pwnc4t/cve-2025-20282 Cisco ISE RCE PoC Create: 2026-03-26 01:52:25 +0000 UTC Push: 2026-04-06 01:51:50 +0000 UTC |

Su1ph3r/vercelsior Open-source security scanner and configuration auditor for Vercel. 130+ checks across 20 categories. Finds leaked tokens, WAF gaps, NEXT_PUBLIC_ secret leaks, subdomain takeover risks, Next.js CVEs, and more. Single binary, zero dependencies. Create: 2026-03-26 00:44:59 +0000 UTC Push: 2026-03-26 00:45:02 +0000 UTC |

mahsumaktas/ailm AI-powered Linux system companion — 20 sources, zero blind spots. GPU, CPU, RAM, NVMe, Btrfs, Docker, Tailscale, coredumps, CVE, 80+ journald patterns. Local LLM (Jazari-4B). v0.2 live. Create: 2026-03-26 00:20:04 +0000 UTC Push: 2026-03-28 14:07:22 +0000 UTC |

pream-totaram/CVE-2024-52302-reproduction Create: 2026-03-25 20:59:49 +0000 UTC Push: 2026-03-25 21:00:23 +0000 UTC |

K3rn3l-32/Threaded-CVE-2018-15473 A Python 3 reimplementation of the classic CVE-2018-15473 OpenSSH user enumeration exploit, extended with multi-threading, wordlist support, automatic vulnerability detection, and thread-safe exploit patching. Create: 2026-03-25 20:00:29 +0000 UTC Push: 2026-03-25 20:00:29 +0000 UTC |

l0lsec/cve-2025-55182-lab Intentionally vulnerable Next.js RSC Docker lab for CVE-2025-55182 (React2Shell) local testing Create: 2026-03-25 18:29:03 +0000 UTC Push: 2026-03-25 18:29:05 +0000 UTC |

0xzap/CVE-2025-32463 A proof-of-concept exploit demonstrating local privilege escalation to root in sudo (CVE-2025-32463) by abusing the --chroot (-R) option and injecting a malicious NSS configuration Create: 2026-03-25 16:46:04 +0000 UTC Push: 2026-03-25 16:48:56 +0000 UTC |

qoo7972365/CVE-2022-36883-Poc Create: 2026-03-25 15:28:19 +0000 UTC Push: 2026-03-25 15:28:19 +0000 UTC |

Noidolosity/CVE-2022-32250 Create: 2026-03-25 15:09:48 +0000 UTC Push: 2026-03-25 15:09:49 +0000 UTC |

ImVihanga03/Static-Malware-Analysis-Follina-CVE-2022-30190 Static Malware Analysis of Follina (CVE-2022-30190) from Blue Team Labs Online Create: 2026-03-25 14:23:35 +0000 UTC Push: 2026-03-25 14:23:36 +0000 UTC |

cyber-sparky/CVE-2019-3835 It was found that the superexec operator was available in the internal dictionary in ghostscript before 9.27. A specially crafted PostScript file could use this flaw in order to, for example, have access to the file system outside of the constrains imposed by -dSAFER. Create: 2026-03-25 13:41:39 +0000 UTC Push: 2026-03-25 13:42:08 +0000 UTC |

sergicortesabadia/CVE-2026-26198-analysis Deep dive into a critical SQL injection in Python's Ormar ORM — reproduction, fix, and tests Create: 2026-03-25 13:09:40 +0000 UTC Push: 2026-03-25 13:09:41 +0000 UTC |

lennertdefauw/CVE-2025-8088 WinRAR < 7.13 path traversal for persistency Create: 2026-03-25 13:04:51 +0000 UTC Push: 2026-03-25 13:04:51 +0000 UTC |

Yucaerin/CVE-2026-3584 CVE-2026-3584 Create: 2026-03-25 09:21:54 +0000 UTC Push: 2026-03-25 09:21:55 +0000 UTC |

NeoArtemis37/OverlayFS-PrivEsc-CVE-2022-0944 Create: 2026-03-25 07:13:10 +0000 UTC Push: 2026-03-25 07:13:39 +0000 UTC |

devianntsec/CVE-2024-30051-DWMHeapOverflow-Masters-Thesis Master's Thesis research on CVE-2024-30051 (Windows DWM Heap Overflow). Improved PoC with auto-retry, session logging, and empirical heap spray analysis across controlled sessions. Portfolio piece demonstrating Windows exploit development and security research. Create: 2026-03-25 06:18:49 +0000 UTC Push: 2026-03-25 06:18:49 +0000 UTC |

devianntsec/CVE-2024-51324 Master's Thesis research on CVE-2024-51324 (BYOVD). Advanced exploit with 4 operational modes (SCANNER, LOADER, KILLER, CLEANUP), SHA-256 driver verification, and full academic documentation. Portfolio piece covers Windows kernel driver security, IOCTL reverse engineering, and Bring Your Own Vulnerable Driver exploitation. Create: 2026-03-25 06:16:48 +0000 UTC Push: 2026-04-27 17:21:38 +0000 UTC |

devianntsec/CVE-2024-51324-BYOVD-Masters-Thesis Master's Thesis research on CVE-2024-51324 (BYOVD). Advanced exploit with 4 operational modes (SCANNER, LOADER, KILLER, CLEANUP), SHA-256 driver verification, and full academic documentation. Portfolio piece covers Windows kernel driver security, IOCTL reverse engineering, and Bring Your Own Vulnerable Driver exploitation. Create: 2026-03-25 06:16:48 +0000 UTC Push: 2026-03-25 06:16:48 +0000 UTC |

devianntsec/CVE-2021-4034-PwnKit-Masters-Thesis Master's Thesis research on CVE-2021-4034 (PwnKit). Advanced exploit with 6 payload modes (shell, id, whoami, backdoor, root user, reverse shell), automated environment setup, and complete academic documentation. Portfolio piece demonstrating Linux exploit development, memory corruption analysis, and privilege escalation research. Create: 2026-03-25 06:13:40 +0000 UTC Push: 2026-03-25 06:14:23 +0000 UTC |

devianntsec/CVE-2025-55182 Advanced security research on CVE-2025-55182 (React2Shell). Features an exploitation framework with 6 functional impact scenarios (RCE to Secret Exfiltration), an interactive reverse shell, and a complete laboratory. Portfolio piece demonstrating deep analysis of Prototype Pollution and Insecure Deserialization in React Server Components Create: 2026-03-25 06:11:08 +0000 UTC Push: 2026-04-22 17:19:03 +0000 UTC |