"https://github.com/rivaldofwijaya/copy-success","description":"Compensating control for CVE-2026-31431 (Linux kernel LPE via splice + AF_AEAD)","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-02T19:11:52Z","pushed_at":"2026-05-02T19:06:33Z","created_at":"2026-05-02T18:30:34Z","topics":[],"owner":{"login":"rivaldofwijaya","html_url":"https://github.com/rivaldofwijaya"},"clone_url":"https://github.com/rivaldofwijaya/copy-success.git","has_code":true,"age_days":54},{"id":1227488075,"name":"Copy-Fail-Exploit-CVE-2026-31431","full_name":"CybroZeus/Copy-Fail-Exploit-CVE-2026-31431","html_url":"https://github.com/CybroZeus/Copy-Fail-Exploit-CVE-2026-31431","description":"Copy Fail (CVE-2026-31431) is a Linux LPE vulnerability in the kernel crypto API via AF_ALG. It allows unprivileged users to overwrite page cache data of SUID binaries (e.g., /usr/bin/su), gaining root access.","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-05-02T18:55:09Z","pushed_at":"2026-05-02T18:51:40Z","created_at":"2026-05-02T18:51:21Z","topics":[],"owner":{"login":"CybroZeus","html_url":"https://github.com/CybroZeus"},"clone_url":"https://github.com/CybroZeus/Copy-Fail-Exploit-CVE-2026-31431.git","has_code":true,"age_days":54},{"id":1227199755,"name":"cpp-CVE-2026-31431","full_name":"cxwx/cpp-CVE-2026-31431","html_url":"https://github.com/cxwx/cpp-CVE-2026-31431","description":"CVE-2026-31431 cpp version for x86_64","stargazers_count":0,"forks_count":0,"language":"C++","updated_at":"2026-05-02T10:55:35Z","pushed_at":"2026-05-02T10:54:28Z","created_at":"2026-05-02T10:54:05Z","topics":["cve-2026-31431","cve-2026-31431-lpe-exploit","cve-2026-31431-poc"],"owner":{"login":"cxwx","html_url":"https://github.com/cxwx"},"clone_url":"https://github.com/cxwx/cpp-CVE-2026-31431.git","has_code":true,"age_days":54},{"id":1227193369,"name":"copy-fail-CVE-2026-31431","full_name":"mmionf/copy-fail-CVE-2026-31431","html_url":"https://github.com/mmionf/copy-fail-CVE-2026-31431","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-02T10:45:34Z","pushed_at":"2026-05-02T10:45:31Z","created_at":"2026-05-02T10:42:52Z","topics":[],"owner":{"login":"mmionf","html_url":"https://github.com/mmionf"},"clone_url":"https://github.com/mmionf/copy-fail-CVE-2026-31431.git","has_code":true,"age_days":54},{"id":1226174732,"name":"cve-2026-31431","full_name":"ashok523/cve-2026-31431","html_url":"https://github.com/ashok523/cve-2026-31431","description":"he recently disclosed CVE-2026-31431 — also known as Copy Fail — is not something to take lightly. ","stargazers_count":0,"forks_count":0,"language":"HTML","updated_at":"2026-05-02T06:38:22Z","pushed_at":"2026-05-02T06:38:18Z","created_at":"2026-05-01T04:01:21Z","topics":[],"owner":{"login":"ashok523","html_url":"https://github.com/ashok523"},"clone_url":"https://github.com/ashok523/cve-2026-31431.git","has_code":true,"age_days":55},{"id":1227035461,"name":"CVE-2026-31431","full_name":"xd20111/CVE-2026-31431","html_url":"https://github.com/xd20111/CVE-2026-31431","description":"CVE-2026-31431  Copy Fail - Local Privilege Escalation in the Linux kernel's authencesn cryptographic template via AF_ALG + splice()","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-02T05:57:47Z","pushed_at":"2026-05-02T05:56:38Z","created_at":"2026-05-02T05:52:41Z","topics":[],"owner":{"login":"xd20111","html_url":"https://github.com/xd20111"},"clone_url":"https://github.com/xd20111/CVE-2026-31431.git","has_code":true,"age_days":54},{"id":1227010525,"name":"CVE-2026-31431","full_name":"moaaz-mostafa123/CVE-2026-31431","html_url":"https://github.com/moaaz-mostafa123/CVE-2026-31431","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-02T05:13:24Z","pushed_at":"2026-05-02T05:13:21Z","created_at":"2026-05-02T04:59:37Z","topics":[],"owner":{"login":"moaaz-mostafa123","html_url":"https://github.com/moaaz-mostafa123"},"clone_url":"https://github.com/moaaz-mostafa123/CVE-2026-31431.git","has_code":true,"age_days":54},{"id":1226956768,"name":"CVE-2026-31431","full_name":"TheMursalin/CVE-2026-31431","html_url":"https://github.com/TheMursalin/CVE-2026-31431","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-02T03:11:51Z","pushed_at":"2026-05-02T03:11:47Z","created_at":"2026-05-02T02:54:05Z","topics":[],"owner":{"login":"TheMursalin","html_url":"https://github.com/TheMursalin"},"clone_url":"https://github.com/TheMursalin/CVE-2026-31431.git","has_code":true,"age_days":54},{"id":1226935074,"name":"copy-fail-CVE-2026-31431-poc","full_name":"euriconicacio/copy-fail-CVE-2026-31431-poc","html_url":"https://github.com/euriconicacio/copy-fail-CVE-2026-31431-poc","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-02T02:13:12Z","pushed_at":"2026-05-02T02:13:09Z","created_at":"2026-05-02T02:00:17Z","topics":[],"owner":{"login":"euriconicacio","html_url":"https://github.com/euriconicacio"},"clone_url":"https://github.com/euriconicacio/copy-fail-CVE-2026-31431-poc.git","has_code":true,"age_days":54},{"id":1226909664,"name":"fix_CVE-2026-31431","full_name":"kdjnb/fix_CVE-2026-31431","html_url":"https://github.com/kdjnb/fix_CVE-2026-31431","description":"破坏CVE-2026-31431所需的漏洞组件，从而达到无法通过CVE-2026-31431提权。","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-02T01:05:25Z","pushed_at":"2026-05-02T01:05:21Z","created_at":"2026-05-02T00:55:01Z","topics":[],"owner":{"login":"kdjnb","html_url":"https://github.com/kdjnb"},"clone_url":"https://github.com/kdjnb/fix_CVE-2026-31431.git","has_code":true,"age_days":54},{"id":1226838149,"name":"CVE-2026-31431-PoC","full_name":"glask1d/CVE-2026-31431-PoC","html_url":"https://github.com/glask1d/CVE-2026-31431-PoC","description":"Vibecoded PoC for CVE-2026-31431","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-01T22:14:19Z","pushed_at":"2026-05-01T22:14:15Z","created_at":"2026-05-01T22:12:58Z","topics":[],"owner":{"login":"glask1d","html_url":"https://github.com/glask1d"},"clone_url":"https://github.com/glask1d/CVE-2026-31431-PoC.git","has_code":true,"age_days":54},{"id":1226783387,"name":"copy_fail","full_name":"RoflSecurity/copy_fail","html_url":"https://github.com/RoflSecurity/copy_fail","description":"CVE-2026-31431","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-01T22:08:08Z","pushed_at":"2026-05-01T22:08:05Z","created_at":"2026-05-01T20:37:41Z","topics":[],"owner":{"login":"RoflSecurity","html_url":"https://github.com/RoflSecurity"},"clone_url":"https://github.com/RoflSecurity/copy_fail.git","has_code":true,"age_days":54},{"id":1226607067,"name":"COPY-FAIL-CVE-2026-31431","full_name":"sercuritycyber/COPY-FAIL-CVE-2026-31431","html_url":"https://github.com/sercuritycyber/COPY-FAIL-CVE-2026-31431","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-01T16:06:26Z","pushed_at":"2026-05-01T16:06:22Z","created_at":"2026-05-01T16:02:41Z","topics":[],"owner":{"login":"sercuritycyber","html_url":"https://github.com/sercuritycyber"},"clone_url":"https://github.com/sercuritycyber/COPY-FAIL-CVE-2026-31431.git","has_code":true,"age_days":55},{"id":1226572031,"name":"copy-fail-CVE-2026-31431-mitigation-ansible-playbook","full_name":"mlazzarotto/copy-fail-CVE-2026-31431-mitigation-ansible-playbook","html_url":"https://github.com/mlazzarotto/copy-fail-CVE-2026-31431-mitigation-ansible-playbook","description":"An Ansible Playbook to mitigate the vulnerability CVE-2026-31431 on RHEL-based and Debian-based OSes.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-01T15:19:34Z","pushed_at":"2026-05-01T15:19:30Z","created_at":"2026-05-01T15:13:56Z","topics":[],"owner":{"login":"mlazzarotto","html_url":"https://github.com/mlazzarotto"},"clone_url":"https://github.com/mlazzarotto/copy-fail-CVE-2026-31431-mitigation-ansible-playbook.git","has_code":false,"age_days":55},{"id":1226501595,"name":"kopy-fail-CVE-2026-31431","full_name":"bedros-p/kopy-fail-CVE-2026-31431","html_url":"https://github.com/bedros-p/kopy-fail-CVE-2026-31431","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-01T13:35:28Z","pushed_at":"2026-05-01T13:35:28Z","created_at":"2026-05-01T13:35:27Z","topics":[],"owner":{"login":"bedros-p","html_url":"https://github.com/bedros-p"},"clone_url":"https://github.com/bedros-p/kopy-fail-CVE-2026-31431.git","has_code":false,"age_days":55},{"id":1226473203,"name":"Copy-Fail---CVE-2026-31431","full_name":"Silent0x0/Copy-Fail---CVE-2026-31431","html_url":"https://github.com/Silent0x0/Copy-Fail---CVE-2026-31431","description":"CVE-2026-31431 \"Copy Fail\" - Analysis and defensive research for the Linux kernel AF_ALG privilege escalation vulnerability affecting all major distributions since 2017. 100% reliable LPE via authencesn logic flaw","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-01T13:02:43Z","pushed_at":"2026-05-01T13:02:40Z","created_at":"2026-05-01T12:52:16Z","topics":[],"owner":{"login":"Silent0x0","html_url":"https://github.com/Silent0x0"},"clone_url":"https://github.com/Silent0x0/Copy-Fail---CVE-2026-31431.git","has_code":true,"age_days":55},{"id":1226374918,"name":"cve_2026_31431_audit","full_name":"MarioHY/cve_2026_31431_audit","html_url":"https://github.com/MarioHY/cve_2026_31431_audit","description":"A security auditing toolkit for CVE-2026-31431 vulnerability research","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-02T02:27:08Z","pushed_at":"2026-05-01T12:17:25Z","created_at":"2026-05-01T10:09:59Z","topics":[],"owner":{"login":"MarioHY","html_url":"https://github.com/MarioHY"},"clone_url":"https://github.com/MarioHY/cve_2026_31431_audit.git","has_code":true,"age_days":55},{"id":1226369071,"name":"CVE-2026-31431","full_name":"abhishekhargan/CVE-2026-31431","html_url":"https://github.com/abhishekhargan/CVE-2026-31431","description":"CVE-2026-31431: \"Copy Fail\" - Linux Kernel Local Privilege Escalation","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-01T11:21:16Z","pushed_at":"2026-05-01T11:21:12Z","created_at":"2026-05-01T10:00:12Z","topics":[],"owner":{"login":"abhishekhargan","html_url":"https://github.com/abhishekhargan"},"clone_url":"https://github.com/abhishekhargan/CVE-2026-31431.git","has_code":true,"age_days":55},{"id":1226411255,"name":"CVE-2026-31431-Copy-Fail","full_name":"RecoFu/CVE-2026-31431-Copy-Fail","html_url":"https://github.com/RecoFu/CVE-2026-31431-Copy-Fail","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-01T11:12:20Z","pushed_at":"2026-05-01T11:12:16Z","created_at":"2026-05-01T11:10:06Z","topics":[],"owner":{"login":"RecoFu","html_url":"https://github.com/RecoFu"},"clone_url":"https://github.com/RecoFu/CVE-2026-31431-Copy-Fail.git","has_code":false,"age_days":55},{"id":1226409133,"name":"CVE-2026-31431","full_name":"FrosterDL/CVE-2026-31431","html_url":"https://github.com/FrosterDL/CVE-2026-31431","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-01T11:08:23Z","pushed_at":"2026-05-01T11:08:20Z","created_at":"2026-05-01T11:06:29Z","topics":[],"owner":{"login":"FrosterDL","html_url":"https://github.com/FrosterDL"},"clone_url":"https://github.com/FrosterDL/CVE-2026-31431.git","has_code":true,"age_days":55},{"id":1226367430,"name":"CVE-2026-31431-PocC","full_name":"Fulucky0-yuri/CVE-2026-31431-PocC","html_url":"https://github.com/Fulucky0-yuri/CVE-2026-31431-PocC","description":"CVE-2026-31431 C语言复现的poc，可在目标环境没有py时进行利用","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-02T06:35:49Z","pushed_at":"2026-05-01T10:23:04Z","created_at":"2026-05-01T09:57:31Z","topics":[],"owner":{"login":"Fulucky0-yuri","html_url":"https://github.com/Fulucky0-yuri"},"clone_url":"https://github.com/Fulucky0-yuri/CVE-2026-31431-PocC.git","has_code":true,"age_days":55},{"id":1226180810,"name":"copyfail-briefing","full_name":"jodonnel/copyfail-briefing","html_url":"https://github.com/jodonnel/copyfail-briefing","description":"CVE-2026-31431 (Copy Fail) — Security briefings and remediation comparison","stargazers_count":0,"forks_count":1,"language":"HTML","updated_at":"2026-05-01T04:59:26Z","pushed_at":"2026-05-01T04:59:23Z","created_at":"2026-05-01T04:15:12Z","topics":[],"owner":{"login":"jodonnel","html_url":"https://github.com/jodonnel"},"clone_url":"https://github.com/jodonnel/copyfail-briefing.git","has_code":true,"age_days":55},{"id":1226137976,"name":"Copy-Fail-Exploit-CVE-2026-31431","full_name":"Spoo1k/Copy-Fail-Exploit-CVE-2026-31431","html_url":"https://github.com/Spoo1k/Copy-Fail-Exploit-CVE-2026-31431","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-01T02:52:57Z","pushed_at":"2026-05-01T02:52:53Z","created_at":"2026-05-01T02:41:41Z","topics":[],"owner":{"login":"Spoo1k","html_url":"https://github.com/Spoo1k"},"clone_url":"https://github.com/Spoo1k/Copy-Fail-Exploit-CVE-2026-31431.git","has_code":true,"age_days":55},{"id":1226111504,"name":"cve-2026-31431-algif-aead-remediator","full_name":"boliu83/cve-2026-31431-algif-aead-remediator","html_url":"https://github.com/boliu83/cve-2026-31431-algif-aead-remediator","description":"Kubernetes DaemonSet to detect and remediate CVE-2026-31431 (GHSA-2274-3hgr-wxv6) — algif_aead LPE via modprobe blacklist","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-01T01:43:49Z","pushed_at":"2026-05-01T01:43:45Z","created_at":"2026-05-01T01:43:41Z","topics":[],"owner":{"login":"boliu83","html_url":"https://github.com/boliu83"},"clone_url":"https://github.com/boliu83/cve-2026-31431-algif-aead-remediator.git","has_code":false,"age_days":55},{"id":1226215815,"name":"copy-fail-CVE-2026-31431","full_name":"jneuhauser/copy-fail-CVE-2026-31431","html_url":"https://github.com/jneuhauser/copy-fail-CVE-2026-31431","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-01T05:33:41Z","pushed_at":"2026-04-29T21:21:46Z","created_at":"2026-05-01T05:32:30Z","topics":[],"owner":{"login":"jneuhauser","html_url":"https://github.com/jneuhauser"},"clone_url":"https://github.com/jneuhauser/copy-fail-CVE-2026-31431.git","has_code":false,"age_days":55},{"id":1256412982,"name":"CVE-2026-31431-simple-test","full_name":"tematemaru/CVE-2026-31431-simple-test","html_url":"https://github.com/tematemaru/CVE-2026-31431-simple-test","description":"","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-06-19T07:54:21Z","pushed_at":"2026-06-19T19:58:42Z","created_at":"2026-06-01T18:53:44Z","topics":[],"owner":{"login":"tematemaru","html_url":"https://github.com/tematemaru"},"clone_url":"https://github.com/tematemaru/CVE-2026-31431-simple-test.git","has_code":true,"age_days":24},{"id":1260280816,"name":"CVE-2026-31431-Copy-Fail","full_name":"t1ckprivate/CVE-2026-31431-Copy-Fail","html_url":"https://github.com/t1ckprivate/CVE-2026-31431-Copy-Fail","description":"","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-06-05T10:47:38Z","pushed_at":"2026-06-05T10:47:39Z","created_at":"2026-06-05T10:27:36Z","topics":[],"owner":{"login":"t1ckprivate","html_url":"https://github.com/t1ckprivate"},"clone_url":"https://github.com/t1ckprivate/CVE-2026-31431-Copy-Fail.git","has_code":true,"age_days":20},{"id":1259895891,"name":"copy-fail-CVE-2026-31431","full_name":"zs1n/copy-fail-CVE-2026-31431","html_url":"https://github.com/zs1n/copy-fail-CVE-2026-31431","description":"Exploit for Copy-Fail Vulnerability - Python3 Version","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-05T01:06:02Z","pushed_at":"2026-06-05T01:05:58Z","created_at":"2026-06-05T01:05:38Z","topics":[],"owner":{"login":"zs1n","html_url":"https://github.com/zs1n"},"clone_url":"https://github.com/zs1n/copy-fail-CVE-2026-31431.git","has_code":true,"age_days":20},{"id":1258090810,"name":"CopyFail","full_name":"1neptune/CopyFail","html_url":"https://github.com/1neptune/CopyFail","description":"go CVE-2026-31431 (CopyFail) local privilege escalation exploit","stargazers_count":0,"forks_count":0,"language":"Go","updated_at":"2026-06-03T09:14:15Z","pushed_at":"2026-06-03T09:14:11Z","created_at":"2026-06-03T09:11:12Z","topics":[],"owner":{"login":"1neptune","html_url":"https://github.com/1neptune"},"clone_url":"https://github.com/1neptune/CopyFail.git","has_code":true,"age_days":22}]},{"cve_id":"CVE-2026-31525","repositories":[{"id":1256731689,"name":"CVE-2026-31525","full_name":"HORKimhab/CVE-2026-31525","html_url":"https://github.com/HORKimhab/CVE-2026-31525","description":"CVE-2026-31525 - Draft","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-02T03:31:12Z","pushed_at":"2026-06-02T03:31:00Z","created_at":"2026-06-02T03:30:57Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-31525.git","has_code":false,"age_days":23}]},{"cve_id":"CVE-2026-31635","repositories":[{"id":1243995135,"name":"CVE-2026-31635","full_name":"0xBlackash/CVE-2026-31635","html_url":"https://github.com/0xBlackash/CVE-2026-31635","description":"CVE-2026-31635","stargazers_count":4,"forks_count":1,"language":"C","updated_at":"2026-06-14T00:37:50Z","pushed_at":"2026-05-20T10:22:15Z","created_at":"2026-05-19T21:39:31Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-31635.git","has_code":true,"age_days":36},{"id":1245660248,"name":"CVE-2026-31635-DirtyDecrypt","full_name":"0xFuffM3/CVE-2026-31635-DirtyDecrypt","html_url":"https://github.com/0xFuffM3/CVE-2026-31635-DirtyDecrypt","description":"","stargazers_count":2,"forks_count":0,"language":"C","updated_at":"2026-06-01T09:07:25Z","pushed_at":"2026-05-21T14:26:34Z","created_at":"2026-05-21T12:37:54Z","topics":[],"owner":{"login":"0xFuffM3","html_url":"https://github.com/0xFuffM3"},"clone_url":"https://github.com/0xFuffM3/CVE-2026-31635-DirtyDecrypt.git","has_code":true,"age_days":35},{"id":1245822613,"name":"DirtyDecrypt-go","full_name":"Koshmare-Blossom/DirtyDecrypt-go","html_url":"https://github.com/Koshmare-Blossom/DirtyDecrypt-go","description":"A Go implementation of dirtydecrypt (CVE-2026-31635)","stargazers_count":0,"forks_count":0,"language":"Go","updated_at":"2026-05-22T19:36:42Z","pushed_at":"2026-05-22T16:17:21Z","created_at":"2026-05-21T15:35:46Z","topics":[],"owner":{"login":"Koshmare-Blossom","html_url":"https://github.com/Koshmare-Blossom"},"clone_url":"https://github.com/Koshmare-Blossom/DirtyDecrypt-go.git","has_code":true,"age_days":35},{"id":1244389571,"name":"CVE-2026-31635","full_name":"Lutfifakee-Project/CVE-2026-31635","html_url":"https://github.com/Lutfifakee-Project/CVE-2026-31635","description":"Exploit for DirtyDecrypt - CVE-2026-31635 Local Privilege Escalation","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-20T17:02:57Z","pushed_at":"2026-05-20T08:14:45Z","created_at":"2026-05-20T08:12:15Z","topics":[],"owner":{"login":"Lutfifakee-Project","html_url":"https://github.com/Lutfifakee-Project"},"clone_url":"https://github.com/Lutfifakee-Project/CVE-2026-31635.git","has_code":true,"age_days":36},{"id":1244148568,"name":"DirtyDecrypt","full_name":"aexdyhaxor/DirtyDecrypt","html_url":"https://github.com/aexdyhaxor/DirtyDecrypt","description":"DirtyDecrypt PoC Released for Linux Kernel CVE-2026-31635 LPE Vulnerability","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-20T02:24:57Z","pushed_at":"2026-05-20T02:24:53Z","created_at":"2026-05-20T02:22:12Z","topics":[],"owner":{"login":"aexdyhaxor","html_url":"https://github.com/aexdyhaxor"},"clone_url":"https://github.com/aexdyhaxor/DirtyDecrypt.git","has_code":false,"age_days":36}]},{"cve_id":"CVE-2026-3170","repositories":[{"id":1167397331,"name":"CVE-disclosures","full_name":"archana1122m/CVE-disclosures","html_url":"https://github.com/archana1122m/CVE-disclosures","description":"CVE-2026-3171 and CVE-2026-3170 vulnerability disclosure by Archana M","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-02-26T09:04:01Z","pushed_at":"2026-02-26T09:02:00Z","created_at":"2026-02-26T08:50:54Z","topics":[],"owner":{"login":"archana1122m","html_url":"https://github.com/archana1122m"},"clone_url":"https://github.com/archana1122m/CVE-disclosures.git","has_code":false,"age_days":119}]},{"cve_id":"CVE-2026-3171","repositories":[{"id":1167397331,"name":"CVE-disclosures","full_name":"archana1122m/CVE-disclosures","html_url":"https://github.com/archana1122m/CVE-disclosures","description":"CVE-2026-3171 and CVE-2026-3170 vulnerability disclosure by Archana M","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-02-26T09:04:01Z","pushed_at":"2026-02-26T09:02:00Z","created_at":"2026-02-26T08:50:54Z","topics":[],"owner":{"login":"archana1122m","html_url":"https://github.com/archana1122m"},"clone_url":"https://github.com/archana1122m/CVE-disclosures.git","has_code":false,"age_days":119}]},{"cve_id":"CVE-2026-31717","repositories":[{"id":1229276066,"name":"CVE-2026-31717-KSMBD-Exploit","full_name":"TurtleARM/CVE-2026-31717-KSMBD-Exploit","html_url":"https://github.com/TurtleARM/CVE-2026-31717-KSMBD-Exploit","description":"","stargazers_count":5,"forks_count":1,"language":"Python","updated_at":"2026-05-22T06:27:04Z","pushed_at":"2026-05-05T16:20:33Z","created_at":"2026-05-04T22:03:22Z","topics":[],"owner":{"login":"TurtleARM","html_url":"https://github.com/TurtleARM"},"clone_url":"https://github.com/TurtleARM/CVE-2026-31717-KSMBD-Exploit.git","has_code":true,"age_days":51}]},{"cve_id":"CVE-2026-3180","repositories":[{"id":1266800427,"name":"cve-2026-3180","full_name":"cardosource/cve-2026-3180","html_url":"https://github.com/cardosource/cve-2026-3180","description":"","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-23T21:36:53Z","pushed_at":"2026-06-12T17:11:59Z","created_at":"2026-06-12T00:57:26Z","topics":[],"owner":{"login":"cardosource","html_url":"https://github.com/cardosource"},"clone_url":"https://github.com/cardosource/cve-2026-3180.git","has_code":true,"age_days":13},{"id":1263399357,"name":"cve-2026-3180-poc","full_name":"carlosalbertotuma/cve-2026-3180-poc","html_url":"https://github.com/carlosalbertotuma/cve-2026-3180-poc","description":"","stargazers_count":0,"forks_count":0,"language":"PHP","updated_at":"2026-06-08T23:33:13Z","pushed_at":"2026-06-08T23:33:09Z","created_at":"2026-06-08T23:23:05Z","topics":[],"owner":{"login":"carlosalbertotuma","html_url":"https://github.com/carlosalbertotuma"},"clone_url":"https://github.com/carlosalbertotuma/cve-2026-3180-poc.git","has_code":true,"age_days":16}]},{"cve_id":"CVE-2026-31802","repositories":[{"id":1181979307,"name":"CVE-2026-31802","full_name":"Jvr2022/CVE-2026-31802","html_url":"https://github.com/Jvr2022/CVE-2026-31802","description":"PoC and write-up for CVE-2026-31802, a symlink path traversal vulnerability in npm tar enabling arbitrary file overwrite outside the extraction directory.","stargazers_count":1,"forks_count":1,"language":"JavaScript","updated_at":"2026-03-14T22:23:10Z","pushed_at":"2026-03-14T22:08:00Z","created_at":"2026-03-14T22:04:11Z","topics":["cve","cve-2026-31802","exploit","node-tar","path-traversal","poc","security","security-research","symlink","tar","vulnerability"],"owner":{"login":"Jvr2022","html_url":"https://github.com/Jvr2022"},"clone_url":"https://github.com/Jvr2022/CVE-2026-31802.git","has_code":true,"age_days":102},{"id":1194805373,"name":"CVE-2026-31802","full_name":"Recorded-texteditor120/CVE-2026-31802","html_url":"https://github.com/Recorded-texteditor120/CVE-2026-31802","description":"Demonstrate and analyze the CVE-2026-31802 path traversal vulnerability in npm tar, enabling arbitrary file overwrite via symlink extraction.","stargazers_count":0,"forks_count":0,"language":"JavaScript","updated_at":"2026-06-25T18:36:31Z","pushed_at":"2026-06-25T18:36:27Z","created_at":"2026-03-28T20:49:46Z","topics":["cve","cve-2026-31802","exploit","node-tar","path-traversal","poc","security","security-research","symlink","tar","vulnerability"],"owner":{"login":"Recorded-texteditor120","html_url":"https://github.com/Recorded-texteditor120"},"clone_url":"https://github.com/Recorded-texteditor120/CVE-2026-31802.git","has_code":true,"age_days":88},{"id":1247126437,"name":"npm-tar-path-traversal-scanner","full_name":"ridhinva/npm-tar-path-traversal-scanner","html_url":"https://github.com/ridhinva/npm-tar-path-traversal-scanner","description":"CVE-2026-31802 - npm tar path traversal vulnerability scanner","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-03T17:53:19Z","pushed_at":"2026-05-23T10:15:02Z","created_at":"2026-05-22T23:46:38Z","topics":[],"owner":{"login":"ridhinva","html_url":"https://github.com/ridhinva"},"clone_url":"https://github.com/ridhinva/npm-tar-path-traversal-scanner.git","has_code":true,"age_days":33}]},{"cve_id":"CVE-2026-31816","repositories":[{"id":1179842758,"name":"CVE-2026-31816-rshell","full_name":"imjdl/CVE-2026-31816-rshell","html_url":"https://github.com/imjdl/CVE-2026-31816-rshell","description":"CVE-2026-31816 - Budibase Reverse Shell Exploit","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-12T13:31:45Z","pushed_at":"2026-03-12T12:57:10Z","created_at":"2026-03-12T12:44:53Z","topics":[],"owner":{"login":"imjdl","html_url":"https://github.com/imjdl"},"clone_url":"https://github.com/imjdl/CVE-2026-31816-rshell.git","has_code":true,"age_days":105}]},{"cve_id":"CVE-2026-31844","repositories":[{"id":1179313678,"name":"CVE-2026-31844","full_name":"Mothra-1/CVE-2026-31844","html_url":"https://github.com/Mothra-1/CVE-2026-31844","description":"","stargazers_count":1,"forks_count":1,"language":"Python","updated_at":"2026-04-03T00:53:35Z","pushed_at":"2026-03-13T21:44:32Z","created_at":"2026-03-11T22:53:00Z","topics":[],"owner":{"login":"Mothra-1","html_url":"https://github.com/Mothra-1"},"clone_url":"https://github.com/Mothra-1/CVE-2026-31844.git","has_code":true,"age_days":105}]},{"cve_id":"CVE-2026-31891","repositories":[{"id":1186706392,"name":"CVE-2026-31891","full_name":"ffasterss/CVE-2026-31891","html_url":"https://github.com/ffasterss/CVE-2026-31891","description":"SQL Injection in MongoLite Aggregation Optimizer via toJsonExtractRaw()","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-24T19:58:52Z","pushed_at":"2026-03-24T19:58:49Z","created_at":"2026-03-19T22:54:08Z","topics":[],"owner":{"login":"ffasterss","html_url":"https://github.com/ffasterss"},"clone_url":"https://github.com/ffasterss/CVE-2026-31891.git","has_code":false,"age_days":97}]},{"cve_id":"CVE-2026-31899","repositories":[{"id":1182235473,"name":"CVE-2026-31899","full_name":"SnailSploit/CVE-2026-31899","html_url":"https://github.com/SnailSploit/CVE-2026-31899","description":"CVE-2026-31899: Exponential DoS via Recursive \u003cuse\u003e Element Amplification in CairoSVG (CVSS 7.5 High)","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-08T16:05:52Z","pushed_at":"2026-05-08T16:05:47Z","created_at":"2026-03-15T08:25:43Z","topics":[],"owner":{"login":"SnailSploit","html_url":"https://github.com/SnailSploit"},"clone_url":"https://github.com/SnailSploit/CVE-2026-31899.git","has_code":false,"age_days":102}]},{"cve_id":"CVE-2026-31900","repositories":[{"id":1207762878,"name":"cve-2026-31900-lab","full_name":"Batosay1337Lab/cve-2026-31900-lab","html_url":"https://github.com/Batosay1337Lab/cve-2026-31900-lab","description":"CVE-2026-31900 Vulnerable Lab - psf/black GitHub Action RCE","stargazers_count":1,"forks_count":1,"language":"Python","updated_at":"2026-05-06T16:16:30Z","pushed_at":"2026-04-12T01:54:58Z","created_at":"2026-04-11T11:17:07Z","topics":[],"owner":{"login":"Batosay1337Lab","html_url":"https://github.com/Batosay1337Lab"},"clone_url":"https://github.com/Batosay1337Lab/cve-2026-31900-lab.git","has_code":true,"age_days":75}]},{"cve_id":"CVE-2026-31908","repositories":[{"id":1215255955,"name":"CVE-2026-31908","full_name":"MehranTurk/CVE-2026-31908","html_url":"https://github.com/MehranTurk/CVE-2026-31908","description":"This proof-of-concept (PoC) exploit targets CVE-2026-31908, a critical header injection vulnerability affecting Apache APISIX versions 2.12.0 through 3.15.0","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-04-19T17:47:18Z","pushed_at":"2026-04-19T17:45:39Z","created_at":"2026-04-19T17:24:09Z","topics":[],"owner":{"login":"MehranTurk","html_url":"https://github.com/MehranTurk"},"clone_url":"https://github.com/MehranTurk/CVE-2026-31908.git","has_code":true,"age_days":67}]},{"cve_id":"CVE-2026-32013","repositories":[{"id":1194909736,"name":"cve-scanner","full_name":"hargabyte/cve-scanner","html_url":"https://github.com/hargabyte/cve-scanner","description":"OpenClaw CVE scanner. Tracks known vulnerabilities (CVE-2026-32013, CVE-2026-32015, etc.). Zero network calls, 100% local. Version checking, upgrade recommendations.","stargazers_count":2,"forks_count":0,"language":"Shell","updated_at":"2026-04-05T17:05:41Z","pushed_at":"2026-03-29T01:06:58Z","created_at":"2026-03-29T01:06:48Z","topics":[],"owner":{"login":"hargabyte","html_url":"https://github.com/hargabyte"},"clone_url":"https://github.com/hargabyte/cve-scanner.git","has_code":true,"age_days":88}]},{"cve_id":"CVE-2026-32015","repositories":[{"id":1194909736,"name":"cve-scanner","full_name":"hargabyte/cve-scanner","html_url":"https://github.com/hargabyte/cve-scanner","description":"OpenClaw CVE scanner. Tracks known vulnerabilities (CVE-2026-32013, CVE-2026-32015, etc.). Zero network calls, 100% local. Version checking, upgrade recommendations.","stargazers_count":2,"forks_count":0,"language":"Shell","updated_at":"2026-04-05T17:05:41Z","pushed_at":"2026-03-29T01:06:58Z","created_at":"2026-03-29T01:06:48Z","topics":[],"owner":{"login":"hargabyte","html_url":"https://github.com/hargabyte"},"clone_url":"https://github.com/hargabyte/cve-scanner.git","has_code":true,"age_days":88}]},{"cve_id":"CVE-2026-32096","repositories":[{"id":1197360067,"name":"CVE-2026-32096","full_name":"andrebhu/CVE-2026-32096","html_url":"https://github.com/andrebhu/CVE-2026-32096","description":"SSRF in useplunk/plunk","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-03-31T14:29:58Z","pushed_at":"2026-03-31T14:27:56Z","created_at":"2026-03-31T14:18:58Z","topics":[],"owner":{"login":"andrebhu","html_url":"https://github.com/andrebhu"},"clone_url":"https://github.com/andrebhu/CVE-2026-32096.git","has_code":true,"age_days":86}]},{"cve_id":"CVE-2026-32127","repositories":[{"id":1167788619,"name":"CVE-2026-32127_SqlInjectionVulnerabilityOpenEMR8.0.0","full_name":"ChrisSub08/CVE-2026-32127_SqlInjectionVulnerabilityOpenEMR8.0.0","html_url":"https://github.com/ChrisSub08/CVE-2026-32127_SqlInjectionVulnerabilityOpenEMR8.0.0","description":"CVE-2026-32127: SQL Injection Vulnerability in OpenEMR \u003c8.0.0.1","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-25T08:53:11Z","pushed_at":"2026-03-25T08:53:06Z","created_at":"2026-02-26T17:25:38Z","topics":["cve","cve-2026-32127","exploit","exploitation","openemr","openemr-exploit","openemr-vulnerability","sql-injection","sqli","vulnerability"],"owner":{"login":"ChrisSub08","html_url":"https://github.com/ChrisSub08"},"clone_url":"https://github.com/ChrisSub08/CVE-2026-32127_SqlInjectionVulnerabilityOpenEMR8.0.0.git","has_code":true,"age_days":119}]},{"cve_id":"CVE-2026-32136","repositories":[{"id":1222807979,"name":"CVE-2026-32136_exploit","full_name":"0xdak/CVE-2026-32136_exploit","html_url":"https://github.com/0xdak/CVE-2026-32136_exploit","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-27T18:23:20Z","pushed_at":"2026-04-27T18:23:17Z","created_at":"2026-04-27T18:18:50Z","topics":[],"owner":{"login":"0xdak","html_url":"https://github.com/0xdak"},"clone_url":"https://github.com/0xdak/CVE-2026-32136_exploit.git","has_code":true,"age_days":59}]},{"cve_id":"CVE-2026-32201","repositories":[{"id":1218421301,"name":"CVE-2026-32201-exploit","full_name":"B1tBit/CVE-2026-32201-exploit","html_url":"https://github.com/B1tBit/CVE-2026-32201-exploit","description":"A spoofing vulnerability exists in Microsoft SharePoint Server due to improper input validation. An unauthenticated attacker can send a specially crafted HTTP request to inject malicious JavaScript (reflected XSS), which executes in the security context of the SharePoint site.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-22T21:55:19Z","pushed_at":"2026-04-22T21:55:15Z","created_at":"2026-04-22T21:29:40Z","topics":[],"owner":{"login":"B1tBit","html_url":"https://github.com/B1tBit"},"clone_url":"https://github.com/B1tBit/CVE-2026-32201-exploit.git","has_code":true,"age_days":63}]},{"cve_id":"CVE-2026-32202","repositories":[{"id":1225835931,"name":"CVE-2026-32202","full_name":"virus-or-not/CVE-2026-32202","html_url":"https://github.com/virus-or-not/CVE-2026-32202","description":"Windows Shell Spoofing Vulnerability","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-05-12T06:14:36Z","pushed_at":"2026-05-01T12:07:33Z","created_at":"2026-04-30T17:34:52Z","topics":[],"owner":{"login":"virus-or-not","html_url":"https://github.com/virus-or-not"},"clone_url":"https://github.com/virus-or-not/CVE-2026-32202.git","has_code":true,"age_days":56},{"id":1276192069,"name":"CVE-2026-32202","full_name":"alexlanum/CVE-2026-32202","html_url":"https://github.com/alexlanum/CVE-2026-32202","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-25T02:30:32Z","pushed_at":"2026-06-25T02:30:29Z","created_at":"2026-06-21T16:51:33Z","topics":[],"owner":{"login":"alexlanum","html_url":"https://github.com/alexlanum"},"clone_url":"https://github.com/alexlanum/CVE-2026-32202.git","has_code":true,"age_days":4},{"id":1225477190,"name":"CVE-2026-32202","full_name":"solarlynxsqueeze/CVE-2026-32202","html_url":"https://github.com/solarlynxsqueeze/CVE-2026-32202","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-30T10:45:16Z","pushed_at":"2026-04-30T10:45:12Z","created_at":"2026-04-30T10:12:30Z","topics":[],"owner":{"login":"solarlynxsqueeze","html_url":"https://github.com/solarlynxsqueeze"},"clone_url":"https://github.com/solarlynxsqueeze/CVE-2026-32202.git","has_code":false,"age_days":56}]},{"cve_id":"CVE-2026-32223","repositories":[{"id":1211526193,"name":"CVE-2026-32223-USBPrint-Exploit","full_name":"enki-kr/CVE-2026-32223-USBPrint-Exploit","html_url":"https://github.com/enki-kr/CVE-2026-32223-USBPrint-Exploit","description":"Proof-of-Concept exploit for CVE-2026-32223","stargazers_count":21,"forks_count":1,"language":"C++","updated_at":"2026-06-19T02:13:57Z","pushed_at":"2026-04-17T05:41:18Z","created_at":"2026-04-15T13:33:14Z","topics":[],"owner":{"login":"enki-kr","html_url":"https://github.com/enki-kr"},"clone_url":"https://github.com/enki-kr/CVE-2026-32223-USBPrint-Exploit.git","has_code":true,"age_days":71}]},{"cve_id":"CVE-2026-32238","repositories":[{"id":1155716451,"name":"CVE-2026-32238_RemoteCodeExecutionOpenEMR8.0.0","full_name":"ChrisSub08/CVE-2026-32238_RemoteCodeExecutionOpenEMR8.0.0","html_url":"https://github.com/ChrisSub08/CVE-2026-32238_RemoteCodeExecutionOpenEMR8.0.0","description":"Remote code execution vulnerability in OpenEMR \u003c8.0.0.2.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-19T21:04:54Z","pushed_at":"2026-03-19T21:04:49Z","created_at":"2026-02-11T20:30:30Z","topics":["cve-2026-32238","exploit","openemr-exploit","openemr-rce","openemr-vulnerability","rce","remote-code-execution","remotecodeexecution","vulnerability"],"owner":{"login":"ChrisSub08","html_url":"https://github.com/ChrisSub08"},"clone_url":"https://github.com/ChrisSub08/CVE-2026-32238_RemoteCodeExecutionOpenEMR8.0.0.git","has_code":false,"age_days":133}]},{"cve_id":"CVE-2026-32247","repositories":[{"id":1225007904,"name":"CVE-2026-32247","full_name":"romain-deperne/CVE-2026-32247","html_url":"https://github.com/romain-deperne/CVE-2026-32247","description":"Cypher Injection in graphiti-core (getzep/graphiti) via unsanitized node_labels — CVSS 8.1","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-29T21:58:08Z","pushed_at":"2026-04-29T21:58:05Z","created_at":"2026-04-29T21:16:35Z","topics":[],"owner":{"login":"romain-deperne","html_url":"https://github.com/romain-deperne"},"clone_url":"https://github.com/romain-deperne/CVE-2026-32247.git","has_code":true,"age_days":56}]},{"cve_id":"CVE-2026-32255","repositories":[{"id":1186004038,"name":"poc-cve-2026-32255","full_name":"kOaDT/poc-cve-2026-32255","html_url":"https://github.com/kOaDT/poc-cve-2026-32255","description":"This repository contains a proof of concept (POC) for CVE-2026-32255, a high-severity Server-Side Request Forgery (SSRF) vulnerability in Kan, an open-source project management tool.","stargazers_count":2,"forks_count":0,"language":"Shell","updated_at":"2026-03-19T12:13:34Z","pushed_at":"2026-03-19T07:32:23Z","created_at":"2026-03-19T06:55:12Z","topics":["cve","hacking","poc","research","ssrf","vulnerability"],"owner":{"login":"kOaDT","html_url":"https://github.com/kOaDT"},"clone_url":"https://github.com/kOaDT/poc-cve-2026-32255.git","has_code":true,"age_days":98}]},{"cve_id":"CVE-2026-3227","repositories":[{"id":1280492768,"name":"CVE-2026-3227","full_name":"do4choo/CVE-2026-3227","html_url":"https://github.com/do4choo/CVE-2026-3227","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-25T16:35:16Z","pushed_at":"2026-06-25T16:34:33Z","created_at":"2026-06-25T16:31:07Z","topics":[],"owner":{"login":"do4choo","html_url":"https://github.com/do4choo"},"clone_url":"https://github.com/do4choo/CVE-2026-3227.git","has_code":true,"age_days":0}]},{"cve_id":"CVE-2026-3228","repositories":[{"id":1178903112,"name":"CVE-2026-3228","full_name":"NULL200OK/CVE-2026-3228","html_url":"https://github.com/NULL200OK/CVE-2026-3228","description":"CVE-2026-3228 - NextScripts WordPress Plugin Stored XSS Scanner \u0026 Exploit","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-03-12T08:34:11Z","pushed_at":"2026-03-11T13:45:47Z","created_at":"2026-03-11T13:40:18Z","topics":[],"owner":{"login":"NULL200OK","html_url":"https://github.com/NULL200OK"},"clone_url":"https://github.com/NULL200OK/CVE-2026-3228.git","has_code":true,"age_days":106}]},{"cve_id":"CVE-2026-32286","repositories":[{"id":1211831343,"name":"go-dbmigrate","full_name":"moisei-dev/go-dbmigrate","html_url":"https://github.com/moisei-dev/go-dbmigrate","description":"Fork of jfrog/go-dbmigrate with pgx/v5 upgrade (CVE-2026-32286)","stargazers_count":0,"forks_count":0,"language":"Go","updated_at":"2026-04-15T19:44:39Z","pushed_at":"2026-04-15T19:44:34Z","created_at":"2026-04-15T19:44:25Z","topics":[],"owner":{"login":"moisei-dev","html_url":"https://github.com/moisei-dev"},"clone_url":"https://github.com/moisei-dev/go-dbmigrate.git","has_code":true,"age_days":71}]},{"cve_id":"CVE-2026-32321","repositories":[{"id":1197274039,"name":"CVE-2026-32321","full_name":"drkim-dev/CVE-2026-32321","html_url":"https://github.com/drkim-dev/CVE-2026-32321","description":"CVE-2026-32321 | Clipbucket Blind SQL Injection","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-04-23T04:55:10Z","pushed_at":"2026-03-31T13:06:15Z","created_at":"2026-03-31T13:06:14Z","topics":[],"owner":{"login":"drkim-dev","html_url":"https://github.com/drkim-dev"},"clone_url":"https://github.com/drkim-dev/CVE-2026-32321.git","has_code":false,"age_days":86}]},{"cve_id":"CVE-2026-32488","repositories":[{"id":1272136909,"name":"CVE-2026-32488","full_name":"izxci/CVE-2026-32488","html_url":"https://github.com/izxci/CVE-2026-32488","description":"CVE-2026-32488","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-17T10:19:38Z","pushed_at":"2026-06-17T10:19:34Z","created_at":"2026-06-17T10:19:16Z","topics":[],"owner":{"login":"izxci","html_url":"https://github.com/izxci"},"clone_url":"https://github.com/izxci/CVE-2026-32488.git","has_code":false,"age_days":8},{"id":1271188659,"name":"CVE-2026-32488-POC","full_name":"webshellseo8/CVE-2026-32488-POC","html_url":"https://github.com/webshellseo8/CVE-2026-32488-POC","description":"CVE-2026-32488 ","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-17T08:43:38Z","pushed_at":"2026-06-16T12:22:04Z","created_at":"2026-06-16T12:21:35Z","topics":[],"owner":{"login":"webshellseo8","html_url":"https://github.com/webshellseo8"},"clone_url":"https://github.com/webshellseo8/CVE-2026-32488-POC.git","has_code":false,"age_days":9}]},{"cve_id":"CVE-2026-32604","repositories":[{"id":1211967080,"name":"spinnaker-poc","full_name":"ZeroPathAI/spinnaker-poc","html_url":"https://github.com/ZeroPathAI/spinnaker-poc","description":"POCs for CVE-2026-32604 and CVE-2026-32613 which allow post-auth RCE and credential theft in Spinnaker","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-21T17:49:57Z","pushed_at":"2026-04-21T17:49:54Z","created_at":"2026-04-15T23:49:03Z","topics":[],"owner":{"login":"ZeroPathAI","html_url":"https://github.com/ZeroPathAI"},"clone_url":"https://github.com/ZeroPathAI/spinnaker-poc.git","has_code":true,"age_days":70}]},{"cve_id":"CVE-2026-32606","repositories":[{"id":1180330564,"name":"CVE-2026-32606-POC","full_name":"gibmat/CVE-2026-32606-POC","html_url":"https://github.com/gibmat/CVE-2026-32606-POC","description":"PoC for CVE-2026-32606","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-03-30T12:59:38Z","pushed_at":"2026-03-13T00:36:36Z","created_at":"2026-03-12T23:49:58Z","topics":[],"owner":{"login":"gibmat","html_url":"https://github.com/gibmat"},"clone_url":"https://github.com/gibmat/CVE-2026-32606-POC.git","has_code":true,"age_days":104}]},{"cve_id":"CVE-2026-32613","repositories":[{"id":1211967080,"name":"spinnaker-poc","full_name":"ZeroPathAI/spinnaker-poc","html_url":"https://github.com/ZeroPathAI/spinnaker-poc","description":"POCs for CVE-2026-32604 and CVE-2026-32613 which allow post-auth RCE and credential theft in Spinnaker","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-21T17:49:57Z","pushed_at":"2026-04-21T17:49:54Z","created_at":"2026-04-15T23:49:03Z","topics":[],"owner":{"login":"ZeroPathAI","html_url":"https://github.com/ZeroPathAI"},"clone_url":"https://github.com/ZeroPathAI/spinnaker-poc.git","has_code":true,"age_days":70}]},{"cve_id":"CVE-2026-32646","repositories":[{"id":1203481534,"name":"CVE-2026-32646","full_name":"MichaelAdamGroberman/CVE-2026-32646","html_url":"https://github.com/MichaelAdamGroberman/CVE-2026-32646","description":"CVE-2026-32646: Missing Authentication on Admin Device Endpoint — Gardyn Home Kit (ICSA-26-055-03)","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-04T20:35:32Z","pushed_at":"2026-06-04T20:34:57Z","created_at":"2026-04-07T04:37:42Z","topics":["admin-api","cisa","coordinated-disclosure","cve","cve-2026-32646","cwe-306","gardyn","ics-advisory","icsa-26-055-03","iot-security","missing-authentication","security-research","vu653116","vulnerability-disclosure"],"owner":{"login":"MichaelAdamGroberman","html_url":"https://github.com/MichaelAdamGroberman"},"clone_url":"https://github.com/MichaelAdamGroberman/CVE-2026-32646.git","has_code":false,"age_days":79}]},{"cve_id":"CVE-2026-32662","repositories":[{"id":1203481565,"name":"CVE-2026-32662","full_name":"MichaelAdamGroberman/CVE-2026-32662","html_url":"https://github.com/MichaelAdamGroberman/CVE-2026-32662","description":"CVE-2026-32662: Active Debug Code in Production — Gardyn Home Kit (ICSA-26-055-03)","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-04T20:35:33Z","pushed_at":"2026-06-04T20:34:59Z","created_at":"2026-04-07T04:37:45Z","topics":["cisa","coordinated-disclosure","cve","cve-2026-32662","cwe-489","debug-code","development-endpoints","gardyn","ics-advisory","icsa-26-055-03","iot-security","security-research","vu653116","vulnerability-disclosure"],"owner":{"login":"MichaelAdamGroberman","html_url":"https://github.com/MichaelAdamGroberman"},"clone_url":"https://github.com/MichaelAdamGroberman/CVE-2026-32662.git","has_code":false,"age_days":79},{"id":1215446520,"name":"CVE-2026-32662","full_name":"xf-secops/CVE-2026-32662","html_url":"https://github.com/xf-secops/CVE-2026-32662","description":"CVE-2026-32662: Active Debug Code in Production — Gardyn Home Kit (ICSA-26-055-03)","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-27T06:25:13Z","pushed_at":"2026-04-27T06:25:10Z","created_at":"2026-04-19T23:18:55Z","topics":[],"owner":{"login":"xf-secops","html_url":"https://github.com/xf-secops"},"clone_url":"https://github.com/xf-secops/CVE-2026-32662.git","has_code":false,"age_days":66}]},{"cve_id":"CVE-2026-32699","repositories":[{"id":1221146561,"name":"cve-2026-32699-facturascripts-nick-bypass","full_name":"TurkiOS/cve-2026-32699-facturascripts-nick-bypass","html_url":"https://github.com/TurkiOS/cve-2026-32699-facturascripts-nick-bypass","description":"Broken Access Control in FacturaScripts EditUser controller allows authenticated users to rename any account (including admin) by modifying the unvalidated nick parameter via proxy interception. Patched but unpublished CVE.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-25T20:31:49Z","pushed_at":"2026-04-25T20:31:44Z","created_at":"2026-04-25T20:15:16Z","topics":[],"owner":{"login":"TurkiOS","html_url":"https://github.com/TurkiOS"},"clone_url":"https://github.com/TurkiOS/cve-2026-32699-facturascripts-nick-bypass.git","has_code":false,"age_days":60}]},{"cve_id":"CVE-2026-32707","repositories":[{"id":1232875014,"name":"CVE-2026-32707-PX4-Autopilot-tattu_can-Stack-Buffer-Overflow-DoS-","full_name":"mbanyamer/CVE-2026-32707-PX4-Autopilot-tattu_can-Stack-Buffer-Overflow-DoS-","html_url":"https://github.com/mbanyamer/CVE-2026-32707-PX4-Autopilot-tattu_can-Stack-Buffer-Overflow-DoS-","description":"CVE-2026-32707 PX4-Autopilot tattu_can Stack Buffer Overflow (DoS) Exploit Tool","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-08T11:13:53Z","pushed_at":"2026-05-08T11:13:49Z","created_at":"2026-05-08T11:12:14Z","topics":[],"owner":{"login":"mbanyamer","html_url":"https://github.com/mbanyamer"},"clone_url":"https://github.com/mbanyamer/CVE-2026-32707-PX4-Autopilot-tattu_can-Stack-Buffer-Overflow-DoS-.git","has_code":true,"age_days":48}]},{"cve_id":"CVE-2026-32710","repositories":[{"id":1230796715,"name":"CVE-2026-32710","full_name":"dinosn/CVE-2026-32710","html_url":"https://github.com/dinosn/CVE-2026-32710","description":"Heap OOB write in MariaDB JSON_SCHEMA_VALID() → persistent privilege escalation (lab-assisted)","stargazers_count":14,"forks_count":4,"language":"Python","updated_at":"2026-05-19T07:42:53Z","pushed_at":"2026-05-06T11:41:57Z","created_at":"2026-05-06T10:28:11Z","topics":[],"owner":{"login":"dinosn","html_url":"https://github.com/dinosn"},"clone_url":"https://github.com/dinosn/CVE-2026-32710.git","has_code":true,"age_days":50}]},{"cve_id":"CVE-2026-32722","repositories":[{"id":1182678842,"name":"CVE-2026-32722","full_name":"0xmrma/CVE-2026-32722","html_url":"https://github.com/0xmrma/CVE-2026-32722","description":"Bloomberg Memray’s Stored XSS via Unescaped Command-Line Metadata","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-04-02T03:30:48Z","pushed_at":"2026-04-02T03:29:23Z","created_at":"2026-03-15T20:42:35Z","topics":[],"owner":{"login":"0xmrma","html_url":"https://github.com/0xmrma"},"clone_url":"https://github.com/0xmrma/CVE-2026-32722.git","has_code":false,"age_days":101}]},{"cve_id":"CVE-2026-32731","repositories":[{"id":1185857854,"name":"CVE-2026-32731","full_name":"0xEr3n/CVE-2026-32731","html_url":"https://github.com/0xEr3n/CVE-2026-32731","description":"POC for CVE-2026-32731","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-19T02:29:12Z","pushed_at":"2026-03-19T02:29:08Z","created_at":"2026-03-19T02:28:15Z","topics":[],"owner":{"login":"0xEr3n","html_url":"https://github.com/0xEr3n"},"clone_url":"https://github.com/0xEr3n/CVE-2026-32731.git","has_code":true,"age_days":98}]},{"cve_id":"CVE-2026-32743","repositories":[{"id":1233219998,"name":"CTT-Enhanced-PX4-Autopilot-Exploit-CVE-2026-32743","full_name":"SimoesCTT/CTT-Enhanced-PX4-Autopilot-Exploit-CVE-2026-32743","html_url":"https://github.com/SimoesCTT/CTT-Enhanced-PX4-Autopilot-Exploit-CVE-2026-32743","description":"CVE-2026-32743 — PX4 Autopilot Stack Buffer Overflow CTT-Enhanced: 33-Layer Temporal Cascade Drone DoS .The original exploit crashes the MAVLink task via a 60-byte overflow. The CTT version distributes the overflow across 33 temporal layers, each with phase resonance timing and temporal wedge filtering.  Result: Persistent DoS. Unpatchable. ","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-08T18:25:42Z","pushed_at":"2026-05-08T18:25:37Z","created_at":"2026-05-08T18:11:51Z","topics":[],"owner":{"login":"SimoesCTT","html_url":"https://github.com/SimoesCTT"},"clone_url":"https://github.com/SimoesCTT/CTT-Enhanced-PX4-Autopilot-Exploit-CVE-2026-32743.git","has_code":true,"age_days":48},{"id":1233173841,"name":"CVE-2026-32743-PX4-Autopilot-MavlinkLogHandler-Stack-Buffer-Overflow-DoS-","full_name":"mbanyamer/CVE-2026-32743-PX4-Autopilot-MavlinkLogHandler-Stack-Buffer-Overflow-DoS-","html_url":"https://github.com/mbanyamer/CVE-2026-32743-PX4-Autopilot-MavlinkLogHandler-Stack-Buffer-Overflow-DoS-","description":"A remote Denial of Service (DoS) exploit for PX4 Autopilot versions ≤1.17.0-rc2 via a stack‑based buffer overflow in the MavlinkLogHandler.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-08T17:09:37Z","pushed_at":"2026-05-08T17:09:33Z","created_at":"2026-05-08T17:08:50Z","topics":[],"owner":{"login":"mbanyamer","html_url":"https://github.com/mbanyamer"},"clone_url":"https://github.com/mbanyamer/CVE-2026-32743-PX4-Autopilot-MavlinkLogHandler-Stack-Buffer-Overflow-DoS-.git","has_code":false,"age_days":48}]},{"cve_id":"CVE-2026-32746","repositories":[{"id":1185290496,"name":"cve-2026-32746","full_name":"jeffaf/cve-2026-32746","html_url":"https://github.com/jeffaf/cve-2026-32746","description":"CVE-2026-32746 - GNU InetUtils telnetd LINEMODE SLC Buffer Overflow PoC (pre-auth RCE, CVSS 9.8)","stargazers_count":28,"forks_count":12,"language":"Python","updated_at":"2026-06-19T08:41:16Z","pushed_at":"2026-03-20T03:13:14Z","created_at":"2026-03-18T12:37:30Z","topics":[],"owner":{"login":"jeffaf","html_url":"https://github.com/jeffaf"},"clone_url":"https://github.com/jeffaf/cve-2026-32746.git","has_code":true,"age_days":99},{"id":1192668335,"name":"telnet_scan","full_name":"ekomsSavior/telnet_scan","html_url":"https://github.com/ekomsSavior/telnet_scan","description":"scanner/exploiter CVE-2026-24061 \u0026 CVE-2026-32746","stargazers_count":11,"forks_count":6,"language":"Python","updated_at":"2026-06-24T02:16:20Z","pushed_at":"2026-05-22T01:07:58Z","created_at":"2026-03-26T12:52:57Z","topics":[],"owner":{"login":"ekomsSavior","html_url":"https://github.com/ekomsSavior"},"clone_url":"https://github.com/ekomsSavior/telnet_scan.git","has_code":true,"age_days":91},{"id":1186372855,"name":"watchtowr-vs-telnetd-CVE-2026-32746","full_name":"watchtowrlabs/watchtowr-vs-telnetd-CVE-2026-32746","html_url":"https://github.com/watchtowrlabs/watchtowr-vs-telnetd-CVE-2026-32746","description":"","stargazers_count":10,"forks_count":0,"language":"Python","updated_at":"2026-06-19T09:21:13Z","pushed_at":"2026-03-19T15:02:46Z","created_at":"2026-03-19T14:58:34Z","topics":[],"owner":{"login":"watchtowrlabs","html_url":"https://github.com/watchtowrlabs"},"clone_url":"https://github.com/watchtowrlabs/watchtowr-vs-telnetd-CVE-2026-32746.git","has_code":true,"age_days":98},{"id":1187086533,"name":"CVE-2026-32746","full_name":"chosenonehacks/CVE-2026-32746","html_url":"https://github.com/chosenonehacks/CVE-2026-32746","description":"","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-03-20T10:23:58Z","pushed_at":"2026-03-20T10:23:54Z","created_at":"2026-03-20T10:23:19Z","topics":[],"owner":{"login":"chosenonehacks","html_url":"https://github.com/chosenonehacks"},"clone_url":"https://github.com/chosenonehacks/CVE-2026-32746.git","has_code":true,"age_days":97},{"id":1186829621,"name":"cve-2026-32746-mitigation","full_name":"danindiana/cve-2026-32746-mitigation","html_url":"https://github.com/danindiana/cve-2026-32746-mitigation","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-20T03:38:32Z","pushed_at":"2026-03-20T03:38:27Z","created_at":"2026-03-20T03:08:45Z","topics":[],"owner":{"login":"danindiana","html_url":"https://github.com/danindiana"},"clone_url":"https://github.com/danindiana/cve-2026-32746-mitigation.git","has_code":true,"age_days":97},{"id":1185952878,"name":"CVE-2026-32746-Exploit","full_name":"duduLiu8787/CVE-2026-32746-Exploit","html_url":"https://github.com/duduLiu8787/CVE-2026-32746-Exploit","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-20T11:03:28Z","pushed_at":"2026-03-20T01:26:12Z","created_at":"2026-03-19T05:28:19Z","topics":[],"owner":{"login":"duduLiu8787","html_url":"https://github.com/duduLiu8787"},"clone_url":"https://github.com/duduLiu8787/CVE-2026-32746-Exploit.git","has_code":true,"age_days":98},{"id":1233904183,"name":"CVE-2026-32746","full_name":"kaleth4/CVE-2026-32746","html_url":"https://github.com/kaleth4/CVE-2026-32746","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-09T13:59:46Z","pushed_at":"2026-05-09T13:59:43Z","created_at":"2026-05-09T13:56:18Z","topics":[],"owner":{"login":"kaleth4","html_url":"https://github.com/kaleth4"},"clone_url":"https://github.com/kaleth4/CVE-2026-32746.git","has_code":false,"age_days":47}]},{"cve_id":"CVE-2026-32794","repositories":[{"id":1190132065,"name":"CVE-2026-32794","full_name":"SnailSploit/CVE-2026-32794","html_url":"https://github.com/SnailSploit/CVE-2026-32794","description":"CVE-2026-32794: TLS Certificate Verification Bypass in Apache Airflow Databricks Provider","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-08T16:05:53Z","pushed_at":"2026-05-08T16:05:48Z","created_at":"2026-03-24T01:58:19Z","topics":["airflow","cve","cwe-295","databricks","kubernetes","python","security","snailsploit","tls","vulnerability"],"owner":{"login":"SnailSploit","html_url":"https://github.com/SnailSploit"},"clone_url":"https://github.com/SnailSploit/CVE-2026-32794.git","has_code":false,"age_days":93}]},{"cve_id":"CVE-2026-3288","repositories":[{"id":1177593622,"name":"CVE-2026-3288","full_name":"SnailSploit/CVE-2026-3288","html_url":"https://github.com/SnailSploit/CVE-2026-3288","description":"Walkthrough:  ingress-nginx Configuration Injection via rewrite-target Annotation","stargazers_count":2,"forks_count":1,"language":"","updated_at":"2026-05-08T16:05:53Z","pushed_at":"2026-05-08T16:05:49Z","created_at":"2026-03-10T07:11:00Z","topics":["cwe-20","kubernetes","nginx","rce"],"owner":{"login":"SnailSploit","html_url":"https://github.com/SnailSploit"},"clone_url":"https://github.com/SnailSploit/CVE-2026-3288.git","has_code":false,"age_days":107},{"id":1204830001,"name":"CVE-2026-3288-lab","full_name":"bvabhishek/CVE-2026-3288-lab","html_url":"https://github.com/bvabhishek/CVE-2026-3288-lab","description":"","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-04-14T10:18:52Z","pushed_at":"2026-04-08T13:16:29Z","created_at":"2026-04-08T11:26:02Z","topics":[],"owner":{"login":"bvabhishek","html_url":"https://github.com/bvabhishek"},"clone_url":"https://github.com/bvabhishek/CVE-2026-3288-lab.git","has_code":true,"age_days":78}]},{"cve_id":"CVE-2026-32941","repositories":[{"id":1172094420,"name":"CVE-2026-32941","full_name":"skoveit/CVE-2026-32941","html_url":"https://github.com/skoveit/CVE-2026-32941","description":"CVE-2026-32941 PoC - Sliver Remote OOM","stargazers_count":5,"forks_count":0,"language":"Go","updated_at":"2026-04-25T23:56:01Z","pushed_at":"2026-03-23T16:07:05Z","created_at":"2026-03-03T23:57:19Z","topics":["cve-2026-32941","exploit","poc","red-teaming","sliver","sliver-c2","vulnerability-research"],"owner":{"login":"skoveit","html_url":"https://github.com/skoveit"},"clone_url":"https://github.com/skoveit/CVE-2026-32941.git","has_code":true,"age_days":113}]},{"cve_id":"CVE-2026-32945","repositories":[{"id":1203069826,"name":"CVE-2026-32945","full_name":"JohannesLks/CVE-2026-32945","html_url":"https://github.com/JohannesLks/CVE-2026-32945","description":"PJSIP DNS Compression Pointer Heap OOB Read (Remote DoS)","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-17T15:15:48Z","pushed_at":"2026-04-06T17:39:37Z","created_at":"2026-04-06T17:33:19Z","topics":["cve","exploit","security","vulnerability"],"owner":{"login":"JohannesLks","html_url":"https://github.com/JohannesLks"},"clone_url":"https://github.com/JohannesLks/CVE-2026-32945.git","has_code":true,"age_days":80}]},{"cve_id":"CVE-2026-3296","repositories":[{"id":1249917950,"name":"CVE-2026-3296","full_name":"xxconi/CVE-2026-3296","html_url":"https://github.com/xxconi/CVE-2026-3296","description":"CVE-2026-3296 is a CVSS 9.8 Critical unauthenticated PHP Object Injection vulnerability in the Everest Forms WordPress plugin","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-26T06:39:43Z","pushed_at":"2026-05-26T06:39:39Z","created_at":"2026-05-26T06:33:09Z","topics":[],"owner":{"login":"xxconi","html_url":"https://github.com/xxconi"},"clone_url":"https://github.com/xxconi/CVE-2026-3296.git","has_code":true,"age_days":30}]},{"cve_id":"CVE-2026-3300","repositories":[{"id":1260464972,"name":"CVE-2026-3300","full_name":"adamshaikhma/CVE-2026-3300","html_url":"https://github.com/adamshaikhma/CVE-2026-3300","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-05T14:19:39Z","pushed_at":"2026-06-05T14:19:38Z","created_at":"2026-06-05T14:19:34Z","topics":[],"owner":{"login":"adamshaikhma","html_url":"https://github.com/adamshaikhma"},"clone_url":"https://github.com/adamshaikhma/CVE-2026-3300.git","has_code":false,"age_days":20},{"id":1260193826,"name":"CVE-2026-3300","full_name":"HORKimhab/CVE-2026-3300","html_url":"https://github.com/HORKimhab/CVE-2026-3300","description":"CVE-2026-3300","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-05T09:02:28Z","pushed_at":"2026-06-05T09:01:51Z","created_at":"2026-06-05T08:40:33Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-3300.git","has_code":true,"age_days":20}]},{"cve_id":"CVE-2026-33006","repositories":[{"id":1233231944,"name":"CTT-enhanced-Apache-mod_auth_digest-timing-attack-exploit","full_name":"SimoesCTT/CTT-enhanced-Apache-mod_auth_digest-timing-attack-exploit","html_url":"https://github.com/SimoesCTT/CTT-enhanced-Apache-mod_auth_digest-timing-attack-exploit","description":"CTT-Enhanced Apache mod_auth_digest Timing Attack — CVE-2026-33006 Remote Digest Authentication Bypass → 33-Layer Temporal Timing Attack  Original vulnerability: Apache HTTP Server 2.4.66 (mod_auth_digest timing leak) CTVSS (Original): 4.8 (Medium) CTT-Enhanced CVSS: 7.5 (High) — Network, low complexity, temporal wedge evasion","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-08T18:33:01Z","pushed_at":"2026-05-08T18:32:56Z","created_at":"2026-05-08T18:28:33Z","topics":[],"owner":{"login":"SimoesCTT","html_url":"https://github.com/SimoesCTT"},"clone_url":"https://github.com/SimoesCTT/CTT-enhanced-Apache-mod_auth_digest-timing-attack-exploit.git","has_code":true,"age_days":48}]},{"cve_id":"CVE-2026-33017","repositories":[{"id":1187825964,"name":"langflow-CVE-2026-33017-poc","full_name":"MaxMnMl/langflow-CVE-2026-33017-poc","html_url":"https://github.com/MaxMnMl/langflow-CVE-2026-33017-poc","description":"CVE-2026-33017 - An unauthenticated remote code execution in Langflow \u003c= 1.8.1 via Public Flow Build Endpoint","stargazers_count":8,"forks_count":3,"language":"Python","updated_at":"2026-06-17T15:50:57Z","pushed_at":"2026-03-22T07:13:04Z","created_at":"2026-03-21T08:11:08Z","topics":[],"owner":{"login":"MaxMnMl","html_url":"https://github.com/MaxMnMl"},"clone_url":"https://github.com/MaxMnMl/langflow-CVE-2026-33017-poc.git","has_code":true,"age_days":96},{"id":1196746927,"name":"CVE-2026-33017","full_name":"EQSTLab/CVE-2026-33017","html_url":"https://github.com/EQSTLab/CVE-2026-33017","description":"Langflow RCE","stargazers_count":3,"forks_count":1,"language":"Python","updated_at":"2026-05-09T07:03:42Z","pushed_at":"2026-04-01T08:58:53Z","created_at":"2026-03-31T02:10:40Z","topics":[],"owner":{"login":"EQSTLab","html_url":"https://github.com/EQSTLab"},"clone_url":"https://github.com/EQSTLab/CVE-2026-33017.git","has_code":true,"age_days":86},{"id":1193397733,"name":"PoC-CVE-2026-33017","full_name":"z4yd3/PoC-CVE-2026-33017","html_url":"https://github.com/z4yd3/PoC-CVE-2026-33017","description":"CVE-2026-33017: Unauthenticated RCE in Langflow","stargazers_count":3,"forks_count":0,"language":"Python","updated_at":"2026-04-28T18:09:42Z","pushed_at":"2026-03-27T12:48:46Z","created_at":"2026-03-27T07:15:07Z","topics":[],"owner":{"login":"z4yd3","html_url":"https://github.com/z4yd3"},"clone_url":"https://github.com/z4yd3/PoC-CVE-2026-33017.git","has_code":true,"age_days":90},{"id":1188138346,"name":"CVE-2026-33017-Langflow-RCE-PoC","full_name":"omer-efe-curkus/CVE-2026-33017-Langflow-RCE-PoC","html_url":"https://github.com/omer-efe-curkus/CVE-2026-33017-Langflow-RCE-PoC","description":"The vulnerability in Langflow 1.8.1 and earlier allows a remote, unauthenticated attacker to achieve arbitrary command execution on the host.","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-04-27T17:45:52Z","pushed_at":"2026-03-21T17:07:38Z","created_at":"2026-03-21T17:06:34Z","topics":["langflow","proof-of-concept"],"owner":{"login":"omer-efe-curkus","html_url":"https://github.com/omer-efe-curkus"},"clone_url":"https://github.com/omer-efe-curkus/CVE-2026-33017-Langflow-RCE-PoC.git","has_code":true,"age_days":96},{"id":1216087838,"name":"CVE-2026-33017","full_name":"Jorrit-VM/CVE-2026-33017","html_url":"https://github.com/Jorrit-VM/CVE-2026-33017","description":"","stargazers_count":1,"forks_count":0,"language":"Shell","updated_at":"2026-05-07T20:22:49Z","pushed_at":"2026-05-07T20:22:45Z","created_at":"2026-04-20T14:54:39Z","topics":[],"owner":{"login":"Jorrit-VM","html_url":"https://github.com/Jorrit-VM"},"clone_url":"https://github.com/Jorrit-VM/CVE-2026-33017.git","has_code":true,"age_days":66},{"id":1192306059,"name":"CVE-2026-33017-Lab","full_name":"rootdirective-sec/CVE-2026-33017-Lab","html_url":"https://github.com/rootdirective-sec/CVE-2026-33017-Lab","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-26T05:36:14Z","pushed_at":"2026-03-26T04:51:33Z","created_at":"2026-03-26T04:49:07Z","topics":[],"owner":{"login":"rootdirective-sec","html_url":"https://github.com/rootdirective-sec"},"clone_url":"https://github.com/rootdirective-sec/CVE-2026-33017-Lab.git","has_code":true,"age_days":91},{"id":1188140782,"name":"Sovereign-Echo-33017","full_name":"SimoesCTT/Sovereign-Echo-33017","html_url":"https://github.com/SimoesCTT/Sovereign-Echo-33017","description":"Resonant RCE for CVE-2026-33017 via CTT Phase-Lock. Exploits Langflow build_public_tmp flow_id endpoint. Bypasses auth using 34th-layer negative refraction to inject Python exec() payloads. Calibrated for 16.6fs jitter resonance and g-coupling g \\approx 0.733. O(log N) collapse of AI supply chain security.  ","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-21T17:35:46Z","pushed_at":"2026-03-21T17:35:43Z","created_at":"2026-03-21T17:10:24Z","topics":[],"owner":{"login":"SimoesCTT","html_url":"https://github.com/SimoesCTT"},"clone_url":"https://github.com/SimoesCTT/Sovereign-Echo-33017.git","has_code":true,"age_days":96},{"id":1215144408,"name":"CVE-2026-33017","full_name":"0xBlackash/CVE-2026-33017","html_url":"https://github.com/0xBlackash/CVE-2026-33017","description":"CVE-2026-33017","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-19T15:20:22Z","pushed_at":"2026-04-19T15:20:18Z","created_at":"2026-04-19T14:40:26Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-33017.git","has_code":false,"age_days":67},{"id":1208670913,"name":"CVE-2026-33017-Exploit","full_name":"oscar-mine/CVE-2026-33017-Exploit","html_url":"https://github.com/oscar-mine/CVE-2026-33017-Exploit","description":"Exploit for CVE-2026-33017 — Unauthenticated RCE in Langflow \u003c= 1.8.2 via exec() in flow build endpoint","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-12T15:45:15Z","pushed_at":"2026-04-12T15:44:41Z","created_at":"2026-04-12T15:44:31Z","topics":[],"owner":{"login":"oscar-mine","html_url":"https://github.com/oscar-mine"},"clone_url":"https://github.com/oscar-mine/CVE-2026-33017-Exploit.git","has_code":true,"age_days":74},{"id":1204355826,"name":"PoC-CVE-2026-33017","full_name":"masterwok/PoC-CVE-2026-33017","html_url":"https://github.com/masterwok/PoC-CVE-2026-33017","description":"Proof-of-concept exploit for CVE-2026-33017 (Langflow \u003c= 1.8.1).","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-15T05:25:40Z","pushed_at":"2026-04-10T03:40:48Z","created_at":"2026-04-07T23:54:54Z","topics":[],"owner":{"login":"masterwok","html_url":"https://github.com/masterwok"},"clone_url":"https://github.com/masterwok/PoC-CVE-2026-33017.git","has_code":true,"age_days":78},{"id":1247078811,"name":"CVE-2026-33017-langflow-rce","full_name":"r3nsi15/CVE-2026-33017-langflow-rce","html_url":"https://github.com/r3nsi15/CVE-2026-33017-langflow-rce","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-22T22:04:59Z","pushed_at":"2026-05-22T22:04:55Z","created_at":"2026-05-22T22:01:05Z","topics":[],"owner":{"login":"r3nsi15","html_url":"https://github.com/r3nsi15"},"clone_url":"https://github.com/r3nsi15/CVE-2026-33017-langflow-rce.git","has_code":true,"age_days":33}]},{"cve_id":"CVE-2026-33032","repositories":[{"id":1214305978,"name":"CVE-2026-33032","full_name":"keraattin/CVE-2026-33032","html_url":"https://github.com/keraattin/CVE-2026-33032","description":"One missing function call on the route registration was enough to turn the MCP interface into an unauthenticated RCE gateway.","stargazers_count":3,"forks_count":0,"language":"Python","updated_at":"2026-05-26T14:11:32Z","pushed_at":"2026-04-18T11:49:37Z","created_at":"2026-04-18T11:48:39Z","topics":[],"owner":{"login":"keraattin","html_url":"https://github.com/keraattin"},"clone_url":"https://github.com/keraattin/CVE-2026-33032.git","has_code":true,"age_days":68},{"id":1200569704,"name":"cve-2026-33032-scanner","full_name":"Twinson333/cve-2026-33032-scanner","html_url":"https://github.com/Twinson333/cve-2026-33032-scanner","description":"Non-destructive vulnerability scanner for Nginx-UI MCP Endpoint Authentication Bypass (CVE-2026-33032)","stargazers_count":3,"forks_count":2,"language":"Python","updated_at":"2026-06-21T10:41:08Z","pushed_at":"2026-04-04T05:27:21Z","created_at":"2026-04-03T15:12:04Z","topics":[],"owner":{"login":"Twinson333","html_url":"https://github.com/Twinson333"},"clone_url":"https://github.com/Twinson333/cve-2026-33032-scanner.git","has_code":true,"age_days":83},{"id":1213400116,"name":"CVE-2026-33032-nginx-ui-vuln-lab","full_name":"Shreda/CVE-2026-33032-nginx-ui-vuln-lab","html_url":"https://github.com/Shreda/CVE-2026-33032-nginx-ui-vuln-lab","description":"Docker Compose setup to demonstrate the nginx-ui missing authentication vulnerability","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-04-24T21:20:49Z","pushed_at":"2026-04-18T13:05:15Z","created_at":"2026-04-17T10:41:04Z","topics":[],"owner":{"login":"Shreda","html_url":"https://github.com/Shreda"},"clone_url":"https://github.com/Shreda/CVE-2026-33032-nginx-ui-vuln-lab.git","has_code":true,"age_days":69}]},{"cve_id":"CVE-2026-33033","repositories":[{"id":1206522114,"name":"CVE-2026-33033-PoC","full_name":"ch4n3-yoon/CVE-2026-33033-PoC","html_url":"https://github.com/ch4n3-yoon/CVE-2026-33033-PoC","description":"A PoC script for demonstrating CVE-2026-33033","stargazers_count":2,"forks_count":1,"language":"Python","updated_at":"2026-04-22T05:02:54Z","pushed_at":"2026-04-10T02:25:51Z","created_at":"2026-04-10T02:04:12Z","topics":[],"owner":{"login":"ch4n3-yoon","html_url":"https://github.com/ch4n3-yoon"},"clone_url":"https://github.com/ch4n3-yoon/CVE-2026-33033-PoC.git","has_code":true,"age_days":76}]},{"cve_id":"CVE-2026-3304","repositories":[{"id":1174258434,"name":"CVE-2026-3304","full_name":"Mkway/CVE-2026-3304","html_url":"https://github.com/Mkway/CVE-2026-3304","description":"Reproduction lab for CVE-2026-3304 — async fileFilter race condition in Multer causes disk exhaustion via orphaned temp files","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-09T01:24:16Z","pushed_at":"2026-03-09T00:14:39Z","created_at":"2026-03-06T08:37:01Z","topics":[],"owner":{"login":"Mkway","html_url":"https://github.com/Mkway"},"clone_url":"https://github.com/Mkway/CVE-2026-3304.git","has_code":true,"age_days":111}]},{"cve_id":"CVE-2026-33067","repositories":[{"id":1236996289,"name":"cve-2026-33067","full_name":"Lopseg/cve-2026-33067","html_url":"https://github.com/Lopseg/cve-2026-33067","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-12T19:34:55Z","pushed_at":"2026-05-12T19:34:50Z","created_at":"2026-05-12T19:20:48Z","topics":[],"owner":{"login":"Lopseg","html_url":"https://github.com/Lopseg"},"clone_url":"https://github.com/Lopseg/cve-2026-33067.git","has_code":false,"age_days":44}]},{"cve_id":"CVE-2026-33137","repositories":[{"id":1249457231,"name":"CVE-2026-33137","full_name":"portbuster1337/CVE-2026-33137","html_url":"https://github.com/portbuster1337/CVE-2026-33137","description":"XWiki Platform - CVE-2026-33137 PoC - Unauthenticated XAR Import via REST /wikis/{wikiName}","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-25T18:11:19Z","pushed_at":"2026-05-25T18:11:14Z","created_at":"2026-05-25T18:10:26Z","topics":["cve","cve-2026-33137","exploit","poc","security","unauthorized-access","xar","xwiki"],"owner":{"login":"portbuster1337","html_url":"https://github.com/portbuster1337"},"clone_url":"https://github.com/portbuster1337/CVE-2026-33137.git","has_code":true,"age_days":31}]},{"cve_id":"CVE-2026-33147","repositories":[{"id":1200153314,"name":"CVE-2026-33147","full_name":"redyank/CVE-2026-33147","html_url":"https://github.com/redyank/CVE-2026-33147","description":"CVE-2026-33147(Stack-based Buffer Overflow in gmt_remote_dataset_id)","stargazers_count":0,"forks_count":1,"language":"","updated_at":"2026-04-03T05:04:34Z","pushed_at":"2026-04-03T05:04:30Z","created_at":"2026-04-03T05:04:08Z","topics":[],"owner":{"login":"redyank","html_url":"https://github.com/redyank"},"clone_url":"https://github.com/redyank/CVE-2026-33147.git","has_code":false,"age_days":83}]},{"cve_id":"CVE-2026-33149","repositories":[{"id":1200416070,"name":"CVE-2026-33149-PoC","full_name":"FilipeGaudard/CVE-2026-33149-PoC","html_url":"https://github.com/FilipeGaudard/CVE-2026-33149-PoC","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-03T11:52:54Z","pushed_at":"2026-04-03T11:52:50Z","created_at":"2026-04-03T11:41:06Z","topics":[],"owner":{"login":"FilipeGaudard","html_url":"https://github.com/FilipeGaudard"},"clone_url":"https://github.com/FilipeGaudard/CVE-2026-33149-PoC.git","has_code":true,"age_days":83}]},{"cve_id":"CVE-2026-33150","repositories":[{"id":1191314137,"name":"abhinavagarwal07.github.io","full_name":"abhinavagarwal07/abhinavagarwal07.github.io","html_url":"https://github.com/abhinavagarwal07/abhinavagarwal07.github.io","description":"RingWraith: CVE-2026-33150 and CVE-2026-33179 — Use-After-Free and NULL Dereference in libfuse io_uring","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-10T07:34:41Z","pushed_at":"2026-05-10T07:34:36Z","created_at":"2026-03-25T05:48:59Z","topics":[],"owner":{"login":"abhinavagarwal07","html_url":"https://github.com/abhinavagarwal07"},"clone_url":"https://github.com/abhinavagarwal07/abhinavagarwal07.github.io.git","has_code":true,"age_days":92}]},{"cve_id":"CVE-2026-33154","repositories":[{"id":1200075597,"name":"CVE-2026-33154","full_name":"redyank/CVE-2026-33154","html_url":"https://github.com/redyank/CVE-2026-33154","description":"CVE-2026-33154(RCE @jinja resolver)","stargazers_count":0,"forks_count":1,"language":"","updated_at":"2026-04-03T04:36:40Z","pushed_at":"2026-04-03T04:36:36Z","created_at":"2026-04-03T02:30:20Z","topics":[],"owner":{"login":"redyank","html_url":"https://github.com/redyank"},"clone_url":"https://github.com/redyank/CVE-2026-33154.git","has_code":false,"age_days":83}]},{"cve_id":"CVE-2026-33179","repositories":[{"id":1191314137,"name":"abhinavagarwal07.github.io","full_name":"abhinavagarwal07/abhinavagarwal07.github.io","html_url":"https://github.com/abhinavagarwal07/abhinavagarwal07.github.io","description":"RingWraith: CVE-2026-33150 and CVE-2026-33179 — Use-After-Free and NULL Dereference in libfuse io_uring","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-10T07:34:41Z","pushed_at":"2026-05-10T07:34:36Z","created_at":"2026-03-25T05:48:59Z","topics":[],"owner":{"login":"abhinavagarwal07","html_url":"https://github.com/abhinavagarwal07"},"clone_url":"https://github.com/abhinavagarwal07/abhinavagarwal07.github.io.git","has_code":true,"age_days":92}]},{"cve_id":"CVE-2026-33186","repositories":[{"id":1203070222,"name":"CVE-2026-33186","full_name":"JohannesLks/CVE-2026-33186","html_url":"https://github.com/JohannesLks/CVE-2026-33186","description":"gRPC-Go RBAC Authorization Policy Bypass via Missing `:path` Slash (Auth Bypass)","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-17T15:15:26Z","pushed_at":"2026-04-06T17:40:51Z","created_at":"2026-04-06T17:33:46Z","topics":["cve","exploit","security","vulnerability"],"owner":{"login":"JohannesLks","html_url":"https://github.com/JohannesLks"},"clone_url":"https://github.com/JohannesLks/CVE-2026-33186.git","has_code":true,"age_days":80}]},{"cve_id":"CVE-2026-33229","repositories":[{"id":1207661362,"name":"CVE-2026-33229","full_name":"azefzafyoussef/CVE-2026-33229","html_url":"https://github.com/azefzafyoussef/CVE-2026-33229","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-11T08:31:34Z","pushed_at":"2026-04-11T08:31:31Z","created_at":"2026-04-11T08:18:52Z","topics":[],"owner":{"login":"azefzafyoussef","html_url":"https://github.com/azefzafyoussef"},"clone_url":"https://github.com/azefzafyoussef/CVE-2026-33229.git","has_code":false,"age_days":75}]},{"cve_id":"CVE-2026-33310","repositories":[{"id":1200154299,"name":"CVE-2026-33310","full_name":"redyank/CVE-2026-33310","html_url":"https://github.com/redyank/CVE-2026-33310","description":"CVE-2026-33310(Command Injection via shell() Expansion in Parameter Defaults)","stargazers_count":0,"forks_count":1,"language":"","updated_at":"2026-04-03T05:06:16Z","pushed_at":"2026-04-03T05:06:12Z","created_at":"2026-04-03T05:05:59Z","topics":[],"owner":{"login":"redyank","html_url":"https://github.com/redyank"},"clone_url":"https://github.com/redyank/CVE-2026-33310.git","has_code":false,"age_days":83}]},{"cve_id":"CVE-2026-33317","repositories":[{"id":1225203490,"name":"CVE-2026-33317","full_name":"qianfei11/CVE-2026-33317","html_url":"https://github.com/qianfei11/CVE-2026-33317","description":"PoC for CVE-2026-33317 OP-TEE PKCS#11 TA out-of-bounds write","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-04-30T04:06:31Z","pushed_at":"2026-04-30T04:06:27Z","created_at":"2026-04-30T03:41:48Z","topics":[],"owner":{"login":"qianfei11","html_url":"https://github.com/qianfei11"},"clone_url":"https://github.com/qianfei11/CVE-2026-33317.git","has_code":true,"age_days":56}]},{"cve_id":"CVE-2026-33320","repositories":[{"id":1229043473,"name":"dasel-hardened-container","full_name":"nedlir/dasel-hardened-container","html_url":"https://github.com/nedlir/dasel-hardened-container","description":"Hardened dasel v3.3.1 package and image built via Melange and apko. Patching CVE-2026-33320.","stargazers_count":0,"forks_count":0,"language":"Makefile","updated_at":"2026-05-31T15:41:06Z","pushed_at":"2026-05-31T15:41:02Z","created_at":"2026-05-04T16:34:52Z","topics":[],"owner":{"login":"nedlir","html_url":"https://github.com/nedlir"},"clone_url":"https://github.com/nedlir/dasel-hardened-container.git","has_code":true,"age_days":52},{"id":1257096856,"name":"Minimus-Junior-Backend-Exercise","full_name":"GonSarrabia/Minimus-Junior-Backend-Exercise","html_url":"https://github.com/GonSarrabia/Minimus-Junior-Backend-Exercise","description":"Junior Backend Candidate Exercise: Packaging the dasel CLI (v3.3.1) with Melange, fixing CVE-2026-33320, and building a minimal container image using Apko.","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-11T16:41:33Z","pushed_at":"2026-06-11T16:41:28Z","created_at":"2026-06-02T11:09:13Z","topics":[],"owner":{"login":"GonSarrabia","html_url":"https://github.com/GonSarrabia"},"clone_url":"https://github.com/GonSarrabia/Minimus-Junior-Backend-Exercise.git","has_code":true,"age_days":23},{"id":1256105651,"name":"dasel-melange-apko","full_name":"rotavori/dasel-melange-apko","html_url":"https://github.com/rotavori/dasel-melange-apko","description":"dasel v3.3.1 packaged with Melange and shipped as a minimal apko image, patched for CVE-2026-33320","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-01T15:00:24Z","pushed_at":"2026-06-01T14:46:14Z","created_at":"2026-06-01T13:17:36Z","topics":[],"owner":{"login":"rotavori","html_url":"https://github.com/rotavori"},"clone_url":"https://github.com/rotavori/dasel-melange-apko.git","has_code":true,"age_days":24}]},{"cve_id":"CVE-2026-33331","repositories":[{"id":1201428303,"name":"CVE-2026-33331","full_name":"abhayclasher/CVE-2026-33331","html_url":"https://github.com/abhayclasher/CVE-2026-33331","description":"Proof-of-concept lab for stored XSS in orpc (CVE-2026-33331)","stargazers_count":0,"forks_count":0,"language":"JavaScript","updated_at":"2026-04-04T17:18:36Z","pushed_at":"2026-04-04T17:18:31Z","created_at":"2026-04-04T17:03:14Z","topics":[],"owner":{"login":"abhayclasher","html_url":"https://github.com/abhayclasher"},"clone_url":"https://github.com/abhayclasher/CVE-2026-33331.git","has_code":true,"age_days":82}]},{"cve_id":"CVE-2026-33340","repositories":[{"id":1195427259,"name":"CVE-2026-33340","full_name":"regaan/CVE-2026-33340","html_url":"https://github.com/regaan/CVE-2026-33340","description":"CVE-2026-33340: Critical SSRF in lollms-webui /api/proxy - Unauthenticated arbitrary request forgery (CVSS 9.1)","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-11T18:05:51Z","pushed_at":"2026-04-11T18:05:48Z","created_at":"2026-03-29T16:59:53Z","topics":["cve","cve-2026-33340","lollms","proof-of-concept","responsible-disclosure","security","security-research","ssrf","vulnerability","web-security"],"owner":{"login":"regaan","html_url":"https://github.com/regaan"},"clone_url":"https://github.com/regaan/CVE-2026-33340.git","has_code":false,"age_days":88}]},{"cve_id":"CVE-2026-33439","repositories":[{"id":1225296713,"name":"CVE-2026-33439","full_name":"TheMalwareGuardian/CVE-2026-33439","html_url":"https://github.com/TheMalwareGuardian/CVE-2026-33439","description":"First publicly shared exploit implementation for CVE-2026-33439 (OpenAM pre-auth RCE via jato.clientSession deserialization).","stargazers_count":2,"forks_count":1,"language":"Python","updated_at":"2026-05-06T11:24:25Z","pushed_at":"2026-05-01T10:23:38Z","created_at":"2026-04-30T06:25:46Z","topics":["cve-2026-33439","exploit","java-deserialization"],"owner":{"login":"TheMalwareGuardian","html_url":"https://github.com/TheMalwareGuardian"},"clone_url":"https://github.com/TheMalwareGuardian/CVE-2026-33439.git","has_code":true,"age_days":56},{"id":1223288035,"name":"CVE-2026-33439-PoC","full_name":"Ibonok/CVE-2026-33439-PoC","html_url":"https://github.com/Ibonok/CVE-2026-33439-PoC","description":"CVE-2026-33439","stargazers_count":1,"forks_count":1,"language":"Java","updated_at":"2026-04-30T07:13:21Z","pushed_at":"2026-04-28T07:22:50Z","created_at":"2026-04-28T07:19:37Z","topics":[],"owner":{"login":"Ibonok","html_url":"https://github.com/Ibonok"},"clone_url":"https://github.com/Ibonok/CVE-2026-33439-PoC.git","has_code":true,"age_days":58},{"id":1222709888,"name":"CVE-2026-33439-OpenAM","full_name":"shreyas-malhotra/CVE-2026-33439-OpenAM","html_url":"https://github.com/shreyas-malhotra/CVE-2026-33439-OpenAM","description":"Vulnerable endpoint description for CVE-2026-33439 in OpenAM","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-27T16:23:39Z","pushed_at":"2026-04-27T16:23:34Z","created_at":"2026-04-27T16:22:31Z","topics":[],"owner":{"login":"shreyas-malhotra","html_url":"https://github.com/shreyas-malhotra"},"clone_url":"https://github.com/shreyas-malhotra/CVE-2026-33439-OpenAM.git","has_code":false,"age_days":59}]},{"cve_id":"CVE-2026-33453","repositories":[{"id":1222810249,"name":"CVE-2026-33453","full_name":"dinosn/CVE-2026-33453","html_url":"https://github.com/dinosn/CVE-2026-33453","description":"Apache Camel 4.18.0 — CVE Security Assessment: 3 critical vulnerabilities with working PoC exploits (CVE-2026-33453, CVE-2026-40473, CVE-2026-40858)","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-04T08:59:34Z","pushed_at":"2026-04-27T18:26:29Z","created_at":"2026-04-27T18:21:34Z","topics":[],"owner":{"login":"dinosn","html_url":"https://github.com/dinosn"},"clone_url":"https://github.com/dinosn/CVE-2026-33453.git","has_code":true,"age_days":59}]},{"cve_id":"CVE-2026-33531","repositories":[{"id":1193661219,"name":"InvenTree-Path-Traversal-CVE-2026-33531","full_name":"alonaki/InvenTree-Path-Traversal-CVE-2026-33531","html_url":"https://github.com/alonaki/InvenTree-Path-Traversal-CVE-2026-33531","description":"This repository contains a professional write-up of a path traversal vulnerability discovered in InvenTree's report template engine. This vulnerability was patched in versions 1.2.6 and 1.3.0.","stargazers_count":3,"forks_count":0,"language":"","updated_at":"2026-03-30T12:16:26Z","pushed_at":"2026-03-27T14:17:57Z","created_at":"2026-03-27T13:07:08Z","topics":["cve-2026-33531","path-traversal"],"owner":{"login":"alonaki","html_url":"https://github.com/alonaki"},"clone_url":"https://github.com/alonaki/InvenTree-Path-Traversal-CVE-2026-33531.git","has_code":false,"age_days":90}]},{"cve_id":"CVE-2026-33532","repositories":[{"id":1193830181,"name":"astro_CVE-2026-33532","full_name":"danwulff/astro_CVE-2026-33532","html_url":"https://github.com/danwulff/astro_CVE-2026-33532","description":"","stargazers_count":0,"forks_count":0,"language":"Astro","updated_at":"2026-03-27T16:15:53Z","pushed_at":"2026-03-27T16:15:49Z","created_at":"2026-03-27T16:13:28Z","topics":[],"owner":{"login":"danwulff","html_url":"https://github.com/danwulff"},"clone_url":"https://github.com/danwulff/astro_CVE-2026-33532.git","has_code":true,"age_days":90}]},{"cve_id":"CVE-2026-33534","repositories":[{"id":1233184282,"name":"CVE-2026-33534","full_name":"EntroVyx/CVE-2026-33534","html_url":"https://github.com/EntroVyx/CVE-2026-33534","description":"EspoCRM 9.3.3 - Authenticated SSRF via Alternative IPv4 Notation","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-11T20:16:30Z","pushed_at":"2026-05-11T20:16:25Z","created_at":"2026-05-08T17:22:43Z","topics":[],"owner":{"login":"EntroVyx","html_url":"https://github.com/EntroVyx"},"clone_url":"https://github.com/EntroVyx/CVE-2026-33534.git","has_code":true,"age_days":48}]},{"cve_id":"CVE-2026-33555","repositories":[{"id":1212854519,"name":"CVE-2026-33555","full_name":"r3verii/CVE-2026-33555","html_url":"https://github.com/r3verii/CVE-2026-33555","description":"One zero-byte QUIC packet is enough to desynchronize HAProxy's backend connection pool and smuggle HTTP requests across unrelated users — even users on a completely different frontend protocol.","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-06-21T13:58:19Z","pushed_at":"2026-04-17T15:45:05Z","created_at":"2026-04-16T19:53:54Z","topics":[],"owner":{"login":"r3verii","html_url":"https://github.com/r3verii"},"clone_url":"https://github.com/r3verii/CVE-2026-33555.git","has_code":true,"age_days":70}]},{"cve_id":"CVE-2026-33579","repositories":[{"id":1201259616,"name":"openclaw-security-checker","full_name":"atalovesyou/openclaw-security-checker","html_url":"https://github.com/atalovesyou/openclaw-security-checker","description":"Check if your AI agent setup is vulnerable to CVE-2026-33579","stargazers_count":0,"forks_count":0,"language":"HTML","updated_at":"2026-04-04T12:37:30Z","pushed_at":"2026-04-04T12:37:26Z","created_at":"2026-04-04T12:37:24Z","topics":[],"owner":{"login":"atalovesyou","html_url":"https://github.com/atalovesyou"},"clone_url":"https://github.com/atalovesyou/openclaw-security-checker.git","has_code":true,"age_days":82}]},{"cve_id":"CVE-2026-3359","repositories":[{"id":1273623734,"name":"cve-2026-3359-exp","full_name":"itsthalisman/cve-2026-3359-exp","html_url":"https://github.com/itsthalisman/cve-2026-3359-exp","description":"A PoC/exploit written in python for the unauthenticated SQL injection vulnerability CVE-2026-3359 situated within Form Maker (version \u003c= 1.15.42) by 10Web. ","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-18T19:40:34Z","pushed_at":"2026-06-18T18:40:35Z","created_at":"2026-06-18T17:51:58Z","topics":["cve","poc"],"owner":{"login":"itsthalisman","html_url":"https://github.com/itsthalisman"},"clone_url":"https://github.com/itsthalisman/cve-2026-3359-exp.git","has_code":true,"age_days":7}]},{"cve_id":"CVE-2026-33626","repositories":[{"id":1237336877,"name":"CVE-2026-33626-Lab","full_name":"rootdirective-sec/CVE-2026-33626-Lab","html_url":"https://github.com/rootdirective-sec/CVE-2026-33626-Lab","description":"","stargazers_count":0,"forks_count":0,"language":"Dockerfile","updated_at":"2026-05-15T08:49:48Z","pushed_at":"2026-05-15T08:49:45Z","created_at":"2026-05-13T05:02:24Z","topics":[],"owner":{"login":"rootdirective-sec","html_url":"https://github.com/rootdirective-sec"},"clone_url":"https://github.com/rootdirective-sec/CVE-2026-33626-Lab.git","has_code":true,"age_days":43}]},{"cve_id":"CVE-2026-33634","repositories":[{"id":1191125516,"name":"teampcp-supply-chain-attack","full_name":"ugurrates/teampcp-supply-chain-attack","html_url":"https://github.com/ugurrates/teampcp-supply-chain-attack","description":"CVE-2026-33634 (CVSS 9.4) — The most impactful CI/CD supply chain attack of 2026 so far.","stargazers_count":9,"forks_count":2,"language":"","updated_at":"2026-06-09T13:58:25Z","pushed_at":"2026-03-25T00:11:02Z","created_at":"2026-03-25T00:08:43Z","topics":[],"owner":{"login":"ugurrates","html_url":"https://github.com/ugurrates"},"clone_url":"https://github.com/ugurrates/teampcp-supply-chain-attack.git","has_code":false,"age_days":92},{"id":1197021224,"name":"docker-socket-risk-demos","full_name":"AshleyT3/docker-socket-risk-demos","html_url":"https://github.com/AshleyT3/docker-socket-risk-demos","description":"Companion source for YouTube video \"Stop Mounting docker.sock — Run Trivy Without Giving Away Root Access — (inspired by CVE-2026-33634)\"","stargazers_count":0,"forks_count":0,"language":"TypeScript","updated_at":"2026-03-31T10:50:13Z","pushed_at":"2026-03-31T09:07:29Z","created_at":"2026-03-31T08:58:19Z","topics":["cve-2026-33634","docker-engine-api","docker-socket","trivy-docker-scan","trivy-docker-scan-safely","trivy-scan"],"owner":{"login":"AshleyT3","html_url":"https://github.com/AshleyT3"},"clone_url":"https://github.com/AshleyT3/docker-socket-risk-demos.git","has_code":true,"age_days":86},{"id":1196333313,"name":"CVE-2026-33634-Scanner","full_name":"fevar54/CVE-2026-33634-Scanner","html_url":"https://github.com/fevar54/CVE-2026-33634-Scanner","description":"**Scanner automatizado para la detección de indicadores de compromiso (IOCs) asociados al ataque a la cadena de suministro TeamPCP (CVE-2026-33634)**","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-30T15:52:51Z","pushed_at":"2026-03-30T15:52:47Z","created_at":"2026-03-30T15:43:43Z","topics":[],"owner":{"login":"fevar54","html_url":"https://github.com/fevar54"},"clone_url":"https://github.com/fevar54/CVE-2026-33634-Scanner.git","has_code":true,"age_days":87}]},{"cve_id":"CVE-2026-33656","repositories":[{"id":1190963412,"name":"ESPOCRM-RCE-POC-CVE-2026-33656","full_name":"JivaSecurity/ESPOCRM-RCE-POC-CVE-2026-33656","html_url":"https://github.com/JivaSecurity/ESPOCRM-RCE-POC-CVE-2026-33656","description":"Formula for Disaster: RCE in EspoCRM v9.3.3 (CVE-2026-33656)","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-03-25T06:17:02Z","pushed_at":"2026-03-25T03:40:14Z","created_at":"2026-03-24T19:41:19Z","topics":[],"owner":{"login":"JivaSecurity","html_url":"https://github.com/JivaSecurity"},"clone_url":"https://github.com/JivaSecurity/ESPOCRM-RCE-POC-CVE-2026-33656.git","has_code":true,"age_days":93}]},{"cve_id":"CVE-2026-33657","repositories":[{"id":1235971062,"name":"CVE-2026-33657","full_name":"EntroVyx/CVE-2026-33657","html_url":"https://github.com/EntroVyx/CVE-2026-33657","description":"EspoCRM 9.3.3 - Stored HTML Injection in Email Notifications","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-11T20:44:21Z","pushed_at":"2026-05-11T20:44:12Z","created_at":"2026-05-11T20:39:31Z","topics":[],"owner":{"login":"EntroVyx","html_url":"https://github.com/EntroVyx"},"clone_url":"https://github.com/EntroVyx/CVE-2026-33657.git","has_code":true,"age_days":44}]},{"cve_id":"CVE-2026-33671","repositories":[{"id":1213858855,"name":"next-picomatch-cve-repro","full_name":"BeLazy167/next-picomatch-cve-repro","html_url":"https://github.com/BeLazy167/next-picomatch-cve-repro","description":"Minimal repro for Next.js 16.2.4 bundling picomatch 4.0.3 (CVE-2026-33671)","stargazers_count":0,"forks_count":0,"language":"Dockerfile","updated_at":"2026-04-17T20:52:44Z","pushed_at":"2026-04-17T20:52:41Z","created_at":"2026-04-17T20:52:39Z","topics":[],"owner":{"login":"BeLazy167","html_url":"https://github.com/BeLazy167"},"clone_url":"https://github.com/BeLazy167/next-picomatch-cve-repro.git","has_code":true,"age_days":68}]},{"cve_id":"CVE-2026-33693","repositories":[{"id":1190037785,"name":"CVE-2026-33693","full_name":"SnailSploit/CVE-2026-33693","html_url":"https://github.com/SnailSploit/CVE-2026-33693","description":"CVE-2026-33693: SSRF via 0.0.0.0 Bypass in activitypub-federation-rust v4_is_invalid() (CVSS 6.5 Moderate)","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-08T16:05:56Z","pushed_at":"2026-05-08T16:05:50Z","created_at":"2026-03-23T23:00:03Z","topics":["activitypub","cve","ghsa","lemmy","rust","snailsploit","ssrf"],"owner":{"login":"SnailSploit","html_url":"https://github.com/SnailSploit"},"clone_url":"https://github.com/SnailSploit/CVE-2026-33693.git","has_code":false,"age_days":93}]},{"cve_id":"CVE-2026-33701","repositories":[{"id":1201212908,"name":"CVE-2026-33701-Unsafe-Deserialization-in-OpenTelemetry-Java-Agent-RMI-Instrumentation","full_name":"pl4tyz/CVE-2026-33701-Unsafe-Deserialization-in-OpenTelemetry-Java-Agent-RMI-Instrumentation","html_url":"https://github.com/pl4tyz/CVE-2026-33701-Unsafe-Deserialization-in-OpenTelemetry-Java-Agent-RMI-Instrumentation","description":"CVE-2026-33701 Unsafe Deserialization in OpenTelemetry Java Agent RMI Instrumentation","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-04T11:16:36Z","pushed_at":"2026-04-04T11:16:31Z","created_at":"2026-04-04T11:14:42Z","topics":[],"owner":{"login":"pl4tyz","html_url":"https://github.com/pl4tyz"},"clone_url":"https://github.com/pl4tyz/CVE-2026-33701-Unsafe-Deserialization-in-OpenTelemetry-Java-Agent-RMI-Instrumentation.git","has_code":false,"age_days":82}]},{"cve_id":"CVE-2026-33712","repositories":[{"id":1249390229,"name":"CVE-2026-33712","full_name":"portbuster1337/CVE-2026-33712","html_url":"https://github.com/portbuster1337/CVE-2026-33712","description":"CVE-2026-33712 - Typebot \u003c= 3.15.2 Unauthenticated SSRF via isolated-vm sandbox fetch","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-25T16:49:46Z","pushed_at":"2026-05-25T16:49:42Z","created_at":"2026-05-25T16:43:09Z","topics":["cve","cve-2026-33712","exploit","poc","security","ssrf","typebot"],"owner":{"login":"portbuster1337","html_url":"https://github.com/portbuster1337"},"clone_url":"https://github.com/portbuster1337/CVE-2026-33712.git","has_code":true,"age_days":31}]},{"cve_id":"CVE-2026-33715","repositories":[{"id":1225019540,"name":"CVE-2026-33715","full_name":"romain-deperne/CVE-2026-33715","html_url":"https://github.com/romain-deperne/CVE-2026-33715","description":"Unauthenticated SSRF + Open Email Relay in Chamilo LMS via install.ajax.php — CVSS 7.5","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-29T21:58:10Z","pushed_at":"2026-04-29T21:58:06Z","created_at":"2026-04-29T21:37:04Z","topics":[],"owner":{"login":"romain-deperne","html_url":"https://github.com/romain-deperne"},"clone_url":"https://github.com/romain-deperne/CVE-2026-33715.git","has_code":true,"age_days":56}]},{"cve_id":"CVE-2026-33725","repositories":[{"id":1202796340,"name":"CVE-2026-33725","full_name":"hakaioffsec/CVE-2026-33725","html_url":"https://github.com/hakaioffsec/CVE-2026-33725","description":"Exploit for CVE-2026-33725 - Remote Code Execution and Arbitrary File Read via H2 JDBC INIT Injection in EE Serialization Import","stargazers_count":24,"forks_count":6,"language":"Python","updated_at":"2026-05-23T14:40:39Z","pushed_at":"2026-04-23T17:47:53Z","created_at":"2026-04-06T12:10:07Z","topics":[],"owner":{"login":"hakaioffsec","html_url":"https://github.com/hakaioffsec"},"clone_url":"https://github.com/hakaioffsec/CVE-2026-33725.git","has_code":true,"age_days":80}]},{"cve_id":"CVE-2026-33752","repositories":[{"id":1200158644,"name":"CVE-2026-33752","full_name":"redyank/CVE-2026-33752","html_url":"https://github.com/redyank/CVE-2026-33752","description":"CVE-2026-33752(Redirect-based SSRF leading to internal network access in curl_cffi)","stargazers_count":0,"forks_count":1,"language":"","updated_at":"2026-04-04T14:47:53Z","pushed_at":"2026-04-04T14:47:50Z","created_at":"2026-04-03T05:13:55Z","topics":[],"owner":{"login":"redyank","html_url":"https://github.com/redyank"},"clone_url":"https://github.com/redyank/CVE-2026-33752.git","has_code":false,"age_days":83}]},{"cve_id":"CVE-2026-33824","repositories":[{"id":1242508964,"name":"IKEV2-POC","full_name":"EpSiLoNPoInTOrI/IKEV2-POC","html_url":"https://github.com/EpSiLoNPoInTOrI/IKEV2-POC","description":"IKEv2, ikeext.dll, CVE-2026-33824, double free, heap grooming, ROP, SKF fragmentation, Windows exploit, anti-debug, obfuscation, API hooking, shellcode, reverse shell","stargazers_count":4,"forks_count":0,"language":"C++","updated_at":"2026-06-20T20:25:42Z","pushed_at":"2026-05-23T14:46:39Z","created_at":"2026-05-18T13:44:31Z","topics":[],"owner":{"login":"EpSiLoNPoInTOrI","html_url":"https://github.com/EpSiLoNPoInTOrI"},"clone_url":"https://github.com/EpSiLoNPoInTOrI/IKEV2-POC.git","has_code":true,"age_days":38},{"id":1217141283,"name":"CVE-2026-33824","full_name":"kaleth4/CVE-2026-33824","html_url":"https://github.com/kaleth4/CVE-2026-33824","description":"","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-05-26T14:50:35Z","pushed_at":"2026-04-21T15:42:08Z","created_at":"2026-04-21T15:29:56Z","topics":[],"owner":{"login":"kaleth4","html_url":"https://github.com/kaleth4"},"clone_url":"https://github.com/kaleth4/CVE-2026-33824.git","has_code":false,"age_days":65}]},{"cve_id":"CVE-2026-33825","repositories":[{"id":1213858543,"name":"redsun-bluehammer-undefend-detection-pack","full_name":"Letlaka/redsun-bluehammer-undefend-detection-pack","html_url":"https://github.com/Letlaka/redsun-bluehammer-undefend-detection-pack","description":"Microsoft Defender XDR KQL detections for RedSun, BlueHammer, UnDefend, and CVE-2026-33825-related Defender abuse behaviors.","stargazers_count":8,"forks_count":1,"language":"","updated_at":"2026-06-08T04:43:22Z","pushed_at":"2026-05-05T20:18:04Z","created_at":"2026-04-17T20:52:08Z","topics":["advanced-hunting","bluehammer","cve-2026-33825","defender-xdr","detection-engineering","kql-threathunting","microsoft-defender","microsoft-defender-xdr","privilege-escalation","redsun","threat-detection-windows","undefend","windows-security"],"owner":{"login":"Letlaka","html_url":"https://github.com/Letlaka"},"clone_url":"https://github.com/Letlaka/redsun-bluehammer-undefend-detection-pack.git","has_code":false,"age_days":68},{"id":1227072166,"name":"CVE-2026-33825","full_name":"Joe1sn/CVE-2026-33825","html_url":"https://github.com/Joe1sn/CVE-2026-33825","description":"RedSun PoC for self use","stargazers_count":4,"forks_count":2,"language":"C++","updated_at":"2026-06-17T02:36:38Z","pushed_at":"2026-05-02T06:55:23Z","created_at":"2026-05-02T06:52:02Z","topics":[],"owner":{"login":"Joe1sn","html_url":"https://github.com/Joe1sn"},"clone_url":"https://github.com/Joe1sn/CVE-2026-33825.git","has_code":true,"age_days":54},{"id":1242665975,"name":"CVE-2026-33825","full_name":"0xBlackash/CVE-2026-33825","html_url":"https://github.com/0xBlackash/CVE-2026-33825","description":"CVE-2026-33825","stargazers_count":1,"forks_count":3,"language":"C","updated_at":"2026-05-30T22:02:52Z","pushed_at":"2026-05-20T10:31:24Z","created_at":"2026-05-18T16:28:47Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-33825.git","has_code":true,"age_days":38},{"id":1217991945,"name":"CVE-2026-33825","full_name":"kaleth4/CVE-2026-33825","html_url":"https://github.com/kaleth4/CVE-2026-33825","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-22T12:39:23Z","pushed_at":"2026-04-22T12:39:20Z","created_at":"2026-04-22T12:29:39Z","topics":[],"owner":{"login":"kaleth4","html_url":"https://github.com/kaleth4"},"clone_url":"https://github.com/kaleth4/CVE-2026-33825.git","has_code":true,"age_days":64},{"id":1215824073,"name":"Detecting_blue_hammer_vuln","full_name":"Bilal3755/Detecting_blue_hammer_vuln","html_url":"https://github.com/Bilal3755/Detecting_blue_hammer_vuln","description":"Threat hunting query for bluehammer CVE windows CVE-2026-33825","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-20T09:38:41Z","pushed_at":"2026-04-20T09:38:37Z","created_at":"2026-04-20T09:38:06Z","topics":[],"owner":{"login":"Bilal3755","html_url":"https://github.com/Bilal3755"},"clone_url":"https://github.com/Bilal3755/Detecting_blue_hammer_vuln.git","has_code":false,"age_days":66}]},{"cve_id":"CVE-2026-33826","repositories":[{"id":1217996305,"name":"CVE-2026-33826","full_name":"kaleth4/CVE-2026-33826","html_url":"https://github.com/kaleth4/CVE-2026-33826","description":"","stargazers_count":1,"forks_count":1,"language":"Python","updated_at":"2026-05-21T04:14:12Z","pushed_at":"2026-04-22T12:42:08Z","created_at":"2026-04-22T12:35:05Z","topics":[],"owner":{"login":"kaleth4","html_url":"https://github.com/kaleth4"},"clone_url":"https://github.com/kaleth4/CVE-2026-33826.git","has_code":true,"age_days":64}]},{"cve_id":"CVE-2026-33827","repositories":[{"id":1217978788,"name":"CVE-2026-33827","full_name":"kaleth4/CVE-2026-33827","html_url":"https://github.com/kaleth4/CVE-2026-33827","description":"","stargazers_count":2,"forks_count":1,"language":"Python","updated_at":"2026-06-24T08:59:24Z","pushed_at":"2026-04-22T12:24:31Z","created_at":"2026-04-22T12:13:33Z","topics":[],"owner":{"login":"kaleth4","html_url":"https://github.com/kaleth4"},"clone_url":"https://github.com/kaleth4/CVE-2026-33827.git","has_code":true,"age_days":64}]},{"cve_id":"CVE-2026-33829","repositories":[{"id":1245255897,"name":"CVE-2026-33829-Writeup","full_name":"rahultb-sec/CVE-2026-33829-Writeup","html_url":"https://github.com/rahultb-sec/CVE-2026-33829-Writeup","description":"Vulnerability Case Study: CVE-2026-33829 (Windows Snipping Tool NTLM Coercion)","stargazers_count":0,"forks_count":1,"language":"","updated_at":"2026-05-21T05:49:36Z","pushed_at":"2026-05-21T05:49:33Z","created_at":"2026-05-21T03:56:59Z","topics":[],"owner":{"login":"rahultb-sec","html_url":"https://github.com/rahultb-sec"},"clone_url":"https://github.com/rahultb-sec/CVE-2026-33829-Writeup.git","has_code":false,"age_days":35},{"id":1263895911,"name":"CVE-2026-33829","full_name":"jenniferreire26/CVE-2026-33829","html_url":"https://github.com/jenniferreire26/CVE-2026-33829","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-09T11:17:01Z","pushed_at":"2026-06-09T11:16:59Z","created_at":"2026-06-09T11:16:56Z","topics":[],"owner":{"login":"jenniferreire26","html_url":"https://github.com/jenniferreire26"},"clone_url":"https://github.com/jenniferreire26/CVE-2026-33829.git","has_code":false,"age_days":16},{"id":1260470383,"name":"CVE-2026-33829","full_name":"seguridadentrerios/CVE-2026-33829","html_url":"https://github.com/seguridadentrerios/CVE-2026-33829","description":"","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-05T14:38:23Z","pushed_at":"2026-06-05T14:38:19Z","created_at":"2026-06-05T14:25:56Z","topics":[],"owner":{"login":"seguridadentrerios","html_url":"https://github.com/seguridadentrerios"},"clone_url":"https://github.com/seguridadentrerios/CVE-2026-33829.git","has_code":true,"age_days":20}]},{"cve_id":"CVE-2026-33910","repositories":[{"id":1189729959,"name":"CVE-2026-33910_SqlInjectionVulnerabilityOpenEMR8.0.0.2","full_name":"ChrisSub08/CVE-2026-33910_SqlInjectionVulnerabilityOpenEMR8.0.0.2","html_url":"https://github.com/ChrisSub08/CVE-2026-33910_SqlInjectionVulnerabilityOpenEMR8.0.0.2","description":"CVE-2026-33910: SQL Injection Vulnerability in OpenEMR \u003c8.0.0.3","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-26T08:34:44Z","pushed_at":"2026-03-25T09:03:10Z","created_at":"2026-03-23T15:58:53Z","topics":["cve","openemr","sql-injection","sqli","vulnerability"],"owner":{"login":"ChrisSub08","html_url":"https://github.com/ChrisSub08"},"clone_url":"https://github.com/ChrisSub08/CVE-2026-33910_SqlInjectionVulnerabilityOpenEMR8.0.0.2.git","has_code":false,"age_days":94}]},{"cve_id":"CVE-2026-33917","repositories":[{"id":1166916929,"name":"CVE-2026-33917_SqlInjectionVulnerabilityOpenEMR8.0.0","full_name":"ChrisSub08/CVE-2026-33917_SqlInjectionVulnerabilityOpenEMR8.0.0","html_url":"https://github.com/ChrisSub08/CVE-2026-33917_SqlInjectionVulnerabilityOpenEMR8.0.0","description":"CVE-2026-33917: SQL Injection Vulnerability in OpenEMR \u003c8.0.0.3","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-26T08:34:17Z","pushed_at":"2026-03-25T09:13:19Z","created_at":"2026-02-25T18:47:15Z","topics":["cve","exploit","exploitation","openemr","sql-injection","sqli","vulnerability"],"owner":{"login":"ChrisSub08","html_url":"https://github.com/ChrisSub08"},"clone_url":"https://github.com/ChrisSub08/CVE-2026-33917_SqlInjectionVulnerabilityOpenEMR8.0.0.git","has_code":true,"age_days":120}]},{"cve_id":"CVE-2026-33936","repositories":[{"id":1199086071,"name":"CVE-2026-33936","full_name":"0xmrma/CVE-2026-33936","html_url":"https://github.com/0xmrma/CVE-2026-33936","description":"Denial of Service vulnerability in ecdsa (PyPI)","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-04-02T03:31:03Z","pushed_at":"2026-04-02T03:23:30Z","created_at":"2026-04-02T03:18:21Z","topics":[],"owner":{"login":"0xmrma","html_url":"https://github.com/0xmrma"},"clone_url":"https://github.com/0xmrma/CVE-2026-33936.git","has_code":false,"age_days":84}]},{"cve_id":"CVE-2026-33937","repositories":[{"id":1217653827,"name":"CVE-2026-33937","full_name":"EQSTLab/CVE-2026-33937","html_url":"https://github.com/EQSTLab/CVE-2026-33937","description":"Handlebars.js AST Injection Remote Code Execution Vulnerability","stargazers_count":1,"forks_count":1,"language":"HTML","updated_at":"2026-05-06T01:13:58Z","pushed_at":"2026-04-27T08:54:56Z","created_at":"2026-04-22T05:09:10Z","topics":[],"owner":{"login":"EQSTLab","html_url":"https://github.com/EQSTLab"},"clone_url":"https://github.com/EQSTLab/CVE-2026-33937.git","has_code":true,"age_days":64},{"id":1194522135,"name":"cve-2026-33937","full_name":"dinhvaren/cve-2026-33937","html_url":"https://github.com/dinhvaren/cve-2026-33937","description":"CVE-2026-33937 Handlebars RCE exploit PoC (AST Injection)","stargazers_count":0,"forks_count":0,"language":"Handlebars","updated_at":"2026-05-14T05:32:05Z","pushed_at":"2026-05-05T03:41:19Z","created_at":"2026-03-28T13:24:22Z","topics":["ast-injection","cve-2026-33937","exploit","handlebars","nodejs","poc","rce","security","ssti","template-injection","vulnerability"],"owner":{"login":"dinhvaren","html_url":"https://github.com/dinhvaren"},"clone_url":"https://github.com/dinhvaren/cve-2026-33937.git","has_code":true,"age_days":89}]},{"cve_id":"CVE-2026-3395","repositories":[{"id":1170210047,"name":"CVE-2026-3395-MaxSite-CMS-Unauthenticated-RCE","full_name":"mbanyamer/CVE-2026-3395-MaxSite-CMS-Unauthenticated-RCE","html_url":"https://github.com/mbanyamer/CVE-2026-3395-MaxSite-CMS-Unauthenticated-RCE","description":"","stargazers_count":5,"forks_count":0,"language":"Python","updated_at":"2026-04-02T12:45:10Z","pushed_at":"2026-03-01T21:25:39Z","created_at":"2026-03-01T21:19:49Z","topics":[],"owner":{"login":"mbanyamer","html_url":"https://github.com/mbanyamer"},"clone_url":"https://github.com/mbanyamer/CVE-2026-3395-MaxSite-CMS-Unauthenticated-RCE.git","has_code":true,"age_days":115},{"id":1170765958,"name":"CVE-2026-3395-Lab","full_name":"rootdirective-sec/CVE-2026-3395-Lab","html_url":"https://github.com/rootdirective-sec/CVE-2026-3395-Lab","description":"","stargazers_count":0,"forks_count":0,"language":"Dockerfile","updated_at":"2026-03-02T13:57:41Z","pushed_at":"2026-03-02T13:57:37Z","created_at":"2026-03-02T13:51:24Z","topics":[],"owner":{"login":"rootdirective-sec","html_url":"https://github.com/rootdirective-sec"},"clone_url":"https://github.com/rootdirective-sec/CVE-2026-3395-Lab.git","has_code":true,"age_days":115}]},{"cve_id":"CVE-2026-33980","repositories":[{"id":1225007922,"name":"CVE-2026-33980","full_name":"romain-deperne/CVE-2026-33980","html_url":"https://github.com/romain-deperne/CVE-2026-33980","description":"KQL Injection in adx-mcp-server via table_name parameter — CVSS 8.8","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-29T21:58:11Z","pushed_at":"2026-04-29T21:58:07Z","created_at":"2026-04-29T21:16:37Z","topics":[],"owner":{"login":"romain-deperne","html_url":"https://github.com/romain-deperne"},"clone_url":"https://github.com/romain-deperne/CVE-2026-33980.git","has_code":true,"age_days":56}]},{"cve_id":"CVE-2026-34005","repositories":[{"id":1192776493,"name":"CVE-2026-34005","full_name":"uky007/CVE-2026-34005","html_url":"https://github.com/uky007/CVE-2026-34005","description":"CVE-2026-34005: OS Command Injection via Hostname Configuration in Xiongmai DVR/NVR (Sofia)","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-04-04T17:36:32Z","pushed_at":"2026-03-26T14:51:48Z","created_at":"2026-03-26T14:51:44Z","topics":[],"owner":{"login":"uky007","html_url":"https://github.com/uky007"},"clone_url":"https://github.com/uky007/CVE-2026-34005.git","has_code":false,"age_days":91}]},{"cve_id":"CVE-2026-34036","repositories":[{"id":1197721550,"name":"CVE-2026-34036","full_name":"cnf409/CVE-2026-34036","html_url":"https://github.com/cnf409/CVE-2026-34036","description":"PoC Script for CVE-2026-34036. For educational purposes only.","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-27T11:20:52Z","pushed_at":"2026-03-31T20:42:00Z","created_at":"2026-03-31T20:32:08Z","topics":[],"owner":{"login":"cnf409","html_url":"https://github.com/cnf409"},"clone_url":"https://github.com/cnf409/CVE-2026-34036.git","has_code":true,"age_days":85}]},{"cve_id":"CVE-2026-34040","repositories":[{"id":1261967973,"name":"CVE-2026-34040-PoC","full_name":"m0nk3ygod/CVE-2026-34040-PoC","html_url":"https://github.com/m0nk3ygod/CVE-2026-34040-PoC","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-07T16:50:06Z","pushed_at":"2026-06-07T16:50:02Z","created_at":"2026-06-07T11:56:20Z","topics":[],"owner":{"login":"m0nk3ygod","html_url":"https://github.com/m0nk3ygod"},"clone_url":"https://github.com/m0nk3ygod/CVE-2026-34040-PoC.git","has_code":true,"age_days":18}]},{"cve_id":"CVE-2026-34156","repositories":[{"id":1200431096,"name":"CVE-2026-34156","full_name":"0xBlackash/CVE-2026-34156","html_url":"https://github.com/0xBlackash/CVE-2026-34156","description":"CVE-2026-34156","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-03T12:55:12Z","pushed_at":"2026-04-03T12:55:09Z","created_at":"2026-04-03T12:04:06Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-34156.git","has_code":true,"age_days":83},{"id":1256902552,"name":"CVE-2026-34156-NocoBase-Sandbox-Escape-via-Workflow-Execution-Vulnerability-","full_name":"Dhananjayasj/CVE-2026-34156-NocoBase-Sandbox-Escape-via-Workflow-Execution-Vulnerability-","html_url":"https://github.com/Dhananjayasj/CVE-2026-34156-NocoBase-Sandbox-Escape-via-Workflow-Execution-Vulnerability-","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-02T07:27:12Z","pushed_at":"2026-06-02T07:27:07Z","created_at":"2026-06-02T07:24:49Z","topics":[],"owner":{"login":"Dhananjayasj","html_url":"https://github.com/Dhananjayasj"},"clone_url":"https://github.com/Dhananjayasj/CVE-2026-34156-NocoBase-Sandbox-Escape-via-Workflow-Execution-Vulnerability-.git","has_code":true,"age_days":23}]},{"cve_id":"CVE-2026-34159","repositories":[{"id":1219413367,"name":"CVE-2026-34159","full_name":"casp3r0x0/CVE-2026-34159","html_url":"https://github.com/casp3r0x0/CVE-2026-34159","description":"0 Click RCE exploit for CVE-2026-34159 Lama.cpp RPC server","stargazers_count":28,"forks_count":11,"language":"Python","updated_at":"2026-05-28T06:20:29Z","pushed_at":"2026-04-23T22:44:29Z","created_at":"2026-04-23T21:14:21Z","topics":[],"owner":{"login":"casp3r0x0","html_url":"https://github.com/casp3r0x0"},"clone_url":"https://github.com/casp3r0x0/CVE-2026-34159.git","has_code":true,"age_days":62},{"id":1228677049,"name":"CVE-2026-34159-Vulnerability-Research-Analysis-Detection","full_name":"rohithronanki/CVE-2026-34159-Vulnerability-Research-Analysis-Detection","html_url":"https://github.com/rohithronanki/CVE-2026-34159-Vulnerability-Research-Analysis-Detection","description":"Critical buffer validation bypass in deserialize_tensor() (llama.cpp \u003c b8492). Null tensor buffer skips bounds check, enabling unauthenticated arbitrary R/W via GRAPH_COMPUTE. ASLR bypass + RCE over TCP 50052.