SecSecBurger/CVE-2023-38817 Exploit Code for CVE-2023-38817 Create: 2026-01-26 01:44:17 +0000 UTC Push: 2026-01-26 01:44:18 +0000 UTC |

jagg3rsec/CVE-2014-6287 Create: 2026-01-25 22:51:33 +0000 UTC Push: 2026-01-25 22:51:33 +0000 UTC |

yup-Ivan/CVE-2024-9796 POC (SQLi) -> CVE-2024-9796 Create: 2026-01-25 22:47:51 +0000 UTC Push: 2026-01-25 22:47:52 +0000 UTC |

hackura/xz-cve-2024-3094 Create: 2026-01-25 21:12:25 +0000 UTC Push: 2026-01-25 21:12:25 +0000 UTC |

yup-Ivan/CVE-2019-9978 POC -> CVE-2019-9978 Create: 2026-01-25 19:32:01 +0000 UTC Push: 2026-01-25 19:32:02 +0000 UTC |

ms0x08-dev/CVE-2026-24061-POC Create: 2026-01-25 19:22:38 +0000 UTC Push: 2026-01-25 19:23:06 +0000 UTC |

dionissh/CVE-2024-21413 Create: 2026-01-25 16:34:54 +0000 UTC Push: 2026-01-25 16:35:39 +0000 UTC |

cwjchoi01/CVE-2025-65264 CVE-2025-65264 Create: 2026-01-25 15:27:39 +0000 UTC Push: 2026-01-25 16:29:33 +0000 UTC |

O99099O/By-Poloss..-..CVE-2026-1522 CVE-2026-1522 — Unauthenticated arbitrary file upload vulnerability in a WordPress plugin allowing attackers to upload executable files and achieve remote code execution (RCE). Create: 2026-01-25 15:07:37 +0000 UTC Push: 2026-01-25 15:07:38 +0000 UTC |

O99099O/By-Poloss..-..CVE-2026-0920 CVE-2026-0920 — Unauthenticated privilege escalation vulnerability in the LA-Studio Element Kit for Elementor WordPress plugin (≤ 1.5.6.3). The ajax_register_handle function fails to restrict user role assignment, allowing attackers to register accounts with the administrator role via the lakit_bkrole parameter, resulting in full site takeover. Create: 2026-01-25 14:04:26 +0000 UTC Push: 2026-01-25 14:05:06 +0000 UTC |

fumioryoto/Quiz-Maker-SQL-Injection-CVE-2025-10042 This script exploits an SQL Injection vulnerability in WordPress Quiz Maker plugin (≤ 6.7.0.56) by injecting payloads via an HTTP header (default: X-Forwarded-For). Create: 2026-01-25 13:06:55 +0000 UTC Push: 2026-01-25 13:06:55 +0000 UTC |

infat0x/CVE-2026-24061 Create: 2026-01-25 10:40:00 +0000 UTC Push: 2026-01-25 10:40:04 +0000 UTC |

Baza-NATO/CVE-2021-33044 Create: 2026-01-25 10:36:13 +0000 UTC Push: 2026-01-25 10:36:34 +0000 UTC |

boroeurnprach/CVE-2025-13374 The Kalrav AI Agent plugin for WordPress is vulnerable to... Create: 2026-01-25 07:36:48 +0000 UTC Push: 2026-01-25 07:36:48 +0000 UTC |

typeconfused/CVE-2026-24061 GNU telnetd service from GNU InetUtils authentication-bypass Create: 2026-01-25 07:33:48 +0000 UTC Push: 2026-01-25 07:33:48 +0000 UTC |

imankasthuri/follina-rce-cve-2022-30190 Create: 2026-01-25 06:51:41 +0000 UTC Push: 2026-01-25 06:51:42 +0000 UTC |

boroeurnprach/CVE-2026-24422_PoC Testing Only Create: 2026-01-25 05:05:52 +0000 UTC Push: 2026-01-25 05:05:53 +0000 UTC |

NiceTop1027/CVE-2026-Apple-V2 Create: 2026-01-25 03:40:10 +0000 UTC Push: 2026-01-25 03:40:10 +0000 UTC |

NiceTop1027/CVE-2026-Discord Create: 2026-01-25 02:51:34 +0000 UTC Push: 2026-01-25 02:51:34 +0000 UTC |

hbxxv/CVE-2018-6574 Testing Create: 2026-01-25 01:20:03 +0000 UTC Push: 2026-01-25 01:20:03 +0000 UTC |