CVE-2025-62726
Author: baktistr

None

GitHub Link:
https://github.com/baktistr/cve-2025-62726-malicious-repo

CVE-2025-49752
Author: boogabearbombernub

None

GitHub Link:
https://github.com/boogabearbombernub/cve-2025-49752-lab

CVE-2024-29943
Author: seadragnol

An attacker was able to perform an out-of-bounds read or write on a JavaScript object by fooling range-based bounds check elimination. This vulnerability affects Firefox < 124.0.1.

GitHub Link:
https://github.com/seadragnol/CVE-2024-29943

CVE-2025-13559
Author: twiggy23buck

None

GitHub Link:
https://github.com/twiggy23buck/CVE-2025-13559-Exploit

CVE-2022-37969
Author: EmilC3978

Windows Common Log File System Driver Elevation of Privilege Vulnerability. This CVE ID is unique from CVE-2022-35803.

GitHub Link:
https://github.com/EmilC3978/CVE-2022-37969PoC

CVE-2025-9803
Author: maidilling32

None

GitHub Link:
https://github.com/maidilling32/CVE-2025-9803-Exploit

CVE-2025-6389
Author: B1ack4sh

None

GitHub Link:
https://github.com/B1ack4sh/Blackash-CVE-2025-6389

CVE-2024-6387
Author: arielrbrdev

A signal handler race condition was found in OpenSSH's server (sshd), where a client does not authenticate within LoginGraceTime seconds (120 by default, 600 in old OpenSSH versions), then sshd's SIGALRM handler is called asynchronously. However, this signal handler calls various functions that are not async-signal-safe, for example, syslog().

GitHub Link:
https://github.com/arielrbrdev/redteamlab1

CVE-2025-13597
Author: d0n601

None

GitHub Link:
https://github.com/d0n601/CVE-2025-13597

CVE-2025-13595
Author: d0n601

None

GitHub Link:
https://github.com/d0n601/CVE-2025-13595

CVE-2025-62168
Author: nehkark

None

GitHub Link:
https://github.com/nehkark/CVE-2025-62168

CVE-2024-32019
Author: julichaan

Netdata is an open source observability tool. In affected versions the ndsudo tool shipped with affected versions of the Netdata Agent allows an attacker to run arbitrary programs with root permissions. The ndsudo tool is packaged as a root-owned executable with the SUID bit set. It only runs a restricted set of external commands, but its search paths are supplied by the PATH environment variable. This allows an attacker to control where ndsudo looks for these commands, which may be a path the attacker has write access to. This may lead to local privilege escalation. This vulnerability has been addressed in versions 1.45.3 and 1.45.2-169. Users are advised to upgrade. There are no known workarounds for this vulnerability.

GitHub Link:
https://github.com/julichaan/CVE-2024-32019-ndsudo-local-privilege-escalation-NetData

CVE-2025-34322
Author: mcorybillington

None

GitHub Link:
https://github.com/mcorybillington/CVE-2025-34322CVE-2025-34323NagiosLogServer

CVE-2025-32421
Author: Delfaster

None

GitHub Link:
https://github.com/Delfaster/CVE-2025-32421---Race-Condition-Vulnerability---Next.js

CVE-2025-8088
Author: h4vier

None

GitHub Link:
https://github.com/h4vier/cve-2025-8088

CVE-2021-41773
Author: faizdotid

A flaw was found in a change made to path normalization in Apache HTTP Server 2.4.49. An attacker could use a path traversal attack to map URLs to files outside the directories configured by Alias-like directives. If files outside of these directories are not protected by the usual default configuration "require all denied", these requests can succeed. If CGI scripts are also enabled for these aliased pathes, this could allow for remote code execution. This issue is known to be exploited in the wild. This issue only affects Apache 2.4.49 and not earlier versions. The fix in Apache HTTP Server 2.4.50 was found to be incomplete, see CVE-2021-42013.

GitHub Link:
https://github.com/faizdotid/CVE-2021-41773