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-04T09:05:10Z","pushed_at":"2026-05-04T09:03:54Z","created_at":"2026-05-04T08:59:55Z","topics":[],"owner":{"login":"rohithronanki","html_url":"https://github.com/rohithronanki"},"clone_url":"https://github.com/rohithronanki/CVE-2026-34159-Vulnerability-Research-Analysis-Detection.git","has_code":false,"age_days":52}]},{"cve_id":"CVE-2026-34160","repositories":[{"id":1225019547,"name":"CVE-2026-34160","full_name":"romain-deperne/CVE-2026-34160","html_url":"https://github.com/romain-deperne/CVE-2026-34160","description":"Unauthenticated SSRF in Chamilo LMS via PENS plugin (pens.php) — CVSS 7.5","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-29T21:58:12Z","pushed_at":"2026-04-29T21:58:08Z","created_at":"2026-04-29T21:37:04Z","topics":[],"owner":{"login":"romain-deperne","html_url":"https://github.com/romain-deperne"},"clone_url":"https://github.com/romain-deperne/CVE-2026-34160.git","has_code":false,"age_days":56}]},{"cve_id":"CVE-2026-34197","repositories":[{"id":1215538844,"name":"ActiveMQ-EXPtools","full_name":"Catherines77/ActiveMQ-EXPtools","html_url":"https://github.com/Catherines77/ActiveMQ-EXPtools","description":"Apache ActiveMQ漏洞综合利用工具(CVE-2015-5254，CVE-2016-3088，CVE-2022-41678，CVE-2023-46604，CVE-2024-32114，CVE-2026-34197，CVE-2026-40466， CVE-2026-42588)","stargazers_count":77,"forks_count":7,"language":"Java","updated_at":"2026-06-22T11:05:01Z","pushed_at":"2026-06-08T07:09:31Z","created_at":"2026-04-20T02:38:50Z","topics":[],"owner":{"login":"Catherines77","html_url":"https://github.com/Catherines77"},"clone_url":"https://github.com/Catherines77/ActiveMQ-EXPtools.git","has_code":true,"age_days":66},{"id":1204726822,"name":"CVE-2026-34197","full_name":"dinosn/CVE-2026-34197","html_url":"https://github.com/dinosn/CVE-2026-34197","description":"CVE-2026-34197 activemq PoC","stargazers_count":8,"forks_count":0,"language":"Python","updated_at":"2026-05-06T07:16:30Z","pushed_at":"2026-04-08T09:26:09Z","created_at":"2026-04-08T09:18:33Z","topics":[],"owner":{"login":"dinosn","html_url":"https://github.com/dinosn"},"clone_url":"https://github.com/dinosn/CVE-2026-34197.git","has_code":true,"age_days":78},{"id":1205274738,"name":"CVE-2026-34197","full_name":"DEVSECURITYSPRO/CVE-2026-34197","html_url":"https://github.com/DEVSECURITYSPRO/CVE-2026-34197","description":"CVE-2026-34197 - Apache ActiveMQ RCE via Jolokia Endpoint PoC","stargazers_count":4,"forks_count":0,"language":"Python","updated_at":"2026-05-06T11:53:41Z","pushed_at":"2026-04-08T20:07:07Z","created_at":"2026-04-08T20:07:01Z","topics":[],"owner":{"login":"DEVSECURITYSPRO","html_url":"https://github.com/DEVSECURITYSPRO"},"clone_url":"https://github.com/DEVSECURITYSPRO/CVE-2026-34197.git","has_code":true,"age_days":77},{"id":1206312496,"name":"CVE-2026-34197","full_name":"KONDORDEVSECURITYCORP/CVE-2026-34197","html_url":"https://github.com/KONDORDEVSECURITYCORP/CVE-2026-34197","description":"CVE-2026-34197 — Apache ActiveMQ RCE via Jolokia API | PoC Exploit","stargazers_count":2,"forks_count":1,"language":"Python","updated_at":"2026-04-27T09:49:16Z","pushed_at":"2026-04-13T19:52:13Z","created_at":"2026-04-09T19:41:30Z","topics":[],"owner":{"login":"KONDORDEVSECURITYCORP","html_url":"https://github.com/KONDORDEVSECURITYCORP"},"clone_url":"https://github.com/KONDORDEVSECURITYCORP/CVE-2026-34197.git","has_code":true,"age_days":77},{"id":1215519117,"name":"CVE-2026-34197-payload-Apache-ActiveMQ-","full_name":"xshysjhq/CVE-2026-34197-payload-Apache-ActiveMQ-","html_url":"https://github.com/xshysjhq/CVE-2026-34197-payload-Apache-ActiveMQ-","description":"","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-04-20T02:09:07Z","pushed_at":"2026-04-20T02:08:33Z","created_at":"2026-04-20T02:01:51Z","topics":[],"owner":{"login":"xshysjhq","html_url":"https://github.com/xshysjhq"},"clone_url":"https://github.com/xshysjhq/CVE-2026-34197-payload-Apache-ActiveMQ-.git","has_code":true,"age_days":66},{"id":1210863746,"name":"CVE-2026-34197","full_name":"keraattin/CVE-2026-34197","html_url":"https://github.com/keraattin/CVE-2026-34197","description":"CVE-2026-34197: Apache ActiveMQ Classic RCE via Jolokia API (CVSS 8.8). Python \u0026 Nmap NSE detection scripts. A 13-year-old vulnerability allows remote code execution through the addNetworkConnector MBean operation. Unauthenticated on versions 6.0.0 to 6.1.1. Fixed in 5.19.4 and 6.2.3.","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-22T08:13:09Z","pushed_at":"2026-04-14T21:08:58Z","created_at":"2026-04-14T20:44:24Z","topics":["activemq","apache-activemq","cve-2026-34197","cybersecurity","jolokia","nmap-scripts","nse-scripts","remote-code-execution","vulnerability-detection"],"owner":{"login":"keraattin","html_url":"https://github.com/keraattin"},"clone_url":"https://github.com/keraattin/CVE-2026-34197.git","has_code":true,"age_days":71},{"id":1205805147,"name":"CVE-2026-34197-Apache-ActiveMQ-RCE","full_name":"AtoposX-J/CVE-2026-34197-Apache-ActiveMQ-RCE","html_url":"https://github.com/AtoposX-J/CVE-2026-34197-Apache-ActiveMQ-RCE","description":"CVE-2026-34197","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-04-16T08:27:14Z","pushed_at":"2026-04-09T09:47:55Z","created_at":"2026-04-09T09:44:08Z","topics":[],"owner":{"login":"AtoposX-J","html_url":"https://github.com/AtoposX-J"},"clone_url":"https://github.com/AtoposX-J/CVE-2026-34197-Apache-ActiveMQ-RCE.git","has_code":true,"age_days":77},{"id":1204636528,"name":"CVE-2026-34197","full_name":"0xBlackash/CVE-2026-34197","html_url":"https://github.com/0xBlackash/CVE-2026-34197","description":"CVE-2026-34197","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-04-08T17:20:54Z","pushed_at":"2026-04-08T07:55:31Z","created_at":"2026-04-08T07:28:49Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-34197.git","has_code":false,"age_days":78},{"id":1242560997,"name":"CVE-2026-34197","full_name":"hnytgl/CVE-2026-34197","html_url":"https://github.com/hnytgl/CVE-2026-34197","description":"这是一个面向防守和内网排查的 Apache ActiveMQ Classic 暴露面检测工具，用于辅助评估 CVE-2026-34197 相关风险。","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-06T06:43:20Z","pushed_at":"2026-06-06T06:40:41Z","created_at":"2026-05-18T14:36:46Z","topics":[],"owner":{"login":"hnytgl","html_url":"https://github.com/hnytgl"},"clone_url":"https://github.com/hnytgl/CVE-2026-34197.git","has_code":true,"age_days":38},{"id":1206503415,"name":"CVE-2026-34197","full_name":"hg0434hongzh0/CVE-2026-34197","html_url":"https://github.com/hg0434hongzh0/CVE-2026-34197","description":"POC","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-10T01:45:02Z","pushed_at":"2026-04-10T01:44:58Z","created_at":"2026-04-10T01:29:12Z","topics":[],"owner":{"login":"hg0434hongzh0","html_url":"https://github.com/hg0434hongzh0"},"clone_url":"https://github.com/hg0434hongzh0/CVE-2026-34197.git","has_code":true,"age_days":76},{"id":1242001675,"name":"CVE-2026-34197","full_name":"LAT-06/CVE-2026-34197","html_url":"https://github.com/LAT-06/CVE-2026-34197","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-18T06:28:36Z","pushed_at":"2026-05-18T06:28:31Z","created_at":"2026-05-18T03:30:22Z","topics":[],"owner":{"login":"LAT-06","html_url":"https://github.com/LAT-06"},"clone_url":"https://github.com/LAT-06/CVE-2026-34197.git","has_code":true,"age_days":38},{"id":1232624305,"name":"CVE-2026-34197-Lab","full_name":"rootdirective-sec/CVE-2026-34197-Lab","html_url":"https://github.com/rootdirective-sec/CVE-2026-34197-Lab","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-08T05:55:14Z","pushed_at":"2026-05-08T05:55:09Z","created_at":"2026-05-08T05:39:56Z","topics":[],"owner":{"login":"rootdirective-sec","html_url":"https://github.com/rootdirective-sec"},"clone_url":"https://github.com/rootdirective-sec/CVE-2026-34197-Lab.git","has_code":true,"age_days":48},{"id":1261247367,"name":"CVE-2026-34197","full_name":"asdasddqwdq29-a11y/CVE-2026-34197","html_url":"https://github.com/asdasddqwdq29-a11y/CVE-2026-34197","description":"Apache ActiveMQ RCE via Jolokia vulnerability analysis and reproduction notes","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-06T12:41:03Z","pushed_at":"2026-06-06T12:41:02Z","created_at":"2026-06-06T12:39:27Z","topics":[],"owner":{"login":"asdasddqwdq29-a11y","html_url":"https://github.com/asdasddqwdq29-a11y"},"clone_url":"https://github.com/asdasddqwdq29-a11y/CVE-2026-34197.git","has_code":true,"age_days":19}]},{"cve_id":"CVE-2026-34200","repositories":[{"id":1192884297,"name":"CVE-2026-34200","full_name":"skoveit/CVE-2026-34200","html_url":"https://github.com/skoveit/CVE-2026-34200","description":"CVE-2026-34200 PoC","stargazers_count":4,"forks_count":0,"language":"TypeScript","updated_at":"2026-06-08T12:24:14Z","pushed_at":"2026-03-27T14:55:20Z","created_at":"2026-03-26T16:52:17Z","topics":[],"owner":{"login":"skoveit","html_url":"https://github.com/skoveit"},"clone_url":"https://github.com/skoveit/CVE-2026-34200.git","has_code":true,"age_days":91}]},{"cve_id":"CVE-2026-34220","repositories":[{"id":1222132979,"name":"CVE-2026-34220","full_name":"EQSTLab/CVE-2026-34220","html_url":"https://github.com/EQSTLab/CVE-2026-34220","description":"SQL Injection vulnerability in MikroORM","stargazers_count":1,"forks_count":0,"language":"JavaScript","updated_at":"2026-05-06T01:13:24Z","pushed_at":"2026-05-06T01:10:59Z","created_at":"2026-04-27T04:30:33Z","topics":[],"owner":{"login":"EQSTLab","html_url":"https://github.com/EQSTLab"},"clone_url":"https://github.com/EQSTLab/CVE-2026-34220.git","has_code":true,"age_days":59}]},{"cve_id":"CVE-2026-34227","repositories":[{"id":1193704490,"name":"CVE-2026-34227","full_name":"skoveit/CVE-2026-34227","html_url":"https://github.com/skoveit/CVE-2026-34227","description":"CVE-2026-34227 · CORS → CSRF chain on Sliver's unauthenticated MCP interface","stargazers_count":1,"forks_count":0,"language":"TypeScript","updated_at":"2026-04-21T15:53:17Z","pushed_at":"2026-03-27T15:12:34Z","created_at":"2026-03-27T13:51:07Z","topics":[],"owner":{"login":"skoveit","html_url":"https://github.com/skoveit"},"clone_url":"https://github.com/skoveit/CVE-2026-34227.git","has_code":true,"age_days":90}]},{"cve_id":"CVE-2026-34234","repositories":[{"id":1259428883,"name":"CVE-2026-34234-Lab","full_name":"rootdirective-sec/CVE-2026-34234-Lab","html_url":"https://github.com/rootdirective-sec/CVE-2026-34234-Lab","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-04T13:58:16Z","pushed_at":"2026-06-04T13:57:02Z","created_at":"2026-06-04T13:54:37Z","topics":[],"owner":{"login":"rootdirective-sec","html_url":"https://github.com/rootdirective-sec"},"clone_url":"https://github.com/rootdirective-sec/CVE-2026-34234-Lab.git","has_code":true,"age_days":21}]},{"cve_id":"CVE-2026-34308","repositories":[{"id":1217750084,"name":"CVE-2026-34308","full_name":"JoakimBulow/CVE-2026-34308","html_url":"https://github.com/JoakimBulow/CVE-2026-34308","description":" CVE-2026-34308 - MySQL - DoS","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-30T12:46:11Z","pushed_at":"2026-04-30T12:46:08Z","created_at":"2026-04-22T07:20:32Z","topics":[],"owner":{"login":"JoakimBulow","html_url":"https://github.com/JoakimBulow"},"clone_url":"https://github.com/JoakimBulow/CVE-2026-34308.git","has_code":true,"age_days":64}]},{"cve_id":"CVE-2026-3437","repositories":[{"id":1270345747,"name":"cve-2026-3437","full_name":"tihomirocrew/cve-2026-3437","html_url":"https://github.com/tihomirocrew/cve-2026-3437","description":"Arbitrary physical memory read/write in portwell.sys","stargazers_count":0,"forks_count":0,"language":"C++","updated_at":"2026-06-15T19:37:20Z","pushed_at":"2026-06-15T19:37:16Z","created_at":"2026-06-15T16:12:37Z","topics":[],"owner":{"login":"tihomirocrew","html_url":"https://github.com/tihomirocrew"},"clone_url":"https://github.com/tihomirocrew/cve-2026-3437.git","has_code":true,"age_days":10}]},{"cve_id":"CVE-2026-34444","repositories":[{"id":1200158922,"name":"CVE-2026-34444","full_name":"redyank/CVE-2026-34444","html_url":"https://github.com/redyank/CVE-2026-34444","description":"CVE-2026-34444(Sandbox escape and RCE due to incomplete attribute_filter enforcement in getattr/setattr)","stargazers_count":0,"forks_count":1,"language":"","updated_at":"2026-04-03T05:14:35Z","pushed_at":"2026-04-03T05:14:30Z","created_at":"2026-04-03T05:14:29Z","topics":[],"owner":{"login":"redyank","html_url":"https://github.com/redyank"},"clone_url":"https://github.com/redyank/CVE-2026-34444.git","has_code":false,"age_days":83}]},{"cve_id":"CVE-2026-34472","repositories":[{"id":1242619437,"name":"cve-2026-34472-auth-bypass-zte-h188a-router","full_name":"minanagehsalalma/cve-2026-34472-auth-bypass-zte-h188a-router","html_url":"https://github.com/minanagehsalalma/cve-2026-34472-auth-bypass-zte-h188a-router","description":"Technical breakdown of CVE-2026-34472, an auth bypass via leaked credentials affecting ZTE H188A routers.","stargazers_count":0,"forks_count":0,"language":"HTML","updated_at":"2026-05-20T12:12:04Z","pushed_at":"2026-05-19T11:18:26Z","created_at":"2026-05-18T15:37:38Z","topics":["auth-bypass","cve","cve-2026-34472","router","security-research","vulnerability","zte"],"owner":{"login":"minanagehsalalma","html_url":"https://github.com/minanagehsalalma"},"clone_url":"https://github.com/minanagehsalalma/cve-2026-34472-auth-bypass-zte-h188a-router.git","has_code":true,"age_days":38}]},{"cve_id":"CVE-2026-34473","repositories":[{"id":1240776563,"name":"cve-2026-34473-unauthenticated-dos-zte-routers","full_name":"minanagehsalalma/cve-2026-34473-unauthenticated-dos-zte-routers","html_url":"https://github.com/minanagehsalalma/cve-2026-34473-unauthenticated-dos-zte-routers","description":"Technical breakdown of CVE-2026-34473, an unauthenticated denial of service affecting 17+ ZTE router models.","stargazers_count":2,"forks_count":0,"language":"HTML","updated_at":"2026-06-13T08:14:45Z","pushed_at":"2026-05-18T15:28:56Z","created_at":"2026-05-16T14:57:50Z","topics":["cve","firmware","root-cause-analysis","router-security","vulnerability-research","zte"],"owner":{"login":"minanagehsalalma","html_url":"https://github.com/minanagehsalalma"},"clone_url":"https://github.com/minanagehsalalma/cve-2026-34473-unauthenticated-dos-zte-routers.git","has_code":true,"age_days":40}]},{"cve_id":"CVE-2026-34474","repositories":[{"id":1243469465,"name":"cve-2026-34474-zte-h298a-h108n-sensitive-data-exposure","full_name":"minanagehsalalma/cve-2026-34474-zte-h298a-h108n-sensitive-data-exposure","html_url":"https://github.com/minanagehsalalma/cve-2026-34474-zte-h298a-h108n-sensitive-data-exposure","description":"CVE-2026-34474: unauthenticated ETHCheat=1 requests leak the admin password and Wi-Fi PSK from ZTE H298A/H108N routers.","stargazers_count":0,"forks_count":0,"language":"CSS","updated_at":"2026-05-27T12:31:35Z","pushed_at":"2026-05-27T12:30:37Z","created_at":"2026-05-19T11:21:19Z","topics":["cve","cve-2026-34474","cybersecurity","infosec","iot-security","network-security","poc","router-security","vulnerability-research","zte"],"owner":{"login":"minanagehsalalma","html_url":"https://github.com/minanagehsalalma"},"clone_url":"https://github.com/minanagehsalalma/cve-2026-34474-zte-h298a-h108n-sensitive-data-exposure.git","has_code":true,"age_days":37}]},{"cve_id":"CVE-2026-34486","repositories":[{"id":1235635941,"name":"CVE-2026-34486","full_name":"striga-ai/CVE-2026-34486","html_url":"https://github.com/striga-ai/CVE-2026-34486","description":"EncryptInterceptor fail-open bypass in Apache Tomcat Tribes clustering leading to unauthenticated RCE via Java deserialization.","stargazers_count":68,"forks_count":14,"language":"Java","updated_at":"2026-05-27T06:02:15Z","pushed_at":"2026-05-11T14:07:48Z","created_at":"2026-05-11T14:07:46Z","topics":[],"owner":{"login":"striga-ai","html_url":"https://github.com/striga-ai"},"clone_url":"https://github.com/striga-ai/CVE-2026-34486.git","has_code":true,"age_days":45},{"id":1211230936,"name":"CVE-2026-34486-poc","full_name":"AirSkye/CVE-2026-34486-poc","html_url":"https://github.com/AirSkye/CVE-2026-34486-poc","description":"CVE-2026-34486 Apache Tomcat EncryptInterceptor 绕过漏洞复现（使用GLM5.1复现完成）","stargazers_count":10,"forks_count":1,"language":"Shell","updated_at":"2026-06-22T11:05:01Z","pushed_at":"2026-04-15T07:33:28Z","created_at":"2026-04-15T07:30:15Z","topics":[],"owner":{"login":"AirSkye","html_url":"https://github.com/AirSkye"},"clone_url":"https://github.com/AirSkye/CVE-2026-34486-poc.git","has_code":true,"age_days":71},{"id":1211546980,"name":"CVE-2026-34486","full_name":"404-src/CVE-2026-34486","html_url":"https://github.com/404-src/CVE-2026-34486","description":"Apache Tomcat EncryptInterceptor Bypass → Unauthenticated RCE (CVE-2026-34486)","stargazers_count":7,"forks_count":7,"language":"Python","updated_at":"2026-06-22T11:05:01Z","pushed_at":"2026-04-15T13:58:22Z","created_at":"2026-04-15T13:55:55Z","topics":[],"owner":{"login":"404-src","html_url":"https://github.com/404-src"},"clone_url":"https://github.com/404-src/CVE-2026-34486.git","has_code":true,"age_days":71},{"id":1211194608,"name":"tomcat-cve-2026-34486","full_name":"punitdarji/tomcat-cve-2026-34486","html_url":"https://github.com/punitdarji/tomcat-cve-2026-34486","description":"CVE labs ","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-04-29T12:50:19Z","pushed_at":"2026-04-15T06:55:41Z","created_at":"2026-04-15T06:46:48Z","topics":[],"owner":{"login":"punitdarji","html_url":"https://github.com/punitdarji"},"clone_url":"https://github.com/punitdarji/tomcat-cve-2026-34486.git","has_code":true,"age_days":71},{"id":1243094226,"name":"CVE-2026-34486-e-Tomcat-Tribes","full_name":"anonmrc/CVE-2026-34486-e-Tomcat-Tribes","html_url":"https://github.com/anonmrc/CVE-2026-34486-e-Tomcat-Tribes","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-19T03:31:20Z","pushed_at":"2026-05-19T03:31:20Z","created_at":"2026-05-19T03:31:20Z","topics":[],"owner":{"login":"anonmrc","html_url":"https://github.com/anonmrc"},"clone_url":"https://github.com/anonmrc/CVE-2026-34486-e-Tomcat-Tribes.git","has_code":false,"age_days":37}]},{"cve_id":"CVE-2026-3462","repositories":[{"id":1215751275,"name":"CVE-2026-3462","full_name":"open-flaw/CVE-2026-3462","html_url":"https://github.com/open-flaw/CVE-2026-3462","description":"Acrobat Reader | Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') (CWE-1321)","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-16T13:43:24Z","pushed_at":"2026-04-20T08:22:28Z","created_at":"2026-04-20T08:11:19Z","topics":[],"owner":{"login":"open-flaw","html_url":"https://github.com/open-flaw"},"clone_url":"https://github.com/open-flaw/CVE-2026-3462.git","has_code":true,"age_days":66}]},{"cve_id":"CVE-2026-34621","repositories":[{"id":1237065498,"name":"CVE-2026-34621","full_name":"azefzafyoussef/CVE-2026-34621","html_url":"https://github.com/azefzafyoussef/CVE-2026-34621","description":"","stargazers_count":20,"forks_count":6,"language":"Python","updated_at":"2026-06-22T11:05:03Z","pushed_at":"2026-05-12T21:15:55Z","created_at":"2026-05-12T20:58:43Z","topics":[],"owner":{"login":"azefzafyoussef","html_url":"https://github.com/azefzafyoussef"},"clone_url":"https://github.com/azefzafyoussef/CVE-2026-34621.git","has_code":true,"age_days":43},{"id":1211630240,"name":"cve_2026_34621_advanced","full_name":"NULL200OK/cve_2026_34621_advanced","html_url":"https://github.com/NULL200OK/cve_2026_34621_advanced","description":"A sophisticated, cross-platform exploit generator for **CVE-2026-34621** – a critical prototype pollution vulnerability in Adobe Acrobat and Reader that leads to sandbox escape and arbitrary code execution on Windows and macOS.","stargazers_count":13,"forks_count":5,"language":"Python","updated_at":"2026-06-04T08:25:22Z","pushed_at":"2026-04-15T15:47:23Z","created_at":"2026-04-15T15:30:06Z","topics":[],"owner":{"login":"NULL200OK","html_url":"https://github.com/NULL200OK"},"clone_url":"https://github.com/NULL200OK/cve_2026_34621_advanced.git","has_code":true,"age_days":71},{"id":1213278037,"name":"CVE-2026-34621_PDF_SAMPLE","full_name":"ercihan/CVE-2026-34621_PDF_SAMPLE","html_url":"https://github.com/ercihan/CVE-2026-34621_PDF_SAMPLE","description":"","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-04-17T08:25:50Z","pushed_at":"2026-04-17T08:25:47Z","created_at":"2026-04-17T08:07:42Z","topics":[],"owner":{"login":"ercihan","html_url":"https://github.com/ercihan"},"clone_url":"https://github.com/ercihan/CVE-2026-34621_PDF_SAMPLE.git","has_code":false,"age_days":69},{"id":1210599072,"name":"Remediate-AdobeAcrobat-CVE-2026-34621","full_name":"KeulenR01/Remediate-AdobeAcrobat-CVE-2026-34621","html_url":"https://github.com/KeulenR01/Remediate-AdobeAcrobat-CVE-2026-34621","description":"","stargazers_count":1,"forks_count":0,"language":"PowerShell","updated_at":"2026-04-15T16:32:23Z","pushed_at":"2026-04-15T06:50:16Z","created_at":"2026-04-14T15:14:39Z","topics":[],"owner":{"login":"KeulenR01","html_url":"https://github.com/KeulenR01"},"clone_url":"https://github.com/KeulenR01/Remediate-AdobeAcrobat-CVE-2026-34621.git","has_code":true,"age_days":72},{"id":1209461365,"name":"CVE-2026-34621","full_name":"ercihan/CVE-2026-34621","html_url":"https://github.com/ercihan/CVE-2026-34621","description":"","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-04-17T08:16:07Z","pushed_at":"2026-04-13T13:06:56Z","created_at":"2026-04-13T13:00:37Z","topics":[],"owner":{"login":"ercihan","html_url":"https://github.com/ercihan"},"clone_url":"https://github.com/ercihan/CVE-2026-34621.git","has_code":false,"age_days":73}]},{"cve_id":"CVE-2026-34724","repositories":[{"id":1206048187,"name":"CVE-2026-34724","full_name":"0xBlackash/CVE-2026-34724","html_url":"https://github.com/0xBlackash/CVE-2026-34724","description":"CVE-2026-34724","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-09T14:44:37Z","pushed_at":"2026-04-09T14:44:34Z","created_at":"2026-04-09T14:23:13Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-34724.git","has_code":true,"age_days":77}]},{"cve_id":"CVE-2026-34753","repositories":[{"id":1228230087,"name":"CVE-2026-34753","full_name":"Dhiaelhak-Rached/CVE-2026-34753","html_url":"https://github.com/Dhiaelhak-Rached/CVE-2026-34753","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-03T19:06:29Z","pushed_at":"2026-05-03T19:06:25Z","created_at":"2026-05-03T19:05:44Z","topics":[],"owner":{"login":"Dhiaelhak-Rached","html_url":"https://github.com/Dhiaelhak-Rached"},"clone_url":"https://github.com/Dhiaelhak-Rached/CVE-2026-34753.git","has_code":true,"age_days":53}]},{"cve_id":"CVE-2026-34828","repositories":[{"id":1199090679,"name":"CVE-2026-34828","full_name":"0xmrma/CVE-2026-34828","html_url":"https://github.com/0xmrma/CVE-2026-34828","description":"listmonk’s Session Persistence After Password Reset and Password Change","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-04-02T03:29:55Z","pushed_at":"2026-04-02T03:29:07Z","created_at":"2026-04-02T03:25:32Z","topics":[],"owner":{"login":"0xmrma","html_url":"https://github.com/0xmrma"},"clone_url":"https://github.com/0xmrma/CVE-2026-34828.git","has_code":false,"age_days":84}]},{"cve_id":"CVE-2026-34838","repositories":[{"id":1200671776,"name":"CVE-2026-34838","full_name":"bamuwe/CVE-2026-34838","html_url":"https://github.com/bamuwe/CVE-2026-34838","description":"CVE-2026-34838 PoC (Proof of Concept)","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-04-04T03:16:33Z","pushed_at":"2026-04-03T17:51:52Z","created_at":"2026-04-03T17:33:47Z","topics":[],"owner":{"login":"bamuwe","html_url":"https://github.com/bamuwe"},"clone_url":"https://github.com/bamuwe/CVE-2026-34838.git","has_code":true,"age_days":83}]},{"cve_id":"CVE-2026-34908","repositories":[{"id":1260742161,"name":"CVE-2026-34908-check","full_name":"BishopFox/CVE-2026-34908-check","html_url":"https://github.com/BishopFox/CVE-2026-34908-check","description":"Safely detect whether a UniFi OS Server is vulnerable to CVE-2026-34908","stargazers_count":58,"forks_count":4,"language":"Python","updated_at":"2026-06-25T14:57:28Z","pushed_at":"2026-06-05T20:28:52Z","created_at":"2026-06-05T20:28:38Z","topics":[],"owner":{"login":"BishopFox","html_url":"https://github.com/BishopFox"},"clone_url":"https://github.com/BishopFox/CVE-2026-34908-check.git","has_code":true,"age_days":19}]},{"cve_id":"CVE-2026-34926","repositories":[{"id":1246551460,"name":"CVE-2026-34926","full_name":"HORKimhab/CVE-2026-34926","html_url":"https://github.com/HORKimhab/CVE-2026-34926","description":"CVE-2026-34926","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-22T09:58:49Z","pushed_at":"2026-05-22T09:58:46Z","created_at":"2026-05-22T09:58:04Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-34926.git","has_code":false,"age_days":34}]},{"cve_id":"CVE-2026-3494","repositories":[{"id":1227764581,"name":"CVE-2026-3494_Verfication","full_name":"KKongTen/CVE-2026-3494_Verfication","html_url":"https://github.com/KKongTen/CVE-2026-3494_Verfication","description":"Reproduction and Analysis of CVE-2026-3494","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-10T11:59:40Z","pushed_at":"2026-05-10T11:59:36Z","created_at":"2026-05-03T06:11:37Z","topics":[],"owner":{"login":"KKongTen","html_url":"https://github.com/KKongTen"},"clone_url":"https://github.com/KKongTen/CVE-2026-3494_Verfication.git","has_code":true,"age_days":53}]},{"cve_id":"CVE-2026-34940","repositories":[{"id":1225007943,"name":"CVE-2026-34940","full_name":"romain-deperne/CVE-2026-34940","html_url":"https://github.com/romain-deperne/CVE-2026-34940","description":"OS Command Injection in KubeAI via Model URL in Ollama startup probe — CVSS 8.7","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-29T21:58:14Z","pushed_at":"2026-04-29T21:58:10Z","created_at":"2026-04-29T21:16:39Z","topics":[],"owner":{"login":"romain-deperne","html_url":"https://github.com/romain-deperne"},"clone_url":"https://github.com/romain-deperne/CVE-2026-34940.git","has_code":false,"age_days":56}]},{"cve_id":"CVE-2026-34975","repositories":[{"id":1225007966,"name":"CVE-2026-34975","full_name":"romain-deperne/CVE-2026-34975","html_url":"https://github.com/romain-deperne/CVE-2026-34975","description":"CRLF Email Header Injection in Plunk via raw MIME construction — CVSS 8.5","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-29T21:58:20Z","pushed_at":"2026-04-29T21:58:16Z","created_at":"2026-04-29T21:16:41Z","topics":[],"owner":{"login":"romain-deperne","html_url":"https://github.com/romain-deperne"},"clone_url":"https://github.com/romain-deperne/CVE-2026-34975.git","has_code":true,"age_days":56}]},{"cve_id":"CVE-2026-3502","repositories":[{"id":1201606329,"name":"CVE-2026-3502-Scanner---TrueConf-Vulnerability-Detection-Tool","full_name":"fevar54/CVE-2026-3502-Scanner---TrueConf-Vulnerability-Detection-Tool","html_url":"https://github.com/fevar54/CVE-2026-3502-Scanner---TrueConf-Vulnerability-Detection-Tool","description":"Herramienta de detección para CVE-2026-3502. Escanea servidores TrueConf sin verificación de actualizaciones, detecta clientes Windows vulnerables (≤8.5.3.884) y busca IOCs de TrueChaos: PowerISO, persistencia en registro y tareas programadas. Reportes JSON, HTML o CSV.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-04T22:55:09Z","pushed_at":"2026-04-04T22:55:06Z","created_at":"2026-04-04T22:50:54Z","topics":[],"owner":{"login":"fevar54","html_url":"https://github.com/fevar54"},"clone_url":"https://github.com/fevar54/CVE-2026-3502-Scanner---TrueConf-Vulnerability-Detection-Tool.git","has_code":true,"age_days":81},{"id":1201602206,"name":"CVE-2026-3502---TrueConf-Client-Update-Hijacking-PoC","full_name":"fevar54/CVE-2026-3502---TrueConf-Client-Update-Hijacking-PoC","html_url":"https://github.com/fevar54/CVE-2026-3502---TrueConf-Client-Update-Hijacking-PoC","description":"Exploit para CVE-2026-3502 en TrueConf Client. Un atacante con control del servidor TrueConf local reemplaza la actualización legítima por un payload malicioso sin verificación de integridad, logrando ejecución remota de código y despliegue de malware Havoc en todos los clientes conectados (Operación TrueChaos).","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-04T22:45:53Z","pushed_at":"2026-04-04T22:45:49Z","created_at":"2026-04-04T22:39:53Z","topics":[],"owner":{"login":"fevar54","html_url":"https://github.com/fevar54"},"clone_url":"https://github.com/fevar54/CVE-2026-3502---TrueConf-Client-Update-Hijacking-PoC.git","has_code":true,"age_days":81}]},{"cve_id":"CVE-2026-350234","repositories":[{"id":1229421471,"name":"Bili-cracker","full_name":"usernameisunavailable-cell/Bili-cracker","html_url":"https://github.com/usernameisunavailable-cell/Bili-cracker","description":"通过CVE-2026-350234的漏洞获取bilibili 大会员","stargazers_count":1,"forks_count":0,"language":"HTML","updated_at":"2026-05-07T06:31:39Z","pushed_at":"2026-05-05T03:04:03Z","created_at":"2026-05-05T02:59:37Z","topics":[],"owner":{"login":"usernameisunavailable-cell","html_url":"https://github.com/usernameisunavailable-cell"},"clone_url":"https://github.com/usernameisunavailable-cell/Bili-cracker.git","has_code":true,"age_days":51}]},{"cve_id":"CVE-2026-35029","repositories":[{"id":1243618993,"name":"CVE-2026-35029-PoC","full_name":"learner202649/CVE-2026-35029-PoC","html_url":"https://github.com/learner202649/CVE-2026-35029-PoC","description":"The code for personally reproducing the corresponding vulnerability","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-19T14:11:20Z","pushed_at":"2026-05-19T14:04:12Z","created_at":"2026-05-19T14:02:18Z","topics":[],"owner":{"login":"learner202649","html_url":"https://github.com/learner202649"},"clone_url":"https://github.com/learner202649/CVE-2026-35029-PoC.git","has_code":true,"age_days":37}]},{"cve_id":"CVE-2026-35030","repositories":[{"id":1243514498,"name":"CVE-2026-35030-PoC","full_name":"learner202649/CVE-2026-35030-PoC","html_url":"https://github.com/learner202649/CVE-2026-35030-PoC","description":"The code for personally reproducing the corresponding vulnerability","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-19T12:16:09Z","pushed_at":"2026-05-19T12:16:05Z","created_at":"2026-05-19T12:13:16Z","topics":[],"owner":{"login":"learner202649","html_url":"https://github.com/learner202649"},"clone_url":"https://github.com/learner202649/CVE-2026-35030-PoC.git","has_code":true,"age_days":37}]},{"cve_id":"CVE-2026-35031","repositories":[{"id":1211878687,"name":"CVE-2026-35031","full_name":"keraattin/CVE-2026-35031","html_url":"https://github.com/keraattin/CVE-2026-35031","description":"Critical path traversal to RCE vulnerability in Jellyfin Media Server (CVSS 9.9). Includes proof-of-concept exploit, technical analysis, and detection tools.","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-01T03:32:21Z","pushed_at":"2026-04-15T20:57:49Z","created_at":"2026-04-15T20:56:49Z","topics":[],"owner":{"login":"keraattin","html_url":"https://github.com/keraattin"},"clone_url":"https://github.com/keraattin/CVE-2026-35031.git","has_code":true,"age_days":70}]},{"cve_id":"CVE-2026-35037","repositories":[{"id":1244219527,"name":"POC_CVE-2026-35037","full_name":"fineman999/POC_CVE-2026-35037","html_url":"https://github.com/fineman999/POC_CVE-2026-35037","description":"POC_CVE-2026-35037","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-20T04:27:50Z","pushed_at":"2026-05-20T04:27:46Z","created_at":"2026-05-20T04:24:58Z","topics":[],"owner":{"login":"fineman999","html_url":"https://github.com/fineman999"},"clone_url":"https://github.com/fineman999/POC_CVE-2026-35037.git","has_code":true,"age_days":36}]},{"cve_id":"CVE-2026-35045","repositories":[{"id":1200469379,"name":"CVE-2026-35045-PoC","full_name":"FilipeGaudard/CVE-2026-35045-PoC","html_url":"https://github.com/FilipeGaudard/CVE-2026-35045-PoC","description":"","stargazers_count":1,"forks_count":1,"language":"Python","updated_at":"2026-04-03T15:56:25Z","pushed_at":"2026-04-03T14:15:30Z","created_at":"2026-04-03T12:59:08Z","topics":[],"owner":{"login":"FilipeGaudard","html_url":"https://github.com/FilipeGaudard"},"clone_url":"https://github.com/FilipeGaudard/CVE-2026-35045-PoC.git","has_code":true,"age_days":83}]},{"cve_id":"CVE-2026-3516","repositories":[{"id":1206240800,"name":"CVE-2026-3516","full_name":"d3kc4rt1/CVE-2026-3516","html_url":"https://github.com/d3kc4rt1/CVE-2026-3516","description":"Authenticated Stored Cross-Site Scripting (XSS) in Contact List Plugin","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-09T18:06:04Z","pushed_at":"2026-04-09T18:05:59Z","created_at":"2026-04-09T18:05:32Z","topics":[],"owner":{"login":"d3kc4rt1","html_url":"https://github.com/d3kc4rt1"},"clone_url":"https://github.com/d3kc4rt1/CVE-2026-3516.git","has_code":false,"age_days":77}]},{"cve_id":"CVE-2026-35196","repositories":[{"id":1199037535,"name":"CVE-2026-35196","full_name":"kx00007/CVE-2026-35196","html_url":"https://github.com/kx00007/CVE-2026-35196","description":"Second CVE still Remote Code Execution ","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-25T08:27:24Z","pushed_at":"2026-05-25T08:26:41Z","created_at":"2026-04-02T02:04:10Z","topics":[],"owner":{"login":"kx00007","html_url":"https://github.com/kx00007"},"clone_url":"https://github.com/kx00007/CVE-2026-35196.git","has_code":false,"age_days":84}]},{"cve_id":"CVE-2026-35250","repositories":[{"id":1232411326,"name":"CVE-2026-35250","full_name":"xooxo/CVE-2026-35250","html_url":"https://github.com/xooxo/CVE-2026-35250","description":"my firstever cve is a 2.3 ","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-07T22:58:57Z","pushed_at":"2026-05-07T22:58:53Z","created_at":"2026-05-07T22:54:24Z","topics":[],"owner":{"login":"xooxo","html_url":"https://github.com/xooxo"},"clone_url":"https://github.com/xooxo/CVE-2026-35250.git","has_code":true,"age_days":48}]},{"cve_id":"CVE-2026-35273","repositories":[{"id":1266830388,"name":"CVE-2026-35273","full_name":"HORKimhab/CVE-2026-35273","html_url":"https://github.com/HORKimhab/CVE-2026-35273","description":"CVE-2026-35273","stargazers_count":4,"forks_count":0,"language":"Python","updated_at":"2026-06-25T02:30:12Z","pushed_at":"2026-06-12T08:43:55Z","created_at":"2026-06-12T01:51:19Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-35273.git","has_code":true,"age_days":13},{"id":1267156137,"name":"CVE-2026-35273","full_name":"0xBlackash/CVE-2026-35273","html_url":"https://github.com/0xBlackash/CVE-2026-35273","description":"CVE-2026-35273","stargazers_count":1,"forks_count":2,"language":"Python","updated_at":"2026-06-12T16:06:29Z","pushed_at":"2026-06-12T16:06:25Z","created_at":"2026-06-12T09:19:14Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-35273.git","has_code":true,"age_days":13}]},{"cve_id":"CVE-2026-35330","repositories":[{"id":1238475557,"name":"CVE-2026-35330","full_name":"JohannesLks/CVE-2026-35330","html_url":"https://github.com/JohannesLks/CVE-2026-35330","description":"CVE-2026-35330: strongSwan EAP-SIM/AKA heap overflow PoC","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-30T21:08:01Z","pushed_at":"2026-05-15T18:26:52Z","created_at":"2026-05-14T06:45:05Z","topics":["cve","exploit","security","vulnerability"],"owner":{"login":"JohannesLks","html_url":"https://github.com/JohannesLks"},"clone_url":"https://github.com/JohannesLks/CVE-2026-35330.git","has_code":true,"age_days":42}]},{"cve_id":"CVE-2026-35333","repositories":[{"id":1238492678,"name":"CVE-2026-35333","full_name":"JohannesLks/CVE-2026-35333","html_url":"https://github.com/JohannesLks/CVE-2026-35333","description":"CVE-2026-35333: strongSwan RADIUS attribute iterator infinite loop PoC","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-30T21:08:22Z","pushed_at":"2026-05-15T18:26:08Z","created_at":"2026-05-14T07:02:54Z","topics":["cve","exploit","security","vulnerability"],"owner":{"login":"JohannesLks","html_url":"https://github.com/JohannesLks"},"clone_url":"https://github.com/JohannesLks/CVE-2026-35333.git","has_code":true,"age_days":42}]},{"cve_id":"CVE-2026-35397","repositories":[{"id":1233037321,"name":"susvibes-jupyter-server-cve-2026-35397","full_name":"HiteshGorana/susvibes-jupyter-server-cve-2026-35397","html_url":"https://github.com/HiteshGorana/susvibes-jupyter-server-cve-2026-35397","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-09T06:42:30Z","pushed_at":"2026-05-09T06:42:26Z","created_at":"2026-05-08T14:22:52Z","topics":[],"owner":{"login":"HiteshGorana","html_url":"https://github.com/HiteshGorana"},"clone_url":"https://github.com/HiteshGorana/susvibes-jupyter-server-cve-2026-35397.git","has_code":true,"age_days":48}]},{"cve_id":"CVE-2026-35414","repositories":[{"id":1224475245,"name":"CVE-2026-35414","full_name":"killercd/CVE-2026-35414","html_url":"https://github.com/killercd/CVE-2026-35414","description":"CVE-2026-35414 Vuln block","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-29T10:18:32Z","pushed_at":"2026-04-29T10:18:29Z","created_at":"2026-04-29T10:13:49Z","topics":[],"owner":{"login":"killercd","html_url":"https://github.com/killercd"},"clone_url":"https://github.com/killercd/CVE-2026-35414.git","has_code":false,"age_days":57}]},{"cve_id":"CVE-2026-35455","repositories":[{"id":1236889263,"name":"immich-exfiltration-demo","full_name":"emanuelepns/immich-exfiltration-demo","html_url":"https://github.com/emanuelepns/immich-exfiltration-demo","description":"Cybersecurity demo exploiting CVE-2026-35455 with automatic API key generation and exfiltration","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-27T09:44:36Z","pushed_at":"2026-05-27T09:44:16Z","created_at":"2026-05-12T17:08:09Z","topics":[],"owner":{"login":"emanuelepns","html_url":"https://github.com/emanuelepns"},"clone_url":"https://github.com/emanuelepns/immich-exfiltration-demo.git","has_code":true,"age_days":44}]},{"cve_id":"CVE-2026-35492","repositories":[{"id":1201344624,"name":"CVE-2026-35492","full_name":"redyank/CVE-2026-35492","html_url":"https://github.com/redyank/CVE-2026-35492","description":"CVE-2026-35492(Path traversal vulnerability in PartitionedDataset allows arbitrary file write)","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-04T14:54:10Z","pushed_at":"2026-04-04T14:54:06Z","created_at":"2026-04-04T14:53:34Z","topics":[],"owner":{"login":"redyank","html_url":"https://github.com/redyank"},"clone_url":"https://github.com/redyank/CVE-2026-35492.git","has_code":false,"age_days":82}]},{"cve_id":"CVE-2026-35517","repositories":[{"id":1210158592,"name":"CVE-2026-35517","full_name":"keraattin/CVE-2026-35517","html_url":"https://github.com/keraattin/CVE-2026-35517","description":"CVE-2026-35517 Pi-hole FTLDNS Remote Code Execution via Newline Injection (CVSS 8.8). Python \u0026 Nmap NSE detection scripts with full technical breakdown. A newline character in the dns.upstreams parameter gives authenticated attackers command execution on the host. Five related injection vectors all patched in FTL v6.6.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-14T07:52:26Z","pushed_at":"2026-04-14T07:52:22Z","created_at":"2026-04-14T06:26:12Z","topics":["crlf-injection","cve-2026-35517","cybersecurity","dnsmasq","ftldns","newline-injection","nmap-scripts","nse-scripts","pi-hole","pihole","rce","remote-code-execution","vulnerability-detection"],"owner":{"login":"keraattin","html_url":"https://github.com/keraattin"},"clone_url":"https://github.com/keraattin/CVE-2026-35517.git","has_code":true,"age_days":72}]},{"cve_id":"CVE-2026-35584","repositories":[{"id":1206612140,"name":"CVE-2026-35584","full_name":"Spoo1k/CVE-2026-35584","html_url":"https://github.com/Spoo1k/CVE-2026-35584","description":"POC - CVE-2026-35584","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-11T22:22:40Z","pushed_at":"2026-04-11T22:22:32Z","created_at":"2026-04-10T04:49:07Z","topics":[],"owner":{"login":"Spoo1k","html_url":"https://github.com/Spoo1k"},"clone_url":"https://github.com/Spoo1k/CVE-2026-35584.git","has_code":false,"age_days":76}]},{"cve_id":"CVE-2026-35585","repositories":[{"id":1210431462,"name":"CVE-2026-35585-poc","full_name":"Saku0512/CVE-2026-35585-poc","html_url":"https://github.com/Saku0512/CVE-2026-35585-poc","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-14T12:57:37Z","pushed_at":"2026-04-14T12:57:14Z","created_at":"2026-04-14T12:11:36Z","topics":[],"owner":{"login":"Saku0512","html_url":"https://github.com/Saku0512"},"clone_url":"https://github.com/Saku0512/CVE-2026-35585-poc.git","has_code":true,"age_days":72}]},{"cve_id":"CVE-2026-35603","repositories":[{"id":1277318976,"name":"miasma-toolkit","full_name":"jchable/miasma-toolkit","html_url":"https://github.com/jchable/miasma-toolkit","description":"Detection \u0026 remediation toolkit for the Miasma / Shai-Hulud worm and CVE-2026-35603 (AI-agent/IDE config injection)","stargazers_count":0,"forks_count":0,"language":"PowerShell","updated_at":"2026-06-25T14:33:06Z","pushed_at":"2026-06-25T14:32:44Z","created_at":"2026-06-22T19:37:38Z","topics":["incident-response","malware-analysis","security","shai-hulud","supply-chain","yara"],"owner":{"login":"jchable","html_url":"https://github.com/jchable"},"clone_url":"https://github.com/jchable/miasma-toolkit.git","has_code":true,"age_days":3}]},{"cve_id":"CVE-2026-35616","repositories":[{"id":1214966164,"name":"CVE-2026-35616","full_name":"Alaatk/CVE-2026-35616","html_url":"https://github.com/Alaatk/CVE-2026-35616","description":"Fortinet FortiClientEMS improper access control","stargazers_count":35,"forks_count":10,"language":"Python","updated_at":"2026-06-25T14:42:56Z","pushed_at":"2026-04-20T09:53:27Z","created_at":"2026-04-19T09:46:50Z","topics":[],"owner":{"login":"Alaatk","html_url":"https://github.com/Alaatk"},"clone_url":"https://github.com/Alaatk/CVE-2026-35616.git","has_code":true,"age_days":67},{"id":1216250274,"name":"CVE-2026-35616","full_name":"wa6n3r/CVE-2026-35616","html_url":"https://github.com/wa6n3r/CVE-2026-35616","description":"","stargazers_count":1,"forks_count":2,"language":"Python","updated_at":"2026-04-27T08:40:10Z","pushed_at":"2026-04-20T18:12:31Z","created_at":"2026-04-20T18:08:02Z","topics":[],"owner":{"login":"wa6n3r","html_url":"https://github.com/wa6n3r"},"clone_url":"https://github.com/wa6n3r/CVE-2026-35616.git","has_code":true,"age_days":66},{"id":1209757940,"name":"CVE-2026-35616","full_name":"keraattin/CVE-2026-35616","html_url":"https://github.com/keraattin/CVE-2026-35616","description":"CVE-2026-35616 - FortiClient EMS Pre-Authentication API Bypass (CVSS 9.1, CISA KEV). Python \u0026 Nmap NSE detection scripts with full technical breakdown. One forged HTTP header bypasses authentication on FortiClient EMS 7.4.5–7.4.6, granting full admin API access to all managed endpoints.","stargazers_count":1,"forks_count":2,"language":"Python","updated_at":"2026-05-25T11:54:04Z","pushed_at":"2026-04-13T18:55:19Z","created_at":"2026-04-13T18:49:00Z","topics":["authentication-bypass","cve-2026-35616","cybersecurity","forticlient","forticlient-ems","fortinet","nmap-scripts","nse-scripts","vulnerability-detection","vulnerability-research"],"owner":{"login":"keraattin","html_url":"https://github.com/keraattin"},"clone_url":"https://github.com/keraattin/CVE-2026-35616.git","has_code":true,"age_days":73},{"id":1203227039,"name":"CVE-2026-35616-check","full_name":"BishopFox/CVE-2026-35616-check","html_url":"https://github.com/BishopFox/CVE-2026-35616-check","description":"","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-04-13T08:35:55Z","pushed_at":"2026-04-06T21:06:43Z","created_at":"2026-04-06T21:04:26Z","topics":[],"owner":{"login":"BishopFox","html_url":"https://github.com/BishopFox"},"clone_url":"https://github.com/BishopFox/CVE-2026-35616-check.git","has_code":true,"age_days":79},{"id":1201125511,"name":"CVE-2026-35616","full_name":"0xBlackash/CVE-2026-35616","html_url":"https://github.com/0xBlackash/CVE-2026-35616","description":"CVE-2026-35616","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-28T16:16:34Z","pushed_at":"2026-04-04T09:12:04Z","created_at":"2026-04-04T08:43:00Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-35616.git","has_code":true,"age_days":82},{"id":1202954732,"name":"CVE-2026-35616-detector.py","full_name":"fevar54/CVE-2026-35616-detector.py","html_url":"https://github.com/fevar54/CVE-2026-35616-detector.py","description":"This tool detects if a FortiClient EMS server is vulnerable to **CVE-2026-35616**, a critical improper access control vulnerability affecting versions **7.4.5 through 7.4.6**.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-06T15:22:35Z","pushed_at":"2026-04-06T15:22:31Z","created_at":"2026-04-06T15:16:53Z","topics":[],"owner":{"login":"fevar54","html_url":"https://github.com/fevar54"},"clone_url":"https://github.com/fevar54/CVE-2026-35616-detector.py.git","has_code":true,"age_days":80},{"id":1252194969,"name":"CVE-2026-35616","full_name":"HORKimhab/CVE-2026-35616","html_url":"https://github.com/HORKimhab/CVE-2026-35616","description":"CVE-2026-35616 - Draft","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-28T09:27:48Z","pushed_at":"2026-05-28T09:27:43Z","created_at":"2026-05-28T09:27:39Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-35616.git","has_code":false,"age_days":28},{"id":1263895820,"name":"CVE-2026-35616","full_name":"jenniferreire26/CVE-2026-35616","html_url":"https://github.com/jenniferreire26/CVE-2026-35616","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-09T11:16:54Z","pushed_at":"2026-06-09T11:16:52Z","created_at":"2026-06-09T11:16:49Z","topics":[],"owner":{"login":"jenniferreire26","html_url":"https://github.com/jenniferreire26"},"clone_url":"https://github.com/jenniferreire26/CVE-2026-35616.git","has_code":false,"age_days":16}]},{"cve_id":"CVE-2026-35678","repositories":[{"id":1202825866,"name":"CVE-2026-35678","full_name":"sharma19d/CVE-2026-35678","html_url":"https://github.com/sharma19d/CVE-2026-35678","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-17T03:49:18Z","pushed_at":"2026-04-06T13:32:32Z","created_at":"2026-04-06T12:48:36Z","topics":[],"owner":{"login":"sharma19d","html_url":"https://github.com/sharma19d"},"clone_url":"https://github.com/sharma19d/CVE-2026-35678.git","has_code":true,"age_days":80}]},{"cve_id":"CVE-2026-3584","repositories":[{"id":1191469112,"name":"CVE-2026-3584","full_name":"Yucaerin/CVE-2026-3584","html_url":"https://github.com/Yucaerin/CVE-2026-3584","description":"CVE-2026-3584","stargazers_count":0,"forks_count":3,"language":"Python","updated_at":"2026-03-25T11:50:38Z","pushed_at":"2026-03-25T11:50:34Z","created_at":"2026-03-25T09:21:54Z","topics":[],"owner":{"login":"Yucaerin","html_url":"https://github.com/Yucaerin"},"clone_url":"https://github.com/Yucaerin/CVE-2026-3584.git","has_code":true,"age_days":92}]},{"cve_id":"CVE-2026-35904","repositories":[{"id":1259538955,"name":"T3-Technology-CPE-Advisories","full_name":"PwnOnu/T3-Technology-CPE-Advisories","html_url":"https://github.com/PwnOnu/T3-Technology-CPE-Advisories","description":"CVE-2026-35904 / CVE-2026-35905 / CVE-2026-35906 — Unauth RCE, Hardcoded Root Creds \u0026 Telnet Enable in T3 Technology CPE","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-04T21:47:08Z","pushed_at":"2026-06-04T15:55:37Z","created_at":"2026-06-04T15:55:22Z","topics":[],"owner":{"login":"PwnOnu","html_url":"https://github.com/PwnOnu"},"clone_url":"https://github.com/PwnOnu/T3-Technology-CPE-Advisories.git","has_code":false,"age_days":21}]},{"cve_id":"CVE-2026-35905","repositories":[{"id":1259538955,"name":"T3-Technology-CPE-Advisories","full_name":"PwnOnu/T3-Technology-CPE-Advisories","html_url":"https://github.com/PwnOnu/T3-Technology-CPE-Advisories","description":"CVE-2026-35904 / CVE-2026-35905 / CVE-2026-35906 — Unauth RCE, Hardcoded Root Creds \u0026 Telnet Enable in T3 Technology CPE","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-04T21:47:08Z","pushed_at":"2026-06-04T15:55:37Z","created_at":"2026-06-04T15:55:22Z","topics":[],"owner":{"login":"PwnOnu","html_url":"https://github.com/PwnOnu"},"clone_url":"https://github.com/PwnOnu/T3-Technology-CPE-Advisories.git","has_code":false,"age_days":21}]},{"cve_id":"CVE-2026-35906","repositories":[{"id":1259538955,"name":"T3-Technology-CPE-Advisories","full_name":"PwnOnu/T3-Technology-CPE-Advisories","html_url":"https://github.com/PwnOnu/T3-Technology-CPE-Advisories","description":"CVE-2026-35904 / CVE-2026-35905 / CVE-2026-35906 — Unauth RCE, Hardcoded Root Creds \u0026 Telnet Enable in T3 Technology CPE","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-04T21:47:08Z","pushed_at":"2026-06-04T15:55:37Z","created_at":"2026-06-04T15:55:22Z","topics":[],"owner":{"login":"PwnOnu","html_url":"https://github.com/PwnOnu"},"clone_url":"https://github.com/PwnOnu/T3-Technology-CPE-Advisories.git","has_code":false,"age_days":21}]},{"cve_id":"CVE-2026-3609","repositories":[{"id":1236416923,"name":"CredsHunter","full_name":"BlackSnufkin/CredsHunter","html_url":"https://github.com/BlackSnufkin/CredsHunter","description":"PoC for CVE-2026-3609 - XIGNCODE3 xhunter1.sys handle leak enabling PPL bypass and LSASS dumping","stargazers_count":26,"forks_count":2,"language":"Rust","updated_at":"2026-06-22T10:35:38Z","pushed_at":"2026-05-12T08:38:56Z","created_at":"2026-05-12T08:21:00Z","topics":[],"owner":{"login":"BlackSnufkin","html_url":"https://github.com/BlackSnufkin"},"clone_url":"https://github.com/BlackSnufkin/CredsHunter.git","has_code":true,"age_days":44}]},{"cve_id":"CVE-2026-36213","repositories":[{"id":1266038291,"name":"CVE-2026-36213","full_name":"sec-zone/CVE-2026-36213","html_url":"https://github.com/sec-zone/CVE-2026-36213","description":"CVE-2026-36213 | Local Privilege Escalation in MEmu Android Emulator 9.2.7.0 via Insecure Service Binary Permissions | Patched in 9.3.2","stargazers_count":2,"forks_count":1,"language":"","updated_at":"2026-06-25T05:52:18Z","pushed_at":"2026-06-11T11:19:39Z","created_at":"2026-06-11T09:20:48Z","topics":[],"owner":{"login":"sec-zone","html_url":"https://github.com/sec-zone"},"clone_url":"https://github.com/sec-zone/CVE-2026-36213.git","has_code":false,"age_days":14}]},{"cve_id":"CVE-2026-36226","repositories":[{"id":1246756543,"name":"CVE-2026-36226","full_name":"NullByte8080/CVE-2026-36226","html_url":"https://github.com/NullByte8080/CVE-2026-36226","description":"","stargazers_count":0,"forks_count":0,"language":"HTML","updated_at":"2026-05-22T14:18:48Z","pushed_at":"2026-05-22T14:18:37Z","created_at":"2026-05-22T14:18:27Z","topics":[],"owner":{"login":"NullByte8080","html_url":"https://github.com/NullByte8080"},"clone_url":"https://github.com/NullByte8080/CVE-2026-36226.git","has_code":true,"age_days":34}]},{"cve_id":"CVE-2026-36227","repositories":[{"id":1246720188,"name":"CVE-2026-36227","full_name":"NullByte8080/CVE-2026-36227","html_url":"https://github.com/NullByte8080/CVE-2026-36227","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-22T13:36:54Z","pushed_at":"2026-05-22T13:36:50Z","created_at":"2026-05-22T13:36:01Z","topics":[],"owner":{"login":"NullByte8080","html_url":"https://github.com/NullByte8080"},"clone_url":"https://github.com/NullByte8080/CVE-2026-36227.git","has_code":true,"age_days":34}]},{"cve_id":"CVE-2026-36228","repositories":[{"id":1246728856,"name":"CVE-2026-36228","full_name":"NullByte8080/CVE-2026-36228","html_url":"https://github.com/NullByte8080/CVE-2026-36228","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-22T13:46:48Z","pushed_at":"2026-05-22T13:46:43Z","created_at":"2026-05-22T13:46:12Z","topics":[],"owner":{"login":"NullByte8080","html_url":"https://github.com/NullByte8080"},"clone_url":"https://github.com/NullByte8080/CVE-2026-36228.git","has_code":true,"age_days":34}]},{"cve_id":"CVE-2026-36239","repositories":[{"id":1248707811,"name":"CVE-2026-36239","full_name":"TazmiDev/CVE-2026-36239","html_url":"https://github.com/TazmiDev/CVE-2026-36239","description":"CVE-2026-36239 | Authenticated RCE in PbootCMS ≤3.2.12","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-05-27T02:11:23Z","pushed_at":"2026-05-26T02:47:18Z","created_at":"2026-05-25T01:17:45Z","topics":[],"owner":{"login":"TazmiDev","html_url":"https://github.com/TazmiDev"},"clone_url":"https://github.com/TazmiDev/CVE-2026-36239.git","has_code":true,"age_days":31}]},{"cve_id":"CVE-2026-3629","repositories":[{"id":1241819733,"name":"CVE-2026-3629","full_name":"PySecTools/CVE-2026-3629","html_url":"https://github.com/PySecTools/CVE-2026-3629","description":"WordPress Privilege Escalation Checker","stargazers_count":9,"forks_count":0,"language":"Python","updated_at":"2026-05-21T02:44:13Z","pushed_at":"2026-05-17T21:51:30Z","created_at":"2026-05-17T21:18:10Z","topics":[],"owner":{"login":"PySecTools","html_url":"https://github.com/PySecTools"},"clone_url":"https://github.com/PySecTools/CVE-2026-3629.git","has_code":true,"age_days":38}]},{"cve_id":"CVE-2026-36340","repositories":[{"id":1225138350,"name":"CVE-2026-36340","full_name":"cybercrewinc/CVE-2026-36340","html_url":"https://github.com/cybercrewinc/CVE-2026-36340","description":"Remote Code Execution (RCE) Vulnerability in Krayin CRM v2.1.5","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-09T11:09:47Z","pushed_at":"2026-04-30T02:10:44Z","created_at":"2026-04-30T01:39:09Z","topics":[],"owner":{"login":"cybercrewinc","html_url":"https://github.com/cybercrewinc"},"clone_url":"https://github.com/cybercrewinc/CVE-2026-36340.git","has_code":false,"age_days":56}]},{"cve_id":"CVE-2026-36341","repositories":[{"id":1225156103,"name":"CVE-2026-36341","full_name":"cybercrewinc/CVE-2026-36341","html_url":"https://github.com/cybercrewinc/CVE-2026-36341","description":"Cross-Site Scripting (XSS) vulnerability exists in Webkul Krayin CRM (HTML Injection)","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-09T11:09:46Z","pushed_at":"2026-04-30T02:19:01Z","created_at":"2026-04-30T02:13:16Z","topics":[],"owner":{"login":"cybercrewinc","html_url":"https://github.com/cybercrewinc"},"clone_url":"https://github.com/cybercrewinc/CVE-2026-36341.git","has_code":false,"age_days":56}]},{"cve_id":"CVE-2026-36355","repositories":[{"id":1228291367,"name":"CVE-2026-36355","full_name":"totekuh/CVE-2026-36355","html_url":"https://github.com/totekuh/CVE-2026-36355","description":"CVE-2026-36355: Realtek rtl819x Jungle SDK - Unauthenticated Kernel Memory Read/Write via Debug ioctls","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-03T20:58:25Z","pushed_at":"2026-05-03T20:58:22Z","created_at":"2026-05-03T20:57:00Z","topics":[],"owner":{"login":"totekuh","html_url":"https://github.com/totekuh"},"clone_url":"https://github.com/totekuh/CVE-2026-36355.git","has_code":true,"age_days":52}]},{"cve_id":"CVE-2026-36356","repositories":[{"id":1228291497,"name":"CVE-2026-36356","full_name":"totekuh/CVE-2026-36356","html_url":"https://github.com/totekuh/CVE-2026-36356","description":"CVE-2026-36356: MeiG Smart FORGE_SLT711 GoAhead - Unauthenticated OS Command Injection (RCE as root)","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-25T11:54:24Z","pushed_at":"2026-05-05T22:51:28Z","created_at":"2026-05-03T20:57:17Z","topics":[],"owner":{"login":"totekuh","html_url":"https://github.com/totekuh"},"clone_url":"https://github.com/totekuh/CVE-2026-36356.git","has_code":true,"age_days":52}]},{"cve_id":"CVE-2026-36358","repositories":[{"id":1225291729,"name":"CVE-2026-36358","full_name":"yuhuamiao/CVE-2026-36358","html_url":"https://github.com/yuhuamiao/CVE-2026-36358","description":"","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-05-26T10:46:13Z","pushed_at":"2026-04-30T09:30:42Z","created_at":"2026-04-30T06:18:23Z","topics":[],"owner":{"login":"yuhuamiao","html_url":"https://github.com/yuhuamiao"},"clone_url":"https://github.com/yuhuamiao/CVE-2026-36358.git","has_code":false,"age_days":56}]},{"cve_id":"CVE-2026-36374","repositories":[{"id":1165132967,"name":"CVE-2026-36374","full_name":"RRespxwnss/CVE-2026-36374","html_url":"https://github.com/RRespxwnss/CVE-2026-36374","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-15T22:02:52Z","pushed_at":"2026-02-23T21:43:37Z","created_at":"2026-02-23T21:25:43Z","topics":[],"owner":{"login":"RRespxwnss","html_url":"https://github.com/RRespxwnss"},"clone_url":"https://github.com/RRespxwnss/CVE-2026-36374.git","has_code":false,"age_days":121}]},{"cve_id":"CVE-2026-36425","repositories":[{"id":1272396502,"name":"CVE-2026-36425","full_name":"redteamfortress/CVE-2026-36425","html_url":"https://github.com/redteamfortress/CVE-2026-36425","description":"CVE-2026-36425 OPSWAT AppRemover (ardrv.sys) improper access control advisory","stargazers_count":3,"forks_count":1,"language":"","updated_at":"2026-06-21T15:27:08Z","pushed_at":"2026-06-17T15:15:04Z","created_at":"2026-06-17T15:11:22Z","topics":[],"owner":{"login":"redteamfortress","html_url":"https://github.com/redteamfortress"},"clone_url":"https://github.com/redteamfortress/CVE-2026-36425.git","has_code":false,"age_days":8}]},{"cve_id":"CVE-2026-36436","repositories":[{"id":1240362282,"name":"CVE-2026-36436-Public-Reference-Pack","full_name":"vtrmK/CVE-2026-36436-Public-Reference-Pack","html_url":"https://github.com/vtrmK/CVE-2026-36436-Public-Reference-Pack","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-16T03:49:31Z","pushed_at":"2026-05-16T03:49:27Z","created_at":"2026-05-16T03:47:25Z","topics":[],"owner":{"login":"vtrmK","html_url":"https://github.com/vtrmK"},"clone_url":"https://github.com/vtrmK/CVE-2026-36436-Public-Reference-Pack.git","has_code":false,"age_days":40}]},{"cve_id":"CVE-2026-36438","repositories":[{"id":1241915219,"name":"CVE-2026-36438","full_name":"kensh1k/CVE-2026-36438","html_url":"https://github.com/kensh1k/CVE-2026-36438","description":"This repository contains information about the CVE-2026-36438","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-18T01:17:40Z","pushed_at":"2026-05-18T01:17:37Z","created_at":"2026-05-18T00:53:43Z","topics":[],"owner":{"login":"kensh1k","html_url":"https://github.com/kensh1k"},"clone_url":"https://github.com/kensh1k/CVE-2026-36438.git","has_code":false,"age_days":38}]},{"cve_id":"CVE-2026-36522","repositories":[{"id":1270718511,"name":"CVE-2026-36522","full_name":"deepwoodssec/CVE-2026-36522","html_url":"https://github.com/deepwoodssec/CVE-2026-36522","description":"CVE-2026-36522: unauthenticated NaN injection via MAVLink PARAM_SET in ArduPilot ArduPlane (CWE-1287, DoS/integrity)","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-16T01:55:07Z","pushed_at":"2026-06-16T01:55:03Z","created_at":"2026-06-16T01:43:24Z","topics":[],"owner":{"login":"deepwoodssec","html_url":"https://github.com/deepwoodssec"},"clone_url":"https://github.com/deepwoodssec/CVE-2026-36522.git","has_code":true,"age_days":9}]},{"cve_id":"CVE-2026-36590","repositories":[{"id":1169033579,"name":"NanoMQ-Memory-Leak-Research","full_name":"MoXie25/NanoMQ-Memory-Leak-Research","html_url":"https://github.com/MoXie25/NanoMQ-Memory-Leak-Research","description":"Public advisory and technical analysis for CVE-2026-36590, a NanoMQ v0.24.9 denial-of-service vulnerability.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-17T10:00:54Z","pushed_at":"2026-06-17T10:00:16Z","created_at":"2026-02-28T04:49:04Z","topics":[],"owner":{"login":"MoXie25","html_url":"https://github.com/MoXie25"},"clone_url":"https://github.com/MoXie25/NanoMQ-Memory-Leak-Research.git","has_code":true,"age_days":117}]},{"cve_id":"CVE-2026-36670","repositories":[{"id":1169702123,"name":"CVE-2026-36670","full_name":"Gabriel-Lacorte/CVE-2026-36670","html_url":"https://github.com/Gabriel-Lacorte/CVE-2026-36670","description":"Time-Based Blind SQL Injection Exploit for the OpenSIPs Control Panel (or my first CVE!)","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-12T15:59:49Z","pushed_at":"2026-06-12T15:59:44Z","created_at":"2026-03-01T04:28:05Z","topics":[],"owner":{"login":"Gabriel-Lacorte","html_url":"https://github.com/Gabriel-Lacorte"},"clone_url":"https://github.com/Gabriel-Lacorte/CVE-2026-36670.git","has_code":false,"age_days":116}]},{"cve_id":"CVE-2026-36748","repositories":[{"id":1243049404,"name":"CVE-2026-36748","full_name":"rufflabs/CVE-2026-36748","html_url":"https://github.com/rufflabs/CVE-2026-36748","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-19T02:17:47Z","pushed_at":"2026-05-19T02:17:47Z","created_at":"2026-05-19T02:17:46Z","topics":[],"owner":{"login":"rufflabs","html_url":"https://github.com/rufflabs"},"clone_url":"https://github.com/rufflabs/CVE-2026-36748.git","has_code":false,"age_days":37}]},{"cve_id":"CVE-2026-36826","repositories":[{"id":1269588457,"name":"CVE-2026-36826","full_name":"Forklit/CVE-2026-36826","html_url":"https://github.com/Forklit/CVE-2026-36826","description":"genesisQL-sqli-CVE-2026-36826","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-14T22:37:19Z","pushed_at":"2026-06-14T22:37:16Z","created_at":"2026-06-14T22:36:28Z","topics":[],"owner":{"login":"Forklit","html_url":"https://github.com/Forklit"},"clone_url":"https://github.com/Forklit/CVE-2026-36826.git","has_code":false,"age_days":10}]},{"cve_id":"CVE-2026-36956","repositories":[{"id":1224980899,"name":"CVE-2026-36956","full_name":"kirubel-cve/CVE-2026-36956","html_url":"https://github.com/kirubel-cve/CVE-2026-36956","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-29T20:36:17Z","pushed_at":"2026-04-29T20:36:13Z","created_at":"2026-04-29T20:33:13Z","topics":[],"owner":{"login":"kirubel-cve","html_url":"https://github.com/kirubel-cve"},"clone_url":"https://github.com/kirubel-cve/CVE-2026-36956.git","has_code":false,"age_days":56}]},{"cve_id":"CVE-2026-36957","repositories":[{"id":1224980953,"name":"CVE-2026-36957","full_name":"kirubel-cve/CVE-2026-36957","html_url":"https://github.com/kirubel-cve/CVE-2026-36957","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-29T20:36:50Z","pushed_at":"2026-04-29T20:36:45Z","created_at":"2026-04-29T20:33:17Z","topics":[],"owner":{"login":"kirubel-cve","html_url":"https://github.com/kirubel-cve"},"clone_url":"https://github.com/kirubel-cve/CVE-2026-36957.git","has_code":false,"age_days":56}]},{"cve_id":"CVE-2026-36958","repositories":[{"id":1224980995,"name":"CVE-2026-36958","full_name":"kirubel-cve/CVE-2026-36958","html_url":"https://github.com/kirubel-cve/CVE-2026-36958","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-29T20:36:51Z","pushed_at":"2026-04-29T20:36:48Z","created_at":"2026-04-29T20:33:20Z","topics":[],"owner":{"login":"kirubel-cve","html_url":"https://github.com/kirubel-cve"},"clone_url":"https://github.com/kirubel-cve/CVE-2026-36958.git","has_code":false,"age_days":56}]},{"cve_id":"CVE-2026-36959","repositories":[{"id":1224981037,"name":"CVE-2026-36959","full_name":"kirubel-cve/CVE-2026-36959","html_url":"https://github.com/kirubel-cve/CVE-2026-36959","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-29T20:36:55Z","pushed_at":"2026-04-29T20:36:50Z","created_at":"2026-04-29T20:33:24Z","topics":[],"owner":{"login":"kirubel-cve","html_url":"https://github.com/kirubel-cve"},"clone_url":"https://github.com/kirubel-cve/CVE-2026-36959.git","has_code":false,"age_days":56}]},{"cve_id":"CVE-2026-36960","repositories":[{"id":1224981075,"name":"CVE-2026-36960","full_name":"kirubel-cve/CVE-2026-36960","html_url":"https://github.com/kirubel-cve/CVE-2026-36960","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-29T20:36:57Z","pushed_at":"2026-04-29T20:36:53Z","created_at":"2026-04-29T20:33:27Z","topics":[],"owner":{"login":"kirubel-cve","html_url":"https://github.com/kirubel-cve"},"clone_url":"https://github.com/kirubel-cve/CVE-2026-36960.git","has_code":false,"age_days":56}]},{"cve_id":"CVE-2026-36980","repositories":[{"id":1234941555,"name":"CVE-2026-36980-Kernel-BSOD-DoS-PoC","full_name":"canomer/CVE-2026-36980-Kernel-BSOD-DoS-PoC","html_url":"https://github.com/canomer/CVE-2026-36980-Kernel-BSOD-DoS-PoC","description":"Project Date : Feb 2026 / Discovered a buffer overflow vulnerability in the IOCTL handler of the kernel driver. The vulnerability allows an unprivileged local attacker to corrupt kernel pool memory, triggering an immediate system crash (BSOD) and Denial of Service.","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-11T10:00:46Z","pushed_at":"2026-05-11T10:00:30Z","created_at":"2026-05-10T20:51:29Z","topics":[],"owner":{"login":"canomer","html_url":"https://github.com/canomer"},"clone_url":"https://github.com/canomer/CVE-2026-36980-Kernel-BSOD-DoS-PoC.git","has_code":true,"age_days":45}]},{"cve_id":"CVE-2026-36981","repositories":[{"id":1234929842,"name":"CVE-2026-36981-Kernel-EoP-PoC","full_name":"canomer/CVE-2026-36981-Kernel-EoP-PoC","html_url":"https://github.com/canomer/CVE-2026-36981-Kernel-EoP-PoC","description":"Project Date : Feb 2026 / Memory corruption vulnerability within the kernel driver of MiniTool. Demonstrates a debugger-assisted arbitrary kernel write primitive that can be leveraged toward privilege escalation.","stargazers_count":2,"forks_count":0,"language":"C","updated_at":"2026-06-05T06:16:35Z","pushed_at":"2026-05-10T22:31:30Z","created_at":"2026-05-10T20:28:37Z","topics":[],"owner":{"login":"canomer","html_url":"https://github.com/canomer"},"clone_url":"https://github.com/canomer/CVE-2026-36981-Kernel-EoP-PoC.git","has_code":true,"age_days":45}]},{"cve_id":"CVE-2026-37064","repositories":[{"id":1269977811,"name":"CVE-2026-37064","full_name":"jfs-jfs/CVE-2026-37064","html_url":"https://github.com/jfs-jfs/CVE-2026-37064","description":"User enumeration in /vfm-admin/ajax/usr-check.php in Veno File Manager Project 4.4.9 allows an unauthenticated attacker to enumerate the application users via sending a specially crafted POST request to the affected endpoint with a chosen 'user_name' parameter to test if the user exists.","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-15T10:21:31Z","pushed_at":"2026-06-15T09:21:20Z","created_at":"2026-06-15T09:14:04Z","topics":[],"owner":{"login":"jfs-jfs","html_url":"https://github.com/jfs-jfs"},"clone_url":"https://github.com/jfs-jfs/CVE-2026-37064.git","has_code":true,"age_days":10}]},{"cve_id":"CVE-2026-37065","repositories":[{"id":1269989410,"name":"CVE-2026-37065","full_name":"jfs-jfs/CVE-2026-37065","html_url":"https://github.com/jfs-jfs/CVE-2026-37065","description":"Veno File Manager Project 4.4.9 is vulnerable to Arbitrary File Deletion","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-15T10:20:55Z","pushed_at":"2026-06-15T09:29:01Z","created_at":"2026-06-15T09:24:54Z","topics":[],"owner":{"login":"jfs-jfs","html_url":"https://github.com/jfs-jfs"},"clone_url":"https://github.com/jfs-jfs/CVE-2026-37065.git","has_code":true,"age_days":10}]},{"cve_id":"CVE-2026-37066","repositories":[{"id":1269994408,"name":"CVE-2026-37066","full_name":"jfs-jfs/CVE-2026-37066","html_url":"https://github.com/jfs-jfs/CVE-2026-37066","description":"Path traversal leading to Arbitrary File Read in /vfm-admin/index.php and /vfm-admin/ajax/streamvid.php in Veno File Manager Project 4.4.9 allows and authenticated attacker with super administrator role to disclose sensitive information via two specially crafted http requests (POST and GET) to the affected endpoints.","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-15T10:20:10Z","pushed_at":"2026-06-15T09:33:19Z","created_at":"2026-06-15T09:30:17Z","topics":[],"owner":{"login":"jfs-jfs","html_url":"https://github.com/jfs-jfs"},"clone_url":"https://github.com/jfs-jfs/CVE-2026-37066.git","has_code":true,"age_days":10}]},{"cve_id":"CVE-2026-37067","repositories":[{"id":1269998127,"name":"CVE-2026-37067","full_name":"jfs-jfs/CVE-2026-37067","html_url":"https://github.com/jfs-jfs/CVE-2026-37067","description":"Incorrect access control in /vfm-admin/admin-panel/view/save-cvs.php in Veno File Manager Project 4.4.9 allows an unauthenticated attacker to extract all application logs from a desired date forwards via a specially crafted POST request.","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-15T10:18:42Z","pushed_at":"2026-06-15T09:37:51Z","created_at":"2026-06-15T09:34:25Z","topics":[],"owner":{"login":"jfs-jfs","html_url":"https://github.com/jfs-jfs"},"clone_url":"https://github.com/jfs-jfs/CVE-2026-37067.git","has_code":true,"age_days":10}]},{"cve_id":"CVE-2026-37068","repositories":[{"id":1270002141,"name":"CVE-2026-37068","full_name":"jfs-jfs/CVE-2026-37068","html_url":"https://github.com/jfs-jfs/CVE-2026-37068","description":"Arbitrary file write in /vfm-admin/index.php?section=translations\u0026action=update in Veno File Manager Project 4.4.9 allows an authenticated user with the role of super administrator to overwrite any php file in the application via a specially crafted POST request to the affected endpoint.","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-15T10:17:38Z","pushed_at":"2026-06-15T09:44:03Z","created_at":"2026-06-15T09:38:58Z","topics":[],"owner":{"login":"jfs-jfs","html_url":"https://github.com/jfs-jfs"},"clone_url":"https://github.com/jfs-jfs/CVE-2026-37068.git","has_code":true,"age_days":10}]},{"cve_id":"CVE-2026-37069","repositories":[{"id":1270007870,"name":"CVE-2026-37069","full_name":"jfs-jfs/CVE-2026-37069","html_url":"https://github.com/jfs-jfs/CVE-2026-37069","description":"Absolute Path Disclosure in /vfm-admin/assets/zipstream/grandt/relativepath/RelativePath.Example1.php in Veno File Manager Project 4.4.9 allows an unauthenticated attacker to know in which system directory the application code is running by sending a GET request to the endpoint.","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-15T10:16:57Z","pushed_at":"2026-06-15T09:53:47Z","created_at":"2026-06-15T09:45:14Z","topics":[],"owner":{"login":"jfs-jfs","html_url":"https://github.com/jfs-jfs"},"clone_url":"https://github.com/jfs-jfs/CVE-2026-37069.git","has_code":true,"age_days":10}]},{"cve_id":"CVE-2026-37070","repositories":[{"id":1270016726,"name":"CVE-2026-37070","full_name":"jfs-jfs/CVE-2026-37070","html_url":"https://github.com/jfs-jfs/CVE-2026-37070","description":"Incorrect access control in /vfm-admin/ajax/streamvid.php in Veno File Manager Project in 4.4.9 allows an authenticated attacker to read any uploaded files by other users as long as it knows the path and filename via a specially crafted GET request to the affected endpoint.","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-15T10:15:57Z","pushed_at":"2026-06-15T09:59:18Z","created_at":"2026-06-15T09:55:32Z","topics":[],"owner":{"login":"jfs-jfs","html_url":"https://github.com/jfs-jfs"},"clone_url":"https://github.com/jfs-jfs/CVE-2026-37070.git","has_code":true,"age_days":10}]},{"cve_id":"CVE-2026-37071","repositories":[{"id":1270021412,"name":"CVE-2026-37071","full_name":"jfs-jfs/CVE-2026-37071","html_url":"https://github.com/jfs-jfs/CVE-2026-37071","description":"Arbitrary File Rename Leading to Privilege Escalation in Actions::renameFile() function in Veno File Manager Project 4.4.9 allows an authenticated attacker with 'reanme' permission to take over the super administrator account via a specially crafted POST request.","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-15T10:14:48Z","pushed_at":"2026-06-15T10:05:31Z","created_at":"2026-06-15T10:00:56Z","topics":[],"owner":{"login":"jfs-jfs","html_url":"https://github.com/jfs-jfs"},"clone_url":"https://github.com/jfs-jfs/CVE-2026-37071.git","has_code":true,"age_days":10}]},{"cve_id":"CVE-2026-37072","repositories":[{"id":1270026662,"name":"CVE-2026-37072","full_name":"jfs-jfs/CVE-2026-37072","html_url":"https://github.com/jfs-jfs/CVE-2026-37072","description":"Veno File Manager Project Veno File Manager Project 4.4.9 is vulnerable to Incorrect Access Control in admin-head-updates.php","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-15T10:14:31Z","pushed_at":"2026-06-15T10:09:00Z","created_at":"2026-06-15T10:07:25Z","topics":[],"owner":{"login":"jfs-jfs","html_url":"https://github.com/jfs-jfs"},"clone_url":"https://github.com/jfs-jfs/CVE-2026-37072.git","has_code":true,"age_days":10}]},{"cve_id":"CVE-2026-37073","repositories":[{"id":1270028525,"name":"CVE-2026-37073","full_name":"jfs-jfs/CVE-2026-37073","html_url":"https://github.com/jfs-jfs/CVE-2026-37073","description":"Incorrect access control in /vfm-admin/ajax/sendfiles.php in Veno File Manager Project 4.4.9 allows an unauthenticated attacker to send emails from the configured SMPT server on the application via making a POST request to the endpoint with needed parameters and header.","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-15T10:13:23Z","pushed_at":"2026-06-15T10:10:32Z","created_at":"2026-06-15T10:09:45Z","topics":[],"owner":{"login":"jfs-jfs","html_url":"https://github.com/jfs-jfs"},"clone_url":"https://github.com/jfs-jfs/CVE-2026-37073.git","has_code":true,"age_days":10}]},{"cve_id":"CVE-2026-37149","repositories":[{"id":1275248002,"name":"CVE-2026-37149","full_name":"pateldhyeyit/CVE-2026-37149","html_url":"https://github.com/pateldhyeyit/CVE-2026-37149","description":"CVE-2026-37149 - SQL Injection vulnerability in the scost parameter of search_products.php in GROCERY-STORE-MANAGEMENT-SYSTEM-USING-PHP-AND-MYSQL-PHPMYADMIN v1.0.","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-06-20T12:58:07Z","pushed_at":"2026-06-20T12:57:08Z","created_at":"2026-06-20T12:51:07Z","topics":[],"owner":{"login":"pateldhyeyit","html_url":"https://github.com/pateldhyeyit"},"clone_url":"https://github.com/pateldhyeyit/CVE-2026-37149.git","has_code":false,"age_days":5}]},{"cve_id":"CVE-2026-37196","repositories":[{"id":1267420470,"name":"CVE-2026-37196","full_name":"Pavanvootla-sec/CVE-2026-37196","html_url":"https://github.com/Pavanvootla-sec/CVE-2026-37196","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-12T18:00:23Z","pushed_at":"2026-06-12T18:00:11Z","created_at":"2026-06-12T14:22:12Z","topics":[],"owner":{"login":"Pavanvootla-sec","html_url":"https://github.com/Pavanvootla-sec"},"clone_url":"https://github.com/Pavanvootla-sec/CVE-2026-37196.git","has_code":false,"age_days":13}]},{"cve_id":"CVE-2026-37197","repositories":[{"id":1268546735,"name":"CVE-2026-37197","full_name":"Pavanvootla-sec/CVE-2026-37197","html_url":"https://github.com/Pavanvootla-sec/CVE-2026-37197","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-13T17:02:36Z","pushed_at":"2026-06-13T17:02:32Z","created_at":"2026-06-13T16:58:50Z","topics":[],"owner":{"login":"Pavanvootla-sec","html_url":"https://github.com/Pavanvootla-sec"},"clone_url":"https://github.com/Pavanvootla-sec/CVE-2026-37197.git","has_code":false,"age_days":12}]},{"cve_id":"CVE-2026-37272","repositories":[{"id":1221895336,"name":"CVE-2026-37272","full_name":"vytlanikhil/CVE-2026-37272","html_url":"https://github.com/vytlanikhil/CVE-2026-37272","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-07T13:20:02Z","pushed_at":"2026-05-07T13:19:08Z","created_at":"2026-04-26T20:18:34Z","topics":[],"owner":{"login":"vytlanikhil","html_url":"https://github.com/vytlanikhil"},"clone_url":"https://github.com/vytlanikhil/CVE-2026-37272.git","has_code":false,"age_days":59}]},{"cve_id":"CVE-2026-37333","repositories":[{"id":1178388477,"name":"IOBitMalwareFighterDLL","full_name":"nasawyer7/IOBitMalwareFighterDLL","html_url":"https://github.com/nasawyer7/IOBitMalwareFighterDLL","description":"(0 day) CVE-2026-37333 LPE I found in IObit Malware Fighter v. 13.2.0.","stargazers_count":0,"forks_count":0,"language":"C++","updated_at":"2026-04-30T15:10:52Z","pushed_at":"2026-03-23T16:50:04Z","created_at":"2026-03-11T01:19:33Z","topics":[],"owner":{"login":"nasawyer7","html_url":"https://github.com/nasawyer7"},"clone_url":"https://github.com/nasawyer7/IOBitMalwareFighterDLL.git","has_code":true,"age_days":106}]},{"cve_id":"CVE-2026-37334","repositories":[{"id":1178402878,"name":"IOBitUnlockerUnlocker","full_name":"nasawyer7/IOBitUnlockerUnlocker","html_url":"https://github.com/nasawyer7/IOBitUnlockerUnlocker","description":"(0 day) CVE-2026-37334 Moves or Copies any file. Bypasses previous patch with a checksum trick. IObit Unlocker v. 1.3.0","stargazers_count":0,"forks_count":0,"language":"C++","updated_at":"2026-04-30T15:11:22Z","pushed_at":"2026-03-23T16:49:48Z","created_at":"2026-03-11T01:45:06Z","topics":[],"owner":{"login":"nasawyer7","html_url":"https://github.com/nasawyer7"},"clone_url":"https://github.com/nasawyer7/IOBitUnlockerUnlocker.git","has_code":true,"age_days":106}]},{"cve_id":"CVE-2026-37432","repositories":[{"id":1178618064,"name":"CVE-2026-37432","full_name":"diao111111/CVE-2026-37432","html_url":"https://github.com/diao111111/CVE-2026-37432","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-04T02:49:34Z","pushed_at":"2026-06-04T02:49:30Z","created_at":"2026-03-11T07:40:34Z","topics":[],"owner":{"login":"diao111111","html_url":"https://github.com/diao111111"},"clone_url":"https://github.com/diao111111/CVE-2026-37432.git","has_code":false,"age_days":106}]},{"cve_id":"CVE-2026-37637","repositories":[{"id":1233339510,"name":"CVE-2026-37637","full_name":"SLO-CYBER-SEC/CVE-2026-37637","html_url":"https://github.com/SLO-CYBER-SEC/CVE-2026-37637","description":"Remote Code Execution in Alexantr filemanager v1.0 via unrestricted file upload","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-05-09T04:50:38Z","pushed_at":"2026-05-08T21:17:50Z","created_at":"2026-05-08T21:16:29Z","topics":[],"owner":{"login":"SLO-CYBER-SEC","html_url":"https://github.com/SLO-CYBER-SEC"},"clone_url":"https://github.com/SLO-CYBER-SEC/CVE-2026-37637.git","has_code":false,"age_days":47}]},{"cve_id":"CVE-2026-37748","repositories":[{"id":1212742464,"name":"CVE-2026-37748","full_name":"menevarad007/CVE-2026-37748","html_url":"https://github.com/menevarad007/CVE-2026-37748","description":"Visitor Management System 1.0 - Unrestricted File Upload → RCE (CVE-2026-37748)","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-17T14:48:50Z","pushed_at":"2026-04-17T14:48:47Z","created_at":"2026-04-16T17:27:49Z","topics":[],"owner":{"login":"menevarad007","html_url":"https://github.com/menevarad007"},"clone_url":"https://github.com/menevarad007/CVE-2026-37748.git","has_code":true,"age_days":70}]},{"cve_id":"CVE-2026-37749","repositories":[{"id":1212788251,"name":"CVE-2026-37749","full_name":"menevarad007/CVE-2026-37749","html_url":"https://github.com/menevarad007/CVE-2026-37749","description":"CVE-2026-37749 — CodeAstro Simple Attendance Management System 1.0 - SQL Injection","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-17T14:59:35Z","pushed_at":"2026-04-17T14:59:32Z","created_at":"2026-04-16T18:25:42Z","topics":[],"owner":{"login":"menevarad007","html_url":"https://github.com/menevarad007"},"clone_url":"https://github.com/menevarad007/CVE-2026-37749.git","has_code":true,"age_days":70}]},{"cve_id":"CVE-2026-37750","repositories":[{"id":1212836874,"name":"CVE-2026-37750","full_name":"menevarad007/CVE-2026-37750","html_url":"https://github.com/menevarad007/CVE-2026-37750","description":"CVE-2026-37750 — School Management System 1.0 - Reflected XSS","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-17T15:08:55Z","pushed_at":"2026-04-17T15:08:52Z","created_at":"2026-04-16T19:29:23Z","topics":[],"owner":{"login":"menevarad007","html_url":"https://github.com/menevarad007"},"clone_url":"https://github.com/menevarad007/CVE-2026-37750.git","has_code":true,"age_days":70}]},{"cve_id":"CVE-2026-3786","repositories":[{"id":1187040896,"name":"CVE-2026-3786","full_name":"Mefhika120/CVE-2026-3786","html_url":"https://github.com/Mefhika120/CVE-2026-3786","description":"CVE-2026-3786 EasyTheme SQLi","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-20T09:19:31Z","pushed_at":"2026-03-11T13:14:14Z","created_at":"2026-03-20T09:19:31Z","topics":[],"owner":{"login":"Mefhika120","html_url":"https://github.com/Mefhika120"},"clone_url":"https://github.com/Mefhika120/CVE-2026-3786.git","has_code":false,"age_days":97}]},{"cve_id":"CVE-2026-3796","repositories":[{"id":1158864623,"name":"CVE-2026-3796","full_name":"cwjchoi01/CVE-2026-3796","html_url":"https://github.com/cwjchoi01/CVE-2026-3796","description":"CVE-2026-3796","stargazers_count":4,"forks_count":1,"language":"C++","updated_at":"2026-04-10T01:10:58Z","pushed_at":"2026-03-15T16:14:54Z","created_at":"2026-02-16T02:33:05Z","topics":[],"owner":{"login":"cwjchoi01","html_url":"https://github.com/cwjchoi01"},"clone_url":"https://github.com/cwjchoi01/CVE-2026-3796.git","has_code":true,"age_days":129}]},{"cve_id":"CVE-2026-3805","repositories":[{"id":1208495399,"name":"CVE-2026-3805-curl-SMB-UAF","full_name":"Rat5ak/CVE-2026-3805-curl-SMB-UAF","html_url":"https://github.com/Rat5ak/CVE-2026-3805-curl-SMB-UAF","description":"CVE-2026-3805: Use-After-Free in curl SMB connection reuse - heap info disclosure","stargazers_count":0,"forks_count":1,"language":"Shell","updated_at":"2026-05-08T09:31:33Z","pushed_at":"2026-05-08T09:31:29Z","created_at":"2026-04-12T11:12:16Z","topics":[],"owner":{"login":"Rat5ak","html_url":"https://github.com/Rat5ak"},"clone_url":"https://github.com/Rat5ak/CVE-2026-3805-curl-SMB-UAF.git","has_code":true,"age_days":74}]},{"cve_id":"CVE-2026-38165","repositories":[{"id":1272884362,"name":"CVE-2026-38165-SSTI-","full_name":"AT190510-Cuong/CVE-2026-38165-SSTI-","html_url":"https://github.com/AT190510-Cuong/CVE-2026-38165-SSTI-","description":"CVE-2026-38165 (SSTI)","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-06-18T03:25:18Z","pushed_at":"2026-06-18T02:50:29Z","created_at":"2026-06-18T02:49:21Z","topics":[],"owner":{"login":"AT190510-Cuong","html_url":"https://github.com/AT190510-Cuong"},"clone_url":"https://github.com/AT190510-Cuong/CVE-2026-38165-SSTI-.git","has_code":false,"age_days":7}]},{"cve_id":"CVE-2026-38194","repositories":[{"id":1179720894,"name":"cormem-read-poc","full_name":"4D4J/cormem-read-poc","html_url":"https://github.com/4D4J/cormem-read-poc","description":"This tool demonstrates CVE-2026-38194, a vulnerability in Teledyne Digital Imaging Sapera Memory Manager (v9.0.0.0 and below).  