xxconi/CVE-2026-5229 CVE-2026-5229: Form Notify Auth Bypass via LINE OAuth Callback (CVSS 9.8) Create: 2026-05-26 06:04:07 +0000 UTC Push: 2026-05-26 06:04:08 +0000 UTC |

xxconi/CVE-2026-6271 Create: 2026-05-26 05:52:33 +0000 UTC Push: 2026-05-26 05:52:34 +0000 UTC |

xxconi/CVE-2026-2942 Create: 2026-05-26 05:34:31 +0000 UTC Push: 2026-05-26 05:34:32 +0000 UTC |

Asbawy/GrafTraverse---CVE-2021-43798-MiNi-Exploitation-Framework CVE-2021-43798 MiNi Exploitation Framework Create: 2026-05-26 02:12:42 +0000 UTC Push: 2026-05-26 02:12:43 +0000 UTC |

Asbawy/GrafTraverse-CVE-2021-43798 CVE-2021-43798 MiNi Exploitation Framework Create: 2026-05-26 02:12:42 +0000 UTC Push: 2026-05-26 02:18:00 +0000 UTC |

Zvckster/CVE-2025-63353 Multi-language PoC (Python · Go · JS · C) and technical documentation for CVE-2025-63353, a critical predictable-default-PSK vulnerability in FiberHome HG6145F1 GPON ONT devices. Create: 2026-05-25 23:43:11 +0000 UTC Push: 2026-05-25 23:43:12 +0000 UTC |

lvx9101-ux/CVE-2025-55182 Create: 2026-05-25 22:06:23 +0000 UTC Push: 2026-05-25 22:06:24 +0000 UTC |

m00ddy/CVE-2026-0073-Android-client-TLS-auth-bypass Create: 2026-05-25 18:54:04 +0000 UTC Push: 2026-05-25 18:54:07 +0000 UTC |

portbuster1337/CVE-2026-33137 XWiki Platform - CVE-2026-33137 PoC - Unauthenticated XAR Import via REST /wikis/{wikiName} Create: 2026-05-25 18:10:26 +0000 UTC Push: 2026-05-25 18:11:14 +0000 UTC |

x3roxismygood/CVE-2012-1803 Critical vulnerability in Siemens RuggedCom ROS devices allowing attackers to derive a hidden factory account password from the device MAC address and gain unauthorized administrative access via TELNET, rsh, or serial interfaces. Affects ROS 3.10.x and earlier. Create: 2026-05-25 17:37:08 +0000 UTC Push: 2026-05-25 17:37:40 +0000 UTC |

russellwork2021-lgtm/cosmicsting-cve-2024-34102-exploit Complete CosmicSting (CVE-2024-34102) exploit suite for Magento/Adobe Commerce XXE vulnerability Create: 2026-05-25 17:21:55 +0000 UTC Push: 2026-05-25 17:22:42 +0000 UTC |

portbuster1337/CVE-2026-33712 CVE-2026-33712 - Typebot <= 3.15.2 Unauthenticated SSRF via isolated-vm sandbox fetch Create: 2026-05-25 16:43:09 +0000 UTC Push: 2026-05-25 16:43:11 +0000 UTC |

renewablehacking/CVE-2026-45321-Tanstack Create: 2026-05-25 15:34:23 +0000 UTC Push: 2026-05-25 15:34:24 +0000 UTC |

notthemystery/CVE-2026-20700-POC-that-ll-never-work Create: 2026-05-25 14:56:13 +0000 UTC Push: 2026-05-25 14:56:14 +0000 UTC |

learner202649/CVE-2026-47102-PoC The code for personally reproducing the corresponding vulnerability Create: 2026-05-25 13:37:56 +0000 UTC Push: 2026-05-25 13:38:27 +0000 UTC |

MinhPham123456789/PoC-CVE-2024-23113 A proof of concept for CVE 2024 23113 inspired by WatchTowr's article. Create: 2026-05-25 12:11:40 +0000 UTC Push: 2026-05-25 12:12:05 +0000 UTC |

bamov970/CVE-2026-42945-Nginx-RCE-bypass-ASLR CVE-2026-42945 turns a 17-year-old NGINX rewrite bug into remote code execution — even with ASLR on, by chaining the heap overflow with live worker memory read through a common file-read flaw. Create: 2026-05-25 12:06:49 +0000 UTC Push: 2026-05-25 12:06:50 +0000 UTC |

thakur2309/CVE-2026-0073-ZERO-CLICK ZERO-CLICK VUL - CVE-2026-0073 Android ADB Wireless Auth Bypass Exploit Framework. Multi-target zero-click RCE as shell user via TLS cert logic flaw in adbd. Targets Android 11+ devices pre-May 2026 patch with wireless debugging enabled. Features batch IP scanning, diagnostic commands, EC/Ed25519 key support, verbose debug mode & interactive wizard Create: 2026-05-25 10:52:12 +0000 UTC Push: 2026-05-25 10:52:12 +0000 UTC |

Jenderal92/CVE-2025-55182---React2shell Create: 2026-05-25 10:32:03 +0000 UTC Push: 2026-05-25 10:32:04 +0000 UTC |

Jenderal92/CVE-2025-55182-React2shell Create: 2026-05-25 10:32:03 +0000 UTC Push: 2026-05-25 10:32:42 +0000 UTC |