mirror of
https://github.com/0xMarcio/cve.git
synced 2025-06-19 17:30:12 +00:00
Recently updated Proof-of-Concepts
2025
Latest 20 of 106 Repositories
| Stars | Updated | Name | Description |
|---|---|---|---|
| 491⭐ | 3 days ago | CVE-2018-20250 | exp for https://research.checkpoint.com/extracting-code-execution-from-winrar |
| 300⭐ | 33 minutes ago | CVE-2025-24071_PoC | CVE-2025-24071: NTLM Hash Leak via RAR/ZIP Extraction and .library-ms File |
| 182⭐ | 4 days ago | CVE-2025-30208-EXP | CVE-2025-30208-EXP |
| 131⭐ | 1 day ago | POC-CVE-2025-24813 | his repository contains an automated Proof of Concept (PoC) script for exploiting CVE-2025-24813, a Remote Code Execution (RCE) vulnerability in Apache Tomcat. The vulnerability allows an attacker to upload a malicious serialized payload to the server, leading to arbitrary code execution via deserialization when specific conditions are met. |
| 140⭐ | 5 days ago | CVE-2025-26125 | (0day) Local Privilege Escalation in IObit Malware Fighter |
| 108⭐ | 3 days ago | CVE-2025-32433 | CVE-2025-32433 https://github.com/erlang/otp/security/advisories/GHSA-37cp-fgq5-7wc2 |
| 126⭐ | 4 days ago | CVE-2025-21756 | Exploit for CVE-2025-21756 for Linux kernel 6.6.75. My first linux kernel exploit! |
| 85⭐ | 14 days ago | CVE-2025-24813-PoC | Apache Tomcat 远程代码执行漏洞批量检测脚本(CVE-2025-24813) |
| 61⭐ | 15 days ago | CVE-2025-22457 | PoC for CVE-2025-22457 |
| 25⭐ | 1464 days ago | CVE-2018-20250 | 010 Editor template for ACE archive format & CVE-2018-2025[0-3] |
| 49⭐ | 13 days ago | CVE-2025-1974 | |
| 41⭐ | 2 days ago | CVE-2025-0282 | PoC for CVE-2025-0282: A remote unauthenticated stack based buffer overflow affecting Ivanti Connect Secure, Ivanti Policy Secure, and Ivanti Neurons for ZTA gateways |
| 28⭐ | 5 days ago | CVE-2025-0108-PoC | Palo Alto Networks PAN-OS 身份验证绕过漏洞批量检测脚本(CVE-2025-0108) |
| 74⭐ | 26 days ago | ingressNightmare-CVE-2025-1974-exps | IngressNightmare POC. world first remote exploitation and with multi-advanced exploitation methods. allow on disk exploitation. CVE-2025-24514 - auth-url injection, CVE-2025-1097 - auth-tls-match-cn injection, CVE-2025-1098 – mirror UID injection -- all available. |
| 47⭐ | 32 days ago | CVE-2025-0282-Ivanti-exploit | CVE-2025-0282 is a critical vulnerability found in Ivanti Connect Secure, allowing Remote Command Execution (RCE) through a buffer overflow exploit. |
| 21⭐ | 6 days ago | Exploit-CVE-2025-24799 | CVE-2025-24799 Exploit: GLPI - Unauthenticated SQL Injection |
| 26⭐ | 17 days ago | CVE-2025-0282 | Ivanti Connect Secure IFT TLS Stack Overflow pre-auth RCE (CVE-2025-0282) |
| 33⭐ | 28 days ago | CVE-2025-0401 | Privilege Escalation using Passwd - April Fools prank |
| 37⭐ | 28 days ago | CVE-2025-24016 | CVE-2025-24016: Wazuh Unsafe Deserialization Remote Code Execution (RCE) |
| 30⭐ | 5 days ago | CVE-2025-1094-Exploit | WebSocket and SQL Injection Exploit Script |