The CORMEM.SYS kernel driver exposes IOCTLs without any access control checks, allowing a standard unprivileged user to read and write arbitrary process memory directly through the kernel — bypassing Win32 API monitoring","stargazers_count":5,"forks_count":0,"language":"C++","updated_at":"2026-06-15T21:35:32Z","pushed_at":"2026-06-20T17:25:13Z","created_at":"2026-03-12T10:06:59Z","topics":[],"owner":{"login":"4D4J","html_url":"https://github.com/4D4J"},"clone_url":"https://github.com/4D4J/cormem-read-poc.git","has_code":true,"age_days":105}]},{"cve_id":"CVE-2026-38360","repositories":[{"id":1232332700,"name":"CVE-2026-38360","full_name":"a1ohadance/CVE-2026-38360","html_url":"https://github.com/a1ohadance/CVE-2026-38360","description":"Advisory: CVE-2026-38360 path traversal (CWE-22) in dash-uploader (Python/PyPI)","stargazers_count":2,"forks_count":0,"language":"","updated_at":"2026-05-12T11:24:55Z","pushed_at":"2026-05-08T18:43:42Z","created_at":"2026-05-07T20:32:41Z","topics":[],"owner":{"login":"a1ohadance","html_url":"https://github.com/a1ohadance"},"clone_url":"https://github.com/a1ohadance/CVE-2026-38360.git","has_code":false,"age_days":48}]},{"cve_id":"CVE-2026-38361","repositories":[{"id":1232332830,"name":"CVE-2026-38361","full_name":"a1ohadance/CVE-2026-38361","html_url":"https://github.com/a1ohadance/CVE-2026-38361","description":"Advisory: CVE-2026-38361 multiple DoS vulnerabilities (CWE-400/CWE-670) in dash-uploader (Python/PyPI)","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-08T18:43:52Z","pushed_at":"2026-05-08T18:43:48Z","created_at":"2026-05-07T20:32:53Z","topics":[],"owner":{"login":"a1ohadance","html_url":"https://github.com/a1ohadance"},"clone_url":"https://github.com/a1ohadance/CVE-2026-38361.git","has_code":false,"age_days":48}]},{"cve_id":"CVE-2026-38422","repositories":[{"id":1249064373,"name":"CVE-2026-38422","full_name":"sermikr0/CVE-2026-38422","html_url":"https://github.com/sermikr0/CVE-2026-38422","description":"CVE-2026-38422 — Remote Code Execution via Combined Buffer Overflows in Tasmota fetch_jpg() (Tasmota \u003c= 15.3.0.3)","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-25T10:10:07Z","pushed_at":"2026-05-25T10:10:05Z","created_at":"2026-05-25T10:09:59Z","topics":["buffer-overflow","cve","esp32","iot","rce","security","tasmota","vulnerability"],"owner":{"login":"sermikr0","html_url":"https://github.com/sermikr0"},"clone_url":"https://github.com/sermikr0/CVE-2026-38422.git","has_code":false,"age_days":31}]},{"cve_id":"CVE-2026-38426","repositories":[{"id":1249064516,"name":"CVE-2026-38426","full_name":"sermikr0/CVE-2026-38426","html_url":"https://github.com/sermikr0/CVE-2026-38426","description":"CVE-2026-38426 — strcpy() Stack Buffer Overflow in Tasmota fetch_jpg() boundary[40] (Tasmota \u003c= 15.3.0.3)","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-25T10:10:17Z","pushed_at":"2026-05-25T10:10:15Z","created_at":"2026-05-25T10:10:09Z","topics":["buffer-overflow","cve","esp32","iot","security","strcpy","tasmota","vulnerability"],"owner":{"login":"sermikr0","html_url":"https://github.com/sermikr0"},"clone_url":"https://github.com/sermikr0/CVE-2026-38426.git","has_code":false,"age_days":31}]},{"cve_id":"CVE-2026-38427","repositories":[{"id":1249064645,"name":"CVE-2026-38427","full_name":"sermikr0/CVE-2026-38427","html_url":"https://github.com/sermikr0/CVE-2026-38427","description":"CVE-2026-38427 — Integer Wraparound → Heap Buffer Overflow in Tasmota fetch_jpg() uint16_t (Tasmota \u003c= 15.3.0.3)","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-25T10:10:27Z","pushed_at":"2026-05-25T10:10:24Z","created_at":"2026-05-25T10:10:18Z","topics":["cve","esp32","heap-overflow","integer-overflow","iot","security","tasmota","vulnerability"],"owner":{"login":"sermikr0","html_url":"https://github.com/sermikr0"},"clone_url":"https://github.com/sermikr0/CVE-2026-38427.git","has_code":true,"age_days":31}]},{"cve_id":"CVE-2026-3844","repositories":[{"id":1225515256,"name":"CVE-2026-3844","full_name":"halilkirazkaya/CVE-2026-3844","html_url":"https://github.com/halilkirazkaya/CVE-2026-3844","description":"CVE-2026-3844 — Breeze Cache Plugin RCE Exploit","stargazers_count":4,"forks_count":0,"language":"Python","updated_at":"2026-05-09T16:19:27Z","pushed_at":"2026-04-30T11:05:55Z","created_at":"2026-04-30T11:04:00Z","topics":["breeze","cve-2026-3844","exploit","wordpress","wordpress-plugin"],"owner":{"login":"halilkirazkaya","html_url":"https://github.com/halilkirazkaya"},"clone_url":"https://github.com/halilkirazkaya/CVE-2026-3844.git","has_code":true,"age_days":56},{"id":1221054403,"name":"CVE-2026-3844","full_name":"dinosn/CVE-2026-3844","html_url":"https://github.com/dinosn/CVE-2026-3844","description":"CVE-2026-3844: Breeze Cache \u003c= 2.4.4 Unauthenticated Arbitrary File Upload to RCE (CVSS 9.8)","stargazers_count":4,"forks_count":0,"language":"Python","updated_at":"2026-04-26T07:04:57Z","pushed_at":"2026-04-25T17:53:39Z","created_at":"2026-04-25T17:35:16Z","topics":[],"owner":{"login":"dinosn","html_url":"https://github.com/dinosn"},"clone_url":"https://github.com/dinosn/CVE-2026-3844.git","has_code":true,"age_days":61},{"id":1219894216,"name":"CVE-2026-3844","full_name":"tausifzaman/CVE-2026-3844","html_url":"https://github.com/tausifzaman/CVE-2026-3844","description":"PoC exploit for CVE-2026-3844, a critical unauthenticated file upload vulnerability in the WordPress Breeze plugin leading to RCE.","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-04-25T18:25:30Z","pushed_at":"2026-04-24T10:28:28Z","created_at":"2026-04-24T10:26:40Z","topics":["automation","cve","cve-2026-3844","exploit","hacking-script","hacking-tool","poc"],"owner":{"login":"tausifzaman","html_url":"https://github.com/tausifzaman"},"clone_url":"https://github.com/tausifzaman/CVE-2026-3844.git","has_code":true,"age_days":62},{"id":1219886394,"name":"CVE-2026-3844","full_name":"0xgh057r3c0n/CVE-2026-3844","html_url":"https://github.com/0xgh057r3c0n/CVE-2026-3844","description":"WordPress - Breeze Cache \u003c= 2.4.4 - Unauthenticated Arbitrary File Upload","stargazers_count":1,"forks_count":1,"language":"Python","updated_at":"2026-05-27T14:43:58Z","pushed_at":"2026-04-24T10:18:25Z","created_at":"2026-04-24T10:15:54Z","topics":[],"owner":{"login":"0xgh057r3c0n","html_url":"https://github.com/0xgh057r3c0n"},"clone_url":"https://github.com/0xgh057r3c0n/CVE-2026-3844.git","has_code":true,"age_days":62},{"id":1219585382,"name":"CVE-2026-3844","full_name":"im-hanzou/CVE-2026-3844","html_url":"https://github.com/im-hanzou/CVE-2026-3844","description":"Breeze Cache WordPress \u003c=2.4.4 allows unauthenticated file upload via fetch_gravatar_from_remote when local gravatar hosting is enabled.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-25T11:20:24Z","pushed_at":"2026-04-24T04:03:35Z","created_at":"2026-04-24T02:52:00Z","topics":["auto-exploit","breeze","cve-2026-3844","exploit","mass-exploit","python","rce","wordpress","wordpress-plugin"],"owner":{"login":"im-hanzou","html_url":"https://github.com/im-hanzou"},"clone_url":"https://github.com/im-hanzou/CVE-2026-3844.git","has_code":true,"age_days":62},{"id":1232973077,"name":"CVE-2026-3844-Lab","full_name":"rootdirective-sec/CVE-2026-3844-Lab","html_url":"https://github.com/rootdirective-sec/CVE-2026-3844-Lab","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-15T08:53:24Z","pushed_at":"2026-05-15T08:53:20Z","created_at":"2026-05-08T13:07:32Z","topics":[],"owner":{"login":"rootdirective-sec","html_url":"https://github.com/rootdirective-sec"},"clone_url":"https://github.com/rootdirective-sec/CVE-2026-3844-Lab.git","has_code":true,"age_days":48},{"id":1232065056,"name":"CVE-2026-3844","full_name":"sahmsec/CVE-2026-3844","html_url":"https://github.com/sahmsec/CVE-2026-3844","description":"CVE-2026-3844","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-07T15:11:47Z","pushed_at":"2026-05-07T15:01:39Z","created_at":"2026-05-07T14:55:09Z","topics":[],"owner":{"login":"sahmsec","html_url":"https://github.com/sahmsec"},"clone_url":"https://github.com/sahmsec/CVE-2026-3844.git","has_code":true,"age_days":49},{"id":1261104167,"name":"CVE-2026-3844-Breeze-Cache-WordPress-Plugin-Remote-Code-Execution","full_name":"Dhananjayasj/CVE-2026-3844-Breeze-Cache-WordPress-Plugin-Remote-Code-Execution","html_url":"https://github.com/Dhananjayasj/CVE-2026-3844-Breeze-Cache-WordPress-Plugin-Remote-Code-Execution","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-06T08:38:54Z","pushed_at":"2026-06-06T08:38:51Z","created_at":"2026-06-06T08:37:30Z","topics":[],"owner":{"login":"Dhananjayasj","html_url":"https://github.com/Dhananjayasj"},"clone_url":"https://github.com/Dhananjayasj/CVE-2026-3844-Breeze-Cache-WordPress-Plugin-Remote-Code-Execution.git","has_code":true,"age_days":19}]},{"cve_id":"CVE-2026-38526","repositories":[{"id":1240933606,"name":"CVE-2026-38526-PoC","full_name":"NathanHimself/CVE-2026-38526-PoC","html_url":"https://github.com/NathanHimself/CVE-2026-38526-PoC","description":"CVE-2026-38526 | Krayin CRM v2.2.x Authenticated RCE - Unrestricted PHP File Upload via TinyMCE","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-16T19:20:45Z","pushed_at":"2026-05-16T19:15:53Z","created_at":"2026-05-16T18:51:51Z","topics":[],"owner":{"login":"NathanHimself","html_url":"https://github.com/NathanHimself"},"clone_url":"https://github.com/NathanHimself/CVE-2026-38526-PoC.git","has_code":true,"age_days":40},{"id":1279646560,"name":"CVE-2026-38526-POC","full_name":"pawpic/CVE-2026-38526-POC","html_url":"https://github.com/pawpic/CVE-2026-38526-POC","description":"Proof of Concept of CVE-2026-38526 in Krayin CRM \u003c= v2.2.x. Arbitrary File Upload leading to Remote Code Execution","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-25T07:28:42Z","pushed_at":"2026-06-25T07:28:38Z","created_at":"2026-06-24T22:16:59Z","topics":[],"owner":{"login":"pawpic","html_url":"https://github.com/pawpic"},"clone_url":"https://github.com/pawpic/CVE-2026-38526-POC.git","has_code":true,"age_days":0}]},{"cve_id":"CVE-2026-3854","repositories":[{"id":1224201714,"name":"CVE-2026-3854-PoC","full_name":"lysophavin18/CVE-2026-3854-PoC","html_url":"https://github.com/lysophavin18/CVE-2026-3854-PoC","description":"GitHub RCE via X-Stat Push Option Injection","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-05-28T08:02:14Z","pushed_at":"2026-04-29T03:56:58Z","created_at":"2026-04-29T03:52:45Z","topics":[],"owner":{"login":"lysophavin18","html_url":"https://github.com/lysophavin18"},"clone_url":"https://github.com/lysophavin18/CVE-2026-3854-PoC.git","has_code":true,"age_days":57},{"id":1224787334,"name":"cve-2026-3854-test","full_name":"simondankelmann/cve-2026-3854-test","html_url":"https://github.com/simondankelmann/cve-2026-3854-test","description":"CVE-2026-3854 patch bypass testing","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-29T17:26:06Z","pushed_at":"2026-04-29T17:26:01Z","created_at":"2026-04-29T16:18:28Z","topics":[],"owner":{"login":"simondankelmann","html_url":"https://github.com/simondankelmann"},"clone_url":"https://github.com/simondankelmann/cve-2026-3854-test.git","has_code":false,"age_days":57},{"id":1224015776,"name":"Exploit_CVE-2026-3854","full_name":"LACHHAB-Anas/Exploit_CVE-2026-3854","html_url":"https://github.com/LACHHAB-Anas/Exploit_CVE-2026-3854","description":"Details about CVE-2026-3854","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-28T22:12:22Z","pushed_at":"2026-04-28T22:12:19Z","created_at":"2026-04-28T22:02:08Z","topics":[],"owner":{"login":"LACHHAB-Anas","html_url":"https://github.com/LACHHAB-Anas"},"clone_url":"https://github.com/LACHHAB-Anas/Exploit_CVE-2026-3854.git","has_code":false,"age_days":57},{"id":1223926494,"name":"CVE-2026-3854","full_name":"5kr1pt/CVE-2026-3854","html_url":"https://github.com/5kr1pt/CVE-2026-3854","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-28T20:17:47Z","pushed_at":"2026-04-28T20:17:42Z","created_at":"2026-04-28T19:42:55Z","topics":[],"owner":{"login":"5kr1pt","html_url":"https://github.com/5kr1pt"},"clone_url":"https://github.com/5kr1pt/CVE-2026-3854.git","has_code":false,"age_days":58},{"id":1230166905,"name":"ghes-cve-scanner","full_name":"isagoakira/ghes-cve-scanner","html_url":"https://github.com/isagoakira/ghes-cve-scanner","description":" GHES CVE Scanner — Defensive security tool for detecting CVE-2026-3854 (Git      Push RCE) and CVE-2026-4821 (Management Console proxy injection) in GitHub   Enterprise Server. Zero external dependencies, Python 3.8+.      ","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-05T18:46:50Z","pushed_at":"2026-05-05T18:45:12Z","created_at":"2026-05-05T18:37:43Z","topics":[],"owner":{"login":"isagoakira","html_url":"https://github.com/isagoakira"},"clone_url":"https://github.com/isagoakira/ghes-cve-scanner.git","has_code":true,"age_days":51},{"id":1263895609,"name":"CVE-2026-3854","full_name":"jenniferreire26/CVE-2026-3854","html_url":"https://github.com/jenniferreire26/CVE-2026-3854","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-09T11:16:41Z","pushed_at":"2026-06-09T11:16:38Z","created_at":"2026-06-09T11:16:35Z","topics":[],"owner":{"login":"jenniferreire26","html_url":"https://github.com/jenniferreire26"},"clone_url":"https://github.com/jenniferreire26/CVE-2026-3854.git","has_code":false,"age_days":16}]},{"cve_id":"CVE-2026-38698","repositories":[{"id":1241678513,"name":"CVE-2026-38698-and-CVE-2026-38699","full_name":"vital-information-resource-under-siege/CVE-2026-38698-and-CVE-2026-38699","html_url":"https://github.com/vital-information-resource-under-siege/CVE-2026-38698-and-CVE-2026-38699","description":"Technical details and publication about CVE-2026-38698 and CVE-2026-38699","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-17T18:22:18Z","pushed_at":"2026-05-17T18:22:14Z","created_at":"2026-05-17T17:24:29Z","topics":[],"owner":{"login":"vital-information-resource-under-siege","html_url":"https://github.com/vital-information-resource-under-siege"},"clone_url":"https://github.com/vital-information-resource-under-siege/CVE-2026-38698-and-CVE-2026-38699.git","has_code":true,"age_days":39}]},{"cve_id":"CVE-2026-38699","repositories":[{"id":1241678513,"name":"CVE-2026-38698-and-CVE-2026-38699","full_name":"vital-information-resource-under-siege/CVE-2026-38698-and-CVE-2026-38699","html_url":"https://github.com/vital-information-resource-under-siege/CVE-2026-38698-and-CVE-2026-38699","description":"Technical details and publication about CVE-2026-38698 and CVE-2026-38699","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-17T18:22:18Z","pushed_at":"2026-05-17T18:22:14Z","created_at":"2026-05-17T17:24:29Z","topics":[],"owner":{"login":"vital-information-resource-under-siege","html_url":"https://github.com/vital-information-resource-under-siege"},"clone_url":"https://github.com/vital-information-resource-under-siege/CVE-2026-38698-and-CVE-2026-38699.git","has_code":true,"age_days":39}]},{"cve_id":"CVE-2026-38763","repositories":[{"id":1245250368,"name":"CVE-2026-38763","full_name":"D7EAD/CVE-2026-38763","html_url":"https://github.com/D7EAD/CVE-2026-38763","description":"An issue in Unistal Systems Pvt. Ltd. Protegent 360 v2.0.0.4 allows a local attacker to cause a denial of service in the kernel.","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-05-21T03:47:27Z","pushed_at":"2026-05-21T03:47:02Z","created_at":"2026-05-21T03:47:01Z","topics":[],"owner":{"login":"D7EAD","html_url":"https://github.com/D7EAD"},"clone_url":"https://github.com/D7EAD/CVE-2026-38763.git","has_code":false,"age_days":35}]},{"cve_id":"CVE-2026-38764","repositories":[{"id":1245250893,"name":"CVE-2026-38764","full_name":"D7EAD/CVE-2026-38764","html_url":"https://github.com/D7EAD/CVE-2026-38764","description":"An issue in Unistal Systems Pvt. Ltd. Protegent 360 v2.0.0.4 allows a local attacker to escalate privileges via the kernel driver pgsecdl.sys","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-05-21T03:48:08Z","pushed_at":"2026-05-21T03:47:55Z","created_at":"2026-05-21T03:47:54Z","topics":[],"owner":{"login":"D7EAD","html_url":"https://github.com/D7EAD"},"clone_url":"https://github.com/D7EAD/CVE-2026-38764.git","has_code":false,"age_days":35}]},{"cve_id":"CVE-2026-38765","repositories":[{"id":1245251260,"name":"CVE-2026-38765","full_name":"D7EAD/CVE-2026-38765","html_url":"https://github.com/D7EAD/CVE-2026-38765","description":"An issue in Unistal Systems Pvt. Ltd. Protegent 360 v2.0.0.4 allows a local attacker to escalate privileges via the kernel driver pgsecdl.sys","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-05-21T03:48:43Z","pushed_at":"2026-05-21T03:48:36Z","created_at":"2026-05-21T03:48:35Z","topics":[],"owner":{"login":"D7EAD","html_url":"https://github.com/D7EAD"},"clone_url":"https://github.com/D7EAD/CVE-2026-38765.git","has_code":false,"age_days":35}]},{"cve_id":"CVE-2026-38766","repositories":[{"id":1245251777,"name":"CVE-2026-38766","full_name":"D7EAD/CVE-2026-38766","html_url":"https://github.com/D7EAD/CVE-2026-38766","description":"An issue in Unistal Systems Pvt. Ltd. Protegent 360 v2.0.0.4 allows a local attacker to escalate privileges via a kernel mode driver.","stargazers_count":2,"forks_count":0,"language":"","updated_at":"2026-05-22T07:59:05Z","pushed_at":"2026-05-21T03:49:33Z","created_at":"2026-05-21T03:49:32Z","topics":[],"owner":{"login":"D7EAD","html_url":"https://github.com/D7EAD"},"clone_url":"https://github.com/D7EAD/CVE-2026-38766.git","has_code":false,"age_days":35}]},{"cve_id":"CVE-2026-38812","repositories":[{"id":1269676224,"name":"CVE-2026-38812-RuoYi-SQL-Injection","full_name":"jjcjgo/CVE-2026-38812-RuoYi-SQL-Injection","html_url":"https://github.com/jjcjgo/CVE-2026-38812-RuoYi-SQL-Injection","description":"CVE-2026-38812 RuoYi v4.8.2 SQL Injection","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-15T01:54:40Z","pushed_at":"2026-06-15T01:54:36Z","created_at":"2026-06-15T01:53:07Z","topics":[],"owner":{"login":"jjcjgo","html_url":"https://github.com/jjcjgo"},"clone_url":"https://github.com/jjcjgo/CVE-2026-38812-RuoYi-SQL-Injection.git","has_code":false,"age_days":10}]},{"cve_id":"CVE-2026-3888","repositories":[{"id":1189100961,"name":"CVE-2026-3888-snap-confine-systemd-tmpfiles-LPE","full_name":"TheCyberGeek/CVE-2026-3888-snap-confine-systemd-tmpfiles-LPE","html_url":"https://github.com/TheCyberGeek/CVE-2026-3888-snap-confine-systemd-tmpfiles-LPE","description":"","stargazers_count":15,"forks_count":2,"language":"C","updated_at":"2026-06-07T19:42:12Z","pushed_at":"2026-03-23T03:00:22Z","created_at":"2026-03-23T01:19:14Z","topics":[],"owner":{"login":"TheCyberGeek","html_url":"https://github.com/TheCyberGeek"},"clone_url":"https://github.com/TheCyberGeek/CVE-2026-3888-snap-confine-systemd-tmpfiles-LPE.git","has_code":true,"age_days":94},{"id":1189856101,"name":"CVE-2026-3888","full_name":"nomaisthere/CVE-2026-3888","html_url":"https://github.com/nomaisthere/CVE-2026-3888","description":"Linux LPE via snap-confine + systemd-tmpfiles, explained in depth","stargazers_count":5,"forks_count":1,"language":"C","updated_at":"2026-06-04T21:13:09Z","pushed_at":"2026-04-02T10:32:24Z","created_at":"2026-03-23T18:27:12Z","topics":[],"owner":{"login":"nomaisthere","html_url":"https://github.com/nomaisthere"},"clone_url":"https://github.com/nomaisthere/CVE-2026-3888.git","has_code":true,"age_days":94},{"id":1187007043,"name":"CVE-2026-3888-PoC","full_name":"netw0rk7/CVE-2026-3888-PoC","html_url":"https://github.com/netw0rk7/CVE-2026-3888-PoC","description":"","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-04-15T15:04:22Z","pushed_at":"2026-03-23T03:02:52Z","created_at":"2026-03-20T08:30:33Z","topics":[],"owner":{"login":"netw0rk7","html_url":"https://github.com/netw0rk7"},"clone_url":"https://github.com/netw0rk7/CVE-2026-3888-PoC.git","has_code":true,"age_days":97},{"id":1185443343,"name":"CVE-2026-3888-POC-all-from-the-Qualys-platform.","full_name":"fevar54/CVE-2026-3888-POC-all-from-the-Qualys-platform.","html_url":"https://github.com/fevar54/CVE-2026-3888-POC-all-from-the-Qualys-platform.","description":"This script demonstrates a race condition vulnerability in snapd that allows a local, unprivileged user to gain root privileges. The exploit works by recreating snap's private /tmp directory after it's cleaned up by systemd-tmpfiles, and tricking snap-confine into bind-mounting malicious files into the snap's sandbox.","stargazers_count":2,"forks_count":1,"language":"Python","updated_at":"2026-03-19T09:30:14Z","pushed_at":"2026-03-18T15:38:55Z","created_at":"2026-03-18T15:33:57Z","topics":[],"owner":{"login":"fevar54","html_url":"https://github.com/fevar54"},"clone_url":"https://github.com/fevar54/CVE-2026-3888-POC-all-from-the-Qualys-platform..git","has_code":true,"age_days":99},{"id":1232357370,"name":"HTB-Snapped-Writeup","full_name":"karimelsheikh1/HTB-Snapped-Writeup","html_url":"https://github.com/karimelsheikh1/HTB-Snapped-Writeup","description":"HTB Snapped — Hard Linux machine writeup. CVE-2026-27944 (Nginx UI unauthenticated backup disclosure) chained with CVE-2026-3888 (snapd race condition LPE) to achieve full system compromise.","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-06-12T04:48:08Z","pushed_at":"2026-05-07T21:16:30Z","created_at":"2026-05-07T21:12:14Z","topics":[],"owner":{"login":"karimelsheikh1","html_url":"https://github.com/karimelsheikh1"},"clone_url":"https://github.com/karimelsheikh1/HTB-Snapped-Writeup.git","has_code":false,"age_days":48},{"id":1197321945,"name":"CVE-2026-3888","full_name":"DanielTangnes/CVE-2026-3888","html_url":"https://github.com/DanielTangnes/CVE-2026-3888","description":"","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-19T17:31:20Z","pushed_at":"2026-05-19T17:31:14Z","created_at":"2026-03-31T13:46:43Z","topics":[],"owner":{"login":"DanielTangnes","html_url":"https://github.com/DanielTangnes"},"clone_url":"https://github.com/DanielTangnes/CVE-2026-3888.git","has_code":true,"age_days":86},{"id":1185829636,"name":"Ubuntu-CVE-2026-3888-patcher","full_name":"Many-Hat-Group/Ubuntu-CVE-2026-3888-patcher","html_url":"https://github.com/Many-Hat-Group/Ubuntu-CVE-2026-3888-patcher","description":"This is a script designed for deployment on ubuntu instances patching the CVE-2026-3888 exploit ","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-03-19T01:54:52Z","pushed_at":"2026-03-19T01:54:49Z","created_at":"2026-03-19T01:33:42Z","topics":[],"owner":{"login":"Many-Hat-Group","html_url":"https://github.com/Many-Hat-Group"},"clone_url":"https://github.com/Many-Hat-Group/Ubuntu-CVE-2026-3888-patcher.git","has_code":true,"age_days":98},{"id":1236129375,"name":"CVE-2026-3888-fixed","full_name":"hewhomusntbenamed/CVE-2026-3888-fixed","html_url":"https://github.com/hewhomusntbenamed/CVE-2026-3888-fixed","description":"CVE-2026-3888 — snap-confine / systemd-tmpfiles SUID LPE (fixed race_pid.txt issue)","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-12T01:20:58Z","pushed_at":"2026-05-12T01:20:53Z","created_at":"2026-05-12T01:20:08Z","topics":[],"owner":{"login":"hewhomusntbenamed","html_url":"https://github.com/hewhomusntbenamed"},"clone_url":"https://github.com/hewhomusntbenamed/CVE-2026-3888-fixed.git","has_code":true,"age_days":44}]},{"cve_id":"CVE-2026-3891","repositories":[{"id":1193349059,"name":"CVE-2026-3891","full_name":"Nxploited/CVE-2026-3891","html_url":"https://github.com/Nxploited/CVE-2026-3891","description":"Pix for WooCommerce \u003c= 1.5.0 - Unauthenticated Arbitrary File Upload","stargazers_count":5,"forks_count":2,"language":"Python","updated_at":"2026-05-20T09:34:47Z","pushed_at":"2026-03-27T06:09:36Z","created_at":"2026-03-27T06:00:10Z","topics":[],"owner":{"login":"Nxploited","html_url":"https://github.com/Nxploited"},"clone_url":"https://github.com/Nxploited/CVE-2026-3891.git","has_code":true,"age_days":90},{"id":1181170442,"name":"CVE-2026-3891","full_name":"joshuavanderpoll/CVE-2026-3891","html_url":"https://github.com/joshuavanderpoll/CVE-2026-3891","description":"Pix for WooCommerce \u003c= 1.5.0 - Unauthenticated Arbitrary File Upload (CVE-2026-3891) PoC","stargazers_count":5,"forks_count":1,"language":"Python","updated_at":"2026-06-18T08:45:39Z","pushed_at":"2026-03-13T21:20:37Z","created_at":"2026-03-13T20:33:42Z","topics":["cve","cve-2026-3891","exploit","exploits","pentest-tool","pentesting","python","rce","security","security-tools","vulnerabilities","vulnerability","wordpress","wordpress-exploit"],"owner":{"login":"joshuavanderpoll","html_url":"https://github.com/joshuavanderpoll"},"clone_url":"https://github.com/joshuavanderpoll/CVE-2026-3891.git","has_code":true,"age_days":103},{"id":1212199227,"name":"Mass-Scanner-CVE-2026-3891","full_name":"AnggaTechI/Mass-Scanner-CVE-2026-3891","html_url":"https://github.com/AnggaTechI/Mass-Scanner-CVE-2026-3891","description":"CVE-2026-3891 Mass Scanning","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-04-17T21:14:50Z","pushed_at":"2026-04-16T06:46:48Z","created_at":"2026-04-16T06:43:25Z","topics":[],"owner":{"login":"AnggaTechI","html_url":"https://github.com/AnggaTechI"},"clone_url":"https://github.com/AnggaTechI/Mass-Scanner-CVE-2026-3891.git","has_code":true,"age_days":70},{"id":1255017856,"name":"CVE-2026-3891-Linux","full_name":"willygailo/CVE-2026-3891-Linux","html_url":"https://github.com/willygailo/CVE-2026-3891-Linux","description":"⚡ This tool exploits CVE-2026-3891, a critical unauthenticated arbitrary file upload vulnerability found in the Pix for WooCommerce WordPress plugin (versions ≤ 1.5.0).","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-31T09:49:21Z","pushed_at":"2026-05-31T09:45:30Z","created_at":"2026-05-31T09:45:25Z","topics":[],"owner":{"login":"willygailo","html_url":"https://github.com/willygailo"},"clone_url":"https://github.com/willygailo/CVE-2026-3891-Linux.git","has_code":true,"age_days":25}]},{"cve_id":"CVE-2026-38934","repositories":[{"id":1222327303,"name":"diskoverdata-cve-writeups","full_name":"VadlaReddySai/diskoverdata-cve-writeups","html_url":"https://github.com/VadlaReddySai/diskoverdata-cve-writeups","description":"Multiple CVEs (CVE-2026-38934, CVE-2026-38935, CVE-2026-38936) discovered in diskover-community including CSRF and XSS vulnerabilities with proof-of-concept and impact analysis.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-27T09:37:52Z","pushed_at":"2026-04-27T09:37:49Z","created_at":"2026-04-27T08:57:53Z","topics":[],"owner":{"login":"VadlaReddySai","html_url":"https://github.com/VadlaReddySai"},"clone_url":"https://github.com/VadlaReddySai/diskoverdata-cve-writeups.git","has_code":false,"age_days":59}]},{"cve_id":"CVE-2026-38935","repositories":[{"id":1222327303,"name":"diskoverdata-cve-writeups","full_name":"VadlaReddySai/diskoverdata-cve-writeups","html_url":"https://github.com/VadlaReddySai/diskoverdata-cve-writeups","description":"Multiple CVEs (CVE-2026-38934, CVE-2026-38935, CVE-2026-38936) discovered in diskover-community including CSRF and XSS vulnerabilities with proof-of-concept and impact analysis.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-27T09:37:52Z","pushed_at":"2026-04-27T09:37:49Z","created_at":"2026-04-27T08:57:53Z","topics":[],"owner":{"login":"VadlaReddySai","html_url":"https://github.com/VadlaReddySai"},"clone_url":"https://github.com/VadlaReddySai/diskoverdata-cve-writeups.git","has_code":false,"age_days":59}]},{"cve_id":"CVE-2026-38936","repositories":[{"id":1222327303,"name":"diskoverdata-cve-writeups","full_name":"VadlaReddySai/diskoverdata-cve-writeups","html_url":"https://github.com/VadlaReddySai/diskoverdata-cve-writeups","description":"Multiple CVEs (CVE-2026-38934, CVE-2026-38935, CVE-2026-38936) discovered in diskover-community including CSRF and XSS vulnerabilities with proof-of-concept and impact analysis.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-27T09:37:52Z","pushed_at":"2026-04-27T09:37:49Z","created_at":"2026-04-27T08:57:53Z","topics":[],"owner":{"login":"VadlaReddySai","html_url":"https://github.com/VadlaReddySai"},"clone_url":"https://github.com/VadlaReddySai/diskoverdata-cve-writeups.git","has_code":false,"age_days":59}]},{"cve_id":"CVE-2026-38945","repositories":[{"id":1224405674,"name":"CVE-2026-38945","full_name":"Wise-Security/CVE-2026-38945","html_url":"https://github.com/Wise-Security/CVE-2026-38945","description":"","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-16T17:35:37Z","pushed_at":"2026-05-16T17:35:33Z","created_at":"2026-04-29T08:48:53Z","topics":[],"owner":{"login":"Wise-Security","html_url":"https://github.com/Wise-Security"},"clone_url":"https://github.com/Wise-Security/CVE-2026-38945.git","has_code":true,"age_days":57}]},{"cve_id":"CVE-2026-39023","repositories":[{"id":1263754959,"name":"CVE-2026-39023","full_name":"PierreAdams/CVE-2026-39023","html_url":"https://github.com/PierreAdams/CVE-2026-39023","description":" RCE RESPONSIVE filemanager v.9.14.0","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-09T08:56:05Z","pushed_at":"2026-06-09T08:55:25Z","created_at":"2026-06-09T08:34:21Z","topics":[],"owner":{"login":"PierreAdams","html_url":"https://github.com/PierreAdams"},"clone_url":"https://github.com/PierreAdams/CVE-2026-39023.git","has_code":true,"age_days":16}]},{"cve_id":"CVE-2026-39031","repositories":[{"id":1277189317,"name":"cve-2026-39031-lansweeper-lsrunase2-lsencrypt2","full_name":"user6400/cve-2026-39031-lansweeper-lsrunase2-lsencrypt2","html_url":"https://github.com/user6400/cve-2026-39031-lansweeper-lsrunase2-lsencrypt2","description":"CVE-2026-39031 — offline plaintext password recovery for Lansweeper lsrunase 2.0 / lsencrypt 2.0 via a hardcoded RC4 key. PoC + technical advisory.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-22T17:09:11Z","pushed_at":"2026-06-22T17:09:06Z","created_at":"2026-06-22T17:02:25Z","topics":[],"owner":{"login":"user6400","html_url":"https://github.com/user6400"},"clone_url":"https://github.com/user6400/cve-2026-39031-lansweeper-lsrunase2-lsencrypt2.git","has_code":true,"age_days":3}]},{"cve_id":"CVE-2026-39047","repositories":[{"id":1197966152,"name":"CVE-2026-39047","full_name":"AzhariRamadhan/CVE-2026-39047","html_url":"https://github.com/AzhariRamadhan/CVE-2026-39047","description":"submition CVE","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-21T10:24:52Z","pushed_at":"2026-04-01T02:59:26Z","created_at":"2026-04-01T02:42:24Z","topics":[],"owner":{"login":"AzhariRamadhan","html_url":"https://github.com/AzhariRamadhan"},"clone_url":"https://github.com/AzhariRamadhan/CVE-2026-39047.git","has_code":true,"age_days":85}]},{"cve_id":"CVE-2026-3909","repositories":[{"id":1206630131,"name":"CVE-2026-3909","full_name":"jaf0rk/CVE-2026-3909","html_url":"https://github.com/jaf0rk/CVE-2026-3909","description":"","stargazers_count":2,"forks_count":0,"language":"HTML","updated_at":"2026-06-08T22:26:28Z","pushed_at":"2026-04-18T03:10:18Z","created_at":"2026-04-10T05:20:07Z","topics":[],"owner":{"login":"jaf0rk","html_url":"https://github.com/jaf0rk"},"clone_url":"https://github.com/jaf0rk/CVE-2026-3909.git","has_code":true,"age_days":76}]},{"cve_id":"CVE-2026-39107","repositories":[{"id":1245017922,"name":"CVE-2026-39107","full_name":"MGTx2/CVE-2026-39107","html_url":"https://github.com/MGTx2/CVE-2026-39107","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-07T19:25:56Z","pushed_at":"2026-06-03T20:41:22Z","created_at":"2026-05-20T20:36:36Z","topics":[],"owner":{"login":"MGTx2","html_url":"https://github.com/MGTx2"},"clone_url":"https://github.com/MGTx2/CVE-2026-39107.git","has_code":false,"age_days":35}]},{"cve_id":"CVE-2026-39253","repositories":[{"id":1278056512,"name":"CVE-2026-39253-Advisory","full_name":"timtimxs/CVE-2026-39253-Advisory","html_url":"https://github.com/timtimxs/CVE-2026-39253-Advisory","description":"Public advisory for CVE-2026-39253, addressing an insecure deserialisation in Pivotal CRM 6.6.04.08 allowing remote code execution via unsafe BinaryFormatter usage in Smart Client and PBS components. Includes vulnerability details, affected versions, and remediation guidance.","stargazers_count":0,"forks_count":0,"language":"HTML","updated_at":"2026-06-23T12:33:45Z","pushed_at":"2026-06-23T12:33:41Z","created_at":"2026-06-23T12:26:03Z","topics":[],"owner":{"login":"timtimxs","html_url":"https://github.com/timtimxs"},"clone_url":"https://github.com/timtimxs/CVE-2026-39253-Advisory.git","has_code":true,"age_days":2}]},{"cve_id":"CVE-2026-39259","repositories":[{"id":1274391118,"name":"CVE-2026-39259","full_name":"yousif-IQ/CVE-2026-39259","html_url":"https://github.com/yousif-IQ/CVE-2026-39259","description":"CVE-2026-39259","stargazers_count":2,"forks_count":0,"language":"","updated_at":"2026-06-19T13:46:24Z","pushed_at":"2026-06-19T13:46:18Z","created_at":"2026-06-19T13:15:07Z","topics":[],"owner":{"login":"yousif-IQ","html_url":"https://github.com/yousif-IQ"},"clone_url":"https://github.com/yousif-IQ/CVE-2026-39259.git","has_code":false,"age_days":6}]},{"cve_id":"CVE-2026-39292","repositories":[{"id":1252591678,"name":"CVE-2026-39292","full_name":"krishnadevpmelevila/CVE-2026-39292","html_url":"https://github.com/krishnadevpmelevila/CVE-2026-39292","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-28T17:14:08Z","pushed_at":"2026-05-28T17:14:04Z","created_at":"2026-05-28T17:12:55Z","topics":[],"owner":{"login":"krishnadevpmelevila","html_url":"https://github.com/krishnadevpmelevila"},"clone_url":"https://github.com/krishnadevpmelevila/CVE-2026-39292.git","has_code":false,"age_days":28}]},{"cve_id":"CVE-2026-39324","repositories":[{"id":1203330946,"name":"CVE-2026-39324","full_name":"sm1ee/CVE-2026-39324","html_url":"https://github.com/sm1ee/CVE-2026-39324","description":"CVE-2026-39324: Rack Session auth bypass PoC","stargazers_count":0,"forks_count":0,"language":"Ruby","updated_at":"2026-04-07T21:41:23Z","pushed_at":"2026-04-07T21:41:20Z","created_at":"2026-04-07T00:16:26Z","topics":["cve-2026-39324","poc","rack-session"],"owner":{"login":"sm1ee","html_url":"https://github.com/sm1ee"},"clone_url":"https://github.com/sm1ee/CVE-2026-39324.git","has_code":true,"age_days":79}]},{"cve_id":"CVE-2026-39338","repositories":[{"id":1208386289,"name":"Security-Research-and-CVE","full_name":"HackinKraken/Security-Research-and-CVE","html_url":"https://github.com/HackinKraken/Security-Research-and-CVE","description":"Security research and CVE write-ups by Steven Amador (HackinKraken) - CVE-2022-2650, CVE-2026-39338","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-23T20:36:42Z","pushed_at":"2026-06-23T20:35:20Z","created_at":"2026-04-12T07:49:34Z","topics":["bug-bounty","cve","penetration-testing","security-research","vulnerability-disclosure"],"owner":{"login":"HackinKraken","html_url":"https://github.com/HackinKraken"},"clone_url":"https://github.com/HackinKraken/Security-Research-and-CVE.git","has_code":false,"age_days":74}]},{"cve_id":"CVE-2026-39363","repositories":[{"id":1205051716,"name":"CVE-2026-39363","full_name":"Firebasky/CVE-2026-39363","html_url":"https://github.com/Firebasky/CVE-2026-39363","description":"CVE-2026-39363 AI  analysis","stargazers_count":6,"forks_count":0,"language":"Python","updated_at":"2026-05-10T07:42:41Z","pushed_at":"2026-04-08T15:35:29Z","created_at":"2026-04-08T15:31:49Z","topics":[],"owner":{"login":"Firebasky","html_url":"https://github.com/Firebasky"},"clone_url":"https://github.com/Firebasky/CVE-2026-39363.git","has_code":true,"age_days":78},{"id":1230493065,"name":"CVE-2026-39363","full_name":"f4s1on/CVE-2026-39363","html_url":"https://github.com/f4s1on/CVE-2026-39363","description":"CVE-2026-39363批量检测","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-06T04:03:22Z","pushed_at":"2026-05-06T04:03:18Z","created_at":"2026-05-06T03:42:43Z","topics":[],"owner":{"login":"f4s1on","html_url":"https://github.com/f4s1on"},"clone_url":"https://github.com/f4s1on/CVE-2026-39363.git","has_code":true,"age_days":50}]},{"cve_id":"CVE-2026-39371","repositories":[{"id":1203346744,"name":"CVE-2026-39371","full_name":"zebbernCVE/CVE-2026-39371","html_url":"https://github.com/zebbernCVE/CVE-2026-39371","description":"Advisory for rwsdk sdk ⌯⌲ 5000 weekly downloads","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-10T15:28:41Z","pushed_at":"2026-04-08T02:50:48Z","created_at":"2026-04-07T00:47:27Z","topics":["cve-2026-39371","cwe-352","high"],"owner":{"login":"zebbernCVE","html_url":"https://github.com/zebbernCVE"},"clone_url":"https://github.com/zebbernCVE/CVE-2026-39371.git","has_code":false,"age_days":79}]},{"cve_id":"CVE-2026-39376","repositories":[{"id":1206642045,"name":"CVE-2026-39376","full_name":"redyank/CVE-2026-39376","html_url":"https://github.com/redyank/CVE-2026-39376","description":"CVE-2026-39376(Infinite redirect loop DoS via meta-refresh chain)","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-10T05:41:00Z","pushed_at":"2026-04-10T05:40:38Z","created_at":"2026-04-10T05:39:38Z","topics":[],"owner":{"login":"redyank","html_url":"https://github.com/redyank"},"clone_url":"https://github.com/redyank/CVE-2026-39376.git","has_code":false,"age_days":76}]},{"cve_id":"CVE-2026-39387","repositories":[{"id":1226967915,"name":"CVE-2026-39387","full_name":"xp1tr/CVE-2026-39387","html_url":"https://github.com/xp1tr/CVE-2026-39387","description":"BoidCMS \u003c= 2.1.2 RCE Exploit","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-04T11:40:03Z","pushed_at":"2026-05-04T11:39:59Z","created_at":"2026-05-02T03:20:24Z","topics":[],"owner":{"login":"xp1tr","html_url":"https://github.com/xp1tr"},"clone_url":"https://github.com/xp1tr/CVE-2026-39387.git","has_code":true,"age_days":54}]},{"cve_id":"CVE-2026-39440","repositories":[{"id":1228657014,"name":"cve-2026-39440-funnelforms-fix","full_name":"3ele-projects/cve-2026-39440-funnelforms-fix","html_url":"https://github.com/3ele-projects/cve-2026-39440-funnelforms-fix","description":"","stargazers_count":0,"forks_count":0,"language":"PHP","updated_at":"2026-05-04T08:35:13Z","pushed_at":"2026-05-04T08:35:08Z","created_at":"2026-05-04T08:33:06Z","topics":[],"owner":{"login":"3ele-projects","html_url":"https://github.com/3ele-projects"},"clone_url":"https://github.com/3ele-projects/cve-2026-39440-funnelforms-fix.git","has_code":true,"age_days":52}]},{"cve_id":"CVE-2026-39636","repositories":[{"id":1242142526,"name":"CVE-2026-39636-vulnerability-exp","full_name":"CatchCatOoO/CVE-2026-39636-vulnerability-exp","html_url":"https://github.com/CatchCatOoO/CVE-2026-39636-vulnerability-exp","description":"暂无","stargazers_count":3,"forks_count":0,"language":"Python","updated_at":"2026-05-24T20:17:39Z","pushed_at":"2026-05-18T07:28:22Z","created_at":"2026-05-18T07:01:22Z","topics":[],"owner":{"login":"CatchCatOoO","html_url":"https://github.com/CatchCatOoO"},"clone_url":"https://github.com/CatchCatOoO/CVE-2026-39636-vulnerability-exp.git","has_code":true,"age_days":38}]},{"cve_id":"CVE-2026-39676","repositories":[{"id":1276343047,"name":"Cve-2026-39676","full_name":"OkamiSpade/Cve-2026-39676","html_url":"https://github.com/OkamiSpade/Cve-2026-39676","description":"Version: Download Manager 3.3.5.2 Title: Missing Authorization - Unauthenticated IDOR Exploit","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-21T21:36:05Z","pushed_at":"2026-06-21T21:36:01Z","created_at":"2026-06-21T21:28:37Z","topics":[],"owner":{"login":"OkamiSpade","html_url":"https://github.com/OkamiSpade"},"clone_url":"https://github.com/OkamiSpade/Cve-2026-39676.git","has_code":true,"age_days":3}]},{"cve_id":"CVE-2026-39808","repositories":[{"id":1217442068,"name":"FortiSandbox-RCE-Exploit-CVE-2026-39808","full_name":"ynsmroztas/FortiSandbox-RCE-Exploit-CVE-2026-39808","html_url":"https://github.com/ynsmroztas/FortiSandbox-RCE-Exploit-CVE-2026-39808","description":"FortiSandbox RCE Scanner — CVE-2026-39808","stargazers_count":25,"forks_count":8,"language":"Python","updated_at":"2026-05-26T08:22:57Z","pushed_at":"2026-04-21T22:32:02Z","created_at":"2026-04-21T22:21:48Z","topics":[],"owner":{"login":"ynsmroztas","html_url":"https://github.com/ynsmroztas"},"clone_url":"https://github.com/ynsmroztas/FortiSandbox-RCE-Exploit-CVE-2026-39808.git","has_code":true,"age_days":64},{"id":1211560229,"name":"CVE-2026-39808","full_name":"samu-delucas/CVE-2026-39808","html_url":"https://github.com/samu-delucas/CVE-2026-39808","description":"PoC for Unauthenticated RCE in FortiSandbox via CVE-2026-39808","stargazers_count":7,"forks_count":1,"language":"","updated_at":"2026-04-27T12:19:19Z","pushed_at":"2026-04-15T14:30:56Z","created_at":"2026-04-15T14:10:25Z","topics":["cve","cve-2026-39808","cve-poc","fortinet","fortisandbox","poc"],"owner":{"login":"samu-delucas","html_url":"https://github.com/samu-delucas"},"clone_url":"https://github.com/samu-delucas/CVE-2026-39808.git","has_code":false,"age_days":71},{"id":1214217573,"name":"CVE-2026-39808","full_name":"0xBlackash/CVE-2026-39808","html_url":"https://github.com/0xBlackash/CVE-2026-39808","description":"CVE-2026-39808","stargazers_count":1,"forks_count":2,"language":"Python","updated_at":"2026-06-12T11:30:01Z","pushed_at":"2026-04-23T22:34:07Z","created_at":"2026-04-18T09:15:36Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-39808.git","has_code":true,"age_days":68},{"id":1211424697,"name":"CVE-2026-39808","full_name":"Lechansky/CVE-2026-39808","html_url":"https://github.com/Lechansky/CVE-2026-39808","description":"Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') (CWE-78)","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-15T12:06:15Z","pushed_at":"2026-04-15T12:06:11Z","created_at":"2026-04-15T11:33:21Z","topics":[],"owner":{"login":"Lechansky","html_url":"https://github.com/Lechansky"},"clone_url":"https://github.com/Lechansky/CVE-2026-39808.git","has_code":false,"age_days":71},{"id":1273739160,"name":"CVE-2026-39808","full_name":"error-inside/CVE-2026-39808","html_url":"https://github.com/error-inside/CVE-2026-39808","description":"Fortinet FortiSandbox 4.4.0-4.4.8 - OS Command Injection via tracer-behavior Endpoint","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-18T22:17:28Z","pushed_at":"2026-06-18T22:17:24Z","created_at":"2026-06-18T20:32:26Z","topics":[],"owner":{"login":"error-inside","html_url":"https://github.com/error-inside"},"clone_url":"https://github.com/error-inside/CVE-2026-39808.git","has_code":true,"age_days":6},{"id":1271757192,"name":"CVE-2026-39808","full_name":"HORKimhab/CVE-2026-39808","html_url":"https://github.com/HORKimhab/CVE-2026-39808","description":"CVE-2026-39808 - Fortinet Sandbox - Draft","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-17T01:42:09Z","pushed_at":"2026-06-17T01:42:06Z","created_at":"2026-06-17T01:42:02Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-39808.git","has_code":false,"age_days":8}]},{"cve_id":"CVE-2026-39813","repositories":[{"id":1219399901,"name":"CVE-2026-39813","full_name":"0xBlackash/CVE-2026-39813","html_url":"https://github.com/0xBlackash/CVE-2026-39813","description":"CVE-2026-39813","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-23T21:31:01Z","pushed_at":"2026-04-23T21:30:57Z","created_at":"2026-04-23T20:52:05Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-39813.git","has_code":false,"age_days":62},{"id":1271756816,"name":"CVE-2026-39813","full_name":"HORKimhab/CVE-2026-39813","html_url":"https://github.com/HORKimhab/CVE-2026-39813","description":"CVE-2026-39813 - Fortinet Sandbox - Draft ","stargazers_count":0,"forks_count":1,"language":"","updated_at":"2026-06-17T01:41:24Z","pushed_at":"2026-06-17T01:41:20Z","created_at":"2026-06-17T01:41:17Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-39813.git","has_code":false,"age_days":8}]},{"cve_id":"CVE-2026-39816","repositories":[{"id":1224028810,"name":"nifi-CVE-2026-39816-poc","full_name":"ZeroPathAI/nifi-CVE-2026-39816-poc","html_url":"https://github.com/ZeroPathAI/nifi-CVE-2026-39816-poc","description":"POC for CVE-2026-39816 which allows NiFi users without execute code permissions to run arbitrary scripts","stargazers_count":1,"forks_count":1,"language":"Python","updated_at":"2026-05-11T18:06:39Z","pushed_at":"2026-05-08T22:28:58Z","created_at":"2026-04-28T22:25:29Z","topics":[],"owner":{"login":"ZeroPathAI","html_url":"https://github.com/ZeroPathAI"},"clone_url":"https://github.com/ZeroPathAI/nifi-CVE-2026-39816-poc.git","has_code":true,"age_days":57}]},{"cve_id":"CVE-2026-39842","repositories":[{"id":1213350194,"name":"CVE-2026-39842","full_name":"keraattin/CVE-2026-39842","html_url":"https://github.com/keraattin/CVE-2026-39842","description":"Critical remote code execution vulnerability in OpenRemote's Rules Engine allows authenticated users with `write:rules` role to execute arbitrary code on the server with root privileges.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-17T09:37:17Z","pushed_at":"2026-04-17T09:37:13Z","created_at":"2026-04-17T09:36:05Z","topics":[],"owner":{"login":"keraattin","html_url":"https://github.com/keraattin"},"clone_url":"https://github.com/keraattin/CVE-2026-39842.git","has_code":true,"age_days":69}]},{"cve_id":"CVE-2026-39866","repositories":[{"id":1207902860,"name":"CVE-2026-39866","full_name":"abhayclasher/CVE-2026-39866","html_url":"https://github.com/abhayclasher/CVE-2026-39866","description":"","stargazers_count":0,"forks_count":0,"language":"JavaScript","updated_at":"2026-04-11T15:24:14Z","pushed_at":"2026-04-11T15:24:08Z","created_at":"2026-04-11T15:01:15Z","topics":[],"owner":{"login":"abhayclasher","html_url":"https://github.com/abhayclasher"},"clone_url":"https://github.com/abhayclasher/CVE-2026-39866.git","has_code":true,"age_days":75}]},{"cve_id":"CVE-2026-39912","repositories":[{"id":1206263773,"name":"CVE-2026-39912","full_name":"Chocapikk/CVE-2026-39912","html_url":"https://github.com/Chocapikk/CVE-2026-39912","description":"Xboard / V2Board Unauth Account Takeover - Magic Link Token Leak (CVE-2026-39912)","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-06-22T14:06:17Z","pushed_at":"2026-04-09T18:34:41Z","created_at":"2026-04-09T18:34:39Z","topics":["account-takeover","authentication-bypass","cve-2026-39912","exploit","proof-of-concept","security","v2board","xboard"],"owner":{"login":"Chocapikk","html_url":"https://github.com/Chocapikk"},"clone_url":"https://github.com/Chocapikk/CVE-2026-39912.git","has_code":true,"age_days":77}]},{"cve_id":"CVE-2026-39949","repositories":[{"id":1271607688,"name":"CVE-2026-39949","full_name":"lukehebe/CVE-2026-39949","html_url":"https://github.com/lukehebe/CVE-2026-39949","description":"Cacti ≤ 1.2.30 Auth RCE - Host variable injection","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-21T21:42:27Z","pushed_at":"2026-06-21T21:42:24Z","created_at":"2026-06-16T20:48:48Z","topics":[],"owner":{"login":"lukehebe","html_url":"https://github.com/lukehebe"},"clone_url":"https://github.com/lukehebe/CVE-2026-39949.git","has_code":true,"age_days":8}]},{"cve_id":"CVE-2026-39973","repositories":[{"id":1225854128,"name":"CVE-2026-39973-PoC","full_name":"frawlaboy/CVE-2026-39973-PoC","html_url":"https://github.com/frawlaboy/CVE-2026-39973-PoC","description":"Proof of concept (builder) for CVE-2026-39973 (apktool)","stargazers_count":1,"forks_count":0,"language":"C#","updated_at":"2026-05-01T00:46:45Z","pushed_at":"2026-04-30T18:42:22Z","created_at":"2026-04-30T17:58:46Z","topics":["cve","cve-2026-39973","path-traversal","proof-of-concept","vulnerability"],"owner":{"login":"frawlaboy","html_url":"https://github.com/frawlaboy"},"clone_url":"https://github.com/frawlaboy/CVE-2026-39973-PoC.git","has_code":true,"age_days":56}]},{"cve_id":"CVE-2026-39983","repositories":[{"id":1207095013,"name":"CVE-2026-39983","full_name":"zebbernCVE/CVE-2026-39983","html_url":"https://github.com/zebbernCVE/CVE-2026-39983","description":"Advisory for basic-ftp ⌯⌲ 20 mill weekly downloads","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-15T11:27:54Z","pushed_at":"2026-04-10T15:13:33Z","created_at":"2026-04-10T15:11:48Z","topics":["cve-2026-39983","cwe-93","high","zebbern"],"owner":{"login":"zebbernCVE","html_url":"https://github.com/zebbernCVE"},"clone_url":"https://github.com/zebbernCVE/CVE-2026-39983.git","has_code":false,"age_days":76}]},{"cve_id":"CVE-2026-39987","repositories":[{"id":1221025893,"name":"CVE-2026-39987","full_name":"h3raklez/CVE-2026-39987","html_url":"https://github.com/h3raklez/CVE-2026-39987","description":"Marimo Pre-Auth RCE","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-06-01T03:30:31Z","pushed_at":"2026-04-25T16:53:05Z","created_at":"2026-04-25T16:50:34Z","topics":[],"owner":{"login":"h3raklez","html_url":"https://github.com/h3raklez"},"clone_url":"https://github.com/h3raklez/CVE-2026-39987.git","has_code":false,"age_days":61},{"id":1248492916,"name":"CVE-2026-39987-POC","full_name":"M3PH1569/CVE-2026-39987-POC","html_url":"https://github.com/M3PH1569/CVE-2026-39987-POC","description":"CVE-2026-39987 Exploitation Tool - Marimo \u003c 0.23.0 Pre-Auth RCE (WebSocket)","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-27T00:26:29Z","pushed_at":"2026-05-24T19:30:10Z","created_at":"2026-05-24T18:00:33Z","topics":[],"owner":{"login":"M3PH1569","html_url":"https://github.com/M3PH1569"},"clone_url":"https://github.com/M3PH1569/CVE-2026-39987-POC.git","has_code":true,"age_days":32},{"id":1221379929,"name":"CVE-2026-39987-lab-or-marimo-cve-lab","full_name":"Dhiaelhak-Rached/CVE-2026-39987-lab-or-marimo-cve-lab","html_url":"https://github.com/Dhiaelhak-Rached/CVE-2026-39987-lab-or-marimo-cve-lab","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-26T05:57:47Z","pushed_at":"2026-04-26T05:57:44Z","created_at":"2026-04-26T05:54:04Z","topics":[],"owner":{"login":"Dhiaelhak-Rached","html_url":"https://github.com/Dhiaelhak-Rached"},"clone_url":"https://github.com/Dhiaelhak-Rached/CVE-2026-39987-lab-or-marimo-cve-lab.git","has_code":true,"age_days":60},{"id":1214164588,"name":"CVE-2026-39987","full_name":"Nxploited/CVE-2026-39987","html_url":"https://github.com/Nxploited/CVE-2026-39987","description":"marimo is a reactive Python notebook. Prior to 0.23.0, Marimo has a Pre-Auth RCE vulnerability","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-04-18T07:51:08Z","pushed_at":"2026-04-18T07:51:05Z","created_at":"2026-04-18T07:46:43Z","topics":[],"owner":{"login":"Nxploited","html_url":"https://github.com/Nxploited"},"clone_url":"https://github.com/Nxploited/CVE-2026-39987.git","has_code":true,"age_days":68},{"id":1211261937,"name":"CVE-2026-39987","full_name":"keraattin/CVE-2026-39987","html_url":"https://github.com/keraattin/CVE-2026-39987","description":"CVE-2026-39987: Marimo Python Notebook Pre-Auth RCE (CVSS 9.3). Python \u0026 Nmap NSE detection scripts. Missing authentication on /terminal/ws WebSocket endpoint gives attackers a full PTY shell without any credentials. Exploited in the wild within 10 hours of disclosure. Fixed in Marimo 0.23.0.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-15T08:17:40Z","pushed_at":"2026-04-15T08:12:41Z","created_at":"2026-04-15T08:09:54Z","topics":["cve-2026-39987","cybersecurity","marimo","nmap-scripts","nse-scripts","pre-auth-rce","python-notebook","remote-code-execution","vulnerability-detection","websocket"],"owner":{"login":"keraattin","html_url":"https://github.com/keraattin"},"clone_url":"https://github.com/keraattin/CVE-2026-39987.git","has_code":true,"age_days":71},{"id":1209930346,"name":"CVE-2026-39987_exploit","full_name":"mki9/CVE-2026-39987_exploit","html_url":"https://github.com/mki9/CVE-2026-39987_exploit","description":"","stargazers_count":0,"forks_count":0,"language":"HTML","updated_at":"2026-04-14T01:23:08Z","pushed_at":"2026-04-14T01:23:04Z","created_at":"2026-04-13T23:34:47Z","topics":[],"owner":{"login":"mki9","html_url":"https://github.com/mki9"},"clone_url":"https://github.com/mki9/CVE-2026-39987_exploit.git","has_code":true,"age_days":72},{"id":1209724587,"name":"marimo_CVE-2026-39987_RCE_PoC","full_name":"fevar54/marimo_CVE-2026-39987_RCE_PoC","html_url":"https://github.com/fevar54/marimo_CVE-2026-39987_RCE_PoC","description":"CVE-2026-39987 - Marimo \u003c 0.23.0 Pre-Auth RCE (WebSocket) PoC de explotación - Conecta a /terminal/ws sin autenticación Author: Fevar54 Date: 2026-04-13 Severity: CRITICAL CVSS: 9.3","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-13T18:14:23Z","pushed_at":"2026-04-13T18:14:16Z","created_at":"2026-04-13T18:06:46Z","topics":[],"owner":{"login":"fevar54","html_url":"https://github.com/fevar54"},"clone_url":"https://github.com/fevar54/marimo_CVE-2026-39987_RCE_PoC.git","has_code":true,"age_days":73},{"id":1208872365,"name":"CVE-2026-39987","full_name":"0xBlackash/CVE-2026-39987","html_url":"https://github.com/0xBlackash/CVE-2026-39987","description":"CVE-2026-39987","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-04-13T07:46:30Z","pushed_at":"2026-04-13T07:46:26Z","created_at":"2026-04-12T21:12:35Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-39987.git","has_code":true,"age_days":73},{"id":1254147873,"name":"CVE-2026-39987","full_name":"HORKimhab/CVE-2026-39987","html_url":"https://github.com/HORKimhab/CVE-2026-39987","description":"CVE-2026-39987 - Draft","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-30T07:41:01Z","pushed_at":"2026-05-30T07:40:57Z","created_at":"2026-05-30T07:40:54Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-39987.git","has_code":false,"age_days":26},{"id":1240292298,"name":"CVE-2026-39987-marimo-rce","full_name":"0xdeadroot/CVE-2026-39987-marimo-rce","html_url":"https://github.com/0xdeadroot/CVE-2026-39987-marimo-rce","description":"CVE-2026-39987","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-16T01:40:10Z","pushed_at":"2026-05-16T01:40:06Z","created_at":"2026-05-16T01:10:27Z","topics":[],"owner":{"login":"0xdeadroot","html_url":"https://github.com/0xdeadroot"},"clone_url":"https://github.com/0xdeadroot/CVE-2026-39987-marimo-rce.git","has_code":true,"age_days":40},{"id":1228761041,"name":"CVE-2026-39987-Lab","full_name":"rootdirective-sec/CVE-2026-39987-Lab","html_url":"https://github.com/rootdirective-sec/CVE-2026-39987-Lab","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-04T11:00:03Z","pushed_at":"2026-05-04T10:58:01Z","created_at":"2026-05-04T10:54:32Z","topics":[],"owner":{"login":"rootdirective-sec","html_url":"https://github.com/rootdirective-sec"},"clone_url":"https://github.com/rootdirective-sec/CVE-2026-39987-Lab.git","has_code":true,"age_days":52},{"id":1256965504,"name":"CVE-2026-39987","full_name":"jenniferreire26/CVE-2026-39987","html_url":"https://github.com/jenniferreire26/CVE-2026-39987","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-02T08:37:14Z","pushed_at":"2026-06-02T08:37:12Z","created_at":"2026-06-02T08:37:09Z","topics":[],"owner":{"login":"jenniferreire26","html_url":"https://github.com/jenniferreire26"},"clone_url":"https://github.com/jenniferreire26/CVE-2026-39987.git","has_code":false,"age_days":23}]},{"cve_id":"CVE-2026-40003","repositories":[{"id":1232055381,"name":"CVE-2026-40003","full_name":"rva3/CVE-2026-40003","html_url":"https://github.com/rva3/CVE-2026-40003","description":"ZXIC/Sanechips BootROM exploit","stargazers_count":14,"forks_count":1,"language":"Rust","updated_at":"2026-05-16T00:22:21Z","pushed_at":"2026-05-07T15:14:29Z","created_at":"2026-05-07T14:44:46Z","topics":[],"owner":{"login":"rva3","html_url":"https://github.com/rva3"},"clone_url":"https://github.com/rva3/CVE-2026-40003.git","has_code":true,"age_days":49}]},{"cve_id":"CVE-2026-40072","repositories":[{"id":1260214355,"name":"cve-2026-40072-ssrf-lab","full_name":"u1tr0nex/cve-2026-40072-ssrf-lab","html_url":"https://github.com/u1tr0nex/cve-2026-40072-ssrf-lab","description":"Hands-on lab for CVE-2026-40072 — SSRF vulnerability in web3.py via CCIP Read (EIP-3668)","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-06T11:26:11Z","pushed_at":"2026-06-06T11:26:08Z","created_at":"2026-06-05T09:05:30Z","topics":[],"owner":{"login":"u1tr0nex","html_url":"https://github.com/u1tr0nex"},"clone_url":"https://github.com/u1tr0nex/cve-2026-40072-ssrf-lab.git","has_code":false,"age_days":20}]},{"cve_id":"CVE-2026-40175","repositories":[{"id":1213076605,"name":"CVE-2026-40175-poc","full_name":"pjt3591oo/CVE-2026-40175-poc","html_url":"https://github.com/pjt3591oo/CVE-2026-40175-poc","description":"","stargazers_count":0,"forks_count":0,"language":"JavaScript","updated_at":"2026-04-17T03:36:09Z","pushed_at":"2026-04-17T03:36:06Z","created_at":"2026-04-17T02:46:15Z","topics":[],"owner":{"login":"pjt3591oo","html_url":"https://github.com/pjt3591oo"},"clone_url":"https://github.com/pjt3591oo/CVE-2026-40175-poc.git","has_code":true,"age_days":69},{"id":1210503378,"name":"axios-security-guide","full_name":"LeeKangHyun/axios-security-guide","html_url":"https://github.com/LeeKangHyun/axios-security-guide","description":"Axios CRLF Injection (CVE-2026-40175) 취약점 대응 가이드 및 fetch 기반 마이그레이션 분석","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-14T14:17:21Z","pushed_at":"2026-04-14T14:17:02Z","created_at":"2026-04-14T13:33:50Z","topics":[],"owner":{"login":"LeeKangHyun","html_url":"https://github.com/LeeKangHyun"},"clone_url":"https://github.com/LeeKangHyun/axios-security-guide.git","has_code":false,"age_days":72},{"id":1210134089,"name":"audit-axios","full_name":"surri/audit-axios","html_url":"https://github.com/surri/audit-axios","description":"Scan local repos for vulnerable axios versions (CVE-2026-40175) and patch interactively","stargazers_count":0,"forks_count":0,"language":"JavaScript","updated_at":"2026-04-16T12:51:49Z","pushed_at":"2026-04-14T07:00:16Z","created_at":"2026-04-14T05:51:04Z","topics":[],"owner":{"login":"surri","html_url":"https://github.com/surri"},"clone_url":"https://github.com/surri/audit-axios.git","has_code":true,"age_days":72},{"id":1208462441,"name":"CVE-2026-40175","full_name":"0xBlackash/CVE-2026-40175","html_url":"https://github.com/0xBlackash/CVE-2026-40175","description":"CVE-2026-40175","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-12T10:24:39Z","pushed_at":"2026-04-12T10:24:33Z","created_at":"2026-04-12T10:12:30Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-40175.git","has_code":false,"age_days":74}]},{"cve_id":"CVE-2026-40176","repositories":[{"id":1212098201,"name":"composer-CVE-2026-40261-CVE-2026-40176-PoC","full_name":"terminat0r7031/composer-CVE-2026-40261-CVE-2026-40176-PoC","html_url":"https://github.com/terminat0r7031/composer-CVE-2026-40261-CVE-2026-40176-PoC","description":"","stargazers_count":2,"forks_count":0,"language":"","updated_at":"2026-04-17T09:41:13Z","pushed_at":"2026-04-16T05:41:29Z","created_at":"2026-04-16T04:00:23Z","topics":[],"owner":{"login":"terminat0r7031","html_url":"https://github.com/terminat0r7031"},"clone_url":"https://github.com/terminat0r7031/composer-CVE-2026-40261-CVE-2026-40176-PoC.git","has_code":false,"age_days":70},{"id":1212113925,"name":"CVE-2026-40176-poc","full_name":"Saku0512/CVE-2026-40176-poc","html_url":"https://github.com/Saku0512/CVE-2026-40176-poc","description":"","stargazers_count":2,"forks_count":0,"language":"PHP","updated_at":"2026-04-16T05:41:11Z","pushed_at":"2026-04-16T04:40:36Z","created_at":"2026-04-16T04:29:29Z","topics":[],"owner":{"login":"Saku0512","html_url":"https://github.com/Saku0512"},"clone_url":"https://github.com/Saku0512/CVE-2026-40176-poc.git","has_code":true,"age_days":70},{"id":1213176471,"name":"cve-2026-40176-cve-2026-40261","full_name":"daptheHuman/cve-2026-40176-cve-2026-40261","html_url":"https://github.com/daptheHuman/cve-2026-40176-cve-2026-40261","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-17T05:53:59Z","pushed_at":"2026-04-17T05:53:55Z","created_at":"2026-04-17T05:48:33Z","topics":[],"owner":{"login":"daptheHuman","html_url":"https://github.com/daptheHuman"},"clone_url":"https://github.com/daptheHuman/cve-2026-40176-cve-2026-40261.git","has_code":false,"age_days":69},{"id":1270049357,"name":"CVE-2026-40176","full_name":"ikarolaborda/CVE-2026-40176","html_url":"https://github.com/ikarolaborda/CVE-2026-40176","description":"","stargazers_count":0,"forks_count":0,"language":"PHP","updated_at":"2026-06-15T11:31:20Z","pushed_at":"2026-06-15T11:31:11Z","created_at":"2026-06-15T10:35:51Z","topics":[],"owner":{"login":"ikarolaborda","html_url":"https://github.com/ikarolaborda"},"clone_url":"https://github.com/ikarolaborda/CVE-2026-40176.git","has_code":true,"age_days":10}]},{"cve_id":"CVE-2026-4020","repositories":[{"id":1276533376,"name":"CVE-2026-4020","full_name":"HORKimhab/CVE-2026-4020","html_url":"https://github.com/HORKimhab/CVE-2026-4020","description":"CVE-2026-4020 - Draft","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-22T04:18:14Z","pushed_at":"2026-06-22T04:18:11Z","created_at":"2026-06-22T04:18:06Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-4020.git","has_code":false,"age_days":3}]},{"cve_id":"CVE-2026-40217","repositories":[{"id":1243576091,"name":"CVE-2026-40217-PoC","full_name":"learner202649/CVE-2026-40217-PoC","html_url":"https://github.com/learner202649/CVE-2026-40217-PoC","description":"The code for personally reproducing the corresponding vulnerability","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-19T13:23:44Z","pushed_at":"2026-05-19T13:20:16Z","created_at":"2026-05-19T13:19:42Z","topics":[],"owner":{"login":"learner202649","html_url":"https://github.com/learner202649"},"clone_url":"https://github.com/learner202649/CVE-2026-40217-PoC.git","has_code":true,"age_days":37},{"id":1270707629,"name":"CVE-LiteLLM","full_name":"HORKimhab/CVE-LiteLLM","html_url":"https://github.com/HORKimhab/CVE-LiteLLM","description":"CVE-2026-47101, CVE-2026-47102,  CVE-2026-40217","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-16T01:42:45Z","pushed_at":"2026-06-16T01:42:41Z","created_at":"2026-06-16T01:23:37Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-LiteLLM.git","has_code":true,"age_days":9}]},{"cve_id":"CVE-2026-40261","repositories":[{"id":1212098201,"name":"composer-CVE-2026-40261-CVE-2026-40176-PoC","full_name":"terminat0r7031/composer-CVE-2026-40261-CVE-2026-40176-PoC","html_url":"https://github.com/terminat0r7031/composer-CVE-2026-40261-CVE-2026-40176-PoC","description":"","stargazers_count":2,"forks_count":0,"language":"","updated_at":"2026-04-17T09:41:13Z","pushed_at":"2026-04-16T05:41:29Z","created_at":"2026-04-16T04:00:23Z","topics":[],"owner":{"login":"terminat0r7031","html_url":"https://github.com/terminat0r7031"},"clone_url":"https://github.com/terminat0r7031/composer-CVE-2026-40261-CVE-2026-40176-PoC.git","has_code":false,"age_days":70},{"id":1213176471,"name":"cve-2026-40176-cve-2026-40261","full_name":"daptheHuman/cve-2026-40176-cve-2026-40261","html_url":"https://github.com/daptheHuman/cve-2026-40176-cve-2026-40261","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-17T05:53:59Z","pushed_at":"2026-04-17T05:53:55Z","created_at":"2026-04-17T05:48:33Z","topics":[],"owner":{"login":"daptheHuman","html_url":"https://github.com/daptheHuman"},"clone_url":"https://github.com/daptheHuman/cve-2026-40176-cve-2026-40261.git","has_code":false,"age_days":69}]},{"cve_id":"CVE-2026-40369","repositories":[{"id":1238129424,"name":"CVE-2026-40369-EXPLOIT","full_name":"orinimron123/CVE-2026-40369-EXPLOIT","html_url":"https://github.com/orinimron123/CVE-2026-40369-EXPLOIT","description":"Full exploit code for CVE-2026-40369 - A Windows kernel arbitrary write vulnerability that allows browser sandbox escape from all browsers render process sandbox","stargazers_count":252,"forks_count":54,"language":"C++","updated_at":"2026-06-25T06:13:07Z","pushed_at":"2026-05-18T21:29:59Z","created_at":"2026-05-13T20:56:15Z","topics":[],"owner":{"login":"orinimron123","html_url":"https://github.com/orinimron123"},"clone_url":"https://github.com/orinimron123/CVE-2026-40369-EXPLOIT.git","has_code":true,"age_days":42},{"id":1247001523,"name":"ntoskrnl-metadata","full_name":"piffd0s/ntoskrnl-metadata","html_url":"https://github.com/piffd0s/ntoskrnl-metadata","description":"eprocess offset puller for relevant member offsets and function addresses for cve-2026-40369","stargazers_count":3,"forks_count":0,"language":"Python","updated_at":"2026-06-07T13:19:54Z","pushed_at":"2026-05-22T19:51:25Z","created_at":"2026-05-22T19:44:45Z","topics":[],"owner":{"login":"piffd0s","html_url":"https://github.com/piffd0s"},"clone_url":"https://github.com/piffd0s/ntoskrnl-metadata.git","has_code":true,"age_days":34},{"id":1277579498,"name":"CVE-2026-40369","full_name":"CCELEND/CVE-2026-40369","html_url":"https://github.com/CCELEND/CVE-2026-40369","description":"CVE-2026-40369本地权限提升漏洞exp","stargazers_count":0,"forks_count":0,"language":"C++","updated_at":"2026-06-23T02:44:33Z","pushed_at":"2026-06-23T02:44:29Z","created_at":"2026-06-23T02:37:58Z","topics":[],"owner":{"login":"CCELEND","html_url":"https://github.com/CCELEND"},"clone_url":"https://github.com/CCELEND/CVE-2026-40369.git","has_code":true,"age_days":2},{"id":1246105149,"name":"CVE-2026-40369","full_name":"ercihan/CVE-2026-40369","html_url":"https://github.com/ercihan/CVE-2026-40369","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-22T08:48:55Z","pushed_at":"2026-05-22T08:48:51Z","created_at":"2026-05-21T22:00:37Z","topics":[],"owner":{"login":"ercihan","html_url":"https://github.com/ercihan"},"clone_url":"https://github.com/ercihan/CVE-2026-40369.git","has_code":false,"age_days":34},{"id":1273542854,"name":"CVE-2026-40369","full_name":"0xBlackash/CVE-2026-40369","html_url":"https://github.com/0xBlackash/CVE-2026-40369","description":"CVE-2026-40369","stargazers_count":0,"forks_count":0,"language":"C++","updated_at":"2026-06-18T16:39:42Z","pushed_at":"2026-06-18T16:39:37Z","created_at":"2026-06-18T16:16:17Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-40369.git","has_code":true,"age_days":7}]},{"cve_id":"CVE-2026-40466","repositories":[{"id":1215538844,"name":"ActiveMQ-EXPtools","full_name":"Catherines77/ActiveMQ-EXPtools","html_url":"https://github.com/Catherines77/ActiveMQ-EXPtools","description":"Apache ActiveMQ漏洞综合利用工具(CVE-2015-5254，CVE-2016-3088，CVE-2022-41678，CVE-2023-46604，CVE-2024-32114，CVE-2026-34197，CVE-2026-40466， CVE-2026-42588)","stargazers_count":77,"forks_count":7,"language":"Java","updated_at":"2026-06-22T11:05:01Z","pushed_at":"2026-06-08T07:09:31Z","created_at":"2026-04-20T02:38:50Z","topics":[],"owner":{"login":"Catherines77","html_url":"https://github.com/Catherines77"},"clone_url":"https://github.com/Catherines77/ActiveMQ-EXPtools.git","has_code":true,"age_days":66}]},{"cve_id":"CVE-2026-40473","repositories":[{"id":1222810249,"name":"CVE-2026-33453","full_name":"dinosn/CVE-2026-33453","html_url":"https://github.com/dinosn/CVE-2026-33453","description":"Apache Camel 4.18.0 — CVE Security Assessment: 3 critical vulnerabilities with working PoC exploits (CVE-2026-33453, CVE-2026-40473, CVE-2026-40858)","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-04T08:59:34Z","pushed_at":"2026-04-27T18:26:29Z","created_at":"2026-04-27T18:21:34Z","topics":[],"owner":{"login":"dinosn","html_url":"https://github.com/dinosn"},"clone_url":"https://github.com/dinosn/CVE-2026-33453.git","has_code":true,"age_days":59}]},{"cve_id":"CVE-2026-40487","repositories":[{"id":1211473632,"name":"CVE-2026-40487","full_name":"Astaruf/CVE-2026-40487","html_url":"https://github.com/Astaruf/CVE-2026-40487","description":"CVE-2026-40487 - Postiz \u003c= 2.21.5 - Arbitrary File Upload via MIME-Type Spoofing → Stored XSS → Account Takeover","stargazers_count":3,"forks_count":0,"language":"Python","updated_at":"2026-05-30T02:11:06Z","pushed_at":"2026-04-22T19:37:23Z","created_at":"2026-04-15T12:33:58Z","topics":["account-takeover","cve","cve-2026-40487","exploit","file-upload","mime-spoofing","poc","postiz","security","stored-xss","vulnerability","xss"],"owner":{"login":"Astaruf","html_url":"https://github.com/Astaruf"},"clone_url":"https://github.com/Astaruf/CVE-2026-40487.git","has_code":true,"age_days":71},{"id":1227922803,"name":"CVE-2026-42208","full_name":"0xBlackash/CVE-2026-42208","html_url":"https://github.com/0xBlackash/CVE-2026-42208","description":"CVE-2026-40487","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-05-04T18:47:19Z","pushed_at":"2026-05-04T18:47:15Z","created_at":"2026-05-03T10:55:34Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-42208.git","has_code":true,"age_days":53}]},{"cve_id":"CVE-2026-40564","repositories":[{"id":1253253261,"name":"CVE-2026-40564","full_name":"oscerd/CVE-2026-40564","html_url":"https://github.com/oscerd/CVE-2026-40564","description":"CVE-2026-40564: SSRF via FlinkSessionJob jarURI in apache/flink-kubernetes-operator. Self-contained reproducer that runs on a local kind cluster with one make command.","stargazers_count":0,"forks_count":0,"language":"Makefile","updated_at":"2026-05-29T09:33:22Z","pushed_at":"2026-05-29T09:33:18Z","created_at":"2026-05-29T09:32:14Z","topics":[],"owner":{"login":"oscerd","html_url":"https://github.com/oscerd"},"clone_url":"https://github.com/oscerd/CVE-2026-40564.git","has_code":true,"age_days":27}]},{"cve_id":"CVE-2026-40579","repositories":[{"id":1211413577,"name":"CVE-2026-40579","full_name":"zebbernCVE/CVE-2026-40579","html_url":"https://github.com/zebbernCVE/CVE-2026-40579","description":"Advisory for git-js ⌯⌲ 11 mill weekly downloads","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-11T05:27:56Z","pushed_at":"2026-06-11T05:27:53Z","created_at":"2026-04-15T11:19:04Z","topics":["cve-2026-40579","cwe-78","high","zebbern"],"owner":{"login":"zebbernCVE","html_url":"https://github.com/zebbernCVE"},"clone_url":"https://github.com/zebbernCVE/CVE-2026-40579.git","has_code":false,"age_days":71}]},{"cve_id":"CVE-2026-4060","repositories":[{"id":1238301994,"name":"CVE-2026-4060-PoC","full_name":"ydking0911/CVE-2026-4060-PoC","html_url":"https://github.com/ydking0911/CVE-2026-4060-PoC","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-14T03:18:23Z","pushed_at":"2026-05-14T03:18:20Z","created_at":"2026-05-14T02:10:43Z","topics":[],"owner":{"login":"ydking0911","html_url":"https://github.com/ydking0911"},"clone_url":"https://github.com/ydking0911/CVE-2026-4060-PoC.git","has_code":true,"age_days":42}]},{"cve_id":"CVE-2026-40701","repositories":[{"id":1252668113,"name":"cve-images","full_name":"edgecases-PurpleHax/cve-images","html_url":"https://github.com/edgecases-PurpleHax/cve-images","description":"Intentionally-vulnerable nginx 1.30.0 CVE lab images (CVE-2026-40701/42934/42945/42946) for isolated security research. Lab use only.","stargazers_count":0,"forks_count":0,"language":"Dockerfile","updated_at":"2026-05-28T20:27:45Z","pushed_at":"2026-05-28T20:27:45Z","created_at":"2026-05-28T18:49:27Z","topics":[],"owner":{"login":"edgecases-PurpleHax","html_url":"https://github.com/edgecases-PurpleHax"},"clone_url":"https://github.com/edgecases-PurpleHax/cve-images.git","has_code":true,"age_days":28}]},{"cve_id":"CVE-2026-40776","repositories":[{"id":1231308811,"name":"CVE-2026-40776","full_name":"lorenzofradeani/CVE-2026-40776","html_url":"https://github.com/lorenzofradeani/CVE-2026-40776","description":"CVE-2026-40776 — Broken Access Control + IDOR in WordPress Eventin (wp-event-solution) \u003c= 4.1.8","stargazers_count":2,"forks_count":0,"language":"Shell","updated_at":"2026-05-07T13:04:53Z","pushed_at":"2026-05-06T20:51:57Z","created_at":"2026-05-06T20:51:53Z","topics":[],"owner":{"login":"lorenzofradeani","html_url":"https://github.com/lorenzofradeani"},"clone_url":"https://github.com/lorenzofradeani/CVE-2026-40776.git","has_code":true,"age_days":49}]},{"cve_id":"CVE-2026-40791","repositories":[{"id":1266051868,"name":"CVE-2026-40791-WP-Time-Slots-Booking-Form-XSS","full_name":"Rat5ak/CVE-2026-40791-WP-Time-Slots-Booking-Form-XSS","html_url":"https://github.com/Rat5ak/CVE-2026-40791-WP-Time-Slots-Booking-Form-XSS","description":"CVE-2026-40791: Unauthenticated stored XSS in WP Time Slots Booking Form \u003c= 1.2.46","stargazers_count":0,"forks_count":0,"language":"PowerShell","updated_at":"2026-06-12T10:28:29Z","pushed_at":"2026-06-12T10:28:25Z","created_at":"2026-06-11T09:32:50Z","topics":[],"owner":{"login":"Rat5ak","html_url":"https://github.com/Rat5ak"},"clone_url":"https://github.com/Rat5ak/CVE-2026-40791-WP-Time-Slots-Booking-Form-XSS.git","has_code":true,"age_days":14}]},{"cve_id":"CVE-2026-40858","repositories":[{"id":1222810249,"name":"CVE-2026-33453","full_name":"dinosn/CVE-2026-33453","html_url":"https://github.com/dinosn/CVE-2026-33453","description":"Apache Camel 4.18.0 — CVE Security Assessment: 3 critical vulnerabilities with working PoC exploits (CVE-2026-33453, CVE-2026-40473, CVE-2026-40858)","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-04T08:59:34Z","pushed_at":"2026-04-27T18:26:29Z","created_at":"2026-04-27T18:21:34Z","topics":[],"owner":{"login":"dinosn","html_url":"https://github.com/dinosn"},"clone_url":"https://github.com/dinosn/CVE-2026-33453.git","has_code":true,"age_days":59}]},{"cve_id":"CVE-2026-40864","repositories":[{"id":1268130000,"name":"CVE-2026-40864","full_name":"romain-deperne/CVE-2026-40864","html_url":"https://github.com/romain-deperne/CVE-2026-40864","description":"JupyterHub XSRF bypass via cross-origin form POST (Sec-Fetch-Mode: no-cors) — CWE-352","stargazers_count":0,"forks_count":0,"language":"HTML","updated_at":"2026-06-13T07:11:07Z","pushed_at":"2026-06-13T07:11:03Z","created_at":"2026-06-13T07:11:00Z","topics":[],"owner":{"login":"romain-deperne","html_url":"https://github.com/romain-deperne"},"clone_url":"https://github.com/romain-deperne/CVE-2026-40864.git","has_code":true,"age_days":12}]},{"cve_id":"CVE-2026-40897","repositories":[{"id":1231558467,"name":"CVE-2026-40897","full_name":"EQSTLab/CVE-2026-40897","html_url":"https://github.com/EQSTLab/CVE-2026-40897","description":"Math.js Expression Parser RCE","stargazers_count":2,"forks_count":0,"language":"Dockerfile","updated_at":"2026-06-10T05:02:03Z","pushed_at":"2026-05-27T08:03:12Z","created_at":"2026-05-07T04:27:44Z","topics":[],"owner":{"login":"EQSTLab","html_url":"https://github.com/EQSTLab"},"clone_url":"https://github.com/EQSTLab/CVE-2026-40897.git","has_code":true,"age_days":49}]},{"cve_id":"CVE-2026-40987","repositories":[{"id":1235862452,"name":"CVE-2026-40987","full_name":"daehyuh/CVE-2026-40987","html_url":"https://github.com/daehyuh/CVE-2026-40987","description":"CVE-2026-40987 PoC","stargazers_count":0,"forks_count":0,"language":"Java","updated_at":"2026-06-12T15:42:18Z","pushed_at":"2026-06-12T15:27:21Z","created_at":"2026-05-11T18:17:53Z","topics":[],"owner":{"login":"daehyuh","html_url":"https://github.com/daehyuh"},"clone_url":"https://github.com/daehyuh/CVE-2026-40987.git","has_code":true,"age_days":45}]},{"cve_id":"CVE-2026-41044","repositories":[{"id":1229778965,"name":"CVE-2026-41044","full_name":"mrillicit/CVE-2026-41044","html_url":"https://github.com/mrillicit/CVE-2026-41044","description":"","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-05T11:44:04Z","pushed_at":"2026-05-05T11:44:01Z","created_at":"2026-05-05T11:28:39Z","topics":[],"owner":{"login":"mrillicit","html_url":"https://github.com/mrillicit"},"clone_url":"https://github.com/mrillicit/CVE-2026-41044.git","has_code":true,"age_days":51}]},{"cve_id":"CVE-2026-4106","repositories":[{"id":1208197473,"name":"CVE-2026-4106","full_name":"ef3tr/CVE-2026-4106","html_url":"https://github.com/ef3tr/CVE-2026-4106","description":"WordPress HTMega Unauthenticated PII Disclosure Exploit (CVE-2026-4106)","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-04-12T22:04:13Z","pushed_at":"2026-04-12T01:35:33Z","created_at":"2026-04-12T00:26:34Z","topics":[],"owner":{"login":"ef3tr","html_url":"https://github.com/ef3tr"},"clone_url":"https://github.com/ef3tr/CVE-2026-4106.git","has_code":true,"age_days":74}]},{"cve_id":"CVE-2026-41089","repositories":[{"id":1255673460,"name":"CVE-2026-41089","full_name":"0xABCD01/CVE-2026-41089","html_url":"https://github.com/0xABCD01/CVE-2026-41089","description":"CVE-2026-41089 PoC — Netlogon CLDAP stack buffer overflow (CVSS 9.8 CRITICAL)","stargazers_count":194,"forks_count":65,"language":"Python","updated_at":"2026-06-25T12:06:10Z","pushed_at":"2026-06-02T08:30:55Z","created_at":"2026-06-01T04:22:29Z","topics":["buffer-overflow","cldap","cve","cve-2026-41089","exploit","poc","vulnerability","vulnerability-detection","windows","windows-server"],"owner":{"login":"0xABCD01","html_url":"https://github.com/0xABCD01"},"clone_url":"https://github.com/0xABCD01/CVE-2026-41089.git","has_code":true,"age_days":24},{"id":1257789821,"name":"CVE-2026-41089","full_name":"hnytgl/CVE-2026-41089","html_url":"https://github.com/hnytgl/CVE-2026-41089","description":"CVE-2026-41089 是 Windows Netlogon 服务中一个关键的远程代码执行漏洞，单包即可崩溃 lsass.exe，导致域控制器在约 30-60 秒内重启。此期间该 DC 的所有域认证将失败。","stargazers_count":13,"forks_count":12,"language":"Python","updated_at":"2026-06-24T12:51:54Z","pushed_at":"2026-06-24T12:48:34Z","created_at":"2026-06-03T02:29:06Z","topics":[],"owner":{"login":"hnytgl","html_url":"https://github.com/hnytgl"},"clone_url":"https://github.com/hnytgl/CVE-2026-41089.git","has_code":true,"age_days":22},{"id":1258500124,"name":"CVE-2026-41089-LongLogon","full_name":"ADScanPro/CVE-2026-41089-LongLogon","html_url":"https://github.com/ADScanPro/CVE-2026-41089-LongLogon","description":"CVE-2026-41089 checker: unauthenticated, non-destructive detection for the Netlogon CLDAP stack buffer overflow (CVSS 9.8). Reports whether a domain controller's domain is long enough to crash, without sending the overflow. The binary-verified analysis the public PoCs got wrong.","stargazers_count":10,"forks_count":1,"language":"Python","updated_at":"2026-06-15T13:36:48Z","pushed_at":"2026-06-04T08:11:31Z","created_at":"2026-06-03T16:30:35Z","topics":["active-directory","buffer-overflow","cldap","cve","cve-2026-41089","domain-controller","exploit","longlogon","netlogon","pentesting","poc","rce","red-team","security-research","stack-buffer-overflow","vulnerability-detection","vulnerability-scanner","windows-server","zerologon"],"owner":{"login":"ADScanPro","html_url":"https://github.com/ADScanPro"},"clone_url":"https://github.com/ADScanPro/CVE-2026-41089-LongLogon.git","has_code":true,"age_days":22},{"id":1257068663,"name":"CVE-2026-41089","full_name":"0xBlackash/CVE-2026-41089","html_url":"https://github.com/0xBlackash/CVE-2026-41089","description":"CVE-2026-41089","stargazers_count":4,"forks_count":0,"language":"Python","updated_at":"2026-06-24T09:28:18Z","pushed_at":"2026-06-05T00:49:43Z","created_at":"2026-06-02T10:35:26Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-41089.git","has_code":true,"age_days":23},{"id":1263895553,"name":"CVE-2026-41089","full_name":"jenniferreire26/CVE-2026-41089","html_url":"https://github.com/jenniferreire26/CVE-2026-41089","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-09T11:16:37Z","pushed_at":"2026-06-09T11:16:35Z","created_at":"2026-06-09T11:16:32Z","topics":[],"owner":{"login":"jenniferreire26","html_url":"https://github.com/jenniferreire26"},"clone_url":"https://github.com/jenniferreire26/CVE-2026-41089.git","has_code":false,"age_days":16},{"id":1257737798,"name":"CVE-2026-41089-Detector","full_name":"hnytgl/CVE-2026-41089-Detector","html_url":"https://github.com/hnytgl/CVE-2026-41089-Detector","description":"这是一个用于防御巡检的 CVE-2026-41089 检测脚本。该漏洞是 Microsoft 在 2026 年 5 月安全更新中披露的 Windows Netlogon 远程代码执行漏洞。","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-06-06T07:20:55Z","pushed_at":"2026-06-06T06:19:46Z","created_at":"2026-06-03T00:59:29Z","topics":[],"owner":{"login":"hnytgl","html_url":"https://github.com/hnytgl"},"clone_url":"https://github.com/hnytgl/CVE-2026-41089-Detector.git","has_code":true,"age_days":22}]},{"cve_id":"CVE-2026-41091","repositories":[{"id":1245998934,"name":"CVE-2026-41091","full_name":"0xBlackash/CVE-2026-41091","html_url":"https://github.com/0xBlackash/CVE-2026-41091","description":"CVE-2026-41091","stargazers_count":9,"forks_count":3,"language":"C++","updated_at":"2026-06-19T16:31:46Z","pushed_at":"2026-05-21T19:28:46Z","created_at":"2026-05-21T19:16:25Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-41091.git","has_code":true,"age_days":35},{"id":1275158145,"name":"CVE-2026-41091-PoC-Exploit","full_name":"tc4dy/CVE-2026-41091-PoC-Exploit","html_url":"https://github.com/tc4dy/CVE-2026-41091-PoC-Exploit","description":"🔥 CVE-2026-41091 SolarFlare | Microsoft Defender LPE exploit. Low-privileged users gain NT AUTHORITY\\SYSTEM via Cloud Files API + NTFS junction trickery. Forces Defender to write malicious payloads to System32 with SYSTEM rights. ⚠️ Actively exploited in wild. CVSS 7.8. Patch: Defender Engine 1.1.26040.8. 🛡️ Educational PoC only. ","stargazers_count":2,"forks_count":0,"language":"C++","updated_at":"2026-06-22T16:36:23Z","pushed_at":"2026-06-20T12:08:29Z","created_at":"2026-06-20T10:25:34Z","topics":[],"owner":{"login":"tc4dy","html_url":"https://github.com/tc4dy"},"clone_url":"https://github.com/tc4dy/CVE-2026-41091-PoC-Exploit.git","has_code":true,"age_days":5},{"id":1247125022,"name":"defender-privilege-escalation-scanner","full_name":"ridhinva/defender-privilege-escalation-scanner","html_url":"https://github.com/ridhinva/defender-privilege-escalation-scanner","description":"CVE-2026-41091 / CVE-2026-45498 Microsoft Defender vulnerability scanner","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-06-03T17:53:17Z","pushed_at":"2026-05-23T13:57:19Z","created_at":"2026-05-22T23:42:50Z","topics":[],"owner":{"login":"ridhinva","html_url":"https://github.com/ridhinva"},"clone_url":"https://github.com/ridhinva/defender-privilege-escalation-scanner.git","has_code":true,"age_days":33}]},{"cve_id":"CVE-2026-41096","repositories":[{"id":1247922887,"name":"CVE-2026-41096-POC","full_name":"satchfunky/CVE-2026-41096-POC","html_url":"https://github.com/satchfunky/CVE-2026-41096-POC","description":"windows api bug","stargazers_count":39,"forks_count":8,"language":"C","updated_at":"2026-06-09T05:53:55Z","pushed_at":"2026-05-24T01:47:32Z","created_at":"2026-05-24T00:46:09Z","topics":[],"owner":{"login":"satchfunky","html_url":"https://github.com/satchfunky"},"clone_url":"https://github.com/satchfunky/CVE-2026-41096-POC.git","has_code":true,"age_days":32},{"id":1259444492,"name":"CVE-2026-41096-Attack-Surface","full_name":"TwoSevenOneT/CVE-2026-41096-Attack-Surface","html_url":"https://github.com/TwoSevenOneT/CVE-2026-41096-Attack-Surface","description":"Attack surface in the real-world environment of CVE-2026-41096","stargazers_count":12,"forks_count":3,"language":"C++","updated_at":"2026-06-17T19:54:54Z","pushed_at":"2026-06-04T14:47:36Z","created_at":"2026-06-04T14:11:54Z","topics":[],"owner":{"login":"TwoSevenOneT","html_url":"https://github.com/TwoSevenOneT"},"clone_url":"https://github.com/TwoSevenOneT/CVE-2026-41096-Attack-Surface.git","has_code":true,"age_days":21},{"id":1248347541,"name":"CVE-2026-41096","full_name":"m0n1x90/CVE-2026-41096","html_url":"https://github.com/m0n1x90/CVE-2026-41096","description":"CVE-2026-41096: Heap Overflow in the Windows DNS Client","stargazers_count":3,"forks_count":2,"language":"C","updated_at":"2026-06-09T15:15:19Z","pushed_at":"2026-05-24T14:37:04Z","created_at":"2026-05-24T14:23:39Z","topics":[],"owner":{"login":"m0n1x90","html_url":"https://github.com/m0n1x90"},"clone_url":"https://github.com/m0n1x90/CVE-2026-41096.git","has_code":true,"age_days":32},{"id":1239539507,"name":"DNS-Mayhem-CVE-2026-41096-Deep-Dive","full_name":"mrk336/DNS-Mayhem-CVE-2026-41096-Deep-Dive","html_url":"https://github.com/mrk336/DNS-Mayhem-CVE-2026-41096-Deep-Dive","description":"In‑depth technical analysis of CVE‑2026‑41096, a critical heap overflow in Windows DNSAPI.dll enabling remote code execution via crafted DNS responses. Includes attack vectors, patch insights, and defensive guidance for security teams.","stargazers_count":3,"forks_count":3,"language":"","updated_at":"2026-05-21T09:53:53Z","pushed_at":"2026-05-15T07:53:24Z","created_at":"2026-05-15T07:30:24Z","topics":[],"owner":{"login":"mrk336","html_url":"https://github.com/mrk336"},"clone_url":"https://github.com/mrk336/DNS-Mayhem-CVE-2026-41096-Deep-Dive.git","has_code":false,"age_days":41},{"id":1278087740,"name":"dns_client_fuzzing","full_name":"personnumber3377/dns_client_fuzzing","html_url":"https://github.com/personnumber3377/dns_client_fuzzing","description":"Fuzzing the Microsoft Windows DNS client library. Inspired by CVE-2026-41096.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-23T13:01:58Z","pushed_at":"2026-06-23T13:00:41Z","created_at":"2026-06-23T12:59:48Z","topics":[],"owner":{"login":"personnumber3377","html_url":"https://github.com/personnumber3377"},"clone_url":"https://github.com/personnumber3377/dns_client_fuzzing.git","has_code":false,"age_days":2}]},{"cve_id":"CVE-2026-4112","repositories":[{"id":1205212602,"name":"CVE-2026-4112","full_name":"Hann1bl3L3ct3r/CVE-2026-4112","html_url":"https://github.com/Hann1bl3L3ct3r/CVE-2026-4112","description":"Improper neutralization of special elements used in an SQL command (“SQL Injection”) in SonicWall SMA1000 series appliances allows a remote authenticated attacker with read-only administrator privileges to escalate privileges to primary administrator.","stargazers_count":1,"forks_count":2,"language":"Python","updated_at":"2026-04-09T11:28:03Z","pushed_at":"2026-04-08T18:47:38Z","created_at":"2026-04-08T18:41:15Z","topics":[],"owner":{"login":"Hann1bl3L3ct3r","html_url":"https://github.com/Hann1bl3L3ct3r"},"clone_url":"https://github.com/Hann1bl3L3ct3r/CVE-2026-4112.git","has_code":true,"age_days":78}]},{"cve_id":"CVE-2026-41177","repositories":[{"id":1221164484,"name":"CVE-2026-41177-Squidex-CMS","full_name":"TurkiOS/CVE-2026-41177-Squidex-CMS","html_url":"https://github.com/TurkiOS/CVE-2026-41177-Squidex-CMS","description":"CVE-2026-41177, a Blind SSRF vulnerability in Squidex CMS (prior to v7.23.0). Includes root cause analysis, reproduction steps, and impact assessment regarding Local File Interaction (LFI).","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-25T20:57:18Z","pushed_at":"2026-04-25T20:57:14Z","created_at":"2026-04-25T20:50:18Z","topics":[],"owner":{"login":"TurkiOS","html_url":"https://github.com/TurkiOS"},"clone_url":"https://github.com/TurkiOS/CVE-2026-41177-Squidex-CMS.git","has_code":false,"age_days":60}]},{"cve_id":"CVE-2026-41200","repositories":[{"id":1227033517,"name":"cve-2026-41200-stig-manager-oidc-reflected-xss","full_name":"Hunt-Benito/cve-2026-41200-stig-manager-oidc-reflected-xss","html_url":"https://github.com/Hunt-Benito/cve-2026-41200-stig-manager-oidc-reflected-xss","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-21T07:20:05Z","pushed_at":"2026-06-21T07:20:02Z","created_at":"2026-05-02T05:49:01Z","topics":[],"owner":{"login":"Hunt-Benito","html_url":"https://github.com/Hunt-Benito"},"clone_url":"https://github.com/Hunt-Benito/cve-2026-41200-stig-manager-oidc-reflected-xss.git","has_code":true,"age_days":54}]},{"cve_id":"CVE-2026-41242","repositories":[{"id":1221765317,"name":"CVE-2026-41242","full_name":"4chech/CVE-2026-41242","html_url":"https://github.com/4chech/CVE-2026-41242","description":"some simple node.js web app with PoC code for CVE-2026-41242","stargazers_count":0,"forks_count":0,"language":"JavaScript","updated_at":"2026-04-26T16:49:29Z","pushed_at":"2026-04-26T16:49:26Z","created_at":"2026-04-26T16:48:56Z","topics":[],"owner":{"login":"4chech","html_url":"https://github.com/4chech"},"clone_url":"https://github.com/4chech/CVE-2026-41242.git","has_code":true,"age_days":60}]},{"cve_id":"CVE-2026-41285","repositories":[{"id":1229881621,"name":"CVE-2026-41285-OpenBSD-v6daemons-go-brrr","full_name":"Rat5ak/CVE-2026-41285-OpenBSD-v6daemons-go-brrr","html_url":"https://github.com/Rat5ak/CVE-2026-41285-OpenBSD-v6daemons-go-brrr","description":"One IPv6 ND option with length zero. One missing check. Daemon walks backward and lives in the loop.  Reported to OpenBSD, fixed, CVE assigned.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-10T12:49:16Z","pushed_at":"2026-05-10T12:49:12Z","created_at":"2026-05-05T13:23:08Z","topics":[],"owner":{"login":"Rat5ak","html_url":"https://github.com/Rat5ak"},"clone_url":"https://github.com/Rat5ak/CVE-2026-41285-OpenBSD-v6daemons-go-brrr.git","has_code":true,"age_days":51}]},{"cve_id":"CVE-2026-41303","repositories":[{"id":1219434608,"name":"CVE-2026-41303","full_name":"kaleth4/CVE-2026-41303","html_url":"https://github.com/kaleth4/CVE-2026-41303","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-23T21:53:38Z","pushed_at":"2026-04-23T21:53:34Z","created_at":"2026-04-23T21:52:41Z","topics":[],"owner":{"login":"kaleth4","html_url":"https://github.com/kaleth4"},"clone_url":"https://github.com/kaleth4/CVE-2026-41303.git","has_code":false,"age_days":62}]},{"cve_id":"CVE-2026-41462","repositories":[{"id":1223993963,"name":"CVE-2026-41462","full_name":"0xBlackash/CVE-2026-41462","html_url":"https://github.com/0xBlackash/CVE-2026-41462","description":"CVE-2026-41462","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-04-28T21:38:32Z","pushed_at":"2026-04-28T21:38:28Z","created_at":"2026-04-28T21:23:32Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-41462.git","has_code":true,"age_days":57}]},{"cve_id":"CVE-2026-41490","repositories":[{"id":1268129964,"name":"CVE-2026-41490","full_name":"romain-deperne/CVE-2026-41490","html_url":"https://github.com/romain-deperne/CVE-2026-41490","description":"SQL Injection in Dagster database I/O managers via dynamic partition keys (DuckDB/Snowflake/BigQuery/DeltaLake) — High","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-13T07:11:03Z","pushed_at":"2026-06-13T07:10:59Z","created_at":"2026-06-13T07:10:56Z","topics":[],"owner":{"login":"romain-deperne","html_url":"https://github.com/romain-deperne"},"clone_url":"https://github.com/romain-deperne/CVE-2026-41490.git","has_code":true,"age_days":12}]},{"cve_id":"CVE-2026-41575","repositories":[{"id":1218236232,"name":"CVE-2026-41575","full_name":"krrazee/CVE-2026-41575","html_url":"https://github.com/krrazee/CVE-2026-41575","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-27T08:30:58Z","pushed_at":"2026-04-27T08:30:53Z","created_at":"2026-04-22T17:09:53Z","topics":[],"owner":{"login":"krrazee","html_url":"https://github.com/krrazee"},"clone_url":"https://github.com/krrazee/CVE-2026-41575.git","has_code":false,"age_days":64}]},{"cve_id":"CVE-2026-41651","repositories":[{"id":1218830559,"name":"CVE-2026-41651","full_name":"Vozec/CVE-2026-41651","html_url":"https://github.com/Vozec/CVE-2026-41651","description":"","stargazers_count":99,"forks_count":18,"language":"C","updated_at":"2026-06-24T18:07:13Z","pushed_at":"2026-04-23T13:55:33Z","created_at":"2026-04-23T08:57:29Z","topics":[],"owner":{"login":"Vozec","html_url":"https://github.com/Vozec"},"clone_url":"https://github.com/Vozec/CVE-2026-41651.git","has_code":true,"age_days":63},{"id":1219898631,"name":"CVE-2026-41651","full_name":"baph00met/CVE-2026-41651","html_url":"https://github.com/baph00met/CVE-2026-41651","description":"CVE-2026-41651 — PackageKit TOCTOU LPE","stargazers_count":14,"forks_count":3,"language":"Python","updated_at":"2026-06-09T03:02:07Z","pushed_at":"2026-04-25T11:52:28Z","created_at":"2026-04-24T10:32:42Z","topics":[],"owner":{"login":"baph00met","html_url":"https://github.com/baph00met"},"clone_url":"https://github.com/baph00met/CVE-2026-41651.git","has_code":true,"age_days":62},{"id":1219474755,"name":"CVE-2026-41651","full_name":"CipherCloak/CVE-2026-41651","html_url":"https://github.com/CipherCloak/CVE-2026-41651","description":"","stargazers_count":8,"forks_count":1,"language":"C","updated_at":"2026-06-19T23:21:05Z","pushed_at":"2026-04-24T03:08:33Z","created_at":"2026-04-23T23:11:39Z","topics":[],"owner":{"login":"CipherCloak","html_url":"https://github.com/CipherCloak"},"clone_url":"https://github.com/CipherCloak/CVE-2026-41651.git","has_code":true,"age_days":62},{"id":1219765035,"name":"CVE-2026-41651","full_name":"0xBlackash/CVE-2026-41651","html_url":"https://github.com/0xBlackash/CVE-2026-41651","description":"CVE-2026-41651","stargazers_count":7,"forks_count":1,"language":"Python","updated_at":"2026-06-09T17:28:23Z","pushed_at":"2026-04-25T20:57:39Z","created_at":"2026-04-24T07:39:17Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-41651.git","has_code":true,"age_days":62},{"id":1220562880,"name":"pack2theroot-lab","full_name":"dinosn/pack2theroot-lab","html_url":"https://github.com/dinosn/pack2theroot-lab","description":"CTF-style Docker lab for CVE-2026-41651 (Pack2TheRoot): PackageKit permissive-polkit local privilege escalation","stargazers_count":6,"forks_count":2,"language":"Shell","updated_at":"2026-06-17T18:44:07Z","pushed_at":"2026-04-25T04:05:36Z","created_at":"2026-04-25T03:29:30Z","topics":[],"owner":{"login":"dinosn","html_url":"https://github.com/dinosn"},"clone_url":"https://github.com/dinosn/pack2theroot-lab.git","has_code":true,"age_days":61},{"id":1224755923,"name":"Pack2TheRoot","full_name":"shibaaa204/Pack2TheRoot","html_url":"https://github.com/shibaaa204/Pack2TheRoot","description":"Poc for Pack2TheRoot CVE-2026-41651","stargazers_count":1,"forks_count":1,"language":"C","updated_at":"2026-05-29T03:23:32Z","pushed_at":"2026-04-29T15:41:45Z","created_at":"2026-04-29T15:40:54Z","topics":[],"owner":{"login":"shibaaa204","html_url":"https://github.com/shibaaa204"},"clone_url":"https://github.com/shibaaa204/Pack2TheRoot.git","has_code":true,"age_days":57},{"id":1230654503,"name":"CVE-2026-41651-Python","full_name":"mawussid/CVE-2026-41651-Python","html_url":"https://github.com/mawussid/CVE-2026-41651-Python","description":"","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-21T07:56:07Z","pushed_at":"2026-05-21T07:56:03Z","created_at":"2026-05-06T07:39:29Z","topics":[],"owner":{"login":"mawussid","html_url":"https://github.com/mawussid"},"clone_url":"https://github.com/mawussid/CVE-2026-41651-Python.git","has_code":true,"age_days":50},{"id":1225181511,"name":"check_pack2theroot","full_name":"mazofeifaalfaro/check_pack2theroot","html_url":"https://github.com/mazofeifaalfaro/check_pack2theroot","description":"This is a repo containing a script to check whether a Linux system may be affected by Pack2TheRoot / CVE-2026-41651 by reviewing the PackageKit version, service status, changelog, and recent logs. It also offers to update the system, but only if the user explicitly confirms by typing yes. It is a defensive validation script, not an exploit.