### Summary

A serious vulnerability has been identified in the Erlang/OTP SSH server that may allow an attacker to perform unauthenticated remote code execution (RCE). By exploiting a flaw in SS...

CVE-2025-31200 is a zero-day, zero-click RCE in iOS CoreAudio’s AudioConverterService, triggered by a malicious audio file via iMessage/SMS. Exploitation bypassed Blastdoor, enabled kernel escalati...

In affected versions of the WP ULike plugin, there is no proper authorization check before allowing certain AJAX actions or vote manipulations. This allows unauthenticated users to interact with th...

python工具开发（渗透测试）. Contribute to proint-qw/pytool development by creating an account on GitHub.

Cyber-RPC 是一个基于 Java 开发的轻量级 RPC（远程过程调用）框架，旨在提供高性能、易扩展的分布式服务调用解决方案。该框架支持服务注册与发现、负载均衡、序列化/反序列化等核心功能。 - suonanjiexi/Cyber-RPC

生异形吗？挖掘构建你自己的Java内存马！. Contribute to MagpieRYL/memshell_xenomorph development by creating an account on GitHub.

The `swp_debug` parameter in `admin-post.php` allows remote attackers to include external files containing malicious PHP code, which are evaluated on the server. By supplying a crafted URL that hos...

The `swp_debug` parameter in `admin-post.php` allows remote attackers to include external files containing malicious PHP code, which are evaluated on the server. By supplying a crafted URL that hos...

Vulnerabilidad NTLM (CVE-2025-24054) explotada para robo de hashes - moften/CVE-2025-24054

漏洞赏金工具是一款专为安全研究人员和白帽子黑客设计的图形化渗透测试工具集。它集成了多个常用的安全测试工具，提供了直观的用户界面，让漏洞挖掘变得更加简单和高效。 - ctkqiang/BBtool

PoC for CVE-2025-47646 - WordPress PSW Front-end Login Registration Plugin ≤ 1.12 Unauthenticated Privilege Escalation - RootHarpy/CVE-2025-47646

若依Vue漏洞检测工具. Contribute to kk12-30/ruoyi-Vue-tools development by creating an account on GitHub.

CVE-2025-4524 - Unauthenticated madara-core Wordpress theme LFI - ptrstr/CVE-2025-4524