JoshuaProvoste/0-click-RCE-Exploit-for-CVE-2024-51793 Unauthenticated 0-click RCE exploit for CVE-2024-51793. Exploits an arbitrary file upload vulnerability via admin-ajax.php to upload a PHP payload and achieve remote command execution on vulnerable WordPress installations, including OS detection and an interactive command shell. Create: 2026-01-22 17:48:32 +0000 UTC Push: 2026-01-22 17:48:32 +0000 UTC |

MemerGamer/CVE-2025-55182 CVE-2025-55182 Create: 2026-01-22 17:39:41 +0000 UTC Push: 2026-01-22 17:39:45 +0000 UTC |

NiceTop1027/CVE-2026-Pending-Django-Summernote-RCE Create: 2026-01-22 17:29:07 +0000 UTC Push: 2026-01-22 17:29:42 +0000 UTC |

JoshuaProvoste/0-click-RCE-Exploit-for-CVE-2023-51409 Unauthenticated 0-click RCE exploit for CVE-2023-51409. Abuses an arbitrary file upload flaw in the AI Engine WordPress plugin to upload a PHP webshell and achieve remote command execution without authentication, including OS detection and an interactive shell. Create: 2026-01-22 17:21:29 +0000 UTC Push: 2026-01-22 17:21:29 +0000 UTC |

NiceTop1027/CVE-2026-Pending-Flask-Uploads-Path-Traversal-PoC Create: 2026-01-22 16:41:39 +0000 UTC Push: 2026-01-22 16:41:40 +0000 UTC |

yanxinwu946/CVE-2026-24061--telnetd Create: 2026-01-22 15:49:14 +0000 UTC Push: 2026-01-22 15:49:15 +0000 UTC |

minnggyuu/CVE-2025-57298 CVE-2025-57298 Disclosure. Create: 2026-01-22 14:36:25 +0000 UTC Push: 2026-01-22 14:36:26 +0000 UTC |

JayGLXR/CVE-2026-24061-POC Create: 2026-01-22 14:27:50 +0000 UTC Push: 2026-01-22 14:27:51 +0000 UTC |

Chocapikk/CVE-2026-24061 Create: 2026-01-22 14:24:19 +0000 UTC Push: 2026-01-22 14:24:22 +0000 UTC |

Ashwesker/Ashwesker-CVE-2026-20045 CVE-2026-20045 Create: 2026-01-22 12:49:29 +0000 UTC Push: 2026-01-22 12:49:29 +0000 UTC |

TryA9ain/CVE-2026-24061 CVE-2026-24061 Batch Scanning Tool Create: 2026-01-22 10:48:22 +0000 UTC Push: 2026-01-22 10:48:48 +0000 UTC |

duy-31/CVE-2026-24061---telnetd Bypass d’authentification Telnet menant à un accès root Create: 2026-01-22 10:38:31 +0000 UTC Push: 2026-01-22 10:38:32 +0000 UTC |

ExploreUnknowed/CVE-2025-67303 Create: 2026-01-22 08:41:44 +0000 UTC Push: 2026-01-22 08:42:07 +0000 UTC |

N1vi4/ComfyUI-Manager-CVE-2025-67303 Create: 2026-01-22 06:48:51 +0000 UTC Push: 2026-01-22 06:48:51 +0000 UTC |

CipherX1802/CVE-2025-69822-Atomberg_Erica_SmatFan_Security_Assessment An issue in Atomberg Atomberg Erica Smart Fan Firmware Version: V1.0.36 allows an attacker to obtain sensitive information and escalate privileges via a crafted deauth frame. Create: 2026-01-22 06:43:30 +0000 UTC Push: 2026-01-22 06:43:30 +0000 UTC |

CipherX1802/CVE-2025-69821---Beat-XP-Vega-Smartwatch-Security-Assessment Asecurity assessment of the Beat XP VEGA Smartwatch (Firmware RB303ATV006229) focused on Bluetooth Low Energy (BLE) connectivity revealed a design and implemen tation weakness that enables a nearby BLE central device to establish and retain the single available BLE session without authentication or session access control. Create: 2026-01-22 06:06:39 +0000 UTC Push: 2026-01-22 06:07:01 +0000 UTC |

CipherX1802/CVE-2025-69821-Beat-XP-Vega-Smartwatch-Security-Assessment Asecurity assessment of the Beat XP VEGA Smartwatch (Firmware RB303ATV006229) focused on Bluetooth Low Energy (BLE) connectivity revealed a design and implemen tation weakness that enables a nearby BLE central device to establish and retain the single available BLE session without authentication or session access control. Create: 2026-01-22 06:06:39 +0000 UTC Push: 2026-01-22 06:07:01 +0000 UTC |

guard-wait/CVE-2025-38248_EXP The first detail for CVE-2025-38248 Create: 2026-01-22 04:46:19 +0000 UTC Push: 2026-01-22 04:46:20 +0000 UTC |

dajneem23/CVE-2026-2395 Create: 2026-01-22 04:28:48 +0000 UTC Push: 2026-01-22 04:28:49 +0000 UTC |

samael0x4/CVE-2026-21962 Unauthenticated vulnerability that may allow remote attackers to compromise confidentiality and integrity, potentially leading to full system compromise. Create: 2026-01-22 03:59:25 +0000 UTC Push: 2026-01-22 03:59:26 +0000 UTC |