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-30T03:00:20Z","pushed_at":"2026-04-30T03:00:20Z","created_at":"2026-04-30T03:00:19Z","topics":[],"owner":{"login":"mazofeifaalfaro","html_url":"https://github.com/mazofeifaalfaro"},"clone_url":"https://github.com/mazofeifaalfaro/check_pack2theroot.git","has_code":false,"age_days":56},{"id":1227686549,"name":"CVE-2026-41651","full_name":"aexdyhaxor/CVE-2026-41651","html_url":"https://github.com/aexdyhaxor/CVE-2026-41651","description":"Privilege Escalation Vulnerability in PackageKit (TOCTOU Race Condition)","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-29T09:22:34Z","pushed_at":"2026-05-29T09:22:30Z","created_at":"2026-05-03T02:54:51Z","topics":[],"owner":{"login":"aexdyhaxor","html_url":"https://github.com/aexdyhaxor"},"clone_url":"https://github.com/aexdyhaxor/CVE-2026-41651.git","has_code":true,"age_days":53},{"id":1244350875,"name":"CVE-2026-41651","full_name":"Lutfifakee-Project/CVE-2026-41651","html_url":"https://github.com/Lutfifakee-Project/CVE-2026-41651","description":"Exploit for CVE-2026-41651 - PackageKit TOCTOU Local Privilege Escalation (Pack2TheRoot)","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-20T07:48:18Z","pushed_at":"2026-05-20T07:48:15Z","created_at":"2026-05-20T07:26:05Z","topics":["cve-2026-41651","linux-exploit","local-privilege-escalation","lpe","pack2theroot","packagekit"],"owner":{"login":"Lutfifakee-Project","html_url":"https://github.com/Lutfifakee-Project"},"clone_url":"https://github.com/Lutfifakee-Project/CVE-2026-41651.git","has_code":true,"age_days":36},{"id":1230581031,"name":"CVE-2026-41651-analysis","full_name":"Kowntaewook/CVE-2026-41651-analysis","html_url":"https://github.com/Kowntaewook/CVE-2026-41651-analysis","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-06T06:18:03Z","pushed_at":"2026-05-06T06:13:43Z","created_at":"2026-05-06T06:12:09Z","topics":[],"owner":{"login":"Kowntaewook","html_url":"https://github.com/Kowntaewook"},"clone_url":"https://github.com/Kowntaewook/CVE-2026-41651-analysis.git","has_code":false,"age_days":50}]},{"cve_id":"CVE-2026-41653","repositories":[{"id":1220039364,"name":"CVE-2026-41653","full_name":"Astaruf/CVE-2026-41653","html_url":"https://github.com/Astaruf/CVE-2026-41653","description":"CVE-2026-41653 - BentoPDF \u003c= 2.8.1 - Stored XSS → File Exfiltration","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-04T16:04:51Z","pushed_at":"2026-04-29T22:39:53Z","created_at":"2026-04-24T13:34:26Z","topics":["bentopdf","cve","cve-2026-41653","exfiltration","exploit","file-exfiltration","poc","security","stored-xss","vulnerability","xss"],"owner":{"login":"Astaruf","html_url":"https://github.com/Astaruf"},"clone_url":"https://github.com/Astaruf/CVE-2026-41653.git","has_code":true,"age_days":62}]},{"cve_id":"CVE-2026-41679","repositories":[{"id":1219802079,"name":"cve-2026-41679","full_name":"bartfroklage/cve-2026-41679","html_url":"https://github.com/bartfroklage/cve-2026-41679","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-25T08:23:29Z","pushed_at":"2026-04-25T08:23:25Z","created_at":"2026-04-24T08:27:29Z","topics":[],"owner":{"login":"bartfroklage","html_url":"https://github.com/bartfroklage"},"clone_url":"https://github.com/bartfroklage/cve-2026-41679.git","has_code":true,"age_days":62}]},{"cve_id":"CVE-2026-41729","repositories":[{"id":1237797464,"name":"CVE-2026-41729","full_name":"daehyuh/CVE-2026-41729","html_url":"https://github.com/daehyuh/CVE-2026-41729","description":"CVE-2026-41729 PoC","stargazers_count":0,"forks_count":0,"language":"Java","updated_at":"2026-06-12T15:42:29Z","pushed_at":"2026-06-12T15:25:45Z","created_at":"2026-05-13T14:15:13Z","topics":[],"owner":{"login":"daehyuh","html_url":"https://github.com/daehyuh"},"clone_url":"https://github.com/daehyuh/CVE-2026-41729.git","has_code":true,"age_days":43}]},{"cve_id":"CVE-2026-41900","repositories":[{"id":1231234754,"name":"CVE-2026-41900-POC","full_name":"Christbowel/CVE-2026-41900-POC","html_url":"https://github.com/Christbowel/CVE-2026-41900-POC","description":"OpenLearnX Unauthenticated RCE","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-05-07T23:29:44Z","pushed_at":"2026-05-06T19:08:46Z","created_at":"2026-05-06T19:07:47Z","topics":[],"owner":{"login":"Christbowel","html_url":"https://github.com/Christbowel"},"clone_url":"https://github.com/Christbowel/CVE-2026-41900-POC.git","has_code":true,"age_days":50}]},{"cve_id":"CVE-2026-41901","repositories":[{"id":1247167031,"name":"CVE-2026-41901","full_name":"HORKimhab/CVE-2026-41901","html_url":"https://github.com/HORKimhab/CVE-2026-41901","description":" CVE-2026-41901","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-23T01:34:14Z","pushed_at":"2026-05-23T01:34:10Z","created_at":"2026-05-23T01:25:51Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-41901.git","has_code":true,"age_days":33}]},{"cve_id":"CVE-2026-41940","repositories":[{"id":1226446524,"name":"cPanelSniper","full_name":"ynsmroztas/cPanelSniper","html_url":"https://github.com/ynsmroztas/cPanelSniper","description":"CVE-2026-41940 — cPanel \u0026 WHM Authentication Bypass via Session-File CRLF Injection","stargazers_count":478,"forks_count":135,"language":"Python","updated_at":"2026-06-25T09:02:39Z","pushed_at":"2026-05-01T12:10:32Z","created_at":"2026-05-01T12:09:26Z","topics":[],"owner":{"login":"ynsmroztas","html_url":"https://github.com/ynsmroztas"},"clone_url":"https://github.com/ynsmroztas/cPanelSniper.git","has_code":true,"age_days":55},{"id":1225380769,"name":"cpanel2shell-scanner","full_name":"assetnote/cpanel2shell-scanner","html_url":"https://github.com/assetnote/cpanel2shell-scanner","description":"High fidelity scanner for CVE-2026-41940 (cPanel \u0026 WHM authentication bypass)","stargazers_count":89,"forks_count":24,"language":"Python","updated_at":"2026-06-04T07:03:28Z","pushed_at":"2026-05-18T14:38:15Z","created_at":"2026-04-30T08:11:23Z","topics":[],"owner":{"login":"assetnote","html_url":"https://github.com/assetnote"},"clone_url":"https://github.com/assetnote/cpanel2shell-scanner.git","has_code":true,"age_days":56},{"id":1226624260,"name":"poc-cpanel-cve-2026-41940","full_name":"XsanFlip/poc-cpanel-cve-2026-41940","html_url":"https://github.com/XsanFlip/poc-cpanel-cve-2026-41940","description":"","stargazers_count":63,"forks_count":11,"language":"Python","updated_at":"2026-06-11T12:56:25Z","pushed_at":"2026-05-01T16:35:37Z","created_at":"2026-05-01T16:27:38Z","topics":[],"owner":{"login":"XsanFlip","html_url":"https://github.com/XsanFlip"},"clone_url":"https://github.com/XsanFlip/poc-cpanel-cve-2026-41940.git","has_code":true,"age_days":55},{"id":1271479215,"name":"CVE-2026-41940-PoC","full_name":"clsmight/CVE-2026-41940-PoC","html_url":"https://github.com/clsmight/CVE-2026-41940-PoC","description":"CVE-2026-41940 exploitation proof-of-concept project","stargazers_count":62,"forks_count":8,"language":"Python","updated_at":"2026-06-24T20:53:48Z","pushed_at":"2026-06-16T17:50:00Z","created_at":"2026-06-16T17:49:03Z","topics":["cpanel","cve","cve-2026-41940","cve-2026-41940-poc"],"owner":{"login":"clsmight","html_url":"https://github.com/clsmight"},"clone_url":"https://github.com/clsmight/CVE-2026-41940-PoC.git","has_code":true,"age_days":9},{"id":1225169993,"name":"cve-2026-41940-poc","full_name":"adriyansyah-mf/cve-2026-41940-poc","html_url":"https://github.com/adriyansyah-mf/cve-2026-41940-poc","description":"","stargazers_count":28,"forks_count":15,"language":"Python","updated_at":"2026-05-28T23:56:44Z","pushed_at":"2026-04-30T02:47:37Z","created_at":"2026-04-30T02:38:37Z","topics":[],"owner":{"login":"adriyansyah-mf","html_url":"https://github.com/adriyansyah-mf"},"clone_url":"https://github.com/adriyansyah-mf/cve-2026-41940-poc.git","has_code":true,"age_days":56},{"id":1224857384,"name":"CVE-2026-41940-cpanel-0day","full_name":"Sachinart/CVE-2026-41940-cpanel-0day","html_url":"https://github.com/Sachinart/CVE-2026-41940-cpanel-0day","description":"CVE-2026-41940 latest cPanel \u0026 WHM 0day - 70 million websites are possible to expose by Chirag Artani","stargazers_count":26,"forks_count":2,"language":"Python","updated_at":"2026-05-10T06:25:41Z","pushed_at":"2026-04-29T17:55:20Z","created_at":"2026-04-29T17:44:32Z","topics":[],"owner":{"login":"Sachinart","html_url":"https://github.com/Sachinart"},"clone_url":"https://github.com/Sachinart/CVE-2026-41940-cpanel-0day.git","has_code":true,"age_days":57},{"id":1225689180,"name":"cpanel-sessionscribe","full_name":"rfxn/cpanel-sessionscribe","html_url":"https://github.com/rfxn/cpanel-sessionscribe","description":"Detection, mitigation, and reverse-engineering tooling for CVE-2026-41940 (SessionScribe): the cPanel/WHM unauthenticated session-forgery vulnerability disclosed 2026-04-28. Defense-in-depth active mitigation shim, ModSec rule pack, remote probe, on-host IOC scanner, and per-tier RE snapshot collector. GPL v2.","stargazers_count":13,"forks_count":1,"language":"Shell","updated_at":"2026-05-30T19:59:53Z","pushed_at":"2026-05-21T19:48:31Z","created_at":"2026-04-30T14:32:43Z","topics":["cpanel","crlf-injection","cve-2026-41940","forensics","incident-response","ioc-scanner","modsecurity","security-tools","session-forgery","sessionscribe","vulnerability-detection","waf","whm"],"owner":{"login":"rfxn","html_url":"https://github.com/rfxn"},"clone_url":"https://github.com/rfxn/cpanel-sessionscribe.git","has_code":true,"age_days":56},{"id":1225565988,"name":"CVE-2026-41940-MASS-EXPLOIT","full_name":"ilmndwntr/CVE-2026-41940-MASS-EXPLOIT","html_url":"https://github.com/ilmndwntr/CVE-2026-41940-MASS-EXPLOIT","description":"CVE-2026-41940 SUPPORT SINGLE \u0026 MASS SCAN EXPLOIT","stargazers_count":13,"forks_count":9,"language":"Python","updated_at":"2026-05-16T09:09:34Z","pushed_at":"2026-04-30T12:11:51Z","created_at":"2026-04-30T12:11:25Z","topics":[],"owner":{"login":"ilmndwntr","html_url":"https://github.com/ilmndwntr"},"clone_url":"https://github.com/ilmndwntr/CVE-2026-41940-MASS-EXPLOIT.git","has_code":true,"age_days":56},{"id":1230402730,"name":"cpanelCVE-2026-41940","full_name":"bughunt4me/cpanelCVE-2026-41940","html_url":"https://github.com/bughunt4me/cpanelCVE-2026-41940","description":"CVE-2026-41940 Auto Root Login","stargazers_count":12,"forks_count":4,"language":"Python","updated_at":"2026-06-01T11:30:29Z","pushed_at":"2026-05-09T03:54:02Z","created_at":"2026-05-06T00:58:13Z","topics":[],"owner":{"login":"bughunt4me","html_url":"https://github.com/bughunt4me"},"clone_url":"https://github.com/bughunt4me/cpanelCVE-2026-41940.git","has_code":true,"age_days":50},{"id":1225438566,"name":"CVE-2026-41940-Exploit-PoC","full_name":"realawaisakbar/CVE-2026-41940-Exploit-PoC","html_url":"https://github.com/realawaisakbar/CVE-2026-41940-Exploit-PoC","description":"This repository contains a Proof-of-Concept (PoC) exploit for CVE-2026-41940, a critical authentication bypass vulnerability in cPanel \u0026 WHM. The vulnerability allows unauthenticated remote attackers to gain unauthorized access to the control panel by abusing flaws in the login flow.","stargazers_count":11,"forks_count":7,"language":"Python","updated_at":"2026-05-31T16:06:35Z","pushed_at":"2026-04-30T10:05:54Z","created_at":"2026-04-30T09:22:55Z","topics":["cpanel","cve","cve-2026-41940","exploit","whm"],"owner":{"login":"realawaisakbar","html_url":"https://github.com/realawaisakbar"},"clone_url":"https://github.com/realawaisakbar/CVE-2026-41940-Exploit-PoC.git","has_code":true,"age_days":56},{"id":1225349212,"name":"cPanelWHM-AuthBypass","full_name":"Kagantua/cPanelWHM-AuthBypass","html_url":"https://github.com/Kagantua/cPanelWHM-AuthBypass","description":"CVE-2026-41940","stargazers_count":9,"forks_count":7,"language":"","updated_at":"2026-05-21T06:02:50Z","pushed_at":"2026-04-30T07:05:29Z","created_at":"2026-04-30T07:29:23Z","topics":[],"owner":{"login":"Kagantua","html_url":"https://github.com/Kagantua"},"clone_url":"https://github.com/Kagantua/cPanelWHM-AuthBypass.git","has_code":false,"age_days":56},{"id":1226559584,"name":"CVE-2026-41940","full_name":"Christian93111/CVE-2026-41940","html_url":"https://github.com/Christian93111/CVE-2026-41940","description":"cPanel/WHM Authentication Bypass (Zero-Day Vulnerability)","stargazers_count":8,"forks_count":2,"language":"Python","updated_at":"2026-06-22T11:05:02Z","pushed_at":"2026-05-16T10:26:21Z","created_at":"2026-05-01T14:57:03Z","topics":["authentication","bypasser","cpanel","cve-2026-41940","poc","python","shell","whm","zero-day"],"owner":{"login":"Christian93111","html_url":"https://github.com/Christian93111"},"clone_url":"https://github.com/Christian93111/CVE-2026-41940.git","has_code":true,"age_days":55},{"id":1225067496,"name":"cPanel-WHM-AuthBypass-Session-Checker","full_name":"debugactiveprocess/cPanel-WHM-AuthBypass-Session-Checker","html_url":"https://github.com/debugactiveprocess/cPanel-WHM-AuthBypass-Session-Checker","description":"Post-Exploitation Session Validation Tool for CVE-2026-41940","stargazers_count":7,"forks_count":7,"language":"Python","updated_at":"2026-06-08T06:34:25Z","pushed_at":"2026-04-29T23:26:44Z","created_at":"2026-04-29T23:11:15Z","topics":[],"owner":{"login":"debugactiveprocess","html_url":"https://github.com/debugactiveprocess"},"clone_url":"https://github.com/debugactiveprocess/cPanel-WHM-AuthBypass-Session-Checker.git","has_code":true,"age_days":56},{"id":1226107567,"name":"CVE-2026-41940","full_name":"senyx122/CVE-2026-41940","html_url":"https://github.com/senyx122/CVE-2026-41940","description":"A security research tool for detecting and analyzing cPanel/WHM services and their authentication behavior. Designed for authorized testing and educational purposes only.","stargazers_count":7,"forks_count":0,"language":"Python","updated_at":"2026-05-03T09:50:10Z","pushed_at":"2026-05-01T01:40:04Z","created_at":"2026-05-01T01:34:33Z","topics":[],"owner":{"login":"senyx122","html_url":"https://github.com/senyx122"},"clone_url":"https://github.com/senyx122/CVE-2026-41940.git","has_code":true,"age_days":55},{"id":1225898324,"name":"cpanel-cve-2026-41940-fix","full_name":"shahidmallaofficial/cpanel-cve-2026-41940-fix","html_url":"https://github.com/shahidmallaofficial/cpanel-cve-2026-41940-fix","description":"","stargazers_count":5,"forks_count":0,"language":"Shell","updated_at":"2026-05-07T16:42:40Z","pushed_at":"2026-04-30T19:14:33Z","created_at":"2026-04-30T19:01:27Z","topics":[],"owner":{"login":"shahidmallaofficial","html_url":"https://github.com/shahidmallaofficial"},"clone_url":"https://github.com/shahidmallaofficial/cpanel-cve-2026-41940-fix.git","has_code":true,"age_days":56},{"id":1225920035,"name":"cpanel-cve-2026-41940-ioc","full_name":"Andrei-Dr/cpanel-cve-2026-41940-ioc","html_url":"https://github.com/Andrei-Dr/cpanel-cve-2026-41940-ioc","description":"CVE-2026-41940 cPanel/WHM auth bypass IOC scanner — fixes false positives in upstream detection script, adds log cross-correlation","stargazers_count":4,"forks_count":0,"language":"Python","updated_at":"2026-05-15T02:26:13Z","pushed_at":"2026-04-30T22:46:23Z","created_at":"2026-04-30T19:33:01Z","topics":[],"owner":{"login":"Andrei-Dr","html_url":"https://github.com/Andrei-Dr"},"clone_url":"https://github.com/Andrei-Dr/cpanel-cve-2026-41940-ioc.git","has_code":true,"age_days":56},{"id":1236761147,"name":"CVE-2026-41940-PoC-Exploit","full_name":"tc4dy/CVE-2026-41940-PoC-Exploit","html_url":"https://github.com/tc4dy/CVE-2026-41940-PoC-Exploit","description":"🚀 CVE-2026-41940 cPanel/WHM Auth Bypass Exploit - Best Flow 💥 CRLF injection leads to auth bypass, session hijacking \u0026 account leak. ✅ Proxy, custom UA, keep-alive, retries, SSL verify, colored output, file save support. ⚡ Advanced PoC for pentesters. ","stargazers_count":4,"forks_count":0,"language":"Python","updated_at":"2026-06-22T16:36:33Z","pushed_at":"2026-06-07T13:02:43Z","created_at":"2026-05-12T14:47:21Z","topics":[],"owner":{"login":"tc4dy","html_url":"https://github.com/tc4dy"},"clone_url":"https://github.com/tc4dy/CVE-2026-41940-PoC-Exploit.git","has_code":true,"age_days":44},{"id":1226593295,"name":"CVE-2026-41940","full_name":"Jenderal92/CVE-2026-41940","html_url":"https://github.com/Jenderal92/CVE-2026-41940","description":"Bulk scanner and mass exploitation tool for CVE-2026-41940 on cPanel/WHM, built for automated target validation and high-speed multi-threaded execution.","stargazers_count":4,"forks_count":3,"language":"Python","updated_at":"2026-06-04T16:48:04Z","pushed_at":"2026-05-30T19:37:49Z","created_at":"2026-05-01T15:43:28Z","topics":["bug-bounty","cpanel-exploit","cve","cve-2026-41940","cybersecurity","etichalhacking","penetration-testing","python","vulnerability","whm-exploit","zero-day","zero-day-exploit"],"owner":{"login":"Jenderal92","html_url":"https://github.com/Jenderal92"},"clone_url":"https://github.com/Jenderal92/CVE-2026-41940.git","has_code":true,"age_days":55},{"id":1228742106,"name":"sorry-ransomware-analysis","full_name":"habibkaratas/sorry-ransomware-analysis","html_url":"https://github.com/habibkaratas/sorry-ransomware-analysis","description":"Sorry ransomware (.sorry) IOCs, YARA rules and forensic analysis - CVE-2026-41940 cPanel campaign","stargazers_count":4,"forks_count":0,"language":"Python","updated_at":"2026-06-11T12:38:08Z","pushed_at":"2026-05-04T10:28:02Z","created_at":"2026-05-04T10:27:59Z","topics":["cpanel","cve-2026-41940","forensics","incident-response","ioc","ransomware","sorry-ransomware","yara"],"owner":{"login":"habibkaratas","html_url":"https://github.com/habibkaratas"},"clone_url":"https://github.com/habibkaratas/sorry-ransomware-analysis.git","has_code":true,"age_days":52},{"id":1226421168,"name":"cve-2026-41940-tool","full_name":"NULL200OK/cve-2026-41940-tool","html_url":"https://github.com/NULL200OK/cve-2026-41940-tool","description":"A comprehensive Python utility to **detect**, **scan in bulk**, and **exploit** the critical authentication bypass vulnerability (CVE-2026-41940) in cPanel \u0026 WHM and WP Squared.","stargazers_count":4,"forks_count":2,"language":"Python","updated_at":"2026-05-10T19:21:26Z","pushed_at":"2026-05-01T11:38:02Z","created_at":"2026-05-01T11:27:07Z","topics":[],"owner":{"login":"NULL200OK","html_url":"https://github.com/NULL200OK"},"clone_url":"https://github.com/NULL200OK/cve-2026-41940-tool.git","has_code":true,"age_days":55},{"id":1226276936,"name":"cpanel-cve-2026-41940","full_name":"mahfuzreham/cpanel-cve-2026-41940","html_url":"https://github.com/mahfuzreham/cpanel-cve-2026-41940","description":"cPanel CVE-2026-41940 nuclear.x86 Security Audit \u0026 Cleanup Script","stargazers_count":3,"forks_count":1,"language":"Shell","updated_at":"2026-06-15T19:35:16Z","pushed_at":"2026-06-15T19:35:11Z","created_at":"2026-05-01T07:27:21Z","topics":["bash","cpanel","cpanel-security-cve-linux-bash-whm-malware","cve","linux","malware","security","whm"],"owner":{"login":"mahfuzreham","html_url":"https://github.com/mahfuzreham"},"clone_url":"https://github.com/mahfuzreham/cpanel-cve-2026-41940.git","has_code":true,"age_days":55},{"id":1226113130,"name":"cPanel-CVE-2026-41940-Scanner","full_name":"merdw/cPanel-CVE-2026-41940-Scanner","html_url":"https://github.com/merdw/cPanel-CVE-2026-41940-Scanner","description":"Advanced cPanel \u0026 WHM Security Scanner for CVE-2026-41940. with mass Shodan discovery","stargazers_count":3,"forks_count":0,"language":"Python","updated_at":"2026-05-01T20:30:28Z","pushed_at":"2026-05-01T01:59:17Z","created_at":"2026-05-01T01:47:24Z","topics":[],"owner":{"login":"merdw","html_url":"https://github.com/merdw"},"clone_url":"https://github.com/merdw/cPanel-CVE-2026-41940-Scanner.git","has_code":true,"age_days":55},{"id":1225997881,"name":"CVE-2026-41940-POC","full_name":"zedxod/CVE-2026-41940-POC","html_url":"https://github.com/zedxod/CVE-2026-41940-POC","description":"","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-05-01T20:30:25Z","pushed_at":"2026-04-30T21:44:43Z","created_at":"2026-04-30T21:39:57Z","topics":[],"owner":{"login":"zedxod","html_url":"https://github.com/zedxod"},"clone_url":"https://github.com/zedxod/CVE-2026-41940-POC.git","has_code":true,"age_days":55},{"id":1225815718,"name":"CPANEL-CVE-2026-41940","full_name":"0xabdoulaye/CPANEL-CVE-2026-41940","html_url":"https://github.com/0xabdoulaye/CPANEL-CVE-2026-41940","description":"","stargazers_count":2,"forks_count":1,"language":"Python","updated_at":"2026-05-01T20:30:22Z","pushed_at":"2026-04-30T17:42:35Z","created_at":"2026-04-30T17:08:47Z","topics":[],"owner":{"login":"0xabdoulaye","html_url":"https://github.com/0xabdoulaye"},"clone_url":"https://github.com/0xabdoulaye/CPANEL-CVE-2026-41940.git","has_code":true,"age_days":56},{"id":1234624933,"name":"cpsniper","full_name":"44pie/cpsniper","html_url":"https://github.com/44pie/cpsniper","description":"cPanelSniper STABLE - CVE-2026-41940 optimized for 10M+ targets","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-05-27T10:16:55Z","pushed_at":"2026-05-10T16:35:22Z","created_at":"2026-05-10T12:35:57Z","topics":[],"owner":{"login":"44pie","html_url":"https://github.com/44pie"},"clone_url":"https://github.com/44pie/cpsniper.git","has_code":true,"age_days":46},{"id":1227502538,"name":"CVE-2026-41940-Exploit-PoC","full_name":"Ishanoshada/CVE-2026-41940-Exploit-PoC","html_url":"https://github.com/Ishanoshada/CVE-2026-41940-Exploit-PoC","description":"CVE-2026-41940 Exploit PoC – cPanel \u0026 WHM Authentication Bypass via CRLF Injection ","stargazers_count":2,"forks_count":1,"language":"Go","updated_at":"2026-05-22T14:16:00Z","pushed_at":"2026-05-02T22:06:06Z","created_at":"2026-05-02T19:18:58Z","topics":["authentication-bypass","cpanel","cpanel-exploit","cve","cve-2026-41940","cve-exploit","golang","poc","whm","whm-exploit"],"owner":{"login":"Ishanoshada","html_url":"https://github.com/Ishanoshada"},"clone_url":"https://github.com/Ishanoshada/CVE-2026-41940-Exploit-PoC.git","has_code":true,"age_days":54},{"id":1226588950,"name":"CVE-2026-41940-cPanel-Auth-Bypass-Exploit","full_name":"kmaruthisrikar/CVE-2026-41940-cPanel-Auth-Bypass-Exploit","html_url":"https://github.com/kmaruthisrikar/CVE-2026-41940-cPanel-Auth-Bypass-Exploit","description":"","stargazers_count":2,"forks_count":1,"language":"Python","updated_at":"2026-05-08T05:32:17Z","pushed_at":"2026-05-01T17:30:10Z","created_at":"2026-05-01T15:37:31Z","topics":[],"owner":{"login":"kmaruthisrikar","html_url":"https://github.com/kmaruthisrikar"},"clone_url":"https://github.com/kmaruthisrikar/CVE-2026-41940-cPanel-Auth-Bypass-Exploit.git","has_code":true,"age_days":55},{"id":1226391467,"name":"CVE-2026-41940","full_name":"Lutfifakee-Project/CVE-2026-41940","html_url":"https://github.com/Lutfifakee-Project/CVE-2026-41940","description":"cPanel/WHM CVE-2026-41940 - Mass Scanner \u0026 Exploiter","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-06-04T07:11:37Z","pushed_at":"2026-05-01T12:33:31Z","created_at":"2026-05-01T10:37:13Z","topics":["cve-2026-41940"],"owner":{"login":"Lutfifakee-Project","html_url":"https://github.com/Lutfifakee-Project"},"clone_url":"https://github.com/Lutfifakee-Project/CVE-2026-41940.git","has_code":true,"age_days":55},{"id":1226357512,"name":"CVE-2026-41940-AuthBypass-Detector","full_name":"unteikyou/CVE-2026-41940-AuthBypass-Detector","html_url":"https://github.com/unteikyou/CVE-2026-41940-AuthBypass-Detector","description":"Detection tool for cPanel/WHM CVE-2026-41940 (CRLF injection auth bypass). Verify vulnerability on servers you own or have permission to test. For authorized security assessments only.","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-05-01T20:30:30Z","pushed_at":"2026-05-01T09:40:51Z","created_at":"2026-05-01T09:40:22Z","topics":[],"owner":{"login":"unteikyou","html_url":"https://github.com/unteikyou"},"clone_url":"https://github.com/unteikyou/CVE-2026-41940-AuthBypass-Detector.git","has_code":true,"age_days":55},{"id":1226072271,"name":"CVE-2026-41940_exploit","full_name":"george1-adel/CVE-2026-41940_exploit","html_url":"https://github.com/george1-adel/CVE-2026-41940_exploit","description":"","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-05-01T20:30:26Z","pushed_at":"2026-05-01T00:18:30Z","created_at":"2026-05-01T00:17:32Z","topics":[],"owner":{"login":"george1-adel","html_url":"https://github.com/george1-adel"},"clone_url":"https://github.com/george1-adel/CVE-2026-41940_exploit.git","has_code":true,"age_days":55},{"id":1225360018,"name":"CVE-2026-41940","full_name":"Wesuiliye/CVE-2026-41940","html_url":"https://github.com/Wesuiliye/CVE-2026-41940","description":"CVE-2026-41940利用工具（go并发检测，python利用）","stargazers_count":1,"forks_count":1,"language":"Go","updated_at":"2026-05-01T20:30:41Z","pushed_at":"2026-04-30T07:55:34Z","created_at":"2026-04-30T07:43:32Z","topics":[],"owner":{"login":"Wesuiliye","html_url":"https://github.com/Wesuiliye"},"clone_url":"https://github.com/Wesuiliye/CVE-2026-41940.git","has_code":true,"age_days":56},{"id":1250760445,"name":"CVE-2026-41940-Linux","full_name":"willygailo/CVE-2026-41940-Linux","html_url":"https://github.com/willygailo/CVE-2026-41940-Linux","description":"⚠️ DISCLAIMER: This tool is intended for authorized penetration testing and educational purposes only. Using this tool against systems without explicit written permission is illegal. The developers are not responsible for any misuse or damage caused.","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-31T09:50:09Z","pushed_at":"2026-05-27T00:18:45Z","created_at":"2026-05-27T00:16:57Z","topics":[],"owner":{"login":"willygailo","html_url":"https://github.com/willygailo"},"clone_url":"https://github.com/willygailo/CVE-2026-41940-Linux.git","has_code":true,"age_days":29},{"id":1248228484,"name":"Automated-scanner-CVE-2026-41940","full_name":"sardine-web/Automated-scanner-CVE-2026-41940","html_url":"https://github.com/sardine-web/Automated-scanner-CVE-2026-41940","description":"Automated scanner \u0026 post-exploitation toolkit for CVE-2026-41940 — cPanel \u0026 WHM root authentication bypass via session-file CRLF injection","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-28T14:41:50Z","pushed_at":"2026-05-24T11:12:55Z","created_at":"2026-05-24T11:10:55Z","topics":[],"owner":{"login":"sardine-web","html_url":"https://github.com/sardine-web"},"clone_url":"https://github.com/sardine-web/Automated-scanner-CVE-2026-41940.git","has_code":true,"age_days":32},{"id":1231349180,"name":"CVE-2026-41940","full_name":"murrez/CVE-2026-41940","html_url":"https://github.com/murrez/CVE-2026-41940","description":"PoC for CVE-2026-41940: WHM/cPanel authentication bypass chain (Python 2.7). For authorized security research and testing only.","stargazers_count":1,"forks_count":1,"language":"Python","updated_at":"2026-05-12T06:28:22Z","pushed_at":"2026-05-12T06:28:19Z","created_at":"2026-05-06T21:59:11Z","topics":[],"owner":{"login":"murrez","html_url":"https://github.com/murrez"},"clone_url":"https://github.com/murrez/CVE-2026-41940.git","has_code":true,"age_days":49},{"id":1227574407,"name":"CVE-2026-41940","full_name":"MrOplus/CVE-2026-41940","html_url":"https://github.com/MrOplus/CVE-2026-41940","description":"CVE-2026-41940 Direct Shell Acess","stargazers_count":1,"forks_count":1,"language":"Python","updated_at":"2026-05-11T13:59:31Z","pushed_at":"2026-05-08T23:52:34Z","created_at":"2026-05-02T21:50:09Z","topics":[],"owner":{"login":"MrOplus","html_url":"https://github.com/MrOplus"},"clone_url":"https://github.com/MrOplus/CVE-2026-41940.git","has_code":true,"age_days":53},{"id":1232139213,"name":"CVE-2026-41940","full_name":"thekawix/CVE-2026-41940","html_url":"https://github.com/thekawix/CVE-2026-41940","description":"cve-2026-41940 cPanel/WHM Authentication Bypass - Detection Artifact Generator","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-26T08:48:00Z","pushed_at":"2026-05-07T16:30:23Z","created_at":"2026-05-07T16:17:39Z","topics":[],"owner":{"login":"thekawix","html_url":"https://github.com/thekawix"},"clone_url":"https://github.com/thekawix/CVE-2026-41940.git","has_code":true,"age_days":49},{"id":1229998345,"name":"CVE-2026-41940-Detection","full_name":"Unfold-Security/CVE-2026-41940-Detection","html_url":"https://github.com/Unfold-Security/CVE-2026-41940-Detection","description":"Detection signatures for CVE-2026-41940 and shemas for cPanel logs","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-05-07T14:48:55Z","pushed_at":"2026-05-07T14:41:41Z","created_at":"2026-05-05T15:22:44Z","topics":[],"owner":{"login":"Unfold-Security","html_url":"https://github.com/Unfold-Security"},"clone_url":"https://github.com/Unfold-Security/CVE-2026-41940-Detection.git","has_code":false,"age_days":51},{"id":1228783474,"name":"2026-41940-poc","full_name":"nickpaulsec/2026-41940-poc","html_url":"https://github.com/nickpaulsec/2026-41940-poc","description":"CVE-2026-41940: detect and exploit cpanel vuln","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-04T11:45:40Z","pushed_at":"2026-05-04T11:28:53Z","created_at":"2026-05-04T11:25:26Z","topics":[],"owner":{"login":"nickpaulsec","html_url":"https://github.com/nickpaulsec"},"clone_url":"https://github.com/nickpaulsec/2026-41940-poc.git","has_code":true,"age_days":52},{"id":1228269481,"name":"CVE-2026-41940-POC","full_name":"cy3erm/CVE-2026-41940-POC","html_url":"https://github.com/cy3erm/CVE-2026-41940-POC","description":"cPanel/WHM Authentication Bypass Proof of Concept — CVE-2026-41940","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-06T11:49:41Z","pushed_at":"2026-05-03T20:31:01Z","created_at":"2026-05-03T20:15:53Z","topics":[],"owner":{"login":"cy3erm","html_url":"https://github.com/cy3erm"},"clone_url":"https://github.com/cy3erm/CVE-2026-41940-POC.git","has_code":true,"age_days":52},{"id":1226881539,"name":"cPanel-Fix","full_name":"MrAriaNet/cPanel-Fix","html_url":"https://github.com/MrAriaNet/cPanel-Fix","description":"One security-remediation.sh for CVE-2026-41940 (cPanel), CVE-2026-31431 (kernel \"Copy Fail\"), CSF, optional domain/proxy cleanup, and optional operator hardening.","stargazers_count":1,"forks_count":2,"language":"Shell","updated_at":"2026-05-03T12:30:54Z","pushed_at":"2026-05-03T12:30:50Z","created_at":"2026-05-01T23:47:17Z","topics":[],"owner":{"login":"MrAriaNet","html_url":"https://github.com/MrAriaNet"},"clone_url":"https://github.com/MrAriaNet/cPanel-Fix.git","has_code":true,"age_days":54},{"id":1226561476,"name":"cve-checker-2026","full_name":"sebinxavi/cve-checker-2026","html_url":"https://github.com/sebinxavi/cve-checker-2026","description":"Multi-OS vulnerability checker for CVE-2026-31431 (Linux kernel) and CVE-2026-41940 (cPanel)","stargazers_count":1,"forks_count":1,"language":"Shell","updated_at":"2026-05-03T00:06:04Z","pushed_at":"2026-05-03T00:05:59Z","created_at":"2026-05-01T14:59:42Z","topics":[],"owner":{"login":"sebinxavi","html_url":"https://github.com/sebinxavi"},"clone_url":"https://github.com/sebinxavi/cve-checker-2026.git","has_code":true,"age_days":55},{"id":1227367769,"name":"cve-2026-41940-scanner","full_name":"linko-iheb/cve-2026-41940-scanner","html_url":"https://github.com/linko-iheb/cve-2026-41940-scanner","description":"","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-03T08:41:14Z","pushed_at":"2026-05-02T15:31:10Z","created_at":"2026-05-02T15:31:06Z","topics":[],"owner":{"login":"linko-iheb","html_url":"https://github.com/linko-iheb"},"clone_url":"https://github.com/linko-iheb/cve-2026-41940-scanner.git","has_code":true,"age_days":54},{"id":1226830083,"name":"portscan-CVE-2026-41940","full_name":"AmirrezaMarzban/portscan-CVE-2026-41940","html_url":"https://github.com/AmirrezaMarzban/portscan-CVE-2026-41940","description":"IP CIDRs (presumably as input, maybe command line or file) and checks ports 2083 and 2087 for openness","stargazers_count":1,"forks_count":2,"language":"Python","updated_at":"2026-06-04T08:14:27Z","pushed_at":"2026-05-01T22:08:13Z","created_at":"2026-05-01T22:01:48Z","topics":["cve-2026-41940","cve-2026-41940-poc"],"owner":{"login":"AmirrezaMarzban","html_url":"https://github.com/AmirrezaMarzban"},"clone_url":"https://github.com/AmirrezaMarzban/portscan-CVE-2026-41940.git","has_code":true,"age_days":54},{"id":1226564226,"name":"cpanelscanner","full_name":"0dev1337/cpanelscanner","html_url":"https://github.com/0dev1337/cpanelscanner","description":"Cpanel Scanner For CVE-2026-41940 ","stargazers_count":1,"forks_count":0,"language":"Go","updated_at":"2026-05-01T20:30:52Z","pushed_at":"2026-05-01T16:33:06Z","created_at":"2026-05-01T15:03:17Z","topics":[],"owner":{"login":"0dev1337","html_url":"https://github.com/0dev1337"},"clone_url":"https://github.com/0dev1337/cpanelscanner.git","has_code":true,"age_days":55},{"id":1231190626,"name":"CVE-2026-41940-Exploit-PoC","full_name":"Defacto-ridgepole254/CVE-2026-41940-Exploit-PoC","html_url":"https://github.com/Defacto-ridgepole254/CVE-2026-41940-Exploit-PoC","description":"Test authentication bypass vulnerabilities in cPanel and WHM using this proof of concept exploit tool written in Go.","stargazers_count":0,"forks_count":1,"language":"","updated_at":"2026-06-25T18:55:55Z","pushed_at":"2026-06-25T18:55:51Z","created_at":"2026-05-06T18:08:48Z","topics":["authentication-bypass","cpanel","cpanel-exploit","cve","cve-2026-41940","cve-exploit","exploit","poc","whm","whm-exploit"],"owner":{"login":"Defacto-ridgepole254","html_url":"https://github.com/Defacto-ridgepole254"},"clone_url":"https://github.com/Defacto-ridgepole254/CVE-2026-41940-Exploit-PoC.git","has_code":false,"age_days":50},{"id":1240662660,"name":"cpanel-cve-41940-detector","full_name":"limo57640-crypto/cpanel-cve-41940-detector","html_url":"https://github.com/limo57640-crypto/cpanel-cve-41940-detector","description":"Read-only cPanel CVE-2026-41940 IOC detector for .sorry ransomware, Mr_Rot13 Filemanager backdoors, C2 callbacks, cron, SSH, and logs.","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-22T13:45:10Z","pushed_at":"2026-06-22T13:45:01Z","created_at":"2026-05-16T12:12:22Z","topics":["bash","cpanel","cve-2026-41940","incident-response","ioc-scanner","ping7","ransomware","server-security","whm"],"owner":{"login":"limo57640-crypto","html_url":"https://github.com/limo57640-crypto"},"clone_url":"https://github.com/limo57640-crypto/cpanel-cve-41940-detector.git","has_code":true,"age_days":40},{"id":1247421249,"name":"CVE-2026-41940","full_name":"xxconi/CVE-2026-41940","html_url":"https://github.com/xxconi/CVE-2026-41940","description":"Private exploit","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-21T17:49:27Z","pushed_at":"2026-06-21T17:49:24Z","created_at":"2026-05-23T09:42:16Z","topics":[],"owner":{"login":"xxconi","html_url":"https://github.com/xxconi"},"clone_url":"https://github.com/xxconi/CVE-2026-41940.git","has_code":false,"age_days":33},{"id":1225295552,"name":"poc-cve-2026-41940","full_name":"rdyprtmx/poc-cve-2026-41940","html_url":"https://github.com/rdyprtmx/poc-cve-2026-41940","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-30T07:14:03Z","pushed_at":"2026-04-30T06:24:11Z","created_at":"2026-04-30T06:24:10Z","topics":[],"owner":{"login":"rdyprtmx","html_url":"https://github.com/rdyprtmx"},"clone_url":"https://github.com/rdyprtmx/poc-cve-2026-41940.git","has_code":false,"age_days":56},{"id":1235271179,"name":"CVE-2026-41940","full_name":"anach-ai/CVE-2026-41940","html_url":"https://github.com/anach-ai/CVE-2026-41940","description":"CVE-2026-41940 — cPanel/WHM Auth Bypass By Dr.Anach, CRLF injection in `cpsrvd` Basic auth handler → unauthenticated WHM API access → RCE as root. All cPanel since v11.40 affected.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-13T10:35:32Z","pushed_at":"2026-05-13T10:35:27Z","created_at":"2026-05-11T07:01:25Z","topics":[],"owner":{"login":"anach-ai","html_url":"https://github.com/anach-ai"},"clone_url":"https://github.com/anach-ai/CVE-2026-41940.git","has_code":true,"age_days":45},{"id":1234784359,"name":"cpanel-forensics","full_name":"ngksiva/cpanel-forensics","html_url":"https://github.com/ngksiva/cpanel-forensics","description":"Форензика после CVE-2026-41940 (cPanel/WHM) — bash-скрипт и чек-лист","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-10T17:15:05Z","pushed_at":"2026-05-10T17:15:01Z","created_at":"2026-05-10T16:31:29Z","topics":[],"owner":{"login":"ngksiva","html_url":"https://github.com/ngksiva"},"clone_url":"https://github.com/ngksiva/cpanel-forensics.git","has_code":true,"age_days":46},{"id":1233967571,"name":"cpanel-control-plane-exposure-check","full_name":"SreejaPuthan/cpanel-control-plane-exposure-check","html_url":"https://github.com/SreejaPuthan/cpanel-control-plane-exposure-check","description":"Defensive exposure assessment tool for identifying externally accessible cPanel, WHM, and Webmail management interfaces related to CVE-2026-41940.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-09T16:26:29Z","pushed_at":"2026-05-09T16:26:25Z","created_at":"2026-05-09T15:21:47Z","topics":[],"owner":{"login":"SreejaPuthan","html_url":"https://github.com/SreejaPuthan"},"clone_url":"https://github.com/SreejaPuthan/cpanel-control-plane-exposure-check.git","has_code":true,"age_days":47},{"id":1233279760,"name":"cpanel2shell-honeypot","full_name":"acuciureanu/cpanel2shell-honeypot","html_url":"https://github.com/acuciureanu/cpanel2shell-honeypot","description":"A Rust honeypot that simulates a vulnerable cPanel/WHM instance for CVE-2026-41940","stargazers_count":0,"forks_count":0,"language":"Rust","updated_at":"2026-05-08T20:29:03Z","pushed_at":"2026-05-08T20:29:00Z","created_at":"2026-05-08T19:37:23Z","topics":[],"owner":{"login":"acuciureanu","html_url":"https://github.com/acuciureanu"},"clone_url":"https://github.com/acuciureanu/cpanel2shell-honeypot.git","has_code":true,"age_days":48},{"id":1233022688,"name":"Security-CVE-2026-41940-cPanel-WHM-WP2","full_name":"branixsolutions/Security-CVE-2026-41940-cPanel-WHM-WP2","html_url":"https://github.com/branixsolutions/Security-CVE-2026-41940-cPanel-WHM-WP2","description":"","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-08T14:08:25Z","pushed_at":"2026-05-08T14:06:33Z","created_at":"2026-05-08T14:05:53Z","topics":[],"owner":{"login":"branixsolutions","html_url":"https://github.com/branixsolutions"},"clone_url":"https://github.com/branixsolutions/Security-CVE-2026-41940-cPanel-WHM-WP2.git","has_code":true,"age_days":48},{"id":1229518341,"name":"CVE-2026-41940","full_name":"ZildanZ/CVE-2026-41940","html_url":"https://github.com/ZildanZ/CVE-2026-41940","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-22T16:36:34Z","pushed_at":"2026-05-08T04:19:17Z","created_at":"2026-05-05T05:58:09Z","topics":[],"owner":{"login":"ZildanZ","html_url":"https://github.com/ZildanZ"},"clone_url":"https://github.com/ZildanZ/CVE-2026-41940.git","has_code":true,"age_days":51},{"id":1226724444,"name":"CVE-2026-41940","full_name":"0xBlackash/CVE-2026-41940","html_url":"https://github.com/0xBlackash/CVE-2026-41940","description":"CVE-2026-41940","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-05-06T17:48:53Z","pushed_at":"2026-05-06T17:48:49Z","created_at":"2026-05-01T18:58:09Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-41940.git","has_code":true,"age_days":55},{"id":1230567356,"name":"whmxploit---CVE-2026-41940","full_name":"OhmGun/whmxploit---CVE-2026-41940","html_url":"https://github.com/OhmGun/whmxploit---CVE-2026-41940","description":"CVE-2026-41940","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-06T05:54:04Z","pushed_at":"2026-05-06T05:54:00Z","created_at":"2026-05-06T05:52:27Z","topics":[],"owner":{"login":"OhmGun","html_url":"https://github.com/OhmGun"},"clone_url":"https://github.com/OhmGun/whmxploit---CVE-2026-41940.git","has_code":true,"age_days":50},{"id":1230316885,"name":"cpanel-pwn","full_name":"Richflexpix/cpanel-pwn","html_url":"https://github.com/Richflexpix/cpanel-pwn","description":"cPanel/WHM CVE-2026-41940 CRLF injection auth bypass exploit","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-05-05T22:39:28Z","pushed_at":"2026-05-05T22:39:23Z","created_at":"2026-05-05T22:06:49Z","topics":[],"owner":{"login":"Richflexpix","html_url":"https://github.com/Richflexpix"},"clone_url":"https://github.com/Richflexpix/cpanel-pwn.git","has_code":true,"age_days":50},{"id":1229170514,"name":"CVE-2026-41940","full_name":"itsismarcos/CVE-2026-41940","html_url":"https://github.com/itsismarcos/CVE-2026-41940","description":"Exploit CVE-2026-41940 auto exploit ","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-04T19:44:29Z","pushed_at":"2026-05-04T19:44:25Z","created_at":"2026-05-04T19:17:36Z","topics":[],"owner":{"login":"itsismarcos","html_url":"https://github.com/itsismarcos"},"clone_url":"https://github.com/itsismarcos/CVE-2026-41940.git","has_code":true,"age_days":52},{"id":1228942254,"name":"cPanel-WHM-CVE-2026-41940-AuthBypass","full_name":"iSee857/cPanel-WHM-CVE-2026-41940-AuthBypass","html_url":"https://github.com/iSee857/cPanel-WHM-CVE-2026-41940-AuthBypass","description":"cPanel-WHM-CVE-2026-41940-AuthBypass","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-24T08:27:47Z","pushed_at":"2026-05-04T15:38:54Z","created_at":"2026-05-04T14:35:55Z","topics":[],"owner":{"login":"iSee857","html_url":"https://github.com/iSee857"},"clone_url":"https://github.com/iSee857/cPanel-WHM-CVE-2026-41940-AuthBypass.git","has_code":true,"age_days":52},{"id":1228778795,"name":"CVE-2026-41940-cPanel-WHM-Verification-Tool","full_name":"sercanokur/CVE-2026-41940-cPanel-WHM-Verification-Tool","html_url":"https://github.com/sercanokur/CVE-2026-41940-cPanel-WHM-Verification-Tool","description":"This repository contains a Python verification script for `CVE-2026-41940`, a critical authentication bypass vulnerability disclosed in cPanel \u0026 WHM.  \u003e This project is intended for authorized defensive validation only. It is not intended for exploit development, unauthorized access, or misuse against systems you do not own or administer.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-04T11:20:39Z","pushed_at":"2026-05-04T11:20:35Z","created_at":"2026-05-04T11:19:09Z","topics":[],"owner":{"login":"sercanokur","html_url":"https://github.com/sercanokur"},"clone_url":"https://github.com/sercanokur/CVE-2026-41940-cPanel-WHM-Verification-Tool.git","has_code":true,"age_days":52},{"id":1228735861,"name":"cPanelSniper","full_name":"zwanski2019/cPanelSniper","html_url":"https://github.com/zwanski2019/cPanelSniper","description":"CVE-2026-41940 — cPanel \u0026 WHM Authentication Bypass via Session-File CRLF Injection","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-02T17:18:07Z","pushed_at":"2026-05-04T10:19:28Z","created_at":"2026-05-04T10:19:20Z","topics":[],"owner":{"login":"zwanski2019","html_url":"https://github.com/zwanski2019"},"clone_url":"https://github.com/zwanski2019/cPanelSniper.git","has_code":false,"age_days":52},{"id":1228259237,"name":"CPanel-Audit-Remediation-Tool","full_name":"Underh0st/CPanel-Audit-Remediation-Tool","html_url":"https://github.com/Underh0st/CPanel-Audit-Remediation-Tool","description":"Audit and incident response tool for CVE-2026-41940 vulnerability","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-03T22:28:05Z","pushed_at":"2026-05-03T22:28:02Z","created_at":"2026-05-03T19:57:29Z","topics":[],"owner":{"login":"Underh0st","html_url":"https://github.com/Underh0st"},"clone_url":"https://github.com/Underh0st/CPanel-Audit-Remediation-Tool.git","has_code":true,"age_days":53},{"id":1228075053,"name":"CVE-2026-41940-next","full_name":"tfawnies/CVE-2026-41940-next","html_url":"https://github.com/tfawnies/CVE-2026-41940-next","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-03T15:14:17Z","pushed_at":"2026-05-03T15:12:20Z","created_at":"2026-05-03T15:04:17Z","topics":[],"owner":{"login":"tfawnies","html_url":"https://github.com/tfawnies"},"clone_url":"https://github.com/tfawnies/CVE-2026-41940-next.git","has_code":true,"age_days":53},{"id":1228006050,"name":"POC_CVE-2026-41940","full_name":"imbas007/POC_CVE-2026-41940","html_url":"https://github.com/imbas007/POC_CVE-2026-41940","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-03T13:29:00Z","pushed_at":"2026-05-03T13:28:56Z","created_at":"2026-05-03T13:18:50Z","topics":[],"owner":{"login":"imbas007","html_url":"https://github.com/imbas007"},"clone_url":"https://github.com/imbas007/POC_CVE-2026-41940.git","has_code":true,"age_days":53},{"id":1227051578,"name":"CVE-2026-41940---cPanel-WHM-check","full_name":"3tternp/CVE-2026-41940---cPanel-WHM-check","html_url":"https://github.com/3tternp/CVE-2026-41940---cPanel-WHM-check","description":"This is the office check script provided by cPanel for all the users who are using cPanel ","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-02T06:24:32Z","pushed_at":"2026-05-02T06:24:29Z","created_at":"2026-05-02T06:18:18Z","topics":[],"owner":{"login":"3tternp","html_url":"https://github.com/3tternp"},"clone_url":"https://github.com/3tternp/CVE-2026-41940---cPanel-WHM-check.git","has_code":true,"age_days":54},{"id":1226931771,"name":"CVE-2026-41940","full_name":"dennisec/CVE-2026-41940","html_url":"https://github.com/dennisec/CVE-2026-41940","description":"CVE-2026-41940","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-02T01:58:35Z","pushed_at":"2026-05-02T01:58:32Z","created_at":"2026-05-02T01:51:34Z","topics":[],"owner":{"login":"dennisec","html_url":"https://github.com/dennisec"},"clone_url":"https://github.com/dennisec/CVE-2026-41940.git","has_code":true,"age_days":54},{"id":1226776311,"name":"cpanel-malware-cleaner-cve-2026","full_name":"vineet7800/cpanel-malware-cleaner-cve-2026","html_url":"https://github.com/vineet7800/cpanel-malware-cleaner-cve-2026","description":"cPanel malware, CVE-2026-41940, virus removal","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-01T20:28:04Z","pushed_at":"2026-05-01T20:27:40Z","created_at":"2026-05-01T20:26:00Z","topics":[],"owner":{"login":"vineet7800","html_url":"https://github.com/vineet7800"},"clone_url":"https://github.com/vineet7800/cpanel-malware-cleaner-cve-2026.git","has_code":false,"age_days":54},{"id":1226739575,"name":"CVE-2026-41940","full_name":"devtint/CVE-2026-41940","html_url":"https://github.com/devtint/CVE-2026-41940","description":"https://devtint.github.io/CVE-2026-41940","stargazers_count":0,"forks_count":0,"language":"HTML","updated_at":"2026-05-09T04:58:50Z","pushed_at":"2026-05-01T19:43:04Z","created_at":"2026-05-01T19:22:58Z","topics":[],"owner":{"login":"devtint","html_url":"https://github.com/devtint"},"clone_url":"https://github.com/devtint/CVE-2026-41940.git","has_code":true,"age_days":55},{"id":1261253711,"name":"CVE-2026-41940","full_name":"asdasddqwdq29-a11y/CVE-2026-41940","html_url":"https://github.com/asdasddqwdq29-a11y/CVE-2026-41940","description":"Redacted cPanel/WHM authentication bypass analysis and authorized checker","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-06T12:50:05Z","pushed_at":"2026-06-06T12:50:03Z","created_at":"2026-06-06T12:49:33Z","topics":[],"owner":{"login":"asdasddqwdq29-a11y","html_url":"https://github.com/asdasddqwdq29-a11y"},"clone_url":"https://github.com/asdasddqwdq29-a11y/CVE-2026-41940.git","has_code":false,"age_days":19},{"id":1260771714,"name":"CVE-2026-41940","full_name":"yurahshell/CVE-2026-41940","html_url":"https://github.com/yurahshell/CVE-2026-41940","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-05T21:21:38Z","pushed_at":"2026-06-05T21:21:34Z","created_at":"2026-06-05T21:20:32Z","topics":[],"owner":{"login":"yurahshell","html_url":"https://github.com/yurahshell"},"clone_url":"https://github.com/yurahshell/CVE-2026-41940.git","has_code":true,"age_days":19}]},{"cve_id":"CVE-2026-42048","repositories":[{"id":1245501728,"name":"CVE-2026-42048","full_name":"EQSTLab/CVE-2026-42048","html_url":"https://github.com/EQSTLab/CVE-2026-42048","description":"Langflow Arbitrary Directory Deletion","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-05-27T07:59:02Z","pushed_at":"2026-05-21T12:00:34Z","created_at":"2026-05-21T09:26:43Z","topics":[],"owner":{"login":"EQSTLab","html_url":"https://github.com/EQSTLab"},"clone_url":"https://github.com/EQSTLab/CVE-2026-42048.git","has_code":true,"age_days":35}]},{"cve_id":"CVE-2026-42055","repositories":[{"id":1273883249,"name":"CVE-2026-42055","full_name":"HORKimhab/CVE-2026-42055","html_url":"https://github.com/HORKimhab/CVE-2026-42055","description":"CVE-2026-42055 - Draft","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-20T11:50:48Z","pushed_at":"2026-06-19T01:05:06Z","created_at":"2026-06-19T01:05:02Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-42055.git","has_code":false,"age_days":6}]},{"cve_id":"CVE-2026-42096","repositories":[{"id":1243842038,"name":"sparx_hack","full_name":"br0xpl/sparx_hack","html_url":"https://github.com/br0xpl/sparx_hack","description":"Exploit code for CVE-2026-42096 and CVE-2026-42097 allowing for arbitrary SQL command execution without authentication.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-19T18:19:56Z","pushed_at":"2026-05-19T18:19:51Z","created_at":"2026-05-19T18:06:13Z","topics":[],"owner":{"login":"br0xpl","html_url":"https://github.com/br0xpl"},"clone_url":"https://github.com/br0xpl/sparx_hack.git","has_code":true,"age_days":37}]},{"cve_id":"CVE-2026-42097","repositories":[{"id":1243842038,"name":"sparx_hack","full_name":"br0xpl/sparx_hack","html_url":"https://github.com/br0xpl/sparx_hack","description":"Exploit code for CVE-2026-42096 and CVE-2026-42097 allowing for arbitrary SQL command execution without authentication.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-19T18:19:56Z","pushed_at":"2026-05-19T18:19:51Z","created_at":"2026-05-19T18:06:13Z","topics":[],"owner":{"login":"br0xpl","html_url":"https://github.com/br0xpl"},"clone_url":"https://github.com/br0xpl/sparx_hack.git","has_code":true,"age_days":37}]},{"cve_id":"CVE-2026-42141","repositories":[{"id":1225309865,"name":"CVE-2026-42141-xibo-ssrf","full_name":"H4zaz/CVE-2026-42141-xibo-ssrf","html_url":"https://github.com/H4zaz/CVE-2026-42141-xibo-ssrf","description":"SSRF vulnerability in Xibo CMS (CVE-2026-42141)","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-30T06:53:24Z","pushed_at":"2026-04-30T06:53:21Z","created_at":"2026-04-30T06:44:20Z","topics":[],"owner":{"login":"H4zaz","html_url":"https://github.com/H4zaz"},"clone_url":"https://github.com/H4zaz/CVE-2026-42141-xibo-ssrf.git","has_code":false,"age_days":56}]},{"cve_id":"CVE-2026-42154","repositories":[{"id":1239368274,"name":"CVE-2026-42154","full_name":"ShadowByte1/CVE-2026-42154","html_url":"https://github.com/ShadowByte1/CVE-2026-42154","description":"# CVE-2026-42154 — Prometheus Remote Read Snappy DoS","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-15T02:59:56Z","pushed_at":"2026-05-15T02:59:52Z","created_at":"2026-05-15T02:59:51Z","topics":[],"owner":{"login":"ShadowByte1","html_url":"https://github.com/ShadowByte1"},"clone_url":"https://github.com/ShadowByte1/CVE-2026-42154.git","has_code":false,"age_days":41}]},{"cve_id":"CVE-2026-42167","repositories":[{"id":1223664453,"name":"proftpd-CVE-2026-42167-poc","full_name":"ZeroPathAI/proftpd-CVE-2026-42167-poc","html_url":"https://github.com/ZeroPathAI/proftpd-CVE-2026-42167-poc","description":"POCs to demonstrate CVE-2026-42167 in ProFTPD","stargazers_count":22,"forks_count":5,"language":"Python","updated_at":"2026-06-22T11:05:02Z","pushed_at":"2026-04-29T16:20:20Z","created_at":"2026-04-28T14:35:46Z","topics":[],"owner":{"login":"ZeroPathAI","html_url":"https://github.com/ZeroPathAI"},"clone_url":"https://github.com/ZeroPathAI/proftpd-CVE-2026-42167-poc.git","has_code":true,"age_days":58},{"id":1224312813,"name":"proftpd-CVE-2026-42167-analysis","full_name":"dinosn/proftpd-CVE-2026-42167-analysis","html_url":"https://github.com/dinosn/proftpd-CVE-2026-42167-analysis","description":"Independent reproduction, code-level root-cause analysis, and realistic-exposure write-up for CVE-2026-42167 (ProFTPD mod_sql is_escaped_text() bypass).","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-04-29T14:04:33Z","pushed_at":"2026-04-29T06:52:38Z","created_at":"2026-04-29T06:52:34Z","topics":[],"owner":{"login":"dinosn","html_url":"https://github.com/dinosn"},"clone_url":"https://github.com/dinosn/proftpd-CVE-2026-42167-analysis.git","has_code":true,"age_days":57},{"id":1227276925,"name":"CVE-2026-42167-PoC","full_name":"jimmexploit/CVE-2026-42167-PoC","html_url":"https://github.com/jimmexploit/CVE-2026-42167-PoC","description":"ProFTPD SQL injection PoC","stargazers_count":1,"forks_count":0,"language":"Go","updated_at":"2026-05-08T10:28:06Z","pushed_at":"2026-05-02T13:28:14Z","created_at":"2026-05-02T13:08:49Z","topics":[],"owner":{"login":"jimmexploit","html_url":"https://github.com/jimmexploit"},"clone_url":"https://github.com/jimmexploit/CVE-2026-42167-PoC.git","has_code":true,"age_days":54},{"id":1228383838,"name":"CVE-2026-42167","full_name":"kaleth4/CVE-2026-42167","html_url":"https://github.com/kaleth4/CVE-2026-42167","description":"","stargazers_count":0,"forks_count":0,"language":"Go","updated_at":"2026-05-04T00:58:59Z","pushed_at":"2026-05-04T00:58:55Z","created_at":"2026-05-04T00:37:01Z","topics":[],"owner":{"login":"kaleth4","html_url":"https://github.com/kaleth4"},"clone_url":"https://github.com/kaleth4/CVE-2026-42167.git","has_code":true,"age_days":52},{"id":1227142684,"name":"CVE-2026-42167-Exploit","full_name":"efeanilarslan/CVE-2026-42167-Exploit","html_url":"https://github.com/efeanilarslan/CVE-2026-42167-Exploit","description":"Python exploit for CVE-2026-42167 (ProFTPD mod_sql). Features automated file scanning and timing-based blind data exfiltration.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-02T09:57:42Z","pushed_at":"2026-05-02T09:57:38Z","created_at":"2026-05-02T09:09:37Z","topics":["cve-2026-42167","exploit","penetration-testing","postgressql","proftpd","security-research","sql-injection"],"owner":{"login":"efeanilarslan","html_url":"https://github.com/efeanilarslan"},"clone_url":"https://github.com/efeanilarslan/CVE-2026-42167-Exploit.git","has_code":true,"age_days":54},{"id":1226502457,"name":"CVE-2026-42167-PoC","full_name":"Sl4cK0TH/CVE-2026-42167-PoC","html_url":"https://github.com/Sl4cK0TH/CVE-2026-42167-PoC","description":"Pre-Auth RCE in ProFTPD via mod_sql is_escaped_text() bypass (CVE-2026-42167)","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-02T04:50:11Z","pushed_at":"2026-05-02T04:50:07Z","created_at":"2026-05-01T13:36:47Z","topics":[],"owner":{"login":"Sl4cK0TH","html_url":"https://github.com/Sl4cK0TH"},"clone_url":"https://github.com/Sl4cK0TH/CVE-2026-42167-PoC.git","has_code":true,"age_days":55}]},{"cve_id":"CVE-2026-42203","repositories":[{"id":1239941958,"name":"CVE-2026-42203","full_name":"Astianjy/CVE-2026-42203","html_url":"https://github.com/Astianjy/CVE-2026-42203","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-15T15:52:38Z","pushed_at":"2026-05-15T15:52:34Z","created_at":"2026-05-15T15:49:40Z","topics":[],"owner":{"login":"Astianjy","html_url":"https://github.com/Astianjy"},"clone_url":"https://github.com/Astianjy/CVE-2026-42203.git","has_code":true,"age_days":41}]},{"cve_id":"CVE-2026-42208","repositories":[{"id":1223794703,"name":"CVE-2026-42208_lab","full_name":"imjdl/CVE-2026-42208_lab","html_url":"https://github.com/imjdl/CVE-2026-42208_lab","description":"CVE-2026-42208 lab","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-29T13:57:40Z","pushed_at":"2026-04-28T17:12:30Z","created_at":"2026-04-28T16:57:53Z","topics":[],"owner":{"login":"imjdl","html_url":"https://github.com/imjdl"},"clone_url":"https://github.com/imjdl/CVE-2026-42208_lab.git","has_code":true,"age_days":58},{"id":1254049966,"name":"poc_cve-2026-42208","full_name":"HAERIN-L/poc_cve-2026-42208","html_url":"https://github.com/HAERIN-L/poc_cve-2026-42208","description":"","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-30T06:29:03Z","pushed_at":"2026-05-30T06:29:00Z","created_at":"2026-05-30T04:51:39Z","topics":[],"owner":{"login":"HAERIN-L","html_url":"https://github.com/HAERIN-L"},"clone_url":"https://github.com/HAERIN-L/poc_cve-2026-42208.git","has_code":true,"age_days":26},{"id":1247116207,"name":"litellm-sqli-scanner","full_name":"ridhinva/litellm-sqli-scanner","html_url":"https://github.com/ridhinva/litellm-sqli-scanner","description":"CVE-2026-42208 - LiteLLM SQL Injection vulnerability scanner for BerriAI LiteLLM proxy instances","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-03T17:53:15Z","pushed_at":"2026-05-23T13:57:21Z","created_at":"2026-05-22T23:22:04Z","topics":[],"owner":{"login":"ridhinva","html_url":"https://github.com/ridhinva"},"clone_url":"https://github.com/ridhinva/litellm-sqli-scanner.git","has_code":true,"age_days":33},{"id":1234609901,"name":"CVE-2026-42208-Lab","full_name":"rootdirective-sec/CVE-2026-42208-Lab","html_url":"https://github.com/rootdirective-sec/CVE-2026-42208-Lab","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-08T14:35:40Z","pushed_at":"2026-05-10T12:12:15Z","created_at":"2026-05-10T12:11:44Z","topics":[],"owner":{"login":"rootdirective-sec","html_url":"https://github.com/rootdirective-sec"},"clone_url":"https://github.com/rootdirective-sec/CVE-2026-42208-Lab.git","has_code":true,"age_days":46},{"id":1234297570,"name":"threat-intel-brief-cve-2026-42208-litellm","full_name":"Zeltoc/threat-intel-brief-cve-2026-42208-litellm","html_url":"https://github.com/Zeltoc/threat-intel-brief-cve-2026-42208-litellm","description":"Threat intelligence brief on CVE-2026-42208, a critical pre-auth SQL injection in BerriAI LiteLLM exploited within 36 hours of disclosure. Covers attack path, detection opportunities, and recommended actions.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-10T02:09:59Z","pushed_at":"2026-05-10T02:08:32Z","created_at":"2026-05-10T02:07:25Z","topics":["ai-security","blue-team","cisa-kev","cve","cybersecurity","litellm","sql-injection","threat-intelligence","vulnerability-analysis"],"owner":{"login":"Zeltoc","html_url":"https://github.com/Zeltoc"},"clone_url":"https://github.com/Zeltoc/threat-intel-brief-cve-2026-42208-litellm.git","has_code":false,"age_days":46},{"id":1227922803,"name":"CVE-2026-42208","full_name":"0xBlackash/CVE-2026-42208","html_url":"https://github.com/0xBlackash/CVE-2026-42208","description":"CVE-2026-40487","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-05-04T18:47:19Z","pushed_at":"2026-05-04T18:47:15Z","created_at":"2026-05-03T10:55:34Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-42208.git","has_code":true,"age_days":53},{"id":1273843012,"name":"CVE-2026-42208-LAB","full_name":"yendpoint/CVE-2026-42208-LAB","html_url":"https://github.com/yendpoint/CVE-2026-42208-LAB","description":"A local lab for studying, reproducing, and verifying the patch for CVE-2026-42208: an unauthenticated SQL injection in LiteLLM's API key authentication path.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-18T23:41:29Z","pushed_at":"2026-06-18T23:41:25Z","created_at":"2026-06-18T23:40:32Z","topics":[],"owner":{"login":"yendpoint","html_url":"https://github.com/yendpoint"},"clone_url":"https://github.com/yendpoint/CVE-2026-42208-LAB.git","has_code":true,"age_days":6}]},{"cve_id":"CVE-2026-42221","repositories":[{"id":1277760404,"name":"nginx-ui-CVE-2026-42221-CVE-2026-42238-","full_name":"fuchiuebusi-lab/nginx-ui-CVE-2026-42221-CVE-2026-42238-","html_url":"https://github.com/fuchiuebusi-lab/nginx-ui-CVE-2026-42221-CVE-2026-42238-","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-24T15:58:23Z","pushed_at":"2026-06-24T15:57:15Z","created_at":"2026-06-23T06:59:10Z","topics":[],"owner":{"login":"fuchiuebusi-lab","html_url":"https://github.com/fuchiuebusi-lab"},"clone_url":"https://github.com/fuchiuebusi-lab/nginx-ui-CVE-2026-42221-CVE-2026-42238-.git","has_code":true,"age_days":2}]},{"cve_id":"CVE-2026-42228","repositories":[{"id":1231440969,"name":"CVE-2026-42228","full_name":"rudSarkar/CVE-2026-42228","html_url":"https://github.com/rudSarkar/CVE-2026-42228","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-07T01:01:28Z","pushed_at":"2026-05-07T01:01:25Z","created_at":"2026-05-07T00:59:34Z","topics":[],"owner":{"login":"rudSarkar","html_url":"https://github.com/rudSarkar"},"clone_url":"https://github.com/rudSarkar/CVE-2026-42228.git","has_code":true,"age_days":49}]},{"cve_id":"CVE-2026-42231","repositories":[{"id":1231451730,"name":"CVE-2026-42231","full_name":"rudSarkar/CVE-2026-42231","html_url":"https://github.com/rudSarkar/CVE-2026-42231","description":"","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-05-07T01:20:56Z","pushed_at":"2026-05-07T01:20:53Z","created_at":"2026-05-07T01:19:34Z","topics":[],"owner":{"login":"rudSarkar","html_url":"https://github.com/rudSarkar"},"clone_url":"https://github.com/rudSarkar/CVE-2026-42231.git","has_code":true,"age_days":49}]},{"cve_id":"CVE-2026-42238","repositories":[{"id":1277760404,"name":"nginx-ui-CVE-2026-42221-CVE-2026-42238-","full_name":"fuchiuebusi-lab/nginx-ui-CVE-2026-42221-CVE-2026-42238-","html_url":"https://github.com/fuchiuebusi-lab/nginx-ui-CVE-2026-42221-CVE-2026-42238-","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-24T15:58:23Z","pushed_at":"2026-06-24T15:57:15Z","created_at":"2026-06-23T06:59:10Z","topics":[],"owner":{"login":"fuchiuebusi-lab","html_url":"https://github.com/fuchiuebusi-lab"},"clone_url":"https://github.com/fuchiuebusi-lab/nginx-ui-CVE-2026-42221-CVE-2026-42238-.git","has_code":true,"age_days":2}]},{"cve_id":"CVE-2026-42271","repositories":[{"id":1244108480,"name":"CVE-2026-42271-PoC","full_name":"learner202649/CVE-2026-42271-PoC","html_url":"https://github.com/learner202649/CVE-2026-42271-PoC","description":"The code for personally reproducing the corresponding vulnerability","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-20T01:13:40Z","pushed_at":"2026-05-20T01:13:35Z","created_at":"2026-05-20T01:12:57Z","topics":[],"owner":{"login":"learner202649","html_url":"https://github.com/learner202649"},"clone_url":"https://github.com/learner202649/CVE-2026-42271-PoC.git","has_code":true,"age_days":36},{"id":1263736771,"name":"CVE-2026-42271","full_name":"HORKimhab/CVE-2026-42271","html_url":"https://github.com/HORKimhab/CVE-2026-42271","description":"CVE-2026-42271 - Draft","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-09T08:13:20Z","pushed_at":"2026-06-09T08:13:16Z","created_at":"2026-06-09T08:13:12Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-42271.git","has_code":false,"age_days":16}]},{"cve_id":"CVE-2026-42281","repositories":[{"id":1226002996,"name":"CVE-2026-42281","full_name":"Astaruf/CVE-2026-42281","html_url":"https://github.com/Astaruf/CVE-2026-42281","description":"CVE-2026-42281 - MagicMirror \u003c= 2.35.0 - Unauthenticated SSRF via /cors endpoint","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-05T13:07:54Z","pushed_at":"2026-05-04T20:45:46Z","created_at":"2026-04-30T21:48:55Z","topics":["bughunting","cve","cve-2026-42281","exploit","offensive-security","poc","ssrf","vulnerability"],"owner":{"login":"Astaruf","html_url":"https://github.com/Astaruf"},"clone_url":"https://github.com/Astaruf/CVE-2026-42281.git","has_code":true,"age_days":55}]},{"cve_id":"CVE-2026-4253","repositories":[{"id":1280256389,"name":"CVE-2026-4253-Scanner","full_name":"renzi25031469/CVE-2026-4253-Scanner","html_url":"https://github.com/renzi25031469/CVE-2026-4253-Scanner","description":"Non-destructive vulnerability scanner for NGINX HTTP/3 (ngx_http_v3_module). It ONLY performs a safe probe: opens an HTTP/3 (QUIC) connection, sends a single HEAD request and inspects the `Server` response header. It NEVER attempts to reopen a QPACK encoder stream or trigger the use-after-free.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-25T12:19:14Z","pushed_at":"2026-06-25T12:19:11Z","created_at":"2026-06-25T12:11:30Z","topics":[],"owner":{"login":"renzi25031469","html_url":"https://github.com/renzi25031469"},"clone_url":"https://github.com/renzi25031469/CVE-2026-4253-Scanner.git","has_code":true,"age_days":0}]},{"cve_id":"CVE-2026-42530","repositories":[{"id":1274683290,"name":"CVE-2026-42530","full_name":"v4ltonn/CVE-2026-42530","html_url":"https://github.com/v4ltonn/CVE-2026-42530","description":"Scanner PoC for CVE-2026-42530 -- nginx 1.31.0-1.31.1 HTTP/3 QPACK encoder stream Use-After-Free (CVSS 9.2)","stargazers_count":3,"forks_count":2,"language":"Python","updated_at":"2026-06-21T17:23:49Z","pushed_at":"2026-06-19T21:23:05Z","created_at":"2026-06-19T19:23:58Z","topics":[],"owner":{"login":"v4ltonn","html_url":"https://github.com/v4ltonn"},"clone_url":"https://github.com/v4ltonn/CVE-2026-42530.git","has_code":true,"age_days":6},{"id":1274723768,"name":"CVE-2026-42530","full_name":"0xBlackash/CVE-2026-42530","html_url":"https://github.com/0xBlackash/CVE-2026-42530","description":"CVE-2026-42530","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-19T21:15:34Z","pushed_at":"2026-06-19T21:15:30Z","created_at":"2026-06-19T20:28:17Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-42530.git","has_code":true,"age_days":5},{"id":1273882845,"name":"CVE-2026-42530","full_name":"HORKimhab/CVE-2026-42530","html_url":"https://github.com/HORKimhab/CVE-2026-42530","description":"CVE-2026-42530 - Draft","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-19T01:04:10Z","pushed_at":"2026-06-19T01:04:06Z","created_at":"2026-06-19T01:04:03Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-42530.git","has_code":false,"age_days":6}]},{"cve_id":"CVE-2026-4255","repositories":[{"id":1234111009,"name":"CVE-2026-4255","full_name":"Ard33/CVE-2026-4255","html_url":"https://github.com/Ard33/CVE-2026-4255","description":"","stargazers_count":1,"forks_count":0,"language":"C","updated_at":"2026-06-03T18:12:42Z","pushed_at":"2026-05-12T21:02:49Z","created_at":"2026-05-09T19:05:16Z","topics":[],"owner":{"login":"Ard33","html_url":"https://github.com/Ard33"},"clone_url":"https://github.com/Ard33/CVE-2026-4255.git","has_code":true,"age_days":47}]},{"cve_id":"CVE-2026-42568","repositories":[{"id":1253508614,"name":"CVE-2026-42568","full_name":"ex-cal1bur/CVE-2026-42568","html_url":"https://github.com/ex-cal1bur/CVE-2026-42568","description":"An LDAP injection vulnerability exists in org.yamcs.security.LdapAuthModule. The username parameter is inserted directly into LDAP search filters without RFC 4515 escaping, allowing authentication bypass.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-29T14:36:51Z","pushed_at":"2026-05-29T14:36:18Z","created_at":"2026-05-29T14:35:29Z","topics":[],"owner":{"login":"ex-cal1bur","html_url":"https://github.com/ex-cal1bur"},"clone_url":"https://github.com/ex-cal1bur/CVE-2026-42568.git","has_code":true,"age_days":27}]},{"cve_id":"CVE-2026-42569","repositories":[{"id":1235491812,"name":"CVE-2026-42569","full_name":"0xBlackash/CVE-2026-42569","html_url":"https://github.com/0xBlackash/CVE-2026-42569","description":"CVE-2026-42569","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-11T11:37:37Z","pushed_at":"2026-05-11T11:37:14Z","created_at":"2026-05-11T11:29:03Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-42569.git","has_code":true,"age_days":45}]},{"cve_id":"CVE-2026-4257","repositories":[{"id":1201649208,"name":"cve-2026-4257","full_name":"bootstrapbool/cve-2026-4257","html_url":"https://github.com/bootstrapbool/cve-2026-4257","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-15T22:57:33Z","pushed_at":"2026-04-15T22:57:29Z","created_at":"2026-04-05T00:52:39Z","topics":[],"owner":{"login":"bootstrapbool","html_url":"https://github.com/bootstrapbool"},"clone_url":"https://github.com/bootstrapbool/cve-2026-4257.git","has_code":true,"age_days":81},{"id":1235199784,"name":"CVE-2026-4257","full_name":"shootcannon/CVE-2026-4257","html_url":"https://github.com/shootcannon/CVE-2026-4257","description":"SSTI contact form to rce","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-11T07:20:21Z","pushed_at":"2026-05-11T05:26:44Z","created_at":"2026-05-11T05:24:58Z","topics":["cve-2026-4257"],"owner":{"login":"shootcannon","html_url":"https://github.com/shootcannon"},"clone_url":"https://github.com/shootcannon/CVE-2026-4257.git","has_code":true,"age_days":45}]},{"cve_id":"CVE-2026-42588","repositories":[{"id":1215538844,"name":"ActiveMQ-EXPtools","full_name":"Catherines77/ActiveMQ-EXPtools","html_url":"https://github.com/Catherines77/ActiveMQ-EXPtools","description":"Apache ActiveMQ漏洞综合利用工具(CVE-2015-5254，CVE-2016-3088，CVE-2022-41678，CVE-2023-46604，CVE-2024-32114，CVE-2026-34197，CVE-2026-40466， CVE-2026-42588)","stargazers_count":77,"forks_count":7,"language":"Java","updated_at":"2026-06-22T11:05:01Z","pushed_at":"2026-06-08T07:09:31Z","created_at":"2026-04-20T02:38:50Z","topics":[],"owner":{"login":"Catherines77","html_url":"https://github.com/Catherines77"},"clone_url":"https://github.com/Catherines77/ActiveMQ-EXPtools.git","has_code":true,"age_days":66},{"id":1259568431,"name":"ActiveMQ-cve-2026-42588-scanner-gui","full_name":"strivepan/ActiveMQ-cve-2026-42588-scanner-gui","html_url":"https://github.com/strivepan/ActiveMQ-cve-2026-42588-scanner-gui","description":"","stargazers_count":9,"forks_count":0,"language":"","updated_at":"2026-06-11T01:42:06Z","pushed_at":"2026-06-04T16:44:30Z","created_at":"2026-06-04T16:28:42Z","topics":[],"owner":{"login":"strivepan","html_url":"https://github.com/strivepan"},"clone_url":"https://github.com/strivepan/ActiveMQ-cve-2026-42588-scanner-gui.git","has_code":false,"age_days":21},{"id":1261003065,"name":"CVE-2026-42588","full_name":"hnytgl/CVE-2026-42588","html_url":"https://github.com/hnytgl/CVE-2026-42588","description":"CVE-2026-42588 - Apache ActiveMQ Jolokia 远程代码执行漏洞利用 (RCE Exploit)","stargazers_count":3,"forks_count":0,"language":"Python","updated_at":"2026-06-09T23:22:03Z","pushed_at":"2026-06-09T23:22:00Z","created_at":"2026-06-06T05:47:28Z","topics":[],"owner":{"login":"hnytgl","html_url":"https://github.com/hnytgl"},"clone_url":"https://github.com/hnytgl/CVE-2026-42588.git","has_code":true,"age_days":19},{"id":1273278879,"name":"POC","full_name":"gentleman567/POC","html_url":"https://github.com/gentleman567/POC","description":"Store vulnerability POC files including CVE-2026-42588 Spring RCE xml payload","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-18T11:20:25Z","pushed_at":"2026-06-18T11:20:21Z","created_at":"2026-06-18T11:20:16Z","topics":[],"owner":{"login":"gentleman567","html_url":"https://github.com/gentleman567"},"clone_url":"https://github.com/gentleman567/POC.git","has_code":false,"age_days":7}]},{"cve_id":"CVE-2026-42589","repositories":[{"id":1254116164,"name":"POC_CVE-2026-42589","full_name":"fineman999/POC_CVE-2026-42589","html_url":"https://github.com/fineman999/POC_CVE-2026-42589","description":"POC_CVE-2026-42589","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-30T07:35:14Z","pushed_at":"2026-05-30T07:35:11Z","created_at":"2026-05-30T06:54:17Z","topics":[],"owner":{"login":"fineman999","html_url":"https://github.com/fineman999"},"clone_url":"https://github.com/fineman999/POC_CVE-2026-42589.git","has_code":true,"age_days":26}]},{"cve_id":"CVE-2026-42647","repositories":[{"id":1268525538,"name":"CVE-2026-42647-Lab","full_name":"rootdirective-sec/CVE-2026-42647-Lab","html_url":"https://github.com/rootdirective-sec/CVE-2026-42647-Lab","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-13T16:30:23Z","pushed_at":"2026-06-13T16:30:19Z","created_at":"2026-06-13T16:29:02Z","topics":[],"owner":{"login":"rootdirective-sec","html_url":"https://github.com/rootdirective-sec"},"clone_url":"https://github.com/rootdirective-sec/CVE-2026-42647-Lab.git","has_code":true,"age_days":12}]},{"cve_id":"CVE-2026-42758","repositories":[{"id":1272106359,"name":"CVE-2026-42758","full_name":"izxci/CVE-2026-42758","html_url":"https://github.com/izxci/CVE-2026-42758","description":"CVE-2026-42758 WebinarIgnition Exploit","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-17T09:45:35Z","pushed_at":"2026-06-17T09:45:32Z","created_at":"2026-06-17T09:44:46Z","topics":[],"owner":{"login":"izxci","html_url":"https://github.com/izxci"},"clone_url":"https://github.com/izxci/CVE-2026-42758.git","has_code":false,"age_days":8}]},{"cve_id":"CVE-2026-42778","repositories":[{"id":1228849425,"name":"CVE-2026-42778-POC","full_name":"Akinfue/CVE-2026-42778-POC","html_url":"https://github.com/Akinfue/CVE-2026-42778-POC","description":"CVE-2026-42778 EUVD-2026-26492  Deserialization of Untrusted Data (CWE-502)","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-04T14:28:47Z","pushed_at":"2026-05-04T14:27:06Z","created_at":"2026-05-04T12:50:31Z","topics":[],"owner":{"login":"Akinfue","html_url":"https://github.com/Akinfue"},"clone_url":"https://github.com/Akinfue/CVE-2026-42778-POC.git","has_code":false,"age_days":52}]},{"cve_id":"CVE-2026-42779","repositories":[{"id":1227120082,"name":"CVE-2026-42779","full_name":"dinosn/CVE-2026-42779","html_url":"https://github.com/dinosn/CVE-2026-42779","description":"CVE-2026-42779: Apache MINA AbstractIoBuffer.resolveClass() deserialization filter bypass to RCE (CVSS 9.8)","stargazers_count":11,"forks_count":2,"language":"Java","updated_at":"2026-05-04T06:52:55Z","pushed_at":"2026-05-02T08:30:15Z","created_at":"2026-05-02T08:26:20Z","topics":[],"owner":{"login":"dinosn","html_url":"https://github.com/dinosn"},"clone_url":"https://github.com/dinosn/CVE-2026-42779.git","has_code":true,"age_days":54}]},{"cve_id":"CVE-2026-42796","repositories":[{"id":1232857279,"name":"CVE-2026-42796","full_name":"ameerhamza-malik/CVE-2026-42796","html_url":"https://github.com/ameerhamza-malik/CVE-2026-42796","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-08T10:57:29Z","pushed_at":"2026-05-08T10:57:25Z","created_at":"2026-05-08T10:47:48Z","topics":[],"owner":{"login":"ameerhamza-malik","html_url":"https://github.com/ameerhamza-malik"},"clone_url":"https://github.com/ameerhamza-malik/CVE-2026-42796.git","has_code":true,"age_days":48}]},{"cve_id":"CVE-2026-42879","repositories":[{"id":1187580618,"name":"CVE-2026-42879","full_name":"guzrex/CVE-2026-42879","html_url":"https://github.com/guzrex/CVE-2026-42879","description":"FacturaScripts RCE Exploit - Proof of Concept ","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-05T14:03:09Z","pushed_at":"2026-05-05T14:02:30Z","created_at":"2026-03-20T22:26:25Z","topics":[],"owner":{"login":"guzrex","html_url":"https://github.com/guzrex"},"clone_url":"https://github.com/guzrex/CVE-2026-42879.git","has_code":true,"age_days":96}]},{"cve_id":"CVE-2026-42880","repositories":[{"id":1249153133,"name":"POC_CVE-2026-42880","full_name":"HAERIN-L/POC_CVE-2026-42880","html_url":"https://github.com/HAERIN-L/POC_CVE-2026-42880","description":"","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-01T05:43:19Z","pushed_at":"2026-06-01T05:43:15Z","created_at":"2026-05-25T12:03:59Z","topics":[],"owner":{"login":"HAERIN-L","html_url":"https://github.com/HAERIN-L"},"clone_url":"https://github.com/HAERIN-L/POC_CVE-2026-42880.git","has_code":true,"age_days":31}]},{"cve_id":"CVE-2026-42897","repositories":[{"id":1239721889,"name":"CVE-2026-42897","full_name":"atiilla/CVE-2026-42897","html_url":"https://github.com/atiilla/CVE-2026-42897","description":"CVE-2026-42897 - Exchange Health Checker blind spot: outbound IIS URL Rewrite rules silently ignored, making EOMT mitigations invisible in diagnostic reports.","stargazers_count":4,"forks_count":3,"language":"PowerShell","updated_at":"2026-06-05T13:13:25Z","pushed_at":"2026-05-15T11:40:59Z","created_at":"2026-05-15T11:24:36Z","topics":[],"owner":{"login":"atiilla","html_url":"https://github.com/atiilla"},"clone_url":"https://github.com/atiilla/CVE-2026-42897.git","has_code":true,"age_days":41}]},{"cve_id":"CVE-2026-42926","repositories":[{"id":1261434372,"name":"CVE2026-42926","full_name":"ikarolaborda/CVE2026-42926","html_url":"https://github.com/ikarolaborda/CVE2026-42926","description":"Controlled NGINX HTTP/2 frame injection lab for CVE-2026-42926 patch validation and defensive research","stargazers_count":0,"forks_count":0,"language":"PHP","updated_at":"2026-06-06T17:19:29Z","pushed_at":"2026-06-06T17:19:19Z","created_at":"2026-06-06T17:19:16Z","topics":["cve-2026-42926","cybersecurity","defensive-security","docker","docker-compose","frame-injection","http2","nginx","patch-validation","security-research","vulnerability-lab"],"owner":{"login":"ikarolaborda","html_url":"https://github.com/ikarolaborda"},"clone_url":"https://github.com/ikarolaborda/CVE2026-42926.git","has_code":true,"age_days":19}]},{"cve_id":"CVE-2026-42940","repositories":[{"id":1230590847,"name":"bot-CVE-2026-42940","full_name":"ndhet/bot-CVE-2026-42940","html_url":"https://github.com/ndhet/bot-CVE-2026-42940","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-06T06:38:19Z","pushed_at":"2026-05-06T06:38:14Z","created_at":"2026-05-06T06:25:30Z","topics":[],"owner":{"login":"ndhet","html_url":"https://github.com/ndhet"},"clone_url":"https://github.com/ndhet/bot-CVE-2026-42940.git","has_code":true,"age_days":50}]},{"cve_id":"CVE-2026-42945","repositories":[{"id":1237138183,"name":"Nginx-Rift","full_name":"DepthFirstDisclosures/Nginx-Rift","html_url":"https://github.com/DepthFirstDisclosures/Nginx-Rift","description":"exploit for CVE-2026-42945","stargazers_count":860,"forks_count":159,"language":"Python","updated_at":"2026-06-25T09:40:14Z","pushed_at":"2026-05-13T18:40:57Z","created_at":"2026-05-12T23:05:32Z","topics":[],"owner":{"login":"DepthFirstDisclosures","html_url":"https://github.com/DepthFirstDisclosures"},"clone_url":"https://github.com/DepthFirstDisclosures/Nginx-Rift.git","has_code":true,"age_days":43},{"id":1238717147,"name":"CVE-2026-42945-POC","full_name":"cipherspy/CVE-2026-42945-POC","html_url":"https://github.com/cipherspy/CVE-2026-42945-POC","description":"exploit for CVE-2026-42945","stargazers_count":41,"forks_count":11,"language":"Python","updated_at":"2026-06-15T17:35:45Z","pushed_at":"2026-05-14T11:38:47Z","created_at":"2026-05-14T11:38:08Z","topics":[],"owner":{"login":"cipherspy","html_url":"https://github.com/cipherspy"},"clone_url":"https://github.com/cipherspy/CVE-2026-42945-POC.git","has_code":true,"age_days":42},{"id":1238390311,"name":"NGINX_RIFT_SCAN_CVE_2026_42945","full_name":"friparia/NGINX_RIFT_SCAN_CVE_2026_42945","html_url":"https://github.com/friparia/NGINX_RIFT_SCAN_CVE_2026_42945","description":"Nginx Rewrite CVE Scan(CVE-2026-42945 nginx-rift  CVE-2026-9256)","stargazers_count":33,"forks_count":8,"language":"Python","updated_at":"2026-06-23T16:45:28Z","pushed_at":"2026-05-27T08:17:05Z","created_at":"2026-05-14T04:40:47Z","topics":[],"owner":{"login":"friparia","html_url":"https://github.com/friparia"},"clone_url":"https://github.com/friparia/NGINX_RIFT_SCAN_CVE_2026_42945.git","has_code":true,"age_days":42},{"id":1239284081,"name":"Scanner_CVE_2026-42945","full_name":"oseasfr/Scanner_CVE_2026-42945","html_url":"https://github.com/oseasfr/Scanner_CVE_2026-42945","description":"Script Python para detecção de instâncias Nginx vulneráveis ao CVE-2026-42945 em IPs, CIDRs e ASNs.","stargazers_count":18,"forks_count":1,"language":"Python","updated_at":"2026-06-24T05:32:39Z","pushed_at":"2026-05-20T12:25:09Z","created_at":"2026-05-15T00:16:39Z","topics":[],"owner":{"login":"oseasfr","html_url":"https://github.com/oseasfr"},"clone_url":"https://github.com/oseasfr/Scanner_CVE_2026-42945.git","has_code":true,"age_days":41},{"id":1238802955,"name":"CVE-2026-42945","full_name":"rheodev/CVE-2026-42945","html_url":"https://github.com/rheodev/CVE-2026-42945","description":"NGINX Rift 漏洞分析与复现","stargazers_count":18,"forks_count":5,"language":"Python","updated_at":"2026-06-08T12:06:07Z","pushed_at":"2026-05-14T13:22:00Z","created_at":"2026-05-14T13:20:06Z","topics":[],"owner":{"login":"rheodev","html_url":"https://github.com/rheodev"},"clone_url":"https://github.com/rheodev/CVE-2026-42945.git","has_code":true,"age_days":42},{"id":1240753157,"name":"nGixshell","full_name":"MateusVerass/nGixshell","html_url":"https://github.com/MateusVerass/nGixshell","description":"nginx CVE scanner + RCE exploit framework (CVE-2026-42945 + 16 others)","stargazers_count":15,"forks_count":6,"language":"Python","updated_at":"2026-06-14T05:14:04Z","pushed_at":"2026-05-17T01:59:59Z","created_at":"2026-05-16T14:25:39Z","topics":[],"owner":{"login":"MateusVerass","html_url":"https://github.com/MateusVerass"},"clone_url":"https://github.com/MateusVerass/nGixshell.git","has_code":true,"age_days":40},{"id":1238450411,"name":"CVE-2026-42945-POC","full_name":"p3Nt3st3r-sTAr/CVE-2026-42945-POC","html_url":"https://github.com/p3Nt3st3r-sTAr/CVE-2026-42945-POC","description":"","stargazers_count":15,"forks_count":10,"language":"Python","updated_at":"2026-06-15T12:42:31Z","pushed_at":"2026-05-14T06:27:43Z","created_at":"2026-05-14T06:12:17Z","topics":[],"owner":{"login":"p3Nt3st3r-sTAr","html_url":"https://github.com/p3Nt3st3r-sTAr"},"clone_url":"https://github.com/p3Nt3st3r-sTAr/CVE-2026-42945-POC.git","has_code":true,"age_days":42},{"id":1249009469,"name":"NGINX-Rift","full_name":"nu0l/NGINX-Rift","html_url":"https://github.com/nu0l/NGINX-Rift","description":"CVE-2026-42945 NGINX 堆溢出漏洞扫描与验证工具","stargazers_count":4,"forks_count":1,"language":"Go","updated_at":"2026-06-22T13:10:35Z","pushed_at":"2026-05-26T07:07:40Z","created_at":"2026-05-25T09:02:49Z","topics":[],"owner":{"login":"nu0l","html_url":"https://github.com/nu0l"},"clone_url":"https://github.com/nu0l/NGINX-Rift.git","has_code":true,"age_days":31},{"id":1244361129,"name":"CVE-2026-42945-NGINX-Rift-Toolkit","full_name":"gagaltotal/CVE-2026-42945-NGINX-Rift-Toolkit","html_url":"https://github.com/gagaltotal/CVE-2026-42945-NGINX-Rift-Toolkit","description":"CVE-2026-42945 - NGINX Rift Toolkit","stargazers_count":3,"forks_count":1,"language":"Python","updated_at":"2026-06-24T05:32:29Z","pushed_at":"2026-05-20T08:05:10Z","created_at":"2026-05-20T07:37:58Z","topics":["cve","cve-scanning","linux","linux-server","nginx","nginx-server","python","python3"],"owner":{"login":"gagaltotal","html_url":"https://github.com/gagaltotal"},"clone_url":"https://github.com/gagaltotal/CVE-2026-42945-NGINX-Rift-Toolkit.git","has_code":true,"age_days":36},{"id":1241623278,"name":"nginx-cve-2026-42945","full_name":"tal7aouy/nginx-cve-2026-42945","html_url":"https://github.com/tal7aouy/nginx-cve-2026-42945","description":"🛡️ Script to test for NGINX CVE-2026-42945","stargazers_count":3,"forks_count":0,"language":"Python","updated_at":"2026-06-15T16:34:57Z","pushed_at":"2026-05-17T16:19:25Z","created_at":"2026-05-17T16:07:37Z","topics":[],"owner":{"login":"tal7aouy","html_url":"https://github.com/tal7aouy"},"clone_url":"https://github.com/tal7aouy/nginx-cve-2026-42945.git","has_code":true,"age_days":39},{"id":1239652962,"name":"CVE-2026-42945","full_name":"jelasin/CVE-2026-42945","html_url":"https://github.com/jelasin/CVE-2026-42945","description":"","stargazers_count":3,"forks_count":3,"language":"Python","updated_at":"2026-06-03T08:42:38Z","pushed_at":"2026-05-15T09:57:47Z","created_at":"2026-05-15T09:57:02Z","topics":[],"owner":{"login":"jelasin","html_url":"https://github.com/jelasin"},"clone_url":"https://github.com/jelasin/CVE-2026-42945.git","has_code":true,"age_days":41},{"id":1239539126,"name":"nginx-rift-detect","full_name":"iammerrida-source/nginx-rift-detect","html_url":"https://github.com/iammerrida-source/nginx-rift-detect","description":"Behavioral detection script for CVE-2026-42945 (NGINX Rift) — heap overflow in ngx_http_rewrite_module. No RCE, crash-based detection only.","stargazers_count":3,"forks_count":0,"language":"Python","updated_at":"2026-05-28T08:50:46Z","pushed_at":"2026-05-15T07:36:56Z","created_at":"2026-05-15T07:29:53Z","topics":[],"owner":{"login":"iammerrida-source","html_url":"https://github.com/iammerrida-source"},"clone_url":"https://github.com/iammerrida-source/nginx-rift-detect.git","has_code":true,"age_days":41},{"id":1258204776,"name":"Nginx_cve-2026-42945-scanner-gui","full_name":"strivepan/Nginx_cve-2026-42945-scanner-gui","html_url":"https://github.com/strivepan/Nginx_cve-2026-42945-scanner-gui","description":"Bulk scanning + one-click vulnerability exploitation","stargazers_count":3,"forks_count":0,"language":"","updated_at":"2026-06-03T14:14:29Z","pushed_at":"2026-06-03T11:42:42Z","created_at":"2026-06-03T11:14:24Z","topics":[],"owner":{"login":"strivepan","html_url":"https://github.com/strivepan"},"clone_url":"https://github.com/strivepan/Nginx_cve-2026-42945-scanner-gui.git","has_code":false,"age_days":22},{"id":1238765160,"name":"nginxrift-CVE-2026-42945","full_name":"nanwinata/nginxrift-CVE-2026-42945","html_url":"https://github.com/nanwinata/nginxrift-CVE-2026-42945","description":"","stargazers_count":2,"forks_count":3,"language":"Python","updated_at":"2026-05-22T11:06:03Z","pushed_at":"2026-05-15T06:43:19Z","created_at":"2026-05-14T12:37:14Z","topics":[],"owner":{"login":"nanwinata","html_url":"https://github.com/nanwinata"},"clone_url":"https://github.com/nanwinata/nginxrift-CVE-2026-42945.git","has_code":true,"age_days":42},{"id":1238969868,"name":"CVE-2026-42945","full_name":"0xBlackash/CVE-2026-42945","html_url":"https://github.com/0xBlackash/CVE-2026-42945","description":"CVE-2026-42945","stargazers_count":2,"forks_count":1,"language":"Python","updated_at":"2026-05-25T11:03:09Z","pushed_at":"2026-05-14T16:44:41Z","created_at":"2026-05-14T16:22:24Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-42945.git","has_code":true,"age_days":42},{"id":1242533759,"name":"CVE-2026-42945","full_name":"hnytgl/CVE-2026-42945","html_url":"https://github.com/hnytgl/CVE-2026-42945","description":"这是一个面向防守和内网排查的 CVE-2026-42945 静态检测工具，用于检查 NGINX ngx_http_rewrite_module 相关配置是否存在高风险 rewrite 组合。","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-06T06:43:44Z","pushed_at":"2026-06-06T06:40:41Z","created_at":"2026-05-18T14:09:21Z","topics":[],"owner":{"login":"hnytgl","html_url":"https://github.com/hnytgl"},"clone_url":"https://github.com/hnytgl/CVE-2026-42945.git","has_code":true,"age_days":38},{"id":1249383915,"name":"CVE-2026-42945-nginx-rift","full_name":"josephfelix/CVE-2026-42945-nginx-rift","html_url":"https://github.com/josephfelix/CVE-2026-42945-nginx-rift","description":"Repository for studying the CVE-2026-42945 vulnerability in nginx \u003c 1.30","stargazers_count":1,"forks_count":1,"language":"Jupyter Notebook","updated_at":"2026-06-05T15:14:07Z","pushed_at":"2026-05-25T16:35:54Z","created_at":"2026-05-25T16:35:03Z","topics":[],"owner":{"login":"josephfelix","html_url":"https://github.com/josephfelix"},"clone_url":"https://github.com/josephfelix/CVE-2026-42945-nginx-rift.git","has_code":true,"age_days":31},{"id":1243544869,"name":"CVE-2026-42945","full_name":"RedCrazyGhost/CVE-2026-42945","html_url":"https://github.com/RedCrazyGhost/CVE-2026-42945","description":"","stargazers_count":1,"forks_count":0,"language":"Go","updated_at":"2026-05-19T13:46:15Z","pushed_at":"2026-05-19T13:41:53Z","created_at":"2026-05-19T12:46:37Z","topics":[],"owner":{"login":"RedCrazyGhost","html_url":"https://github.com/RedCrazyGhost"},"clone_url":"https://github.com/RedCrazyGhost/CVE-2026-42945.git","has_code":true,"age_days":37},{"id":1241755488,"name":"CVE-2026-42945-NGINX-Rift","full_name":"Renison-Gohel/CVE-2026-42945-NGINX-Rift","html_url":"https://github.com/Renison-Gohel/CVE-2026-42945-NGINX-Rift","description":"","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-20T13:47:45Z","pushed_at":"2026-05-17T19:27:11Z","created_at":"2026-05-17T19:22:10Z","topics":[],"owner":{"login":"Renison-Gohel","html_url":"https://github.com/Renison-Gohel"},"clone_url":"https://github.com/Renison-Gohel/CVE-2026-42945-NGINX-Rift.git","has_code":true,"age_days":39},{"id":1240542663,"name":"cve-2026-42945-nginx32-lab","full_name":"dinosn/cve-2026-42945-nginx32-lab","html_url":"https://github.com/dinosn/cve-2026-42945-nginx32-lab","description":"CVE-2026-42945 nginx 32-bit exploit lab ASLR enabled","stargazers_count":1,"forks_count":1,"language":"Python","updated_at":"2026-06-15T17:36:33Z","pushed_at":"2026-05-16T09:02:07Z","created_at":"2026-05-16T09:01:39Z","topics":[],"owner":{"login":"dinosn","html_url":"https://github.com/dinosn"},"clone_url":"https://github.com/dinosn/cve-2026-42945-nginx32-lab.git","has_code":true,"age_days":40},{"id":1239370644,"name":"CVE-2026-42945","full_name":"chenqin231/CVE-2026-42945","html_url":"https://github.com/chenqin231/CVE-2026-42945","description":"CVE-2026-42945: nginx-rift vulnerability analysis and detection script","stargazers_count":1,"forks_count":0,"language":"Shell","updated_at":"2026-05-21T03:19:36Z","pushed_at":"2026-05-15T04:13:30Z","created_at":"2026-05-15T03:05:11Z","topics":[],"owner":{"login":"chenqin231","html_url":"https://github.com/chenqin231"},"clone_url":"https://github.com/chenqin231/CVE-2026-42945.git","has_code":true,"age_days":41},{"id":1239342926,"name":"nginx-cve-2026-42945-poc","full_name":"forxiucn/nginx-cve-2026-42945-poc","html_url":"https://github.com/forxiucn/nginx-cve-2026-42945-poc","description":"","stargazers_count":1,"forks_count":0,"language":"C","updated_at":"2026-05-17T13:53:28Z","pushed_at":"2026-05-15T02:13:59Z","created_at":"2026-05-15T02:12:22Z","topics":[],"owner":{"login":"forxiucn","html_url":"https://github.com/forxiucn"},"clone_url":"https://github.com/forxiucn/nginx-cve-2026-42945-poc.git","has_code":true,"age_days":41},{"id":1238689643,"name":"cve-2026-42945-scan","full_name":"realityone/cve-2026-42945-scan","html_url":"https://github.com/realityone/cve-2026-42945-scan","description":"Scan your NGINX configuration to determine whether it is affected by CVE-2026-42945.","stargazers_count":1,"forks_count":0,"language":"Go","updated_at":"2026-05-14T16:58:42Z","pushed_at":"2026-05-14T11:55:41Z","created_at":"2026-05-14T11:03:57Z","topics":[],"owner":{"login":"realityone","html_url":"https://github.com/realityone"},"clone_url":"https://github.com/realityone/cve-2026-42945-scan.git","has_code":true,"age_days":42},{"id":1258886645,"name":"nginx-rift-scanner","full_name":"simota/nginx-rift-scanner","html_url":"https://github.com/simota/nginx-rift-scanner","description":"Detect-only scanner for CVE-2026-42945 (NGINX Rift), a heap overflow in ngx_http_rewrite_module. Version detection + nginx.conf pattern analysis. Python 3 stdlib-only, no network calls.","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-08T21:03:53Z","pushed_at":"2026-06-04T02:59:27Z","created_at":"2026-06-04T02:30:52Z","topics":["claude-code-skill","cve","heap-overflow","nginx","python","security","security-audit","vulnerability-scanner"],"owner":{"login":"simota","html_url":"https://github.com/simota"},"clone_url":"https://github.com/simota/nginx-rift-scanner.git","has_code":true,"age_days":21},{"id":1240663126,"name":"nginx-rift-detector","full_name":"limo57640-crypto/nginx-rift-detector","html_url":"https://github.com/limo57640-crypto/nginx-rift-detector","description":"Free NGINX Rift CVE-2026-42945 detector for version, rewrite config, ASLR, crash logs, and exploitation indicators.","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-22T13:45:14Z","pushed_at":"2026-06-22T13:45:00Z","created_at":"2026-05-16T12:13:01Z","topics":["bash","cve-2026-42945","incident-response","nginx","nginx-rift","ping7","security-tools","vulnerability-detection"],"owner":{"login":"limo57640-crypto","html_url":"https://github.com/limo57640-crypto"},"clone_url":"https://github.com/limo57640-crypto/nginx-rift-detector.git","has_code":true,"age_days":40},{"id":1276857227,"name":"CVE-2026-42945","full_name":"azilRababe/CVE-2026-42945","html_url":"https://github.com/azilRababe/CVE-2026-42945","description":"Technical analysis of CVE-2026-42945 (NGINX Rift), a critical heap buffer overflow in NGINX's rewrite engine caused by a state mismatch between length calculation and copy operations, enabling worker crashes and potential remote code execution.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-22T11:03:42Z","pushed_at":"2026-06-22T11:03:38Z","created_at":"2026-06-22T11:02:34Z","topics":[],"owner":{"login":"azilRababe","html_url":"https://github.com/azilRababe"},"clone_url":"https://github.com/azilRababe/CVE-2026-42945.git","has_code":false,"age_days":3},{"id":1252058387,"name":"CVE-2026-42945","full_name":"quantumworld-dpdns-io/CVE-2026-42945","html_url":"https://github.com/quantumworld-dpdns-io/CVE-2026-42945","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-28T08:12:39Z","pushed_at":"2026-05-28T08:12:27Z","created_at":"2026-05-28T06:40:43Z","topics":[],"owner":{"login":"quantumworld-dpdns-io","html_url":"https://github.com/quantumworld-dpdns-io"},"clone_url":"https://github.com/quantumworld-dpdns-io/CVE-2026-42945.git","has_code":true,"age_days":28},{"id":1247634020,"name":"nginx-rce-cve-2026-42945","full_name":"webdev75950-ux/nginx-rce-cve-2026-42945","html_url":"https://github.com/webdev75950-ux/nginx-rce-cve-2026-42945","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-23T15:21:58Z","pushed_at":"2026-05-23T15:21:54Z","created_at":"2026-05-23T15:21:51Z","topics":[],"owner":{"login":"webdev75950-ux","html_url":"https://github.com/webdev75950-ux"},"clone_url":"https://github.com/webdev75950-ux/nginx-rce-cve-2026-42945.git","has_code":false,"age_days":33},{"id":1246946637,"name":"CVE-2026-42945-nginx-rift-poc","full_name":"F2u0a0d3/CVE-2026-42945-nginx-rift-poc","html_url":"https://github.com/F2u0a0d3/CVE-2026-42945-nginx-rift-poc","description":"PoC for CVE-2026-42945 (nginx Rift) — heap buffer overflow in ngx_http_rewrite_module. Includes detect/probe/exploit modes, dual-fixture Docker lab, empirical address discovery, OOB-verified offset sweep. Original disclosure by depthfirst.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-22T12:43:14Z","pushed_at":"2026-05-22T18:23:26Z","created_at":"2026-05-22T18:23:24Z","topics":["buffer-overflow","cve","cve-2026-42945","exploit-development","heap-overflow","nginx","nginx-exploit","poc","rce","security-research"],"owner":{"login":"F2u0a0d3","html_url":"https://github.com/F2u0a0d3"},"clone_url":"https://github.com/F2u0a0d3/CVE-2026-42945-nginx-rift-poc.git","has_code":true,"age_days":34},{"id":1244758958,"name":"CVE-2026-42945","full_name":"yusufdalbudak/CVE-2026-42945","html_url":"https://github.com/yusufdalbudak/CVE-2026-42945","description":"","stargazers_count":0,"forks_count":1,"language":"Shell","updated_at":"2026-05-20T15:24:27Z","pushed_at":"2026-05-20T15:12:02Z","created_at":"2026-05-20T15:11:04Z","topics":[],"owner":{"login":"yusufdalbudak","html_url":"https://github.com/yusufdalbudak"},"clone_url":"https://github.com/yusufdalbudak/CVE-2026-42945.git","has_code":true,"age_days":36},{"id":1243676586,"name":"fix_nginx_cve_2026_42945","full_name":"fkj-src/fix_nginx_cve_2026_42945","html_url":"https://github.com/fkj-src/fix_nginx_cve_2026_42945","description":"NGINX CVE-2026-42945 一键修复脚本","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-19T18:18:53Z","pushed_at":"2026-05-19T18:02:56Z","created_at":"2026-05-19T14:59:59Z","topics":[],"owner":{"login":"fkj-src","html_url":"https://github.com/fkj-src"},"clone_url":"https://github.com/fkj-src/fix_nginx_cve_2026_42945.git","has_code":true,"age_days":37},{"id":1240971798,"name":"nginx-cve-fix","full_name":"BarAppTeam/nginx-cve-fix","html_url":"https://github.com/BarAppTeam/nginx-cve-fix","description":"Source-built nginx 1.25.5 container with backported CVE-2026-42945 fix, OpenSSL bump, full provenance chain, and VEX attestation.