tc4dy/CVE-2026-29000-PoC-Exploit CVE-2026-29000 – pac4j-jwt Authentication Bypass (🔥 CVSS 10.0). One-click admin forge via public key JWE wrapping. Leaks configs, users, secrets. Keep-alive, proxy, custom JWKS.⚙️ Educational PoC Exploit tool. Create: 2026-05-12 16:03:01 +0000 UTC Push: 2026-05-12 16:03:02 +0000 UTC |

puglia-ryan/S-V-Project-Implementation-of-CVE-2015-3256 Create: 2026-05-12 15:00:59 +0000 UTC Push: 2026-05-16 13:42:38 +0000 UTC |

tc4dy/CVE-2026-41940-POC-Exploit 🚀 CVE-2026-41940 cPanel/WHM Auth Bypass Exploit - Professional Edition 💥 CRLF injection leads to auth bypass, session hijacking & account leak. ✅ Proxy, custom UA, keep-alive, retries, SSL verify, colored output, file save support. ⚡ Advanced PoC for pentesters. Create: 2026-05-12 14:47:21 +0000 UTC Push: 2026-05-12 14:47:22 +0000 UTC |

RajeshTiwiva/CVE-2010-2039 CSRF (Cross-Site Request Forgery) vulnerability in gpEasy 1.5-16.3 Create: 2026-05-12 07:46:33 +0000 UTC Push: 2026-05-12 07:46:34 +0000 UTC |

rootdirective-sec/cve-2026-5718-Lab Create: 2026-05-12 07:43:29 +0000 UTC Push: 2026-05-12 07:43:29 +0000 UTC |

studiogangster/CVE-2026-31431 on liner Create: 2026-05-12 07:40:49 +0000 UTC Push: 2026-05-12 07:40:49 +0000 UTC |

gbonacini/CVE-2026-31431 A CVE-2026-31431 (aka Copyfail) implementation in c++ and assembly Create: 2026-05-12 07:30:56 +0000 UTC Push: 2026-05-12 07:30:56 +0000 UTC |

Jeanback1/CVE-2023-27163-exploit Create: 2026-05-12 04:36:51 +0000 UTC Push: 2026-05-12 04:36:51 +0000 UTC |

hewhomusntbenamed/CVE-2026-3888-fixed CVE-2026-3888 — snap-confine / systemd-tmpfiles SUID LPE (fixed race_pid.txt issue) Create: 2026-05-12 01:20:08 +0000 UTC Push: 2026-05-12 01:20:09 +0000 UTC |

Glitched-Airis/CVE-2025-31133-Compose-Build-Lab A lab about CVE-2025-31133 with a PaaS demo to let use upload documents to build images on this Platform. So people can inspect and learn whats going on while attacks happening. Create: 2026-05-12 00:30:13 +0000 UTC Push: 2026-05-12 00:30:14 +0000 UTC |

EntroVyx/CVE-2026-33657 EspoCRM 9.3.3 - Stored HTML Injection in Email Notifications Create: 2026-05-11 20:29:25 +0000 UTC Push: 2026-05-11 20:29:25 +0000 UTC |

Ser0n-ath/CVE-2026-8161 Proof of concept of CVE-2026-8161 (Multiparty) Create: 2026-05-11 19:55:29 +0000 UTC Push: 2026-05-11 22:09:16 +0000 UTC |

brainkok/CVE-2026-26128 Create: 2026-05-11 19:33:31 +0000 UTC Push: 2026-05-11 19:33:32 +0000 UTC |

dgrobinson0/CopyFile_CVE-2026-31431 Exploit for CVE-2026-31431 (Copy Fail) Create: 2026-05-11 17:58:20 +0000 UTC Push: 2026-05-11 17:58:21 +0000 UTC |

zycoder0day/CVE-2025-54068 Create: 2026-05-11 15:11:40 +0000 UTC Push: 2026-05-11 15:12:13 +0000 UTC |

zycoder0day/CVE-2026-41940 Create: 2026-05-11 15:00:11 +0000 UTC Push: 2026-05-11 15:00:45 +0000 UTC |

zycoder0day/CVE-2026-0740 Create: 2026-05-11 14:39:04 +0000 UTC Push: 2026-05-11 14:39:38 +0000 UTC |

striga-ai/CVE-2026-34486 Apache Tomcat Tribes EncryptInterceptor fail-open bypass, unauthenticated RCE PoC Create: 2026-05-11 14:07:46 +0000 UTC Push: 2026-05-11 14:07:48 +0000 UTC |

striga-ai/CVE-2026-23918 Apache httpd mod_http2 double-free, pre-auth RCE PoC Create: 2026-05-11 14:07:41 +0000 UTC Push: 2026-05-11 14:07:45 +0000 UTC |

bugresearch/CVE-2026-6274 CVE-2026-6274 - Redline WR3200 Broken Authentication Create: 2026-05-11 13:40:55 +0000 UTC Push: 2026-05-11 13:40:57 +0000 UTC |