CVE-2024-46982
Author: samuel871211

Next.js is a React framework for building full-stack web applications. By sending a crafted HTTP request, it is possible to poison the cache of a non-dynamic server-side rendered route in the pages router (this does not affect the app router). When this crafted request is sent it could coerce Next.js to cache a route that is meant to not be cached and send a Cache-Control: s-maxage=1, stale-while-revalidate header which some upstream CDNs may cache as well. To be potentially affected all of the following must apply: 1. Next.js between 13.5.1 and 14.2.9, 2. Using pages router, & 3. Using non-dynamic server-side rendered routes e.g. pages/dashboard.tsx not pages/blog/[slug].tsx. This vulnerability was resolved in Next.js v13.5.7, v14.2.10, and later. We recommend upgrading regardless of whether you can reproduce the issue or not. There are no official or recomm...

CVE-2026-22812
Author: Ashwesker

None

GitHub Link:
https://github.com/Ashwesker/Ashwesker-CVE-2026-22812

CVE-2026-23745
Author: Jvr2022

None

GitHub Link:
https://github.com/Jvr2022/CVE-2026-23745

CVE-2026-23550
Author: TheTorjanCaptain

None

GitHub Link:
https://github.com/TheTorjanCaptain/CVE-2026-23550-PoC

CVE-2026-0227
Author: CkAbhijit

None

GitHub Link:
https://github.com/CkAbhijit/CVE-2026-0227-Advanced-Scanner

CVE-2025-13543
Author: Sudo-WP

None

GitHub Link:
https://github.com/Sudo-WP/sudowp-postgallery

CVE-2020-14979
Author: hexatriene

None

GitHub Link:
https://github.com/hexatriene/nuc-winring0-fix

CVE-2025-67263
Author: Smarttfoxx

None

GitHub Link:
https://github.com/Smarttfoxx/CVE-2025-67263

CVE-2025-67261
Author: Smarttfoxx

None

GitHub Link:
https://github.com/Smarttfoxx/CVE-2025-67261

CVE-2023-44487
Author: sastraadiwiguna-purpleeliteteaming

The HTTP/2 protocol allows a denial of service (server resource consumption) because request cancellation can reset many streams quickly, as exploited in the wild in August through October 2023.

GitHub Link:
https://github.com/sastraadiwiguna-purpleeliteteaming/DDoS-Purple-Teaming-Offensive-Multi-Vector-7-Tier-Defensive-Holistic-Blueprint-

CVE-2024-11635
Author: vigilante-1337

None

GitHub Link:
https://github.com/vigilante-1337/CVE-2024-11635

CVE-2015-2291
Author: paysonism

(1) IQVW32.sys before 1.3.1.0 and (2) IQVW64.sys before 1.3.1.0 in the Intel Ethernet diagnostics driver for Windows allows local users to cause a denial of service or possibly execute arbitrary code with kernel privileges via a crafted (a) 0x80862013, (b) 0x8086200B, (c) 0x8086200F, or (d) 0x80862007 IOCTL call.

GitHub Link:
https://github.com/paysonism/CVE-2015-2291-Spoofer-Analysis

CVE-2026-1107
Author: Iniivan13

None

GitHub Link:
https://github.com/Iniivan13/CVE-2026-1107

CVE-2024-23897
Author: wvverez

Jenkins 2.441 and earlier, LTS 2.426.2 and earlier does not disable a feature of its CLI command parser that replaces an '@' character followed by a file path in an argument with the file's contents, allowing unauthenticated attackers to read arbitrary files on the Jenkins controller file system.

GitHub Link:
https://github.com/wvverez/CVE-2024-23897

CVE-2025-64155
Author: Ashwesker

None

GitHub Link:
https://github.com/Ashwesker/Ashwesker-CVE-2025-64155

CVE-2026-22812
Author: mad12wader

None

GitHub Link:
https://github.com/mad12wader/CVE-2026-22812

CVE-2025-11380
Author: fleetcaptain

None

GitHub Link:
https://github.com/fleetcaptain/everest-backup-cve-2025-11380

CVE-2015-3306
Author: canpilayda

The modcopy module in ProFTPD 1.3.5 allows remote attackers to read and write to arbitrary files via the site cpfr and site cpto commands.

GitHub Link:
https://github.com/canpilayda/proftpd-modcopy-cve-2015-3306