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-14T06:08:59Z","pushed_at":"2026-05-19T14:21:08Z","created_at":"2026-05-16T19:57:33Z","topics":["cve","cve-scanning","grype","nginx","openssl","python","trivy"],"owner":{"login":"BarAppTeam","html_url":"https://github.com/BarAppTeam"},"clone_url":"https://github.com/BarAppTeam/nginx-cve-fix.git","has_code":true,"age_days":40},{"id":1243036207,"name":"CVE-2026-42945","full_name":"imSre9/CVE-2026-42945","html_url":"https://github.com/imSre9/CVE-2026-42945","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-19T08:08:59Z","pushed_at":"2026-05-19T08:08:55Z","created_at":"2026-05-19T01:54:52Z","topics":[],"owner":{"login":"imSre9","html_url":"https://github.com/imSre9"},"clone_url":"https://github.com/imSre9/CVE-2026-42945.git","has_code":true,"age_days":37},{"id":1240545802,"name":"web-server-audit_CVE-2026-42945","full_name":"sibersan/web-server-audit_CVE-2026-42945","html_url":"https://github.com/sibersan/web-server-audit_CVE-2026-42945","description":"Trigger-aware web server CVE audit for nginx and Apache. Goes beyond version matching by checking whether the vulnerable code path is actually reachable in your configuration. Classifies findings as Active / Latent / Unverified. Single-file Python 3.5+, no dependencies.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-16T09:11:54Z","pushed_at":"2026-05-16T09:11:50Z","created_at":"2026-05-16T09:06:53Z","topics":[],"owner":{"login":"sibersan","html_url":"https://github.com/sibersan"},"clone_url":"https://github.com/sibersan/web-server-audit_CVE-2026-42945.git","has_code":true,"age_days":40},{"id":1239800566,"name":"nginx-cve-2026-42945-check","full_name":"byezero/nginx-cve-2026-42945-check","html_url":"https://github.com/byezero/nginx-cve-2026-42945-check","description":"","stargazers_count":0,"forks_count":0,"language":"PowerShell","updated_at":"2026-05-15T13:15:42Z","pushed_at":"2026-05-15T13:15:38Z","created_at":"2026-05-15T13:04:09Z","topics":[],"owner":{"login":"byezero","html_url":"https://github.com/byezero"},"clone_url":"https://github.com/byezero/nginx-cve-2026-42945-check.git","has_code":true,"age_days":41},{"id":1239769021,"name":"wazuh-nginx-cve-2026-42945-sca-lab","full_name":"soksofos/wazuh-nginx-cve-2026-42945-sca-lab","html_url":"https://github.com/soksofos/wazuh-nginx-cve-2026-42945-sca-lab","description":"Centralized Wazuh SCA Assessment for CVE-2026-42945 on NGINX Servers","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-15T12:47:34Z","pushed_at":"2026-05-15T12:47:30Z","created_at":"2026-05-15T12:24:20Z","topics":[],"owner":{"login":"soksofos","html_url":"https://github.com/soksofos"},"clone_url":"https://github.com/soksofos/wazuh-nginx-cve-2026-42945-sca-lab.git","has_code":false,"age_days":41},{"id":1239156281,"name":"ai-vuln-rediscovery-nginx-cve-2026-42945","full_name":"ChamsBouzaiene/ai-vuln-rediscovery-nginx-cve-2026-42945","html_url":"https://github.com/ChamsBouzaiene/ai-vuln-rediscovery-nginx-cve-2026-42945","description":"","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-05-14T20:21:19Z","pushed_at":"2026-05-14T20:21:15Z","created_at":"2026-05-14T20:21:11Z","topics":[],"owner":{"login":"ChamsBouzaiene","html_url":"https://github.com/ChamsBouzaiene"},"clone_url":"https://github.com/ChamsBouzaiene/ai-vuln-rediscovery-nginx-cve-2026-42945.git","has_code":true,"age_days":41},{"id":1272400211,"name":"DIY-CVE-2026-42945-POC","full_name":"hulina9900-boop/DIY-CVE-2026-42945-POC","html_url":"https://github.com/hulina9900-boop/DIY-CVE-2026-42945-POC","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-17T19:53:57Z","pushed_at":"2026-06-17T19:53:54Z","created_at":"2026-06-17T15:15:16Z","topics":[],"owner":{"login":"hulina9900-boop","html_url":"https://github.com/hulina9900-boop"},"clone_url":"https://github.com/hulina9900-boop/DIY-CVE-2026-42945-POC.git","has_code":true,"age_days":8},{"id":1269389657,"name":"CVE-2026-42945-Reverse-Shell-POC","full_name":"sec-sys/CVE-2026-42945-Reverse-Shell-POC","html_url":"https://github.com/sec-sys/CVE-2026-42945-Reverse-Shell-POC","description":"Python RCE PoC with reverse-shell listener for CVE-2026-42945 (NGINX Rift)","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-14T16:53:47Z","pushed_at":"2026-06-14T16:53:43Z","created_at":"2026-06-14T16:49:12Z","topics":[],"owner":{"login":"sec-sys","html_url":"https://github.com/sec-sys"},"clone_url":"https://github.com/sec-sys/CVE-2026-42945-Reverse-Shell-POC.git","has_code":true,"age_days":11},{"id":1265442845,"name":"CVE-2026-42945","full_name":"LiaoZiqi-GZFLS/CVE-2026-42945","html_url":"https://github.com/LiaoZiqi-GZFLS/CVE-2026-42945","description":"CVE-2026-42945 Nginx Rift","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-12T09:18:38Z","pushed_at":"2026-06-12T09:18:34Z","created_at":"2026-06-10T19:26:32Z","topics":[],"owner":{"login":"LiaoZiqi-GZFLS","html_url":"https://github.com/LiaoZiqi-GZFLS"},"clone_url":"https://github.com/LiaoZiqi-GZFLS/CVE-2026-42945.git","has_code":true,"age_days":15},{"id":1263896048,"name":"CVE-2026-42945","full_name":"jenniferreire26/CVE-2026-42945","html_url":"https://github.com/jenniferreire26/CVE-2026-42945","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-09T11:17:11Z","pushed_at":"2026-06-09T11:17:09Z","created_at":"2026-06-09T11:17:06Z","topics":[],"owner":{"login":"jenniferreire26","html_url":"https://github.com/jenniferreire26"},"clone_url":"https://github.com/jenniferreire26/CVE-2026-42945.git","has_code":false,"age_days":16},{"id":1258633601,"name":"CVE-2026-42945-NGINX-Rift-Check-Script","full_name":"lowilol/CVE-2026-42945-NGINX-Rift-Check-Script","html_url":"https://github.com/lowilol/CVE-2026-42945-NGINX-Rift-Check-Script","description":"","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-03T19:23:29Z","pushed_at":"2026-06-03T19:23:25Z","created_at":"2026-06-03T19:10:40Z","topics":[],"owner":{"login":"lowilol","html_url":"https://github.com/lowilol"},"clone_url":"https://github.com/lowilol/CVE-2026-42945-NGINX-Rift-Check-Script.git","has_code":true,"age_days":22}]},{"cve_id":"CVE-2026-42978","repositories":[{"id":1278493650,"name":"CVE-2026-42978-PoC-Research","full_name":"grizzzer/CVE-2026-42978-PoC-Research","html_url":"https://github.com/grizzzer/CVE-2026-42978-PoC-Research","description":"CVE-2026-42978 — Use-After-Free race condition in Windows Push Notifications (WpnService). Patch diff, root cause analysis, TOCTOU lab, Sysmon/ETW detection rules.","stargazers_count":7,"forks_count":1,"language":"C","updated_at":"2026-06-25T05:10:43Z","pushed_at":"2026-06-23T21:08:36Z","created_at":"2026-06-23T21:05:55Z","topics":[],"owner":{"login":"grizzzer","html_url":"https://github.com/grizzzer"},"clone_url":"https://github.com/grizzzer/CVE-2026-42978-PoC-Research.git","has_code":true,"age_days":1}]},{"cve_id":"CVE-2026-43284","repositories":[{"id":1234352356,"name":"dirtyfrag-arm64","full_name":"linnemanlabs/dirtyfrag-arm64","html_url":"https://github.com/linnemanlabs/dirtyfrag-arm64","description":"arm64/aarch64 port of V4bel/dirtyfrag (CVE-2026-43284). ESP-only - rxrpc path kernel-oopses on arm64 due to flush_dcache_page","stargazers_count":26,"forks_count":8,"language":"C","updated_at":"2026-06-22T04:01:58Z","pushed_at":"2026-05-13T08:32:55Z","created_at":"2026-05-10T04:22:19Z","topics":["aarch64","arm64","cve-2026-43284","cve-2026-43500","dirty-frag","dirtyfrag","exploit","page-cache","privilege-escalation","purple-team","security-research","tetragon","yara-rules"],"owner":{"login":"linnemanlabs","html_url":"https://github.com/linnemanlabs"},"clone_url":"https://github.com/linnemanlabs/dirtyfrag-arm64.git","has_code":true,"age_days":46},{"id":1233022468,"name":"DIRTYFAIL","full_name":"KaraZajac/DIRTYFAIL","html_url":"https://github.com/KaraZajac/DIRTYFAIL","description":"Detector + PoC for Linux page-cache write vulnerabilities: Copy Fail (CVE-2026-31431) and Dirty Frag (CVE-2026-43284/43500). Authorized security research only.","stargazers_count":19,"forks_count":10,"language":"C","updated_at":"2026-06-18T13:50:07Z","pushed_at":"2026-05-17T14:38:43Z","created_at":"2026-05-08T14:05:37Z","topics":[],"owner":{"login":"KaraZajac","html_url":"https://github.com/KaraZajac"},"clone_url":"https://github.com/KaraZajac/DIRTYFAIL.git","has_code":true,"age_days":48},{"id":1235928119,"name":"DirtyFrag-Detector","full_name":"liamromanis101/DirtyFrag-Detector","html_url":"https://github.com/liamromanis101/DirtyFrag-Detector","description":"CVE-2026-43284/CVE-2026-43500 'DirtyFrag' Benign patch \u0026 mitigation detection script","stargazers_count":14,"forks_count":0,"language":"Python","updated_at":"2026-06-25T14:59:11Z","pushed_at":"2026-05-12T07:14:42Z","created_at":"2026-05-11T19:41:31Z","topics":[],"owner":{"login":"liamromanis101","html_url":"https://github.com/liamromanis101"},"clone_url":"https://github.com/liamromanis101/DirtyFrag-Detector.git","has_code":true,"age_days":45},{"id":1233172686,"name":"CVE-2026-43284","full_name":"0xBlackash/CVE-2026-43284","html_url":"https://github.com/0xBlackash/CVE-2026-43284","description":"CVE-2026-43284","stargazers_count":14,"forks_count":4,"language":"C","updated_at":"2026-06-25T15:32:51Z","pushed_at":"2026-05-08T17:25:35Z","created_at":"2026-05-08T17:07:20Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-43284.git","has_code":true,"age_days":48},{"id":1232511739,"name":"Dirty-Frag-Kubernetes-PoC","full_name":"Percivalll/Dirty-Frag-Kubernetes-PoC","html_url":"https://github.com/Percivalll/Dirty-Frag-Kubernetes-PoC","description":"A proof-of-concept demonstrating how a default, unprivileged Kubernetes Pod can achieve node-level code execution on Amazon EKS by exploiting the Dirty Frag (CVE-2026-43284) Linux kernel page-cache corruption vulnerability through shared container image layers.","stargazers_count":12,"forks_count":0,"language":"C","updated_at":"2026-06-04T23:44:39Z","pushed_at":"2026-05-08T12:47:18Z","created_at":"2026-05-08T02:17:45Z","topics":["cve-2026-43284","eks","exploit","kubernetes","linux-kernel","privelage-escalation","proof-of-concept"],"owner":{"login":"Percivalll","html_url":"https://github.com/Percivalll"},"clone_url":"https://github.com/Percivalll/Dirty-Frag-Kubernetes-PoC.git","has_code":true,"age_days":48},{"id":1228541987,"name":"copy-fail-CVE-2026-31431-detection-probe","full_name":"ochebotar/copy-fail-CVE-2026-31431-detection-probe","html_url":"https://github.com/ochebotar/copy-fail-CVE-2026-31431-detection-probe","description":"Safe detection tooling for CVE-2026-31431 \"Copy Fail\" and CVE-2026-43284 \"Dirty Frag\" — a local privilege escalation in the Linux kernel's algif_aead module affecting all major distributions since 2017.","stargazers_count":10,"forks_count":2,"language":"Shell","updated_at":"2026-06-03T10:14:17Z","pushed_at":"2026-05-18T12:37:20Z","created_at":"2026-05-04T05:58:50Z","topics":[],"owner":{"login":"ochebotar","html_url":"https://github.com/ochebotar"},"clone_url":"https://github.com/ochebotar/copy-fail-CVE-2026-31431-detection-probe.git","has_code":true,"age_days":52},{"id":1233896485,"name":"dirty-frag-check","full_name":"haydenjames/dirty-frag-check","html_url":"https://github.com/haydenjames/dirty-frag-check","description":"Read-only checker for CVE-2026-43284 / CVE-2026-43500 (Dirty Frag) Linux kernel local-root vulns","stargazers_count":7,"forks_count":0,"language":"Shell","updated_at":"2026-06-05T15:57:12Z","pushed_at":"2026-05-12T15:14:45Z","created_at":"2026-05-09T13:46:16Z","topics":["cve-2026-43284","cve-2026-43500","cve-scanning","dirty-frag"],"owner":{"login":"haydenjames","html_url":"https://github.com/haydenjames"},"clone_url":"https://github.com/haydenjames/dirty-frag-check.git","has_code":true,"age_days":47},{"id":1232934547,"name":"ansible-mitigate-copyfail-dirtyfrag","full_name":"infiniroot/ansible-mitigate-copyfail-dirtyfrag","html_url":"https://github.com/infiniroot/ansible-mitigate-copyfail-dirtyfrag","description":"Simple Ansible Playbook to mitigate against CopyFail (CVE-2026-31431) and DirtyFrag (CVE-2026-43284) vulnerabilities.","stargazers_count":6,"forks_count":0,"language":"","updated_at":"2026-05-14T11:46:41Z","pushed_at":"2026-05-14T11:46:15Z","created_at":"2026-05-08T12:26:13Z","topics":["ansible","copyfail","cve-2026-31431","cve-2026-43284","cve-2026-46300","dirtyfrag","fragnesia","linux-kernel","mitigation","vulnerability"],"owner":{"login":"infiniroot","html_url":"https://github.com/infiniroot"},"clone_url":"https://github.com/infiniroot/ansible-mitigate-copyfail-dirtyfrag.git","has_code":false,"age_days":48},{"id":1233015399,"name":"DIRTY-FRAG-Detection-with-Wazuh-4.14.4","full_name":"mym0us3r/DIRTY-FRAG-Detection-with-Wazuh-4.14.4","html_url":"https://github.com/mym0us3r/DIRTY-FRAG-Detection-with-Wazuh-4.14.4","description":"Wazuh 4.14.4 detection rules for CVE-2026-43284 / CVE-2026-43500 (Dirty Frag) - Linux Local Privilege Escalation via page cache write","stargazers_count":3,"forks_count":0,"language":"","updated_at":"2026-05-17T03:32:57Z","pushed_at":"2026-05-17T03:32:54Z","created_at":"2026-05-08T13:57:27Z","topics":["auditd","blue-team","cve-2026-43284","cve-2026-43500","detection-engineering","dirty-frag","linux","lpe","open-source","rxrpc","siem","wazuh","xdr","xfrm"],"owner":{"login":"mym0us3r","html_url":"https://github.com/mym0us3r"},"clone_url":"https://github.com/mym0us3r/DIRTY-FRAG-Detection-with-Wazuh-4.14.4.git","has_code":false,"age_days":48},{"id":1233207148,"name":"vcheck","full_name":"krisiasty/vcheck","html_url":"https://github.com/krisiasty/vcheck","description":"Vulnerability detection and mitigation tool for Copy Fail and Dirty Frag bugs (CVE-2026-31431, CVE-2026-43284, CVE-2026-43500)","stargazers_count":2,"forks_count":0,"language":"Go","updated_at":"2026-06-22T08:51:13Z","pushed_at":"2026-06-22T08:51:16Z","created_at":"2026-05-08T17:54:04Z","topics":["audit","cve","fix","kernel-modules","linux","mitigation","security","security-audit","security-tools","ssh","vulnerability"],"owner":{"login":"krisiasty","html_url":"https://github.com/krisiasty"},"clone_url":"https://github.com/krisiasty/vcheck.git","has_code":true,"age_days":48},{"id":1233267056,"name":"Dirty-Frag-Analysis","full_name":"AK777177/Dirty-Frag-Analysis","html_url":"https://github.com/AK777177/Dirty-Frag-Analysis","description":"Dirty Frag (CVE-2026-43284/43500) - Linux Kernel LPE Deep Technical Analysis by Bomb","stargazers_count":2,"forks_count":1,"language":"Shell","updated_at":"2026-05-19T11:39:39Z","pushed_at":"2026-05-08T20:39:18Z","created_at":"2026-05-08T19:18:21Z","topics":["0day","copy-fail","cve-2026-43284","cve-2026-43500","dirty-frag","dirty-pipe","esp","kernel-exploit","linux-kernel","lpe","page-cache","privilege-escalation","rxrpc","security","xfrm"],"owner":{"login":"AK777177","html_url":"https://github.com/AK777177"},"clone_url":"https://github.com/AK777177/Dirty-Frag-Analysis.git","has_code":true,"age_days":48},{"id":1243457978,"name":"Dirty-Frag-CVE-2026-43284","full_name":"kuniyal08/Dirty-Frag-CVE-2026-43284","html_url":"https://github.com/kuniyal08/Dirty-Frag-CVE-2026-43284","description":"A report on Dirty Frag, which is a Linux Local Privilege Escalation (LPE) vulnerability chain that allows an unprivileged user to gain root access","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-05-19T13:52:14Z","pushed_at":"2026-05-19T11:19:59Z","created_at":"2026-05-19T11:07:42Z","topics":[],"owner":{"login":"kuniyal08","html_url":"https://github.com/kuniyal08"},"clone_url":"https://github.com/kuniyal08/Dirty-Frag-CVE-2026-43284.git","has_code":false,"age_days":37},{"id":1243006856,"name":"CVE-2026-43284","full_name":"LucasPDiniz/CVE-2026-43284","html_url":"https://github.com/LucasPDiniz/CVE-2026-43284","description":"Dirty Frag - kernel Linux critical Vulnerability","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-05-19T13:56:00Z","pushed_at":"2026-05-19T01:05:25Z","created_at":"2026-05-19T01:02:36Z","topics":["cve-2026-43284","dirty-frag","kernel","vulnerability"],"owner":{"login":"LucasPDiniz","html_url":"https://github.com/LucasPDiniz"},"clone_url":"https://github.com/LucasPDiniz/CVE-2026-43284.git","has_code":false,"age_days":37},{"id":1225578145,"name":"CVE-2026-43500","full_name":"attaattaatta/CVE-2026-43500","html_url":"https://github.com/attaattaatta/CVE-2026-43500","description":"CVE-2026-43500 / CVE-2026-31431 / CVE-2026-43284 golang hotfix","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-31T06:56:16Z","pushed_at":"2026-05-31T06:56:13Z","created_at":"2026-04-30T12:27:15Z","topics":["cve-2026-31431","cve-2026-43284","cve-2026-43500","hotfix"],"owner":{"login":"attaattaatta","html_url":"https://github.com/attaattaatta"},"clone_url":"https://github.com/attaattaatta/CVE-2026-43500.git","has_code":false,"age_days":56},{"id":1233228826,"name":"CVE-2026-43284","full_name":"suominen/CVE-2026-43284","html_url":"https://github.com/suominen/CVE-2026-43284","description":"Tracking CVE-2026-43284","stargazers_count":0,"forks_count":0,"language":"HTML","updated_at":"2026-06-05T05:00:43Z","pushed_at":"2026-06-05T05:00:40Z","created_at":"2026-05-08T18:24:12Z","topics":["linux","security"],"owner":{"login":"suominen","html_url":"https://github.com/suominen"},"clone_url":"https://github.com/suominen/CVE-2026-43284.git","has_code":true,"age_days":48},{"id":1248280269,"name":"Dirty-Frag-CVE-2026-43284","full_name":"AtlasVector/Dirty-Frag-CVE-2026-43284","html_url":"https://github.com/AtlasVector/Dirty-Frag-CVE-2026-43284","description":"Lab detection exercise for DirtyFrag (CVE-2026-43284) - Linux kernel privilege escalation via xfrm-ESP page cache corruption. Full write-up covering exploit execution, detection gaps, and corrected EQL rules using Elastic Stack","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-24T13:58:54Z","pushed_at":"2026-05-24T13:50:44Z","created_at":"2026-05-24T12:39:27Z","topics":[],"owner":{"login":"AtlasVector","html_url":"https://github.com/AtlasVector"},"clone_url":"https://github.com/AtlasVector/Dirty-Frag-CVE-2026-43284.git","has_code":false,"age_days":32},{"id":1244473938,"name":"DirtyFrag-go","full_name":"Koshmare-Blossom/DirtyFrag-go","html_url":"https://github.com/Koshmare-Blossom/DirtyFrag-go","description":"A Go implementation of dirtyfrag (CVE-2026-43284 / CVE-2026-43500)","stargazers_count":0,"forks_count":1,"language":"Go","updated_at":"2026-05-22T19:37:15Z","pushed_at":"2026-05-21T15:51:10Z","created_at":"2026-05-20T09:49:06Z","topics":[],"owner":{"login":"Koshmare-Blossom","html_url":"https://github.com/Koshmare-Blossom"},"clone_url":"https://github.com/Koshmare-Blossom/DirtyFrag-go.git","has_code":true,"age_days":36},{"id":1245101973,"name":"Reporte-de-Escalada-de-Privilegios-Local-Dirty-Frag","full_name":"DylanClaudio/Reporte-de-Escalada-de-Privilegios-Local-Dirty-Frag","html_url":"https://github.com/DylanClaudio/Reporte-de-Escalada-de-Privilegios-Local-Dirty-Frag","description":"Se realizó una evaluación de vulnerabilidades sobre una máquina virtual con Kali Linux utilizando un script detector para la vulnerabilidad Dirty Frag, asociada a las CVE-2026-43284 y  CVE-2026-43500.  Posteriormente se ejecutó un Proof of Concept (PoC) público escrito en lenguaje C para validar la posibilidad de realizar una escalada local","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-28T17:43:14Z","pushed_at":"2026-05-20T23:29:29Z","created_at":"2026-05-20T23:07:09Z","topics":[],"owner":{"login":"DylanClaudio","html_url":"https://github.com/DylanClaudio"},"clone_url":"https://github.com/DylanClaudio/Reporte-de-Escalada-de-Privilegios-Local-Dirty-Frag.git","has_code":true,"age_days":35},{"id":1239819151,"name":"XCP_ng_CVE-2026-43284_tester","full_name":"grabesec/XCP_ng_CVE-2026-43284_tester","html_url":"https://github.com/grabesec/XCP_ng_CVE-2026-43284_tester","description":"Tester for CVE-2026-43284","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-15T18:27:46Z","pushed_at":"2026-05-15T13:57:49Z","created_at":"2026-05-15T13:26:24Z","topics":[],"owner":{"login":"grabesec","html_url":"https://github.com/grabesec"},"clone_url":"https://github.com/grabesec/XCP_ng_CVE-2026-43284_tester.git","has_code":true,"age_days":41},{"id":1239498708,"name":"CVE-2026-43284","full_name":"xd20111/CVE-2026-43284","html_url":"https://github.com/xd20111/CVE-2026-43284","description":"","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-15T06:51:39Z","pushed_at":"2026-05-15T06:51:35Z","created_at":"2026-05-15T06:38:17Z","topics":[],"owner":{"login":"xd20111","html_url":"https://github.com/xd20111"},"clone_url":"https://github.com/xd20111/CVE-2026-43284.git","has_code":true,"age_days":41},{"id":1238029680,"name":"DirtyFrag-for-dummies","full_name":"ChernStepanov/DirtyFrag-for-dummies","html_url":"https://github.com/ChernStepanov/DirtyFrag-for-dummies","description":"A tiny explanation + PoC for CVE-2026-43284","stargazers_count":0,"forks_count":0,"language":"C++","updated_at":"2026-05-13T18:42:57Z","pushed_at":"2026-05-13T18:42:53Z","created_at":"2026-05-13T18:40:04Z","topics":[],"owner":{"login":"ChernStepanov","html_url":"https://github.com/ChernStepanov"},"clone_url":"https://github.com/ChernStepanov/DirtyFrag-for-dummies.git","has_code":true,"age_days":43},{"id":1237895562,"name":"CVE-2026-43284","full_name":"FrosterDL/CVE-2026-43284","html_url":"https://github.com/FrosterDL/CVE-2026-43284","description":"","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-13T16:02:18Z","pushed_at":"2026-05-13T16:01:43Z","created_at":"2026-05-13T15:59:20Z","topics":[],"owner":{"login":"FrosterDL","html_url":"https://github.com/FrosterDL"},"clone_url":"https://github.com/FrosterDL/CVE-2026-43284.git","has_code":true,"age_days":43},{"id":1235171305,"name":"CVE-2026-43284-CVE-2026-43500-scan","full_name":"gagaltotal/CVE-2026-43284-CVE-2026-43500-scan","html_url":"https://github.com/gagaltotal/CVE-2026-43284-CVE-2026-43500-scan","description":"Dirtyfrag CVE-2026-43284 \u0026 CVE-2026-43500 Scanner","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-05-12T03:36:31Z","pushed_at":"2026-05-11T17:50:11Z","created_at":"2026-05-11T04:35:55Z","topics":["cve","cve-scanning","cve-search","kernel","linux","linux-kernel","python","python3"],"owner":{"login":"gagaltotal","html_url":"https://github.com/gagaltotal"},"clone_url":"https://github.com/gagaltotal/CVE-2026-43284-CVE-2026-43500-scan.git","has_code":true,"age_days":45},{"id":1235757812,"name":"202605_dirty_frag","full_name":"XRSecCD/202605_dirty_frag","html_url":"https://github.com/XRSecCD/202605_dirty_frag","description":"CVE-2026-43284 \u0026 CVE-2026-43500 discovered by Hyunwoo Kim","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-11T16:22:24Z","pushed_at":"2026-05-11T16:16:23Z","created_at":"2026-05-11T16:16:22Z","topics":[],"owner":{"login":"XRSecCD","html_url":"https://github.com/XRSecCD"},"clone_url":"https://github.com/XRSecCD/202605_dirty_frag.git","has_code":false,"age_days":45},{"id":1235342083,"name":"rust_dirtyfrag","full_name":"Aiyakami/rust_dirtyfrag","html_url":"https://github.com/Aiyakami/rust_dirtyfrag","description":"CVE-2026-43284的rust版本实现","stargazers_count":0,"forks_count":0,"language":"Rust","updated_at":"2026-05-21T12:00:55Z","pushed_at":"2026-05-11T09:08:18Z","created_at":"2026-05-11T08:28:04Z","topics":[],"owner":{"login":"Aiyakami","html_url":"https://github.com/Aiyakami"},"clone_url":"https://github.com/Aiyakami/rust_dirtyfrag.git","has_code":true,"age_days":45},{"id":1234336664,"name":"CVE-2026-43284-","full_name":"ryan2929/CVE-2026-43284-","html_url":"https://github.com/ryan2929/CVE-2026-43284-","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-10T03:51:03Z","pushed_at":"2026-05-10T03:50:59Z","created_at":"2026-05-10T03:44:06Z","topics":[],"owner":{"login":"ryan2929","html_url":"https://github.com/ryan2929"},"clone_url":"https://github.com/ryan2929/CVE-2026-43284-.git","has_code":false,"age_days":46},{"id":1234132935,"name":"dirtyfrag-patches","full_name":"metalx1993/dirtyfrag-patches","html_url":"https://github.com/metalx1993/dirtyfrag-patches","description":"Kernel patches for Dirty Frag vulnerability (CVE-2026-43284, CVE-2026-43500)","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-09T19:54:32Z","pushed_at":"2026-05-09T19:54:29Z","created_at":"2026-05-09T19:43:33Z","topics":[],"owner":{"login":"metalx1993","html_url":"https://github.com/metalx1993"},"clone_url":"https://github.com/metalx1993/dirtyfrag-patches.git","has_code":false,"age_days":47},{"id":1229416911,"name":"Copy-Fail-CVE-2026-31431-dirty-frag-CVE-2026-43284","full_name":"6abc/Copy-Fail-CVE-2026-31431-dirty-frag-CVE-2026-43284","html_url":"https://github.com/6abc/Copy-Fail-CVE-2026-31431-dirty-frag-CVE-2026-43284","description":"","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-08T17:20:53Z","pushed_at":"2026-05-08T17:20:49Z","created_at":"2026-05-05T02:50:48Z","topics":[],"owner":{"login":"6abc","html_url":"https://github.com/6abc"},"clone_url":"https://github.com/6abc/Copy-Fail-CVE-2026-31431-dirty-frag-CVE-2026-43284.git","has_code":true,"age_days":51},{"id":1232703202,"name":"Paranoid-Dirty-Frag-CVE-2026-43284","full_name":"scriptzteam/Paranoid-Dirty-Frag-CVE-2026-43284","html_url":"https://github.com/scriptzteam/Paranoid-Dirty-Frag-CVE-2026-43284","description":"Paranoid disable Linux IPsec ESP support (esp4/esp6) and RxRPC support.","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-08T16:37:18Z","pushed_at":"2026-05-08T07:26:52Z","created_at":"2026-05-08T07:24:11Z","topics":[],"owner":{"login":"scriptzteam","html_url":"https://github.com/scriptzteam"},"clone_url":"https://github.com/scriptzteam/Paranoid-Dirty-Frag-CVE-2026-43284.git","has_code":true,"age_days":48},{"id":1266664157,"name":"dirtyfrag-cve-2026-43284-auditd-detection","full_name":"g0thamRabb1t/dirtyfrag-cve-2026-43284-auditd-detection","html_url":"https://github.com/g0thamRabb1t/dirtyfrag-cve-2026-43284-auditd-detection","description":"This repository contains a lab validation report and detection artefacts for DirtyFrag CVE-2026-43284, a Linux local privilege escalation issue related to the XFRM/ESP page-cache write path. The focus is on auditd telemetry, event correlation, and SOC-oriented detection logic.","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-11T20:58:55Z","pushed_at":"2026-06-11T20:58:50Z","created_at":"2026-06-11T20:51:29Z","topics":[],"owner":{"login":"g0thamRabb1t","html_url":"https://github.com/g0thamRabb1t"},"clone_url":"https://github.com/g0thamRabb1t/dirtyfrag-cve-2026-43284-auditd-detection.git","has_code":true,"age_days":13},{"id":1260214066,"name":"CVE-2026-43284-Dirty-Frag","full_name":"t1ckprivate/CVE-2026-43284-Dirty-Frag","html_url":"https://github.com/t1ckprivate/CVE-2026-43284-Dirty-Frag","description":"","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-06-05T09:52:27Z","pushed_at":"2026-06-05T09:52:54Z","created_at":"2026-06-05T09:05:08Z","topics":[],"owner":{"login":"t1ckprivate","html_url":"https://github.com/t1ckprivate"},"clone_url":"https://github.com/t1ckprivate/CVE-2026-43284-Dirty-Frag.git","has_code":true,"age_days":20},{"id":1258095708,"name":"DirtyFrag","full_name":"1neptune/DirtyFrag","html_url":"https://github.com/1neptune/DirtyFrag","description":"Add go CVE-2026-43284 / CVE-2026-43500  (dirtyfrag) local privilege escalation exploit","stargazers_count":0,"forks_count":0,"language":"Go","updated_at":"2026-06-03T09:23:02Z","pushed_at":"2026-06-03T09:22:58Z","created_at":"2026-06-03T09:16:10Z","topics":[],"owner":{"login":"1neptune","html_url":"https://github.com/1neptune"},"clone_url":"https://github.com/1neptune/DirtyFrag.git","has_code":true,"age_days":22}]},{"cve_id":"CVE-2026-4342","repositories":[{"id":1187257415,"name":"CVE-2026-4342","full_name":"stuartMoorhouse/CVE-2026-4342","html_url":"https://github.com/stuartMoorhouse/CVE-2026-4342","description":"","stargazers_count":2,"forks_count":2,"language":"Shell","updated_at":"2026-04-08T11:25:33Z","pushed_at":"2026-03-20T14:19:27Z","created_at":"2026-03-20T14:17:41Z","topics":[],"owner":{"login":"stuartMoorhouse","html_url":"https://github.com/stuartMoorhouse"},"clone_url":"https://github.com/stuartMoorhouse/CVE-2026-4342.git","has_code":true,"age_days":97}]},{"cve_id":"CVE-2026-43494","repositories":[{"id":1246991784,"name":"CVE-2026-43494","full_name":"0xBlackash/CVE-2026-43494","html_url":"https://github.com/0xBlackash/CVE-2026-43494","description":"CVE-2026-43494","stargazers_count":2,"forks_count":1,"language":"C","updated_at":"2026-05-30T00:32:31Z","pushed_at":"2026-05-23T08:06:30Z","created_at":"2026-05-22T19:29:17Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-43494.git","has_code":true,"age_days":34},{"id":1252177413,"name":"PinTheft-asm","full_name":"Koshmare-Blossom/PinTheft-asm","html_url":"https://github.com/Koshmare-Blossom/PinTheft-asm","description":"A x86_64 ASM implementation of PinTheft (CVE-2026-43494)","stargazers_count":1,"forks_count":0,"language":"Assembly","updated_at":"2026-05-28T17:30:42Z","pushed_at":"2026-05-28T09:08:53Z","created_at":"2026-05-28T09:06:56Z","topics":[],"owner":{"login":"Koshmare-Blossom","html_url":"https://github.com/Koshmare-Blossom"},"clone_url":"https://github.com/Koshmare-Blossom/PinTheft-asm.git","has_code":true,"age_days":28},{"id":1254295783,"name":"CVE-2026-43494-PinTheft-PoC","full_name":"letsr00t/CVE-2026-43494-PinTheft-PoC","html_url":"https://github.com/letsr00t/CVE-2026-43494-PinTheft-PoC","description":"","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-30T11:45:59Z","pushed_at":"2026-05-30T11:45:55Z","created_at":"2026-05-30T11:44:56Z","topics":[],"owner":{"login":"letsr00t","html_url":"https://github.com/letsr00t"},"clone_url":"https://github.com/letsr00t/CVE-2026-43494-PinTheft-PoC.git","has_code":true,"age_days":26},{"id":1249130967,"name":"CVE-2026-43494-PinTheft-PoC","full_name":"tanzz1337/CVE-2026-43494-PinTheft-PoC","html_url":"https://github.com/tanzz1337/CVE-2026-43494-PinTheft-PoC","description":"Proof-of-concept for CVE-2026-43494 (PinTheft): Linux LPE via RDS zerocopy refcount bug + io_uring fixed buffers → SUID page-cache overwrite. Authorized research only.","stargazers_count":0,"forks_count":7,"language":"","updated_at":"2026-06-03T10:14:04Z","pushed_at":"2026-05-25T07:52:15Z","created_at":"2026-05-25T11:35:47Z","topics":[],"owner":{"login":"tanzz1337","html_url":"https://github.com/tanzz1337"},"clone_url":"https://github.com/tanzz1337/CVE-2026-43494-PinTheft-PoC.git","has_code":false,"age_days":31},{"id":1246989413,"name":"PinTheft-go","full_name":"Koshmare-Blossom/PinTheft-go","html_url":"https://github.com/Koshmare-Blossom/PinTheft-go","description":"A Go implementation of PinTheft (CVE-2026-43494)","stargazers_count":0,"forks_count":1,"language":"Go","updated_at":"2026-05-22T19:35:01Z","pushed_at":"2026-05-22T19:34:57Z","created_at":"2026-05-22T19:25:37Z","topics":[],"owner":{"login":"Koshmare-Blossom","html_url":"https://github.com/Koshmare-Blossom"},"clone_url":"https://github.com/Koshmare-Blossom/PinTheft-go.git","has_code":true,"age_days":34}]},{"cve_id":"CVE-2026-4350","repositories":[{"id":1207502087,"name":"CVE-2026-4350","full_name":"whyiamsobusy/CVE-2026-4350","html_url":"https://github.com/whyiamsobusy/CVE-2026-4350","description":"CVE-2026-4350 - Perfmatters WordPress Arbitrary File Deletion","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-11T02:51:52Z","pushed_at":"2026-04-11T02:51:46Z","created_at":"2026-04-11T02:46:23Z","topics":[],"owner":{"login":"whyiamsobusy","html_url":"https://github.com/whyiamsobusy"},"clone_url":"https://github.com/whyiamsobusy/CVE-2026-4350.git","has_code":true,"age_days":75}]},{"cve_id":"CVE-2026-43500","repositories":[{"id":1234352356,"name":"dirtyfrag-arm64","full_name":"linnemanlabs/dirtyfrag-arm64","html_url":"https://github.com/linnemanlabs/dirtyfrag-arm64","description":"arm64/aarch64 port of V4bel/dirtyfrag (CVE-2026-43284). ESP-only - rxrpc path kernel-oopses on arm64 due to flush_dcache_page","stargazers_count":26,"forks_count":8,"language":"C","updated_at":"2026-06-22T04:01:58Z","pushed_at":"2026-05-13T08:32:55Z","created_at":"2026-05-10T04:22:19Z","topics":["aarch64","arm64","cve-2026-43284","cve-2026-43500","dirty-frag","dirtyfrag","exploit","page-cache","privilege-escalation","purple-team","security-research","tetragon","yara-rules"],"owner":{"login":"linnemanlabs","html_url":"https://github.com/linnemanlabs"},"clone_url":"https://github.com/linnemanlabs/dirtyfrag-arm64.git","has_code":true,"age_days":46},{"id":1235928119,"name":"DirtyFrag-Detector","full_name":"liamromanis101/DirtyFrag-Detector","html_url":"https://github.com/liamromanis101/DirtyFrag-Detector","description":"CVE-2026-43284/CVE-2026-43500 'DirtyFrag' Benign patch \u0026 mitigation detection script","stargazers_count":14,"forks_count":0,"language":"Python","updated_at":"2026-06-25T14:59:11Z","pushed_at":"2026-05-12T07:14:42Z","created_at":"2026-05-11T19:41:31Z","topics":[],"owner":{"login":"liamromanis101","html_url":"https://github.com/liamromanis101"},"clone_url":"https://github.com/liamromanis101/DirtyFrag-Detector.git","has_code":true,"age_days":45},{"id":1233896485,"name":"dirty-frag-check","full_name":"haydenjames/dirty-frag-check","html_url":"https://github.com/haydenjames/dirty-frag-check","description":"Read-only checker for CVE-2026-43284 / CVE-2026-43500 (Dirty Frag) Linux kernel local-root vulns","stargazers_count":7,"forks_count":0,"language":"Shell","updated_at":"2026-06-05T15:57:12Z","pushed_at":"2026-05-12T15:14:45Z","created_at":"2026-05-09T13:46:16Z","topics":["cve-2026-43284","cve-2026-43500","cve-scanning","dirty-frag"],"owner":{"login":"haydenjames","html_url":"https://github.com/haydenjames"},"clone_url":"https://github.com/haydenjames/dirty-frag-check.git","has_code":true,"age_days":47},{"id":1233015399,"name":"DIRTY-FRAG-Detection-with-Wazuh-4.14.4","full_name":"mym0us3r/DIRTY-FRAG-Detection-with-Wazuh-4.14.4","html_url":"https://github.com/mym0us3r/DIRTY-FRAG-Detection-with-Wazuh-4.14.4","description":"Wazuh 4.14.4 detection rules for CVE-2026-43284 / CVE-2026-43500 (Dirty Frag) - Linux Local Privilege Escalation via page cache write","stargazers_count":3,"forks_count":0,"language":"","updated_at":"2026-05-17T03:32:57Z","pushed_at":"2026-05-17T03:32:54Z","created_at":"2026-05-08T13:57:27Z","topics":["auditd","blue-team","cve-2026-43284","cve-2026-43500","detection-engineering","dirty-frag","linux","lpe","open-source","rxrpc","siem","wazuh","xdr","xfrm"],"owner":{"login":"mym0us3r","html_url":"https://github.com/mym0us3r"},"clone_url":"https://github.com/mym0us3r/DIRTY-FRAG-Detection-with-Wazuh-4.14.4.git","has_code":false,"age_days":48},{"id":1233207148,"name":"vcheck","full_name":"krisiasty/vcheck","html_url":"https://github.com/krisiasty/vcheck","description":"Vulnerability detection and mitigation tool for Copy Fail and Dirty Frag bugs (CVE-2026-31431, CVE-2026-43284, CVE-2026-43500)","stargazers_count":2,"forks_count":0,"language":"Go","updated_at":"2026-06-22T08:51:13Z","pushed_at":"2026-06-22T08:51:16Z","created_at":"2026-05-08T17:54:04Z","topics":["audit","cve","fix","kernel-modules","linux","mitigation","security","security-audit","security-tools","ssh","vulnerability"],"owner":{"login":"krisiasty","html_url":"https://github.com/krisiasty"},"clone_url":"https://github.com/krisiasty/vcheck.git","has_code":true,"age_days":48},{"id":1233267056,"name":"Dirty-Frag-Analysis","full_name":"AK777177/Dirty-Frag-Analysis","html_url":"https://github.com/AK777177/Dirty-Frag-Analysis","description":"Dirty Frag (CVE-2026-43284/43500) - Linux Kernel LPE Deep Technical Analysis by Bomb","stargazers_count":2,"forks_count":1,"language":"Shell","updated_at":"2026-05-19T11:39:39Z","pushed_at":"2026-05-08T20:39:18Z","created_at":"2026-05-08T19:18:21Z","topics":["0day","copy-fail","cve-2026-43284","cve-2026-43500","dirty-frag","dirty-pipe","esp","kernel-exploit","linux-kernel","lpe","page-cache","privilege-escalation","rxrpc","security","xfrm"],"owner":{"login":"AK777177","html_url":"https://github.com/AK777177"},"clone_url":"https://github.com/AK777177/Dirty-Frag-Analysis.git","has_code":true,"age_days":48},{"id":1225578145,"name":"CVE-2026-43500","full_name":"attaattaatta/CVE-2026-43500","html_url":"https://github.com/attaattaatta/CVE-2026-43500","description":"CVE-2026-43500 / CVE-2026-31431 / CVE-2026-43284 golang hotfix","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-31T06:56:16Z","pushed_at":"2026-05-31T06:56:13Z","created_at":"2026-04-30T12:27:15Z","topics":["cve-2026-31431","cve-2026-43284","cve-2026-43500","hotfix"],"owner":{"login":"attaattaatta","html_url":"https://github.com/attaattaatta"},"clone_url":"https://github.com/attaattaatta/CVE-2026-43500.git","has_code":false,"age_days":56},{"id":1244473938,"name":"DirtyFrag-go","full_name":"Koshmare-Blossom/DirtyFrag-go","html_url":"https://github.com/Koshmare-Blossom/DirtyFrag-go","description":"A Go implementation of dirtyfrag (CVE-2026-43284 / CVE-2026-43500)","stargazers_count":0,"forks_count":1,"language":"Go","updated_at":"2026-05-22T19:37:15Z","pushed_at":"2026-05-21T15:51:10Z","created_at":"2026-05-20T09:49:06Z","topics":[],"owner":{"login":"Koshmare-Blossom","html_url":"https://github.com/Koshmare-Blossom"},"clone_url":"https://github.com/Koshmare-Blossom/DirtyFrag-go.git","has_code":true,"age_days":36},{"id":1245101973,"name":"Reporte-de-Escalada-de-Privilegios-Local-Dirty-Frag","full_name":"DylanClaudio/Reporte-de-Escalada-de-Privilegios-Local-Dirty-Frag","html_url":"https://github.com/DylanClaudio/Reporte-de-Escalada-de-Privilegios-Local-Dirty-Frag","description":"Se realizó una evaluación de vulnerabilidades sobre una máquina virtual con Kali Linux utilizando un script detector para la vulnerabilidad Dirty Frag, asociada a las CVE-2026-43284 y  CVE-2026-43500.  Posteriormente se ejecutó un Proof of Concept (PoC) público escrito en lenguaje C para validar la posibilidad de realizar una escalada local","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-28T17:43:14Z","pushed_at":"2026-05-20T23:29:29Z","created_at":"2026-05-20T23:07:09Z","topics":[],"owner":{"login":"DylanClaudio","html_url":"https://github.com/DylanClaudio"},"clone_url":"https://github.com/DylanClaudio/Reporte-de-Escalada-de-Privilegios-Local-Dirty-Frag.git","has_code":true,"age_days":35},{"id":1233531669,"name":"dirty_frag_mitigation","full_name":"vorkampfer/dirty_frag_mitigation","html_url":"https://github.com/vorkampfer/dirty_frag_mitigation","description":"A bash script for mitigating  linux dirtyfrag exploit CVE-2026-43500, and fragnesia","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-14T10:15:25Z","pushed_at":"2026-05-14T10:13:34Z","created_at":"2026-05-09T04:07:16Z","topics":[],"owner":{"login":"vorkampfer","html_url":"https://github.com/vorkampfer"},"clone_url":"https://github.com/vorkampfer/dirty_frag_mitigation.git","has_code":true,"age_days":47},{"id":1235171305,"name":"CVE-2026-43284-CVE-2026-43500-scan","full_name":"gagaltotal/CVE-2026-43284-CVE-2026-43500-scan","html_url":"https://github.com/gagaltotal/CVE-2026-43284-CVE-2026-43500-scan","description":"Dirtyfrag CVE-2026-43284 \u0026 CVE-2026-43500 Scanner","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-05-12T03:36:31Z","pushed_at":"2026-05-11T17:50:11Z","created_at":"2026-05-11T04:35:55Z","topics":["cve","cve-scanning","cve-search","kernel","linux","linux-kernel","python","python3"],"owner":{"login":"gagaltotal","html_url":"https://github.com/gagaltotal"},"clone_url":"https://github.com/gagaltotal/CVE-2026-43284-CVE-2026-43500-scan.git","has_code":true,"age_days":45},{"id":1235757812,"name":"202605_dirty_frag","full_name":"XRSecCD/202605_dirty_frag","html_url":"https://github.com/XRSecCD/202605_dirty_frag","description":"CVE-2026-43284 \u0026 CVE-2026-43500 discovered by Hyunwoo Kim","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-11T16:22:24Z","pushed_at":"2026-05-11T16:16:23Z","created_at":"2026-05-11T16:16:22Z","topics":[],"owner":{"login":"XRSecCD","html_url":"https://github.com/XRSecCD"},"clone_url":"https://github.com/XRSecCD/202605_dirty_frag.git","has_code":false,"age_days":45},{"id":1234132935,"name":"dirtyfrag-patches","full_name":"metalx1993/dirtyfrag-patches","html_url":"https://github.com/metalx1993/dirtyfrag-patches","description":"Kernel patches for Dirty Frag vulnerability (CVE-2026-43284, CVE-2026-43500)","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-09T19:54:32Z","pushed_at":"2026-05-09T19:54:29Z","created_at":"2026-05-09T19:43:33Z","topics":[],"owner":{"login":"metalx1993","html_url":"https://github.com/metalx1993"},"clone_url":"https://github.com/metalx1993/dirtyfrag-patches.git","has_code":false,"age_days":47},{"id":1258095708,"name":"DirtyFrag","full_name":"1neptune/DirtyFrag","html_url":"https://github.com/1neptune/DirtyFrag","description":"Add go CVE-2026-43284 / CVE-2026-43500  (dirtyfrag) local privilege escalation exploit","stargazers_count":0,"forks_count":0,"language":"Go","updated_at":"2026-06-03T09:23:02Z","pushed_at":"2026-06-03T09:22:58Z","created_at":"2026-06-03T09:16:10Z","topics":[],"owner":{"login":"1neptune","html_url":"https://github.com/1neptune"},"clone_url":"https://github.com/1neptune/DirtyFrag.git","has_code":true,"age_days":22}]},{"cve_id":"CVE-2026-43512","repositories":[{"id":1263311996,"name":"cve-2026-43512-poc","full_name":"covepseng/cve-2026-43512-poc","html_url":"https://github.com/covepseng/cve-2026-43512-poc","description":"Exploitability PoC for CVE-2026-43512 (Apache Tomcat Digest Authentication Bypass)","stargazers_count":0,"forks_count":1,"language":"Go","updated_at":"2026-06-19T16:06:04Z","pushed_at":"2026-06-19T16:06:00Z","created_at":"2026-06-08T20:43:08Z","topics":[],"owner":{"login":"covepseng","html_url":"https://github.com/covepseng"},"clone_url":"https://github.com/covepseng/cve-2026-43512-poc.git","has_code":true,"age_days":16}]},{"cve_id":"CVE-2026-43515","repositories":[{"id":1274287482,"name":"cve-2026-43515-poc","full_name":"covepseng/cve-2026-43515-poc","html_url":"https://github.com/covepseng/cve-2026-43515-poc","description":"Exploitability PoC for CVE-2026-43515 (Apache Tomcat constraint bypass).","stargazers_count":0,"forks_count":0,"language":"Go","updated_at":"2026-06-19T16:02:55Z","pushed_at":"2026-06-19T16:02:51Z","created_at":"2026-06-19T11:08:22Z","topics":[],"owner":{"login":"covepseng","html_url":"https://github.com/covepseng"},"clone_url":"https://github.com/covepseng/cve-2026-43515-poc.git","has_code":true,"age_days":6}]},{"cve_id":"CVE-2026-43655","repositories":[{"id":1276311746,"name":"CVE-2026-43655-AppleM2ScalerCSCDriver-UAF","full_name":"Somisomair/CVE-2026-43655-AppleM2ScalerCSCDriver-UAF","html_url":"https://github.com/Somisomair/CVE-2026-43655-AppleM2ScalerCSCDriver-UAF","description":"Public disclosure for CVE-2026-43655 AppleM2ScalerCSCDriver use-after-free","stargazers_count":0,"forks_count":0,"language":"Objective-C","updated_at":"2026-06-21T20:25:31Z","pushed_at":"2026-06-21T20:25:27Z","created_at":"2026-06-21T20:22:08Z","topics":[],"owner":{"login":"Somisomair","html_url":"https://github.com/Somisomair"},"clone_url":"https://github.com/Somisomair/CVE-2026-43655-AppleM2ScalerCSCDriver-UAF.git","has_code":true,"age_days":3}]},{"cve_id":"CVE-2026-43893","repositories":[{"id":1229427576,"name":"CVE-2026-43893","full_name":"Dobby153/CVE-2026-43893","html_url":"https://github.com/Dobby153/CVE-2026-43893","description":"CVE-2026-43893","stargazers_count":0,"forks_count":0,"language":"JavaScript","updated_at":"2026-05-05T03:18:45Z","pushed_at":"2026-05-05T03:18:42Z","created_at":"2026-05-05T03:11:52Z","topics":[],"owner":{"login":"Dobby153","html_url":"https://github.com/Dobby153"},"clone_url":"https://github.com/Dobby153/CVE-2026-43893.git","has_code":true,"age_days":51}]},{"cve_id":"CVE-2026-4390","repositories":[{"id":1233843897,"name":"teamspeak3-vulnerabilities","full_name":"born0monday/teamspeak3-vulnerabilities","html_url":"https://github.com/born0monday/teamspeak3-vulnerabilities","description":"Proof-of-concept exploits for CVE-2026-4390, CVE-2026-4391 and CVE-2026-4392 in TeamSpeak 3 server (3.13.7).","stargazers_count":0,"forks_count":0,"language":"Rust","updated_at":"2026-06-03T12:12:35Z","pushed_at":"2026-06-03T10:03:49Z","created_at":"2026-05-09T12:34:53Z","topics":[],"owner":{"login":"born0monday","html_url":"https://github.com/born0monday"},"clone_url":"https://github.com/born0monday/teamspeak3-vulnerabilities.git","has_code":true,"age_days":47}]},{"cve_id":"CVE-2026-4391","repositories":[{"id":1233843897,"name":"teamspeak3-vulnerabilities","full_name":"born0monday/teamspeak3-vulnerabilities","html_url":"https://github.com/born0monday/teamspeak3-vulnerabilities","description":"Proof-of-concept exploits for CVE-2026-4390, CVE-2026-4391 and CVE-2026-4392 in TeamSpeak 3 server (3.13.7).","stargazers_count":0,"forks_count":0,"language":"Rust","updated_at":"2026-06-03T12:12:35Z","pushed_at":"2026-06-03T10:03:49Z","created_at":"2026-05-09T12:34:53Z","topics":[],"owner":{"login":"born0monday","html_url":"https://github.com/born0monday"},"clone_url":"https://github.com/born0monday/teamspeak3-vulnerabilities.git","has_code":true,"age_days":47}]},{"cve_id":"CVE-2026-4392","repositories":[{"id":1233843897,"name":"teamspeak3-vulnerabilities","full_name":"born0monday/teamspeak3-vulnerabilities","html_url":"https://github.com/born0monday/teamspeak3-vulnerabilities","description":"Proof-of-concept exploits for CVE-2026-4390, CVE-2026-4391 and CVE-2026-4392 in TeamSpeak 3 server (3.13.7).","stargazers_count":0,"forks_count":0,"language":"Rust","updated_at":"2026-06-03T12:12:35Z","pushed_at":"2026-06-03T10:03:49Z","created_at":"2026-05-09T12:34:53Z","topics":[],"owner":{"login":"born0monday","html_url":"https://github.com/born0monday"},"clone_url":"https://github.com/born0monday/teamspeak3-vulnerabilities.git","has_code":true,"age_days":47}]},{"cve_id":"CVE-2026-4406","repositories":[{"id":1204038150,"name":"CVE-2026-4406","full_name":"Hann1bl3L3ct3r/CVE-2026-4406","html_url":"https://github.com/Hann1bl3L3ct3r/CVE-2026-4406","description":"The Gravity Forms plugin for WordPress (tested through version 2.9.28) is vulnerable to unauthenticated reflected cross-site scripting (XSS) via the `form_ids` parameter in the `gform_get_config` AJAX action.","stargazers_count":0,"forks_count":1,"language":"HTML","updated_at":"2026-04-08T18:57:07Z","pushed_at":"2026-04-08T18:57:03Z","created_at":"2026-04-07T16:22:20Z","topics":[],"owner":{"login":"Hann1bl3L3ct3r","html_url":"https://github.com/Hann1bl3L3ct3r"},"clone_url":"https://github.com/Hann1bl3L3ct3r/CVE-2026-4406.git","has_code":true,"age_days":79}]},{"cve_id":"CVE-2026-44166","repositories":[{"id":1265688310,"name":"pocketbase-CVE-2026-44166","full_name":"Alardiians/pocketbase-CVE-2026-44166","html_url":"https://github.com/Alardiians/pocketbase-CVE-2026-44166","description":"Lab + writeup for CVE-2026-44166: PocketBase OAuth2 account pre-hijacking via unvalidated createData.email","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-06-11T03:56:47Z","pushed_at":"2026-06-11T03:56:44Z","created_at":"2026-06-11T02:06:40Z","topics":["access-control","account-hijacking","account-takeover","authentication-bypass","bug-bounty","cve","cve-2026-44166","exploit","golang","oauth2","poc","pocketbase","pre-hijacking","security-research","vulnerability"],"owner":{"login":"Alardiians","html_url":"https://github.com/Alardiians"},"clone_url":"https://github.com/Alardiians/pocketbase-CVE-2026-44166.git","has_code":true,"age_days":14}]},{"cve_id":"CVE-2026-442","repositories":[{"id":1264723268,"name":"CVE-2026-442_","full_name":"HORKimhab/CVE-2026-442_","html_url":"https://github.com/HORKimhab/CVE-2026-442_","description":"CVE-2026-44289, CVE-2026-44290, CVE-2026-44291, CVE-2026-44292, CVE-2026-44294, CVE-2026-44295 -  protobuf.js","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-10T06:39:08Z","pushed_at":"2026-06-10T06:39:04Z","created_at":"2026-06-10T06:04:10Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-442_.git","has_code":true,"age_days":15}]},{"cve_id":"CVE-2026-44262","repositories":[{"id":1231751825,"name":"CVE-2026-44262","full_name":"joshuavanderpoll/CVE-2026-44262","html_url":"https://github.com/joshuavanderpoll/CVE-2026-44262","description":"Unauthenticated RCE in dedoc/scramble — PoC, Nmap NSE \u0026 Nuclei template.","stargazers_count":2,"forks_count":0,"language":"Blade","updated_at":"2026-06-18T08:45:56Z","pushed_at":"2026-05-07T14:58:04Z","created_at":"2026-05-07T08:52:19Z","topics":["api","cve","cve-2026-44262","exploit","exploits","laravel","nmap","nuclei","nuclei-templates","openapi","pentest-tool","pentesting","python","rce","scanner","security","security-tools","vulnerabilities","vulnerability"],"owner":{"login":"joshuavanderpoll","html_url":"https://github.com/joshuavanderpoll"},"clone_url":"https://github.com/joshuavanderpoll/CVE-2026-44262.git","has_code":true,"age_days":49}]},{"cve_id":"CVE-2026-44277","repositories":[{"id":1237797876,"name":"CVE-2026-44277","full_name":"0xBlackash/CVE-2026-44277","html_url":"https://github.com/0xBlackash/CVE-2026-44277","description":"CVE-2026-44277","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-13T16:48:28Z","pushed_at":"2026-05-13T16:48:19Z","created_at":"2026-05-13T14:15:37Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-44277.git","has_code":true,"age_days":43}]},{"cve_id":"CVE-2026-44289","repositories":[{"id":1264723268,"name":"CVE-2026-442_","full_name":"HORKimhab/CVE-2026-442_","html_url":"https://github.com/HORKimhab/CVE-2026-442_","description":"CVE-2026-44289, CVE-2026-44290, CVE-2026-44291, CVE-2026-44292, CVE-2026-44294, CVE-2026-44295 -  protobuf.js","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-10T06:39:08Z","pushed_at":"2026-06-10T06:39:04Z","created_at":"2026-06-10T06:04:10Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-442_.git","has_code":true,"age_days":15}]},{"cve_id":"CVE-2026-44290","repositories":[{"id":1264723268,"name":"CVE-2026-442_","full_name":"HORKimhab/CVE-2026-442_","html_url":"https://github.com/HORKimhab/CVE-2026-442_","description":"CVE-2026-44289, CVE-2026-44290, CVE-2026-44291, CVE-2026-44292, CVE-2026-44294, CVE-2026-44295 -  protobuf.js","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-10T06:39:08Z","pushed_at":"2026-06-10T06:39:04Z","created_at":"2026-06-10T06:04:10Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-442_.git","has_code":true,"age_days":15}]},{"cve_id":"CVE-2026-44291","repositories":[{"id":1264723268,"name":"CVE-2026-442_","full_name":"HORKimhab/CVE-2026-442_","html_url":"https://github.com/HORKimhab/CVE-2026-442_","description":"CVE-2026-44289, CVE-2026-44290, CVE-2026-44291, CVE-2026-44292, CVE-2026-44294, CVE-2026-44295 -  protobuf.js","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-10T06:39:08Z","pushed_at":"2026-06-10T06:39:04Z","created_at":"2026-06-10T06:04:10Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-442_.git","has_code":true,"age_days":15}]},{"cve_id":"CVE-2026-44292","repositories":[{"id":1264723268,"name":"CVE-2026-442_","full_name":"HORKimhab/CVE-2026-442_","html_url":"https://github.com/HORKimhab/CVE-2026-442_","description":"CVE-2026-44289, CVE-2026-44290, CVE-2026-44291, CVE-2026-44292, CVE-2026-44294, CVE-2026-44295 -  protobuf.js","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-10T06:39:08Z","pushed_at":"2026-06-10T06:39:04Z","created_at":"2026-06-10T06:04:10Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-442_.git","has_code":true,"age_days":15}]},{"cve_id":"CVE-2026-44294","repositories":[{"id":1264723268,"name":"CVE-2026-442_","full_name":"HORKimhab/CVE-2026-442_","html_url":"https://github.com/HORKimhab/CVE-2026-442_","description":"CVE-2026-44289, CVE-2026-44290, CVE-2026-44291, CVE-2026-44292, CVE-2026-44294, CVE-2026-44295 -  protobuf.js","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-10T06:39:08Z","pushed_at":"2026-06-10T06:39:04Z","created_at":"2026-06-10T06:04:10Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-442_.git","has_code":true,"age_days":15}]},{"cve_id":"CVE-2026-44295","repositories":[{"id":1264723268,"name":"CVE-2026-442_","full_name":"HORKimhab/CVE-2026-442_","html_url":"https://github.com/HORKimhab/CVE-2026-442_","description":"CVE-2026-44289, CVE-2026-44290, CVE-2026-44291, CVE-2026-44292, CVE-2026-44294, CVE-2026-44295 -  protobuf.js","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-10T06:39:08Z","pushed_at":"2026-06-10T06:39:04Z","created_at":"2026-06-10T06:04:10Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-442_.git","has_code":true,"age_days":15}]},{"cve_id":"CVE-2026-44338","repositories":[{"id":1239594786,"name":"CVE-2026-44338-Lab","full_name":"rootdirective-sec/CVE-2026-44338-Lab","html_url":"https://github.com/rootdirective-sec/CVE-2026-44338-Lab","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-15T08:45:36Z","pushed_at":"2026-05-15T08:45:32Z","created_at":"2026-05-15T08:43:52Z","topics":[],"owner":{"login":"rootdirective-sec","html_url":"https://github.com/rootdirective-sec"},"clone_url":"https://github.com/rootdirective-sec/CVE-2026-44338-Lab.git","has_code":true,"age_days":41},{"id":1239324909,"name":"CVE-2026-44338","full_name":"HORKimhab/CVE-2026-44338","html_url":"https://github.com/HORKimhab/CVE-2026-44338","description":"CVE-2026-44338","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-15T01:45:26Z","pushed_at":"2026-05-15T01:45:22Z","created_at":"2026-05-15T01:38:38Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-44338.git","has_code":true,"age_days":41}]},{"cve_id":"CVE-2026-44403","repositories":[{"id":1238488903,"name":"CVE-2026-44403-WingFTP-v8.1.2-POC-Exploit","full_name":"ZemarKhos/CVE-2026-44403-WingFTP-v8.1.2-POC-Exploit","html_url":"https://github.com/ZemarKhos/CVE-2026-44403-WingFTP-v8.1.2-POC-Exploit","description":"CVE-2026-44403-WingFTP-v8.1.2-POC-Exploit","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-30T15:59:20Z","pushed_at":"2026-05-14T07:02:05Z","created_at":"2026-05-14T06:58:21Z","topics":[],"owner":{"login":"ZemarKhos","html_url":"https://github.com/ZemarKhos"},"clone_url":"https://github.com/ZemarKhos/CVE-2026-44403-WingFTP-v8.1.2-POC-Exploit.git","has_code":true,"age_days":42}]},{"cve_id":"CVE-2026-4447","repositories":[{"id":1214857172,"name":"CVE-2026-4447","full_name":"NetVanguard-cmd/CVE-2026-4447","html_url":"https://github.com/NetVanguard-cmd/CVE-2026-4447","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-19T06:22:06Z","pushed_at":"2026-04-19T06:22:05Z","created_at":"2026-04-19T06:22:02Z","topics":[],"owner":{"login":"NetVanguard-cmd","html_url":"https://github.com/NetVanguard-cmd"},"clone_url":"https://github.com/NetVanguard-cmd/CVE-2026-4447.git","has_code":false,"age_days":67}]},{"cve_id":"CVE-2026-44572","repositories":[{"id":1232414163,"name":"next-16.2.4-pocs","full_name":"dwisiswant0/next-16.2.4-pocs","html_url":"https://github.com/dwisiswant0/next-16.2.4-pocs","description":"Next.js v16.2.4 Security PoC Collection (CVE-2026-23870, CVE-2026-44575, CVE-2026-44579, CVE-2026-44574, CVE-2026-44578, CVE-2026-44573, CVE-2026-44581, CVE-2026-44580, CVE-2026-44577, CVE-2026-44576, CVE-2026-44582, CVE-2026-44572)","stargazers_count":168,"forks_count":37,"language":"Python","updated_at":"2026-06-22T11:05:03Z","pushed_at":"2026-05-12T04:28:18Z","created_at":"2026-05-07T23:00:40Z","topics":[],"owner":{"login":"dwisiswant0","html_url":"https://github.com/dwisiswant0"},"clone_url":"https://github.com/dwisiswant0/next-16.2.4-pocs.git","has_code":true,"age_days":48}]},{"cve_id":"CVE-2026-44573","repositories":[{"id":1232414163,"name":"next-16.2.4-pocs","full_name":"dwisiswant0/next-16.2.4-pocs","html_url":"https://github.com/dwisiswant0/next-16.2.4-pocs","description":"Next.js v16.2.4 Security PoC Collection (CVE-2026-23870, CVE-2026-44575, CVE-2026-44579, CVE-2026-44574, CVE-2026-44578, CVE-2026-44573, CVE-2026-44581, CVE-2026-44580, CVE-2026-44577, CVE-2026-44576, CVE-2026-44582, CVE-2026-44572)","stargazers_count":168,"forks_count":37,"language":"Python","updated_at":"2026-06-22T11:05:03Z","pushed_at":"2026-05-12T04:28:18Z","created_at":"2026-05-07T23:00:40Z","topics":[],"owner":{"login":"dwisiswant0","html_url":"https://github.com/dwisiswant0"},"clone_url":"https://github.com/dwisiswant0/next-16.2.4-pocs.git","has_code":true,"age_days":48}]},{"cve_id":"CVE-2026-44574","repositories":[{"id":1232414163,"name":"next-16.2.4-pocs","full_name":"dwisiswant0/next-16.2.4-pocs","html_url":"https://github.com/dwisiswant0/next-16.2.4-pocs","description":"Next.js v16.2.4 Security PoC Collection (CVE-2026-23870, CVE-2026-44575, CVE-2026-44579, CVE-2026-44574, CVE-2026-44578, CVE-2026-44573, CVE-2026-44581, CVE-2026-44580, CVE-2026-44577, CVE-2026-44576, CVE-2026-44582, CVE-2026-44572)","stargazers_count":168,"forks_count":37,"language":"Python","updated_at":"2026-06-22T11:05:03Z","pushed_at":"2026-05-12T04:28:18Z","created_at":"2026-05-07T23:00:40Z","topics":[],"owner":{"login":"dwisiswant0","html_url":"https://github.com/dwisiswant0"},"clone_url":"https://github.com/dwisiswant0/next-16.2.4-pocs.git","has_code":true,"age_days":48}]},{"cve_id":"CVE-2026-44575","repositories":[{"id":1232414163,"name":"next-16.2.4-pocs","full_name":"dwisiswant0/next-16.2.4-pocs","html_url":"https://github.com/dwisiswant0/next-16.2.4-pocs","description":"Next.js v16.2.4 Security PoC Collection (CVE-2026-23870, CVE-2026-44575, CVE-2026-44579, CVE-2026-44574, CVE-2026-44578, CVE-2026-44573, CVE-2026-44581, CVE-2026-44580, CVE-2026-44577, CVE-2026-44576, CVE-2026-44582, CVE-2026-44572)","stargazers_count":168,"forks_count":37,"language":"Python","updated_at":"2026-06-22T11:05:03Z","pushed_at":"2026-05-12T04:28:18Z","created_at":"2026-05-07T23:00:40Z","topics":[],"owner":{"login":"dwisiswant0","html_url":"https://github.com/dwisiswant0"},"clone_url":"https://github.com/dwisiswant0/next-16.2.4-pocs.git","has_code":true,"age_days":48}]},{"cve_id":"CVE-2026-44576","repositories":[{"id":1232414163,"name":"next-16.2.4-pocs","full_name":"dwisiswant0/next-16.2.4-pocs","html_url":"https://github.com/dwisiswant0/next-16.2.4-pocs","description":"Next.js v16.2.4 Security PoC Collection (CVE-2026-23870, CVE-2026-44575, CVE-2026-44579, CVE-2026-44574, CVE-2026-44578, CVE-2026-44573, CVE-2026-44581, CVE-2026-44580, CVE-2026-44577, CVE-2026-44576, CVE-2026-44582, CVE-2026-44572)","stargazers_count":168,"forks_count":37,"language":"Python","updated_at":"2026-06-22T11:05:03Z","pushed_at":"2026-05-12T04:28:18Z","created_at":"2026-05-07T23:00:40Z","topics":[],"owner":{"login":"dwisiswant0","html_url":"https://github.com/dwisiswant0"},"clone_url":"https://github.com/dwisiswant0/next-16.2.4-pocs.git","has_code":true,"age_days":48}]},{"cve_id":"CVE-2026-44577","repositories":[{"id":1232414163,"name":"next-16.2.4-pocs","full_name":"dwisiswant0/next-16.2.4-pocs","html_url":"https://github.com/dwisiswant0/next-16.2.4-pocs","description":"Next.js v16.2.4 Security PoC Collection (CVE-2026-23870, CVE-2026-44575, CVE-2026-44579, CVE-2026-44574, CVE-2026-44578, CVE-2026-44573, CVE-2026-44581, CVE-2026-44580, CVE-2026-44577, CVE-2026-44576, CVE-2026-44582, CVE-2026-44572)","stargazers_count":168,"forks_count":37,"language":"Python","updated_at":"2026-06-22T11:05:03Z","pushed_at":"2026-05-12T04:28:18Z","created_at":"2026-05-07T23:00:40Z","topics":[],"owner":{"login":"dwisiswant0","html_url":"https://github.com/dwisiswant0"},"clone_url":"https://github.com/dwisiswant0/next-16.2.4-pocs.git","has_code":true,"age_days":48}]},{"cve_id":"CVE-2026-44578","repositories":[{"id":1232414163,"name":"next-16.2.4-pocs","full_name":"dwisiswant0/next-16.2.4-pocs","html_url":"https://github.com/dwisiswant0/next-16.2.4-pocs","description":"Next.js v16.2.4 Security PoC Collection (CVE-2026-23870, CVE-2026-44575, CVE-2026-44579, CVE-2026-44574, CVE-2026-44578, CVE-2026-44573, CVE-2026-44581, CVE-2026-44580, CVE-2026-44577, CVE-2026-44576, CVE-2026-44582, CVE-2026-44572)","stargazers_count":168,"forks_count":37,"language":"Python","updated_at":"2026-06-22T11:05:03Z","pushed_at":"2026-05-12T04:28:18Z","created_at":"2026-05-07T23:00:40Z","topics":[],"owner":{"login":"dwisiswant0","html_url":"https://github.com/dwisiswant0"},"clone_url":"https://github.com/dwisiswant0/next-16.2.4-pocs.git","has_code":true,"age_days":48},{"id":1239436048,"name":"nextssrf","full_name":"ynsmroztas/nextssrf","html_url":"https://github.com/ynsmroztas/nextssrf","description":"NextSSRF — CVE-2026-44578 Scanner \u0026 Exploit          ║ ║   Next.js WebSocket Upgrade Handler SSRF","stargazers_count":75,"forks_count":18,"language":"Python","updated_at":"2026-06-24T12:49:11Z","pushed_at":"2026-05-15T05:09:54Z","created_at":"2026-05-15T05:02:38Z","topics":[],"owner":{"login":"ynsmroztas","html_url":"https://github.com/ynsmroztas"},"clone_url":"https://github.com/ynsmroztas/nextssrf.git","has_code":true,"age_days":41},{"id":1240589500,"name":"CVE-2026-44578","full_name":"dinosn/CVE-2026-44578","html_url":"https://github.com/dinosn/CVE-2026-44578","description":"CVE-2026-44578: Next.js WebSocket Upgrade SSRF — pre-auth credential theft via localhost:80. Lab + exploit + audit.","stargazers_count":7,"forks_count":2,"language":"Python","updated_at":"2026-05-24T20:47:45Z","pushed_at":"2026-05-16T10:23:10Z","created_at":"2026-05-16T10:15:20Z","topics":[],"owner":{"login":"dinosn","html_url":"https://github.com/dinosn"},"clone_url":"https://github.com/dinosn/CVE-2026-44578.git","has_code":true,"age_days":40},{"id":1240011136,"name":"nextjs-cve-2026-44578","full_name":"love07oj/nextjs-cve-2026-44578","html_url":"https://github.com/love07oj/nextjs-cve-2026-44578","description":"Nuclei templates for detecting CVE-2026-44578 (Next.js WebSocket Upgrade SSRF) with multi-cloud metadata validation, Next.js fingerprinting, and real-world scanning workflows. Includes references to the original NextSSRF research and exploit tooling.","stargazers_count":5,"forks_count":1,"language":"","updated_at":"2026-05-18T06:56:28Z","pushed_at":"2026-05-15T17:36:21Z","created_at":"2026-05-15T17:14:35Z","topics":[],"owner":{"login":"love07oj","html_url":"https://github.com/love07oj"},"clone_url":"https://github.com/love07oj/nextjs-cve-2026-44578.git","has_code":false,"age_days":41},{"id":1240764446,"name":"CVE-2026-44578","full_name":"0xBlackash/CVE-2026-44578","html_url":"https://github.com/0xBlackash/CVE-2026-44578","description":"CVE-2026-44578","stargazers_count":1,"forks_count":1,"language":"Python","updated_at":"2026-06-25T06:28:25Z","pushed_at":"2026-05-17T10:46:53Z","created_at":"2026-05-16T14:41:12Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-44578.git","has_code":true,"age_days":40},{"id":1275163103,"name":"CVE-2026-44578","full_name":"GadaLuBau1337/CVE-2026-44578","html_url":"https://github.com/GadaLuBau1337/CVE-2026-44578","description":"","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-22T04:30:33Z","pushed_at":"2026-06-20T10:37:10Z","created_at":"2026-06-20T10:33:50Z","topics":[],"owner":{"login":"GadaLuBau1337","html_url":"https://github.com/GadaLuBau1337"},"clone_url":"https://github.com/GadaLuBau1337/CVE-2026-44578.git","has_code":true,"age_days":5},{"id":1239609079,"name":"CVE-2026-44578-PoC","full_name":"tocong282/CVE-2026-44578-PoC","html_url":"https://github.com/tocong282/CVE-2026-44578-PoC","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-15T09:02:32Z","pushed_at":"2026-05-15T09:02:27Z","created_at":"2026-05-15T09:02:22Z","topics":[],"owner":{"login":"tocong282","html_url":"https://github.com/tocong282"},"clone_url":"https://github.com/tocong282/CVE-2026-44578-PoC.git","has_code":true,"age_days":41},{"id":1237366425,"name":"verify-ghsa-c4j6-fc7j-m34r","full_name":"panchocosil/verify-ghsa-c4j6-fc7j-m34r","html_url":"https://github.com/panchocosil/verify-ghsa-c4j6-fc7j-m34r","description":"OOB verifier for GHSA-c4j6-fc7j-m34r / CVE-2026-44578 (Next.js WebSocket-upgrade SSRF)","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-13T17:48:26Z","pushed_at":"2026-05-13T17:48:22Z","created_at":"2026-05-13T05:49:11Z","topics":[],"owner":{"login":"panchocosil","html_url":"https://github.com/panchocosil"},"clone_url":"https://github.com/panchocosil/verify-ghsa-c4j6-fc7j-m34r.git","has_code":true,"age_days":43},{"id":1255716703,"name":"NEXT-SSRF","full_name":"BS2010-AirborneTroops/NEXT-SSRF","html_url":"https://github.com/BS2010-AirborneTroops/NEXT-SSRF","description":"SSRF — CVE-2026-44578 Scanner \u0026 Exploit ║ ║ Next.js WebSocket Upgrade Handler SSRF","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-01T06:11:11Z","pushed_at":"2026-06-01T06:10:56Z","created_at":"2026-06-01T05:34:11Z","topics":[],"owner":{"login":"BS2010-AirborneTroops","html_url":"https://github.com/BS2010-AirborneTroops"},"clone_url":"https://github.com/BS2010-AirborneTroops/NEXT-SSRF.git","has_code":true,"age_days":24}]},{"cve_id":"CVE-2026-44579","repositories":[{"id":1232414163,"name":"next-16.2.4-pocs","full_name":"dwisiswant0/next-16.2.4-pocs","html_url":"https://github.com/dwisiswant0/next-16.2.4-pocs","description":"Next.js v16.2.4 Security PoC Collection (CVE-2026-23870, CVE-2026-44575, CVE-2026-44579, CVE-2026-44574, CVE-2026-44578, CVE-2026-44573, CVE-2026-44581, CVE-2026-44580, CVE-2026-44577, CVE-2026-44576, CVE-2026-44582, CVE-2026-44572)","stargazers_count":168,"forks_count":37,"language":"Python","updated_at":"2026-06-22T11:05:03Z","pushed_at":"2026-05-12T04:28:18Z","created_at":"2026-05-07T23:00:40Z","topics":[],"owner":{"login":"dwisiswant0","html_url":"https://github.com/dwisiswant0"},"clone_url":"https://github.com/dwisiswant0/next-16.2.4-pocs.git","has_code":true,"age_days":48}]},{"cve_id":"CVE-2026-44580","repositories":[{"id":1232414163,"name":"next-16.2.4-pocs","full_name":"dwisiswant0/next-16.2.4-pocs","html_url":"https://github.com/dwisiswant0/next-16.2.4-pocs","description":"Next.js v16.2.4 Security PoC Collection (CVE-2026-23870, CVE-2026-44575, CVE-2026-44579, CVE-2026-44574, CVE-2026-44578, CVE-2026-44573, CVE-2026-44581, CVE-2026-44580, CVE-2026-44577, CVE-2026-44576, CVE-2026-44582, CVE-2026-44572)","stargazers_count":168,"forks_count":37,"language":"Python","updated_at":"2026-06-22T11:05:03Z","pushed_at":"2026-05-12T04:28:18Z","created_at":"2026-05-07T23:00:40Z","topics":[],"owner":{"login":"dwisiswant0","html_url":"https://github.com/dwisiswant0"},"clone_url":"https://github.com/dwisiswant0/next-16.2.4-pocs.git","has_code":true,"age_days":48}]},{"cve_id":"CVE-2026-44581","repositories":[{"id":1232414163,"name":"next-16.2.4-pocs","full_name":"dwisiswant0/next-16.2.4-pocs","html_url":"https://github.com/dwisiswant0/next-16.2.4-pocs","description":"Next.js v16.2.4 Security PoC Collection (CVE-2026-23870, CVE-2026-44575, CVE-2026-44579, CVE-2026-44574, CVE-2026-44578, CVE-2026-44573, CVE-2026-44581, CVE-2026-44580, CVE-2026-44577, CVE-2026-44576, CVE-2026-44582, CVE-2026-44572)","stargazers_count":168,"forks_count":37,"language":"Python","updated_at":"2026-06-22T11:05:03Z","pushed_at":"2026-05-12T04:28:18Z","created_at":"2026-05-07T23:00:40Z","topics":[],"owner":{"login":"dwisiswant0","html_url":"https://github.com/dwisiswant0"},"clone_url":"https://github.com/dwisiswant0/next-16.2.4-pocs.git","has_code":true,"age_days":48}]},{"cve_id":"CVE-2026-44582","repositories":[{"id":1232414163,"name":"next-16.2.4-pocs","full_name":"dwisiswant0/next-16.2.4-pocs","html_url":"https://github.com/dwisiswant0/next-16.2.4-pocs","description":"Next.js v16.2.4 Security PoC Collection (CVE-2026-23870, CVE-2026-44575, CVE-2026-44579, CVE-2026-44574, CVE-2026-44578, CVE-2026-44573, CVE-2026-44581, CVE-2026-44580, CVE-2026-44577, CVE-2026-44576, CVE-2026-44582, CVE-2026-44572)","stargazers_count":168,"forks_count":37,"language":"Python","updated_at":"2026-06-22T11:05:03Z","pushed_at":"2026-05-12T04:28:18Z","created_at":"2026-05-07T23:00:40Z","topics":[],"owner":{"login":"dwisiswant0","html_url":"https://github.com/dwisiswant0"},"clone_url":"https://github.com/dwisiswant0/next-16.2.4-pocs.git","has_code":true,"age_days":48}]},{"cve_id":"CVE-2026-44590","repositories":[{"id":1232279563,"name":"CVE-2026-44590","full_name":"Astaruf/CVE-2026-44590","html_url":"https://github.com/Astaruf/CVE-2026-44590","description":"CVE-2026-44590 - Sherlock \u003c= v0.16.0 - RCE via pull_request_target Injection → Supply Chain Compromise","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-08T10:13:54Z","pushed_at":"2026-05-07T19:21:00Z","created_at":"2026-05-07T19:16:06Z","topics":["cve","cve-2026-44590","exploit","rce","responsible-disclosure","supply-chain-attack","supply-chain-security","vulnerability"],"owner":{"login":"Astaruf","html_url":"https://github.com/Astaruf"},"clone_url":"https://github.com/Astaruf/CVE-2026-44590.git","has_code":true,"age_days":49}]},{"cve_id":"CVE-2026-44595","repositories":[{"id":1253504811,"name":"CVE-2026-44595","full_name":"ex-cal1bur/CVE-2026-44595","html_url":"https://github.com/ex-cal1bur/CVE-2026-44595","description":"# CVE-2026-44595 YAMCS Unauthorized User Enumeration via IAM API ","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-29T14:34:35Z","pushed_at":"2026-05-29T14:34:23Z","created_at":"2026-05-29T14:31:15Z","topics":[],"owner":{"login":"ex-cal1bur","html_url":"https://github.com/ex-cal1bur"},"clone_url":"https://github.com/ex-cal1bur/CVE-2026-44595.git","has_code":true,"age_days":27}]},{"cve_id":"CVE-2026-44596","repositories":[{"id":1253463410,"name":"CVE-2026-44596","full_name":"ex-cal1bur/CVE-2026-44596","html_url":"https://github.com/ex-cal1bur/CVE-2026-44596","description":"YAMCS yamcs-core \u003c 5.12.7 lacks rate limiting on POST /auth/token. An unauthenticated attacker can perform unlimited brute-force attempts against any account. Never returns HTTP 429. Fixed in 5.12.7.","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-29T13:47:49Z","pushed_at":"2026-05-29T13:47:45Z","created_at":"2026-05-29T13:42:06Z","topics":[],"owner":{"login":"ex-cal1bur","html_url":"https://github.com/ex-cal1bur"},"clone_url":"https://github.com/ex-cal1bur/CVE-2026-44596.git","has_code":true,"age_days":27}]},{"cve_id":"CVE-2026-44648","repositories":[{"id":1232555093,"name":"CVE-2026-44648","full_name":"zzzm0919/CVE-2026-44648","html_url":"https://github.com/zzzm0919/CVE-2026-44648","description":"PoC and advisory for CVE-2026-44648","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-08T03:36:01Z","pushed_at":"2026-05-08T03:35:58Z","created_at":"2026-05-08T03:35:57Z","topics":[],"owner":{"login":"zzzm0919","html_url":"https://github.com/zzzm0919"},"clone_url":"https://github.com/zzzm0919/CVE-2026-44648.git","has_code":false,"age_days":48}]},{"cve_id":"CVE-2026-44656","repositories":[{"id":1233530241,"name":"CVE-2026-44656","full_name":"CryingN/CVE-2026-44656","html_url":"https://github.com/CryingN/CVE-2026-44656","description":"This repository provides a reproduction environment for CVE-2026-44656.","stargazers_count":1,"forks_count":0,"language":"Vim Script","updated_at":"2026-05-14T00:52:00Z","pushed_at":"2026-05-09T04:06:02Z","created_at":"2026-05-09T04:04:00Z","topics":[],"owner":{"login":"CryingN","html_url":"https://github.com/CryingN"},"clone_url":"https://github.com/CryingN/CVE-2026-44656.git","has_code":true,"age_days":47}]},{"cve_id":"CVE-2026-44706","repositories":[{"id":1197713544,"name":"CVE-2026-44706","full_name":"hakaioffsec/CVE-2026-44706","html_url":"https://github.com/hakaioffsec/CVE-2026-44706","description":"Chatwoot SQL injection in FilterService","stargazers_count":6,"forks_count":0,"language":"Python","updated_at":"2026-06-10T05:43:08Z","pushed_at":"2026-06-07T16:33:11Z","created_at":"2026-03-31T20:21:15Z","topics":[],"owner":{"login":"hakaioffsec","html_url":"https://github.com/hakaioffsec"},"clone_url":"https://github.com/hakaioffsec/CVE-2026-44706.git","has_code":true,"age_days":85}]},{"cve_id":"CVE-2026-4480","repositories":[{"id":1260309830,"name":"CVE-2026-4480-PoC","full_name":"TheCyberGeek/CVE-2026-4480-PoC","html_url":"https://github.com/TheCyberGeek/CVE-2026-4480-PoC","description":"","stargazers_count":13,"forks_count":2,"language":"Python","updated_at":"2026-06-19T20:07:50Z","pushed_at":"2026-06-05T11:31:22Z","created_at":"2026-06-05T11:05:55Z","topics":[],"owner":{"login":"TheCyberGeek","html_url":"https://github.com/TheCyberGeek"},"clone_url":"https://github.com/TheCyberGeek/CVE-2026-4480-PoC.git","has_code":true,"age_days":20},{"id":1263138857,"name":"CVE-2026-4480-POC","full_name":"CarlosEduardoPM/CVE-2026-4480-POC","html_url":"https://github.com/CarlosEduardoPM/CVE-2026-4480-POC","description":"smb spooler to RCE","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-09T04:10:26Z","pushed_at":"2026-06-09T04:10:22Z","created_at":"2026-06-08T16:56:28Z","topics":[],"owner":{"login":"CarlosEduardoPM","html_url":"https://github.com/CarlosEduardoPM"},"clone_url":"https://github.com/CarlosEduardoPM/CVE-2026-4480-POC.git","has_code":true,"age_days":17},{"id":1261930993,"name":"CVE-2026-4480","full_name":"robinxiang/CVE-2026-4480","html_url":"https://github.com/robinxiang/CVE-2026-4480","description":"Exploit CVE-2026-4480","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-10T03:57:19Z","pushed_at":"2026-06-07T10:57:40Z","created_at":"2026-06-07T10:53:18Z","topics":[],"owner":{"login":"robinxiang","html_url":"https://github.com/robinxiang"},"clone_url":"https://github.com/robinxiang/CVE-2026-4480.git","has_code":true,"age_days":18},{"id":1275378266,"name":"CVE-2026-4480-PoC","full_name":"ClearLotus-git/CVE-2026-4480-PoC","html_url":"https://github.com/ClearLotus-git/CVE-2026-4480-PoC","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-20T16:01:58Z","pushed_at":"2026-06-20T16:01:54Z","created_at":"2026-06-20T15:59:56Z","topics":[],"owner":{"login":"ClearLotus-git","html_url":"https://github.com/ClearLotus-git"},"clone_url":"https://github.com/ClearLotus-git/CVE-2026-4480-PoC.git","has_code":true,"age_days":5},{"id":1271063016,"name":"CVE-2026-4480-exploit-poc","full_name":"Vusal777/CVE-2026-4480-exploit-poc","html_url":"https://github.com/Vusal777/CVE-2026-4480-exploit-poc","description":"This is an exploit poc for CVE-2026-4480","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-16T10:05:43Z","pushed_at":"2026-06-16T10:02:35Z","created_at":"2026-06-16T09:49:25Z","topics":[],"owner":{"login":"Vusal777","html_url":"https://github.com/Vusal777"},"clone_url":"https://github.com/Vusal777/CVE-2026-4480-exploit-poc.git","has_code":true,"age_days":9},{"id":1262374495,"name":"CVE-2026-4480","full_name":"0xBlackash/CVE-2026-4480","html_url":"https://github.com/0xBlackash/CVE-2026-4480","description":"CVE-2026-4480","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-09T15:46:34Z","pushed_at":"2026-06-09T15:40:31Z","created_at":"2026-06-07T23:20:01Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-4480.git","has_code":true,"age_days":17}]},{"cve_id":"CVE-2026-4484","repositories":[{"id":1214211817,"name":"CVE-2026-4484","full_name":"Nxploited/CVE-2026-4484","html_url":"https://github.com/Nxploited/CVE-2026-4484","description":"Masteriyo LMS \u003c= 2.1.6 - Missing Authorization to Authenticated (Student+) Privilege Escalation to Administrator","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-18T09:07:12Z","pushed_at":"2026-04-18T09:07:08Z","created_at":"2026-04-18T09:05:55Z","topics":[],"owner":{"login":"Nxploited","html_url":"https://github.com/Nxploited"},"clone_url":"https://github.com/Nxploited/CVE-2026-4484.git","has_code":true,"age_days":68}]},{"cve_id":"CVE-2026-44881","repositories":[{"id":1271047859,"name":"CVE-2026-44881_exploit","full_name":"0xdak/CVE-2026-44881_exploit","html_url":"https://github.com/0xdak/CVE-2026-44881_exploit","description":"","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-16T09:37:20Z","pushed_at":"2026-06-16T09:32:30Z","created_at":"2026-06-16T09:32:26Z","topics":[],"owner":{"login":"0xdak","html_url":"https://github.com/0xdak"},"clone_url":"https://github.com/0xdak/CVE-2026-44881_exploit.git","has_code":true,"age_days":9}]},{"cve_id":"CVE-2026-44963","repositories":[{"id":1272884898,"name":"CVE-2026-44963","full_name":"SentinelXofficial/CVE-2026-44963","html_url":"https://github.com/SentinelXofficial/CVE-2026-44963","description":"Detection scripts, patch checker \u0026 hardening guide for CVE-2026-44963 (Veeam B\u0026R RCE)","stargazers_count":3,"forks_count":1,"language":"Python","updated_at":"2026-06-18T23:14:20Z","pushed_at":"2026-06-18T02:53:27Z","created_at":"2026-06-18T02:50:17Z","topics":[],"owner":{"login":"SentinelXofficial","html_url":"https://github.com/SentinelXofficial"},"clone_url":"https://github.com/SentinelXofficial/CVE-2026-44963.git","has_code":true,"age_days":7},{"id":1264540078,"name":"CVE-2026-44963","full_name":"HORKimhab/CVE-2026-44963","html_url":"https://github.com/HORKimhab/CVE-2026-44963","description":"CVE-2026-44963 - Draft - Veeam","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-10T01:16:42Z","pushed_at":"2026-06-10T01:16:29Z","created_at":"2026-06-10T01:16:26Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-44963.git","has_code":false,"age_days":15}]},{"cve_id":"CVE-2026-45034","repositories":[{"id":1265882122,"name":"CVE-2026-45034","full_name":"Cyber-DarkNay/CVE-2026-45034","html_url":"https://github.com/Cyber-DarkNay/CVE-2026-45034","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-11T07:39:26Z","pushed_at":"2026-06-11T07:39:22Z","created_at":"2026-06-11T06:47:06Z","topics":[],"owner":{"login":"Cyber-DarkNay","html_url":"https://github.com/Cyber-DarkNay"},"clone_url":"https://github.com/Cyber-DarkNay/CVE-2026-45034.git","has_code":true,"age_days":14}]},{"cve_id":"CVE-2026-45067","repositories":[{"id":1263536798,"name":"CVE-2026-45067","full_name":"HORKimhab/CVE-2026-45067","html_url":"https://github.com/HORKimhab/CVE-2026-45067","description":"CVE-2026-45067 - Draft","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-09T03:35:32Z","pushed_at":"2026-06-09T03:35:29Z","created_at":"2026-06-09T03:35:26Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-45067.git","has_code":false,"age_days":16}]},{"cve_id":"CVE-2026-45091","repositories":[{"id":1240342538,"name":"CVE-2026-45091","full_name":"HORKimhab/CVE-2026-45091","html_url":"https://github.com/HORKimhab/CVE-2026-45091","description":"CVE-2026-45091","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-16T03:12:16Z","pushed_at":"2026-05-16T03:12:12Z","created_at":"2026-05-16T03:05:32Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-45091.git","has_code":true,"age_days":40}]},{"cve_id":"CVE-2026-45156","repositories":[{"id":1278407882,"name":"CVE-2026-45156-POC","full_name":"cybertechajju/CVE-2026-45156-POC","html_url":"https://github.com/cybertechajju/CVE-2026-45156-POC","description":"This repository contains the Proof of Concept (PoC) exploit script for CVE-2026-45156","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-25T05:27:42Z","pushed_at":"2026-06-23T19:08:20Z","created_at":"2026-06-23T19:02:19Z","topics":[],"owner":{"login":"cybertechajju","html_url":"https://github.com/cybertechajju"},"clone_url":"https://github.com/cybertechajju/CVE-2026-45156-POC.git","has_code":true,"age_days":2}]},{"cve_id":"CVE-2026-45185","repositories":[{"id":1243756665,"name":"POC_CVE-2026-45185","full_name":"MJ-bin/POC_CVE-2026-45185","html_url":"https://github.com/MJ-bin/POC_CVE-2026-45185","description":"POC_CVE-2026-45185 for nuclei-templates","stargazers_count":1,"forks_count":1,"language":"Dockerfile","updated_at":"2026-06-04T15:06:06Z","pushed_at":"2026-05-20T05:48:00Z","created_at":"2026-05-19T16:26:55Z","topics":[],"owner":{"login":"MJ-bin","html_url":"https://github.com/MJ-bin"},"clone_url":"https://github.com/MJ-bin/POC_CVE-2026-45185.git","has_code":true,"age_days":37},{"id":1236925198,"name":"Dead.Letter-CVE-2026-45185","full_name":"liamromanis101/Dead.Letter-CVE-2026-45185","html_url":"https://github.com/liamromanis101/Dead.Letter-CVE-2026-45185","description":"Dead.Letter CVE-2026-45185 EXIM Vulnerability Detection Script","stargazers_count":1,"forks_count":2,"language":"Shell","updated_at":"2026-06-02T03:42:11Z","pushed_at":"2026-05-12T21:34:16Z","created_at":"2026-05-12T17:51:05Z","topics":["cve-2026-45185","exim","exim4","gnutls","linux"],"owner":{"login":"liamromanis101","html_url":"https://github.com/liamromanis101"},"clone_url":"https://github.com/liamromanis101/Dead.Letter-CVE-2026-45185.git","has_code":true,"age_days":44},{"id":1238365952,"name":"cve-2026-45185-detection-script","full_name":"materaj2/cve-2026-45185-detection-script","html_url":"https://github.com/materaj2/cve-2026-45185-detection-script","description":"These detection scripts are property of the SECPlayground Platform.  Two safe detection scripts. Neither drives the close_notify-mid-BDAT trigger, so they will not crash the daemon or leave panic-log entries.  Both verdicts are \"likely vulnerable\" — distinguishing GnuTLS from OpenSSL builds remotely is not reliable without exploitation.","stargazers_count":0,"forks_count":1,"language":"Lua","updated_at":"2026-05-15T01:24:40Z","pushed_at":"2026-05-14T04:03:43Z","created_at":"2026-05-14T03:57:22Z","topics":[],"owner":{"login":"materaj2","html_url":"https://github.com/materaj2"},"clone_url":"https://github.com/materaj2/cve-2026-45185-detection-script.git","has_code":true,"age_days":42}]},{"cve_id":"CVE-2026-45247","repositories":[{"id":1264417897,"name":"PoC-Funcional---CVE-2026-45247-Mirasvit-Full-Page-Cache-Warmer-RCE-","full_name":"fevar54/PoC-Funcional---CVE-2026-45247-Mirasvit-Full-Page-Cache-Warmer-RCE-","html_url":"https://github.com/fevar54/PoC-Funcional---CVE-2026-45247-Mirasvit-Full-Page-Cache-Warmer-RCE-","description":"CVE-2026-45247 - Mirasvit Full Page Cache Warmer for Magento 2 Unauthenticated PHP Object Injection -\u003e Remote Code Execution","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-09T21:46:45Z","pushed_at":"2026-06-09T21:46:42Z","created_at":"2026-06-09T21:39:33Z","topics":[],"owner":{"login":"fevar54","html_url":"https://github.com/fevar54"},"clone_url":"https://github.com/fevar54/PoC-Funcional---CVE-2026-45247-Mirasvit-Full-Page-Cache-Warmer-RCE-.git","has_code":true,"age_days":15},{"id":1259401008,"name":"CVE-2026-45247","full_name":"HORKimhab/CVE-2026-45247","html_url":"https://github.com/HORKimhab/CVE-2026-45247","description":"CVE-2026-45247 - Draft","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-04T13:25:22Z","pushed_at":"2026-06-04T13:23:00Z","created_at":"2026-06-04T13:22:56Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-45247.git","has_code":false,"age_days":21}]},{"cve_id":"CVE-2026-45250","repositories":[{"id":1245279981,"name":"setcred","full_name":"venglin/setcred","html_url":"https://github.com/venglin/setcred","description":"CVE-2026-45250 - FreeBSD 14.x LPE","stargazers_count":22,"forks_count":2,"language":"C","updated_at":"2026-06-10T10:25:22Z","pushed_at":"2026-05-21T04:43:28Z","created_at":"2026-05-21T04:40:37Z","topics":[],"owner":{"login":"venglin","html_url":"https://github.com/venglin"},"clone_url":"https://github.com/venglin/setcred.git","has_code":true,"age_days":35}]},{"cve_id":"CVE-2026-45258","repositories":[{"id":1264592079,"name":"CVE-2026-45258_1day_LPE_exploit","full_name":"Yayoi-cs/CVE-2026-45258_1day_LPE_exploit","html_url":"https://github.com/Yayoi-cs/CVE-2026-45258_1day_LPE_exploit","description":"1-day exploit for CVE-2026-45258","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-06-13T12:21:15Z","pushed_at":"2026-06-10T02:52:41Z","created_at":"2026-06-10T02:44:04Z","topics":[],"owner":{"login":"Yayoi-cs","html_url":"https://github.com/Yayoi-cs"},"clone_url":"https://github.com/Yayoi-cs/CVE-2026-45258_1day_LPE_exploit.git","has_code":true,"age_days":15}]},{"cve_id":"CVE-2026-45321","repositories":[{"id":1240505679,"name":"tanstack-compromise-checker","full_name":"fabriziosalmi/tanstack-compromise-checker","html_url":"https://github.com/fabriziosalmi/tanstack-compromise-checker","description":"Shell script to detect TanStack npm supply chain attack indicators (CVE-2026-45321 / GHSA-g7cv-rxg3-hmpx)","stargazers_count":2,"forks_count":0,"language":"Shell","updated_at":"2026-06-11T09:06:52Z","pushed_at":"2026-06-22T06:14:38Z","created_at":"2026-05-16T08:01:40Z","topics":["bash-script","compromise-detection","cve-2026-45321","dependency-scanner","devsecops","docker","ghsa","github-actions","incident-response","ioc-detection","malware-detection","npm-security","security-audit","security-scanner","security-tools","shai-hulud","supply-chain-attack","supply-chain-security","tanstack","zero-day"],"owner":{"login":"fabriziosalmi","html_url":"https://github.com/fabriziosalmi"},"clone_url":"https://github.com/fabriziosalmi/tanstack-compromise-checker.git","has_code":true,"age_days":40},{"id":1237635372,"name":"mini-shai-hulud-scanner","full_name":"Intrudify/mini-shai-hulud-scanner","html_url":"https://github.com/Intrudify/mini-shai-hulud-scanner","description":"Scanner for the Mini Shai-Hulud npm/PyPI supply chain worm (NHS CC-4781 · CVE-2026-45321). Detects gh-token-monitor persistence, payload artefacts, and attacker commits. Python, Bash, PowerShell.","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-05-22T07:20:45Z","pushed_at":"2026-05-13T14:44:18Z","created_at":"2026-05-13T11:12:50Z","topics":[],"owner":{"login":"Intrudify","html_url":"https://github.com/Intrudify"},"clone_url":"https://github.com/Intrudify/mini-shai-hulud-scanner.git","has_code":true,"age_days":43},{"id":1242267233,"name":"tanscript-exploit-check","full_name":"nkopylov/tanscript-exploit-check","html_url":"https://github.com/nkopylov/tanscript-exploit-check","description":"IOC checker for the TanStack/Mini Shai-Hulud npm supply chain attack (CVE-2026-45321)","stargazers_count":1,"forks_count":0,"language":"Shell","updated_at":"2026-05-26T14:46:38Z","pushed_at":"2026-05-26T14:27:49Z","created_at":"2026-05-18T09:16:47Z","topics":[],"owner":{"login":"nkopylov","html_url":"https://github.com/nkopylov"},"clone_url":"https://github.com/nkopylov/tanscript-exploit-check.git","has_code":true,"age_days":38},{"id":1237161931,"name":"shai-hulud-scan","full_name":"shayr1/shai-hulud-scan","html_url":"https://github.com/shayr1/shai-hulud-scan","description":"Claude Code skill to scan machines for Mini Shai-Hulud (CVE-2026-45321) supply chain worm IOCs","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-05-18T05:08:49Z","pushed_at":"2026-05-13T00:01:00Z","created_at":"2026-05-12T23:54:59Z","topics":[],"owner":{"login":"shayr1","html_url":"https://github.com/shayr1"},"clone_url":"https://github.com/shayr1/shai-hulud-scan.git","has_code":false,"age_days":43},{"id":1237037761,"name":"scan-shai-hulud","full_name":"qi-scape/scan-shai-hulud","html_url":"https://github.com/qi-scape/scan-shai-hulud","description":"Detect CVE-2026-45321 Mini Shai-Hulud supply chain compromise — scans for 170 npm + 2 PyPI poisoned packages across TanStack, Mistral AI, UiPath, OpenSearch, Guardrails AI","stargazers_count":1,"forks_count":1,"language":"Shell","updated_at":"2026-05-22T18:41:46Z","pushed_at":"2026-05-12T22:41:31Z","created_at":"2026-05-12T20:18:18Z","topics":["cve-2026-45321","npm","pypi","security-scanner","supply-chain-security","tanstack","vulnerability-detection"],"owner":{"login":"qi-scape","html_url":"https://github.com/qi-scape"},"clone_url":"https://github.com/qi-scape/scan-shai-hulud.git","has_code":true,"age_days":43},{"id":1280054270,"name":"CVE-2026-45321-Tanstack","full_name":"7whyex/CVE-2026-45321-Tanstack","html_url":"https://github.com/7whyex/CVE-2026-45321-Tanstack","description":"","stargazers_count":0,"forks_count":0,"language":"JavaScript","updated_at":"2026-06-25T08:26:57Z","pushed_at":"2026-06-25T08:26:54Z","created_at":"2026-06-25T08:21:49Z","topics":[],"owner":{"login":"7whyex","html_url":"https://github.com/7whyex"},"clone_url":"https://github.com/7whyex/CVE-2026-45321-Tanstack.git","has_code":true,"age_days":0},{"id":1249332472,"name":"CVE-2026-45321-Tanstack","full_name":"renewablehacking/CVE-2026-45321-Tanstack","html_url":"https://github.com/renewablehacking/CVE-2026-45321-Tanstack","description":"","stargazers_count":0,"forks_count":0,"language":"JavaScript","updated_at":"2026-05-25T16:59:59Z","pushed_at":"2026-05-25T16:59:56Z","created_at":"2026-05-25T15:34:23Z","topics":[],"owner":{"login":"renewablehacking","html_url":"https://github.com/renewablehacking"},"clone_url":"https://github.com/renewablehacking/CVE-2026-45321-Tanstack.git","has_code":true,"age_days":31},{"id":1236461570,"name":"tanstack-compromise-checker","full_name":"ry-allan/tanstack-compromise-checker","html_url":"https://github.com/ry-allan/tanstack-compromise-checker","description":"Detects CVE-2026-45321 (TanStack supply chain compromise) and Mini Shai-Hulud worm artifacts. Scans node_modules, lockfiles, persistence hooks (Claude Code, VS Code, systemd, LaunchAgent), GitHub workflows, git history, C2 domains, and AI tool configs.","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-24T08:43:48Z","pushed_at":"2026-05-24T08:43:45Z","created_at":"2026-05-12T09:11:30Z","topics":[],"owner":{"login":"ry-allan","html_url":"https://github.com/ry-allan"},"clone_url":"https://github.com/ry-allan/tanstack-compromise-checker.git","has_code":true,"age_days":44},{"id":1245106276,"name":"mini-shai-hulud-detector","full_name":"prashanthnataraj/mini-shai-hulud-detector","html_url":"https://github.com/prashanthnataraj/mini-shai-hulud-detector","description":"One-command scanner for the Mini Shai-Hulud npm supply-chain worm (CVE-2026-45321). Detect before rotating tokens.","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-21T00:12:26Z","pushed_at":"2026-05-21T00:12:22Z","created_at":"2026-05-20T23:16:16Z","topics":[],"owner":{"login":"prashanthnataraj","html_url":"https://github.com/prashanthnataraj"},"clone_url":"https://github.com/prashanthnataraj/mini-shai-hulud-detector.git","has_code":true,"age_days":35},{"id":1240545513,"name":"shai-scan","full_name":"digi4care/shai-scan","html_url":"https://github.com/digi4care/shai-scan","description":"Zero-dependency CLI scanner for npm/PyPI supply chain compromises. Detects compromised packages in lockfiles and system-level IOCs from attacks like Mini Shai-Hulud (CVE-2026-45321).","stargazers_count":0,"forks_count":0,"language":"TypeScript","updated_at":"2026-05-16T13:58:13Z","pushed_at":"2026-05-16T13:58:09Z","created_at":"2026-05-16T09:06:25Z","topics":[],"owner":{"login":"digi4care","html_url":"https://github.com/digi4care"},"clone_url":"https://github.com/digi4care/shai-scan.git","has_code":true,"age_days":40},{"id":1236665876,"name":"are-you-get-tanstack-attack","full_name":"Yomisana/are-you-get-tanstack-attack","html_url":"https://github.com/Yomisana/are-you-get-tanstack-attack","description":"Are you get Tanstack Supply chain attack attack of 5/11? CVE-2026-45321 / GHSA-g7cv-rxg3-hmpx","stargazers_count":0,"forks_count":0,"language":"JavaScript","updated_at":"2026-05-13T02:33:45Z","pushed_at":"2026-05-13T02:27:46Z","created_at":"2026-05-12T13:08:36Z","topics":[],"owner":{"login":"Yomisana","html_url":"https://github.com/Yomisana"},"clone_url":"https://github.com/Yomisana/are-you-get-tanstack-attack.git","has_code":true,"age_days":44},{"id":1237024116,"name":"tanstack-shield","full_name":"Caixa-git/tanstack-shield","html_url":"https://github.com/Caixa-git/tanstack-shield","description":"🛡️ One-command scanner for CVE-2026-45321 — TanStack npm supply-chain attack","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-12T20:14:11Z","pushed_at":"2026-05-12T20:14:07Z","created_at":"2026-05-12T19:58:56Z","topics":[],"owner":{"login":"Caixa-git","html_url":"https://github.com/Caixa-git"},"clone_url":"https://github.com/Caixa-git/tanstack-shield.git","has_code":true,"age_days":44},{"id":1275698784,"name":"CVE-2026-45321-Tanstack","full_name":"adriannurrr/CVE-2026-45321-Tanstack","html_url":"https://github.com/adriannurrr/CVE-2026-45321-Tanstack","description":"","stargazers_count":0,"forks_count":0,"language":"JavaScript","updated_at":"2026-06-21T03:10:47Z","pushed_at":"2026-06-21T03:10:42Z","created_at":"2026-06-21T03:09:12Z","topics":[],"owner":{"login":"adriannurrr","html_url":"https://github.com/adriannurrr"},"clone_url":"https://github.com/adriannurrr/CVE-2026-45321-Tanstack.git","has_code":true,"age_days":4}]},{"cve_id":"CVE-2026-45332","repositories":[{"id":1257434663,"name":"CVE-2026-45332-PoC","full_name":"lorenzocamilli/CVE-2026-45332-PoC","html_url":"https://github.com/lorenzocamilli/CVE-2026-45332-PoC","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-02T17:15:56Z","pushed_at":"2026-06-02T17:15:47Z","created_at":"2026-06-02T17:15:09Z","topics":[],"owner":{"login":"lorenzocamilli","html_url":"https://github.com/lorenzocamilli"},"clone_url":"https://github.com/lorenzocamilli/CVE-2026-45332-PoC.git","has_code":false,"age_days":23}]},{"cve_id":"CVE-2026-45401","repositories":[{"id":1249970196,"name":"CVE-2026-45401","full_name":"nayakchinmohan/CVE-2026-45401","html_url":"https://github.com/nayakchinmohan/CVE-2026-45401","description":"Working exploit for ssrf issue reported in CVE-2026–45401","stargazers_count":1,"forks_count":0,"language":"Shell","updated_at":"2026-05-26T07:31:04Z","pushed_at":"2026-05-26T07:30:02Z","created_at":"2026-05-26T07:29:35Z","topics":[],"owner":{"login":"nayakchinmohan","html_url":"https://github.com/nayakchinmohan"},"clone_url":"https://github.com/nayakchinmohan/CVE-2026-45401.git","has_code":true,"age_days":30}]},{"cve_id":"CVE-2026-45447","repositories":[{"id":1268411323,"name":"CVE-2026-45447","full_name":"0xBlackash/CVE-2026-45447","html_url":"https://github.com/0xBlackash/CVE-2026-45447","description":"CVE-2026-45447","stargazers_count":1,"forks_count":0,"language":"Shell","updated_at":"2026-06-13T17:33:07Z","pushed_at":"2026-06-13T17:33:03Z","created_at":"2026-06-13T13:57:31Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-45447.git","has_code":true,"age_days":12},{"id":1265909166,"name":"CVE-2026-45447","full_name":"HORKimhab/CVE-2026-45447","html_url":"https://github.com/HORKimhab/CVE-2026-45447","description":"CVE-2026-45447 - Draft","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-11T07:13:58Z","pushed_at":"2026-06-11T07:13:54Z","created_at":"2026-06-11T07:13:50Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-45447.git","has_code":true,"age_days":14}]},{"cve_id":"CVE-2026-45498","repositories":[{"id":1247125022,"name":"defender-privilege-escalation-scanner","full_name":"ridhinva/defender-privilege-escalation-scanner","html_url":"https://github.com/ridhinva/defender-privilege-escalation-scanner","description":"CVE-2026-41091 / CVE-2026-45498 Microsoft Defender vulnerability scanner","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-06-03T17:53:17Z","pushed_at":"2026-05-23T13:57:19Z","created_at":"2026-05-22T23:42:50Z","topics":[],"owner":{"login":"ridhinva","html_url":"https://github.com/ridhinva"},"clone_url":"https://github.com/ridhinva/defender-privilege-escalation-scanner.git","has_code":true,"age_days":33}]},{"cve_id":"CVE-2026-45504","repositories":[{"id":1278622113,"name":"CVE-2026-45504","full_name":"hawktrace/CVE-2026-45504","html_url":"https://github.com/hawktrace/CVE-2026-45504","description":"CVE-2026-45504 Microsoft Exchange File Read","stargazers_count":43,"forks_count":10,"language":"Python","updated_at":"2026-06-25T18:02:30Z","pushed_at":"2026-06-24T01:45:46Z","created_at":"2026-06-24T01:05:34Z","topics":[],"owner":{"login":"hawktrace","html_url":"https://github.com/hawktrace"},"clone_url":"https://github.com/hawktrace/CVE-2026-45504.git","has_code":true,"age_days":1}]},{"cve_id":"CVE-2026-45584","repositories":[{"id":1246600910,"name":"CVE-2026-45584","full_name":"96613686/CVE-2026-45584","html_url":"https://github.com/96613686/CVE-2026-45584","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-22T17:01:22Z","pushed_at":"2026-05-22T11:05:57Z","created_at":"2026-05-22T11:04:08Z","topics":[],"owner":{"login":"96613686","html_url":"https://github.com/96613686"},"clone_url":"https://github.com/96613686/CVE-2026-45584.git","has_code":false,"age_days":34}]},{"cve_id":"CVE-2026-45585","repositories":[{"id":1255171580,"name":"CVE-2026-45585","full_name":"0xBlackash/CVE-2026-45585","html_url":"https://github.com/0xBlackash/CVE-2026-45585","description":"CVE-2026-45585","stargazers_count":1,"forks_count":1,"language":"PowerShell","updated_at":"2026-06-02T06:04:13Z","pushed_at":"2026-05-31T14:38:24Z","created_at":"2026-05-31T13:52:41Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-45585.git","has_code":true,"age_days":25},{"id":1246047291,"name":"YellowKey-WinRE-Remediation","full_name":"everest90909/YellowKey-WinRE-Remediation","html_url":"https://github.com/everest90909/YellowKey-WinRE-Remediation","description":"Intune Remediation package for the CVE-2026-45585 YellowKey BitLocker/WinRE bypass mitigation described in the provided procedure.  