MHamdy24/CVE-2024-45427-Exploit PoC for PhpSpreadsheet XSS Create: 2026-01-07 12:45:20 +0000 UTC Push: 2026-01-07 12:45:21 +0000 UTC |

saykino/CVE-2025-66838 Create: 2026-01-07 07:53:17 +0000 UTC Push: 2026-01-07 07:53:18 +0000 UTC |

saykino/CVE-2025-66837 Create: 2026-01-07 07:35:54 +0000 UTC Push: 2026-01-07 07:35:55 +0000 UTC |

xShadow-Here/CVE-2025-49071 POC Create: 2026-01-07 07:28:07 +0000 UTC Push: 2026-01-07 10:14:49 +0000 UTC |

mantanhacker/Mass-CVE-2025-29306 Mass Exploit for CVE-2025-29306 Create: 2026-01-07 05:08:34 +0000 UTC Push: 2026-01-07 05:09:13 +0000 UTC |

ladosudeste/CVE-2025-3243 Create: 2026-01-07 05:07:45 +0000 UTC Push: 2026-01-07 05:07:45 +0000 UTC |

CadGoose/MongoBleed-CVE-2025-14847-Fully-Automated-scanner Full automation check for CVE-2025-14847 MonogBleed- Finds origin IP and tests for exploit. Create: 2026-01-07 03:32:21 +0000 UTC Push: 2026-01-07 03:32:22 +0000 UTC |

EarthAngel666/CVE-2025-65354 POC for CVE-2025-65354 Create: 2026-01-07 02:43:32 +0000 UTC Push: 2026-01-07 02:44:34 +0000 UTC |

secdongle/POC_CVE-2025-69194 PoC for CVE-2025-69194, a Path Traversal vulnerability in GNU Wget2 <= 2.2.0. This vulnerability allows attackers to achieve arbitrary file write or overwrite on the victim's filesystem by providing a malicious Metalink file with manipulated file name attributes. Create: 2026-01-07 02:33:02 +0000 UTC Push: 2026-01-07 02:33:03 +0000 UTC |

aim-sec/CVE-2016-1000027-with-c3p0 An exploit of CVE-2016-1000027 using ysoserial's c3p0 payload type to achieve remote code execution Create: 2026-01-07 00:00:44 +0000 UTC Push: 2026-01-07 00:00:45 +0000 UTC |

LACHHAB-Anas/Exploit_CVE-2025-37164 Exploit for the CVE-2025-37164 Create: 2026-01-06 22:23:25 +0000 UTC Push: 2026-01-06 22:23:25 +0000 UTC |

SnailSploit/CVE-2025-12030 ACF to REST API WordPress Plugin IDOR Vulnerability (CVE-2025-12030) - Security flaw allowing authenticated users with Contributor-level access to modify ACF fields on objects they do not own. Create: 2026-01-06 21:17:57 +0000 UTC Push: 2026-01-06 21:17:57 +0000 UTC |

B1TC0R3/CVE-2025-55182 React Server Component RCE PoC Create: 2026-01-06 20:05:46 +0000 UTC Push: 2026-01-06 20:05:46 +0000 UTC |

waheeb71/CVE-2025-14847 CVE-2025-14847 MongoDB Memory Leak Exploit Create: 2026-01-06 19:14:27 +0000 UTC Push: 2026-01-06 19:14:27 +0000 UTC |

nishant-kumar-5173/CVE-2024-5932 Create: 2026-01-06 19:05:58 +0000 UTC Push: 2026-01-06 19:05:59 +0000 UTC |

DDestinys/CVE-2023-42793 Create: 2026-01-06 01:12:23 +0000 UTC Push: 2026-01-06 01:12:56 +0000 UTC |

jir4vv1t/CVE-2025-43529 Create: 2026-01-05 23:43:41 +0000 UTC Push: 2026-01-05 23:45:36 +0000 UTC |

podatnosci/React2Shell-CVE-2025-55182- Create: 2026-01-05 22:46:33 +0000 UTC Push: 2026-01-05 22:46:33 +0000 UTC |

you-ssef9/CVE-2026-21440 Advanced detection-only PoC for CVE-2026-21440 affecting AdonisJS BodyParser. No exploitation included. Create: 2026-01-05 22:40:37 +0000 UTC Push: 2026-01-05 22:40:57 +0000 UTC |

Nxploited/CVE-2025-12674 KiotViet Sync <= 1.8.5 - Unauthenticated Arbitrary File Upload Create: 2026-01-05 19:39:01 +0000 UTC Push: 2026-01-05 19:39:01 +0000 UTC |