CVE-2020-5752
Author: x0rbeexd

Relative path traversal in Druva inSync Windows Client 6.6.3 allows a local, unauthenticated attacker to execute arbitrary operating system commands with SYSTEM privileges.

GitHub Link:
https://github.com/x0rbeexd/CVE-2020-5752

CVE-2025-59057
Author: boroeurnprach

None

GitHub Link:
https://github.com/boroeurnprach/CVE-2025-59057-PoC

CVE-2025-14847
Author: peakcyber-security

None

GitHub Link:
https://github.com/peakcyber-security/CVE-2025-14847

CVE-2023-4220
Author: Least-Significant-Bit

Unrestricted file upload in big file upload functionality in /main/inc/lib/javascript/bigupload/inc/bigUpload.php in Chamilo LMS <= v1.11.24 allows unauthenticated attackers to perform stored cross-site scripting attacks and obtain remote code execution via uploading of web shell.

GitHub Link:
https://github.com/Least-Significant-Bit/CVE-2023-4220

CVE-2025-55182
Author: Least-Significant-Bit

None

GitHub Link:
https://github.com/Least-Significant-Bit/CVE-2025-55182

CVE-2025-64155
Author: horizon3ai

None

GitHub Link:
https://github.com/horizon3ai/CVE-2025-64155

CVE-2020-7693
Author: thewindghost

Incorrect handling of Upgrade header with the value websocket leads in crashing of containers hosting sockjs apps. This affects the package sockjs before 0.3.20.

GitHub Link:
https://github.com/thewindghost/CVE-2020-7693

CVE-2026-22241
Author: Ashifcoder

None

GitHub Link:
https://github.com/Ashifcoder/CVE-2026-22241