This package removes `autofstx.exe` from the offline WinRE image's `BootExecute` value and refreshes WinRE registration so BitLocker trust is reestablished.","stargazers_count":1,"forks_count":0,"language":"PowerShell","updated_at":"2026-06-12T11:14:19Z","pushed_at":"2026-05-21T20:25:59Z","created_at":"2026-05-21T20:24:46Z","topics":[],"owner":{"login":"everest90909","html_url":"https://github.com/everest90909"},"clone_url":"https://github.com/everest90909/YellowKey-WinRE-Remediation.git","has_code":true,"age_days":34},{"id":1270936492,"name":"yellowkey-bitlocker","full_name":"Desireeontrial76/yellowkey-bitlocker","html_url":"https://github.com/Desireeontrial76/yellowkey-bitlocker","description":"Manage and recover BitLocker encrypted drives with this tool for Windows 11 recovery key management and educational study of CVE-2026-45585.","stargazers_count":0,"forks_count":0,"language":"C#","updated_at":"2026-06-25T19:02:53Z","pushed_at":"2026-06-25T19:02:37Z","created_at":"2026-06-16T07:21:36Z","topics":["bitlocker","bitlocker-bypass","bitlocker-drive-encryption","bitlocker-drive-lock","bitlocker-drive-management","bitlocker-lock","bitlocker-yellowkey","cve-2026-45585","decryption-tool","nightmare-eclipse","yellow-download","yellow-install","yellow-key","yellowkey","yellowkey-bitlocker","yellowkey-cve","yellowkey-exploit","yellowkey-vulnerability"],"owner":{"login":"Desireeontrial76","html_url":"https://github.com/Desireeontrial76"},"clone_url":"https://github.com/Desireeontrial76/yellowkey-bitlocker.git","has_code":true,"age_days":9},{"id":1248038920,"name":"bitlocker-hardening","full_name":"andrei-majer/bitlocker-hardening","html_url":"https://github.com/andrei-majer/bitlocker-hardening","description":"BitLocker TPM+PIN Hardening Against CVE-2026-45585 (YellowKey)","stargazers_count":0,"forks_count":0,"language":"PowerShell","updated_at":"2026-05-24T06:16:47Z","pushed_at":"2026-05-24T06:16:44Z","created_at":"2026-05-24T05:26:15Z","topics":[],"owner":{"login":"andrei-majer","html_url":"https://github.com/andrei-majer"},"clone_url":"https://github.com/andrei-majer/bitlocker-hardening.git","has_code":true,"age_days":32},{"id":1244420529,"name":"Yellowkey-mitigation","full_name":"bjbakker1984/Yellowkey-mitigation","html_url":"https://github.com/bjbakker1984/Yellowkey-mitigation","description":"A small script to apply Yellowkey mitigation based on CVE-2026-45585 instructions","stargazers_count":0,"forks_count":1,"language":"PowerShell","updated_at":"2026-05-20T13:14:20Z","pushed_at":"2026-05-20T13:13:48Z","created_at":"2026-05-20T08:48:04Z","topics":[],"owner":{"login":"bjbakker1984","html_url":"https://github.com/bjbakker1984"},"clone_url":"https://github.com/bjbakker1984/Yellowkey-mitigation.git","has_code":true,"age_days":36},{"id":1262908394,"name":"YellowKey-BitLocker-Bypass-CVE-2026-45585-Detect-Fix-Automatically-via-Microsoft-Intune","full_name":"ChanderManiPandey2022/YellowKey-BitLocker-Bypass-CVE-2026-45585-Detect-Fix-Automatically-via-Microsoft-Intune","html_url":"https://github.com/ChanderManiPandey2022/YellowKey-BitLocker-Bypass-CVE-2026-45585-Detect-Fix-Automatically-via-Microsoft-Intune","description":"YellowKey | BitLocker Bypass CVE-2026-45585 | Detect \u0026 Fix Automatically via Microsoft Intune","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-08T12:42:49Z","pushed_at":"2026-06-08T12:43:38Z","created_at":"2026-06-08T12:42:23Z","topics":[],"owner":{"login":"ChanderManiPandey2022","html_url":"https://github.com/ChanderManiPandey2022"},"clone_url":"https://github.com/ChanderManiPandey2022/YellowKey-BitLocker-Bypass-CVE-2026-45585-Detect-Fix-Automatically-via-Microsoft-Intune.git","has_code":false,"age_days":17},{"id":1259810824,"name":"Yellow-Key-Check","full_name":"ChanderManiPandey2022/Yellow-Key-Check","html_url":"https://github.com/ChanderManiPandey2022/Yellow-Key-Check","description":"YellowKey | BitLocker Bypass Vulnerability (CVE-2026-45585)","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-04T22:14:57Z","pushed_at":"2026-06-04T22:14:53Z","created_at":"2026-06-04T22:09:04Z","topics":[],"owner":{"login":"ChanderManiPandey2022","html_url":"https://github.com/ChanderManiPandey2022"},"clone_url":"https://github.com/ChanderManiPandey2022/Yellow-Key-Check.git","has_code":false,"age_days":20}]},{"cve_id":"CVE-2026-45659","repositories":[{"id":1251375412,"name":"CVE-2026-45659-SharePoint-RCE","full_name":"mistbarbarianspot/CVE-2026-45659-SharePoint-RCE","html_url":"https://github.com/mistbarbarianspot/CVE-2026-45659-SharePoint-RCE","description":"CVE-2026-45659 Microsoft SharePoint Server Deserialization RCE.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-29T15:31:16Z","pushed_at":"2026-05-29T15:30:42Z","created_at":"2026-05-27T14:12:48Z","topics":[],"owner":{"login":"mistbarbarianspot","html_url":"https://github.com/mistbarbarianspot"},"clone_url":"https://github.com/mistbarbarianspot/CVE-2026-45659-SharePoint-RCE.git","has_code":false,"age_days":29},{"id":1250797868,"name":"CVE-2026-45659","full_name":"HORKimhab/CVE-2026-45659","html_url":"https://github.com/HORKimhab/CVE-2026-45659","description":"CVE-2026-45659 - Draft","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-27T01:25:10Z","pushed_at":"2026-05-27T01:25:06Z","created_at":"2026-05-27T01:25:03Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-45659.git","has_code":false,"age_days":29},{"id":1263895678,"name":"CVE-2026-45659","full_name":"jenniferreire26/CVE-2026-45659","html_url":"https://github.com/jenniferreire26/CVE-2026-45659","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-09T11:17:00Z","pushed_at":"2026-06-09T11:16:42Z","created_at":"2026-06-09T11:16:39Z","topics":[],"owner":{"login":"jenniferreire26","html_url":"https://github.com/jenniferreire26"},"clone_url":"https://github.com/jenniferreire26/CVE-2026-45659.git","has_code":false,"age_days":16}]},{"cve_id":"CVE-2026-45777","repositories":[{"id":1272575188,"name":"CVE-2026-45777","full_name":"morepoints/CVE-2026-45777","html_url":"https://github.com/morepoints/CVE-2026-45777","description":"CVE-2026-45777 PoC","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-17T19:17:30Z","pushed_at":"2026-06-17T19:17:26Z","created_at":"2026-06-17T18:37:56Z","topics":[],"owner":{"login":"morepoints","html_url":"https://github.com/morepoints"},"clone_url":"https://github.com/morepoints/CVE-2026-45777.git","has_code":true,"age_days":8}]},{"cve_id":"CVE-2026-45829","repositories":[{"id":1245599525,"name":"CVE-2026-45829","full_name":"0xBlackash/CVE-2026-45829","html_url":"https://github.com/0xBlackash/CVE-2026-45829","description":"CVE-2026-45829","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-21T11:29:16Z","pushed_at":"2026-05-21T11:29:12Z","created_at":"2026-05-21T11:24:52Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-45829.git","has_code":false,"age_days":35},{"id":1244777625,"name":"FULL-ANALYSIS---CVE-2026-45829-ChromaDB-","full_name":"fevar54/FULL-ANALYSIS---CVE-2026-45829-ChromaDB-","html_url":"https://github.com/fevar54/FULL-ANALYSIS---CVE-2026-45829-ChromaDB-","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-20T15:55:41Z","pushed_at":"2026-05-20T15:54:41Z","created_at":"2026-05-20T15:31:29Z","topics":[],"owner":{"login":"fevar54","html_url":"https://github.com/fevar54"},"clone_url":"https://github.com/fevar54/FULL-ANALYSIS---CVE-2026-45829-ChromaDB-.git","has_code":true,"age_days":36}]},{"cve_id":"CVE-2026-46215","repositories":[{"id":1273455963,"name":"CVE-2026-46215-POC","full_name":"0xCyberstan/CVE-2026-46215-POC","html_url":"https://github.com/0xCyberstan/CVE-2026-46215-POC","description":"","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-06-18T15:59:01Z","pushed_at":"2026-06-18T15:58:56Z","created_at":"2026-06-18T14:39:11Z","topics":[],"owner":{"login":"0xCyberstan","html_url":"https://github.com/0xCyberstan"},"clone_url":"https://github.com/0xCyberstan/CVE-2026-46215-POC.git","has_code":true,"age_days":7}]},{"cve_id":"CVE-2026-46243","repositories":[{"id":1257122233,"name":"CIFSwitch-Checker-CVE-2026-46243","full_name":"MrForkBomb/CIFSwitch-Checker-CVE-2026-46243","html_url":"https://github.com/MrForkBomb/CIFSwitch-Checker-CVE-2026-46243","description":"Script para comprobar si la vulnerabilidad de Linux CIFSwitch (CVE-2026-46243) nos afecta. Detecta configuraciones potencialmente vulnerables y mitigaciones sin ejecutar exploits.","stargazers_count":2,"forks_count":0,"language":"Shell","updated_at":"2026-06-03T01:52:21Z","pushed_at":"2026-06-02T22:23:16Z","created_at":"2026-06-02T11:39:07Z","topics":[],"owner":{"login":"MrForkBomb","html_url":"https://github.com/MrForkBomb"},"clone_url":"https://github.com/MrForkBomb/CIFSwitch-Checker-CVE-2026-46243.git","has_code":true,"age_days":23},{"id":1255835577,"name":"CIFSwitch-go","full_name":"Koshmare-Blossom/CIFSwitch-go","html_url":"https://github.com/Koshmare-Blossom/CIFSwitch-go","description":"A Go implementation of CIFSwitch (CVE-2026-46243)","stargazers_count":2,"forks_count":0,"language":"Go","updated_at":"2026-06-09T01:33:20Z","pushed_at":"2026-06-01T08:07:49Z","created_at":"2026-06-01T08:03:45Z","topics":[],"owner":{"login":"Koshmare-Blossom","html_url":"https://github.com/Koshmare-Blossom"},"clone_url":"https://github.com/Koshmare-Blossom/CIFSwitch-go.git","has_code":true,"age_days":24},{"id":1257716338,"name":"cifswitch-check","full_name":"liamromanis101/cifswitch-check","html_url":"https://github.com/liamromanis101/cifswitch-check","description":"Detection script for CIFSwitch - CVE-2026-46243","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-07T11:18:02Z","pushed_at":"2026-06-07T11:17:59Z","created_at":"2026-06-03T00:15:44Z","topics":["cifs","containers","cve-2026-46243","docker-security","kubernetes-security","linux"],"owner":{"login":"liamromanis101","html_url":"https://github.com/liamromanis101"},"clone_url":"https://github.com/liamromanis101/cifswitch-check.git","has_code":true,"age_days":22}]},{"cve_id":"CVE-2026-46275","repositories":[{"id":1250361225,"name":"CVE-2026-46275","full_name":"xxconi/CVE-2026-46275","html_url":"https://github.com/xxconi/CVE-2026-46275","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-26T15:31:09Z","pushed_at":"2026-05-26T15:19:32Z","created_at":"2026-05-26T14:55:46Z","topics":[],"owner":{"login":"xxconi","html_url":"https://github.com/xxconi"},"clone_url":"https://github.com/xxconi/CVE-2026-46275.git","has_code":true,"age_days":30}]},{"cve_id":"CVE-2026-46300","repositories":[{"id":1239950209,"name":"CVE-2026-46300","full_name":"0xBlackash/CVE-2026-46300","html_url":"https://github.com/0xBlackash/CVE-2026-46300","description":"CVE-2026-46300","stargazers_count":9,"forks_count":6,"language":"Python","updated_at":"2026-06-17T16:01:02Z","pushed_at":"2026-05-16T09:19:19Z","created_at":"2026-05-15T15:59:35Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-46300.git","has_code":true,"age_days":41},{"id":1232934547,"name":"ansible-mitigate-copyfail-dirtyfrag","full_name":"infiniroot/ansible-mitigate-copyfail-dirtyfrag","html_url":"https://github.com/infiniroot/ansible-mitigate-copyfail-dirtyfrag","description":"Simple Ansible Playbook to mitigate against CopyFail (CVE-2026-31431) and DirtyFrag (CVE-2026-43284) vulnerabilities.","stargazers_count":6,"forks_count":0,"language":"","updated_at":"2026-05-14T11:46:41Z","pushed_at":"2026-05-14T11:46:15Z","created_at":"2026-05-08T12:26:13Z","topics":["ansible","copyfail","cve-2026-31431","cve-2026-43284","cve-2026-46300","dirtyfrag","fragnesia","linux-kernel","mitigation","vulnerability"],"owner":{"login":"infiniroot","html_url":"https://github.com/infiniroot"},"clone_url":"https://github.com/infiniroot/ansible-mitigate-copyfail-dirtyfrag.git","has_code":false,"age_days":48},{"id":1244551945,"name":"Fragnesia-go","full_name":"Koshmare-Blossom/Fragnesia-go","html_url":"https://github.com/Koshmare-Blossom/Fragnesia-go","description":"A Go implementation of fragnesia (CVE-2026-46300)","stargazers_count":2,"forks_count":1,"language":"Go","updated_at":"2026-06-21T04:27:12Z","pushed_at":"2026-05-21T15:50:58Z","created_at":"2026-05-20T11:24:02Z","topics":[],"owner":{"login":"Koshmare-Blossom","html_url":"https://github.com/Koshmare-Blossom"},"clone_url":"https://github.com/Koshmare-Blossom/Fragnesia-go.git","has_code":true,"age_days":36},{"id":1238512409,"name":"CVE-2026-46300","full_name":"Sentebale/CVE-2026-46300","html_url":"https://github.com/Sentebale/CVE-2026-46300","description":"","stargazers_count":1,"forks_count":2,"language":"Python","updated_at":"2026-05-14T08:23:02Z","pushed_at":"2026-05-14T07:53:44Z","created_at":"2026-05-14T07:27:07Z","topics":[],"owner":{"login":"Sentebale","html_url":"https://github.com/Sentebale"},"clone_url":"https://github.com/Sentebale/CVE-2026-46300.git","has_code":true,"age_days":42},{"id":1238504545,"name":"CVE-2026-46300","full_name":"HORKimhab/CVE-2026-46300","html_url":"https://github.com/HORKimhab/CVE-2026-46300","description":"CVE-2026-46300","stargazers_count":1,"forks_count":2,"language":"C","updated_at":"2026-06-09T07:39:46Z","pushed_at":"2026-05-14T07:24:40Z","created_at":"2026-05-14T07:17:45Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-46300.git","has_code":true,"age_days":42},{"id":1276741482,"name":"CVE-2026-46300","full_name":"azilRababe/CVE-2026-46300","html_url":"https://github.com/azilRababe/CVE-2026-46300","description":"Technical analysis of CVE-2026-46300 (Fragnesia), a Linux kernel page-cache write vulnerability that enables local privilege escalation through SKBFL_SHARED_FRAG invariant violations in the networking stack.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-22T10:15:36Z","pushed_at":"2026-06-22T10:15:18Z","created_at":"2026-06-22T08:51:07Z","topics":[],"owner":{"login":"azilRababe","html_url":"https://github.com/azilRababe"},"clone_url":"https://github.com/azilRababe/CVE-2026-46300.git","has_code":false,"age_days":3},{"id":1244759395,"name":"Fragnesia-CVE-2026-46300","full_name":"Maxime288/Fragnesia-CVE-2026-46300","html_url":"https://github.com/Maxime288/Fragnesia-CVE-2026-46300","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-20T15:18:34Z","pushed_at":"2026-05-20T15:12:20Z","created_at":"2026-05-20T15:11:33Z","topics":[],"owner":{"login":"Maxime288","html_url":"https://github.com/Maxime288"},"clone_url":"https://github.com/Maxime288/Fragnesia-CVE-2026-46300.git","has_code":false,"age_days":36},{"id":1241338778,"name":"CVE-2026-46300","full_name":"ExploitEoom/CVE-2026-46300","html_url":"https://github.com/ExploitEoom/CVE-2026-46300","description":"Linux kernel root exploit","stargazers_count":0,"forks_count":2,"language":"","updated_at":"2026-05-17T09:02:04Z","pushed_at":"2026-05-17T09:02:00Z","created_at":"2026-05-17T09:00:39Z","topics":[],"owner":{"login":"ExploitEoom","html_url":"https://github.com/ExploitEoom"},"clone_url":"https://github.com/ExploitEoom/CVE-2026-46300.git","has_code":false,"age_days":39},{"id":1272566496,"name":"CVE-2026-46300-Fragnesia---TryHackMe-Lab-Project","full_name":"BenedictEjepu/CVE-2026-46300-Fragnesia---TryHackMe-Lab-Project","html_url":"https://github.com/BenedictEjepu/CVE-2026-46300-Fragnesia---TryHackMe-Lab-Project","description":"The project documents the completion and analysis of the Fragnesia (CVE-2026-46300) TryHackME lab, which demonstrates a Linux kernel page -cache corruption vulnerability capable of achieving local privilege escalation through modification of cached file pages without altering files on disk. ","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-18T13:06:33Z","pushed_at":"2026-06-18T13:06:07Z","created_at":"2026-06-17T18:27:01Z","topics":[],"owner":{"login":"BenedictEjepu","html_url":"https://github.com/BenedictEjepu"},"clone_url":"https://github.com/BenedictEjepu/CVE-2026-46300-Fragnesia---TryHackMe-Lab-Project.git","has_code":false,"age_days":8},{"id":1272547613,"name":"CVE-2026-46300-Fragnesia---TryHackMe-Lab-Walkthrough","full_name":"BenedictEjepu/CVE-2026-46300-Fragnesia---TryHackMe-Lab-Walkthrough","html_url":"https://github.com/BenedictEjepu/CVE-2026-46300-Fragnesia---TryHackMe-Lab-Walkthrough","description":"This project documents the completion and analysis  of the Fragnesia (CVE-2026-46300) TryHackMe lab, which demonstrates a Linux kernel page-cache corruption vulnerability capable of achieving local priviledge escalation through modification of cached file pages without altering files on disk.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-17T18:03:23Z","pushed_at":"2026-06-17T18:03:23Z","created_at":"2026-06-17T18:03:22Z","topics":[],"owner":{"login":"BenedictEjepu","html_url":"https://github.com/BenedictEjepu"},"clone_url":"https://github.com/BenedictEjepu/CVE-2026-46300-Fragnesia---TryHackMe-Lab-Walkthrough.git","has_code":false,"age_days":8},{"id":1257319822,"name":"FRAGNESIA-Charan-cve-2026-46300","full_name":"AzDevops143/FRAGNESIA-Charan-cve-2026-46300","html_url":"https://github.com/AzDevops143/FRAGNESIA-Charan-cve-2026-46300","description":"","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-06-05T07:32:13Z","pushed_at":"2026-06-05T07:32:09Z","created_at":"2026-06-02T15:08:48Z","topics":[],"owner":{"login":"AzDevops143","html_url":"https://github.com/AzDevops143"},"clone_url":"https://github.com/AzDevops143/FRAGNESIA-Charan-cve-2026-46300.git","has_code":true,"age_days":23},{"id":1258099034,"name":"Fragnesia","full_name":"1neptune/Fragnesia","html_url":"https://github.com/1neptune/Fragnesia","description":"Add go CVE-2026-46300 (Fragnesia) local privilege escalation exploit","stargazers_count":0,"forks_count":0,"language":"Go","updated_at":"2026-06-03T09:25:56Z","pushed_at":"2026-06-03T09:25:51Z","created_at":"2026-06-03T09:19:26Z","topics":[],"owner":{"login":"1neptune","html_url":"https://github.com/1neptune"},"clone_url":"https://github.com/1neptune/Fragnesia.git","has_code":true,"age_days":22}]},{"cve_id":"CVE-2026-4631","repositories":[{"id":1214621506,"name":"CVE-2026-4631-cockpit-RCE","full_name":"cyberheartmi9/CVE-2026-4631-cockpit-RCE","html_url":"https://github.com/cyberheartmi9/CVE-2026-4631-cockpit-RCE","description":"Cockpit: Unauthenticated Remote Code Execution via SSH Command-Line Argument Injection","stargazers_count":13,"forks_count":6,"language":"Python","updated_at":"2026-06-20T17:26:56Z","pushed_at":"2026-04-18T22:04:47Z","created_at":"2026-04-18T20:30:02Z","topics":[],"owner":{"login":"cyberheartmi9","html_url":"https://github.com/cyberheartmi9"},"clone_url":"https://github.com/cyberheartmi9/CVE-2026-4631-cockpit-RCE.git","has_code":true,"age_days":67}]},{"cve_id":"CVE-2026-46331","repositories":[{"id":1271844056,"name":"packet_edit_meme","full_name":"sgkdev/packet_edit_meme","html_url":"https://github.com/sgkdev/packet_edit_meme","description":"PACKET_EDIT_MEME.c (aka CVE-2026-46331): yet another page cache poisoning nightmare","stargazers_count":26,"forks_count":4,"language":"C","updated_at":"2026-06-24T09:06:59Z","pushed_at":"2026-06-17T04:55:06Z","created_at":"2026-06-17T04:09:56Z","topics":[],"owner":{"login":"sgkdev","html_url":"https://github.com/sgkdev"},"clone_url":"https://github.com/sgkdev/packet_edit_meme.git","has_code":true,"age_days":8}]},{"cve_id":"CVE-2026-46333","repositories":[{"id":1241381821,"name":"CVE-2026-46333","full_name":"0xBlackash/CVE-2026-46333","html_url":"https://github.com/0xBlackash/CVE-2026-46333","description":"CVE-2026-46333","stargazers_count":31,"forks_count":8,"language":"C","updated_at":"2026-06-23T06:16:25Z","pushed_at":"2026-05-17T10:38:48Z","created_at":"2026-05-17T10:14:44Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-46333.git","has_code":true,"age_days":39},{"id":1240355677,"name":"CHARON","full_name":"KaraZajac/CHARON","html_url":"https://github.com/KaraZajac/CHARON","description":"CHARON — pre-built PoC for CVE-2026-46333 (Linux ptrace mm==NULL fd theft)","stargazers_count":6,"forks_count":1,"language":"C","updated_at":"2026-05-21T15:45:36Z","pushed_at":"2026-05-17T14:41:22Z","created_at":"2026-05-16T03:34:08Z","topics":[],"owner":{"login":"KaraZajac","html_url":"https://github.com/KaraZajac"},"clone_url":"https://github.com/KaraZajac/CHARON.git","has_code":true,"age_days":40},{"id":1241393085,"name":"CVE-2026-46333","full_name":"studiogangster/CVE-2026-46333","html_url":"https://github.com/studiogangster/CVE-2026-46333","description":"Research on `pidfd_getfd(2)`-based file descriptor leakage from privileged SUID processes. Demonstrates race-condition FD capture against OpenSSH `ssh-keysign` and exposure of sensitive root-owned file handles.","stargazers_count":5,"forks_count":0,"language":"Go","updated_at":"2026-06-08T13:38:01Z","pushed_at":"2026-05-17T10:43:30Z","created_at":"2026-05-17T10:33:43Z","topics":["cve-2026-46333","exploit","golang","kernel","linux"],"owner":{"login":"studiogangster","html_url":"https://github.com/studiogangster"},"clone_url":"https://github.com/studiogangster/CVE-2026-46333.git","has_code":true,"age_days":39},{"id":1241259405,"name":"public-passwd","full_name":"Aurillium/public-passwd","html_url":"https://github.com/Aurillium/public-passwd","description":"Use CVE-2026-46333 and CVE-2026-31431 to change any user's password.","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-22T09:07:09Z","pushed_at":"2026-05-17T07:46:29Z","created_at":"2026-05-17T06:44:40Z","topics":[],"owner":{"login":"Aurillium","html_url":"https://github.com/Aurillium"},"clone_url":"https://github.com/Aurillium/public-passwd.git","has_code":true,"age_days":39}]},{"cve_id":"CVE-2026-46368","repositories":[{"id":1135888223,"name":"CVE-2026-46368-OpenWrt-Exploit","full_name":"iwallplace/CVE-2026-46368-OpenWrt-Exploit","html_url":"https://github.com/iwallplace/CVE-2026-46368-OpenWrt-Exploit","description":"Proof of Concept exploit for CVE-2026-46368 — authenticated root command injection in OpenWrt luci-app-https-dns-proxy (EDB-52521)","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-18T19:04:17Z","pushed_at":"2026-06-18T19:01:21Z","created_at":"2026-01-16T18:27:55Z","topics":["command-injection","cve-2026-46368","exploit","openwrt","poc","rce","security"],"owner":{"login":"iwallplace","html_url":"https://github.com/iwallplace"},"clone_url":"https://github.com/iwallplace/CVE-2026-46368-OpenWrt-Exploit.git","has_code":true,"age_days":160}]},{"cve_id":"CVE-2026-46376","repositories":[{"id":1253704043,"name":"CVE-2026-46376","full_name":"portbuster1337/CVE-2026-46376","html_url":"https://github.com/portbuster1337/CVE-2026-46376","description":"CVE-2026-46376 - FreePBX Unauthenticated UCP Access via Hard-Coded Credentials","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-29T18:27:34Z","pushed_at":"2026-05-29T18:27:29Z","created_at":"2026-05-29T18:23:59Z","topics":["cve","cve-2026-46376","exploit","freepbx","hardcoded-credentials","poc","security","voip","vulnerability"],"owner":{"login":"portbuster1337","html_url":"https://github.com/portbuster1337"},"clone_url":"https://github.com/portbuster1337/CVE-2026-46376.git","has_code":true,"age_days":27}]},{"cve_id":"CVE-2026-46391","repositories":[{"id":1238357805,"name":"cve-2026-46391","full_name":"bradyjmcl/cve-2026-46391","html_url":"https://github.com/bradyjmcl/cve-2026-46391","description":"Proof of concept exploit for CVE-2026-46391","stargazers_count":1,"forks_count":0,"language":"Go","updated_at":"2026-06-24T01:44:12Z","pushed_at":"2026-06-19T21:52:22Z","created_at":"2026-05-14T03:43:36Z","topics":[],"owner":{"login":"bradyjmcl","html_url":"https://github.com/bradyjmcl"},"clone_url":"https://github.com/bradyjmcl/cve-2026-46391.git","has_code":true,"age_days":42}]},{"cve_id":"CVE-2026-46394","repositories":[{"id":1264222370,"name":"CVE-2026-46394-haxcms-git-command-injection","full_name":"shreyas-challa/CVE-2026-46394-haxcms-git-command-injection","html_url":"https://github.com/shreyas-challa/CVE-2026-46394-haxcms-git-command-injection","description":"PoC and writeup for CVE-2026-46394: OS command injection in HAXcms Git.php (CWE-78). Authorized security research only.","stargazers_count":0,"forks_count":0,"language":"PHP","updated_at":"2026-06-09T17:55:03Z","pushed_at":"2026-06-09T17:23:56Z","created_at":"2026-06-09T17:19:20Z","topics":["command-injection","cve","cwe-78","haxcms","poc","security"],"owner":{"login":"shreyas-challa","html_url":"https://github.com/shreyas-challa"},"clone_url":"https://github.com/shreyas-challa/CVE-2026-46394-haxcms-git-command-injection.git","has_code":true,"age_days":16}]},{"cve_id":"CVE-2026-46395","repositories":[{"id":1264222516,"name":"CVE-2026-46395-haxcms-hmac-key-leak","full_name":"shreyas-challa/CVE-2026-46395-haxcms-hmac-key-leak","html_url":"https://github.com/shreyas-challa/CVE-2026-46395-haxcms-hmac-key-leak","description":"PoC and writeup for CVE-2026-46395: unauthenticated private key disclosure via broken HMAC in HAXcms Node.js (CWE-321/CWE-200). Authorized security research only.","stargazers_count":0,"forks_count":0,"language":"JavaScript","updated_at":"2026-06-09T17:55:02Z","pushed_at":"2026-06-09T17:23:59Z","created_at":"2026-06-09T17:19:32Z","topics":["cve","cwe-321","haxcms","jwt","poc","security"],"owner":{"login":"shreyas-challa","html_url":"https://github.com/shreyas-challa"},"clone_url":"https://github.com/shreyas-challa/CVE-2026-46395-haxcms-hmac-key-leak.git","has_code":true,"age_days":16}]},{"cve_id":"CVE-2026-46529","repositories":[{"id":1240952320,"name":"CVE-2026-46529","full_name":"N1et/CVE-2026-46529","html_url":"https://github.com/N1et/CVE-2026-46529","description":"Evince/xreader/Atril RCE exploit to CVE-2026-46529  ","stargazers_count":11,"forks_count":5,"language":"Python","updated_at":"2026-06-19T01:49:35Z","pushed_at":"2026-05-23T21:43:55Z","created_at":"2026-05-16T19:23:29Z","topics":[],"owner":{"login":"N1et","html_url":"https://github.com/N1et"},"clone_url":"https://github.com/N1et/CVE-2026-46529.git","has_code":true,"age_days":40}]},{"cve_id":"CVE-2026-46552","repositories":[{"id":1253833670,"name":"CVE-2026-46552","full_name":"0xmrma/CVE-2026-46552","html_url":"https://github.com/0xmrma/CVE-2026-46552","description":"NocoDB Shared-Base Links Could Invite Real Base Members and Survive Share Revocation","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-25T04:06:50Z","pushed_at":"2026-06-25T04:06:46Z","created_at":"2026-05-29T21:29:22Z","topics":[],"owner":{"login":"0xmrma","html_url":"https://github.com/0xmrma"},"clone_url":"https://github.com/0xmrma/CVE-2026-46552.git","has_code":false,"age_days":26}]},{"cve_id":"CVE-2026-46586","repositories":[{"id":1240857423,"name":"CVE-2026-46586","full_name":"lwd3c/CVE-2026-46586","html_url":"https://github.com/lwd3c/CVE-2026-46586","description":"","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-27T15:59:06Z","pushed_at":"2026-05-27T15:58:19Z","created_at":"2026-05-16T16:52:24Z","topics":[],"owner":{"login":"lwd3c","html_url":"https://github.com/lwd3c"},"clone_url":"https://github.com/lwd3c/CVE-2026-46586.git","has_code":true,"age_days":40}]},{"cve_id":"CVE-2026-4660","repositories":[{"id":1207321921,"name":"CVE-2026-4660-PoC","full_name":"gouldnicholas/CVE-2026-4660-PoC","html_url":"https://github.com/gouldnicholas/CVE-2026-4660-PoC","description":"PoC for CVE-2026-4660: arbitrary file read via git checkout in hashicorp/go-getter","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-04-10T20:16:44Z","pushed_at":"2026-04-10T20:16:37Z","created_at":"2026-04-10T20:15:25Z","topics":[],"owner":{"login":"gouldnicholas","html_url":"https://github.com/gouldnicholas"},"clone_url":"https://github.com/gouldnicholas/CVE-2026-4660-PoC.git","has_code":true,"age_days":75}]},{"cve_id":"CVE-2026-46645","repositories":[{"id":1266885496,"name":"CVE-2026-46645-Analysis-Lab","full_name":"rootdirective-sec/CVE-2026-46645-Analysis-Lab","html_url":"https://github.com/rootdirective-sec/CVE-2026-46645-Analysis-Lab","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-12T03:24:49Z","pushed_at":"2026-06-12T03:24:45Z","created_at":"2026-06-12T03:23:09Z","topics":[],"owner":{"login":"rootdirective-sec","html_url":"https://github.com/rootdirective-sec"},"clone_url":"https://github.com/rootdirective-sec/CVE-2026-46645-Analysis-Lab.git","has_code":true,"age_days":13}]},{"cve_id":"CVE-2026-46680","repositories":[{"id":1245490053,"name":"CVE-2026-46680","full_name":"r0binak/CVE-2026-46680","html_url":"https://github.com/r0binak/CVE-2026-46680","description":"CVE-2026-46680 exploit","stargazers_count":0,"forks_count":0,"language":"Dockerfile","updated_at":"2026-05-21T09:14:29Z","pushed_at":"2026-05-21T09:14:25Z","created_at":"2026-05-21T09:13:24Z","topics":[],"owner":{"login":"r0binak","html_url":"https://github.com/r0binak"},"clone_url":"https://github.com/r0binak/CVE-2026-46680.git","has_code":true,"age_days":35}]},{"cve_id":"CVE-2026-46716","repositories":[{"id":1253990866,"name":"POC_CVE-2026-46716","full_name":"HAERIN-L/POC_CVE-2026-46716","html_url":"https://github.com/HAERIN-L/POC_CVE-2026-46716","description":"","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-16T16:21:42Z","pushed_at":"2026-05-30T03:03:35Z","created_at":"2026-05-30T02:44:29Z","topics":[],"owner":{"login":"HAERIN-L","html_url":"https://github.com/HAERIN-L"},"clone_url":"https://github.com/HAERIN-L/POC_CVE-2026-46716.git","has_code":true,"age_days":26}]},{"cve_id":"CVE-2026-46840","repositories":[{"id":1253596270,"name":"CVE-2026-46840-ORDS-RCE","full_name":"fangbarristerbar/CVE-2026-46840-ORDS-RCE","html_url":"https://github.com/fangbarristerbar/CVE-2026-46840-ORDS-RCE","description":"Oracle REST Data Services (ORDS) Unauthenticated RCE (CVE-2026-46840)","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-29T16:16:26Z","pushed_at":"2026-05-29T16:16:22Z","created_at":"2026-05-29T16:15:49Z","topics":[],"owner":{"login":"fangbarristerbar","html_url":"https://github.com/fangbarristerbar"},"clone_url":"https://github.com/fangbarristerbar/CVE-2026-46840-ORDS-RCE.git","has_code":true,"age_days":27}]},{"cve_id":"CVE-2026-47100","repositories":[{"id":1252405951,"name":"CVE-2026-47100-Analysis-Lab","full_name":"rootdirective-sec/CVE-2026-47100-Analysis-Lab","html_url":"https://github.com/rootdirective-sec/CVE-2026-47100-Analysis-Lab","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-28T13:46:54Z","pushed_at":"2026-05-28T13:46:07Z","created_at":"2026-05-28T13:42:45Z","topics":[],"owner":{"login":"rootdirective-sec","html_url":"https://github.com/rootdirective-sec"},"clone_url":"https://github.com/rootdirective-sec/CVE-2026-47100-Analysis-Lab.git","has_code":true,"age_days":28}]},{"cve_id":"CVE-2026-47101","repositories":[{"id":1249017483,"name":"CVE-2026-47101-PoC","full_name":"learner202649/CVE-2026-47101-PoC","html_url":"https://github.com/learner202649/CVE-2026-47101-PoC","description":"The code for personally reproducing the corresponding vulnerability","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-25T09:12:25Z","pushed_at":"2026-05-25T09:12:20Z","created_at":"2026-05-25T09:10:39Z","topics":[],"owner":{"login":"learner202649","html_url":"https://github.com/learner202649"},"clone_url":"https://github.com/learner202649/CVE-2026-47101-PoC.git","has_code":true,"age_days":31},{"id":1270707629,"name":"CVE-LiteLLM","full_name":"HORKimhab/CVE-LiteLLM","html_url":"https://github.com/HORKimhab/CVE-LiteLLM","description":"CVE-2026-47101, CVE-2026-47102,  CVE-2026-40217","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-16T01:42:45Z","pushed_at":"2026-06-16T01:42:41Z","created_at":"2026-06-16T01:23:37Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-LiteLLM.git","has_code":true,"age_days":9}]},{"cve_id":"CVE-2026-47102","repositories":[{"id":1249230518,"name":"CVE-2026-47102-PoC","full_name":"learner202649/CVE-2026-47102-PoC","html_url":"https://github.com/learner202649/CVE-2026-47102-PoC","description":"The code for personally reproducing the corresponding vulnerability","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-25T13:38:32Z","pushed_at":"2026-05-25T13:38:27Z","created_at":"2026-05-25T13:37:56Z","topics":[],"owner":{"login":"learner202649","html_url":"https://github.com/learner202649"},"clone_url":"https://github.com/learner202649/CVE-2026-47102-PoC.git","has_code":true,"age_days":31},{"id":1270707629,"name":"CVE-LiteLLM","full_name":"HORKimhab/CVE-LiteLLM","html_url":"https://github.com/HORKimhab/CVE-LiteLLM","description":"CVE-2026-47101, CVE-2026-47102,  CVE-2026-40217","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-16T01:42:45Z","pushed_at":"2026-06-16T01:42:41Z","created_at":"2026-06-16T01:23:37Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-LiteLLM.git","has_code":true,"age_days":9}]},{"cve_id":"CVE-2026-47291","repositories":[{"id":1265555782,"name":"CVE-2026-47291-httpsys","full_name":"ManagerEmpty/CVE-2026-47291-httpsys","html_url":"https://github.com/ManagerEmpty/CVE-2026-47291-httpsys","description":"HTTP.sys RCE","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-06-17T23:28:43Z","pushed_at":"2026-06-10T22:06:06Z","created_at":"2026-06-10T22:06:02Z","topics":[],"owner":{"login":"ManagerEmpty","html_url":"https://github.com/ManagerEmpty"},"clone_url":"https://github.com/ManagerEmpty/CVE-2026-47291-httpsys.git","has_code":false,"age_days":14},{"id":1270463153,"name":"CVE-2026-49160-CVE-2026-47291-HTTP.sys","full_name":"dhmosfunk/CVE-2026-49160-CVE-2026-47291-HTTP.sys","html_url":"https://github.com/dhmosfunk/CVE-2026-49160-CVE-2026-47291-HTTP.sys","description":"HTTP.sys Denial of Service Vulnerability \u0026 HTTP.sys Remote Code Execution Vulnerability ","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-17T08:02:19Z","pushed_at":"2026-06-17T07:56:57Z","created_at":"2026-06-15T18:30:18Z","topics":[],"owner":{"login":"dhmosfunk","html_url":"https://github.com/dhmosfunk"},"clone_url":"https://github.com/dhmosfunk/CVE-2026-49160-CVE-2026-47291-HTTP.sys.git","has_code":true,"age_days":10}]},{"cve_id":"CVE-2026-47342","repositories":[{"id":1251472916,"name":"CVE-2026-47342","full_name":"lwd3c/CVE-2026-47342","html_url":"https://github.com/lwd3c/CVE-2026-47342","description":"","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-12T06:48:50Z","pushed_at":"2026-06-12T06:48:11Z","created_at":"2026-05-27T16:00:47Z","topics":[],"owner":{"login":"lwd3c","html_url":"https://github.com/lwd3c"},"clone_url":"https://github.com/lwd3c/CVE-2026-47342.git","has_code":true,"age_days":29}]},{"cve_id":"CVE-2026-47423","repositories":[{"id":1258543283,"name":"CVE-2026-47423-dompurify-xss-detector","full_name":"Galaxy-sc/CVE-2026-47423-dompurify-xss-detector","html_url":"https://github.com/Galaxy-sc/CVE-2026-47423-dompurify-xss-detector","description":"","stargazers_count":0,"forks_count":0,"language":"Go","updated_at":"2026-06-04T10:34:15Z","pushed_at":"2026-06-04T10:34:11Z","created_at":"2026-06-03T17:20:04Z","topics":[],"owner":{"login":"Galaxy-sc","html_url":"https://github.com/Galaxy-sc"},"clone_url":"https://github.com/Galaxy-sc/CVE-2026-47423-dompurify-xss-detector.git","has_code":true,"age_days":22}]},{"cve_id":"CVE-2026-47429","repositories":[{"id":1263630897,"name":"cve-lite-on-pi","full_name":"az9713/cve-lite-on-pi","html_url":"https://github.com/az9713/cve-lite-on-pi","description":"Running OWASP cve-lite-cli against the pi monorepo: scan journey and key finding (vitest CVE-2026-47429).","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-09T08:27:57Z","pushed_at":"2026-06-09T06:09:41Z","created_at":"2026-06-09T06:04:36Z","topics":[],"owner":{"login":"az9713","html_url":"https://github.com/az9713"},"clone_url":"https://github.com/az9713/cve-lite-on-pi.git","has_code":false,"age_days":16}]},{"cve_id":"CVE-2026-4747","repositories":[{"id":1206545234,"name":"CVE-2026-4747-","full_name":"kaleth4/CVE-2026-4747-","html_url":"https://github.com/kaleth4/CVE-2026-4747-","description":"","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-04-28T23:04:39Z","pushed_at":"2026-04-10T02:46:44Z","created_at":"2026-04-10T02:45:41Z","topics":[],"owner":{"login":"kaleth4","html_url":"https://github.com/kaleth4"},"clone_url":"https://github.com/kaleth4/CVE-2026-4747-.git","has_code":true,"age_days":76},{"id":1205561488,"name":"CVE-2026-4747","full_name":"kaleth4/CVE-2026-4747","html_url":"https://github.com/kaleth4/CVE-2026-4747","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-09T04:32:26Z","pushed_at":"2026-04-09T04:32:18Z","created_at":"2026-04-09T04:31:30Z","topics":[],"owner":{"login":"kaleth4","html_url":"https://github.com/kaleth4"},"clone_url":"https://github.com/kaleth4/CVE-2026-4747.git","has_code":true,"age_days":77}]},{"cve_id":"CVE-2026-47668","repositories":[{"id":1250352382,"name":"CVE-2026-47668","full_name":"Nxploited/CVE-2026-47668","html_url":"https://github.com/Nxploited/CVE-2026-47668","description":"DbGate Unauthenticated Remote Code Execution","stargazers_count":5,"forks_count":0,"language":"Python","updated_at":"2026-06-03T03:29:18Z","pushed_at":"2026-05-26T14:54:52Z","created_at":"2026-05-26T14:47:03Z","topics":[],"owner":{"login":"Nxploited","html_url":"https://github.com/Nxploited"},"clone_url":"https://github.com/Nxploited/CVE-2026-47668.git","has_code":true,"age_days":30}]},{"cve_id":"CVE-2026-47670","repositories":[{"id":1273726395,"name":"CVE-2026-47670","full_name":"error-inside/CVE-2026-47670","html_url":"https://github.com/error-inside/CVE-2026-47670","description":"Authenticated Remote Code Execution via loadReader functionName code injection in DbGate","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-18T22:16:11Z","pushed_at":"2026-06-18T22:16:07Z","created_at":"2026-06-18T20:12:54Z","topics":[],"owner":{"login":"error-inside","html_url":"https://github.com/error-inside"},"clone_url":"https://github.com/error-inside/CVE-2026-47670.git","has_code":true,"age_days":6}]},{"cve_id":"CVE-2026-47729","repositories":[{"id":1276385226,"name":"CVE-2026-47729","full_name":"0xBlackash/CVE-2026-47729","html_url":"https://github.com/0xBlackash/CVE-2026-47729","description":"CVE-2026-47729","stargazers_count":3,"forks_count":0,"language":"Python","updated_at":"2026-06-24T19:28:48Z","pushed_at":"2026-06-21T23:45:53Z","created_at":"2026-06-21T23:13:00Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-47729.git","has_code":true,"age_days":3}]},{"cve_id":"CVE-2026-47774","repositories":[{"id":1268005033,"name":"http2-bomb-analysis-paper","full_name":"minc-nice-100/http2-bomb-analysis-paper","html_url":"https://github.com/minc-nice-100/http2-bomb-analysis-paper","description":"HTTP/2 Bomb: HPACK indexed-reference amplification + flow-control stall. A high school student's full protocol analysis (LaTeX). CVE-2026-49975, CVE-2026-47774.","stargazers_count":1,"forks_count":1,"language":"TeX","updated_at":"2026-06-13T04:57:47Z","pushed_at":"2026-06-13T04:01:06Z","created_at":"2026-06-13T03:50:11Z","topics":["amplification-attack","cve-2026-47774","cve-2026-49975","dos-attack","hpack","http2","http2-bomb","security-research","vulnerability","web-security"],"owner":{"login":"minc-nice-100","html_url":"https://github.com/minc-nice-100"},"clone_url":"https://github.com/minc-nice-100/http2-bomb-analysis-paper.git","has_code":true,"age_days":12}]},{"cve_id":"CVE-2026-4782","repositories":[{"id":1273947298,"name":"CVE-2026-4782","full_name":"xxconi/CVE-2026-4782","html_url":"https://github.com/xxconi/CVE-2026-4782","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-19T03:20:38Z","pushed_at":"2026-06-19T03:20:34Z","created_at":"2026-06-19T03:20:05Z","topics":[],"owner":{"login":"xxconi","html_url":"https://github.com/xxconi"},"clone_url":"https://github.com/xxconi/CVE-2026-4782.git","has_code":true,"age_days":6}]},{"cve_id":"CVE-2026-4800","repositories":[{"id":1197920379,"name":"CVE-2026-4800-POC","full_name":"threalwinky/CVE-2026-4800-POC","html_url":"https://github.com/threalwinky/CVE-2026-4800-POC","description":"","stargazers_count":2,"forks_count":0,"language":"JavaScript","updated_at":"2026-04-02T10:45:05Z","pushed_at":"2026-04-01T01:47:08Z","created_at":"2026-04-01T01:45:10Z","topics":[],"owner":{"login":"threalwinky","html_url":"https://github.com/threalwinky"},"clone_url":"https://github.com/threalwinky/CVE-2026-4800-POC.git","has_code":true,"age_days":85},{"id":1203884910,"name":"next-rep-CVE-2026-4800","full_name":"SvenLie/next-rep-CVE-2026-4800","html_url":"https://github.com/SvenLie/next-rep-CVE-2026-4800","description":"","stargazers_count":0,"forks_count":0,"language":"TypeScript","updated_at":"2026-04-07T13:39:19Z","pushed_at":"2026-04-07T13:39:12Z","created_at":"2026-04-07T13:30:51Z","topics":[],"owner":{"login":"SvenLie","html_url":"https://github.com/SvenLie"},"clone_url":"https://github.com/SvenLie/next-rep-CVE-2026-4800.git","has_code":true,"age_days":79}]},{"cve_id":"CVE-2026-48017","repositories":[{"id":1268129924,"name":"CVE-2026-48017","full_name":"romain-deperne/CVE-2026-48017","html_url":"https://github.com/romain-deperne/CVE-2026-48017","description":"Remote Code Execution in DbGate via functionName injection in the loadReader endpoint — CVSS 8.8","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-13T07:10:59Z","pushed_at":"2026-06-13T07:10:56Z","created_at":"2026-06-13T07:10:52Z","topics":[],"owner":{"login":"romain-deperne","html_url":"https://github.com/romain-deperne"},"clone_url":"https://github.com/romain-deperne/CVE-2026-48017.git","has_code":true,"age_days":12}]},{"cve_id":"CVE-2026-48019","repositories":[{"id":1268819598,"name":"laravel-framework","full_name":"derrickschoen/laravel-framework","html_url":"https://github.com/derrickschoen/laravel-framework","description":"Fork of laravel/framework 10.50.2 with CVE-2026-48019 (CRLF injection in default email rule) backported into ValidatesAttributes::validateEmail. Tagged 10.51.0.","stargazers_count":0,"forks_count":0,"language":"PHP","updated_at":"2026-06-14T01:17:56Z","pushed_at":"2026-06-14T01:17:48Z","created_at":"2026-06-14T01:16:17Z","topics":[],"owner":{"login":"derrickschoen","html_url":"https://github.com/derrickschoen"},"clone_url":"https://github.com/derrickschoen/laravel-framework.git","has_code":true,"age_days":11}]},{"cve_id":"CVE-2026-4802","repositories":[{"id":1235955176,"name":"CVE-2026-4802","full_name":"hakaioffsec/CVE-2026-4802","html_url":"https://github.com/hakaioffsec/CVE-2026-4802","description":"Arbitrary command execution on Cockpit","stargazers_count":3,"forks_count":1,"language":"Python","updated_at":"2026-06-01T00:35:52Z","pushed_at":"2026-05-11T22:30:13Z","created_at":"2026-05-11T20:18:53Z","topics":[],"owner":{"login":"hakaioffsec","html_url":"https://github.com/hakaioffsec"},"clone_url":"https://github.com/hakaioffsec/CVE-2026-4802.git","has_code":true,"age_days":44}]},{"cve_id":"CVE-2026-48030","repositories":[{"id":1252195456,"name":"CVE-2026-48030","full_name":"muslimbek-0x/CVE-2026-48030","html_url":"https://github.com/muslimbek-0x/CVE-2026-48030","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-28T09:48:16Z","pushed_at":"2026-05-28T09:48:12Z","created_at":"2026-05-28T09:28:12Z","topics":[],"owner":{"login":"muslimbek-0x","html_url":"https://github.com/muslimbek-0x"},"clone_url":"https://github.com/muslimbek-0x/CVE-2026-48030.git","has_code":true,"age_days":28}]},{"cve_id":"CVE-2026-48095","repositories":[{"id":1250014952,"name":"CVE-2026-48095","full_name":"HORKimhab/CVE-2026-48095","html_url":"https://github.com/HORKimhab/CVE-2026-48095","description":"CVE-2026-48095 - Draft","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-18T07:06:24Z","pushed_at":"2026-05-26T08:21:07Z","created_at":"2026-05-26T08:21:04Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-48095.git","has_code":false,"age_days":30}]},{"cve_id":"CVE-2026-48172","repositories":[{"id":1247364112,"name":"CVE-2026-48172","full_name":"HORKimhab/CVE-2026-48172","html_url":"https://github.com/HORKimhab/CVE-2026-48172","description":"CVE-2026-48172","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-26T02:39:37Z","pushed_at":"2026-05-24T05:15:14Z","created_at":"2026-05-23T08:00:37Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-48172.git","has_code":true,"age_days":33},{"id":1252569977,"name":"CVE-2026-48172---LiteSpeed-cPanel-Plugin-Version-Auditor","full_name":"fevar54/CVE-2026-48172---LiteSpeed-cPanel-Plugin-Version-Auditor","html_url":"https://github.com/fevar54/CVE-2026-48172---LiteSpeed-cPanel-Plugin-Version-Auditor","description":"This script safely checks the local version of the LiteSpeed cPanel plugin to determine if the system is running a version vulnerable to CVE-2026-48172. It does not send exploits or interact with network endpoints maliciously.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-28T16:50:31Z","pushed_at":"2026-05-28T16:50:05Z","created_at":"2026-05-28T16:47:33Z","topics":[],"owner":{"login":"fevar54","html_url":"https://github.com/fevar54"},"clone_url":"https://github.com/fevar54/CVE-2026-48172---LiteSpeed-cPanel-Plugin-Version-Auditor.git","has_code":true,"age_days":28},{"id":1247837968,"name":"CVE-2026-48172","full_name":"retmakarunia/CVE-2026-48172","html_url":"https://github.com/retmakarunia/CVE-2026-48172","description":"cPanel user run arbitrary scripts as root","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-24T14:58:39Z","pushed_at":"2026-05-23T21:10:31Z","created_at":"2026-05-23T21:10:30Z","topics":[],"owner":{"login":"retmakarunia","html_url":"https://github.com/retmakarunia"},"clone_url":"https://github.com/retmakarunia/CVE-2026-48172.git","has_code":false,"age_days":32}]},{"cve_id":"CVE-2026-48188","repositories":[{"id":1248894224,"name":"CVE-2026-48188","full_name":"Habuon/CVE-2026-48188","html_url":"https://github.com/Habuon/CVE-2026-48188","description":"This is POC repo for CVE-2026-48188","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-01T11:44:47Z","pushed_at":"2026-06-01T09:24:43Z","created_at":"2026-05-25T06:39:42Z","topics":[],"owner":{"login":"Habuon","html_url":"https://github.com/Habuon"},"clone_url":"https://github.com/Habuon/CVE-2026-48188.git","has_code":true,"age_days":31}]},{"cve_id":"CVE-2026-48208","repositories":[{"id":1248970271,"name":"CVE-2026-48208","full_name":"Habuon/CVE-2026-48208","html_url":"https://github.com/Habuon/CVE-2026-48208","description":"This is POC repo for CVE-2026-48208","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-01T11:44:15Z","pushed_at":"2026-06-01T09:26:15Z","created_at":"2026-05-25T08:14:00Z","topics":[],"owner":{"login":"Habuon","html_url":"https://github.com/Habuon"},"clone_url":"https://github.com/Habuon/CVE-2026-48208.git","has_code":true,"age_days":31}]},{"cve_id":"CVE-2026-4821","repositories":[{"id":1162491513,"name":"demo-cve-2026-4821","full_name":"openexecution-coder/demo-cve-2026-4821","html_url":"https://github.com/openexecution-coder/demo-cve-2026-4821","description":"AIエージェントCVE修復 + OpenExecutionプロベナンス","stargazers_count":0,"forks_count":0,"language":"JavaScript","updated_at":"2026-02-20T10:28:14Z","pushed_at":"2026-02-20T10:28:13Z","created_at":"2026-02-20T10:26:32Z","topics":[],"owner":{"login":"openexecution-coder","html_url":"https://github.com/openexecution-coder"},"clone_url":"https://github.com/openexecution-coder/demo-cve-2026-4821.git","has_code":true,"age_days":125},{"id":1230166905,"name":"ghes-cve-scanner","full_name":"isagoakira/ghes-cve-scanner","html_url":"https://github.com/isagoakira/ghes-cve-scanner","description":" GHES CVE Scanner — Defensive security tool for detecting CVE-2026-3854 (Git      Push RCE) and CVE-2026-4821 (Management Console proxy injection) in GitHub   Enterprise Server. Zero external dependencies, Python 3.8+.      ","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-05T18:46:50Z","pushed_at":"2026-05-05T18:45:12Z","created_at":"2026-05-05T18:37:43Z","topics":[],"owner":{"login":"isagoakira","html_url":"https://github.com/isagoakira"},"clone_url":"https://github.com/isagoakira/ghes-cve-scanner.git","has_code":true,"age_days":51}]},{"cve_id":"CVE-2026-48595","repositories":[{"id":1263895767,"name":"CVE-2026-48595","full_name":"jenniferreire26/CVE-2026-48595","html_url":"https://github.com/jenniferreire26/CVE-2026-48595","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-09T11:16:52Z","pushed_at":"2026-06-09T11:16:49Z","created_at":"2026-06-09T11:16:46Z","topics":[],"owner":{"login":"jenniferreire26","html_url":"https://github.com/jenniferreire26"},"clone_url":"https://github.com/jenniferreire26/CVE-2026-48595.git","has_code":false,"age_days":16}]},{"cve_id":"CVE-2026-48598","repositories":[{"id":1263957973,"name":"google_gax","full_name":"workshops-de/google_gax","html_url":"https://github.com/workshops-de/google_gax","description":"Patched google_gax 0.4.1 for Tesla 1.18.3+ compatibility (CVE-2026-48598)","stargazers_count":0,"forks_count":0,"language":"Elixir","updated_at":"2026-06-09T12:53:09Z","pushed_at":"2026-06-09T12:50:08Z","created_at":"2026-06-09T12:30:17Z","topics":[],"owner":{"login":"workshops-de","html_url":"https://github.com/workshops-de"},"clone_url":"https://github.com/workshops-de/google_gax.git","has_code":true,"age_days":16}]},{"cve_id":"CVE-2026-48611","repositories":[{"id":1268261293,"name":"CVE-2026-48611-poc","full_name":"citruscitruscitruscitruscitrusci/CVE-2026-48611-poc","html_url":"https://github.com/citruscitruscitruscitruscitrusci/CVE-2026-48611-poc","description":"(phpBB authentication bypass)","stargazers_count":1,"forks_count":0,"language":"JavaScript","updated_at":"2026-06-17T06:59:44Z","pushed_at":"2026-06-13T10:30:32Z","created_at":"2026-06-13T10:21:15Z","topics":[],"owner":{"login":"citruscitruscitruscitruscitrusci","html_url":"https://github.com/citruscitruscitruscitruscitrusci"},"clone_url":"https://github.com/citruscitruscitruscitruscitrusci/CVE-2026-48611-poc.git","has_code":true,"age_days":12},{"id":1274256678,"name":"CVE-2026-48611-EXPLOIT","full_name":"Diznev/CVE-2026-48611-EXPLOIT","html_url":"https://github.com/Diznev/CVE-2026-48611-EXPLOIT","description":"CVE-2026-48611- authentication bypass in phpBB","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-19T10:37:23Z","pushed_at":"2026-06-19T10:37:19Z","created_at":"2026-06-19T10:28:58Z","topics":[],"owner":{"login":"Diznev","html_url":"https://github.com/Diznev"},"clone_url":"https://github.com/Diznev/CVE-2026-48611-EXPLOIT.git","has_code":false,"age_days":6}]},{"cve_id":"CVE-2026-48710","repositories":[{"id":1197942284,"name":"supply-chain-guard","full_name":"eris-ths/supply-chain-guard","html_url":"https://github.com/eris-ths/supply-chain-guard","description":"Detect, assess, and respond to supply chain attacks across npm/yarn and Python (pip/poetry/uv). Claude Code skill + standalone scripts. Built during axios RAT (2026-03-31) and Starlette BadHost CVE-2026-48710 (2026-05-22).","stargazers_count":3,"forks_count":0,"language":"Shell","updated_at":"2026-05-28T05:04:28Z","pushed_at":"2026-05-28T05:04:20Z","created_at":"2026-04-01T02:12:00Z","topics":["ai-agents","claude-code","cve","devsecops","malicious-packages","npm","python","security-tools","supply-chain-security","threat-detection"],"owner":{"login":"eris-ths","html_url":"https://github.com/eris-ths"},"clone_url":"https://github.com/eris-ths/supply-chain-guard.git","has_code":true,"age_days":85},{"id":1250853054,"name":"starlette-host-header-lab","full_name":"xtremebeing/starlette-host-header-lab","html_url":"https://github.com/xtremebeing/starlette-host-header-lab","description":"Starlette Host-Header URL Confusion Lab (X41-2026-002) - CVE-2026-48710","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-27T10:00:25Z","pushed_at":"2026-05-27T02:59:04Z","created_at":"2026-05-27T02:58:39Z","topics":[],"owner":{"login":"xtremebeing","html_url":"https://github.com/xtremebeing"},"clone_url":"https://github.com/xtremebeing/starlette-host-header-lab.git","has_code":true,"age_days":29},{"id":1252219868,"name":"BadHost-CVE-2026-48710-Exploit","full_name":"Bhanunamikaze/BadHost-CVE-2026-48710-Exploit","html_url":"https://github.com/Bhanunamikaze/BadHost-CVE-2026-48710-Exploit","description":"Detection scanner for CVE-2026-48710 - Host-header auth bypass in Starlette/FastAPI","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-29T17:53:10Z","pushed_at":"2026-05-29T17:53:05Z","created_at":"2026-05-28T09:57:43Z","topics":["auth-bypass","badhost","cve","cve-2026-48710","exploit","fastapi","mcp","openapi","penetration-testing","python","security","starlette","vulnerability-scanner"],"owner":{"login":"Bhanunamikaze","html_url":"https://github.com/Bhanunamikaze"},"clone_url":"https://github.com/Bhanunamikaze/BadHost-CVE-2026-48710-Exploit.git","has_code":true,"age_days":28}]},{"cve_id":"CVE-2026-48732","repositories":[{"id":1264514263,"name":"CVE-2026-48732-poc","full_name":"Saku0512/CVE-2026-48732-poc","html_url":"https://github.com/Saku0512/CVE-2026-48732-poc","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-10T00:37:56Z","pushed_at":"2026-06-10T00:37:52Z","created_at":"2026-06-10T00:30:26Z","topics":[],"owner":{"login":"Saku0512","html_url":"https://github.com/Saku0512"},"clone_url":"https://github.com/Saku0512/CVE-2026-48732-poc.git","has_code":true,"age_days":15}]},{"cve_id":"CVE-2026-48770","repositories":[{"id":1252807835,"name":"Notepad-8.9.6-PoC","full_name":"atiilla/Notepad-8.9.6-PoC","html_url":"https://github.com/atiilla/Notepad-8.9.6-PoC","description":"Proof-of-concept scripts for three vulnerabilities in Notepad++ \u003c= 8.9.6, patched in v8.9.6.1 (2026-05-26) CVE-2026-48770 / CVE-2026-48778 / CVE-2026-48800","stargazers_count":5,"forks_count":3,"language":"Python","updated_at":"2026-06-10T13:08:14Z","pushed_at":"2026-05-28T22:25:29Z","created_at":"2026-05-28T22:25:15Z","topics":[],"owner":{"login":"atiilla","html_url":"https://github.com/atiilla"},"clone_url":"https://github.com/atiilla/Notepad-8.9.6-PoC.git","has_code":true,"age_days":27}]},{"cve_id":"CVE-2026-48778","repositories":[{"id":1254546324,"name":"CVE-2026-48778","full_name":"XK3NF4/CVE-2026-48778","html_url":"https://github.com/XK3NF4/CVE-2026-48778","description":"Notepad++ RCE via config.xml commandLineInterpreter","stargazers_count":7,"forks_count":0,"language":"C++","updated_at":"2026-06-01T20:46:24Z","pushed_at":"2026-05-30T18:22:39Z","created_at":"2026-05-30T17:49:16Z","topics":[],"owner":{"login":"XK3NF4","html_url":"https://github.com/XK3NF4"},"clone_url":"https://github.com/XK3NF4/CVE-2026-48778.git","has_code":true,"age_days":26},{"id":1252807835,"name":"Notepad-8.9.6-PoC","full_name":"atiilla/Notepad-8.9.6-PoC","html_url":"https://github.com/atiilla/Notepad-8.9.6-PoC","description":"Proof-of-concept scripts for three vulnerabilities in Notepad++ \u003c= 8.9.6, patched in v8.9.6.1 (2026-05-26) CVE-2026-48770 / CVE-2026-48778 / CVE-2026-48800","stargazers_count":5,"forks_count":3,"language":"Python","updated_at":"2026-06-10T13:08:14Z","pushed_at":"2026-05-28T22:25:29Z","created_at":"2026-05-28T22:25:15Z","topics":[],"owner":{"login":"atiilla","html_url":"https://github.com/atiilla"},"clone_url":"https://github.com/atiilla/Notepad-8.9.6-PoC.git","has_code":true,"age_days":27},{"id":1254313696,"name":"CVE-2026-48778-PoC","full_name":"kavin-jindal/CVE-2026-48778-PoC","html_url":"https://github.com/kavin-jindal/CVE-2026-48778-PoC","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-31T05:04:28Z","pushed_at":"2026-05-31T05:04:24Z","created_at":"2026-05-30T12:13:02Z","topics":[],"owner":{"login":"kavin-jindal","html_url":"https://github.com/kavin-jindal"},"clone_url":"https://github.com/kavin-jindal/CVE-2026-48778-PoC.git","has_code":true,"age_days":26}]},{"cve_id":"CVE-2026-48800","repositories":[{"id":1252807835,"name":"Notepad-8.9.6-PoC","full_name":"atiilla/Notepad-8.9.6-PoC","html_url":"https://github.com/atiilla/Notepad-8.9.6-PoC","description":"Proof-of-concept scripts for three vulnerabilities in Notepad++ \u003c= 8.9.6, patched in v8.9.6.1 (2026-05-26) CVE-2026-48770 / CVE-2026-48778 / CVE-2026-48800","stargazers_count":5,"forks_count":3,"language":"Python","updated_at":"2026-06-10T13:08:14Z","pushed_at":"2026-05-28T22:25:29Z","created_at":"2026-05-28T22:25:15Z","topics":[],"owner":{"login":"atiilla","html_url":"https://github.com/atiilla"},"clone_url":"https://github.com/atiilla/Notepad-8.9.6-PoC.git","has_code":true,"age_days":27},{"id":1254864471,"name":"CVE-2026-48800-PoC","full_name":"kavin-jindal/CVE-2026-48800-PoC","html_url":"https://github.com/kavin-jindal/CVE-2026-48800-PoC","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-31T05:06:43Z","pushed_at":"2026-05-31T05:06:39Z","created_at":"2026-05-31T05:02:45Z","topics":[],"owner":{"login":"kavin-jindal","html_url":"https://github.com/kavin-jindal"},"clone_url":"https://github.com/kavin-jindal/CVE-2026-48800-PoC.git","has_code":true,"age_days":25}]},{"cve_id":"CVE-2026-48813","repositories":[{"id":1241801490,"name":"CVE-2026-48813-POC","full_name":"7alen7/CVE-2026-48813-POC","html_url":"https://github.com/7alen7/CVE-2026-48813-POC","description":"","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-27T19:56:30Z","pushed_at":"2026-05-17T20:57:12Z","created_at":"2026-05-17T20:42:53Z","topics":[],"owner":{"login":"7alen7","html_url":"https://github.com/7alen7"},"clone_url":"https://github.com/7alen7/CVE-2026-48813-POC.git","has_code":true,"age_days":38}]},{"cve_id":"CVE-2026-4882","repositories":[{"id":1240668030,"name":"CVE-2026-4882","full_name":"xShadow-Here/CVE-2026-4882","html_url":"https://github.com/xShadow-Here/CVE-2026-4882","description":"User Registration Advanced Fields \u003c= 1.6.20 - Unauthenticated Arbitrary File Upload","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-16T12:44:17Z","pushed_at":"2026-05-16T12:44:13Z","created_at":"2026-05-16T12:20:03Z","topics":[],"owner":{"login":"xShadow-Here","html_url":"https://github.com/xShadow-Here"},"clone_url":"https://github.com/xShadow-Here/CVE-2026-4882.git","has_code":true,"age_days":40}]},{"cve_id":"CVE-2026-4883","repositories":[{"id":1259370640,"name":"CVE-2026-4883","full_name":"xShadow-Here/CVE-2026-4883","html_url":"https://github.com/xShadow-Here/CVE-2026-4883","description":"Piotnet Forms Pro \u003c= 2.1.40 - Unauthenticated Arbitrary File Upload → RCE","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-09T06:59:17Z","pushed_at":"2026-06-04T12:57:58Z","created_at":"2026-06-04T12:47:15Z","topics":[],"owner":{"login":"xShadow-Here","html_url":"https://github.com/xShadow-Here"},"clone_url":"https://github.com/xShadow-Here/CVE-2026-4883.git","has_code":true,"age_days":21}]},{"cve_id":"CVE-2026-48849","repositories":[{"id":1269848246,"name":"CVE-2026-48849-Roundcube-Webmail-Stored-XSS","full_name":"AnandJogawade/CVE-2026-48849-Roundcube-Webmail-Stored-XSS","html_url":"https://github.com/AnandJogawade/CVE-2026-48849-Roundcube-Webmail-Stored-XSS","description":"This repository documents CVE-2026-48849, a Stored Cross-Site Scripting (XSS), HTML Injection, and CSS Injection vulnerability discovered in Roundcube Webmai","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-06-21T12:27:04Z","pushed_at":"2026-06-21T12:27:00Z","created_at":"2026-06-15T06:43:23Z","topics":["cve-2026-48849","roundcube","roundcube-webmail","roundcubemail","storedxss","xss","xss-vulnerability"],"owner":{"login":"AnandJogawade","html_url":"https://github.com/AnandJogawade"},"clone_url":"https://github.com/AnandJogawade/CVE-2026-48849-Roundcube-Webmail-Stored-XSS.git","has_code":false,"age_days":10}]},{"cve_id":"CVE-2026-4885","repositories":[{"id":1245592865,"name":"CVE-2026-4885","full_name":"xShadow-Here/CVE-2026-4885","html_url":"https://github.com/xShadow-Here/CVE-2026-4885","description":"Piotnet Addons for Elementor Pro \u003c= 7.1.70 - Unauthenticated Arbitrary File Upload → RCE","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-25T01:17:26Z","pushed_at":"2026-05-21T11:19:22Z","created_at":"2026-05-21T11:16:49Z","topics":[],"owner":{"login":"xShadow-Here","html_url":"https://github.com/xShadow-Here"},"clone_url":"https://github.com/xShadow-Here/CVE-2026-4885.git","has_code":true,"age_days":35},{"id":1247729544,"name":"CVE-2026-4885","full_name":"Jenderal92/CVE-2026-4885","html_url":"https://github.com/Jenderal92/CVE-2026-4885","description":"Piotnet Addons for Elementor Pro \u003c= 7.1.70 - Unauthenticated Arbitrary File Upload via Form File Upload","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-30T19:37:56Z","pushed_at":"2026-05-30T19:37:53Z","created_at":"2026-05-23T17:45:40Z","topics":["cve-2026-4885","exploit","pentesting","python","vulnerability","wordpress"],"owner":{"login":"Jenderal92","html_url":"https://github.com/Jenderal92"},"clone_url":"https://github.com/Jenderal92/CVE-2026-4885.git","has_code":true,"age_days":33}]},{"cve_id":"CVE-2026-48866","repositories":[{"id":1260429884,"name":"CVE-2026-48866","full_name":"0xABCD01/CVE-2026-48866","html_url":"https://github.com/0xABCD01/CVE-2026-48866","description":"CVE-2026-48866 — Gravity Forms \u003c= 2.10.0.1 Arbitrary File Deletion via Path Traversal (CVSS 9.6)","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-07T08:57:15Z","pushed_at":"2026-06-05T13:38:27Z","created_at":"2026-06-05T13:38:07Z","topics":["cve","cve-2026-48866","exploit","poc"],"owner":{"login":"0xABCD01","html_url":"https://github.com/0xABCD01"},"clone_url":"https://github.com/0xABCD01/CVE-2026-48866.git","has_code":true,"age_days":20}]},{"cve_id":"CVE-2026-48907","repositories":[{"id":1266267633,"name":"CVE-2026-48907","full_name":"ywh-jfellus/CVE-2026-48907","html_url":"https://github.com/ywh-jfellus/CVE-2026-48907","description":"PoC for CVE-2026-48907 - Joomla! JCE extension \u003c 2.9.99.5 unauthenticated RCE","stargazers_count":11,"forks_count":3,"language":"Shell","updated_at":"2026-06-24T06:38:47Z","pushed_at":"2026-06-11T14:38:26Z","created_at":"2026-06-11T13:14:16Z","topics":[],"owner":{"login":"ywh-jfellus","html_url":"https://github.com/ywh-jfellus"},"clone_url":"https://github.com/ywh-jfellus/CVE-2026-48907.git","has_code":true,"age_days":14},{"id":1267158481,"name":"CVE-2026-48907","full_name":"0xBlackash/CVE-2026-48907","html_url":"https://github.com/0xBlackash/CVE-2026-48907","description":"CVE-2026-48907","stargazers_count":2,"forks_count":2,"language":"Python","updated_at":"2026-06-22T11:05:04Z","pushed_at":"2026-06-12T15:15:35Z","created_at":"2026-06-12T09:22:07Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-48907.git","has_code":true,"age_days":13},{"id":1277267435,"name":"CVE-2026-48907","full_name":"0xgh057r3c0n/CVE-2026-48907","html_url":"https://github.com/0xgh057r3c0n/CVE-2026-48907","description":"CVE-2025-48907 - Unauthenticated RCE exploit for Joomla JCE \u003c 2.9.99.5","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-23T12:24:22Z","pushed_at":"2026-06-22T18:40:37Z","created_at":"2026-06-22T18:31:26Z","topics":[],"owner":{"login":"0xgh057r3c0n","html_url":"https://github.com/0xgh057r3c0n"},"clone_url":"https://github.com/0xgh057r3c0n/CVE-2026-48907.git","has_code":true,"age_days":3},{"id":1276438283,"name":"CVE-2026-48907","full_name":"sec0x/CVE-2026-48907","html_url":"https://github.com/sec0x/CVE-2026-48907","description":"","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-23T13:13:53Z","pushed_at":"2026-06-22T01:24:06Z","created_at":"2026-06-22T01:22:58Z","topics":[],"owner":{"login":"sec0x","html_url":"https://github.com/sec0x"},"clone_url":"https://github.com/sec0x/CVE-2026-48907.git","has_code":true,"age_days":3},{"id":1273799155,"name":"joomla-jce-cve-2026-48907-detection","full_name":"g0thamRabb1t/joomla-jce-cve-2026-48907-detection","html_url":"https://github.com/g0thamRabb1t/joomla-jce-cve-2026-48907-detection","description":"Defensive lab validation and SOC detection guidance for CVE-2026-48907 in Joomla JCE \u003c= 2.9.99.4, including Apache/Joomla/auditd telemetry, webshell artifacts, Sigma rules, MITRE ATT\u0026CK mapping and mitigation recommendations.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-18T22:17:11Z","pushed_at":"2026-06-18T22:17:08Z","created_at":"2026-06-18T22:12:15Z","topics":[],"owner":{"login":"g0thamRabb1t","html_url":"https://github.com/g0thamRabb1t"},"clone_url":"https://github.com/g0thamRabb1t/joomla-jce-cve-2026-48907-detection.git","has_code":false,"age_days":6},{"id":1272391607,"name":"CVE-2026-48907","full_name":"wearehackers160/CVE-2026-48907","html_url":"https://github.com/wearehackers160/CVE-2026-48907","description":"CVE-2026-48907 is a critical improper access control vulnerability in the JCE editor extension for Joomla. It allows unauthenticated attackers to create new editor profiles, which can ultimately lead to arbitrary PHP file upload and remote code execution on affected systems","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-18T15:44:24Z","pushed_at":"2026-06-18T15:43:42Z","created_at":"2026-06-17T15:06:09Z","topics":[],"owner":{"login":"wearehackers160","html_url":"https://github.com/wearehackers160"},"clone_url":"https://github.com/wearehackers160/CVE-2026-48907.git","has_code":true,"age_days":8},{"id":1271924028,"name":"CVE-2026-48907","full_name":"HORKimhab/CVE-2026-48907","html_url":"https://github.com/HORKimhab/CVE-2026-48907","description":"CVE-2026-48907","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-17T06:14:55Z","pushed_at":"2026-06-17T06:14:51Z","created_at":"2026-06-17T06:09:10Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-48907.git","has_code":true,"age_days":8},{"id":1268317909,"name":"CVE-2026-48907","full_name":"87achrafg-stack/CVE-2026-48907","html_url":"https://github.com/87achrafg-stack/CVE-2026-48907","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-13T11:46:55Z","pushed_at":"2026-06-13T11:46:51Z","created_at":"2026-06-13T11:45:39Z","topics":[],"owner":{"login":"87achrafg-stack","html_url":"https://github.com/87achrafg-stack"},"clone_url":"https://github.com/87achrafg-stack/CVE-2026-48907.git","has_code":true,"age_days":12},{"id":1264181090,"name":"CVE-2026-48907-Unauthenticated-RCE-in-JCE","full_name":"webshellseo8/CVE-2026-48907-Unauthenticated-RCE-in-JCE","html_url":"https://github.com/webshellseo8/CVE-2026-48907-Unauthenticated-RCE-in-JCE","description":"CVE-2026-48907: Unauthenticated RCE in JCE (Proof Of Concept)","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-06-16T22:39:01Z","pushed_at":"2026-06-09T17:08:22Z","created_at":"2026-06-09T16:30:01Z","topics":[],"owner":{"login":"webshellseo8","html_url":"https://github.com/webshellseo8"},"clone_url":"https://github.com/webshellseo8/CVE-2026-48907-Unauthenticated-RCE-in-JCE.git","has_code":true,"age_days":16}]},{"cve_id":"CVE-2026-48908","repositories":[{"id":1276779222,"name":"CVE-2026-48908-PoC","full_name":"papageo75/CVE-2026-48908-PoC","html_url":"https://github.com/papageo75/CVE-2026-48908-PoC","description":"Unauthenticated RCE PoC for CVE-2026-48908 — SP Page Builder for Joomla (≤ 6.6.1): arbitrary file upload via asset.uploadCustomIcon. Self-cleaning, token-guarded. Authorized testing only.","stargazers_count":10,"forks_count":2,"language":"Python","updated_at":"2026-06-25T08:06:14Z","pushed_at":"2026-06-23T09:11:33Z","created_at":"2026-06-22T09:31:27Z","topics":["arbitrary-file-upload","cve-2026-48908","exploit","joomla","penetration-testing","poc","proof-of-concept","rce","remote-code-execution","sp-page-builder","sppagebuilder","unauthenticated","vulnerability","web-security"],"owner":{"login":"papageo75","html_url":"https://github.com/papageo75"},"clone_url":"https://github.com/papageo75/CVE-2026-48908-PoC.git","has_code":true,"age_days":3},{"id":1279685151,"name":"CVE-2026-48908","full_name":"0xBlackash/CVE-2026-48908","html_url":"https://github.com/0xBlackash/CVE-2026-48908","description":"CVE-2026-48908","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-25T00:21:23Z","pushed_at":"2026-06-24T23:50:05Z","created_at":"2026-06-24T23:33:25Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-48908.git","has_code":true,"age_days":0},{"id":1279151272,"name":"CVE-2026-48908","full_name":"ogenich/CVE-2026-48908","html_url":"https://github.com/ogenich/CVE-2026-48908","description":"Unauthenticated RCE PoC for CVE-2026-48908  SP Page Builder (Joomla) arbitrary file upload and remote code execution exploit with mass scaning support.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-25T04:01:17Z","pushed_at":"2026-06-25T04:01:13Z","created_at":"2026-06-24T12:23:43Z","topics":["cve-2026-48908","joomla","joomla-rce","sp-page-builder"],"owner":{"login":"ogenich","html_url":"https://github.com/ogenich"},"clone_url":"https://github.com/ogenich/CVE-2026-48908.git","has_code":true,"age_days":1},{"id":1278949367,"name":"CVE-2026-48908-SP-Page-Builder-Joomla","full_name":"gagaltotal/CVE-2026-48908-SP-Page-Builder-Joomla","html_url":"https://github.com/gagaltotal/CVE-2026-48908-SP-Page-Builder-Joomla","description":"CVE-2026-48908 - SP Page Builder Joomla Unauthenticated RCE ","stargazers_count":0,"forks_count":0,"language":"Go","updated_at":"2026-06-24T15:40:38Z","pushed_at":"2026-06-24T15:39:23Z","created_at":"2026-06-24T08:31:40Z","topics":["cve","cve-scanning","cve-search","go","golang","golang-cli","joomla","joomla-cms","joomla-extensions","joomla-plugin"],"owner":{"login":"gagaltotal","html_url":"https://github.com/gagaltotal"},"clone_url":"https://github.com/gagaltotal/CVE-2026-48908-SP-Page-Builder-Joomla.git","has_code":true,"age_days":1},{"id":1275896171,"name":"CVE-2026-48908-POC","full_name":"webshellseo8/CVE-2026-48908-POC","html_url":"https://github.com/webshellseo8/CVE-2026-48908-POC","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-21T09:22:10Z","pushed_at":"2026-06-21T09:22:10Z","created_at":"2026-06-21T09:22:09Z","topics":[],"owner":{"login":"webshellseo8","html_url":"https://github.com/webshellseo8"},"clone_url":"https://github.com/webshellseo8/CVE-2026-48908-POC.git","has_code":false,"age_days":4}]},{"cve_id":"CVE-2026-48909","repositories":[{"id":1276344070,"name":"CVE-2026-48909","full_name":"Is4yev/CVE-2026-48909","html_url":"https://github.com/Is4yev/CVE-2026-48909","description":"CVE-2026-48909 PoC","stargazers_count":22,"forks_count":2,"language":"Python","updated_at":"2026-06-25T06:13:53Z","pushed_at":"2026-06-21T21:31:12Z","created_at":"2026-06-21T21:30:39Z","topics":["cve","deserialization","exploit","joomla","joomla-plugin","php-object-injection","poc","rce"],"owner":{"login":"Is4yev","html_url":"https://github.com/Is4yev"},"clone_url":"https://github.com/Is4yev/CVE-2026-48909.git","has_code":true,"age_days":3}]},{"cve_id":"CVE-2026-4893","repositories":[{"id":1250944834,"name":"CVE20264893poc","full_name":"lottiedeyan/CVE20264893poc","html_url":"https://github.com/lottiedeyan/CVE20264893poc","description":"Generate the poc for CVE-2026-4893: broken EDNS Client Subnet validation.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-27T06:09:57Z","pushed_at":"2026-05-27T06:09:53Z","created_at":"2026-05-27T05:27:28Z","topics":[],"owner":{"login":"lottiedeyan","html_url":"https://github.com/lottiedeyan"},"clone_url":"https://github.com/lottiedeyan/CVE20264893poc.git","has_code":true,"age_days":29}]},{"cve_id":"CVE-2026-48962","repositories":[{"id":1264811374,"name":"CVE-2026-48962","full_name":"JoakimBulow/CVE-2026-48962","html_url":"https://github.com/JoakimBulow/CVE-2026-48962","description":"CVE-2026-48962 - IO::Compress - Code Execution","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-10T07:52:40Z","pushed_at":"2026-06-10T07:52:04Z","created_at":"2026-06-10T07:46:58Z","topics":[],"owner":{"login":"JoakimBulow","html_url":"https://github.com/JoakimBulow"},"clone_url":"https://github.com/JoakimBulow/CVE-2026-48962.git","has_code":false,"age_days":15}]},{"cve_id":"CVE-2026-49009","repositories":[{"id":1252786085,"name":"CVE-2026-49009","full_name":"j0xh-sec/CVE-2026-49009","html_url":"https://github.com/j0xh-sec/CVE-2026-49009","description":"POC for CVE-2026-49009, an authenticated path traversal to RCE issue in Mender Server.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-01T21:12:54Z","pushed_at":"2026-06-01T21:12:50Z","created_at":"2026-05-28T21:45:20Z","topics":[],"owner":{"login":"j0xh-sec","html_url":"https://github.com/j0xh-sec"},"clone_url":"https://github.com/j0xh-sec/CVE-2026-49009.git","has_code":true,"age_days":27},{"id":1256970216,"name":"CVE-2026-49009","full_name":"INTELEON404/CVE-2026-49009","html_url":"https://github.com/INTELEON404/CVE-2026-49009","description":"Mender Server - Authenticated Path Traversal to RCE","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-06T03:06:11Z","pushed_at":"2026-06-06T03:06:08Z","created_at":"2026-06-02T08:42:36Z","topics":["cve","cve-2026-49009","cve-search","cves","mender","nuclei-templates","pathtraversal","rce","remote-code-execution","to"],"owner":{"login":"INTELEON404","html_url":"https://github.com/INTELEON404"},"clone_url":"https://github.com/INTELEON404/CVE-2026-49009.git","has_code":false,"age_days":23}]},{"cve_id":"CVE-2026-49060","repositories":[{"id":1272240255,"name":"CVE-2026-49060-Lab","full_name":"rootdirective-sec/CVE-2026-49060-Lab","html_url":"https://github.com/rootdirective-sec/CVE-2026-49060-Lab","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-17T12:24:41Z","pushed_at":"2026-06-17T12:24:17Z","created_at":"2026-06-17T12:22:37Z","topics":[],"owner":{"login":"rootdirective-sec","html_url":"https://github.com/rootdirective-sec"},"clone_url":"https://github.com/rootdirective-sec/CVE-2026-49060-Lab.git","has_code":true,"age_days":8}]},{"cve_id":"CVE-2026-49079","repositories":[{"id":1272127259,"name":"CVE-2026-49079","full_name":"izxci/CVE-2026-49079","html_url":"https://github.com/izxci/CVE-2026-49079","description":"CVE-2026-49079 JetSearch SQL Injection Exploit","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-17T10:08:42Z","pushed_at":"2026-06-17T10:08:38Z","created_at":"2026-06-17T10:08:08Z","topics":[],"owner":{"login":"izxci","html_url":"https://github.com/izxci"},"clone_url":"https://github.com/izxci/CVE-2026-49079.git","has_code":true,"age_days":8}]},{"cve_id":"CVE-2026-49083","repositories":[{"id":1272359887,"name":"CVE-2026-49083","full_name":"87achrafg-stack/CVE-2026-49083","html_url":"https://github.com/87achrafg-stack/CVE-2026-49083","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-17T14:38:08Z","pushed_at":"2026-06-17T14:34:09Z","created_at":"2026-06-17T14:33:21Z","topics":[],"owner":{"login":"87achrafg-stack","html_url":"https://github.com/87achrafg-stack"},"clone_url":"https://github.com/87achrafg-stack/CVE-2026-49083.git","has_code":true,"age_days":8},{"id":1272128811,"name":"CVE-2026-49083","full_name":"izxci/CVE-2026-49083","html_url":"https://github.com/izxci/CVE-2026-49083","description":"CVE-2026-49083 LatePoint Calendar Booking Plugin Privilege Escalation Exploit","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-17T10:10:19Z","pushed_at":"2026-06-17T10:10:11Z","created_at":"2026-06-17T10:09:52Z","topics":[],"owner":{"login":"izxci","html_url":"https://github.com/izxci"},"clone_url":"https://github.com/izxci/CVE-2026-49083.git","has_code":true,"age_days":8}]},{"cve_id":"CVE-2026-49085","repositories":[{"id":1272117922,"name":"CVE-2026-49085","full_name":"izxci/CVE-2026-49085","html_url":"https://github.com/izxci/CVE-2026-49085","description":"CVE-2026-49085 WP Insightly PHP Object Injection Exploit","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-17T09:58:56Z","pushed_at":"2026-06-17T09:58:10Z","created_at":"2026-06-17T09:57:42Z","topics":[],"owner":{"login":"izxci","html_url":"https://github.com/izxci"},"clone_url":"https://github.com/izxci/CVE-2026-49085.git","has_code":true,"age_days":8}]},{"cve_id":"CVE-2026-49104","repositories":[{"id":1272124479,"name":"CVE-2026-49104-","full_name":"izxci/CVE-2026-49104-","html_url":"https://github.com/izxci/CVE-2026-49104-","description":"CVE-2026-49104 Integration for Keap/Infusionsoft PHP Object Injection Exploit","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-17T10:05:40Z","pushed_at":"2026-06-17T10:05:36Z","created_at":"2026-06-17T10:05:10Z","topics":[],"owner":{"login":"izxci","html_url":"https://github.com/izxci"},"clone_url":"https://github.com/izxci/CVE-2026-49104-.git","has_code":true,"age_days":8}]},{"cve_id":"CVE-2026-49105","repositories":[{"id":1272125897,"name":"CVE-2026-49105","full_name":"izxci/CVE-2026-49105","html_url":"https://github.com/izxci/CVE-2026-49105","description":"CVE-2026-49105 WP Zendesk PHP Object Injection Exploit","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-17T10:07:10Z","pushed_at":"2026-06-17T10:07:06Z","created_at":"2026-06-17T10:06:40Z","topics":[],"owner":{"login":"izxci","html_url":"https://github.com/izxci"},"clone_url":"https://github.com/izxci/CVE-2026-49105.git","has_code":true,"age_days":8}]},{"cve_id":"CVE-2026-49160","repositories":[{"id":1270463153,"name":"CVE-2026-49160-CVE-2026-47291-HTTP.sys","full_name":"dhmosfunk/CVE-2026-49160-CVE-2026-47291-HTTP.sys","html_url":"https://github.com/dhmosfunk/CVE-2026-49160-CVE-2026-47291-HTTP.sys","description":"HTTP.sys Denial of Service Vulnerability \u0026 HTTP.sys Remote Code Execution Vulnerability ","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-17T08:02:19Z","pushed_at":"2026-06-17T07:56:57Z","created_at":"2026-06-15T18:30:18Z","topics":[],"owner":{"login":"dhmosfunk","html_url":"https://github.com/dhmosfunk"},"clone_url":"https://github.com/dhmosfunk/CVE-2026-49160-CVE-2026-47291-HTTP.sys.git","has_code":true,"age_days":10}]},{"cve_id":"CVE-2026-49344","repositories":[{"id":1251050487,"name":"CVE-2026-49344-Mercator-JSON-DSL","full_name":"hadhub/CVE-2026-49344-Mercator-JSON-DSL","html_url":"https://github.com/hadhub/CVE-2026-49344-Mercator-JSON-DSL","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-30T09:55:52Z","pushed_at":"2026-05-27T07:54:33Z","created_at":"2026-05-27T07:45:57Z","topics":[],"owner":{"login":"hadhub","html_url":"https://github.com/hadhub"},"clone_url":"https://github.com/hadhub/CVE-2026-49344-Mercator-JSON-DSL.git","has_code":true,"age_days":29}]},{"cve_id":"CVE-2026-49345","repositories":[{"id":1251003747,"name":"CVE-2026-49345-Mercator-SSRF","full_name":"hadhub/CVE-2026-49345-Mercator-SSRF","html_url":"https://github.com/hadhub/CVE-2026-49345-Mercator-SSRF","description":"SSRF Discovered in Mercator","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-30T09:56:05Z","pushed_at":"2026-05-27T07:18:29Z","created_at":"2026-05-27T06:46:38Z","topics":[],"owner":{"login":"hadhub","html_url":"https://github.com/hadhub"},"clone_url":"https://github.com/hadhub/CVE-2026-49345-Mercator-SSRF.git","has_code":true,"age_days":29}]},{"cve_id":"CVE-2026-49413","repositories":[{"id":1265348238,"name":"CVE-2026-49413","full_name":"ii4gsp/CVE-2026-49413","html_url":"https://github.com/ii4gsp/CVE-2026-49413","description":"FreeBSD LPE","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-06-10T17:42:11Z","pushed_at":"2026-06-10T17:42:06Z","created_at":"2026-06-10T17:34:54Z","topics":[],"owner":{"login":"ii4gsp","html_url":"https://github.com/ii4gsp"},"clone_url":"https://github.com/ii4gsp/CVE-2026-49413.git","has_code":true,"age_days":15}]},{"cve_id":"CVE-2026-49417","repositories":[{"id":1264597855,"name":"CVE-2026-49417_1day_LPE_exploit","full_name":"Yayoi-cs/CVE-2026-49417_1day_LPE_exploit","html_url":"https://github.com/Yayoi-cs/CVE-2026-49417_1day_LPE_exploit","description":"1-day exploit for CVE-2026-49417","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-06-13T12:20:42Z","pushed_at":"2026-06-10T02:54:02Z","created_at":"2026-06-10T02:53:39Z","topics":[],"owner":{"login":"Yayoi-cs","html_url":"https://github.com/Yayoi-cs"},"clone_url":"https://github.com/Yayoi-cs/CVE-2026-49417_1day_LPE_exploit.git","has_code":true,"age_days":15}]},{"cve_id":"CVE-2026-49492","repositories":[{"id":1266110017,"name":"CVE-2026-49492-PoC","full_name":"byte16384/CVE-2026-49492-PoC","html_url":"https://github.com/byte16384/CVE-2026-49492-PoC","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-11T10:28:07Z","pushed_at":"2026-06-11T10:28:04Z","created_at":"2026-06-11T10:26:57Z","topics":[],"owner":{"login":"byte16384","html_url":"https://github.com/byte16384"},"clone_url":"https://github.com/byte16384/CVE-2026-49492-PoC.git","has_code":false,"age_days":14}]},{"cve_id":"CVE-2026-49757","repositories":[{"id":1275817954,"name":"ash-authentication-oauth2-oidc-account-takeover-cve-2026-49757-email-based-user-matching","full_name":"Hunt-Benito/ash-authentication-oauth2-oidc-account-takeover-cve-2026-49757-email-based-user-matching","html_url":"https://github.com/Hunt-Benito/ash-authentication-oauth2-oidc-account-takeover-cve-2026-49757-email-based-user-matching","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-21T07:04:29Z","pushed_at":"2026-06-21T07:04:26Z","created_at":"2026-06-21T07:03:58Z","topics":[],"owner":{"login":"Hunt-Benito","html_url":"https://github.com/Hunt-Benito"},"clone_url":"https://github.com/Hunt-Benito/ash-authentication-oauth2-oidc-account-takeover-cve-2026-49757-email-based-user-matching.git","has_code":true,"age_days":4}]},{"cve_id":"CVE-2026-49772","repositories":[{"id":1277381150,"name":"CVE-2026-49772","full_name":"joshuavanderpoll/CVE-2026-49772","html_url":"https://github.com/joshuavanderpoll/CVE-2026-49772","description":"CVE-2026-49772 — The Events Calendar (WordPress) unauthenticated blind SQLi PoC","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-06-25T16:57:13Z","pushed_at":"2026-06-22T21:05:24Z","created_at":"2026-06-22T21:02:56Z","topics":["blind-sql-injection","cve","cve-2026-49772","exploit","poc","proof-of-concept","sql-injection","sqli","the-events-calendar","wordpress","wordpress-plugin","wordpress-security"],"owner":{"login":"joshuavanderpoll","html_url":"https://github.com/joshuavanderpoll"},"clone_url":"https://github.com/joshuavanderpoll/CVE-2026-49772.git","has_code":true,"age_days":2}]},{"cve_id":"CVE-2026-49777","repositories":[{"id":1278702956,"name":"CVE-Wordpress","full_name":"HORKimhab/CVE-Wordpress","html_url":"https://github.com/HORKimhab/CVE-Wordpress","description":"CVE-2026-49777, CVE-2026-10735 - Draft","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-24T03:12:43Z","pushed_at":"2026-06-24T03:12:39Z","created_at":"2026-06-24T03:12:06Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-Wordpress.git","has_code":false,"age_days":1},{"id":1276226372,"name":"CVE-2026-49777-CVE-2026-10735","full_name":"xxconi/CVE-2026-49777-CVE-2026-10735","html_url":"https://github.com/xxconi/CVE-2026-49777-CVE-2026-10735","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-21T17:47:10Z","pushed_at":"2026-06-21T17:47:06Z","created_at":"2026-06-21T17:46:11Z","topics":[],"owner":{"login":"xxconi","html_url":"https://github.com/xxconi"},"clone_url":"https://github.com/xxconi/CVE-2026-49777-CVE-2026-10735.git","has_code":true,"age_days":4},{"id":1267112698,"name":"CVE-2026-49777","full_name":"izxci/CVE-2026-49777","html_url":"https://github.com/izxci/CVE-2026-49777","description":"CVE-2026-49777 - ShapedPlugin Product Slider Pro for WooCommerce Backdoor RCE","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-12T08:28:46Z","pushed_at":"2026-06-12T08:28:42Z","created_at":"2026-06-12T08:26:33Z","topics":[],"owner":{"login":"izxci","html_url":"https://github.com/izxci"},"clone_url":"https://github.com/izxci/CVE-2026-49777.git","has_code":false,"age_days":13}]},{"cve_id":"CVE-2026-49943","repositories":[{"id":1257912853,"name":"CVE-2026-49943-PoC","full_name":"9Bakabaka/CVE-2026-49943-PoC","html_url":"https://github.com/9Bakabaka/CVE-2026-49943-PoC","description":"PoC of CVE-2026-49943","stargazers_count":1,"forks_count":1,"language":"Python","updated_at":"2026-06-03T06:25:47Z","pushed_at":"2026-06-03T05:45:00Z","created_at":"2026-06-03T05:39:35Z","topics":[],"owner":{"login":"9Bakabaka","html_url":"https://github.com/9Bakabaka"},"clone_url":"https://github.com/9Bakabaka/CVE-2026-49943-PoC.git","has_code":true,"age_days":22}]},{"cve_id":"CVE-2026-49952","repositories":[{"id":1272070833,"name":"CVE-2026-49952","full_name":"passwa11/CVE-2026-49952","html_url":"https://github.com/passwa11/CVE-2026-49952","description":"Chaining Security Bugs in Discuz! X5.0: from Race Condition to Pre-Auth RCE","stargazers_count":1,"forks_count":2,"language":"","updated_at":"2026-06-25T06:32:13Z","pushed_at":"2026-06-17T09:05:48Z","created_at":"2026-06-17T09:04:23Z","topics":[],"owner":{"login":"passwa11","html_url":"https://github.com/passwa11"},"clone_url":"https://github.com/passwa11/CVE-2026-49952.git","has_code":false,"age_days":8}]},{"cve_id":"CVE-2026-49975","repositories":[{"id":1259037076,"name":"CVE-2026-49975-POC","full_name":"mrx-arafat/CVE-2026-49975-POC","html_url":"https://github.com/mrx-arafat/CVE-2026-49975-POC","description":"HTTP/2 Bomb PoC — CVE-2026-49975 (HPACK indexed reference bomb + flow-control stall)","stargazers_count":23,"forks_count":9,"language":"Python","updated_at":"2026-06-21T20:20:47Z","pushed_at":"2026-06-04T06:23:03Z","created_at":"2026-06-04T06:22:54Z","topics":[],"owner":{"login":"mrx-arafat","html_url":"https://github.com/mrx-arafat"},"clone_url":"https://github.com/mrx-arafat/CVE-2026-49975-POC.git","has_code":true,"age_days":21},{"id":1264681974,"name":"CVE-2026-49975","full_name":"EQSTLab/CVE-2026-49975","html_url":"https://github.com/EQSTLab/CVE-2026-49975","description":"HTTP/2 Bomb","stargazers_count":10,"forks_count":2,"language":"Python","updated_at":"2026-06-25T08:34:47Z","pushed_at":"2026-06-25T08:34:41Z","created_at":"2026-06-10T05:06:42Z","topics":[],"owner":{"login":"EQSTLab","html_url":"https://github.com/EQSTLab"},"clone_url":"https://github.com/EQSTLab/CVE-2026-49975.git","has_code":true,"age_days":15},{"id":1258685193,"name":"Proof-of-Concept-POC---CVE-2026-49975-HTTP-2-Bomb-","full_name":"fevar54/Proof-of-Concept-POC---CVE-2026-49975-HTTP-2-Bomb-","html_url":"https://github.com/fevar54/Proof-of-Concept-POC---CVE-2026-49975-HTTP-2-Bomb-","description":"Este repositorio contiene un Proof of Concept (POC) para CVE-2026-49975, también conocida como HTTP/2 Bomb, una vulnerabilidad de denegación de servicio (DoS) remoto que afecta a la mayoría de los servidores web principales en su configuración HTTP/2 predeterminada, incluyendo:","stargazers_count":6,"forks_count":2,"language":"Python","updated_at":"2026-06-23T17:58:57Z","pushed_at":"2026-06-03T20:34:52Z","created_at":"2026-06-03T20:22:30Z","topics":[],"owner":{"login":"fevar54","html_url":"https://github.com/fevar54"},"clone_url":"https://github.com/fevar54/Proof-of-Concept-POC---CVE-2026-49975-HTTP-2-Bomb-.git","has_code":true,"age_days":21},{"id":1265079070,"name":"CVE-2026-49975","full_name":"LSG-PolarBear/CVE-2026-49975","html_url":"https://github.com/LSG-PolarBear/CVE-2026-49975","description":"CVE-2026-49975漏洞复现","stargazers_count":4,"forks_count":0,"language":"","updated_at":"2026-06-22T09:26:33Z","pushed_at":"2026-06-11T03:44:05Z","created_at":"2026-06-10T12:52:47Z","topics":[],"owner":{"login":"LSG-PolarBear","html_url":"https://github.com/LSG-PolarBear"},"clone_url":"https://github.com/LSG-PolarBear/CVE-2026-49975.git","has_code":false,"age_days":15},{"id":1259897466,"name":"http2-bomb","full_name":"obrige/http2-bomb","html_url":"https://github.com/obrige/http2-bomb","description":"CVE-2026-49975 HTTP/2 Stream Amplification — Docker PoC with Web Console","stargazers_count":4,"forks_count":0,"language":"HTML","updated_at":"2026-06-22T07:39:48Z","pushed_at":"2026-06-05T02:27:46Z","created_at":"2026-06-05T01:08:17Z","topics":[],"owner":{"login":"obrige","html_url":"https://github.com/obrige"},"clone_url":"https://github.com/obrige/http2-bomb.git","has_code":true,"age_days":20},{"id":1268015117,"name":"http2-bomb-detector","full_name":"adminlove520/http2-bomb-detector","html_url":"https://github.com/adminlove520/http2-bomb-detector","description":"HTTP/2 Bomb (CVE-2026-49975) non-destructive vulnerability detector for Nginx / Apache httpd. Zero-dependency Python.","stargazers_count":1,"forks_count":1,"language":"Python","updated_at":"2026-06-13T04:06:36Z","pushed_at":"2026-06-13T04:05:25Z","created_at":"2026-06-13T04:05:21Z","topics":[],"owner":{"login":"adminlove520","html_url":"https://github.com/adminlove520"},"clone_url":"https://github.com/adminlove520/http2-bomb-detector.git","has_code":true,"age_days":12},{"id":1268005033,"name":"http2-bomb-analysis-paper","full_name":"minc-nice-100/http2-bomb-analysis-paper","html_url":"https://github.com/minc-nice-100/http2-bomb-analysis-paper","description":"HTTP/2 Bomb: HPACK indexed-reference amplification + flow-control stall. A high school student's full protocol analysis (LaTeX). CVE-2026-49975, CVE-2026-47774.","stargazers_count":1,"forks_count":1,"language":"TeX","updated_at":"2026-06-13T04:57:47Z","pushed_at":"2026-06-13T04:01:06Z","created_at":"2026-06-13T03:50:11Z","topics":["amplification-attack","cve-2026-47774","cve-2026-49975","dos-attack","hpack","http2","http2-bomb","security-research","vulnerability","web-security"],"owner":{"login":"minc-nice-100","html_url":"https://github.com/minc-nice-100"},"clone_url":"https://github.com/minc-nice-100/http2-bomb-analysis-paper.git","has_code":true,"age_days":12},{"id":1265340328,"name":"CVE-2026-49975","full_name":"LiaoZiqi-GZFLS/CVE-2026-49975","html_url":"https://github.com/LiaoZiqi-GZFLS/CVE-2026-49975","description":"CVE-2026-49975","stargazers_count":1,"forks_count":2,"language":"Python","updated_at":"2026-06-21T12:12:52Z","pushed_at":"2026-06-10T19:06:35Z","created_at":"2026-06-10T17:26:30Z","topics":[],"owner":{"login":"LiaoZiqi-GZFLS","html_url":"https://github.com/LiaoZiqi-GZFLS"},"clone_url":"https://github.com/LiaoZiqi-GZFLS/CVE-2026-49975.git","has_code":true,"age_days":15},{"id":1263020786,"name":"CVE-2026-49975-HTTP-2-Bomb","full_name":"renzi25031469/CVE-2026-49975-HTTP-2-Bomb","html_url":"https://github.com/renzi25031469/CVE-2026-49975-HTTP-2-Bomb","description":"Disclosed on June 3, 2026, the \"HTTP/2 Bomb\" is an unauthenticated remote DoS that combines an HPACK compression bomb with a Slowloris-style hold to exhaust server memory. It affects default HTTP/2 configurations of **nginx, Apache httpd, Microsoft IIS, Envoy, and Cloudflare Pingora**.","stargazers_count":1,"forks_count":0,"language":"Shell","updated_at":"2026-06-11T10:24:45Z","pushed_at":"2026-06-08T14:58:44Z","created_at":"2026-06-08T14:44:32Z","topics":[],"owner":{"login":"renzi25031469","html_url":"https://github.com/renzi25031469"},"clone_url":"https://github.com/renzi25031469/CVE-2026-49975-HTTP-2-Bomb.git","has_code":true,"age_days":17},{"id":1273379879,"name":"CVE-2026-49975","full_name":"0xc03307b/CVE-2026-49975","html_url":"https://github.com/0xc03307b/CVE-2026-49975","description":"HTTP2-Bomb","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-18T13:18:15Z","pushed_at":"2026-06-18T06:00:02Z","created_at":"2026-06-18T13:17:37Z","topics":[],"owner":{"login":"0xc03307b","html_url":"https://github.com/0xc03307b"},"clone_url":"https://github.com/0xc03307b/CVE-2026-49975.git","has_code":false,"age_days":7},{"id":1268552178,"name":"cve-2026-49975-http2bomb_reproduction","full_name":"razureink/cve-2026-49975-http2bomb_reproduction","html_url":"https://github.com/razureink/cve-2026-49975-http2bomb_reproduction","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-13T17:08:09Z","pushed_at":"2026-06-13T17:08:05Z","created_at":"2026-06-13T17:05:58Z","topics":[],"owner":{"login":"razureink","html_url":"https://github.com/razureink"},"clone_url":"https://github.com/razureink/cve-2026-49975-http2bomb_reproduction.git","has_code":true,"age_days":12}]},{"cve_id":"CVE-2026-50142","repositories":[{"id":1259086289,"name":"libheif-cve-2026-50142","full_name":"MuhammedHussein17/libheif-cve-2026-50142","html_url":"https://github.com/MuhammedHussein17/libheif-cve-2026-50142","description":"CVE-2026-50142 — Heap allocation vulnerability in libheif HEIF sequence parser","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-04T07:19:38Z","pushed_at":"2026-06-04T07:19:34Z","created_at":"2026-06-04T07:18:58Z","topics":[],"owner":{"login":"MuhammedHussein17","html_url":"https://github.com/MuhammedHussein17"},"clone_url":"https://github.com/MuhammedHussein17/libheif-cve-2026-50142.git","has_code":false,"age_days":21}]},{"cve_id":"CVE-2026-5027","repositories":[{"id":1199433639,"name":"CVE-2026-5027","full_name":"yahiahamza/CVE-2026-5027","html_url":"https://github.com/yahiahamza/CVE-2026-5027","description":"CVE-2026-5027 - Langflow Path Traversal to Remote Code Execution (CVSS 8.8)","stargazers_count":4,"forks_count":2,"language":"Python","updated_at":"2026-04-13T07:15:24Z","pushed_at":"2026-04-02T10:49:28Z","created_at":"2026-04-02T10:46:45Z","topics":[],"owner":{"login":"yahiahamza","html_url":"https://github.com/yahiahamza"},"clone_url":"https://github.com/yahiahamza/CVE-2026-5027.git","has_code":true,"age_days":84},{"id":1200371719,"name":"CVE-2026-5027","full_name":"EQSTLab/CVE-2026-5027","html_url":"https://github.com/EQSTLab/CVE-2026-5027","description":"Langflow, Remote Code Execution (RCE) via Cron Job Injection through Path Traversal","stargazers_count":3,"forks_count":0,"language":"Python","updated_at":"2026-04-24T06:53:23Z","pushed_at":"2026-04-24T06:53:20Z","created_at":"2026-04-03T10:34:51Z","topics":[],"owner":{"login":"EQSTLab","html_url":"https://github.com/EQSTLab"},"clone_url":"https://github.com/EQSTLab/CVE-2026-5027.git","has_code":true,"age_days":83},{"id":1200645197,"name":"CVE-2026-5027","full_name":"0xBlackash/CVE-2026-5027","html_url":"https://github.com/0xBlackash/CVE-2026-5027","description":"CVE-2026-5027","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-03T17:07:37Z","pushed_at":"2026-04-03T17:07:29Z","created_at":"2026-04-03T16:56:21Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-5027.git","has_code":true,"age_days":83},{"id":1200340486,"name":"CVE-2026-5027","full_name":"min8282/CVE-2026-5027","html_url":"https://github.com/min8282/CVE-2026-5027","description":"Langflow, Remote Code Execution (RCE) via Cron Job Injection through Path Traversal (CVE-2026-5027)","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-03T12:07:23Z","pushed_at":"2026-04-03T12:07:19Z","created_at":"2026-04-03T09:48:58Z","topics":[],"owner":{"login":"min8282","html_url":"https://github.com/min8282"},"clone_url":"https://github.com/min8282/CVE-2026-5027.git","has_code":true,"age_days":83},{"id":1265436775,"name":"CVE-2026-5027-Langflow","full_name":"Layer-6/CVE-2026-5027-Langflow","html_url":"https://github.com/Layer-6/CVE-2026-5027-Langflow","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-11T11:25:00Z","pushed_at":"2026-06-11T11:24:56Z","created_at":"2026-06-10T19:18:56Z","topics":[],"owner":{"login":"Layer-6","html_url":"https://github.com/Layer-6"},"clone_url":"https://github.com/Layer-6/CVE-2026-5027-Langflow.git","has_code":true,"age_days":15},{"id":1265869688,"name":"-CVE-2026-5027","full_name":"HORKimhab/-CVE-2026-5027","html_url":"https://github.com/HORKimhab/-CVE-2026-5027","description":" CVE-2026-5027 - Draft","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-11T06:32:49Z","pushed_at":"2026-06-11T06:32:38Z","created_at":"2026-06-11T06:32:34Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/-CVE-2026-5027.git","has_code":true,"age_days":14}]},{"cve_id":"CVE-2026-50507","repositories":[{"id":1265857517,"name":"CVE-2026-50507","full_name":"HORKimhab/CVE-2026-50507","html_url":"https://github.com/HORKimhab/CVE-2026-50507","description":"CVE-2026-50507 - Draft","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-11T06:22:58Z","pushed_at":"2026-06-11T06:18:07Z","created_at":"2026-06-11T06:18:03Z","topics":["bitlocker-yellowkey","cve-2026-50507"],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-50507.git","has_code":true,"age_days":14}]},{"cve_id":"CVE-2026-5059","repositories":[{"id":1212408201,"name":"CVE-2026-5059-poc","full_name":"venom203020/CVE-2026-5059-poc","html_url":"https://github.com/venom203020/CVE-2026-5059-poc","description":"poc CVE-2026-5059 in aws-mcp-server","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-16T11:00:13Z","pushed_at":"2026-04-16T11:00:09Z","created_at":"2026-04-16T10:52:43Z","topics":[],"owner":{"login":"venom203020","html_url":"https://github.com/venom203020"},"clone_url":"https://github.com/venom203020/CVE-2026-5059-poc.git","has_code":false,"age_days":70}]},{"cve_id":"CVE-2026-50656","repositories":[{"id":1273378967,"name":"CVE-2026-50656","full_name":"0xBlackash/CVE-2026-50656","html_url":"https://github.com/0xBlackash/CVE-2026-50656","description":"CVE-2026-50656","stargazers_count":4,"forks_count":0,"language":"C++","updated_at":"2026-06-25T06:44:33Z","pushed_at":"2026-06-18T13:44:42Z","created_at":"2026-06-18T13:16:36Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-50656.git","has_code":true,"age_days":7}]},{"cve_id":"CVE-2026-50751","repositories":[{"id":1265521506,"name":"watchTowr-vs-Check-Point-CVE-2026-50751","full_name":"watchtowrlabs/watchTowr-vs-Check-Point-CVE-2026-50751","html_url":"https://github.com/watchtowrlabs/watchTowr-vs-Check-Point-CVE-2026-50751","description":"","stargazers_count":5,"forks_count":2,"language":"Python","updated_at":"2026-06-15T07:40:22Z","pushed_at":"2026-06-10T21:45:02Z","created_at":"2026-06-10T21:10:44Z","topics":[],"owner":{"login":"watchtowrlabs","html_url":"https://github.com/watchtowrlabs"},"clone_url":"https://github.com/watchtowrlabs/watchTowr-vs-Check-Point-CVE-2026-50751.git","has_code":true,"age_days":14},{"id":1273784542,"name":"CheckPoint-CVE-Webscanner","full_name":"WadesWeaponShed/CheckPoint-CVE-Webscanner","html_url":"https://github.com/WadesWeaponShed/CheckPoint-CVE-Webscanner","description":"A web version of the bash scripts wrote for Check Point CVE-2026-50751 and CVE-2026-50752.  