realcodeb0ss/CVE-2025-4009 CVE-2025-4009 PoC/EXP Create: 2025-06-13 19:11:33 +0000 UTC Push: 2025-06-13 19:11:33 +0000 UTC |

andrei2308/CVE-2020-21365 Create: 2025-06-13 18:41:55 +0000 UTC Push: 2025-06-13 18:42:38 +0000 UTC |

morphine009/CVE-2025-46157 Create: 2025-06-13 15:31:38 +0000 UTC Push: 2025-06-13 16:01:22 +0000 UTC |

jujubooom/CVE-2025-6335 cve报告 Create: 2025-06-13 13:14:02 +0000 UTC Push: 2025-06-19 17:08:51 +0000 UTC |

mverschu/CVE-2025-33073 PoC Exploit for the NTLM reflection SMB flaw. Create: 2025-06-13 12:15:14 +0000 UTC Push: 2025-06-13 12:38:34 +0000 UTC |

hkcfs/PIL-CVE-2017-8291 CVE-2017-8291 CTF with docker and examples Create: 2025-06-13 09:22:04 +0000 UTC Push: 2025-06-13 09:22:05 +0000 UTC |

RootHarpy/CVE-2025-5815-Nuclei-Template Detects an unauthenticated vulnerability in the WordPress Traffic Monitor plugin versions <= 3.2.2, where the 'tfcm_set_bot_flags' AJAX action lacks proper authorization checks, allowing remote attackers to disable bot logging. Create: 2025-06-13 07:21:24 +0000 UTC Push: 2025-06-13 07:21:24 +0000 UTC |

DeshanFer94/CVE-2025-24071-POC- Create: 2025-06-13 05:08:22 +0000 UTC Push: 2025-06-13 05:08:22 +0000 UTC |

DeshanFer94/CVE-2025-24071-POC-NTLM_Hash_Disclosure- Create: 2025-06-13 05:08:22 +0000 UTC Push: 2025-06-13 05:08:22 +0000 UTC |

DeshanFer94/CVE-2025-24071-POC-NTLMHashDisclosure- Create: 2025-06-13 05:08:22 +0000 UTC Push: 2025-06-13 05:08:22 +0000 UTC |

samh4cks/CVE-2024-55890 Create: 2025-06-13 04:26:01 +0000 UTC Push: 2025-06-13 04:26:01 +0000 UTC |

skraft9/CVE-2025-29471 Create: 2025-06-13 01:55:56 +0000 UTC Push: 2025-06-13 01:55:57 +0000 UTC |

Burak1320demiroz/cve-2025-2082 Create: 2025-06-13 00:32:41 +0000 UTC Push: 2025-06-13 00:32:41 +0000 UTC |

Seven11Eleven/CVE-2024-54772 Create: 2025-06-12 20:50:48 +0000 UTC Push: 2025-06-12 20:50:48 +0000 UTC |

Nxploited/CVE-2025-5288 Wordpress REST API | Custom API Generator For Cross Platform And Import Export In WP 1.0.0 - 2.0.3 - Missing Authorization to Unauthenticated Privilege Escalation Create: 2025-06-12 19:59:38 +0000 UTC Push: 2025-06-12 19:59:38 +0000 UTC |

wrathfulDiety/CVE-2025-52357 Proof of Concept and Security Advisory for Stored XSS vulnerability in the FD602GW-DX-R410 fiber router’s admin console (firmware V2.2.14). Includes details, impact, and mitigation guidance. Create: 2025-06-12 18:09:33 +0000 UTC Push: 2025-07-09 17:52:33 +0000 UTC |

magicrc/CVE-2021-29447 PoC for [CVE-2021-29447](https://nvd.nist.gov/vuln/detail/CVE-2021-29447) Create: 2025-06-12 17:52:38 +0000 UTC Push: 2025-06-12 17:52:38 +0000 UTC |

b4sh0xf/PoC-CVE-2025-24801 a simple proof of concept of cve-2025-24801, abusing lfi and bad permissions to trigger an rce Create: 2025-06-12 15:33:56 +0000 UTC Push: 2025-06-12 15:33:56 +0000 UTC |

moiz-2x/CVE-2025-21420_POC EoP in Windows Disk Cleanup Create: 2025-06-12 13:51:14 +0000 UTC Push: 2025-06-12 13:51:14 +0000 UTC |

onixgod/SOC335-Event-ID-313-CVE-2024-49138-Exploitation-Detected--Lest-Defend-Writeup In this lab I walked through an end-to-end intrusion that began with an external RDP break-in, used a brand-new CLFS privilege-escalation exploit (CVE-2024–49138), and ended with SYSTEM-level cloud credential harvesting. Below is the story, the evidence, and the lessons I drew from it. Create: 2025-06-12 12:40:36 +0000 UTC Push: 2025-06-12 12:40:36 +0000 UTC |