CVE-2021-21980
Author: pratikjojode

The vSphere Web Client (FLEX/Flash) contains an unauthorized arbitrary file read vulnerability. A malicious actor with network access to port 443 on vCenter Server may exploit this issue to gain access to sensitive information.

GitHub Link:
https://github.com/pratikjojode/vcenter-cve-2021-21980-lab

CVE-2025-4679
Author: fevar54

None

GitHub Link:
https://github.com/fevar54/CVE-2025-4679-SecureOAuth-Demo---Enfoque-educativo

CVE-2023-1206
Author: SpiralBL0CK

None

GitHub Link:
https://github.com/SpiralBL0CK/CVE-2023-1206-CVE-2025-40040-CVE-2024-49882

CVE-2025-62641
Author: Al-Lord0x

None

GitHub Link:
https://github.com/Al-Lord0x/CVE-2025-62641

CVE-2024-48990
Author: 0x3bs

Qualys discovered that needrestart, before version 3.8, allows local attackers to execute arbitrary code as root by tricking needrestart into running the Python interpreter with an attacker-controlled PYTHONPATH environment variable.

GitHub Link:
https://github.com/0x3bs/CVE-2024-48990

CVE-2025-3500
Author: chicken3962

None

GitHub Link:
https://github.com/chicken3962/CVE-2025-3500-Poc

CVE-2021-22941
Author: pratikjojode

Improper Access Control in Citrix ShareFile storage zones controller before 5.11.20 may allow an unauthenticated attacker to remotely compromise the storage zones controller.

GitHub Link:
https://github.com/pratikjojode/citrix-cve-2021-22941-lab

CVE-2025-65321
Author: Smarttfoxx

None

GitHub Link:
https://github.com/Smarttfoxx/CVE-2025-65321

CVE-2025-43300
Author: 7amzahard

None

GitHub Link:
https://github.com/7amzahard/CVE-2025-43300

CVE-2025-65806
Author: Bidon47

None

GitHub Link:
https://github.com/Bidon47/CVE-2025-65806

CVE-2025-29927
Author: liamromanis101

Next.js is a React framework for building full-stack web applications. Starting in version 1.11.4 and prior to versions 12.3.5, 13.5.9, 14.2.25, and 15.2.3, it is possible to bypass authorization checks within a Next.js application, if the authorization check occurs in middleware. If patching to a safe version is infeasible, it is recommend that you prevent external user requests which contain the x-middleware-subrequest header from reaching your Next.js application. This vulnerability is fixed in 12.3.5, 13.5.9, 14.2.25, and 15.2.3.

GitHub Link:
https://github.com/liamromanis101/CVE-2025-29927-NextJS

CVE-2025-48633
Author: Ashwesker

None

GitHub Link:
https://github.com/Ashwesker/Blackash-CVE-2025-48633

CVE-2025-63499
Author: poblaguev-tot

None

GitHub Link:
https://github.com/poblaguev-tot/CVE-2025-63499

CVE-2025-1337
Author: Zwique

None

GitHub Link:
https://github.com/Zwique/CVE-2025-1337-PoC

CVE-2021-21551
Author: bengabay1994

Dell dbutil23.sys driver contains an insufficient access control vulnerability which may lead to escalation of privileges, denial of service, or information disclosure. Local authenticated user access is required.

GitHub Link:
https://github.com/bengabay1994/cve-2021-21551-PoC

CVE-2025-61148
Author: sharma19d

None

GitHub Link:
https://github.com/sharma19d/CVE-2025-61148

CVE-2025-59427
Author: ibnurusdianto

None

GitHub Link:
https://github.com/ibnurusdianto/CVE-2025-59427

CVE-2025-24091
Author: TS0NW0RK

None

GitHub Link:
https://github.com/TS0NW0RK/CVE-2025-24091

CVE-2025-13372
Author: Ashwesker

None

GitHub Link:
https://github.com/Ashwesker/Blackash-CVE-2025-13372

CVE-2023-46747
Author: Razzlemouse




Undisclosed requests may bypass configuration utility authentication, allowing an attacker with network access to the BIG-IP system through the management port and/or self IP addresses to execute arbitrary system commands.  Note: Software versions which have reached End of Technical Support (EoTS) are not evaluated



GitHub Link:
https://github.com/Razzlemouse/F5-BIG-IP-CVE-2023-46747---Unauthenticated-RCE-Reverse-Shell-Nuclei-Template-Modified-

CVE-2025-24091
Author: rooootdev

None

GitHub Link:
https://github.com/rooootdev/evilnotify