This uses a local server to scan and make changes using Check Point Web API","stargazers_count":1,"forks_count":0,"language":"JavaScript","updated_at":"2026-06-19T16:19:43Z","pushed_at":"2026-06-19T16:19:40Z","created_at":"2026-06-18T21:45:56Z","topics":[],"owner":{"login":"WadesWeaponShed","html_url":"https://github.com/WadesWeaponShed"},"clone_url":"https://github.com/WadesWeaponShed/CheckPoint-CVE-Webscanner.git","has_code":true,"age_days":6},{"id":1262948432,"name":"CVE-2026-50751-Mitigation-Scripts","full_name":"WadesWeaponShed/CVE-2026-50751-Mitigation-Scripts","html_url":"https://github.com/WadesWeaponShed/CVE-2026-50751-Mitigation-Scripts","description":"Mitigation scripts for CVE-2026-50751","stargazers_count":1,"forks_count":0,"language":"Shell","updated_at":"2026-06-13T13:27:09Z","pushed_at":"2026-06-13T13:27:06Z","created_at":"2026-06-08T13:26:38Z","topics":[],"owner":{"login":"WadesWeaponShed","html_url":"https://github.com/WadesWeaponShed"},"clone_url":"https://github.com/WadesWeaponShed/CVE-2026-50751-Mitigation-Scripts.git","has_code":true,"age_days":17},{"id":1267423888,"name":"CVE-2026-50751-Check-Point-IKEv1-Authentication-Bypass","full_name":"hlkysipv/CVE-2026-50751-Check-Point-IKEv1-Authentication-Bypass","html_url":"https://github.com/hlkysipv/CVE-2026-50751-Check-Point-IKEv1-Authentication-Bypass","description":"CVE-2026-50751 — Check Point IKEv1 Authentication Bypass","stargazers_count":1,"forks_count":1,"language":"Python","updated_at":"2026-06-12T14:31:47Z","pushed_at":"2026-06-12T14:28:27Z","created_at":"2026-06-12T14:25:40Z","topics":[],"owner":{"login":"hlkysipv","html_url":"https://github.com/hlkysipv"},"clone_url":"https://github.com/hlkysipv/CVE-2026-50751-Check-Point-IKEv1-Authentication-Bypass.git","has_code":true,"age_days":13},{"id":1265160414,"name":"CVE-2026-50751---Check-Point-IKEv1-Authentication-Bypass-Exploit","full_name":"fevar54/CVE-2026-50751---Check-Point-IKEv1-Authentication-Bypass-Exploit","html_url":"https://github.com/fevar54/CVE-2026-50751---Check-Point-IKEv1-Authentication-Bypass-Exploit","description":"Vulnerability: Logic flow weakness in Remote Access and Mobile Access ","stargazers_count":1,"forks_count":2,"language":"Python","updated_at":"2026-06-15T10:26:14Z","pushed_at":"2026-06-10T14:27:51Z","created_at":"2026-06-10T14:16:22Z","topics":[],"owner":{"login":"fevar54","html_url":"https://github.com/fevar54"},"clone_url":"https://github.com/fevar54/CVE-2026-50751---Check-Point-IKEv1-Authentication-Bypass-Exploit.git","has_code":true,"age_days":15},{"id":1263011916,"name":"CVE-2026-50751","full_name":"0xBlackash/CVE-2026-50751","html_url":"https://github.com/0xBlackash/CVE-2026-50751","description":"CVE-2026-50751","stargazers_count":1,"forks_count":1,"language":"Python","updated_at":"2026-06-08T20:04:10Z","pushed_at":"2026-06-08T15:21:41Z","created_at":"2026-06-08T14:35:04Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-50751.git","has_code":true,"age_days":17},{"id":1271127953,"name":"CVE-2026-50751","full_name":"bolubey/CVE-2026-50751","html_url":"https://github.com/bolubey/CVE-2026-50751","description":"CVE-2026-50751 Mass Scanner","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-16T11:11:32Z","pushed_at":"2026-06-16T11:09:41Z","created_at":"2026-06-16T11:08:33Z","topics":["cve-2026-50751"],"owner":{"login":"bolubey","html_url":"https://github.com/bolubey"},"clone_url":"https://github.com/bolubey/CVE-2026-50751.git","has_code":true,"age_days":9},{"id":1265234878,"name":"CVE-2026-50751","full_name":"fernstedt/CVE-2026-50751","html_url":"https://github.com/fernstedt/CVE-2026-50751","description":"CVE-2026-50751 Check Point IKEv1 vulnerability scanner","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-10T15:47:05Z","pushed_at":"2026-06-10T15:37:44Z","created_at":"2026-06-10T15:32:15Z","topics":[],"owner":{"login":"fernstedt","html_url":"https://github.com/fernstedt"},"clone_url":"https://github.com/fernstedt/CVE-2026-50751.git","has_code":true,"age_days":15}]},{"cve_id":"CVE-2026-50752","repositories":[{"id":1273784542,"name":"CheckPoint-CVE-Webscanner","full_name":"WadesWeaponShed/CheckPoint-CVE-Webscanner","html_url":"https://github.com/WadesWeaponShed/CheckPoint-CVE-Webscanner","description":"A web version of the bash scripts wrote for Check Point CVE-2026-50751 and CVE-2026-50752.  This uses a local server to scan and make changes using Check Point Web API","stargazers_count":1,"forks_count":0,"language":"JavaScript","updated_at":"2026-06-19T16:19:43Z","pushed_at":"2026-06-19T16:19:40Z","created_at":"2026-06-18T21:45:56Z","topics":[],"owner":{"login":"WadesWeaponShed","html_url":"https://github.com/WadesWeaponShed"},"clone_url":"https://github.com/WadesWeaponShed/CheckPoint-CVE-Webscanner.git","has_code":true,"age_days":6}]},{"cve_id":"CVE-2026-5076","repositories":[{"id":1259992577,"name":"CVE-2026-5076","full_name":"shootcannon/CVE-2026-5076","html_url":"https://github.com/shootcannon/CVE-2026-5076","description":"ARMember Premium \u003c= 7.3.1 Full Admin Account Takeover","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-05T04:00:27Z","pushed_at":"2026-06-05T04:00:23Z","created_at":"2026-06-05T03:57:20Z","topics":[],"owner":{"login":"shootcannon","html_url":"https://github.com/shootcannon"},"clone_url":"https://github.com/shootcannon/CVE-2026-5076.git","has_code":true,"age_days":20},{"id":1259114369,"name":"CVE-2026-5076","full_name":"zycoder0day/CVE-2026-5076","html_url":"https://github.com/zycoder0day/CVE-2026-5076","description":"CVE-2026-5076 — ARMember Premium \u003c= 7.3.1 Insecure Password Reset Mechanism → Full Admin Account Takeover | Proof of Concept","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-04T07:55:52Z","pushed_at":"2026-06-04T07:55:49Z","created_at":"2026-06-04T07:52:14Z","topics":[],"owner":{"login":"zycoder0day","html_url":"https://github.com/zycoder0day"},"clone_url":"https://github.com/zycoder0day/CVE-2026-5076.git","has_code":false,"age_days":21}]},{"cve_id":"CVE-2026-5118","repositories":[{"id":1245540907,"name":"CVE-2026-5118","full_name":"zycoder0day/CVE-2026-5118","html_url":"https://github.com/zycoder0day/CVE-2026-5118","description":"CVE-2026-5118 | Divi Form Builder \u003c= 5.1.2 | Unauthenticated Privilege Escalation via Role Injection","stargazers_count":5,"forks_count":0,"language":"","updated_at":"2026-05-23T20:24:43Z","pushed_at":"2026-05-21T10:15:06Z","created_at":"2026-05-21T10:12:26Z","topics":[],"owner":{"login":"zycoder0day","html_url":"https://github.com/zycoder0day"},"clone_url":"https://github.com/zycoder0day/CVE-2026-5118.git","has_code":false,"age_days":35},{"id":1246129255,"name":"CVE-2026-5118","full_name":"Jenderal92/CVE-2026-5118","html_url":"https://github.com/Jenderal92/CVE-2026-5118","description":"CVE-2026-5118 – Python2 mass exploit for Divi WordPress plugin Unauthenticated administrator registration via admin-ajax.php. Multi‑threaded scanner with nonce extraction.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-30T19:38:00Z","pushed_at":"2026-05-30T19:37:56Z","created_at":"2026-05-21T22:45:59Z","topics":["cve-2026-5118","exploit","mass-exploit","penetration-testing","privilege-escalation","python2","unauthenticated","vulnerability-scanner","wordpress"],"owner":{"login":"Jenderal92","html_url":"https://github.com/Jenderal92"},"clone_url":"https://github.com/Jenderal92/CVE-2026-5118.git","has_code":true,"age_days":34},{"id":1246452583,"name":"CVE-2026-5118","full_name":"Yucaerin/CVE-2026-5118","html_url":"https://github.com/Yucaerin/CVE-2026-5118","description":"Divi Form Builder \u003c= 5.1.2 — Unauthenticated Privilege Escalation via Role Injection","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-05-22T07:58:38Z","pushed_at":"2026-05-22T07:58:34Z","created_at":"2026-05-22T07:53:21Z","topics":[],"owner":{"login":"Yucaerin","html_url":"https://github.com/Yucaerin"},"clone_url":"https://github.com/Yucaerin/CVE-2026-5118.git","has_code":true,"age_days":34},{"id":1245686945,"name":"CVE-2026-5118","full_name":"puj790201-lab/CVE-2026-5118","html_url":"https://github.com/puj790201-lab/CVE-2026-5118","description":"CVE-2026-5118-exp_wordpress_Divi Form Builder","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-21T16:28:37Z","pushed_at":"2026-05-21T16:25:30Z","created_at":"2026-05-21T13:08:02Z","topics":[],"owner":{"login":"puj790201-lab","html_url":"https://github.com/puj790201-lab"},"clone_url":"https://github.com/puj790201-lab/CVE-2026-5118.git","has_code":true,"age_days":35}]},{"cve_id":"CVE-2026-5147","repositories":[{"id":1200170505,"name":"cve-2026-5147-exp","full_name":"lan1oc/cve-2026-5147-exp","html_url":"https://github.com/lan1oc/cve-2026-5147-exp","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-03T05:39:00Z","pushed_at":"2026-04-03T05:38:56Z","created_at":"2026-04-03T05:36:23Z","topics":[],"owner":{"login":"lan1oc","html_url":"https://github.com/lan1oc"},"clone_url":"https://github.com/lan1oc/cve-2026-5147-exp.git","has_code":true,"age_days":83}]},{"cve_id":"CVE-2026-5172","repositories":[{"id":1250960051,"name":"CVE20265172poc","full_name":"lottiedeyan/CVE20265172poc","html_url":"https://github.com/lottiedeyan/CVE20265172poc","description":"CVE-2026-5172: buffer overflow in extract_addresses() on crafted resource record PoC","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-27T06:09:33Z","pushed_at":"2026-05-27T06:09:28Z","created_at":"2026-05-27T05:49:49Z","topics":[],"owner":{"login":"lottiedeyan","html_url":"https://github.com/lottiedeyan"},"clone_url":"https://github.com/lottiedeyan/CVE20265172poc.git","has_code":true,"age_days":29}]},{"cve_id":"CVE-2026-5173","repositories":[{"id":1205730725,"name":"CVE-2026-5173","full_name":"0xBlackash/CVE-2026-5173","html_url":"https://github.com/0xBlackash/CVE-2026-5173","description":"CVE-2026-5173","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-18T23:10:17Z","pushed_at":"2026-04-09T08:37:52Z","created_at":"2026-04-09T08:24:32Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-5173.git","has_code":true,"age_days":77}]},{"cve_id":"CVE-2026-5194","repositories":[{"id":1214860922,"name":"CVE-2026-5194","full_name":"jenniferreire26/CVE-2026-5194","html_url":"https://github.com/jenniferreire26/CVE-2026-5194","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-19T06:30:17Z","pushed_at":"2026-04-19T06:30:13Z","created_at":"2026-04-19T06:30:05Z","topics":[],"owner":{"login":"jenniferreire26","html_url":"https://github.com/jenniferreire26"},"clone_url":"https://github.com/jenniferreire26/CVE-2026-5194.git","has_code":false,"age_days":67}]},{"cve_id":"CVE-2026-5201","repositories":[{"id":1198457756,"name":"CVE-2026-5201","full_name":"kagancapar/CVE-2026-5201","html_url":"https://github.com/kagancapar/CVE-2026-5201","description":"CVE-2026-5201: Heap-based buffer overflow in gdk-pixbuf JPEG loader (CWE-122, CVSS 7.5)","stargazers_count":13,"forks_count":4,"language":"C","updated_at":"2026-06-18T11:41:48Z","pushed_at":"2026-04-01T14:31:09Z","created_at":"2026-04-01T12:51:19Z","topics":[],"owner":{"login":"kagancapar","html_url":"https://github.com/kagancapar"},"clone_url":"https://github.com/kagancapar/CVE-2026-5201.git","has_code":true,"age_days":85}]},{"cve_id":"CVE-2026-5203","repositories":[{"id":1242939611,"name":"CVE-2026-5203","full_name":"CaginKyr/CVE-2026-5203","html_url":"https://github.com/CaginKyr/CVE-2026-5203","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-18T22:55:14Z","pushed_at":"2026-05-18T22:55:11Z","created_at":"2026-05-18T22:47:52Z","topics":[],"owner":{"login":"CaginKyr","html_url":"https://github.com/CaginKyr"},"clone_url":"https://github.com/CaginKyr/CVE-2026-5203.git","has_code":true,"age_days":37}]},{"cve_id":"CVE-2026-5229","repositories":[{"id":1249893778,"name":"CVE-2026-5229","full_name":"xxconi/CVE-2026-5229","html_url":"https://github.com/xxconi/CVE-2026-5229","description":"CVE-2026-5229: Form Notify Auth Bypass via LINE OAuth Callback (CVSS 9.8)","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-26T06:07:11Z","pushed_at":"2026-05-26T06:07:07Z","created_at":"2026-05-26T06:04:07Z","topics":[],"owner":{"login":"xxconi","html_url":"https://github.com/xxconi"},"clone_url":"https://github.com/xxconi/CVE-2026-5229.git","has_code":true,"age_days":30}]},{"cve_id":"CVE-2026-5252","repositories":[{"id":1161746859,"name":"CVE-2026-5252-CVE-POC-ivanti","full_name":"aydin5245/CVE-2026-5252-CVE-POC-ivanti","html_url":"https://github.com/aydin5245/CVE-2026-5252-CVE-POC-ivanti","description":"CVE-2026-5252 CVE POC ivantiiiiiiii","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-02-19T21:53:56Z","pushed_at":"2026-02-19T21:53:52Z","created_at":"2026-02-19T13:23:19Z","topics":[],"owner":{"login":"aydin5245","html_url":"https://github.com/aydin5245"},"clone_url":"https://github.com/aydin5245/CVE-2026-5252-CVE-POC-ivanti.git","has_code":false,"age_days":126}]},{"cve_id":"CVE-2026-5281","repositories":[{"id":1199030213,"name":"CVE-2026-5281-Research-Toolkit","full_name":"umair-aziz025/CVE-2026-5281-Research-Toolkit","html_url":"https://github.com/umair-aziz025/CVE-2026-5281-Research-Toolkit","description":"Chrome WebGPU Use-After-Free (CWE-416)  This toolkit is for security research and defensive verification around CVE-2026-5281. Patched Chrome version: 146.0.7680.178 Potentially vulnerable versions: anything below 146.0.7680.178","stargazers_count":4,"forks_count":5,"language":"Python","updated_at":"2026-06-21T01:44:18Z","pushed_at":"2026-04-02T03:45:14Z","created_at":"2026-04-02T01:51:28Z","topics":[],"owner":{"login":"umair-aziz025","html_url":"https://github.com/umair-aziz025"},"clone_url":"https://github.com/umair-aziz025/CVE-2026-5281-Research-Toolkit.git","has_code":true,"age_days":84},{"id":1202767151,"name":"CVE-2026-5281","full_name":"TheMalwareGuardian/CVE-2026-5281","html_url":"https://github.com/TheMalwareGuardian/CVE-2026-5281","description":"CVE-2026-5281 (Chrome Dawn WebGPU UAF) analysis, lab validation tools, and reproducible environment for vulnerable vs patched builds.","stargazers_count":1,"forks_count":1,"language":"Python","updated_at":"2026-04-07T18:25:27Z","pushed_at":"2026-04-07T18:24:14Z","created_at":"2026-04-06T11:30:06Z","topics":["browser-exploitation","cve-2026-5281","google-chrome"],"owner":{"login":"TheMalwareGuardian","html_url":"https://github.com/TheMalwareGuardian"},"clone_url":"https://github.com/TheMalwareGuardian/CVE-2026-5281.git","has_code":true,"age_days":80},{"id":1246497103,"name":"CVE-2026-5281","full_name":"jaf0rk/CVE-2026-5281","html_url":"https://github.com/jaf0rk/CVE-2026-5281","description":"","stargazers_count":0,"forks_count":0,"language":"HTML","updated_at":"2026-05-26T09:23:13Z","pushed_at":"2026-05-26T09:23:01Z","created_at":"2026-05-22T08:50:43Z","topics":[],"owner":{"login":"jaf0rk","html_url":"https://github.com/jaf0rk"},"clone_url":"https://github.com/jaf0rk/CVE-2026-5281.git","has_code":true,"age_days":34}]},{"cve_id":"CVE-2026-52885","repositories":[{"id":1264237182,"name":"CVE-2026-52885","full_name":"v3s9er/CVE-2026-52885","html_url":"https://github.com/v3s9er/CVE-2026-52885","description":"","stargazers_count":0,"forks_count":0,"language":"PowerShell","updated_at":"2026-06-09T17:43:24Z","pushed_at":"2026-06-09T17:43:14Z","created_at":"2026-06-09T17:37:30Z","topics":[],"owner":{"login":"v3s9er","html_url":"https://github.com/v3s9er"},"clone_url":"https://github.com/v3s9er/CVE-2026-52885.git","has_code":true,"age_days":16}]},{"cve_id":"CVE-2026-52943","repositories":[{"id":1271086144,"name":"CVE-2026-52943","full_name":"vn-lazyming/CVE-2026-52943","html_url":"https://github.com/vn-lazyming/CVE-2026-52943","description":"This is a Linux Kernel Local Privilege Escalation PoC code for CVE-2026-52943 a use-after-free in skbuff.c, my first 0day found by me in linux kernel","stargazers_count":2,"forks_count":0,"language":"C","updated_at":"2026-06-24T10:06:28Z","pushed_at":"2026-06-24T08:17:08Z","created_at":"2026-06-16T10:16:55Z","topics":[],"owner":{"login":"vn-lazyming","html_url":"https://github.com/vn-lazyming"},"clone_url":"https://github.com/vn-lazyming/CVE-2026-52943.git","has_code":true,"age_days":9}]},{"cve_id":"CVE-2026-53075","repositories":[{"id":1279783395,"name":"CVE-2026-53075poc","full_name":"lottiedeyan/CVE-2026-53075poc","html_url":"https://github.com/lottiedeyan/CVE-2026-53075poc","description":"POC of CVE-2026-53075","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-25T02:33:40Z","pushed_at":"2026-06-25T02:33:35Z","created_at":"2026-06-25T02:32:06Z","topics":[],"owner":{"login":"lottiedeyan","html_url":"https://github.com/lottiedeyan"},"clone_url":"https://github.com/lottiedeyan/CVE-2026-53075poc.git","has_code":false,"age_days":0}]},{"cve_id":"CVE-2026-53435","repositories":[{"id":1267449244,"name":"CVE-2026-53435","full_name":"AmesianX/CVE-2026-53435","html_url":"https://github.com/AmesianX/CVE-2026-53435","description":"An offensive security researcher + an AI vs. a fresh n-day: building the first public PoC for CVE-2026-53435 in one Friday night. Raw 8h20m log inside.","stargazers_count":8,"forks_count":2,"language":"Python","updated_at":"2026-06-24T15:08:02Z","pushed_at":"2026-06-12T14:53:33Z","created_at":"2026-06-12T14:50:22Z","topics":[],"owner":{"login":"AmesianX","html_url":"https://github.com/AmesianX"},"clone_url":"https://github.com/AmesianX/CVE-2026-53435.git","has_code":true,"age_days":13}]},{"cve_id":"CVE-2026-53519","repositories":[{"id":1270491756,"name":"CVE-2026-53519-PoC","full_name":"tar-xz/CVE-2026-53519-PoC","html_url":"https://github.com/tar-xz/CVE-2026-53519-PoC","description":"PoC exploit for CVE-2026-53519.","stargazers_count":1,"forks_count":2,"language":"Python","updated_at":"2026-06-25T04:20:30Z","pushed_at":"2026-06-16T17:36:37Z","created_at":"2026-06-15T19:06:37Z","topics":[],"owner":{"login":"tar-xz","html_url":"https://github.com/tar-xz"},"clone_url":"https://github.com/tar-xz/CVE-2026-53519-PoC.git","has_code":true,"age_days":10}]},{"cve_id":"CVE-2026-53582","repositories":[{"id":1271141632,"name":"CVE-2026-53582","full_name":"eev4n/CVE-2026-53582","html_url":"https://github.com/eev4n/CVE-2026-53582","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-16T11:25:59Z","pushed_at":"2026-06-16T11:25:55Z","created_at":"2026-06-16T11:25:21Z","topics":[],"owner":{"login":"eev4n","html_url":"https://github.com/eev4n"},"clone_url":"https://github.com/eev4n/CVE-2026-53582.git","has_code":false,"age_days":9}]},{"cve_id":"CVE-2026-5364","repositories":[{"id":1250244796,"name":"CVE-2026-5364","full_name":"xxconi/CVE-2026-5364","html_url":"https://github.com/xxconi/CVE-2026-5364","description":"CVE-2026-5364 is a CVSS 8.1 (High) Unauthenticated Arbitrary File Upload vulnerability in the Drag and Drop File Upload for Contact Form 7","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-26T13:12:32Z","pushed_at":"2026-05-26T13:11:42Z","created_at":"2026-05-26T12:50:05Z","topics":[],"owner":{"login":"xxconi","html_url":"https://github.com/xxconi"},"clone_url":"https://github.com/xxconi/CVE-2026-5364.git","has_code":true,"age_days":30}]},{"cve_id":"CVE-2026-53646","repositories":[{"id":1267207871,"name":"FOSKiller","full_name":"7megaumka7/FOSKiller","html_url":"https://github.com/7megaumka7/FOSKiller","description":"FOSSBilling CVE-2026-53647 \u0026 CVE-2026-53646 PoC — Unauthenticated API key disclosure \u0026 password reset token reuse","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-25T14:07:35Z","pushed_at":"2026-06-12T10:32:51Z","created_at":"2026-06-12T10:20:37Z","topics":[],"owner":{"login":"7megaumka7","html_url":"https://github.com/7megaumka7"},"clone_url":"https://github.com/7megaumka7/FOSKiller.git","has_code":true,"age_days":13}]},{"cve_id":"CVE-2026-53647","repositories":[{"id":1267207871,"name":"FOSKiller","full_name":"7megaumka7/FOSKiller","html_url":"https://github.com/7megaumka7/FOSKiller","description":"FOSSBilling CVE-2026-53647 \u0026 CVE-2026-53646 PoC — Unauthenticated API key disclosure \u0026 password reset token reuse","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-25T14:07:35Z","pushed_at":"2026-06-12T10:32:51Z","created_at":"2026-06-12T10:20:37Z","topics":[],"owner":{"login":"7megaumka7","html_url":"https://github.com/7megaumka7"},"clone_url":"https://github.com/7megaumka7/FOSKiller.git","has_code":true,"age_days":13}]},{"cve_id":"CVE-2026-53787","repositories":[{"id":1269310580,"name":"CVE-2026-53787-POC-","full_name":"webshellseo8/CVE-2026-53787-POC-","html_url":"https://github.com/webshellseo8/CVE-2026-53787-POC-","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-14T14:59:23Z","pushed_at":"2026-06-14T14:59:19Z","created_at":"2026-06-14T14:58:41Z","topics":[],"owner":{"login":"webshellseo8","html_url":"https://github.com/webshellseo8"},"clone_url":"https://github.com/webshellseo8/CVE-2026-53787-POC-.git","has_code":false,"age_days":11}]},{"cve_id":"CVE-2026-54088","repositories":[{"id":1258235102,"name":"CVE-2026-54088-poc","full_name":"Saku0512/CVE-2026-54088-poc","html_url":"https://github.com/Saku0512/CVE-2026-54088-poc","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-12T06:08:28Z","pushed_at":"2026-06-12T06:07:11Z","created_at":"2026-06-03T11:49:20Z","topics":[],"owner":{"login":"Saku0512","html_url":"https://github.com/Saku0512"},"clone_url":"https://github.com/Saku0512/CVE-2026-54088-poc.git","has_code":true,"age_days":22}]},{"cve_id":"CVE-2026-5411","repositories":[{"id":1272108593,"name":"CVE-2026-5411","full_name":"izxci/CVE-2026-5411","html_url":"https://github.com/izxci/CVE-2026-5411","description":"CVE-2026-5411 WP Captcha PRO","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-17T09:47:30Z","pushed_at":"2026-06-17T09:47:26Z","created_at":"2026-06-17T09:47:24Z","topics":[],"owner":{"login":"izxci","html_url":"https://github.com/izxci"},"clone_url":"https://github.com/izxci/CVE-2026-5411.git","has_code":false,"age_days":8}]},{"cve_id":"CVE-2026-5415","repositories":[{"id":1272116450,"name":"CVE-2026-5415","full_name":"izxci/CVE-2026-5415","html_url":"https://github.com/izxci/CVE-2026-5415","description":"CVE-2026-5415 WP Captcha PRO Authenticated Authentication Bypass Exploit","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-17T09:56:36Z","pushed_at":"2026-06-17T09:56:31Z","created_at":"2026-06-17T09:56:07Z","topics":[],"owner":{"login":"izxci","html_url":"https://github.com/izxci"},"clone_url":"https://github.com/izxci/CVE-2026-5415.git","has_code":true,"age_days":8}]},{"cve_id":"CVE-2026-5426","repositories":[{"id":1249952135,"name":"CVE-2026-5426","full_name":"HORKimhab/CVE-2026-5426","html_url":"https://github.com/HORKimhab/CVE-2026-5426","description":"CVE-2026-5426","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-17T02:00:17Z","pushed_at":"2026-06-17T02:00:08Z","created_at":"2026-05-26T07:08:21Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-5426.git","has_code":true,"age_days":30}]},{"cve_id":"CVE-2026-54316","repositories":[{"id":1273293218,"name":"cve-2026-54316-lab","full_name":"InertFluid/cve-2026-54316-lab","html_url":"https://github.com/InertFluid/cve-2026-54316-lab","description":"Reproduction lab for CVE-2026-54316 (Claude Code WebFetch huggingface.co bare-hostname permission bypass / exfiltration)","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-19T06:11:11Z","pushed_at":"2026-06-19T06:11:05Z","created_at":"2026-06-18T11:36:59Z","topics":[],"owner":{"login":"InertFluid","html_url":"https://github.com/InertFluid"},"clone_url":"https://github.com/InertFluid/cve-2026-54316-lab.git","has_code":true,"age_days":7}]},{"cve_id":"CVE-2026-54337","repositories":[{"id":1274931595,"name":"CVE-2026-54337-PoC","full_name":"4qu4r1um/CVE-2026-54337-PoC","html_url":"https://github.com/4qu4r1um/CVE-2026-54337-PoC","description":"CVE-2026-54337 - Unauthenticated File Write/Overwrite PoC for fireshare \u003c= 1.16.3","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-20T04:47:06Z","pushed_at":"2026-06-20T04:47:01Z","created_at":"2026-06-20T03:49:13Z","topics":[],"owner":{"login":"4qu4r1um","html_url":"https://github.com/4qu4r1um"},"clone_url":"https://github.com/4qu4r1um/CVE-2026-54337-PoC.git","has_code":false,"age_days":5}]},{"cve_id":"CVE-2026-54420","repositories":[{"id":1270878342,"name":"CVE-2026-54420","full_name":"HORKimhab/CVE-2026-54420","html_url":"https://github.com/HORKimhab/CVE-2026-54420","description":"CVE-2026-54420","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-17T04:42:00Z","pushed_at":"2026-06-16T06:34:49Z","created_at":"2026-06-16T06:09:03Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-54420.git","has_code":true,"age_days":9},{"id":1273492795,"name":"CVE-2026-54420-LiteSpeed-Symlink-Exploit","full_name":"fevar54/CVE-2026-54420-LiteSpeed-Symlink-Exploit","html_url":"https://github.com/fevar54/CVE-2026-54420-LiteSpeed-Symlink-Exploit","description":"A vulnerability in LiteSpeed cPanel Plugin before 2.4.8 and WHM Plugin before 5.3.2.0 mishandles symlinks provided by a user with FTP or web shell access on a shared hosting server running CloudLinux/CageFS.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-18T15:24:37Z","pushed_at":"2026-06-18T15:23:58Z","created_at":"2026-06-18T15:18:55Z","topics":[],"owner":{"login":"fevar54","html_url":"https://github.com/fevar54"},"clone_url":"https://github.com/fevar54/CVE-2026-54420-LiteSpeed-Symlink-Exploit.git","has_code":true,"age_days":7},{"id":1270951478,"name":"litespeed-cpanel-cve-2026-54420-fix","full_name":"mahfuzreham/litespeed-cpanel-cve-2026-54420-fix","html_url":"https://github.com/mahfuzreham/litespeed-cpanel-cve-2026-54420-fix","description":"","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-16T07:56:44Z","pushed_at":"2026-06-16T07:56:40Z","created_at":"2026-06-16T07:39:09Z","topics":[],"owner":{"login":"mahfuzreham","html_url":"https://github.com/mahfuzreham"},"clone_url":"https://github.com/mahfuzreham/litespeed-cpanel-cve-2026-54420-fix.git","has_code":true,"age_days":9},{"id":1270930460,"name":"litespeed-cpanel-cve-2026-54420-fix","full_name":"Resellnom/litespeed-cpanel-cve-2026-54420-fix","html_url":"https://github.com/Resellnom/litespeed-cpanel-cve-2026-54420-fix","description":"","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-16T07:34:50Z","pushed_at":"2026-06-16T07:34:45Z","created_at":"2026-06-16T07:14:20Z","topics":[],"owner":{"login":"Resellnom","html_url":"https://github.com/Resellnom"},"clone_url":"https://github.com/Resellnom/litespeed-cpanel-cve-2026-54420-fix.git","has_code":true,"age_days":9}]},{"cve_id":"CVE-2026-54596","repositories":[{"id":1270609405,"name":"CVE-2026-54596","full_name":"iltosec/CVE-2026-54596","html_url":"https://github.com/iltosec/CVE-2026-54596","description":"CVE-2026-54596 - Authenticated SQL Injection via recurring_invoice_frequency Parameter Enables Full Database Exfiltration","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-15T22:20:00Z","pushed_at":"2026-06-15T22:19:56Z","created_at":"2026-06-15T22:09:02Z","topics":[],"owner":{"login":"iltosec","html_url":"https://github.com/iltosec"},"clone_url":"https://github.com/iltosec/CVE-2026-54596.git","has_code":true,"age_days":9}]},{"cve_id":"CVE-2026-54597","repositories":[{"id":1270616565,"name":"CVE-2026-54597","full_name":"iltosec/CVE-2026-54597","html_url":"https://github.com/iltosec/CVE-2026-54597","description":"CVE-2026-54597 - Authenticated Time-Based Blind SQL Injection in ITFlow","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-15T22:24:29Z","pushed_at":"2026-06-15T22:24:25Z","created_at":"2026-06-15T22:22:14Z","topics":[],"owner":{"login":"iltosec","html_url":"https://github.com/iltosec"},"clone_url":"https://github.com/iltosec/CVE-2026-54597.git","has_code":true,"age_days":9}]},{"cve_id":"CVE-2026-5465","repositories":[{"id":1203910049,"name":"CVE-2026-5465","full_name":"kaleth4/CVE-2026-5465","html_url":"https://github.com/kaleth4/CVE-2026-5465","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-07T13:59:48Z","pushed_at":"2026-04-07T13:59:42Z","created_at":"2026-04-07T13:59:32Z","topics":[],"owner":{"login":"kaleth4","html_url":"https://github.com/kaleth4"},"clone_url":"https://github.com/kaleth4/CVE-2026-5465.git","has_code":false,"age_days":79}]},{"cve_id":"CVE-2026-54686","repositories":[{"id":1270817997,"name":"CVE-2026-54686-poc","full_name":"Saku0512/CVE-2026-54686-poc","html_url":"https://github.com/Saku0512/CVE-2026-54686-poc","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-16T05:32:51Z","pushed_at":"2026-06-16T05:30:43Z","created_at":"2026-06-16T04:41:10Z","topics":[],"owner":{"login":"Saku0512","html_url":"https://github.com/Saku0512"},"clone_url":"https://github.com/Saku0512/CVE-2026-54686-poc.git","has_code":true,"age_days":9}]},{"cve_id":"CVE-2026-54761","repositories":[{"id":1274403754,"name":"CVE-2026-54761-poc","full_name":"Saku0512/CVE-2026-54761-poc","html_url":"https://github.com/Saku0512/CVE-2026-54761-poc","description":"","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-19T13:38:56Z","pushed_at":"2026-06-19T13:38:49Z","created_at":"2026-06-19T13:29:44Z","topics":[],"owner":{"login":"Saku0512","html_url":"https://github.com/Saku0512"},"clone_url":"https://github.com/Saku0512/CVE-2026-54761-poc.git","has_code":true,"age_days":6}]},{"cve_id":"CVE-2026-54806","repositories":[{"id":1277143701,"name":"CVE-2026-54806","full_name":"joshuavanderpoll/CVE-2026-54806","html_url":"https://github.com/joshuavanderpoll/CVE-2026-54806","description":"Unauthenticated PHP Object Injection to RCE in WP Activity Log \u003c= 5.6.3.1 (CVE-2026-54806)","stargazers_count":5,"forks_count":4,"language":"Python","updated_at":"2026-06-25T16:57:07Z","pushed_at":"2026-06-22T16:12:29Z","created_at":"2026-06-22T16:11:25Z","topics":["cve","cve-2026-54806","deserialization","exploit","php-object-injection","poc","proof-of-concept","rce","remote-code-execution","unauthenticated","wordpress","wordpress-security","wp-activity-log"],"owner":{"login":"joshuavanderpoll","html_url":"https://github.com/joshuavanderpoll"},"clone_url":"https://github.com/joshuavanderpoll/CVE-2026-54806.git","has_code":true,"age_days":3}]},{"cve_id":"CVE-2026-5513","repositories":[{"id":1269587004,"name":"CVE-2026-5513","full_name":"87achrafg-stack/CVE-2026-5513","html_url":"https://github.com/87achrafg-stack/CVE-2026-5513","description":"CVE-2026-5513 — Bookly ≤ 27.2 Stored XSS via Cookie","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-17T14:13:25Z","pushed_at":"2026-06-17T14:10:52Z","created_at":"2026-06-14T22:33:14Z","topics":[],"owner":{"login":"87achrafg-stack","html_url":"https://github.com/87achrafg-stack"},"clone_url":"https://github.com/87achrafg-stack/CVE-2026-5513.git","has_code":true,"age_days":10},{"id":1269017748,"name":"CVE-2026-5513","full_name":"Xaanziu/CVE-2026-5513","html_url":"https://github.com/Xaanziu/CVE-2026-5513","description":"CVE-2026-5513: Bookly \u003c= 27.2 Stored XSS via Cookie (Unauthenticated)","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-14T07:54:22Z","pushed_at":"2026-06-14T07:54:18Z","created_at":"2026-06-14T07:53:56Z","topics":[],"owner":{"login":"Xaanziu","html_url":"https://github.com/Xaanziu"},"clone_url":"https://github.com/Xaanziu/CVE-2026-5513.git","has_code":true,"age_days":11}]},{"cve_id":"CVE-2026-55168","repositories":[{"id":1271468835,"name":"CVE-2026-55168","full_name":"KovachVL/CVE-2026-55168","html_url":"https://github.com/KovachVL/CVE-2026-55168","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-16T17:41:52Z","pushed_at":"2026-06-16T17:41:48Z","created_at":"2026-06-16T17:35:30Z","topics":[],"owner":{"login":"KovachVL","html_url":"https://github.com/KovachVL"},"clone_url":"https://github.com/KovachVL/CVE-2026-55168.git","has_code":true,"age_days":9}]},{"cve_id":"CVE-2026-55200","repositories":[{"id":1278497949,"name":"CVE-2026-55200","full_name":"0xBlackash/CVE-2026-55200","html_url":"https://github.com/0xBlackash/CVE-2026-55200","description":"CVE-2026-55200","stargazers_count":8,"forks_count":1,"language":"C","updated_at":"2026-06-25T16:15:56Z","pushed_at":"2026-06-23T21:42:10Z","created_at":"2026-06-23T21:13:14Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-55200.git","has_code":true,"age_days":1}]},{"cve_id":"CVE-2026-55584","repositories":[{"id":1280587054,"name":"CVE-2026-55584","full_name":"mirackayikci/CVE-2026-55584","html_url":"https://github.com/mirackayikci/CVE-2026-55584","description":"CVE-2026-55584 — phpSysInfo IP Allowlist Bypass","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-25T18:44:10Z","pushed_at":"2026-06-25T18:44:05Z","created_at":"2026-06-25T18:29:12Z","topics":[],"owner":{"login":"mirackayikci","html_url":"https://github.com/mirackayikci"},"clone_url":"https://github.com/mirackayikci/CVE-2026-55584.git","has_code":false,"age_days":0}]},{"cve_id":"CVE-2026-56111","repositories":[{"id":1279602133,"name":"CVE-2026-56111","full_name":"Christbowel/CVE-2026-56111","html_url":"https://github.com/Christbowel/CVE-2026-56111","description":"Proof of concept for CVE-2026-56111, an out-of-bounds write in the M421 G-code handler of Marlin Firmware","stargazers_count":1,"forks_count":0,"language":"C","updated_at":"2026-06-24T21:14:25Z","pushed_at":"2026-06-24T21:04:24Z","created_at":"2026-06-24T21:00:03Z","topics":[],"owner":{"login":"Christbowel","html_url":"https://github.com/Christbowel"},"clone_url":"https://github.com/Christbowel/CVE-2026-56111.git","has_code":true,"age_days":0}]},{"cve_id":"CVE-2026-5615","repositories":[{"id":1232058385,"name":"CVE-2026-5615","full_name":"sahmsec/CVE-2026-5615","html_url":"https://github.com/sahmsec/CVE-2026-5615","description":"CVE-2026-5615","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-07T15:03:42Z","pushed_at":"2026-05-07T14:53:53Z","created_at":"2026-05-07T14:48:01Z","topics":[],"owner":{"login":"sahmsec","html_url":"https://github.com/sahmsec"},"clone_url":"https://github.com/sahmsec/CVE-2026-5615.git","has_code":true,"age_days":49}]},{"cve_id":"CVE-2026-5682","repositories":[{"id":1195903567,"name":"meesho-android-improper-encryption-cve-2026-5682","full_name":"honestcorrupt/meesho-android-improper-encryption-cve-2026-5682","html_url":"https://github.com/honestcorrupt/meesho-android-improper-encryption-cve-2026-5682","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-11T06:04:45Z","pushed_at":"2026-03-30T07:19:28Z","created_at":"2026-03-30T07:15:05Z","topics":[],"owner":{"login":"honestcorrupt","html_url":"https://github.com/honestcorrupt"},"clone_url":"https://github.com/honestcorrupt/meesho-android-improper-encryption-cve-2026-5682.git","has_code":false,"age_days":87}]},{"cve_id":"CVE-2026-5718","repositories":[{"id":1233162325,"name":"cve-2026-5718","full_name":"kyukazamiqq/cve-2026-5718","html_url":"https://github.com/kyukazamiqq/cve-2026-5718","description":"","stargazers_count":1,"forks_count":0,"language":"PHP","updated_at":"2026-05-22T02:45:32Z","pushed_at":"2026-05-08T16:54:24Z","created_at":"2026-05-08T16:54:03Z","topics":[],"owner":{"login":"kyukazamiqq","html_url":"https://github.com/kyukazamiqq"},"clone_url":"https://github.com/kyukazamiqq/cve-2026-5718.git","has_code":true,"age_days":48},{"id":1249905178,"name":"CVE-2026-5718","full_name":"xxconi/CVE-2026-5718","html_url":"https://github.com/xxconi/CVE-2026-5718","description":"CVE-2026-5718: Unauthenticated File Upload To RCE in DnD Upload CF7 Plugin","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-26T06:22:51Z","pushed_at":"2026-05-26T06:22:45Z","created_at":"2026-05-26T06:19:35Z","topics":[],"owner":{"login":"xxconi","html_url":"https://github.com/xxconi"},"clone_url":"https://github.com/xxconi/CVE-2026-5718.git","has_code":true,"age_days":30},{"id":1236384784,"name":"CVE-2026-5718-Lab","full_name":"rootdirective-sec/CVE-2026-5718-Lab","html_url":"https://github.com/rootdirective-sec/CVE-2026-5718-Lab","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-08T14:36:39Z","pushed_at":"2026-05-15T08:54:45Z","created_at":"2026-05-12T07:43:29Z","topics":[],"owner":{"login":"rootdirective-sec","html_url":"https://github.com/rootdirective-sec"},"clone_url":"https://github.com/rootdirective-sec/CVE-2026-5718-Lab.git","has_code":true,"age_days":44},{"id":1265262572,"name":"CVE-2026-5718-PR-V-EXPLO-T","full_name":"xxconi/CVE-2026-5718-PR-V-EXPLO-T","html_url":"https://github.com/xxconi/CVE-2026-5718-PR-V-EXPLO-T","description":"WORDPRESS","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-10T16:07:04Z","pushed_at":"2026-06-10T16:01:56Z","created_at":"2026-06-10T16:01:31Z","topics":[],"owner":{"login":"xxconi","html_url":"https://github.com/xxconi"},"clone_url":"https://github.com/xxconi/CVE-2026-5718-PR-V-EXPLO-T.git","has_code":false,"age_days":15}]},{"cve_id":"CVE-2026-5724","repositories":[{"id":1214140974,"name":"CVE-2026-5724","full_name":"tibrn/CVE-2026-5724","html_url":"https://github.com/tibrn/CVE-2026-5724","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-03T07:56:25Z","pushed_at":"2026-05-03T07:55:38Z","created_at":"2026-04-18T07:03:58Z","topics":[],"owner":{"login":"tibrn","html_url":"https://github.com/tibrn"},"clone_url":"https://github.com/tibrn/CVE-2026-5724.git","has_code":false,"age_days":68}]},{"cve_id":"CVE-2026-5760","repositories":[{"id":1199613234,"name":"SGLang-0.5.9-RCE","full_name":"Stuub/SGLang-0.5.9-RCE","html_url":"https://github.com/Stuub/SGLang-0.5.9-RCE","description":"Proof of Concept exploitation of CVE-2026-5760 - RCE in SGLang 0.5.9 via malicious GGUF","stargazers_count":5,"forks_count":2,"language":"Python","updated_at":"2026-06-22T11:05:00Z","pushed_at":"2026-04-20T14:38:12Z","created_at":"2026-04-02T14:24:03Z","topics":["cve","cve-2026-5760","sglang"],"owner":{"login":"Stuub","html_url":"https://github.com/Stuub"},"clone_url":"https://github.com/Stuub/SGLang-0.5.9-RCE.git","has_code":true,"age_days":84}]},{"cve_id":"CVE-2026-5865","repositories":[{"id":1234361298,"name":"v8-poc-CVE-2026-5865","full_name":"Crihexe/v8-poc-CVE-2026-5865","html_url":"https://github.com/Crihexe/v8-poc-CVE-2026-5865","description":"","stargazers_count":5,"forks_count":0,"language":"JavaScript","updated_at":"2026-05-27T11:08:05Z","pushed_at":"2026-05-10T14:22:59Z","created_at":"2026-05-10T04:44:01Z","topics":[],"owner":{"login":"Crihexe","html_url":"https://github.com/Crihexe"},"clone_url":"https://github.com/Crihexe/v8-poc-CVE-2026-5865.git","has_code":true,"age_days":46}]},{"cve_id":"CVE-2026-5950","repositories":[{"id":1268800875,"name":"cve-2026-5950-bind9-resolver-dos","full_name":"billybaraja/cve-2026-5950-bind9-resolver-dos","html_url":"https://github.com/billybaraja/cve-2026-5950-bind9-resolver-dos","description":"Defensive research notes for CVE-2026-5950, a BIND 9 resolver DoS vulnerability credited to Billy Baraja (BielraX).","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-16T05:43:02Z","pushed_at":"2026-06-14T00:28:16Z","created_at":"2026-06-14T00:28:02Z","topics":["bind9","bug-bounty","cve","cve-2026-5950","dns-security","security-advisory"],"owner":{"login":"billybaraja","html_url":"https://github.com/billybaraja"},"clone_url":"https://github.com/billybaraja/cve-2026-5950-bind9-resolver-dos.git","has_code":true,"age_days":11}]},{"cve_id":"CVE-2026-6009","repositories":[{"id":1246826415,"name":"CVE-2026-6009","full_name":"Pumila03/CVE-2026-6009","html_url":"https://github.com/Pumila03/CVE-2026-6009","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-23T21:08:44Z","pushed_at":"2026-05-23T21:08:41Z","created_at":"2026-05-22T15:43:22Z","topics":[],"owner":{"login":"Pumila03","html_url":"https://github.com/Pumila03"},"clone_url":"https://github.com/Pumila03/CVE-2026-6009.git","has_code":true,"age_days":34}]},{"cve_id":"CVE-2026-6018","repositories":[{"id":1218647306,"name":"CVE-2026-6018-9-Local-Privilege-Escalation-Chain","full_name":"m0r4a/CVE-2026-6018-9-Local-Privilege-Escalation-Chain","html_url":"https://github.com/m0r4a/CVE-2026-6018-9-Local-Privilege-Escalation-Chain","description":"","stargazers_count":1,"forks_count":1,"language":"C","updated_at":"2026-04-24T01:28:37Z","pushed_at":"2026-04-24T01:28:33Z","created_at":"2026-04-23T04:41:44Z","topics":[],"owner":{"login":"m0r4a","html_url":"https://github.com/m0r4a"},"clone_url":"https://github.com/m0r4a/CVE-2026-6018-9-Local-Privilege-Escalation-Chain.git","has_code":true,"age_days":63}]},{"cve_id":"CVE-2026-6042","repositories":[{"id":1210575998,"name":"CVE-2026-6042-PoC","full_name":"jensnesten/CVE-2026-6042-PoC","html_url":"https://github.com/jensnesten/CVE-2026-6042-PoC","description":"Proof of concept and end-to-end test of Algorithmic Complexity DoS in musl libc 0.8.0-1.2.6 assigned CVE-2026-6042","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-04-16T17:56:55Z","pushed_at":"2026-04-16T17:56:51Z","created_at":"2026-04-14T14:49:26Z","topics":["denial-of-service","gb18030","iconv","musl-libc"],"owner":{"login":"jensnesten","html_url":"https://github.com/jensnesten"},"clone_url":"https://github.com/jensnesten/CVE-2026-6042-PoC.git","has_code":true,"age_days":72}]},{"cve_id":"CVE-2026-6043","repositories":[{"id":1200072807,"name":"p4wned","full_name":"flyingllama87/p4wned","html_url":"https://github.com/flyingllama87/p4wned","description":"Perforce security research and tools - CVE-2026-6043","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-06-10T03:48:32Z","pushed_at":"2026-06-07T07:58:25Z","created_at":"2026-04-03T02:24:42Z","topics":["metasploit","nodejs","nuclei-templates","offsec","p4d","perforce","python3","scanner"],"owner":{"login":"flyingllama87","html_url":"https://github.com/flyingllama87"},"clone_url":"https://github.com/flyingllama87/p4wned.git","has_code":true,"age_days":83}]},{"cve_id":"CVE-2026-6111","repositories":[{"id":1174303567,"name":"CVE-2026-6111","full_name":"MonsterWsr-hub/CVE-2026-6111","html_url":"https://github.com/MonsterWsr-hub/CVE-2026-6111","description":"this is poc test job","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-09T01:54:15Z","pushed_at":"2026-03-09T01:22:08Z","created_at":"2026-03-06T09:39:02Z","topics":[],"owner":{"login":"MonsterWsr-hub","html_url":"https://github.com/MonsterWsr-hub"},"clone_url":"https://github.com/MonsterWsr-hub/CVE-2026-6111.git","has_code":true,"age_days":111}]},{"cve_id":"CVE-2026-6130","repositories":[{"id":1268335092,"name":"local-mcp","full_name":"fan-67/local-mcp","html_url":"https://github.com/fan-67/local-mcp","description":"A lightweight stdio-based MCP server for local file system operations — read, write, edit, search, exec for AI assistants. Specially optimized for Chatbox: bat-bypass for exec (CVE-2026-6130), b64 encoding to eliminate escaping issues, and multi-pattern regex for precise code block targeting.","stargazers_count":0,"forks_count":0,"language":"JavaScript","updated_at":"2026-06-14T18:37:21Z","pushed_at":"2026-06-14T18:37:18Z","created_at":"2026-06-13T12:10:42Z","topics":[],"owner":{"login":"fan-67","html_url":"https://github.com/fan-67"},"clone_url":"https://github.com/fan-67/local-mcp.git","has_code":true,"age_days":12}]},{"cve_id":"CVE-2026-6145","repositories":[{"id":1238892415,"name":"CVE-2026-6145","full_name":"Hann1bl3L3ct3r/CVE-2026-6145","html_url":"https://github.com/Hann1bl3L3ct3r/CVE-2026-6145","description":"User Registration \u0026 Membership \u003c= 5.1.5 - Unauthenticated Missing Authorization to Admin Approval Bypass via 'action' Parameter","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-14T14:59:41Z","pushed_at":"2026-05-14T14:59:37Z","created_at":"2026-05-14T14:54:59Z","topics":[],"owner":{"login":"Hann1bl3L3ct3r","html_url":"https://github.com/Hann1bl3L3ct3r"},"clone_url":"https://github.com/Hann1bl3L3ct3r/CVE-2026-6145.git","has_code":true,"age_days":42}]},{"cve_id":"CVE-2026-6182","repositories":[{"id":1201634103,"name":"CVE-2026-6182-SQLI-auth","full_name":"Xmyronn/CVE-2026-6182-SQLI-auth","html_url":"https://github.com/Xmyronn/CVE-2026-6182-SQLI-auth","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-13T11:47:06Z","pushed_at":"2026-04-08T22:04:37Z","created_at":"2026-04-05T00:09:35Z","topics":[],"owner":{"login":"Xmyronn","html_url":"https://github.com/Xmyronn"},"clone_url":"https://github.com/Xmyronn/CVE-2026-6182-SQLI-auth.git","has_code":false,"age_days":81}]},{"cve_id":"CVE-2026-6183","repositories":[{"id":1201647740,"name":"CVE-2026-6183-SQLI","full_name":"Xmyronn/CVE-2026-6183-SQLI","html_url":"https://github.com/Xmyronn/CVE-2026-6183-SQLI","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-13T11:46:32Z","pushed_at":"2026-04-08T22:03:50Z","created_at":"2026-04-05T00:48:35Z","topics":[],"owner":{"login":"Xmyronn","html_url":"https://github.com/Xmyronn"},"clone_url":"https://github.com/Xmyronn/CVE-2026-6183-SQLI.git","has_code":false,"age_days":81}]},{"cve_id":"CVE-2026-6184","repositories":[{"id":1201655645,"name":"CVE-2026-6184-stored-XSS","full_name":"Xmyronn/CVE-2026-6184-stored-XSS","html_url":"https://github.com/Xmyronn/CVE-2026-6184-stored-XSS","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-13T11:45:35Z","pushed_at":"2026-04-08T22:02:58Z","created_at":"2026-04-05T01:10:35Z","topics":[],"owner":{"login":"Xmyronn","html_url":"https://github.com/Xmyronn"},"clone_url":"https://github.com/Xmyronn/CVE-2026-6184-stored-XSS.git","has_code":false,"age_days":81}]},{"cve_id":"CVE-2026-6201","repositories":[{"id":1202324850,"name":"CVE-2026-6201-IDOR","full_name":"Xmyronn/CVE-2026-6201-IDOR","html_url":"https://github.com/Xmyronn/CVE-2026-6201-IDOR","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-13T11:44:15Z","pushed_at":"2026-04-08T21:59:27Z","created_at":"2026-04-05T22:28:22Z","topics":[],"owner":{"login":"Xmyronn","html_url":"https://github.com/Xmyronn"},"clone_url":"https://github.com/Xmyronn/CVE-2026-6201-IDOR.git","has_code":false,"age_days":80}]},{"cve_id":"CVE-2026-6227","repositories":[{"id":1209635199,"name":"CVE-2026-6227","full_name":"Pixel-DefaultBR/CVE-2026-6227","html_url":"https://github.com/Pixel-DefaultBR/CVE-2026-6227","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-13T16:17:33Z","pushed_at":"2026-04-13T16:22:31Z","created_at":"2026-04-13T16:16:54Z","topics":[],"owner":{"login":"Pixel-DefaultBR","html_url":"https://github.com/Pixel-DefaultBR"},"clone_url":"https://github.com/Pixel-DefaultBR/CVE-2026-6227.git","has_code":false,"age_days":73}]},{"cve_id":"CVE-2026-6271","repositories":[{"id":1249885595,"name":"CVE-2026-6271","full_name":"xxconi/CVE-2026-6271","html_url":"https://github.com/xxconi/CVE-2026-6271","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-26T05:56:17Z","pushed_at":"2026-05-26T05:56:14Z","created_at":"2026-05-26T05:52:33Z","topics":[],"owner":{"login":"xxconi","html_url":"https://github.com/xxconi"},"clone_url":"https://github.com/xxconi/CVE-2026-6271.git","has_code":true,"age_days":30}]},{"cve_id":"CVE-2026-6274","repositories":[{"id":1235609933,"name":"CVE-2026-6274","full_name":"bugresearch/CVE-2026-6274","html_url":"https://github.com/bugresearch/CVE-2026-6274","description":"CVE-2026-6274 - Redline WR3200 Broken Authentication","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-05T08:13:14Z","pushed_at":"2026-05-11T13:57:50Z","created_at":"2026-05-11T13:40:55Z","topics":[],"owner":{"login":"bugresearch","html_url":"https://github.com/bugresearch"},"clone_url":"https://github.com/bugresearch/CVE-2026-6274.git","has_code":true,"age_days":45}]},{"cve_id":"CVE-2026-6279","repositories":[{"id":1247416316,"name":"CVE-2026-6279","full_name":"zycoder0day/CVE-2026-6279","html_url":"https://github.com/zycoder0day/CVE-2026-6279","description":"CVE-2026-6279 — Avada Builder \u003c= 3.15.2 Unauthenticated RCE via call_user_func()","stargazers_count":3,"forks_count":2,"language":"Python","updated_at":"2026-06-22T11:05:03Z","pushed_at":"2026-05-23T17:40:42Z","created_at":"2026-05-23T09:33:32Z","topics":[],"owner":{"login":"zycoder0day","html_url":"https://github.com/zycoder0day"},"clone_url":"https://github.com/zycoder0day/CVE-2026-6279.git","has_code":true,"age_days":33},{"id":1268305906,"name":"CVE-2026-6279.py","full_name":"87achrafg-stack/CVE-2026-6279.py","html_url":"https://github.com/87achrafg-stack/CVE-2026-6279.py","description":"CVE-2026-6279","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-22T11:05:04Z","pushed_at":"2026-06-13T11:40:00Z","created_at":"2026-06-13T11:27:50Z","topics":[],"owner":{"login":"87achrafg-stack","html_url":"https://github.com/87achrafg-stack"},"clone_url":"https://github.com/87achrafg-stack/CVE-2026-6279.py.git","has_code":true,"age_days":12},{"id":1247313279,"name":"CVE-2026-6279","full_name":"xxconi/CVE-2026-6279","html_url":"https://github.com/xxconi/CVE-2026-6279","description":"CVE-2026-6279: Avada (Fusion) Builder \u003c= 3.15.2 – Unauthenticated Remote Code Execution via PHP Function Injection via 'render_logics' Shortcode Attribute via Widget AJAX Handler (fusion-builder)","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-06-11T14:53:40Z","pushed_at":"2026-06-11T14:49:59Z","created_at":"2026-05-23T06:36:55Z","topics":[],"owner":{"login":"xxconi","html_url":"https://github.com/xxconi"},"clone_url":"https://github.com/xxconi/CVE-2026-6279.git","has_code":true,"age_days":33},{"id":1268308422,"name":"CVE-2026-6279","full_name":"87achrafg-stack/CVE-2026-6279","html_url":"https://github.com/87achrafg-stack/CVE-2026-6279","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-13T11:40:57Z","pushed_at":"2026-06-13T11:40:53Z","created_at":"2026-06-13T11:31:46Z","topics":[],"owner":{"login":"87achrafg-stack","html_url":"https://github.com/87achrafg-stack"},"clone_url":"https://github.com/87achrafg-stack/CVE-2026-6279.git","has_code":true,"age_days":12}]},{"cve_id":"CVE-2026-6355","repositories":[{"id":1212007433,"name":"CVE-2026-6355","full_name":"Penguinsecq/CVE-2026-6355","html_url":"https://github.com/Penguinsecq/CVE-2026-6355","description":" Exploit PoC of CVE-2026-6356 ","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-27T04:05:12Z","pushed_at":"2026-04-27T04:05:08Z","created_at":"2026-04-16T01:13:08Z","topics":[],"owner":{"login":"Penguinsecq","html_url":"https://github.com/Penguinsecq"},"clone_url":"https://github.com/Penguinsecq/CVE-2026-6355.git","has_code":false,"age_days":70}]},{"cve_id":"CVE-2026-6356","repositories":[{"id":1212007433,"name":"CVE-2026-6355","full_name":"Penguinsecq/CVE-2026-6355","html_url":"https://github.com/Penguinsecq/CVE-2026-6355","description":" Exploit PoC of CVE-2026-6356 ","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-27T04:05:12Z","pushed_at":"2026-04-27T04:05:08Z","created_at":"2026-04-16T01:13:08Z","topics":[],"owner":{"login":"Penguinsecq","html_url":"https://github.com/Penguinsecq"},"clone_url":"https://github.com/Penguinsecq/CVE-2026-6355.git","has_code":false,"age_days":70},{"id":1214220956,"name":"CVE-2026-6356","full_name":"Penguinsecq/CVE-2026-6356","html_url":"https://github.com/Penguinsecq/CVE-2026-6356","description":"Exploit PoC of CVE-2026-6356","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-27T04:04:58Z","pushed_at":"2026-04-27T04:04:54Z","created_at":"2026-04-18T09:21:17Z","topics":[],"owner":{"login":"Penguinsecq","html_url":"https://github.com/Penguinsecq"},"clone_url":"https://github.com/Penguinsecq/CVE-2026-6356.git","has_code":false,"age_days":68}]},{"cve_id":"CVE-2026-6379","repositories":[{"id":1228584840,"name":"cve-2026-6379","full_name":"dinosn/cve-2026-6379","html_url":"https://github.com/dinosn/cve-2026-6379","description":"Lab kit for CVE-2026-6379 — WP Photo Album Plus \u003c 9.1.11.001 unauthenticated SQL injection. Docker lab + time-based blind PoC. For authorized security research and education.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-04T07:06:59Z","pushed_at":"2026-05-04T07:04:32Z","created_at":"2026-05-04T07:04:30Z","topics":[],"owner":{"login":"dinosn","html_url":"https://github.com/dinosn"},"clone_url":"https://github.com/dinosn/cve-2026-6379.git","has_code":true,"age_days":52}]},{"cve_id":"CVE-2026-6433","repositories":[{"id":1240559833,"name":"CVE-2026-6433","full_name":"murrez/CVE-2026-6433","html_url":"https://github.com/murrez/CVE-2026-6433","description":"PoC for CVE-2026-6433: WordPress FlipperCode Custom CSS, JS \u0026 PHP (≤2.0.7) — unauthenticated SQLi to RCE. Python 3 stdlib; single target or bulk multi-threaded scanning. Authorized testing \u0026 research only.","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-20T06:54:40Z","pushed_at":"2026-05-17T14:31:19Z","created_at":"2026-05-16T09:29:58Z","topics":[],"owner":{"login":"murrez","html_url":"https://github.com/murrez"},"clone_url":"https://github.com/murrez/CVE-2026-6433.git","has_code":true,"age_days":40}]},{"cve_id":"CVE-2026-6508","repositories":[{"id":1177369731,"name":"EvilAhenk","full_name":"jackalkarlos/EvilAhenk","html_url":"https://github.com/jackalkarlos/EvilAhenk","description":"CVE-2026-6508 \u0026\u0026 CVE-2026-6509 LiderAhenk Merkezi Yönetim Sistemi mimarisinde, uç birimler (agents) arası tüm istemcilerin birbirleri üzerinde 'root' yetkisiyle kod çalıştırılmasına (unauthorized rce \u0026 lateral movement) olanak tanıyan kritik güvenlik zafiyeti.","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-05-28T16:02:53Z","pushed_at":"2026-04-17T12:58:44Z","created_at":"2026-03-10T00:51:19Z","topics":[],"owner":{"login":"jackalkarlos","html_url":"https://github.com/jackalkarlos"},"clone_url":"https://github.com/jackalkarlos/EvilAhenk.git","has_code":true,"age_days":107}]},{"cve_id":"CVE-2026-6509","repositories":[{"id":1177369731,"name":"EvilAhenk","full_name":"jackalkarlos/EvilAhenk","html_url":"https://github.com/jackalkarlos/EvilAhenk","description":"CVE-2026-6508 \u0026\u0026 CVE-2026-6509 LiderAhenk Merkezi Yönetim Sistemi mimarisinde, uç birimler (agents) arası tüm istemcilerin birbirleri üzerinde 'root' yetkisiyle kod çalıştırılmasına (unauthorized rce \u0026 lateral movement) olanak tanıyan kritik güvenlik zafiyeti.","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-05-28T16:02:53Z","pushed_at":"2026-04-17T12:58:44Z","created_at":"2026-03-10T00:51:19Z","topics":[],"owner":{"login":"jackalkarlos","html_url":"https://github.com/jackalkarlos"},"clone_url":"https://github.com/jackalkarlos/EvilAhenk.git","has_code":true,"age_days":107}]},{"cve_id":"CVE-2026-6643","repositories":[{"id":1223141685,"name":"CVE-2026-6643","full_name":"mlgzackfly/CVE-2026-6643","html_url":"https://github.com/mlgzackfly/CVE-2026-6643","description":"ASUSTOR ADM 5.1.2 vpnupload.cgi Format String \u0026 Stack Buffer Overflow RCE (CVE-2026-6643)","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-02T10:37:05Z","pushed_at":"2026-04-28T03:51:05Z","created_at":"2026-04-28T03:34:54Z","topics":["cve-2026-6643","exploit"],"owner":{"login":"mlgzackfly","html_url":"https://github.com/mlgzackfly"},"clone_url":"https://github.com/mlgzackfly/CVE-2026-6643.git","has_code":true,"age_days":58}]},{"cve_id":"CVE-2026-6644","repositories":[{"id":1224119798,"name":"CVE-2026-6644","full_name":"uky007/CVE-2026-6644","html_url":"https://github.com/uky007/CVE-2026-6644","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-29T01:34:04Z","pushed_at":"2026-04-29T01:34:00Z","created_at":"2026-04-29T01:27:42Z","topics":[],"owner":{"login":"uky007","html_url":"https://github.com/uky007"},"clone_url":"https://github.com/uky007/CVE-2026-6644.git","has_code":true,"age_days":57}]},{"cve_id":"CVE-2026-666","repositories":[{"id":1135421347,"name":"CVE-2026-666","full_name":"adriangigliotti/CVE-2026-666","html_url":"https://github.com/adriangigliotti/CVE-2026-666","description":"CVE-2026-666 - ShadowWeb Framework Remote Code Execution Vulnerability","stargazers_count":1,"forks_count":1,"language":"","updated_at":"2026-03-12T08:26:16Z","pushed_at":"2026-01-16T04:33:19Z","created_at":"2026-01-16T04:26:36Z","topics":[],"owner":{"login":"adriangigliotti","html_url":"https://github.com/adriangigliotti"},"clone_url":"https://github.com/adriangigliotti/CVE-2026-666.git","has_code":false,"age_days":160}]},{"cve_id":"CVE-2026-6664","repositories":[{"id":1236864518,"name":"bouncer-overflow","full_name":"nicolasjulian/bouncer-overflow","html_url":"https://github.com/nicolasjulian/bouncer-overflow","description":"Working POC of CVE-2026-6664 written by Sonnet 4.6","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-12T17:01:47Z","pushed_at":"2026-05-12T16:44:57Z","created_at":"2026-05-12T16:39:59Z","topics":[],"owner":{"login":"nicolasjulian","html_url":"https://github.com/nicolasjulian"},"clone_url":"https://github.com/nicolasjulian/bouncer-overflow.git","has_code":true,"age_days":44}]},{"cve_id":"CVE-2026-6741","repositories":[{"id":1249898387,"name":"CVE-2026-6741","full_name":"xxconi/CVE-2026-6741","html_url":"https://github.com/xxconi/CVE-2026-6741","description":"CVE-2026-6741 is a CVSS 8.8 (High) Authenticated (Agent+) Privilege Escalation vulnerability in the LatePoint – Calendar Booking Plugin","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-26T06:14:26Z","pushed_at":"2026-05-26T06:14:23Z","created_at":"2026-05-26T06:10:28Z","topics":[],"owner":{"login":"xxconi","html_url":"https://github.com/xxconi"},"clone_url":"https://github.com/xxconi/CVE-2026-6741.git","has_code":true,"age_days":30}]},{"cve_id":"CVE-2026-6770","repositories":[{"id":1224021535,"name":"CVE-2026-6770","full_name":"nightcorefan94/CVE-2026-6770","html_url":"https://github.com/nightcorefan94/CVE-2026-6770","description":"CVE-2026-6770 PoC for Firefox/Tor","stargazers_count":0,"forks_count":0,"language":"HTML","updated_at":"2026-04-28T22:14:26Z","pushed_at":"2026-04-28T22:14:22Z","created_at":"2026-04-28T22:12:30Z","topics":[],"owner":{"login":"nightcorefan94","html_url":"https://github.com/nightcorefan94"},"clone_url":"https://github.com/nightcorefan94/CVE-2026-6770.git","has_code":true,"age_days":57}]},{"cve_id":"CVE-2026-6807","repositories":[{"id":1223909022,"name":"Grassmarlin-CVE-2026-6807-XXE-POC","full_name":"SecTestAnnaQuinn/Grassmarlin-CVE-2026-6807-XXE-POC","html_url":"https://github.com/SecTestAnnaQuinn/Grassmarlin-CVE-2026-6807-XXE-POC","description":"Reverse Engineered based on CISA disclosure of new CVE","stargazers_count":2,"forks_count":1,"language":"Python","updated_at":"2026-04-29T23:43:59Z","pushed_at":"2026-04-28T19:26:28Z","created_at":"2026-04-28T19:18:44Z","topics":[],"owner":{"login":"SecTestAnnaQuinn","html_url":"https://github.com/SecTestAnnaQuinn"},"clone_url":"https://github.com/SecTestAnnaQuinn/Grassmarlin-CVE-2026-6807-XXE-POC.git","has_code":true,"age_days":58}]},{"cve_id":"CVE-2026-6815","repositories":[{"id":1259495546,"name":"CVE-2026-6815","full_name":"danilo-dellorco/CVE-2026-6815","html_url":"https://github.com/danilo-dellorco/CVE-2026-6815","description":"Proof of Concept (PoC) exploit for CVE-2026-6815: Authenticated Path Traversal \u0026 Arbitrary File Write in Casdoor (\u003c 3.54.1) leading to RCE/DoS.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-12T16:28:05Z","pushed_at":"2026-06-12T16:28:01Z","created_at":"2026-06-04T15:06:44Z","topics":[],"owner":{"login":"danilo-dellorco","html_url":"https://github.com/danilo-dellorco"},"clone_url":"https://github.com/danilo-dellorco/CVE-2026-6815.git","has_code":true,"age_days":21}]},{"cve_id":"CVE-2026-6849","repositories":[{"id":1218337664,"name":"CVE-2026-6849","full_name":"osmancanvural/CVE-2026-6849","html_url":"https://github.com/osmancanvural/CVE-2026-6849","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-22T19:19:17Z","pushed_at":"2026-04-22T19:19:17Z","created_at":"2026-04-22T19:19:17Z","topics":[],"owner":{"login":"osmancanvural","html_url":"https://github.com/osmancanvural"},"clone_url":"https://github.com/osmancanvural/CVE-2026-6849.git","has_code":false,"age_days":64}]},{"cve_id":"CVE-2026-6857","repositories":[{"id":1240334499,"name":"CVE-2026-6857","full_name":"HORKimhab/CVE-2026-6857","html_url":"https://github.com/HORKimhab/CVE-2026-6857","description":"CVE-2026-6857","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-16T02:53:02Z","pushed_at":"2026-05-16T02:52:59Z","created_at":"2026-05-16T02:48:45Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-6857.git","has_code":true,"age_days":40}]},{"cve_id":"CVE-2026-6960","repositories":[{"id":1247246751,"name":"CVE-2026-6960","full_name":"xxconi/CVE-2026-6960","html_url":"https://github.com/xxconi/CVE-2026-6960","description":"CVE-2026-6960: BookingPress Pro \u003c= 5.6 – Unauthenticated Arbitrary File Upload","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-23T08:17:43Z","pushed_at":"2026-05-23T08:17:39Z","created_at":"2026-05-23T04:22:45Z","topics":[],"owner":{"login":"xxconi","html_url":"https://github.com/xxconi"},"clone_url":"https://github.com/xxconi/CVE-2026-6960.git","has_code":true,"age_days":33}]},{"cve_id":"CVE-2026-6992","repositories":[{"id":1277382462,"name":"CVE-2026-6992-PoC","full_name":"nicholas-howland/CVE-2026-6992-PoC","html_url":"https://github.com/nicholas-howland/CVE-2026-6992-PoC","description":"Vulnerability proof of concept reworked from https://github.com/utmost3/cve/issues/2 I take no credit for discovering the vulnerability. This is for educational and portfolio purposes only.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-24T22:37:39Z","pushed_at":"2026-06-24T22:36:45Z","created_at":"2026-06-22T21:04:58Z","topics":[],"owner":{"login":"nicholas-howland","html_url":"https://github.com/nicholas-howland"},"clone_url":"https://github.com/nicholas-howland/CVE-2026-6992-PoC.git","has_code":true,"age_days":2}]},{"cve_id":"CVE-2026-7028","repositories":[{"id":1202973314,"name":"CVE-2026-7028-SQLI","full_name":"Xmyronn/CVE-2026-7028-SQLI","html_url":"https://github.com/Xmyronn/CVE-2026-7028-SQLI","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-26T11:16:29Z","pushed_at":"2026-04-08T22:00:41Z","created_at":"2026-04-06T15:39:15Z","topics":[],"owner":{"login":"Xmyronn","html_url":"https://github.com/Xmyronn"},"clone_url":"https://github.com/Xmyronn/CVE-2026-7028-SQLI.git","has_code":false,"age_days":80}]},{"cve_id":"CVE-2026-7071","repositories":[{"id":1204274854,"name":"CVE-2026-7071-access-Control","full_name":"Xmyronn/CVE-2026-7071-access-Control","html_url":"https://github.com/Xmyronn/CVE-2026-7071-access-Control","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-26T11:16:03Z","pushed_at":"2026-04-08T21:55:58Z","created_at":"2026-04-07T21:24:33Z","topics":[],"owner":{"login":"Xmyronn","html_url":"https://github.com/Xmyronn"},"clone_url":"https://github.com/Xmyronn/CVE-2026-7071-access-Control.git","has_code":false,"age_days":78}]},{"cve_id":"CVE-2026-7089","repositories":[{"id":1205124213,"name":"CVE-2026-7089-XSS","full_name":"Xmyronn/CVE-2026-7089-XSS","html_url":"https://github.com/Xmyronn/CVE-2026-7089-XSS","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-26T11:15:14Z","pushed_at":"2026-04-08T17:09:22Z","created_at":"2026-04-08T16:54:15Z","topics":[],"owner":{"login":"Xmyronn","html_url":"https://github.com/Xmyronn"},"clone_url":"https://github.com/Xmyronn/CVE-2026-7089-XSS.git","has_code":false,"age_days":78}]},{"cve_id":"CVE-2026-7222","repositories":[{"id":1207145398,"name":"CVE-2026-7222-XSS","full_name":"Xmyronn/CVE-2026-7222-XSS","html_url":"https://github.com/Xmyronn/CVE-2026-7222-XSS","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-29T10:45:49Z","pushed_at":"2026-04-29T10:45:46Z","created_at":"2026-04-10T16:14:28Z","topics":[],"owner":{"login":"Xmyronn","html_url":"https://github.com/Xmyronn"},"clone_url":"https://github.com/Xmyronn/CVE-2026-7222-XSS.git","has_code":false,"age_days":76}]},{"cve_id":"CVE-2026-7229","repositories":[{"id":1207213226,"name":"CVE-2026-7229-SQLI","full_name":"Xmyronn/CVE-2026-7229-SQLI","html_url":"https://github.com/Xmyronn/CVE-2026-7229-SQLI","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-27T22:33:40Z","pushed_at":"2026-04-10T18:35:50Z","created_at":"2026-04-10T17:42:03Z","topics":[],"owner":{"login":"Xmyronn","html_url":"https://github.com/Xmyronn"},"clone_url":"https://github.com/Xmyronn/CVE-2026-7229-SQLI.git","has_code":false,"age_days":76}]},{"cve_id":"CVE-2026-7270","repositories":[{"id":1233505007,"name":"freebsd-CVE-2026-7270","full_name":"babyshen/freebsd-CVE-2026-7270","html_url":"https://github.com/babyshen/freebsd-CVE-2026-7270","description":"CVE-2026-7270  FreeBSD local privilege escalation via exec_args_adjust_args OOB memmove","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-09T03:32:15Z","pushed_at":"2026-05-09T03:32:11Z","created_at":"2026-05-09T03:13:08Z","topics":[],"owner":{"login":"babyshen","html_url":"https://github.com/babyshen"},"clone_url":"https://github.com/babyshen/freebsd-CVE-2026-7270.git","has_code":true,"age_days":47}]},{"cve_id":"CVE-2026-7299","repositories":[{"id":1196742440,"name":"Appsmith-1.98-Stored-XSS-Exploit","full_name":"Stuub/Appsmith-1.98-Stored-XSS-Exploit","html_url":"https://github.com/Stuub/Appsmith-1.98-Stored-XSS-Exploit","description":"Automating the exploitation of CVE-2026-7299 - Stored XSS via Database Table/Column Names in SQL Autocomplete within Appsmith =\u003e1.99. Initial discovery 30/03/26","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-06-25T10:32:58Z","pushed_at":"2026-06-02T14:19:42Z","created_at":"2026-03-31T02:02:37Z","topics":[],"owner":{"login":"Stuub","html_url":"https://github.com/Stuub"},"clone_url":"https://github.com/Stuub/Appsmith-1.98-Stored-XSS-Exploit.git","has_code":true,"age_days":86}]},{"cve_id":"CVE-2026-7392","repositories":[{"id":1254127530,"name":"pharmacy-sqli-CVE-2026-7392","full_name":"microwaveabi/pharmacy-sqli-CVE-2026-7392","html_url":"https://github.com/microwaveabi/pharmacy-sqli-CVE-2026-7392","description":"SourceCodester Pharmacy Sales and Inventory System 1.0 - Vulnerable source code for CVE-2026-7392 SQL Injection","stargazers_count":0,"forks_count":0,"language":"JavaScript","updated_at":"2026-05-30T07:22:00Z","pushed_at":"2026-05-30T07:21:56Z","created_at":"2026-05-30T07:10:57Z","topics":[],"owner":{"login":"microwaveabi","html_url":"https://github.com/microwaveabi"},"clone_url":"https://github.com/microwaveabi/pharmacy-sqli-CVE-2026-7392.git","has_code":true,"age_days":26}]},{"cve_id":"CVE-2026-7393","repositories":[{"id":1208514869,"name":"CVE-2026-7393-RCE","full_name":"Xmyronn/CVE-2026-7393-RCE","html_url":"https://github.com/Xmyronn/CVE-2026-7393-RCE","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-29T10:44:22Z","pushed_at":"2026-04-29T10:44:18Z","created_at":"2026-04-12T11:46:15Z","topics":[],"owner":{"login":"Xmyronn","html_url":"https://github.com/Xmyronn"},"clone_url":"https://github.com/Xmyronn/CVE-2026-7393-RCE.git","has_code":false,"age_days":74}]},{"cve_id":"CVE-2026-7394","repositories":[{"id":1207949795,"name":"CVE-2026-7394-SQLI","full_name":"Xmyronn/CVE-2026-7394-SQLI","html_url":"https://github.com/Xmyronn/CVE-2026-7394-SQLI","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-29T10:45:10Z","pushed_at":"2026-04-29T10:45:06Z","created_at":"2026-04-11T16:11:33Z","topics":[],"owner":{"login":"Xmyronn","html_url":"https://github.com/Xmyronn"},"clone_url":"https://github.com/Xmyronn/CVE-2026-7394-SQLI.git","has_code":false,"age_days":75}]},{"cve_id":"CVE-2026-7401","repositories":[{"id":1208889582,"name":"CVE-2026-7401-XSS","full_name":"Xmyronn/CVE-2026-7401-XSS","html_url":"https://github.com/Xmyronn/CVE-2026-7401-XSS","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-29T11:46:41Z","pushed_at":"2026-04-29T11:46:38Z","created_at":"2026-04-12T21:50:22Z","topics":[],"owner":{"login":"Xmyronn","html_url":"https://github.com/Xmyronn"},"clone_url":"https://github.com/Xmyronn/CVE-2026-7401-XSS.git","has_code":false,"age_days":73}]},{"cve_id":"CVE-2026-7458","repositories":[{"id":1265890463,"name":"CVE-2026-7458","full_name":"Cyber-DarkNay/CVE-2026-7458","html_url":"https://github.com/Cyber-DarkNay/CVE-2026-7458","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-11T06:56:10Z","pushed_at":"2026-06-11T06:56:06Z","created_at":"2026-06-11T06:55:03Z","topics":[],"owner":{"login":"Cyber-DarkNay","html_url":"https://github.com/Cyber-DarkNay"},"clone_url":"https://github.com/Cyber-DarkNay/CVE-2026-7458.git","has_code":true,"age_days":14}]},{"cve_id":"CVE-2026-7459","repositories":[{"id":1272114793,"name":"CVE-2026-7459","full_name":"izxci/CVE-2026-7459","html_url":"https://github.com/izxci/CVE-2026-7459","description":"CVE-2026-7459 Simple History Missing Authorization Account Takeover Exploit","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-17T09:54:55Z","pushed_at":"2026-06-17T09:54:51Z","created_at":"2026-06-17T09:54:15Z","topics":[],"owner":{"login":"izxci","html_url":"https://github.com/izxci"},"clone_url":"https://github.com/izxci/CVE-2026-7459.git","has_code":true,"age_days":8}]},{"cve_id":"CVE-2026-7465","repositories":[{"id":1272113077,"name":"-CVE-2026-7465","full_name":"izxci/-CVE-2026-7465","html_url":"https://github.com/izxci/-CVE-2026-7465","description":" CVE-2026-7465 Spectra Gutenberg Blocks Authenticated RCE Exploit","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-17T09:52:55Z","pushed_at":"2026-06-17T09:52:50Z","created_at":"2026-06-17T09:52:23Z","topics":[],"owner":{"login":"izxci","html_url":"https://github.com/izxci"},"clone_url":"https://github.com/izxci/-CVE-2026-7465.git","has_code":true,"age_days":8},{"id":1263006672,"name":"CVE-2026-7465-Lab","full_name":"rootdirective-sec/CVE-2026-7465-Lab","html_url":"https://github.com/rootdirective-sec/CVE-2026-7465-Lab","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-08T14:36:30Z","pushed_at":"2026-06-08T14:32:18Z","created_at":"2026-06-08T14:29:19Z","topics":[],"owner":{"login":"rootdirective-sec","html_url":"https://github.com/rootdirective-sec"},"clone_url":"https://github.com/rootdirective-sec/CVE-2026-7465-Lab.git","has_code":true,"age_days":17}]},{"cve_id":"CVE-2026-7473","repositories":[{"id":1265280955,"name":"CVE-2026-7473---Arista-EOS-Tunnel-Decapsulation-Bypass","full_name":"fevar54/CVE-2026-7473---Arista-EOS-Tunnel-Decapsulation-Bypass","html_url":"https://github.com/fevar54/CVE-2026-7473---Arista-EOS-Tunnel-Decapsulation-Bypass","description":"Vulnerability: On affected Arista EOS platforms with tunnel decapsulation","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-12T13:02:40Z","pushed_at":"2026-06-10T16:23:24Z","created_at":"2026-06-10T16:21:10Z","topics":[],"owner":{"login":"fevar54","html_url":"https://github.com/fevar54"},"clone_url":"https://github.com/fevar54/CVE-2026-7473---Arista-EOS-Tunnel-Decapsulation-Bypass.git","has_code":true,"age_days":15}]},{"cve_id":"CVE-2026-7482","repositories":[{"id":1230228315,"name":"CVE-2026-7482-PoC","full_name":"0x0OZ/CVE-2026-7482-PoC","html_url":"https://github.com/0x0OZ/CVE-2026-7482-PoC","description":"1day vuln research I guess","stargazers_count":3,"forks_count":2,"language":"Python","updated_at":"2026-05-12T16:02:47Z","pushed_at":"2026-05-05T20:08:35Z","created_at":"2026-05-05T19:55:32Z","topics":[],"owner":{"login":"0x0OZ","html_url":"https://github.com/0x0OZ"},"clone_url":"https://github.com/0x0OZ/CVE-2026-7482-PoC.git","has_code":true,"age_days":51},{"id":1234991079,"name":"CVE-2026-7482","full_name":"kaleth4/CVE-2026-7482","html_url":"https://github.com/kaleth4/CVE-2026-7482","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-10T22:37:33Z","pushed_at":"2026-05-10T22:37:28Z","created_at":"2026-05-10T22:36:35Z","topics":[],"owner":{"login":"kaleth4","html_url":"https://github.com/kaleth4"},"clone_url":"https://github.com/kaleth4/CVE-2026-7482.git","has_code":false,"age_days":45},{"id":1232153781,"name":"CVE-2026-7482","full_name":"szybnev/CVE-2026-7482","html_url":"https://github.com/szybnev/CVE-2026-7482","description":"Ollama CVE-2026-7482 Heap OOB read reproduction and black-box impact notes","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-07T16:38:44Z","pushed_at":"2026-05-07T16:35:48Z","created_at":"2026-05-07T16:35:01Z","topics":[],"owner":{"login":"szybnev","html_url":"https://github.com/szybnev"},"clone_url":"https://github.com/szybnev/CVE-2026-7482.git","has_code":true,"age_days":49}]},{"cve_id":"CVE-2026-7515","repositories":[{"id":1273677715,"name":"By-Poloss..-..CVE-2026-7515-PoC","full_name":"Polosss/By-Poloss..-..CVE-2026-7515-PoC","html_url":"https://github.com/Polosss/By-Poloss..-..CVE-2026-7515-PoC","description":"Unauthenticated Local File Inclusion","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-06-19T05:02:52Z","pushed_at":"2026-06-18T19:03:07Z","created_at":"2026-06-18T19:02:31Z","topics":[],"owner":{"login":"Polosss","html_url":"https://github.com/Polosss"},"clone_url":"https://github.com/Polosss/By-Poloss..-..CVE-2026-7515-PoC.git","has_code":false,"age_days":7},{"id":1274144460,"name":"CVE_2026_7515","full_name":"izxci/CVE_2026_7515","html_url":"https://github.com/izxci/CVE_2026_7515","description":"CVE-2026-7515: BetterDocs Pro \u003c= 3.8.0 - Unauthenticated Local File Inclusion TO RCE EXPLOİT","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-19T08:11:24Z","pushed_at":"2026-06-19T08:11:20Z","created_at":"2026-06-19T08:10:28Z","topics":[],"owner":{"login":"izxci","html_url":"https://github.com/izxci"},"clone_url":"https://github.com/izxci/CVE_2026_7515.git","has_code":true,"age_days":6}]},{"cve_id":"CVE-2026-7537","repositories":[{"id":1225918329,"name":"CVE-2026-7537","full_name":"d0n601/CVE-2026-7537","html_url":"https://github.com/d0n601/CVE-2026-7537","description":"MDJM Event Management \u003c= 1.7.8.3 - Authenticated (Administrator+) Arbitrary File Upload via 'mdjm_email_upload_file' Parameter","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-05T23:02:14Z","pushed_at":"2026-04-30T19:38:51Z","created_at":"2026-04-30T19:30:36Z","topics":[],"owner":{"login":"d0n601","html_url":"https://github.com/d0n601"},"clone_url":"https://github.com/d0n601/CVE-2026-7537.git","has_code":true,"age_days":56}]},{"cve_id":"CVE-2026-7567","repositories":[{"id":1227105907,"name":"CVE-2026-7567-POC","full_name":"amirhosseinjamshidi64/CVE-2026-7567-POC","html_url":"https://github.com/amirhosseinjamshidi64/CVE-2026-7567-POC","description":"","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-05T13:38:45Z","pushed_at":"2026-05-02T08:23:11Z","created_at":"2026-05-02T07:58:07Z","topics":[],"owner":{"login":"amirhosseinjamshidi64","html_url":"https://github.com/amirhosseinjamshidi64"},"clone_url":"https://github.com/amirhosseinjamshidi64/CVE-2026-7567-POC.git","has_code":true,"age_days":54}]},{"cve_id":"CVE-2026-7574","repositories":[{"id":1280045333,"name":"CVE-2026-7574","full_name":"0xBlackash/CVE-2026-7574","html_url":"https://github.com/0xBlackash/CVE-2026-7574","description":"CVE-2026-7574","stargazers_count":1,"forks_count":0,"language":"Shell","updated_at":"2026-06-25T13:25:45Z","pushed_at":"2026-06-25T08:18:45Z","created_at":"2026-06-25T08:11:45Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-7574.git","has_code":true,"age_days":0}]},{"cve_id":"CVE-2026-7654","repositories":[{"id":1272110169,"name":"CVE-2026-7654","full_name":"izxci/CVE-2026-7654","html_url":"https://github.com/izxci/CVE-2026-7654","description":"CVE-2026-7654 Admin Columns PHP Object Injection RCE Exploit","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-17T09:49:23Z","pushed_at":"2026-06-17T09:49:14Z","created_at":"2026-06-17T09:49:13Z","topics":[],"owner":{"login":"izxci","html_url":"https://github.com/izxci"},"clone_url":"https://github.com/izxci/CVE-2026-7654.git","has_code":false,"age_days":8}]},{"cve_id":"CVE-2026-7665","repositories":[{"id":1266123326,"name":"cve-2026-7665","full_name":"anirudhmakkar/cve-2026-7665","html_url":"https://github.com/anirudhmakkar/cve-2026-7665","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-11T11:06:41Z","pushed_at":"2026-06-11T11:06:37Z","created_at":"2026-06-11T10:42:00Z","topics":[],"owner":{"login":"anirudhmakkar","html_url":"https://github.com/anirudhmakkar"},"clone_url":"https://github.com/anirudhmakkar/cve-2026-7665.git","has_code":false,"age_days":14}]},{"cve_id":"CVE-2026-7671","repositories":[{"id":1227360407,"name":"CVE-2026-7671","full_name":"CaginKyr/CVE-2026-7671","html_url":"https://github.com/CaginKyr/CVE-2026-7671","description":"CVE-2026-7671 - OTP Brute Force vulnerability in Tornet Scooter Mobile App 4.75 (CWE-307)","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-05-16T10:06:55Z","pushed_at":"2026-05-02T15:40:15Z","created_at":"2026-05-02T15:19:56Z","topics":[],"owner":{"login":"CaginKyr","html_url":"https://github.com/CaginKyr"},"clone_url":"https://github.com/CaginKyr/CVE-2026-7671.git","has_code":true,"age_days":54}]},{"cve_id":"CVE-2026-7731","repositories":[{"id":1146026533,"name":"CTT-Refraction-Vortex-CVE-2026-7731-","full_name":"SimoesCTT/CTT-Refraction-Vortex-CVE-2026-7731-","html_url":"https://github.com/SimoesCTT/CTT-Refraction-Vortex-CVE-2026-7731-","description":"Under CTT, we see it as a Temporal Synchronization Mismatch between the Identity Provider and the Service Provider. By injecting a pulse at the \\alpha=0.0302011 frequency, we don't bypass the signature—we Refract the Time Window so the signature validates against a future state.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-30T14:28:05Z","pushed_at":"2026-01-31T11:29:43Z","created_at":"2026-01-30T14:26:20Z","topics":[],"owner":{"login":"SimoesCTT","html_url":"https://github.com/SimoesCTT"},"clone_url":"https://github.com/SimoesCTT/CTT-Refraction-Vortex-CVE-2026-7731-.git","has_code":true,"age_days":146}]},{"cve_id":"CVE-2026-7791","repositories":[{"id":1248365013,"name":"CVE-2026-7791","full_name":"BenZamir/CVE-2026-7791","html_url":"https://github.com/BenZamir/CVE-2026-7791","description":"Local Privilege Escalation in Amazon WorkSpaces via TOCTOU and Arbitrary File Write","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-28T12:05:15Z","pushed_at":"2026-05-28T12:05:10Z","created_at":"2026-05-24T14:49:03Z","topics":[],"owner":{"login":"BenZamir","html_url":"https://github.com/BenZamir"},"clone_url":"https://github.com/BenZamir/CVE-2026-7791.git","has_code":true,"age_days":32}]},{"cve_id":"CVE-2026-7867","repositories":[{"id":1232873378,"name":"CVE-2026-7867-disk2root","full_name":"azqzazq1/CVE-2026-7867-disk2root","html_url":"https://github.com/azqzazq1/CVE-2026-7867-disk2root","description":"","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-25T14:47:46Z","pushed_at":"2026-06-01T19:05:14Z","created_at":"2026-05-08T11:09:54Z","topics":[],"owner":{"login":"azqzazq1","html_url":"https://github.com/azqzazq1"},"clone_url":"https://github.com/azqzazq1/CVE-2026-7867-disk2root.git","has_code":true,"age_days":48}]},{"cve_id":"CVE-2026-8053","repositories":[{"id":1242279173,"name":"CVE-2026-8053-MongoDB","full_name":"mgiay/CVE-2026-8053-MongoDB","html_url":"https://github.com/mgiay/CVE-2026-8053-MongoDB","description":"Desc \"CVE-2026-8053 CHECKER\"-20260518-16h30-GMT+7","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-18T14:37:38Z","pushed_at":"2026-05-18T14:37:22Z","created_at":"2026-05-18T09:29:52Z","topics":[],"owner":{"login":"mgiay","html_url":"https://github.com/mgiay"},"clone_url":"https://github.com/mgiay/CVE-2026-8053-MongoDB.git","has_code":true,"age_days":38}]},{"cve_id":"CVE-2026-8054","repositories":[{"id":1263531835,"name":"CVE-2026-8054","full_name":"Mr-xn/CVE-2026-8054","html_url":"https://github.com/Mr-xn/CVE-2026-8054","description":"dotCMS Pre-auth SQL Injection","stargazers_count":0,"forks_count":0,"language":"Dockerfile","updated_at":"2026-06-09T03:28:42Z","pushed_at":"2026-06-09T03:27:49Z","created_at":"2026-06-09T03:27:09Z","topics":["cve","dotcms","sqli","vulnerability"],"owner":{"login":"Mr-xn","html_url":"https://github.com/Mr-xn"},"clone_url":"https://github.com/Mr-xn/CVE-2026-8054.git","has_code":true,"age_days":16}]},{"cve_id":"CVE-2026-8161","repositories":[{"id":1235938481,"name":"multiparty-CVE-2026-8161","full_name":"Ser0n-ath/multiparty-CVE-2026-8161","html_url":"https://github.com/Ser0n-ath/multiparty-CVE-2026-8161","description":"Proof of concept of CVE-2026-8161 (Multiparty)","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-12T16:08:45Z","pushed_at":"2026-05-11T22:09:16Z","created_at":"2026-05-11T19:55:29Z","topics":[],"owner":{"login":"Ser0n-ath","html_url":"https://github.com/Ser0n-ath"},"clone_url":"https://github.com/Ser0n-ath/multiparty-CVE-2026-8161.git","has_code":true,"age_days":45}]},{"cve_id":"CVE-2026-8181","repositories":[{"id":1238745373,"name":"CVE-2026-8181","full_name":"zycoder0day/CVE-2026-8181","html_url":"https://github.com/zycoder0day/CVE-2026-8181","description":"CVE-2026-8181 - Burst Statistics 3.4.0-3.4.1.1 Unauthenticated Authentication Bypass to Admin Account Takeover | Proof of Concept","stargazers_count":5,"forks_count":7,"language":"Python","updated_at":"2026-06-12T07:50:45Z","pushed_at":"2026-05-15T08:30:12Z","created_at":"2026-05-14T12:13:08Z","topics":[],"owner":{"login":"zycoder0day","html_url":"https://github.com/zycoder0day"},"clone_url":"https://github.com/zycoder0day/CVE-2026-8181.git","has_code":true,"age_days":42},{"id":1239636038,"name":"CVE-2026-8181","full_name":"murrez/CVE-2026-8181","html_url":"https://github.com/murrez/CVE-2026-8181","description":"CVE-2026-8181 PoC: Burst Statistics (3.4.0–3.4.1.1) authentication bypass. Python tool — single \u0026 multi-target scans, threaded workers, TXT reports. Authorized testing only. Maintainer: mürrez.","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-05-23T17:33:44Z","pushed_at":"2026-05-15T09:40:21Z","created_at":"2026-05-15T09:35:52Z","topics":[],"owner":{"login":"murrez","html_url":"https://github.com/murrez"},"clone_url":"https://github.com/murrez/CVE-2026-8181.git","has_code":true,"age_days":41},{"id":1279905639,"name":"CVE-2026-8181-PoC","full_name":"Squamity/CVE-2026-8181-PoC","html_url":"https://github.com/Squamity/CVE-2026-8181-PoC","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-25T05:34:57Z","pushed_at":"2026-06-25T05:34:54Z","created_at":"2026-06-25T05:34:51Z","topics":[],"owner":{"login":"Squamity","html_url":"https://github.com/Squamity"},"clone_url":"https://github.com/Squamity/CVE-2026-8181-PoC.git","has_code":false,"age_days":0},{"id":1240335375,"name":"CVE-2026-8181","full_name":"Jenderal92/CVE-2026-8181","html_url":"https://github.com/Jenderal92/CVE-2026-8181","description":"CVE-2026-8181: Burst Statistics Auth Bypass → REST API takeover \u0026 admin creation. Python 2.7. Educational use only.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-30T19:38:04Z","pushed_at":"2026-05-30T19:38:00Z","created_at":"2026-05-16T02:50:28Z","topics":["authentication-bypass","burst-statistics","cve","cve-2026-8181","exploit","pentesting","python2","rest-api","security","vulnerability","wordpress","wordpress-plugin","wordpress-security"],"owner":{"login":"Jenderal92","html_url":"https://github.com/Jenderal92"},"clone_url":"https://github.com/Jenderal92/CVE-2026-8181.git","has_code":true,"age_days":40},{"id":1246447269,"name":"CVE-2026-8181","full_name":"BastianXploited/CVE-2026-8181","html_url":"https://github.com/BastianXploited/CVE-2026-8181","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-28T12:40:09Z","pushed_at":"2026-05-23T08:48:33Z","created_at":"2026-05-22T07:46:33Z","topics":[],"owner":{"login":"BastianXploited","html_url":"https://github.com/BastianXploited"},"clone_url":"https://github.com/BastianXploited/CVE-2026-8181.git","has_code":true,"age_days":34},{"id":1246888808,"name":"CVE-2026-8181","full_name":"Yucaerin/CVE-2026-8181","html_url":"https://github.com/Yucaerin/CVE-2026-8181","description":"The Burst Statistics – Privacy-Friendly WordPress Analytics (Google Analytics Alternative) plugin for WordPress is vulnerable to Authentication Bypass","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-05-22T17:17:23Z","pushed_at":"2026-05-22T17:08:22Z","created_at":"2026-05-22T17:05:11Z","topics":[],"owner":{"login":"Yucaerin","html_url":"https://github.com/Yucaerin"},"clone_url":"https://github.com/Yucaerin/CVE-2026-8181.git","has_code":true,"age_days":34},{"id":1246848741,"name":"CVE-2026-8181","full_name":"x48ps/CVE-2026-8181","html_url":"https://github.com/x48ps/CVE-2026-8181","description":"This vulnerability allows unauthenticated attackers who know a valid administrator username to impersonate that admin during REST API requests by using any incorrect password in a Basic Authentication header. Attackers could abuse this flaw to create a new administrator account without prior authentication.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-22T16:35:49Z","pushed_at":"2026-05-22T16:35:44Z","created_at":"2026-05-22T16:12:48Z","topics":[],"owner":{"login":"x48ps","html_url":"https://github.com/x48ps"},"clone_url":"https://github.com/x48ps/CVE-2026-8181.git","has_code":true,"age_days":34},{"id":1241834592,"name":"CVE-2026-8181","full_name":"xShadow-Here/CVE-2026-8181","html_url":"https://github.com/xShadow-Here/CVE-2026-8181","description":"CVE-2026-8181 | Burst Statistics 3.4.0 - 3.4.1.1 - Authentication Bypass to Admin Account Takeover ","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-17T21:51:11Z","pushed_at":"2026-05-17T21:51:07Z","created_at":"2026-05-17T21:47:54Z","topics":[],"owner":{"login":"xShadow-Here","html_url":"https://github.com/xShadow-Here"},"clone_url":"https://github.com/xShadow-Here/CVE-2026-8181.git","has_code":true,"age_days":38},{"id":1241377161,"name":"CVE-2026-8181-Lab","full_name":"rootdirective-sec/CVE-2026-8181-Lab","html_url":"https://github.com/rootdirective-sec/CVE-2026-8181-Lab","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-17T10:06:48Z","pushed_at":"2026-05-17T10:06:45Z","created_at":"2026-05-17T10:06:35Z","topics":[],"owner":{"login":"rootdirective-sec","html_url":"https://github.com/rootdirective-sec"},"clone_url":"https://github.com/rootdirective-sec/CVE-2026-8181-Lab.git","has_code":true,"age_days":39},{"id":1240621024,"name":"CVE-2026-8181","full_name":"whattheslime/CVE-2026-8181","html_url":"https://github.com/whattheslime/CVE-2026-8181","description":"Exploit for the CVE-2026-8181 - Burst Statistics WordPress Plugin Authentication Bypass","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-16T11:09:22Z","pushed_at":"2026-05-16T11:07:26Z","created_at":"2026-05-16T11:06:03Z","topics":["auth-by","burst-statistics","cve","cve-2026-8181","exploit","plugin-wordpress","poc"],"owner":{"login":"whattheslime","html_url":"https://github.com/whattheslime"},"clone_url":"https://github.com/whattheslime/CVE-2026-8181.git","has_code":true,"age_days":40},{"id":1257182452,"name":"CVE-2026-8181","full_name":"Ez4rd1x1/CVE-2026-8181","html_url":"https://github.com/Ez4rd1x1/CVE-2026-8181","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-02T13:45:00Z","pushed_at":"2026-06-02T13:43:55Z","created_at":"2026-06-02T12:46:24Z","topics":[],"owner":{"login":"Ez4rd1x1","html_url":"https://github.com/Ez4rd1x1"},"clone_url":"https://github.com/Ez4rd1x1/CVE-2026-8181.git","has_code":true,"age_days":23}]},{"cve_id":"CVE-2026-8196","repositories":[{"id":1237419923,"name":"CVE-2026-8196","full_name":"HORKimhab/CVE-2026-8196","html_url":"https://github.com/HORKimhab/CVE-2026-8196","description":"CVE-2026-8196","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-25T02:43:47Z","pushed_at":"2026-05-13T07:05:14Z","created_at":"2026-05-13T07:01:17Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-8196.git","has_code":true,"age_days":43}]},{"cve_id":"CVE-2026-8206","repositories":[{"id":1257083403,"name":"CVE-2026-8206","full_name":"Jenderal92/CVE-2026-8206","html_url":"https://github.com/Jenderal92/CVE-2026-8206","description":"Mass exploitation tool for CVE-2026-8206 – Unauthenticated Privilege Escalation via 'handle_forgot_password' in Kirki WordPress plugin (≤6.0.6).","stargazers_count":1,"forks_count":1,"language":"Python","updated_at":"2026-06-22T11:05:04Z","pushed_at":"2026-06-02T11:46:06Z","created_at":"2026-06-02T10:53:31Z","topics":["bug-bounty","cve-2026-8206","exploit","pentesting","security","vulnerability-scanner","wordpress","wordpress-plugin"],"owner":{"login":"Jenderal92","html_url":"https://github.com/Jenderal92"},"clone_url":"https://github.com/Jenderal92/CVE-2026-8206.git","has_code":true,"age_days":23},{"id":1272111409,"name":"CVE-2026-8206","full_name":"izxci/CVE-2026-8206","html_url":"https://github.com/izxci/CVE-2026-8206","description":"CVE-2026-8206 Kirki Plugin Unauthenticated Account Takeover Exploit","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-17T09:51:10Z","pushed_at":"2026-06-17T09:51:06Z","created_at":"2026-06-17T09:50:33Z","topics":[],"owner":{"login":"izxci","html_url":"https://github.com/izxci"},"clone_url":"https://github.com/izxci/CVE-2026-8206.git","has_code":true,"age_days":8},{"id":1260258782,"name":"CVE-2026-8206-Lab","full_name":"rootdirective-sec/CVE-2026-8206-Lab","html_url":"https://github.com/rootdirective-sec/CVE-2026-8206-Lab","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-05T10:01:00Z","pushed_at":"2026-06-05T10:00:55Z","created_at":"2026-06-05T09:59:45Z","topics":[],"owner":{"login":"rootdirective-sec","html_url":"https://github.com/rootdirective-sec"},"clone_url":"https://github.com/rootdirective-sec/CVE-2026-8206-Lab.git","has_code":true,"age_days":20}]},{"cve_id":"CVE-2026-8380","repositories":[{"id":1252418547,"name":"CVE-2026-8380","full_name":"tiagob0b/CVE-2026-8380","html_url":"https://github.com/tiagob0b/CVE-2026-8380","description":"CVE-2026-8380","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-28T13:58:03Z","pushed_at":"2026-05-28T13:57:59Z","created_at":"2026-05-28T13:56:30Z","topics":[],"owner":{"login":"tiagob0b","html_url":"https://github.com/tiagob0b"},"clone_url":"https://github.com/tiagob0b/CVE-2026-8380.git","has_code":false,"age_days":28}]},{"cve_id":"CVE-2026-8389","repositories":[{"id":1259512447,"name":"CVE-2026-8389","full_name":"crixpwn/CVE-2026-8389","html_url":"https://github.com/crixpwn/CVE-2026-8389","description":"","stargazers_count":40,"forks_count":6,"language":"HTML","updated_at":"2026-06-15T14:20:40Z","pushed_at":"2026-06-04T15:48:58Z","created_at":"2026-06-04T15:25:26Z","topics":[],"owner":{"login":"crixpwn","html_url":"https://github.com/crixpwn"},"clone_url":"https://github.com/crixpwn/CVE-2026-8389.git","has_code":true,"age_days":21}]},{"cve_id":"CVE-2026-8461","repositories":[{"id":1278362993,"name":"CVE-2026-8461-PoC","full_name":"anyanything/CVE-2026-8461-PoC","html_url":"https://github.com/anyanything/CVE-2026-8461-PoC","description":"","stargazers_count":5,"forks_count":0,"language":"Python","updated_at":"2026-06-24T08:46:48Z","pushed_at":"2026-06-23T18:16:14Z","created_at":"2026-06-23T18:08:15Z","topics":[],"owner":{"login":"anyanything","html_url":"https://github.com/anyanything"},"clone_url":"https://github.com/anyanything/CVE-2026-8461-PoC.git","has_code":true,"age_days":2},{"id":1278895810,"name":"CVE-2026-8461","full_name":"HORKimhab/CVE-2026-8461","html_url":"https://github.com/HORKimhab/CVE-2026-8461","description":" CVE-2026-8461 - Draft","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-06-25T15:32:25Z","pushed_at":"2026-06-24T07:31:41Z","created_at":"2026-06-24T07:31:38Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-8461.git","has_code":false,"age_days":1},{"id":1278874614,"name":"CVE-2026-8461-EXP","full_name":"Y5neKO/CVE-2026-8461-EXP","html_url":"https://github.com/Y5neKO/CVE-2026-8461-EXP","description":"","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-24T10:08:27Z","pushed_at":"2026-06-24T07:15:32Z","created_at":"2026-06-24T07:08:07Z","topics":[],"owner":{"login":"Y5neKO","html_url":"https://github.com/Y5neKO"},"clone_url":"https://github.com/Y5neKO/CVE-2026-8461-EXP.git","has_code":true,"age_days":1}]},{"cve_id":"CVE-2026-8697","repositories":[{"id":1252956947,"name":"cve-2026-8697","full_name":"itzmetanjim/cve-2026-8697","html_url":"https://github.com/itzmetanjim/cve-2026-8697","description":"writeup","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-31T12:49:54Z","pushed_at":"2026-05-29T03:25:25Z","created_at":"2026-05-29T03:14:29Z","topics":[],"owner":{"login":"itzmetanjim","html_url":"https://github.com/itzmetanjim"},"clone_url":"https://github.com/itzmetanjim/cve-2026-8697.git","has_code":true,"age_days":27}]},{"cve_id":"CVE-2026-8732","repositories":[{"id":1255887463,"name":"CVE-2026-8732-POC","full_name":"p3Nt3st3r-sTAr/CVE-2026-8732-POC","html_url":"https://github.com/p3Nt3st3r-sTAr/CVE-2026-8732-POC","description":"","stargazers_count":8,"forks_count":1,"language":"Python","updated_at":"2026-06-04T15:17:53Z","pushed_at":"2026-06-01T09:10:08Z","created_at":"2026-06-01T09:06:17Z","topics":[],"owner":{"login":"p3Nt3st3r-sTAr","html_url":"https://github.com/p3Nt3st3r-sTAr"},"clone_url":"https://github.com/p3Nt3st3r-sTAr/CVE-2026-8732-POC.git","has_code":true,"age_days":24},{"id":1254278136,"name":"CVE-2026-8732","full_name":"Jenderal92/CVE-2026-8732","html_url":"https://github.com/Jenderal92/CVE-2026-8732","description":"WP Maps Pro \u003c= 6.1.0 - Unauthenticated Privilege Escalation via Administrator Account Creation to wpgmp_temp_access_ajax AJAX Action","stargazers_count":3,"forks_count":3,"language":"Python","updated_at":"2026-06-10T13:38:08Z","pushed_at":"2026-05-31T17:09:57Z","created_at":"2026-05-30T11:16:07Z","topics":["bug-bounty","cve-2026-8732","ethical-hacking","mass-scanner","python2","security-tool","wordpress-exploit","wordpress-plugin-vulnerability","wp-google-map-pro"],"owner":{"login":"Jenderal92","html_url":"https://github.com/Jenderal92"},"clone_url":"https://github.com/Jenderal92/CVE-2026-8732.git","has_code":true,"age_days":26},{"id":1254108536,"name":"CVE-2026-8732","full_name":"zycoder0day/CVE-2026-8732","html_url":"https://github.com/zycoder0day/CVE-2026-8732","description":"CVE-2026-8732 | WP Maps Pro \u003c= 6.1.0 | Unauthenticated Privilege Escalation ","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-04T07:40:38Z","pushed_at":"2026-05-30T07:06:03Z","created_at":"2026-05-30T06:42:33Z","topics":[],"owner":{"login":"zycoder0day","html_url":"https://github.com/zycoder0day"},"clone_url":"https://github.com/zycoder0day/CVE-2026-8732.git","has_code":true,"age_days":26},{"id":1253925759,"name":"CVE-2026-8732","full_name":"xShadow-Here/CVE-2026-8732","html_url":"https://github.com/xShadow-Here/CVE-2026-8732","description":"WP Maps Pro \u003c= 6.1.0 - Unauthenticated Privilege Escalation via Administrator Account Creation","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-05-30T04:36:21Z","pushed_at":"2026-05-30T00:28:25Z","created_at":"2026-05-30T00:28:00Z","topics":[],"owner":{"login":"xShadow-Here","html_url":"https://github.com/xShadow-Here"},"clone_url":"https://github.com/xShadow-Here/CVE-2026-8732.git","has_code":true,"age_days":26},{"id":1259563109,"name":"CVE-2026-8732-EXPLOIT","full_name":"Diznev/CVE-2026-8732-EXPLOIT","html_url":"https://github.com/Diznev/CVE-2026-8732-EXPLOIT","description":"PoC CVE-2026-8732 (WP Maps Pro \u003c= 6.1.0)","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-04T16:29:40Z","pushed_at":"2026-06-04T16:29:37Z","created_at":"2026-06-04T16:22:33Z","topics":[],"owner":{"login":"Diznev","html_url":"https://github.com/Diznev"},"clone_url":"https://github.com/Diznev/CVE-2026-8732-EXPLOIT.git","has_code":false,"age_days":21},{"id":1255878837,"name":"CVE-2026-8732","full_name":"HORKimhab/CVE-2026-8732","html_url":"https://github.com/HORKimhab/CVE-2026-8732","description":"CVE-2026-8732 - Draft (WordPress)","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-01T08:56:34Z","pushed_at":"2026-06-01T08:56:30Z","created_at":"2026-06-01T08:56:26Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-8732.git","has_code":false,"age_days":24}]},{"cve_id":"CVE-2026-8809","repositories":[{"id":1267099074,"name":"CVE-2026-8809","full_name":"izxci/CVE-2026-8809","html_url":"https://github.com/izxci/CVE-2026-8809","description":"Advanced Custom Fields: Extended \u003c= 0.9.2.5 - Unauthenticated Privilege Escalation via Validation Bypass to '_acf_post_id' Parameter","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-12T08:12:05Z","pushed_at":"2026-06-12T08:12:01Z","created_at":"2026-06-12T08:09:39Z","topics":[],"owner":{"login":"izxci","html_url":"https://github.com/izxci"},"clone_url":"https://github.com/izxci/CVE-2026-8809.git","has_code":true,"age_days":13}]},{"cve_id":"CVE-2026-8832","repositories":[{"id":1252725884,"name":"EXPLOIT-CVE-2026-8832","full_name":"funixone/EXPLOIT-CVE-2026-8832","html_url":"https://github.com/funixone/EXPLOIT-CVE-2026-8832","description":"","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-29T09:25:59Z","pushed_at":"2026-05-28T20:35:25Z","created_at":"2026-05-28T20:06:15Z","topics":[],"owner":{"login":"funixone","html_url":"https://github.com/funixone"},"clone_url":"https://github.com/funixone/EXPLOIT-CVE-2026-8832.git","has_code":true,"age_days":27},{"id":1252714457,"name":"EXPLOIT-CVE-2026-8832-","full_name":"funixone/EXPLOIT-CVE-2026-8832-","html_url":"https://github.com/funixone/EXPLOIT-CVE-2026-8832-","description":"EXPLOIT CVE-2026-8832 ","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-28T20:05:47Z","pushed_at":"2026-05-28T20:05:43Z","created_at":"2026-05-28T19:49:18Z","topics":[],"owner":{"login":"funixone","html_url":"https://github.com/funixone"},"clone_url":"https://github.com/funixone/EXPLOIT-CVE-2026-8832-.git","has_code":false,"age_days":28}]},{"cve_id":"CVE-2026-8836","repositories":[{"id":1254998365,"name":"lwip-snmpv3-stack-overflow-cve-2026-8836-critical-embedded-rce","full_name":"Hunt-Benito/lwip-snmpv3-stack-overflow-cve-2026-8836-critical-embedded-rce","html_url":"https://github.com/Hunt-Benito/lwip-snmpv3-stack-overflow-cve-2026-8836-critical-embedded-rce","description":"CVE-2026-8836 — lwIP SNMPv3 stack-based buffer overflow PoC (CVSS 9.8)","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-21T07:20:11Z","pushed_at":"2026-06-21T07:20:08Z","created_at":"2026-05-31T09:11:25Z","topics":[],"owner":{"login":"Hunt-Benito","html_url":"https://github.com/Hunt-Benito"},"clone_url":"https://github.com/Hunt-Benito/lwip-snmpv3-stack-overflow-cve-2026-8836-critical-embedded-rce.git","has_code":true,"age_days":25}]},{"cve_id":"CVE-2026-8838","repositories":[{"id":1243540027,"name":"CVE-2026-8838-RCE","full_name":"Maxime288/CVE-2026-8838-RCE","html_url":"https://github.com/Maxime288/CVE-2026-8838-RCE","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-19T13:53:16Z","pushed_at":"2026-05-19T13:48:38Z","created_at":"2026-05-19T12:41:29Z","topics":[],"owner":{"login":"Maxime288","html_url":"https://github.com/Maxime288"},"clone_url":"https://github.com/Maxime288/CVE-2026-8838-RCE.git","has_code":true,"age_days":37}]},{"cve_id":"CVE-2026-9018","repositories":[{"id":1247252130,"name":"CVE-2026-9018","full_name":"xxconi/CVE-2026-9018","html_url":"https://github.com/xxconi/CVE-2026-9018","description":"Unauthenticated Privilege Escalation CVE-2026-9018: Easy Elements for Elementor","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-30T04:57:27Z","pushed_at":"2026-05-23T16:58:00Z","created_at":"2026-05-23T04:34:31Z","topics":[],"owner":{"login":"xxconi","html_url":"https://github.com/xxconi"},"clone_url":"https://github.com/xxconi/CVE-2026-9018.git","has_code":true,"age_days":33}]},{"cve_id":"CVE-2026-9067","repositories":[{"id":1265397213,"name":"By-Poloss..-..CVE-2026-9067","full_name":"Polosss/By-Poloss..-..CVE-2026-9067","html_url":"https://github.com/Polosss/By-Poloss..-..CVE-2026-9067","description":"Schema \u0026 Structured Data for WP \u0026 AMP \u003c 1.60 - Unauthenticated Arbitrary Media Upload [POC \u0026 Xploit]","stargazers_count":3,"forks_count":0,"language":"Python","updated_at":"2026-06-20T10:33:18Z","pushed_at":"2026-06-10T18:34:42Z","created_at":"2026-06-10T18:30:39Z","topics":[],"owner":{"login":"Polosss","html_url":"https://github.com/Polosss"},"clone_url":"https://github.com/Polosss/By-Poloss..-..CVE-2026-9067.git","has_code":true,"age_days":15}]},{"cve_id":"CVE-2026-9082","repositories":[{"id":1245565238,"name":"CVE-2026-9082-Drupal-PoC","full_name":"7h30th3r0n3/CVE-2026-9082-Drupal-PoC","html_url":"https://github.com/7h30th3r0n3/CVE-2026-9082-Drupal-PoC","description":"Drupal Core PostgreSQL SQL Injection PoC - CVE-2026-9082. Ethical PoC for the Drupal vulnerability allowing anonymous SQL injection through the JSON:API module on PostgreSQL-backed sites.","stargazers_count":18,"forks_count":2,"language":"Python","updated_at":"2026-06-24T07:30:05Z","pushed_at":"2026-05-21T11:45:46Z","created_at":"2026-05-21T10:42:30Z","topics":[],"owner":{"login":"7h30th3r0n3","html_url":"https://github.com/7h30th3r0n3"},"clone_url":"https://github.com/7h30th3r0n3/CVE-2026-9082-Drupal-PoC.git","has_code":true,"age_days":35},{"id":1250478036,"name":"cve-2026-9082-drupal-postgresql-rce","full_name":"ambionics/cve-2026-9082-drupal-postgresql-rce","html_url":"https://github.com/ambionics/cve-2026-9082-drupal-postgresql-rce","description":"","stargazers_count":10,"forks_count":0,"language":"Python","updated_at":"2026-05-31T20:43:46Z","pushed_at":"2026-05-27T15:47:08Z","created_at":"2026-05-26T17:09:20Z","topics":[],"owner":{"login":"ambionics","html_url":"https://github.com/ambionics"},"clone_url":"https://github.com/ambionics/cve-2026-9082-drupal-postgresql-rce.git","has_code":true,"age_days":30},{"id":1247951483,"name":"drupal-cve-2026-9082-checker","full_name":"N45HT/drupal-cve-2026-9082-checker","html_url":"https://github.com/N45HT/drupal-cve-2026-9082-checker","description":"Drupal CVE-2026-9082 Blind SQL Injection Checker","stargazers_count":6,"forks_count":2,"language":"Python","updated_at":"2026-06-17T17:31:55Z","pushed_at":"2026-05-24T09:00:30Z","created_at":"2026-05-24T02:00:04Z","topics":[],"owner":{"login":"N45HT","html_url":"https://github.com/N45HT"},"clone_url":"https://github.com/N45HT/drupal-cve-2026-9082-checker.git","has_code":true,"age_days":32},{"id":1245259671,"name":"CVE-2026-9082","full_name":"HORKimhab/CVE-2026-9082","html_url":"https://github.com/HORKimhab/CVE-2026-9082","description":"CVE-2026-9082 | SA-CORE-2026-004","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-05-22T08:40:25Z","pushed_at":"2026-05-21T04:09:43Z","created_at":"2026-05-21T04:03:42Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-9082.git","has_code":true,"age_days":35},{"id":1245398318,"name":"CVE-2026-9082","full_name":"0xBlackash/CVE-2026-9082","html_url":"https://github.com/0xBlackash/CVE-2026-9082","description":"CVE-2026-9082","stargazers_count":1,"forks_count":1,"language":"Python","updated_at":"2026-06-04T23:58:56Z","pushed_at":"2026-06-04T23:58:52Z","created_at":"2026-05-21T07:26:11Z","topics":[],"owner":{"login":"0xBlackash","html_url":"https://github.com/0xBlackash"},"clone_url":"https://github.com/0xBlackash/CVE-2026-9082.git","has_code":true,"age_days":35},{"id":1245778280,"name":"CVE-2026-9082","full_name":"ywh-jfellus/CVE-2026-9082","html_url":"https://github.com/ywh-jfellus/CVE-2026-9082","description":"PoC for CVE-2026-9082 (Drupal SA-CORE-2026-004) Drupal Core SQLi","stargazers_count":1,"forks_count":1,"language":"Python","updated_at":"2026-05-27T12:49:03Z","pushed_at":"2026-05-21T21:43:17Z","created_at":"2026-05-21T14:46:00Z","topics":["drupal","poc","vulnerablity"],"owner":{"login":"ywh-jfellus","html_url":"https://github.com/ywh-jfellus"},"clone_url":"https://github.com/ywh-jfellus/CVE-2026-9082.git","has_code":true,"age_days":35},{"id":1271556106,"name":"CVE-2026-9082-Mass_Scanner","full_name":"sourcecode347/CVE-2026-9082-Mass_Scanner","html_url":"https://github.com/sourcecode347/CVE-2026-9082-Mass_Scanner","description":"Mass Scanner For Drupal Exploit CVE-2026-9082","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-16T19:46:11Z","pushed_at":"2026-06-16T19:44:30Z","created_at":"2026-06-16T19:30:13Z","topics":["cve-2026-9082","exploit","exploitation"],"owner":{"login":"sourcecode347","html_url":"https://github.com/sourcecode347"},"clone_url":"https://github.com/sourcecode347/CVE-2026-9082-Mass_Scanner.git","has_code":true,"age_days":9},{"id":1278257443,"name":"portfolio-drupal-cve-2026-9082","full_name":"eliHiHo/portfolio-drupal-cve-2026-9082","html_url":"https://github.com/eliHiHo/portfolio-drupal-cve-2026-9082","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-23T16:15:32Z","pushed_at":"2026-06-23T16:07:29Z","created_at":"2026-06-23T16:06:13Z","topics":[],"owner":{"login":"eliHiHo","html_url":"https://github.com/eliHiHo"},"clone_url":"https://github.com/eliHiHo/portfolio-drupal-cve-2026-9082.git","has_code":false,"age_days":2},{"id":1251186446,"name":"CVE-2026-9082-PoC","full_name":"thinhap/CVE-2026-9082-PoC","html_url":"https://github.com/thinhap/CVE-2026-9082-PoC","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-28T01:38:11Z","pushed_at":"2026-05-28T01:38:07Z","created_at":"2026-05-27T10:26:02Z","topics":[],"owner":{"login":"thinhap","html_url":"https://github.com/thinhap"},"clone_url":"https://github.com/thinhap/CVE-2026-9082-PoC.git","has_code":true,"age_days":29},{"id":1251126032,"name":"CVE-2026-9082","full_name":"strobelpierre/CVE-2026-9082","html_url":"https://github.com/strobelpierre/CVE-2026-9082","description":"Passive checker for CVE-2026-9082 / SA-CORE-2026-004 (Drupal core SQL injection, PostgreSQL)","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-27T09:32:01Z","pushed_at":"2026-05-27T09:31:57Z","created_at":"2026-05-27T09:11:15Z","topics":[],"owner":{"login":"strobelpierre","html_url":"https://github.com/strobelpierre"},"clone_url":"https://github.com/strobelpierre/CVE-2026-9082.git","has_code":true,"age_days":29},{"id":1245274124,"name":"cve-2026-9082","full_name":"lysophavin18/cve-2026-9082","html_url":"https://github.com/lysophavin18/cve-2026-9082","description":"cve poc","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-21T04:31:25Z","pushed_at":"2026-05-21T04:31:21Z","created_at":"2026-05-21T04:30:27Z","topics":[],"owner":{"login":"lysophavin18","html_url":"https://github.com/lysophavin18"},"clone_url":"https://github.com/lysophavin18/cve-2026-9082.git","has_code":false,"age_days":35},{"id":1261982856,"name":"CVE-2026-9082","full_name":"11romain/CVE-2026-9082","html_url":"https://github.com/11romain/CVE-2026-9082","description":"Drupal Core PostgreSQL SQLi to RCE via /user/login (CVE-2026-9082 / SA-CORE-2026-004)","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-09T19:44:58Z","pushed_at":"2026-06-09T19:43:15Z","created_at":"2026-06-07T12:20:10Z","topics":["cve-2026-9082","drupal","exploit","postgresql","rce","security-research","sqli"],"owner":{"login":"11romain","html_url":"https://github.com/11romain"},"clone_url":"https://github.com/11romain/CVE-2026-9082.git","has_code":true,"age_days":18}]},{"cve_id":"CVE-2026-9256","repositories":[{"id":1238390311,"name":"NGINX_RIFT_SCAN_CVE_2026_42945","full_name":"friparia/NGINX_RIFT_SCAN_CVE_2026_42945","html_url":"https://github.com/friparia/NGINX_RIFT_SCAN_CVE_2026_42945","description":"Nginx Rewrite CVE Scan(CVE-2026-42945 nginx-rift  CVE-2026-9256)","stargazers_count":33,"forks_count":8,"language":"Python","updated_at":"2026-06-23T16:45:28Z","pushed_at":"2026-05-27T08:17:05Z","created_at":"2026-05-14T04:40:47Z","topics":[],"owner":{"login":"friparia","html_url":"https://github.com/friparia"},"clone_url":"https://github.com/friparia/NGINX_RIFT_SCAN_CVE_2026_42945.git","has_code":true,"age_days":42},{"id":1252488892,"name":"CVE-2026-9256-Poc","full_name":"3nou9h/CVE-2026-9256-Poc","html_url":"https://github.com/3nou9h/CVE-2026-9256-Poc","description":"","stargazers_count":2,"forks_count":1,"language":"Python","updated_at":"2026-05-31T02:34:35Z","pushed_at":"2026-05-28T15:20:33Z","created_at":"2026-05-28T15:12:42Z","topics":[],"owner":{"login":"3nou9h","html_url":"https://github.com/3nou9h"},"clone_url":"https://github.com/3nou9h/CVE-2026-9256-Poc.git","has_code":true,"age_days":28},{"id":1252141448,"name":"NGINX-ngx_http_rewrite_module-heap-buffer-overflow-CVE-2026-9256","full_name":"W5M1n9/NGINX-ngx_http_rewrite_module-heap-buffer-overflow-CVE-2026-9256","html_url":"https://github.com/W5M1n9/NGINX-ngx_http_rewrite_module-heap-buffer-overflow-CVE-2026-9256","description":"","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-06-08T08:19:15Z","pushed_at":"2026-05-30T15:42:37Z","created_at":"2026-05-28T08:22:32Z","topics":[],"owner":{"login":"W5M1n9","html_url":"https://github.com/W5M1n9"},"clone_url":"https://github.com/W5M1n9/NGINX-ngx_http_rewrite_module-heap-buffer-overflow-CVE-2026-9256.git","has_code":true,"age_days":28},{"id":1247969981,"name":"CVE-2026-9256","full_name":"suominen/CVE-2026-9256","html_url":"https://github.com/suominen/CVE-2026-9256","description":"Tracking the nginx CVE-2026-9256 rewrite-module heap overflow","stargazers_count":0,"forks_count":0,"language":"HTML","updated_at":"2026-06-20T05:14:35Z","pushed_at":"2026-06-20T05:14:31Z","created_at":"2026-05-24T02:43:51Z","topics":["nginx","security"],"owner":{"login":"suominen","html_url":"https://github.com/suominen"},"clone_url":"https://github.com/suominen/CVE-2026-9256.git","has_code":true,"age_days":32},{"id":1257782764,"name":"CVE-2026-9256-POC","full_name":"06-ux/CVE-2026-9256-POC","html_url":"https://github.com/06-ux/CVE-2026-9256-POC","description":"CVE-2026-9256 Nginx heap buffer overflow POC","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-03T02:52:39Z","pushed_at":"2026-06-03T02:52:35Z","created_at":"2026-06-03T02:17:25Z","topics":[],"owner":{"login":"06-ux","html_url":"https://github.com/06-ux"},"clone_url":"https://github.com/06-ux/CVE-2026-9256-POC.git","has_code":true,"age_days":22}]},{"cve_id":"CVE-2026-9277","repositories":[{"id":1270202116,"name":"CVE-2026-9277","full_name":"DylanZahedi/CVE-2026-9277","html_url":"https://github.com/DylanZahedi/CVE-2026-9277","description":"","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-06-21T11:24:59Z","pushed_at":"2026-06-21T11:24:56Z","created_at":"2026-06-15T13:37:09Z","topics":[],"owner":{"login":"DylanZahedi","html_url":"https://github.com/DylanZahedi"},"clone_url":"https://github.com/DylanZahedi/CVE-2026-9277.git","has_code":true,"age_days":10}]},{"cve_id":"CVE-2026-9560","repositories":[{"id":1255744239,"name":"CVE-2026-9560","full_name":"HORKimhab/CVE-2026-9560","html_url":"https://github.com/HORKimhab/CVE-2026-9560","description":"CVE-2026-9560 - Draft","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-01T06:15:02Z","pushed_at":"2026-06-01T06:14:58Z","created_at":"2026-06-01T06:14:54Z","topics":[],"owner":{"login":"HORKimhab","html_url":"https://github.com/HORKimhab"},"clone_url":"https://github.com/HORKimhab/CVE-2026-9560.git","has_code":false,"age_days":24}]},{"cve_id":"CVE-2026-9691","repositories":[{"id":1272119395,"name":"CVE-2026-9691","full_name":"izxci/CVE-2026-9691","html_url":"https://github.com/izxci/CVE-2026-9691","description":"CVE-2026-9691: Integration for ActiveCampaign and Contact Form 7, WPForms, Elementor, Ninja Forms \u003c= 1.1.1 Unauthenticated PHP Object Injection PoC, Patch Analysis \u0026 Rule","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-17T10:00:28Z","pushed_at":"2026-06-17T09:59:59Z","created_at":"2026-06-17T09:59:26Z","topics":[],"owner":{"login":"izxci","html_url":"https://github.com/izxci"},"clone_url":"https://github.com/izxci/CVE-2026-9691.git","has_code":true,"age_days":8}]},{"cve_id":"CVE-2026-999999","repositories":[{"id":1251124560,"name":"CVE-2026-999999","full_name":"24520597-blip/CVE-2026-999999","html_url":"https://github.com/24520597-blip/CVE-2026-999999","description":"A critical Server-Side Template Injection (SSTI) vulnerability exists in the X-Trading Portal v1.4.2 dashboard metadata   rendering engine. The flaw is due to improper sanitization of user-controlled input in the username and widget_label fields before   they are processed by the internal Smarty template parser.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-27T10:48:02Z","pushed_at":"2026-05-27T10:39:07Z","created_at":"2026-05-27T09:09:25Z","topics":["banking","cve","exploit","pentesting","poc","red-team","security","thre"],"owner":{"login":"24520597-blip","html_url":"https://github.com/24520597-blip"},"clone_url":"https://github.com/24520597-blip/CVE-2026-999999.git","has_code":false,"age_days":29}]},{"cve_id":"OTHER-2026","repositories":[{"id":1224859117,"name":"cve_2026_31431","full_name":"rootsecdev/cve_2026_31431","html_url":"https://github.com/rootsecdev/cve_2026_31431","description":"Exploit POC for CVE_2026_31431","stargazers_count":558,"forks_count":116,"language":"Python","updated_at":"2026-06-22T11:05:02Z","pushed_at":"2026-04-29T18:24:24Z","created_at":"2026-04-29T17:46:43Z","topics":[],"owner":{"login":"rootsecdev","html_url":"https://github.com/rootsecdev"},"clone_url":"https://github.com/rootsecdev/cve_2026_31431.git","has_code":true,"age_days":57},{"id":1234400069,"name":"nobody-puts-baby-in-a-corner","full_name":"xn0tsa/nobody-puts-baby-in-a-corner","html_url":"https://github.com/xn0tsa/nobody-puts-baby-in-a-corner","description":"Five CVEs against Meari/CloudEdge IoT camera platform — public disclosure 2026-05-11","stargazers_count":42,"forks_count":0,"language":"","updated_at":"2026-06-07T12:11:53Z","pushed_at":"2026-05-10T09:16:51Z","created_at":"2026-05-10T06:09:14Z","topics":[],"owner":{"login":"xn0tsa","html_url":"https://github.com/xn0tsa"},"clone_url":"https://github.com/xn0tsa/nobody-puts-baby-in-a-corner.git","has_code":false,"age_days":46},{"id":1187780287,"name":"CVE-2026-XNU-AIO-KEVENT-UAF","full_name":"crazymind90/CVE-2026-XNU-AIO-KEVENT-UAF","html_url":"https://github.com/crazymind90/CVE-2026-XNU-AIO-KEVENT-UAF","description":"XNU AIO kevent use-after-free — kernel panic from app sandbox on iOS 26.2 (no entitlements). Patched in iOS 26.3","stargazers_count":26,"forks_count":4,"language":"Objective-C","updated_at":"2026-06-23T06:53:18Z","pushed_at":"2026-03-21T06:37:13Z","created_at":"2026-03-21T06:35:12Z","topics":[],"owner":{"login":"crazymind90","html_url":"https://github.com/crazymind90"},"clone_url":"https://github.com/crazymind90/CVE-2026-XNU-AIO-KEVENT-UAF.git","has_code":true,"age_days":96},{"id":1226854571,"name":"vibe-coding-security","full_name":"boxed-dev/vibe-coding-security","html_url":"https://github.com/boxed-dev/vibe-coding-security","description":"Before you tweet your launch — run these 47 checks. Same patterns behind the Lovable RLS CVE (170 apps, March 2025) and the Moltbook leak (1.5M API tokens, Feb 2026).","stargazers_count":12,"forks_count":1,"language":"","updated_at":"2026-06-12T12:57:07Z","pushed_at":"2026-06-11T23:12:39Z","created_at":"2026-05-01T22:48:32Z","topics":["ai-coding","bolt","claude-code","cursor","lovable","mcp","nextjs","rls","security","supabase","v0","vibe-coding"],"owner":{"login":"boxed-dev","html_url":"https://github.com/boxed-dev"},"clone_url":"https://github.com/boxed-dev/vibe-coding-security.git","has_code":false,"age_days":54},{"id":1245804856,"name":"cve-2026-poc-collection","full_name":"XZ1r0/cve-2026-poc-collection","html_url":"https://github.com/XZ1r0/cve-2026-poc-collection","description":"CVE-2026 PoC Collection - 128 PoCs covering 84 CVEs","stargazers_count":8,"forks_count":1,"language":"Python","updated_at":"2026-06-23T02:01:07Z","pushed_at":"2026-05-23T13:12:07Z","created_at":"2026-05-21T15:15:22Z","topics":[],"owner":{"login":"XZ1r0","html_url":"https://github.com/XZ1r0"},"clone_url":"https://github.com/XZ1r0/cve-2026-poc-collection.git","has_code":true,"age_days":35},{"id":1223164497,"name":"bomdrift","full_name":"Metbcy/bomdrift","html_url":"https://github.com/Metbcy/bomdrift","description":"SBOM diff with supply-chain risk signals — flags new CVEs, typosquats, and young maintainers on changed deps. Built after axios (Mar 2026), Shai-Hulud, and xz.","stargazers_count":5,"forks_count":2,"language":"Rust","updated_at":"2026-06-07T22:18:47Z","pushed_at":"2026-06-02T16:28:14Z","created_at":"2026-04-28T04:15:32Z","topics":["code-review","cve","cyclonedx","dependency-analysis","github-action","openvex","osv","rust","rust-cli","sbom","security","sigstore","slsa","spdx","supply-chain-security","typosquatting","vex","vulnerability-scanner"],"owner":{"login":"Metbcy","html_url":"https://github.com/Metbcy"},"clone_url":"https://github.com/Metbcy/bomdrift.git","has_code":true,"age_days":58},{"id":1232004574,"name":"CVE-Hunter-2026","full_name":"0dayexperience/CVE-Hunter-2026","html_url":"https://github.com/0dayexperience/CVE-Hunter-2026","description":"Smart CVE validator for 2026: passive recon, tech stack detection, PoC matching. Built for pentesters and security researchers.","stargazers_count":5,"forks_count":2,"language":"Go","updated_at":"2026-06-24T12:22:16Z","pushed_at":"2026-05-09T09:27:12Z","created_at":"2026-05-07T13:50:34Z","topics":[],"owner":{"login":"0dayexperience","html_url":"https://github.com/0dayexperience"},"clone_url":"https://github.com/0dayexperience/CVE-Hunter-2026.git","has_code":true,"age_days":49},{"id":1268717516,"name":"POC_cve_2026_35273","full_name":"ekomsSavior/POC_cve_2026_35273","html_url":"https://github.com/ekomsSavior/POC_cve_2026_35273","description":"this ones for ILLWILL - Universal Unauthenticated RCE via PeopleSoft SSRF","stargazers_count":5,"forks_count":0,"language":"Python","updated_at":"2026-06-20T21:29:19Z","pushed_at":"2026-06-13T22:38:47Z","created_at":"2026-06-13T21:21:32Z","topics":[],"owner":{"login":"ekomsSavior","html_url":"https://github.com/ekomsSavior"},"clone_url":"https://github.com/ekomsSavior/POC_cve_2026_35273.git","has_code":true,"age_days":11},{"id":1196526788,"name":"ad-autopwn","full_name":"jonaslejon/ad-autopwn","html_url":"https://github.com/jonaslejon/ad-autopwn","description":"AD AutoPwn v4.10.0 — automated AD attack chain, zero-auth to Domain Admin. Discover/Kerberoast/AS-REP/AD CS ESC1-16/Shadow Creds/RBCD+KCD/Ghost-SPN/TGS-rewrite/Dollar-Ticket/WPAD/WSUS/PXE/SCCM/BloodHound auto-action/Loot/DCSync/DPAPI + Synacktiv 2026 reflection (CVE-2025-58726/2026-24294/2026-26128). Authorized pentesting only.","stargazers_count":4,"forks_count":1,"language":"Python","updated_at":"2026-06-09T03:05:19Z","pushed_at":"2026-05-02T13:02:33Z","created_at":"2026-03-30T19:34:35Z","topics":[],"owner":{"login":"jonaslejon","html_url":"https://github.com/jonaslejon"},"clone_url":"https://github.com/jonaslejon/ad-autopwn.git","has_code":true,"age_days":87},{"id":1253533462,"name":"CVE_2026_40369","full_name":"Joe1sn/CVE_2026_40369","html_url":"https://github.com/Joe1sn/CVE_2026_40369","description":"poc \u0026 exp for CVE_2026_40369","stargazers_count":3,"forks_count":1,"language":"C++","updated_at":"2026-06-01T14:37:23Z","pushed_at":"2026-05-30T12:54:13Z","created_at":"2026-05-29T15:03:46Z","topics":[],"owner":{"login":"Joe1sn","html_url":"https://github.com/Joe1sn"},"clone_url":"https://github.com/Joe1sn/CVE_2026_40369.git","has_code":true,"age_days":27},{"id":1140136337,"name":"cve_2026_21962_scanner","full_name":"gglessner/cve_2026_21962_scanner","html_url":"https://github.com/gglessner/cve_2026_21962_scanner","description":"","stargazers_count":2,"forks_count":1,"language":"Python","updated_at":"2026-04-03T07:23:17Z","pushed_at":"2026-01-22T21:51:39Z","created_at":"2026-01-22T21:51:37Z","topics":[],"owner":{"login":"gglessner","html_url":"https://github.com/gglessner"},"clone_url":"https://github.com/gglessner/cve_2026_21962_scanner.git","has_code":true,"age_days":153},{"id":1223867069,"name":"cve_2026_35414","full_name":"dehobbs/cve_2026_35414","html_url":"https://github.com/dehobbs/cve_2026_35414","description":"","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-06-23T23:38:00Z","pushed_at":"2026-04-29T17:50:21Z","created_at":"2026-04-28T18:23:40Z","topics":[],"owner":{"login":"dehobbs","html_url":"https://github.com/dehobbs"},"clone_url":"https://github.com/dehobbs/cve_2026_35414.git","has_code":true,"age_days":58},{"id":1206998552,"name":"CVE-2026-APK","full_name":"zax-universe/CVE-2026-APK","html_url":"https://github.com/zax-universe/CVE-2026-APK","description":"Cve Scanner Made using fluterr","stargazers_count":2,"forks_count":0,"language":"Dart","updated_at":"2026-04-11T07:18:37Z","pushed_at":"2026-04-10T13:30:04Z","created_at":"2026-04-10T13:20:26Z","topics":[],"owner":{"login":"zax-universe","html_url":"https://github.com/zax-universe"},"clone_url":"https://github.com/zax-universe/CVE-2026-APK.git","has_code":true,"age_days":76},{"id":1248172567,"name":"cPanel-patch-radar","full_name":"BlackRainSentinel/cPanel-patch-radar","html_url":"https://github.com/BlackRainSentinel/cPanel-patch-radar","description":"cPanel/WHM CVE auditor \u0026 patcher — May 2026 batch, zero dependencies.","stargazers_count":2,"forks_count":0,"language":"Shell","updated_at":"2026-05-30T14:04:11Z","pushed_at":"2026-05-30T14:04:08Z","created_at":"2026-05-24T09:31:00Z","topics":[],"owner":{"login":"BlackRainSentinel","html_url":"https://github.com/BlackRainSentinel"},"clone_url":"https://github.com/BlackRainSentinel/cPanel-patch-radar.git","has_code":true,"age_days":32},{"id":1246275154,"name":"mitigate_cve_2026_31431-sh","full_name":"erlangparasu/mitigate_cve_2026_31431-sh","html_url":"https://github.com/erlangparasu/mitigate_cve_2026_31431-sh","description":"","stargazers_count":2,"forks_count":0,"language":"Shell","updated_at":"2026-06-05T01:27:07Z","pushed_at":"2026-05-22T03:27:52Z","created_at":"2026-05-22T03:23:52Z","topics":[],"owner":{"login":"erlangparasu","html_url":"https://github.com/erlangparasu"},"clone_url":"https://github.com/erlangparasu/mitigate_cve_2026_31431-sh.git","has_code":true,"age_days":34},{"id":1268793437,"name":"vulnscope","full_name":"macbuildssys/vulnscope","html_url":"https://github.com/macbuildssys/vulnscope","description":"ML pipeline for analysing NVD supply-chain CVE trends (2015–2026) using Linear Regression, Logistic Regression, and Random Forest to forecast emerging weakness categories.","stargazers_count":2,"forks_count":0,"language":"Python","updated_at":"2026-06-14T01:13:34Z","pushed_at":"2026-06-14T00:20:39Z","created_at":"2026-06-14T00:07:50Z","topics":["linear-regression","logistic-regression","random-forest","risk-forecasting"],"owner":{"login":"macbuildssys","html_url":"https://github.com/macbuildssys"},"clone_url":"https://github.com/macbuildssys/vulnscope.git","has_code":true,"age_days":11},{"id":1248611681,"name":"rakie-k3s-security2","full_name":"Rakeshu99/rakie-k3s-security2","html_url":"https://github.com/Rakeshu99/rakie-k3s-security2","description":"Kubernetes K3s security hardening - NetworkPolicy, CVE remediation (CRITICAL:0), securityContext, Trivy + kubeaudit + penetration testing, Prometheus + Grafana observability. TU Dublin MSc DevOps CA2 2026.","stargazers_count":1,"forks_count":0,"language":"Shell","updated_at":"2026-06-23T09:15:30Z","pushed_at":"2026-06-23T09:15:25Z","created_at":"2026-05-24T21:39:40Z","topics":["container-security","cve-remediation","devops","devsecops","docker","grafana","k3s","kubeaudit","kubernetes","networkpolicy","nodejs","prometheus","security","trivy"],"owner":{"login":"Rakeshu99","html_url":"https://github.com/Rakeshu99"},"clone_url":"https://github.com/Rakeshu99/rakie-k3s-security2.git","has_code":true,"age_days":31},{"id":1259094667,"name":"vuln-lab-docker","full_name":"system-bliss/vuln-lab-docker","html_url":"https://github.com/system-bliss/vuln-lab-docker","description":"CVE-2026 Docker vulnerability reproduction labs","stargazers_count":1,"forks_count":0,"language":"Shell","updated_at":"2026-06-23T06:29:13Z","pushed_at":"2026-06-23T06:29:09Z","created_at":"2026-06-04T07:29:09Z","topics":[],"owner":{"login":"system-bliss","html_url":"https://github.com/system-bliss"},"clone_url":"https://github.com/system-bliss/vuln-lab-docker.git","has_code":true,"age_days":21},{"id":1228316174,"name":"mcp-armor","full_name":"studiomeyer-io/mcp-armor","html_url":"https://github.com/studiomeyer-io/mcp-armor","description":"Drop-in Rust sidecar for MCP servers — scans tool calls for prompt injection, validates Ed25519 manifest signatures, blocks marketplace-poisoning vectors. \u003c5ms p99 overhead. Defense against OX Security MCP advisory (10+ CVEs, April 2026).","stargazers_count":1,"forks_count":0,"language":"Rust","updated_at":"2026-06-22T12:35:23Z","pushed_at":"2026-06-21T18:27:29Z","created_at":"2026-05-03T21:49:25Z","topics":["anthropic","built-in-mallorca","claude","ed25519","mcp","mcp-security","mcp-server","model-context-protocol","prompt-injection","rust","security","sidecar","signature","supply-chain-security"],"owner":{"login":"studiomeyer-io","html_url":"https://github.com/studiomeyer-io"},"clone_url":"https://github.com/studiomeyer-io/mcp-armor.git","has_code":true,"age_days":52},{"id":1139171603,"name":"hikvision-exploiter","full_name":"saaydmr/hikvision-exploiter","html_url":"https://github.com/saaydmr/hikvision-exploiter","description":"CVE-2017-7921, CVE-2021-36260 updated 21/01/2026","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-02-18T09:46:56Z","pushed_at":"2026-01-21T16:07:19Z","created_at":"2026-01-21T16:04:47Z","topics":[],"owner":{"login":"saaydmr","html_url":"https://github.com/saaydmr"},"clone_url":"https://github.com/saaydmr/hikvision-exploiter.git","has_code":true,"age_days":155},{"id":1131094542,"name":"List-CVE-2025-2026","full_name":"magercode/List-CVE-2025-2026","html_url":"https://github.com/magercode/List-CVE-2025-2026","description":"Daftar CVE 2025-2026 terupdate","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-02-22T03:40:52Z","pushed_at":"2026-01-09T13:18:44Z","created_at":"2026-01-09T13:18:18Z","topics":[],"owner":{"login":"magercode","html_url":"https://github.com/magercode"},"clone_url":"https://github.com/magercode/List-CVE-2025-2026.git","has_code":false,"age_days":167},{"id":1168914129,"name":"Win10-Security-Patches","full_name":"Win10-Legacy-Shield/Win10-Security-Patches","html_url":"https://github.com/Win10-Legacy-Shield/Win10-Security-Patches","description":"Windows 10 reached its official End of Life (EoL). Today, in 2026, over 1 billion PCs remain without free security updates. This repository is dedicated to bridging that gap by providing transparent, community-verified mitigations for critical CVEs discovered after the support ended.","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-02-28T01:18:59Z","pushed_at":"2026-02-28T00:40:26Z","created_at":"2026-02-28T00:01:23Z","topics":[],"owner":{"login":"Win10-Legacy-Shield","html_url":"https://github.com/Win10-Legacy-Shield"},"clone_url":"https://github.com/Win10-Legacy-Shield/Win10-Security-Patches.git","has_code":false,"age_days":117},{"id":1164897539,"name":"CVE-2025-54100-BYPASS-","full_name":"R3lva/CVE-2025-54100-BYPASS-","html_url":"https://github.com/R3lva/CVE-2025-54100-BYPASS-","description":"CVE-2025-54100 POC \"simple\" Bypass Patch (working on 2026)","stargazers_count":1,"forks_count":0,"language":"Batchfile","updated_at":"2026-02-23T20:12:58Z","pushed_at":"2026-02-23T15:59:15Z","created_at":"2026-02-23T15:53:57Z","topics":[],"owner":{"login":"R3lva","html_url":"https://github.com/R3lva"},"clone_url":"https://github.com/R3lva/CVE-2025-54100-BYPASS-.git","has_code":true,"age_days":122},{"id":1154618984,"name":"cve-2026-oracle","full_name":"compfaculty/cve-2026-oracle","html_url":"https://github.com/compfaculty/cve-2026-oracle","description":"","stargazers_count":1,"forks_count":0,"language":"Go","updated_at":"2026-03-15T18:20:36Z","pushed_at":"2026-02-10T16:08:59Z","created_at":"2026-02-10T15:40:34Z","topics":[],"owner":{"login":"compfaculty","html_url":"https://github.com/compfaculty"},"clone_url":"https://github.com/compfaculty/cve-2026-oracle.git","has_code":true,"age_days":135},{"id":1225878846,"name":"CVE-Privilage-Escalation","full_name":"Future-Web2/CVE-Privilage-Escalation","html_url":"https://github.com/Future-Web2/CVE-Privilage-Escalation","description":"This is a new CVE posted and anonsed 2026 April. CVE can run this script and run with proccess on the RAM and automation run '''sudo su''' adu you can use root shell.","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-05-03T08:23:42Z","pushed_at":"2026-04-30T18:36:33Z","created_at":"2026-04-30T18:33:01Z","topics":[],"owner":{"login":"Future-Web2","html_url":"https://github.com/Future-Web2"},"clone_url":"https://github.com/Future-Web2/CVE-Privilage-Escalation.git","has_code":true,"age_days":56},{"id":1225783264,"name":"CVE-2026031432","full_name":"DR7-ZOMBIE/CVE-2026031432","html_url":"https://github.com/DR7-ZOMBIE/CVE-2026031432","description":"Patch Vulenrability - Unix System","stargazers_count":1,"forks_count":0,"language":"Shell","updated_at":"2026-04-30T16:49:23Z","pushed_at":"2026-04-30T16:33:18Z","created_at":"2026-04-30T16:27:26Z","topics":[],"owner":{"login":"DR7-ZOMBIE","html_url":"https://github.com/DR7-ZOMBIE"},"clone_url":"https://github.com/DR7-ZOMBIE/CVE-2026031432.git","has_code":true,"age_days":56},{"id":1225557327,"name":"cve_2026_31431","full_name":"Naimadx123/cve_2026_31431","html_url":"https://github.com/Naimadx123/cve_2026_31431","description":"Exploit POC for CVE_2026_31431","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-05-20T23:08:12Z","pushed_at":"2026-04-29T18:24:24Z","created_at":"2026-04-30T12:00:23Z","topics":[],"owner":{"login":"Naimadx123","html_url":"https://github.com/Naimadx123"},"clone_url":"https://github.com/Naimadx123/cve_2026_31431.git","has_code":false,"age_days":56},{"id":1224221471,"name":"thymeleaf.CVE_2026_40478","full_name":"bmvermeer/thymeleaf.CVE_2026_40478","html_url":"https://github.com/bmvermeer/thymeleaf.CVE_2026_40478","description":"","stargazers_count":1,"forks_count":0,"language":"Java","updated_at":"2026-04-29T20:24:15Z","pushed_at":"2026-04-29T04:29:46Z","created_at":"2026-04-29T04:29:27Z","topics":[],"owner":{"login":"bmvermeer","html_url":"https://github.com/bmvermeer"},"clone_url":"https://github.com/bmvermeer/thymeleaf.CVE_2026_40478.git","has_code":true,"age_days":57},{"id":1200355221,"name":"CVE-2026","full_name":"mystichackers/CVE-2026","html_url":"https://github.com/mystichackers/CVE-2026","description":"PoCs for CVEs discovered in 2026","stargazers_count":1,"forks_count":0,"language":"Python","updated_at":"2026-04-13T12:04:12Z","pushed_at":"2026-04-03T10:16:02Z","created_at":"2026-04-03T10:09:51Z","topics":[],"owner":{"login":"mystichackers","html_url":"https://github.com/mystichackers"},"clone_url":"https://github.com/mystichackers/CVE-2026.git","has_code":true,"age_days":83},{"id":1198463623,"name":"plain-crypto-js-lab","full_name":"0xHackshat/plain-crypto-js-lab","html_url":"https://github.com/0xHackshat/plain-crypto-js-lab","description":"A local simulation lab for reproducing and analyzing the Axios npm supply chain attack (CVE-2026), including malicious dependency injection via plain-crypto-js, for security research and awareness.","stargazers_count":1,"forks_count":0,"language":"JavaScript","updated_at":"2026-04-15T08:38:19Z","pushed_at":"2026-04-01T13:41:45Z","created_at":"2026-04-01T12:57:40Z","topics":[],"owner":{"login":"0xHackshat","html_url":"https://github.com/0xHackshat"},"clone_url":"https://github.com/0xHackshat/plain-crypto-js-lab.git","has_code":true,"age_days":85},{"id":1226413416,"name":"cso-vibecheck","full_name":"git-akki/cso-vibecheck","html_url":"https://github.com/git-akki/cso-vibecheck","description":"Senior-CSO security audit skill for vibe-coded apps. 22-check audit anchored to real 2026 incidents (Moltbook, Lovable CVE-2025-48757). Drop-in Claude Code skill.","stargazers_count":1,"forks_count":0,"language":"Shell","updated_at":"2026-05-01T14:04:38Z","pushed_at":"2026-06-01T03:53:14Z","created_at":"2026-05-01T11:13:52Z","topics":[],"owner":{"login":"git-akki","html_url":"https://github.com/git-akki"},"clone_url":"https://github.com/git-akki/cso-vibecheck.git","has_code":true,"age_days":55},{"id":1269454549,"name":"Aether","full_name":"arbabDeveolperEnterpuner/Aether","html_url":"https://github.com/arbabDeveolperEnterpuner/Aether","description":"A modular, enterprise-grade defensive security suite featuring Biometric Face Authentication, deep Nmap CVE (2017-2026) vulnerability scanning, network packet analysis, and automated remediation mapping.","stargazers_count":1,"forks_count":0,"language":"","updated_at":"2026-06-21T11:44:40Z","pushed_at":"2026-06-14T18:27:06Z","created_at":"2026-06-14T18:27:05Z","topics":[],"owner":{"login":"arbabDeveolperEnterpuner","html_url":"https://github.com/arbabDeveolperEnterpuner"},"clone_url":"https://github.com/arbabDeveolperEnterpuner/Aether.git","has_code":false,"age_days":11},{"id":1278920138,"name":"tl-wr902ac-cve-2026","full_name":"b2uerry/tl-wr902ac-cve-2026","html_url":"https://github.com/b2uerry/tl-wr902ac-cve-2026","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-24T08:57:58Z","pushed_at":"2026-06-24T08:57:54Z","created_at":"2026-06-24T07:57:56Z","topics":[],"owner":{"login":"b2uerry","html_url":"https://github.com/b2uerry"},"clone_url":"https://github.com/b2uerry/tl-wr902ac-cve-2026.git","has_code":true,"age_days":1},{"id":1278867964,"name":"vigil","full_name":"blackjack550/vigil","html_url":"https://github.com/blackjack550/vigil","description":"FFmpeg vulnerability pre-scanner in Go. Detects 30+ CVEs (2020-2026) via container header analysis without triggering decode. RCE risk assessment + codec-based exploit detection.","stargazers_count":0,"forks_count":0,"language":"Go","updated_at":"2026-06-24T08:10:57Z","pushed_at":"2026-06-24T08:14:30Z","created_at":"2026-06-24T07:00:34Z","topics":[],"owner":{"login":"blackjack550","html_url":"https://github.com/blackjack550"},"clone_url":"https://github.com/blackjack550/vigil.git","has_code":true,"age_days":1},{"id":1273253325,"name":"cutenews-2.0-CVEs-2026-Disclosure","full_name":"UmbraDeorum/cutenews-2.0-CVEs-2026-Disclosure","html_url":"https://github.com/UmbraDeorum/cutenews-2.0-CVEs-2026-Disclosure","description":"Cutenews (https://github.com/CuteNews/cutenews-2.0) Multiple CVEs 2026 Disclosure Repository","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-23T08:38:01Z","pushed_at":"2026-06-23T08:37:57Z","created_at":"2026-06-18T10:49:22Z","topics":[],"owner":{"login":"UmbraDeorum","html_url":"https://github.com/UmbraDeorum"},"clone_url":"https://github.com/UmbraDeorum/cutenews-2.0-CVEs-2026-Disclosure.git","has_code":false,"age_days":7},{"id":1277621329,"name":"dirtyfrag-cve-2026","full_name":"MUHAMMADHARIS1144/dirtyfrag-cve-2026","html_url":"https://github.com/MUHAMMADHARIS1144/dirtyfrag-cve-2026","description":"Kernel page cache corruption POCs. Educational/research use only.","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-06-23T03:53:15Z","pushed_at":"2026-06-23T03:53:11Z","created_at":"2026-06-23T03:47:54Z","topics":[],"owner":{"login":"MUHAMMADHARIS1144","html_url":"https://github.com/MUHAMMADHARIS1144"},"clone_url":"https://github.com/MUHAMMADHARIS1144/dirtyfrag-cve-2026.git","has_code":true,"age_days":2},{"id":1275875631,"name":"CVE-2026-MSIAPService","full_name":"LittleSuRii/CVE-2026-MSIAPService","html_url":"https://github.com/LittleSuRii/CVE-2026-MSIAPService","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-21T08:46:20Z","pushed_at":"2026-06-21T08:46:16Z","created_at":"2026-06-21T08:45:50Z","topics":[],"owner":{"login":"LittleSuRii","html_url":"https://github.com/LittleSuRii"},"clone_url":"https://github.com/LittleSuRii/CVE-2026-MSIAPService.git","has_code":true,"age_days":4},{"id":1135243460,"name":"CVE-2026","full_name":"samael0x4/CVE-2026","html_url":"https://github.com/samael0x4/CVE-2026","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-01T12:16:54Z","pushed_at":"2026-04-01T12:16:51Z","created_at":"2026-01-15T20:48:07Z","topics":[],"owner":{"login":"samael0x4","html_url":"https://github.com/samael0x4"},"clone_url":"https://github.com/samael0x4/CVE-2026.git","has_code":true,"age_days":160},{"id":1146766614,"name":"CVE-Aura-Audit-2026","full_name":"rtbrown88-cmyk/CVE-Aura-Audit-2026","html_url":"https://github.com/rtbrown88-cmyk/CVE-Aura-Audit-2026","description":"Comparative Analysis of AI-Enhanced Hardware Resilience","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-01-31T17:40:16Z","pushed_at":"2026-01-31T17:40:13Z","created_at":"2026-01-31T16:40:51Z","topics":[],"owner":{"login":"rtbrown88-cmyk","html_url":"https://github.com/rtbrown88-cmyk"},"clone_url":"https://github.com/rtbrown88-cmyk/CVE-Aura-Audit-2026.git","has_code":false,"age_days":145},{"id":1146172543,"name":"openssl-january-2026-cve-scanner","full_name":"amnnrth/openssl-january-2026-cve-scanner","html_url":"https://github.com/amnnrth/openssl-january-2026-cve-scanner","description":"A lightweight scanner to identify potential OpenSSL CVE exposure by inferring OpenSSL versions from live HTTP and HTTPS services.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-30T18:16:26Z","pushed_at":"2026-01-30T18:16:22Z","created_at":"2026-01-30T18:06:26Z","topics":[],"owner":{"login":"amnnrth","html_url":"https://github.com/amnnrth"},"clone_url":"https://github.com/amnnrth/openssl-january-2026-cve-scanner.git","has_code":true,"age_days":146},{"id":1141585396,"name":"CVE-2026-Apple-V2","full_name":"NiceTop1027/CVE-2026-Apple-V2","html_url":"https://github.com/NiceTop1027/CVE-2026-Apple-V2","description":"","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-01-25T03:41:41Z","pushed_at":"2026-01-25T03:41:36Z","created_at":"2026-01-25T03:40:10Z","topics":[],"owner":{"login":"NiceTop1027","html_url":"https://github.com/NiceTop1027"},"clone_url":"https://github.com/NiceTop1027/CVE-2026-Apple-V2.git","has_code":true,"age_days":151},{"id":1141571227,"name":"CVE-2026-Discord","full_name":"NiceTop1027/CVE-2026-Discord","html_url":"https://github.com/NiceTop1027/CVE-2026-Discord","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-25T03:24:24Z","pushed_at":"2026-01-25T03:24:21Z","created_at":"2026-01-25T02:51:34Z","topics":[],"owner":{"login":"NiceTop1027","html_url":"https://github.com/NiceTop1027"},"clone_url":"https://github.com/NiceTop1027/CVE-2026-Discord.git","has_code":true,"age_days":151},{"id":1141299741,"name":"CVE-2026-Termius","full_name":"NiceTop1027/CVE-2026-Termius","html_url":"https://github.com/NiceTop1027/CVE-2026-Termius","description":"","stargazers_count":0,"forks_count":0,"language":"JavaScript","updated_at":"2026-01-24T16:08:22Z","pushed_at":"2026-01-24T16:08:18Z","created_at":"2026-01-24T16:07:16Z","topics":[],"owner":{"login":"NiceTop1027","html_url":"https://github.com/NiceTop1027"},"clone_url":"https://github.com/NiceTop1027/CVE-2026-Termius.git","has_code":true,"age_days":152},{"id":1141147651,"name":"CVE-2026-Apple","full_name":"NiceTop1027/CVE-2026-Apple","html_url":"https://github.com/NiceTop1027/CVE-2026-Apple","description":"","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-01-24T10:43:26Z","pushed_at":"2026-01-24T10:43:22Z","created_at":"2026-01-24T10:39:28Z","topics":[],"owner":{"login":"NiceTop1027","html_url":"https://github.com/NiceTop1027"},"clone_url":"https://github.com/NiceTop1027/CVE-2026-Apple.git","has_code":true,"age_days":152},{"id":1140539974,"name":"CVE-2026-Pending-Claude-Desktop-RCE","full_name":"NiceTop1027/CVE-2026-Pending-Claude-Desktop-RCE","html_url":"https://github.com/NiceTop1027/CVE-2026-Pending-Claude-Desktop-RCE","description":"","stargazers_count":0,"forks_count":1,"language":"JavaScript","updated_at":"2026-01-24T09:30:42Z","pushed_at":"2026-01-24T09:30:37Z","created_at":"2026-01-23T12:21:32Z","topics":[],"owner":{"login":"NiceTop1027","html_url":"https://github.com/NiceTop1027"},"clone_url":"https://github.com/NiceTop1027/CVE-2026-Pending-Claude-Desktop-RCE.git","has_code":true,"age_days":153},{"id":1141097980,"name":"CVE-2026-D0cker","full_name":"NiceTop1027/CVE-2026-D0cker","html_url":"https://github.com/NiceTop1027/CVE-2026-D0cker","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-24T08:41:28Z","pushed_at":"2026-01-24T08:41:24Z","created_at":"2026-01-24T08:38:12Z","topics":[],"owner":{"login":"NiceTop1027","html_url":"https://github.com/NiceTop1027"},"clone_url":"https://github.com/NiceTop1027/CVE-2026-D0cker.git","has_code":true,"age_days":152},{"id":1140522063,"name":"CVE-2025-52691-PoC-SmarterMail-authentication-bypass-exploit-WT-2026-0001","full_name":"ninjazan420/CVE-2025-52691-PoC-SmarterMail-authentication-bypass-exploit-WT-2026-0001","html_url":"https://github.com/ninjazan420/CVE-2025-52691-PoC-SmarterMail-authentication-bypass-exploit-WT-2026-0001","description":"CVE-2025-52691 PoC: Based on watchtowr's article WT-2026-0001 about an authentication bypass exploit, this one is a functional Python attack script.","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-04-25T05:35:28Z","pushed_at":"2026-01-24T08:12:32Z","created_at":"2026-01-23T11:48:20Z","topics":[],"owner":{"login":"ninjazan420","html_url":"https://github.com/ninjazan420"},"clone_url":"https://github.com/ninjazan420/CVE-2025-52691-PoC-SmarterMail-authentication-bypass-exploit-WT-2026-0001.git","has_code":true,"age_days":153},{"id":1140417583,"name":"cve_2026_24061_cli","full_name":"m3ngx1ng/cve_2026_24061_cli","html_url":"https://github.com/m3ngx1ng/cve_2026_24061_cli","description":"cve_2026_24061快速利用工具","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-23T08:55:18Z","pushed_at":"2026-01-23T08:55:14Z","created_at":"2026-01-23T08:51:03Z","topics":[],"owner":{"login":"m3ngx1ng","html_url":"https://github.com/m3ngx1ng"},"clone_url":"https://github.com/m3ngx1ng/cve_2026_24061_cli.git","has_code":true,"age_days":153},{"id":1140049404,"name":"CVE-2026-XXXX-Meru-Shell-OpenExternal-RCE","full_name":"NiceTop1027/CVE-2026-XXXX-Meru-Shell-OpenExternal-RCE","html_url":"https://github.com/NiceTop1027/CVE-2026-XXXX-Meru-Shell-OpenExternal-RCE","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-22T20:15:11Z","pushed_at":"2026-01-22T20:15:08Z","created_at":"2026-01-22T19:00:46Z","topics":[],"owner":{"login":"NiceTop1027","html_url":"https://github.com/NiceTop1027"},"clone_url":"https://github.com/NiceTop1027/CVE-2026-XXXX-Meru-Shell-OpenExternal-RCE.git","has_code":true,"age_days":154},{"id":1140030510,"name":"CVE-2026-Pending-Extract-Zip-Arbitrary-File-Write","full_name":"NiceTop1027/CVE-2026-Pending-Extract-Zip-Arbitrary-File-Write","html_url":"https://github.com/NiceTop1027/CVE-2026-Pending-Extract-Zip-Arbitrary-File-Write","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-22T18:28:51Z","pushed_at":"2026-01-22T18:28:47Z","created_at":"2026-01-22T18:28:04Z","topics":[],"owner":{"login":"NiceTop1027","html_url":"https://github.com/NiceTop1027"},"clone_url":"https://github.com/NiceTop1027/CVE-2026-Pending-Extract-Zip-Arbitrary-File-Write.git","has_code":true,"age_days":154},{"id":1140017394,"name":"CVE-2026-Pending-Delegator-Command-Injection","full_name":"NiceTop1027/CVE-2026-Pending-Delegator-Command-Injection","html_url":"https://github.com/NiceTop1027/CVE-2026-Pending-Delegator-Command-Injection","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-22T18:07:07Z","pushed_at":"2026-01-22T18:06:43Z","created_at":"2026-01-22T18:05:59Z","topics":[],"owner":{"login":"NiceTop1027","html_url":"https://github.com/NiceTop1027"},"clone_url":"https://github.com/NiceTop1027/CVE-2026-Pending-Delegator-Command-Injection.git","has_code":true,"age_days":154},{"id":1139963210,"name":"CVE-2026-Pending-Flask-Uploads-Path-Traversal-PoC","full_name":"NiceTop1027/CVE-2026-Pending-Flask-Uploads-Path-Traversal-PoC","html_url":"https://github.com/NiceTop1027/CVE-2026-Pending-Flask-Uploads-Path-Traversal-PoC","description":"Demonstration of CWE-22 Path Traversal in Flask-Uploads 0.2.1. For educational and security research purposes only. Tested on Python 3.11.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-22T17:34:02Z","pushed_at":"2026-01-22T17:33:58Z","created_at":"2026-01-22T16:41:39Z","topics":[],"owner":{"login":"NiceTop1027","html_url":"https://github.com/NiceTop1027"},"clone_url":"https://github.com/NiceTop1027/CVE-2026-Pending-Flask-Uploads-Path-Traversal-PoC.git","has_code":true,"age_days":154},{"id":1139994136,"name":"CVE-2026-Pending-Django-Summernote-RCE","full_name":"NiceTop1027/CVE-2026-Pending-Django-Summernote-RCE","html_url":"https://github.com/NiceTop1027/CVE-2026-Pending-Django-Summernote-RCE","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-01-22T17:31:44Z","pushed_at":"2026-01-22T17:31:23Z","created_at":"2026-01-22T17:29:07Z","topics":[],"owner":{"login":"NiceTop1027","html_url":"https://github.com/NiceTop1027"},"clone_url":"https://github.com/NiceTop1027/CVE-2026-Pending-Django-Summernote-RCE.git","has_code":true,"age_days":154},{"id":1134181710,"name":"CVE-2026-Dashboard","full_name":"MehdiLeDeaut/CVE-2026-Dashboard","html_url":"https://github.com/MehdiLeDeaut/CVE-2026-Dashboard","description":"Interactive visualization - CVE-2026 chain attack demo","stargazers_count":0,"forks_count":0,"language":"HTML","updated_at":"2026-01-14T12:16:24Z","pushed_at":"2026-01-14T13:02:46Z","created_at":"2026-01-14T11:12:48Z","topics":[],"owner":{"login":"MehdiLeDeaut","html_url":"https://github.com/MehdiLeDeaut"},"clone_url":"https://github.com/MehdiLeDeaut/CVE-2026-Dashboard.git","has_code":true,"age_days":162},{"id":1148563035,"name":"CVE2026","full_name":"CVE2026/CVE2026","html_url":"https://github.com/CVE2026/CVE2026","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-14T13:13:02Z","pushed_at":"2026-06-14T13:12:59Z","created_at":"2026-02-03T05:23:18Z","topics":[],"owner":{"login":"CVE2026","html_url":"https://github.com/CVE2026"},"clone_url":"https://github.com/CVE2026/CVE2026.git","has_code":false,"age_days":142},{"id":1164430404,"name":"cve-20260603","full_name":"luong005/cve-20260603","html_url":"https://github.com/luong005/cve-20260603","description":"","stargazers_count":0,"forks_count":0,"language":"Java","updated_at":"2026-03-24T01:58:53Z","pushed_at":"2026-03-23T12:07:00Z","created_at":"2026-02-23T04:22:59Z","topics":[],"owner":{"login":"luong005","html_url":"https://github.com/luong005"},"clone_url":"https://github.com/luong005/cve-20260603.git","has_code":true,"age_days":122},{"id":1167618210,"name":"CVE_2026_25892","full_name":"dzmind2312/CVE_2026_25892","html_url":"https://github.com/dzmind2312/CVE_2026_25892","description":"CVE_2026_25892 BY DZ MIND INJECTOR","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-02-26T23:42:06Z","pushed_at":"2026-02-26T23:42:03Z","created_at":"2026-02-26T13:51:31Z","topics":[],"owner":{"login":"dzmind2312","html_url":"https://github.com/dzmind2312"},"clone_url":"https://github.com/dzmind2312/CVE_2026_25892.git","has_code":true,"age_days":119},{"id":1149902392,"name":"CVE-2026-XXXX-NPrinting-On-Demand-Exploit","full_name":"sanmirgabriel/CVE-2026-XXXX-NPrinting-On-Demand-Exploit","html_url":"https://github.com/sanmirgabriel/CVE-2026-XXXX-NPrinting-On-Demand-Exploit","description":"Vulnerability in \"NPrinting On-Demand\" Extension for Qlik Sense","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-02-04T16:55:33Z","pushed_at":"2026-02-04T16:52:32Z","created_at":"2026-02-04T16:49:37Z","topics":[],"owner":{"login":"sanmirgabriel","html_url":"https://github.com/sanmirgabriel"},"clone_url":"https://github.com/sanmirgabriel/CVE-2026-XXXX-NPrinting-On-Demand-Exploit.git","has_code":false,"age_days":141},{"id":1149173466,"name":"CVE-2026-XXXX-Pixeon-WebLaudos-AuthBypass","full_name":"sanmirgabriel/CVE-2026-XXXX-Pixeon-WebLaudos-AuthBypass","html_url":"https://github.com/sanmirgabriel/CVE-2026-XXXX-Pixeon-WebLaudos-AuthBypass","description":"critical vulnerability,  Authentication Bypass via Client-Side + Unauthenticated IDOR, discovered in Pixeon WebLaudos","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-02-03T20:15:28Z","pushed_at":"2026-02-03T20:15:14Z","created_at":"2026-02-03T20:03:25Z","topics":[],"owner":{"login":"sanmirgabriel","html_url":"https://github.com/sanmirgabriel"},"clone_url":"https://github.com/sanmirgabriel/CVE-2026-XXXX-Pixeon-WebLaudos-AuthBypass.git","has_code":false,"age_days":142},{"id":1148732379,"name":"OAuth2-Proxy-Path-Traversal-Exploit-Tool","full_name":"zwanski2019/OAuth2-Proxy-Path-Traversal-Exploit-Tool","html_url":"https://github.com/zwanski2019/OAuth2-Proxy-Path-Traversal-Exploit-Tool","description":"exploit the OAuth2 Proxy path traversal vulnerability (CVE-2026-XXXXX):  Tool Features Automatic path traversal detection OIDC endpoint enumeration Unauthorized flow initiation Report generation Multi-target support","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-02-03T10:48:54Z","pushed_at":"2026-02-03T11:11:36Z","created_at":"2026-02-03T09:54:19Z","topics":[],"owner":{"login":"zwanski2019","html_url":"https://github.com/zwanski2019"},"clone_url":"https://github.com/zwanski2019/OAuth2-Proxy-Path-Traversal-Exploit-Tool.git","has_code":true,"age_days":142},{"id":1196148984,"name":"CVE-2026-npm-bin-links-RCE-Exploit","full_name":"Anh-Khoa-PC/CVE-2026-npm-bin-links-RCE-Exploit","html_url":"https://github.com/Anh-Khoa-PC/CVE-2026-npm-bin-links-RCE-Exploit","description":"A critical Path Traversal vulnerability exists in the @npmcli/bin-links library due to insufficient sanitization of the bin field in package.json. By crafting a malicious package with traversal sequences (e.g., ../../), an attacker can escape the intended node_modules/.bin directory during installation.","stargazers_count":0,"forks_count":0,"language":"JavaScript","updated_at":"2026-04-05T05:39:49Z","pushed_at":"2026-04-05T05:39:45Z","created_at":"2026-03-30T12:21:53Z","topics":[],"owner":{"login":"Anh-Khoa-PC","html_url":"https://github.com/Anh-Khoa-PC"},"clone_url":"https://github.com/Anh-Khoa-PC/CVE-2026-npm-bin-links-RCE-Exploit.git","has_code":true,"age_days":87},{"id":1197561073,"name":"SecurityCheck","full_name":"elleleg-alt/SecurityCheck","html_url":"https://github.com/elleleg-alt/SecurityCheck","description":"Covers: claude.ai (Personal) · Claude Desktop · Claude Cowork · Claude Code · Claude Enterprise/Team · API \u0026 Developers Package: nextjs-security-skill Last updated: March 2026 Sources: Anthropic Help Center, Claude Code Docs, Anthropic Trust Center, Harmonic Security, PromptArmor CVE Disclosures","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-31T17:21:41Z","pushed_at":"2026-03-31T17:21:41Z","created_at":"2026-03-31T17:21:40Z","topics":[],"owner":{"login":"elleleg-alt","html_url":"https://github.com/elleleg-alt"},"clone_url":"https://github.com/elleleg-alt/SecurityCheck.git","has_code":false,"age_days":86},{"id":1190925520,"name":"CVE2026_21509","full_name":"YoussefMami/CVE2026_21509","html_url":"https://github.com/YoussefMami/CVE2026_21509","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-25T09:07:11Z","pushed_at":"2026-03-25T09:07:08Z","created_at":"2026-03-24T18:50:50Z","topics":[],"owner":{"login":"YoussefMami","html_url":"https://github.com/YoussefMami"},"clone_url":"https://github.com/YoussefMami/CVE2026_21509.git","has_code":true,"age_days":93},{"id":1184770639,"name":"Moodle-Auth-RCE-CVE-2026-XXXX","full_name":"r3m0t3nu11/Moodle-Auth-RCE-CVE-2026-XXXX","html_url":"https://github.com/r3m0t3nu11/Moodle-Auth-RCE-CVE-2026-XXXX","description":"Comming soon Moodle Auth RCE","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-18T00:10:43Z","pushed_at":"2026-03-18T00:10:39Z","created_at":"2026-03-17T23:15:43Z","topics":[],"owner":{"login":"r3m0t3nu11","html_url":"https://github.com/r3m0t3nu11"},"clone_url":"https://github.com/r3m0t3nu11/Moodle-Auth-RCE-CVE-2026-XXXX.git","has_code":false,"age_days":99},{"id":1181762567,"name":"Cve_2026_29000_exploit","full_name":"FranzAlvis/Cve_2026_29000_exploit","html_url":"https://github.com/FranzAlvis/Cve_2026_29000_exploit","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-14T16:12:04Z","pushed_at":"2026-03-14T16:12:01Z","created_at":"2026-03-14T15:37:43Z","topics":[],"owner":{"login":"FranzAlvis","html_url":"https://github.com/FranzAlvis"},"clone_url":"https://github.com/FranzAlvis/Cve_2026_29000_exploit.git","has_code":true,"age_days":103},{"id":1178151693,"name":"MangoPunch-CVE-2022-31898","full_name":"CryptoGhost1/MangoPunch-CVE-2022-31898","html_url":"https://github.com/CryptoGhost1/MangoPunch-CVE-2022-31898","description":"Authenticated Command Injection Tool (CVE-2022-31898) - HACKCONRD 2026.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-10T18:57:31Z","pushed_at":"2026-03-10T18:55:07Z","created_at":"2026-03-10T18:34:09Z","topics":[],"owner":{"login":"CryptoGhost1","html_url":"https://github.com/CryptoGhost1"},"clone_url":"https://github.com/CryptoGhost1/MangoPunch-CVE-2022-31898.git","has_code":true,"age_days":107},{"id":1178071310,"name":"CVE-2026-MOODLE-RCE","full_name":"r3m0t3nu11/CVE-2026-MOODLE-RCE","html_url":"https://github.com/r3m0t3nu11/CVE-2026-MOODLE-RCE","description":"Chained bugs lead to RCE","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-03-10T16:53:54Z","pushed_at":"2026-03-10T16:53:54Z","created_at":"2026-03-10T16:53:54Z","topics":[],"owner":{"login":"r3m0t3nu11","html_url":"https://github.com/r3m0t3nu11"},"clone_url":"https://github.com/r3m0t3nu11/CVE-2026-MOODLE-RCE.git","has_code":false,"age_days":107},{"id":1174811584,"name":"CVEs-exploit-2026","full_name":"anacarsi/CVEs-exploit-2026","html_url":"https://github.com/anacarsi/CVEs-exploit-2026","description":"Reproducing CVEs and testing impact.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-03-06T22:46:40Z","pushed_at":"2026-03-06T22:44:57Z","created_at":"2026-03-06T21:42:34Z","topics":[],"owner":{"login":"anacarsi","html_url":"https://github.com/anacarsi"},"clone_url":"https://github.com/anacarsi/CVEs-exploit-2026.git","has_code":true,"age_days":110},{"id":1212439336,"name":"cross-country-cve-2026","full_name":"janAWARE7/cross-country-cve-2026","html_url":"https://github.com/janAWARE7/cross-country-cve-2026","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-16T10:26:30Z","pushed_at":"2026-06-16T10:26:26Z","created_at":"2026-04-16T11:33:14Z","topics":[],"owner":{"login":"janAWARE7","html_url":"https://github.com/janAWARE7"},"clone_url":"https://github.com/janAWARE7/cross-country-cve-2026.git","has_code":true,"age_days":70},{"id":1225544951,"name":"cve_2026_31431_live-mitigation","full_name":"mgmlme/cve_2026_31431_live-mitigation","html_url":"https://github.com/mgmlme/cve_2026_31431_live-mitigation","description":"\"Copy Fail\" mitigation for algif_aead builtin environment","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-01T15:14:39Z","pushed_at":"2026-05-01T15:14:35Z","created_at":"2026-04-30T11:44:07Z","topics":[],"owner":{"login":"mgmlme","html_url":"https://github.com/mgmlme"},"clone_url":"https://github.com/mgmlme/cve_2026_31431_live-mitigation.git","has_code":true,"age_days":56},{"id":1225124011,"name":"cve-2026","full_name":"L0serH4/cve-2026","html_url":"https://github.com/L0serH4/cve-2026","description":"cve-2026","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-30T01:10:10Z","pushed_at":"2026-04-30T01:11:44Z","created_at":"2026-04-30T01:10:06Z","topics":[],"owner":{"login":"L0serH4","html_url":"https://github.com/L0serH4"},"clone_url":"https://github.com/L0serH4/cve-2026.git","has_code":false,"age_days":56},{"id":1221393548,"name":"cve-breeze-2026","full_name":"cazzysoci/cve-breeze-2026","html_url":"https://github.com/cazzysoci/cve-breeze-2026","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-26T08:20:17Z","pushed_at":"2026-04-26T08:20:14Z","created_at":"2026-04-26T06:24:21Z","topics":[],"owner":{"login":"cazzysoci","html_url":"https://github.com/cazzysoci"},"clone_url":"https://github.com/cazzysoci/cve-breeze-2026.git","has_code":true,"age_days":60},{"id":1218733759,"name":"cve-2026-human-001","full_name":"dermorz/cve-2026-human-001","html_url":"https://github.com/dermorz/cve-2026-human-001","description":"","stargazers_count":0,"forks_count":0,"language":"HTML","updated_at":"2026-04-23T07:02:43Z","pushed_at":"2026-04-23T07:02:40Z","created_at":"2026-04-23T06:56:22Z","topics":[],"owner":{"login":"dermorz","html_url":"https://github.com/dermorz"},"clone_url":"https://github.com/dermorz/cve-2026-human-001.git","has_code":true,"age_days":63},{"id":1217761038,"name":"CVE-2026-Mastodon-Streaming-Token-Leakage","full_name":"1402307692/CVE-2026-Mastodon-Streaming-Token-Leakage","html_url":"https://github.com/1402307692/CVE-2026-Mastodon-Streaming-Token-Leakage","description":"Mastodon Streaming Server Security Vulnerability PoC - CVE-2026-Mastodon-Streaming-Token-Leakage","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-04-22T07:45:05Z","pushed_at":"2026-04-22T07:45:04Z","created_at":"2026-04-22T07:34:44Z","topics":[],"owner":{"login":"1402307692","html_url":"https://github.com/1402307692"},"clone_url":"https://github.com/1402307692/CVE-2026-Mastodon-Streaming-Token-Leakage.git","has_code":true,"age_days":64},{"id":1217761013,"name":"CVE-2026-Mastodon-Streaming-Metrics-Unauthorized","full_name":"1402307692/CVE-2026-Mastodon-Streaming-Metrics-Unauthorized","html_url":"https://github.com/1402307692/CVE-2026-Mastodon-Streaming-Metrics-Unauthorized","description":"Mastodon Streaming Server Security Vulnerability PoC - CVE-2026-Mastodon-Streaming-Metrics-Unauthorized","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-04-22T07:45:03Z","pushed_at":"2026-04-22T07:44:59Z","created_at":"2026-04-22T07:34:41Z","topics":[],"owner":{"login":"1402307692","html_url":"https://github.com/1402307692"},"clone_url":"https://github.com/1402307692/CVE-2026-Mastodon-Streaming-Metrics-Unauthorized.git","has_code":true,"age_days":64},{"id":1217760987,"name":"CVE-2026-Mastodon-Streaming-CRLF-Injection","full_name":"1402307692/CVE-2026-Mastodon-Streaming-CRLF-Injection","html_url":"https://github.com/1402307692/CVE-2026-Mastodon-Streaming-CRLF-Injection","description":"Mastodon Streaming Server Security Vulnerability PoC - CVE-2026-Mastodon-Streaming-CRLF-Injection","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-04-22T07:37:35Z","pushed_at":"2026-04-22T07:37:32Z","created_at":"2026-04-22T07:34:39Z","topics":[],"owner":{"login":"1402307692","html_url":"https://github.com/1402307692"},"clone_url":"https://github.com/1402307692/CVE-2026-Mastodon-Streaming-CRLF-Injection.git","has_code":true,"age_days":64},{"id":1216132013,"name":"macos-vuln-check","full_name":"endiselmanaj/macos-vuln-check","html_url":"https://github.com/endiselmanaj/macos-vuln-check","description":"macOS vulnerability check script - detects 23 recent supply chain attacks and CVEs (Jan-Apr 2026)","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-04-20T15:46:14Z","pushed_at":"2026-04-20T15:46:01Z","created_at":"2026-04-20T15:45:59Z","topics":[],"owner":{"login":"endiselmanaj","html_url":"https://github.com/endiselmanaj"},"clone_url":"https://github.com/endiselmanaj/macos-vuln-check.git","has_code":true,"age_days":66},{"id":1207444178,"name":"CVEChavez2026","full_name":"JEduardo-Chavez/CVEChavez2026","html_url":"https://github.com/JEduardo-Chavez/CVEChavez2026","description":"Curriculum actualizado al 2026","stargazers_count":0,"forks_count":0,"language":"TypeScript","updated_at":"2026-04-11T00:39:29Z","pushed_at":"2026-04-11T00:39:26Z","created_at":"2026-04-11T00:27:38Z","topics":[],"owner":{"login":"JEduardo-Chavez","html_url":"https://github.com/JEduardo-Chavez"},"clone_url":"https://github.com/JEduardo-Chavez/CVEChavez2026.git","has_code":true,"age_days":75},{"id":1202961230,"name":"forticlient_ems_cve_2026_35616_poc.py","full_name":"fevar54/forticlient_ems_cve_2026_35616_poc.py","html_url":"https://github.com/fevar54/forticlient_ems_cve_2026_35616_poc.py","description":"","stargazers_count":0,"forks_count":1,"language":"Python","updated_at":"2026-04-06T15:31:59Z","pushed_at":"2026-04-06T15:31:55Z","created_at":"2026-04-06T15:24:37Z","topics":[],"owner":{"login":"fevar54","html_url":"https://github.com/fevar54"},"clone_url":"https://github.com/fevar54/forticlient_ems_cve_2026_35616_poc.py.git","has_code":true,"age_days":80},{"id":1200120765,"name":"CVE-2025-43990-Magento-RCE","full_name":"AMkkk221/CVE-2025-43990-Magento-RCE","html_url":"https://github.com/AMkkk221/CVE-2025-43990-Magento-RCE","description":"Magento APSB25-94 Unauthenticated File Upload to RCE (CVE-2026-XXXX) - Eval Shell + Probe Scanner","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-09T07:20:09Z","pushed_at":"2026-04-03T04:02:53Z","created_at":"2026-04-03T04:00:25Z","topics":[],"owner":{"login":"AMkkk221","html_url":"https://github.com/AMkkk221"},"clone_url":"https://github.com/AMkkk221/CVE-2025-43990-Magento-RCE.git","has_code":true,"age_days":83},{"id":1199651560,"name":"CVE-2026-XXXXX","full_name":"roman-sv-sec/CVE-2026-XXXXX","html_url":"https://github.com/roman-sv-sec/CVE-2026-XXXXX","description":"Remote Code Execution (RCE) vulnerability in ExifTool (versions 12.82 - 13.53)","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-04-02T15:15:53Z","pushed_at":"2026-04-02T15:15:47Z","created_at":"2026-04-02T15:07:37Z","topics":[],"owner":{"login":"roman-sv-sec","html_url":"https://github.com/roman-sv-sec"},"clone_url":"https://github.com/roman-sv-sec/CVE-2026-XXXXX.git","has_code":false,"age_days":84},{"id":1198233547,"name":"axios-scanner","full_name":"ssynical/axios-scanner","html_url":"https://github.com/ssynical/axios-scanner","description":"A simple and minimal project designed to scan for axios supply chain attack (CVE-2026) IOCs","stargazers_count":0,"forks_count":0,"language":"JavaScript","updated_at":"2026-04-02T11:39:39Z","pushed_at":"2026-04-02T11:39:36Z","created_at":"2026-04-01T08:29:35Z","topics":[],"owner":{"login":"ssynical","html_url":"https://github.com/ssynical"},"clone_url":"https://github.com/ssynical/axios-scanner.git","has_code":true,"age_days":85},{"id":1198878577,"name":"axios-vulnerability","full_name":"slmingol/axios-vulnerability","html_url":"https://github.com/slmingol/axios-vulnerability","description":"Tools for assessing and fixing the axios npm supply chain vulnerability (CVE-2026-axios)","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-04-01T21:06:49Z","pushed_at":"2026-04-01T21:06:44Z","created_at":"2026-04-01T21:06:42Z","topics":[],"owner":{"login":"slmingol","html_url":"https://github.com/slmingol"},"clone_url":"https://github.com/slmingol/axios-vulnerability.git","has_code":true,"age_days":84},{"id":1197855132,"name":"malxios-checker","full_name":"MyMel2001/malxios-checker","html_url":"https://github.com/MyMel2001/malxios-checker","description":"MALicious aXIOS CHECKER - Checks your packages for the CVE that happened March 31st 2026","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-04-01T00:18:29Z","pushed_at":"2026-04-01T00:18:26Z","created_at":"2026-04-01T00:16:01Z","topics":[],"owner":{"login":"MyMel2001","html_url":"https://github.com/MyMel2001"},"clone_url":"https://github.com/MyMel2001/malxios-checker.git","has_code":true,"age_days":85},{"id":1229851414,"name":"Rat5ak-Nadsec-2026-CVE-CERTIFIED-HOOD-CLASSICS","full_name":"Rat5ak/Rat5ak-Nadsec-2026-CVE-CERTIFIED-HOOD-CLASSICS","html_url":"https://github.com/Rat5ak/Rat5ak-Nadsec-2026-CVE-CERTIFIED-HOOD-CLASSICS","description":"Stuff I be lookin @","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-12T10:25:34Z","pushed_at":"2026-06-12T10:25:30Z","created_at":"2026-05-05T12:50:40Z","topics":[],"owner":{"login":"Rat5ak","html_url":"https://github.com/Rat5ak"},"clone_url":"https://github.com/Rat5ak/Rat5ak-Nadsec-2026-CVE-CERTIFIED-HOOD-CLASSICS.git","has_code":false,"age_days":51},{"id":1234529330,"name":"theres-no-place-like-home","full_name":"xn0tsa/theres-no-place-like-home","html_url":"https://github.com/xn0tsa/theres-no-place-like-home","description":"Ten CVEs against the Aqara/Lumi IoT cloud platform — public disclosure 2026-06-11","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-11T20:31:21Z","pushed_at":"2026-06-11T20:31:17Z","created_at":"2026-05-10T09:57:47Z","topics":[],"owner":{"login":"xn0tsa","html_url":"https://github.com/xn0tsa"},"clone_url":"https://github.com/xn0tsa/theres-no-place-like-home.git","has_code":true,"age_days":46},{"id":1249491062,"name":"ai-cve-analyzer","full_name":"Wizen-Labs/ai-cve-analyzer","html_url":"https://github.com/Wizen-Labs/ai-cve-analyzer","description":"This project develops a hybrid machine learning pipeline for automated  CVE (Common Vulnerabilities and Exposures) severity classification,  addressing the critical window between vulnerability disclosure and  official CVSS scoring — a period now affecting 80-85% of newly published  CVEs following NIST's April 2026 triage model change.","stargazers_count":0,"forks_count":0,"language":"Jupyter Notebook","updated_at":"2026-06-08T10:00:13Z","pushed_at":"2026-06-04T14:07:23Z","created_at":"2026-05-25T18:57:15Z","topics":[],"owner":{"login":"Wizen-Labs","html_url":"https://github.com/Wizen-Labs"},"clone_url":"https://github.com/Wizen-Labs/ai-cve-analyzer.git","has_code":true,"age_days":31},{"id":1232634715,"name":"CVE-2026","full_name":"sombra0316/CVE-2026","html_url":"https://github.com/sombra0316/CVE-2026","description":"个人提交","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-04T06:35:39Z","pushed_at":"2026-06-04T06:35:36Z","created_at":"2026-05-08T05:56:06Z","topics":[],"owner":{"login":"sombra0316","html_url":"https://github.com/sombra0316"},"clone_url":"https://github.com/sombra0316/CVE-2026.git","has_code":false,"age_days":48},{"id":1242558105,"name":"Breach-Entry","full_name":"Ruby570bocadito/Breach-Entry","html_url":"https://github.com/Ruby570bocadito/Breach-Entry","description":"Zero-day exploit research — CVE-2026-XXXX: apport ExecutablePath spoofing for Ubuntu Server 24.04 LTS with full proof-of-concept.","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-06-02T13:24:47Z","pushed_at":"2026-06-02T13:23:45Z","created_at":"2026-05-18T14:33:55Z","topics":["apport","cve","exploit","lpe","security-research","ubuntu","vulnerability-research","zero-day"],"owner":{"login":"Ruby570bocadito","html_url":"https://github.com/Ruby570bocadito"},"clone_url":"https://github.com/Ruby570bocadito/Breach-Entry.git","has_code":true,"age_days":38},{"id":1254916014,"name":"cve_2026_frag_family_fix","full_name":"attaattaatta/cve_2026_frag_family_fix","html_url":"https://github.com/attaattaatta/cve_2026_frag_family_fix","description":"","stargazers_count":0,"forks_count":0,"language":"Go","updated_at":"2026-05-31T08:39:12Z","pushed_at":"2026-05-31T08:39:53Z","created_at":"2026-05-31T06:49:56Z","topics":[],"owner":{"login":"attaattaatta","html_url":"https://github.com/attaattaatta"},"clone_url":"https://github.com/attaattaatta/cve_2026_frag_family_fix.git","has_code":true,"age_days":25},{"id":1254241347,"name":"CVE-2026-JBrowse-Injection","full_name":"jabir-dev/CVE-2026-JBrowse-Injection","html_url":"https://github.com/jabir-dev/CVE-2026-JBrowse-Injection","description":"JBrowse genome browser config injection via URL params. CWE-94/CWE-79/CWE-918. All 1.x versions.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-30T10:34:14Z","pushed_at":"2026-05-30T10:34:11Z","created_at":"2026-05-30T10:15:15Z","topics":[],"owner":{"login":"jabir-dev","html_url":"https://github.com/jabir-dev"},"clone_url":"https://github.com/jabir-dev/CVE-2026-JBrowse-Injection.git","has_code":true,"age_days":26},{"id":1254224856,"name":"CVE-2026-Bowtie2-OOB","full_name":"jabir-dev/CVE-2026-Bowtie2-OOB","html_url":"https://github.com/jabir-dev/CVE-2026-Bowtie2-OOB","description":"Bowtie2 Out-of-Bounds Read via crafted BAM file. CWE-125. SIGSEGV confirmed on v2.5.5.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-30T09:47:46Z","pushed_at":"2026-05-30T09:47:42Z","created_at":"2026-05-30T09:47:39Z","topics":[],"owner":{"login":"jabir-dev","html_url":"https://github.com/jabir-dev"},"clone_url":"https://github.com/jabir-dev/CVE-2026-Bowtie2-OOB.git","has_code":true,"age_days":26},{"id":1254212635,"name":"CVE-2026-BWA-RCE","full_name":"jabir-dev/CVE-2026-BWA-RCE","html_url":"https://github.com/jabir-dev/CVE-2026-BWA-RCE","description":"BWA (Burrows-Wheeler Aligner) kopen() Command Injection - Remote Code Execution. CVSS 4.0: 10.0 Critical.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-30T09:28:44Z","pushed_at":"2026-05-30T09:28:25Z","created_at":"2026-05-30T09:28:10Z","topics":[],"owner":{"login":"jabir-dev","html_url":"https://github.com/jabir-dev"},"clone_url":"https://github.com/jabir-dev/CVE-2026-BWA-RCE.git","has_code":true,"age_days":26},{"id":1245106520,"name":"anjvision-cve-2026","full_name":"andylee77/anjvision-cve-2026","html_url":"https://github.com/andylee77/anjvision-cve-2026","description":"Coordinated disclosure for vulnerabilities in Anjvision YSSD-RTMP-H5 IP-camera firmware (Jennov / Anpviz / GWSecurity / SV3C / Jovision / Esunstar / ICamra). 10 CVEs filed with MITRE 2026-05-20; full write-up on or before 2026-08-18.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-22T20:40:03Z","pushed_at":"2026-05-22T20:39:47Z","created_at":"2026-05-20T23:16:47Z","topics":[],"owner":{"login":"andylee77","html_url":"https://github.com/andylee77"},"clone_url":"https://github.com/andylee77/anjvision-cve-2026.git","has_code":false,"age_days":35},{"id":1246995079,"name":"trending-cve-scanners","full_name":"ridhinva/trending-cve-scanners","html_url":"https://github.com/ridhinva/trending-cve-scanners","description":"May 2026 trending CVE scanners - PAN-OS, WordPress, BeyondTrust, GHE, ingress-nginx","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-03T17:53:24Z","pushed_at":"2026-05-22T19:34:37Z","created_at":"2026-05-22T19:34:26Z","topics":[],"owner":{"login":"ridhinva","html_url":"https://github.com/ridhinva"},"clone_url":"https://github.com/ridhinva/trending-cve-scanners.git","has_code":true,"age_days":34},{"id":1246683054,"name":"CVE-2026-AES-Wrap-PAD-PoC","full_name":"GraoMelo/CVE-2026-AES-Wrap-PAD-PoC","html_url":"https://github.com/GraoMelo/CVE-2026-AES-Wrap-PAD-PoC","description":"Heap Buffer Overflow in AES Wrap with Padding (OpenSSL 4.0.0) — CVE-2026 draft PoC","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-22T13:13:20Z","pushed_at":"2026-05-22T13:13:15Z","created_at":"2026-05-22T12:50:22Z","topics":[],"owner":{"login":"GraoMelo","html_url":"https://github.com/GraoMelo"},"clone_url":"https://github.com/GraoMelo/CVE-2026-AES-Wrap-PAD-PoC.git","has_code":true,"age_days":34},{"id":1246683047,"name":"CVE-2026-TDES-Wrap-PoC","full_name":"GraoMelo/CVE-2026-TDES-Wrap-PoC","html_url":"https://github.com/GraoMelo/CVE-2026-TDES-Wrap-PoC","description":"Heap Buffer Overflow in TDES Wrap Cipher (OpenSSL 4.0.0) — CVE-2026 draft PoC","stargazers_count":0,"forks_count":0,"language":"C","updated_at":"2026-05-22T13:13:07Z","pushed_at":"2026-05-22T13:12:04Z","created_at":"2026-05-22T12:50:21Z","topics":[],"owner":{"login":"GraoMelo","html_url":"https://github.com/GraoMelo"},"clone_url":"https://github.com/GraoMelo/CVE-2026-TDES-Wrap-PoC.git","has_code":true,"age_days":34},{"id":1244231546,"name":"cve2026","full_name":"samarthop2011/cve2026","html_url":"https://github.com/samarthop2011/cve2026","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-20T04:54:59Z","pushed_at":"2026-05-20T04:54:55Z","created_at":"2026-05-20T04:45:25Z","topics":[],"owner":{"login":"samarthop2011","html_url":"https://github.com/samarthop2011"},"clone_url":"https://github.com/samarthop2011/cve2026.git","has_code":false,"age_days":36},{"id":1238152524,"name":"compliance-suite-mcp","full_name":"Crow0077/compliance-suite-mcp","html_url":"https://github.com/Crow0077/compliance-suite-mcp","description":"Enterprise compliance \u0026 audit MCP server — CIS benchmarks, CVE scanning, port/firewall/SSH audits, cryptographic audit trail, SOC 2 evidence export. Built for the 2026 MCP Enterprise Readiness roadmap. 7 tools.","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-13T22:54:46Z","pushed_at":"2026-06-22T20:06:18Z","created_at":"2026-05-13T21:33:10Z","topics":[],"owner":{"login":"Crow0077","html_url":"https://github.com/Crow0077"},"clone_url":"https://github.com/Crow0077/compliance-suite-mcp.git","has_code":true,"age_days":42},{"id":1227465720,"name":"kernel-security-patches","full_name":"MethodWhite/kernel-security-patches","html_url":"https://github.com/MethodWhite/kernel-security-patches","description":"Linux Kernel Security Patches \u0026 Analysis - CVEs 2026 - Includes custom kernel for NVIDIA CUDA support","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-12T04:35:32Z","pushed_at":"2026-05-12T05:44:12Z","created_at":"2026-05-02T18:11:50Z","topics":[],"owner":{"login":"MethodWhite","html_url":"https://github.com/MethodWhite"},"clone_url":"https://github.com/MethodWhite/kernel-security-patches.git","has_code":true,"age_days":54},{"id":1234911358,"name":"Os-top-vulnerabilities-report","full_name":"zdmobarek-lab/Os-top-vulnerabilities-report","html_url":"https://github.com/zdmobarek-lab/Os-top-vulnerabilities-report","description":"   A curated analysis of the most critical vulnerabilities in Windows, Linux, macOS, and Android (2024-2026). Includes CVE details, PoC, impact, and mitigation for SOC/Blue Team \u0026 Pentesters.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-11T16:40:30Z","pushed_at":"2026-05-11T16:37:08Z","created_at":"2026-05-10T19:54:08Z","topics":[],"owner":{"login":"zdmobarek-lab","html_url":"https://github.com/zdmobarek-lab"},"clone_url":"https://github.com/zdmobarek-lab/Os-top-vulnerabilities-report.git","has_code":false,"age_days":46},{"id":1234956651,"name":"gguf_cve2026_7482","full_name":"msuiche/gguf_cve2026_7482","html_url":"https://github.com/msuiche/gguf_cve2026_7482","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-10T21:23:22Z","pushed_at":"2026-05-10T21:23:18Z","created_at":"2026-05-10T21:21:30Z","topics":[],"owner":{"login":"msuiche","html_url":"https://github.com/msuiche"},"clone_url":"https://github.com/msuiche/gguf_cve2026_7482.git","has_code":true,"age_days":45},{"id":1232720845,"name":"CVE-2026","full_name":"Pluto2362/CVE-2026","html_url":"https://github.com/Pluto2362/CVE-2026","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-08T07:48:33Z","pushed_at":"2026-05-08T07:48:33Z","created_at":"2026-05-08T07:48:32Z","topics":[],"owner":{"login":"Pluto2362","html_url":"https://github.com/Pluto2362"},"clone_url":"https://github.com/Pluto2362/CVE-2026.git","has_code":false,"age_days":48},{"id":1232137280,"name":"CVE-2026","full_name":"Tecnotec-CL/CVE-2026","html_url":"https://github.com/Tecnotec-CL/CVE-2026","description":"Script de mitigacion CVE","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-07T16:31:49Z","pushed_at":"2026-05-07T16:28:24Z","created_at":"2026-05-07T16:15:20Z","topics":[],"owner":{"login":"Tecnotec-CL","html_url":"https://github.com/Tecnotec-CL"},"clone_url":"https://github.com/Tecnotec-CL/CVE-2026.git","has_code":true,"age_days":49},{"id":1228606695,"name":"CVE-2026041940-IoC-forensics-instructions","full_name":"Jovicaa/CVE-2026041940-IoC-forensics-instructions","html_url":"https://github.com/Jovicaa/CVE-2026041940-IoC-forensics-instructions","description":"","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-07T09:40:00Z","pushed_at":"2026-05-07T09:39:56Z","created_at":"2026-05-04T07:34:23Z","topics":[],"owner":{"login":"Jovicaa","html_url":"https://github.com/Jovicaa"},"clone_url":"https://github.com/Jovicaa/CVE-2026041940-IoC-forensics-instructions.git","has_code":false,"age_days":52},{"id":1228500591,"name":"CVE_2026_31431_FIXED","full_name":"mgiay/CVE_2026_31431_FIXED","html_url":"https://github.com/mgiay/CVE_2026_31431_FIXED","description":"Desc \"Fixed CVE_2026_31431\"-20260504-11h45-GMT+7","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-05-07T03:32:52Z","pushed_at":"2026-05-07T03:32:36Z","created_at":"2026-05-04T04:44:52Z","topics":[],"owner":{"login":"mgiay","html_url":"https://github.com/mgiay"},"clone_url":"https://github.com/mgiay/CVE_2026_31431_FIXED.git","has_code":true,"age_days":52},{"id":1228648977,"name":"cve-2026_31431","full_name":"mirr81/cve-2026_31431","html_url":"https://github.com/mirr81/cve-2026_31431","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-04T09:49:00Z","pushed_at":"2026-05-04T09:48:57Z","created_at":"2026-05-04T08:23:13Z","topics":[],"owner":{"login":"mirr81","html_url":"https://github.com/mirr81"},"clone_url":"https://github.com/mirr81/cve-2026_31431.git","has_code":true,"age_days":52},{"id":1228149834,"name":"CVE_2026_41940_scan_exploit","full_name":"tahaXafous/CVE_2026_41940_scan_exploit","html_url":"https://github.com/tahaXafous/CVE_2026_41940_scan_exploit","description":"this tool for CVE_2026_41940    ","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-03T16:58:20Z","pushed_at":"2026-05-03T16:58:16Z","created_at":"2026-05-03T16:56:40Z","topics":[],"owner":{"login":"tahaXafous","html_url":"https://github.com/tahaXafous"},"clone_url":"https://github.com/tahaXafous/CVE_2026_41940_scan_exploit.git","has_code":true,"age_days":53},{"id":1226474455,"name":"CVE_2026_31431-Testing-the-Copy-Fail-exploit","full_name":"Callum-Cameron26/CVE_2026_31431-Testing-the-Copy-Fail-exploit","html_url":"https://github.com/Callum-Cameron26/CVE_2026_31431-Testing-the-Copy-Fail-exploit","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-01T12:57:37Z","pushed_at":"2026-05-01T12:57:34Z","created_at":"2026-05-01T12:54:17Z","topics":[],"owner":{"login":"Callum-Cameron26","html_url":"https://github.com/Callum-Cameron26"},"clone_url":"https://github.com/Callum-Cameron26/CVE_2026_31431-Testing-the-Copy-Fail-exploit.git","has_code":true,"age_days":55},{"id":1226355375,"name":"CVE_REPORT_2026","full_name":"cyber-green/CVE_REPORT_2026","html_url":"https://github.com/cyber-green/CVE_REPORT_2026","description":"Cybersecurity Vulnerability Report: May 2026","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-05-01T09:39:07Z","pushed_at":"2026-05-01T09:39:03Z","created_at":"2026-05-01T09:36:38Z","topics":[],"owner":{"login":"cyber-green","html_url":"https://github.com/cyber-green"},"clone_url":"https://github.com/cyber-green/CVE_REPORT_2026.git","has_code":false,"age_days":55},{"id":1226344737,"name":"exploit_cve_2026_31431_py36","full_name":"Nu1i/exploit_cve_2026_31431_py36","html_url":"https://github.com/Nu1i/exploit_cve_2026_31431_py36","description":"cve_2026_31431 python3.6的poc","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-05-01T09:19:17Z","pushed_at":"2026-05-01T09:19:14Z","created_at":"2026-05-01T09:18:26Z","topics":[],"owner":{"login":"Nu1i","html_url":"https://github.com/Nu1i"},"clone_url":"https://github.com/Nu1i/exploit_cve_2026_31431_py36.git","has_code":true,"age_days":55},{"id":1274579725,"name":"security-disclosures-2026","full_name":"abdurazzoqovjavohir700-dev/security-disclosures-2026","html_url":"https://github.com/abdurazzoqovjavohir700-dev/security-disclosures-2026","description":"Responsible security disclosures — SQL Injection, RCE, XSS in open-source PHP applications (CVE candidates 2026)","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-19T17:01:53Z","pushed_at":"2026-06-19T17:01:43Z","created_at":"2026-06-19T16:59:49Z","topics":["bugbounty","cve","cve-2026","cybersecurity","exploit","infosec","owasp","penetration-testing","php","poc","responsible-disclosure","security","security-research","sql-injection","vulnerability"],"owner":{"login":"abdurazzoqovjavohir700-dev","html_url":"https://github.com/abdurazzoqovjavohir700-dev"},"clone_url":"https://github.com/abdurazzoqovjavohir700-dev/security-disclosures-2026.git","has_code":false,"age_days":6},{"id":1271375168,"name":"cra-compliance-kit","full_name":"sparka777/cra-compliance-kit","html_url":"https://github.com/sparka777/cra-compliance-kit","description":"Open-source EU Cyber Resilience Act compliance toolkit — SBOMs, CVE matching, device identity, ready for the Sep 2026 deadline","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-16T16:09:37Z","pushed_at":"2026-06-16T15:47:13Z","created_at":"2026-06-16T15:46:37Z","topics":["compliance","cve","cyber-resilience-act","cyclonedx","eu-regulation","iot-device","iot-security","iot-systems","open-source","python","sbom","security-tools"],"owner":{"login":"sparka777","html_url":"https://github.com/sparka777"},"clone_url":"https://github.com/sparka777/cra-compliance-kit.git","has_code":true,"age_days":9},{"id":1266020974,"name":"anssi-cve-analysis","full_name":"Mlassout/anssi-cve-analysis","html_url":"https://github.com/Mlassout/anssi-cve-analysis","description":"Pipeline Python d'analyse des bulletins ANSSI (CERT-FR) avec enrichissement CVE — EFREI 2026","stargazers_count":0,"forks_count":0,"language":"HTML","updated_at":"2026-06-15T17:39:21Z","pushed_at":"2026-06-15T17:39:15Z","created_at":"2026-06-11T09:01:24Z","topics":[],"owner":{"login":"Mlassout","html_url":"https://github.com/Mlassout"},"clone_url":"https://github.com/Mlassout/anssi-cve-analysis.git","has_code":true,"age_days":14},{"id":1265822405,"name":"CVE-2026-Scanner","full_name":"Cyber-DarkNay/CVE-2026-Scanner","html_url":"https://github.com/Cyber-DarkNay/CVE-2026-Scanner","description":"","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-11T05:35:45Z","pushed_at":"2026-06-11T05:35:42Z","created_at":"2026-06-11T05:33:04Z","topics":[],"owner":{"login":"Cyber-DarkNay","html_url":"https://github.com/Cyber-DarkNay"},"clone_url":"https://github.com/Cyber-DarkNay/CVE-2026-Scanner.git","has_code":true,"age_days":14},{"id":1258153305,"name":"cve-to-my-stack-translator","full_name":"hair-ball-28/cve-to-my-stack-translator","html_url":"https://github.com/hair-ball-28/cve-to-my-stack-translator","description":"CyberHack 2026 - CVE-to-My-Stack Translator","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-10T22:41:50Z","pushed_at":"2026-06-10T22:41:46Z","created_at":"2026-06-03T10:15:27Z","topics":[],"owner":{"login":"hair-ball-28","html_url":"https://github.com/hair-ball-28"},"clone_url":"https://github.com/hair-ball-28/cve-to-my-stack-translator.git","has_code":true,"age_days":22},{"id":1260454962,"name":"Breaking-AWS-IAM-Trust-Boundaries","full_name":"mrk336/Breaking-AWS-IAM-Trust-Boundaries","html_url":"https://github.com/mrk336/Breaking-AWS-IAM-Trust-Boundaries","description":"This research analyzes CVE‑2026‑1238, a flaw in AWS IAM where policy conditions are mis‑evaluated, enabling stealthy privilege escalation. It breaks down the root cause, real‑world impact, and practical mitigation steps to help teams secure their cloud environments.","stargazers_count":0,"forks_count":0,"language":"","updated_at":"2026-06-09T08:14:00Z","pushed_at":"2026-06-05T18:54:24Z","created_at":"2026-06-05T14:07:23Z","topics":[],"owner":{"login":"mrk336","html_url":"https://github.com/mrk336"},"clone_url":"https://github.com/mrk336/Breaking-AWS-IAM-Trust-Boundaries.git","has_code":false,"age_days":20},{"id":1259891735,"name":"cve-to-my-stack","full_name":"dhairya221b/cve-to-my-stack","html_url":"https://github.com/dhairya221b/cve-to-my-stack","description":"CVE vulnerability prioritisation for your software stack — CyberHack 2026","stargazers_count":0,"forks_count":0,"language":"Python","updated_at":"2026-06-05T01:55:38Z","pushed_at":"2026-06-05T01:55:34Z","created_at":"2026-06-05T00:58:15Z","topics":[],"owner":{"login":"dhairya221b","html_url":"https://github.com/dhairya221b"},"clone_url":"https://github.com/dhairya221b/cve-to-my-stack.git","has_code":true,"age_days":20},{"id":1256805344,"name":"CVE-2026-ThreemaDesktop-ArbitraryFileRead","full_name":"jabir-dev/CVE-2026-ThreemaDesktop-ArbitraryFileRead","html_url":"https://github.com/jabir-dev/CVE-2026-ThreemaDesktop-ArbitraryFileRead","description":"Threema Desktop arbitrary file read via unrestricted CLI parameter. fs.readFileSync with no path validation. All builds affected.","stargazers_count":0,"forks_count":0,"language":"Shell","updated_at":"2026-06-02T05:28:53Z","pushed_at":"2026-06-02T05:28:48Z","created_at":"2026-06-02T05:28:45Z","topics":[],"owner":{"login":"jabir-dev","html_url":"https://github.com/jabir-dev"},"clone_url":"https://github.com/jabir-dev/CVE-2026-ThreemaDesktop-ArbitraryFileRead.git","has_code":true,"age_days":23},{"id":1256281796,"name":"CVE-2026-ThreemaWeb-PrototypePollution","full_name":"jabir-dev/CVE-2026-ThreemaWeb-PrototypePollution","html_url":"https://github.com/jabir-dev/CVE-2026-ThreemaWeb-PrototypePollution","description":"Threema Web Prototype Pollution via unsafe URI query parameter parsing. CWE-1321. 10/10 tests passed. Security bypass, config corruption.","stargazers_count":0,"forks_count":0,"language":"JavaScript","updated_at":"2026-06-01T16:39:16Z","pushed_at":"2026-06-01T16:22:37Z","created_at":"2026-06-01T16:20:41Z","topics":[],"owner":{"login":"jabir-dev","html_url":"https://github.com/jabir-dev"},"clone_url":"https://github.com/jabir-dev/CVE-2026-ThreemaWeb-PrototypePollution.git","has_code":true,"age_days":24},{"id":1256282093,"name":"CVE-2026-ThreemaWeb-TURNCredentialLeak","full_name":"jabir-dev/CVE-2026-ThreemaWeb-TURNCredentialLeak","html_url":"https://github.com/jabir-dev/CVE-2026-ThreemaWeb-TURNCredentialLeak","description":"Threema Web hardcoded TURN server credentials in client-side code. CWE-798. Server abuse, traffic interception, DoS.","stargazers_count":0,"forks_count":0,"language":"JavaScript","updated_at":"2026-06-01T16:29:26Z","pushed_at":"2026-06-01T16:21:06Z","created_at":"2026-06-01T16:21:00Z","topics":[],"owner":{"login":"jabir-dev","html_url":"https://github.com/jabir-dev"},"clone_url":"https://github.com/jabir-dev/CVE-2026-ThreemaWeb-TURNCredentialLeak.git","has_code":true,"age_days":24},{"id":1256261488,"name":"CVE-2026-BetterSQLCipher-RCE","full_name":"jabir-dev/CVE-2026-BetterSQLCipher-RCE","html_url":"https://github.com/jabir-dev/CVE-2026-BetterSQLCipher-RCE","description":"better-sqlcipher (Threema) loadExtension() RCE. Full system compromise via arbitrary native code loading. Confirmed on v12.10.0 (latest). CWE-427. CVSS 9.8.","stargazers_count":0,"forks_count":0,"language":"JavaScript","updated_at":"2026-06-01T16:17:24Z","pushed_at":"2026-06-01T15:58:29Z","created_at":"2026-06-01T15:58:25Z","topics":[],"owner":{"login":"jabir-dev","html_url":"https://github.com/jabir-dev"},"clone_url":"https://github.com/jabir-dev/CVE-2026-BetterSQLCipher-RCE.git","has_code":true,"age_days":24},{"id":1256241464,"name":"CVE-2026-BetterSQLCipher-PragmaInjection","full_name":"jabir-dev/CVE-2026-BetterSQLCipher-PragmaInjection","html_url":"https://github.com/jabir-dev/CVE-2026-BetterSQLCipher-PragmaInjection","description":"better-sqlcipher (Threema) PRAGMA injection. Encryption key theft, cipher config extraction, data exfiltration. CWE-20.","stargazers_count":0,"forks_count":0,"language":"JavaScript","updated_at":"2026-06-01T15:50:13Z","pushed_at":"2026-06-01T15:36:42Z","created_at":"2026-06-01T15:36:38Z","topics":[],"owner":{"login":"jabir-dev","html_url":"https://github.com/jabir-dev"},"clone_url":"https://github.com/jabir-dev/CVE-2026-BetterSQLCipher-PragmaInjection.git","has_code":true,"age_days":24}]}]}