Common Vulnerabilities and Exposures (CVE)
The Common Vulnerabilities and Exposures (CVE) system provides a reference-method for publicly known information-security vulnerabilities and exposures. The United States’ National Cybersecurity FFRDC, operated by The Mitre Corporation, maintains the system, with funding from the US National Cyber Security Division of the US Department of Homeland Security
- GitHub: https://github.com/topics/cve
- Wikipedia: https://en.wikipedia.org/wiki/Common_Vulnerabilities_and_Exposures
- Last updated: 2025-05-12 00:07:03 UTC
- JSON Representation
https://github.com/iricartb/university-cybersecurity
Ivan Ricart Borges - Cybersecurity Course
auditor csrf cve cybersecurity dmz dnsmap exploits iptables-firewall iso22301 iso27001 metasploit-framework mitm nessus nmap pilar risk-management set social-engineering sql-injection virtualbox
Last synced: 03 Mar 2025
https://github.com/codeb0ss/cve-2024-29824-poc
Mass Exploit - CVE-2024-29824 - Ivanti EPM - Remote Code Execution (RCE)
codeb0ss cve cve-2024-29824 cve-2024-29824-exp cve-2024-29824-exploit cve-2024-29824-poc exploit ivanti ivanti-rce rce remote-code-execution uncodeboss
Last synced: 03 May 2025
https://github.com/whokilleddb/cve-2019-15107
CVE-2019-15107 Webmin Exploit in C
Last synced: 21 Feb 2025
https://github.com/codeb0ss/cve-2023-1112-exp
CVE-2023-1112 Auto Exploiter
codeb0ss codeboss cve cve-2023 cve-2023-1112 cve-2023-1112-exp cve-2023-1112-exploiter cve-2023-1112-wp exploit uncodeboss wordpress wordpress0day wordpressexploit
Last synced: 01 Mar 2025
https://github.com/p1ckzi/CVE-2012-5519
cups-root-file-read.sh | CVE-2012-5519
cups-root-file-read cve cve-2012-5519 cves exploit hacking pentesting-tools
Last synced: 10 Mar 2025
https://github.com/usdtc/jpg-png-exploit-slient-builder-exploit-database-cve-2023-malware
In the hushed galleries of the Silent JPG Exploit, a symphony shrouded in enigma unfurls—an opus named silent-jpg-exploit-2018—a title that reverberates through the annals of intrigue.
cve cve-2021-44228 cve-scanning exploit exploit-code exploit-database exploit-development exploit-exercises exploit-kit exploitation exploitation-framework slient-doc-exploit slient-exploit slient-exploit-builder slient-hta-exploit slient-jpg-exploit slient-pdf-exploit slient-png-exploit slient-url-exploit
Last synced: 21 Mar 2025
https://github.com/muchdogesec/arango_cve_processor
A small python script that enriches Vulnerability STIX Objects with other intel
capec cpe cve cwe mitre-attack nvd stix2 vulnerability
Last synced: 05 May 2025
https://github.com/juanse77/active-inventory-generator
Active Inventory Report Generator for nmap scan
active-inventory automatic cve excel nmap report vulnerabilities
Last synced: 01 Mar 2025
https://github.com/GuilherveMasco/OPTIC
Online Python Tool for Internet protocol Comparisons
comparison cve internet ipv6 nvd protocol tool
Last synced: 10 Mar 2025
https://github.com/kh4sh3i/CVE-2022-26134
[PoC] Atlassian Confluence (CVE-2022-26134) - Unauthenticated OGNL injection vulnerability (RCE)
atlassian atlassian-jira code confluence confluent-platform cve cve-2022-26134 jira payload poc rce remote
Last synced: 10 Mar 2025
https://github.com/wisespace-io/cve-search
Client library for the CIRCL CVE Search
Last synced: 01 Mar 2025
https://github.com/eqstlab/cve-2024-48914
PoC for CVE-2024-48914
cve exploit poc proof-of-concept security typescript vulnerability
Last synced: 02 Dec 2024
https://github.com/muchdogesec/cpe2stix
A command line tool that turns NVD CPE records into STIX 2.1 Objects.
Last synced: 11 Jan 2025
https://github.com/hackingyseguridad/CVE-2021-4034
CVE-2021-4034, exploit para escalado de privilegios en SO Linux a root
cve elevar exploit linux privilegios root vuln
Last synced: 10 Mar 2025
https://github.com/seqred-s-a/CVE-2020-10551
Privilege escalation in QQBrowser
advisory browser cve cve-2020-10551 exploit qqbrowser security tencent
Last synced: 10 Mar 2025
https://github.com/postmodern/cve_schema.rb
A Ruby library providing common classes for CVE data and loading it from JSON.
Last synced: 13 Feb 2025
https://github.com/dubniczky/kernel-exploits
Kernel exploits consisting mostly of privilege escalation attacks against core components of Linux distribtions
cve exploit linux linux-exploits linux-kernel
Last synced: 31 Mar 2025
https://github.com/soontao/cve-2017-8046-demo
SPRING DATA REST CVE-2017-8046 DEMO
Last synced: 17 Mar 2025
https://github.com/5amu/pocbrowser
Scrape websites to find PoCs for CVEs
crystal crystal-lang cve cybersecurity exploit pentesting proof-of-concept scraping security-tool security-tools vulnerability-assessment
Last synced: 31 Mar 2025
https://github.com/monke443/cve-2023-40028-ghost-arbitrary-file-read
Arbitrary file read in Ghost-CMS allows an attacker to upload a malicious ZIP file with a symlink.
cve cve-2023-40028 exploit ghost-cms github pentesting security vulnerability
Last synced: 27 Dec 2024
https://github.com/hunthubspace/cve-2024-3105-poc
A PoC Exploit for CVE-2024-3105 - The Woody code snippets – Insert Header Footer Code, AdSense Ads plugin for WordPress Remote Code Execution (RCE)
bugbounty cve cve-2024-3105 ethical-hacking exploit penetration-testing web
Last synced: 26 Mar 2025
https://github.com/b3b0/bluebrary
📘🛠️My self-described "Blue Team Library". A collection of scripts I've used over time to remediate various vulnerabilites.
blueteam cve mitigation patching remediation
Last synced: 22 Mar 2025
https://github.com/suenerve/cve-2022-30190-follina-patch
The CVE-2022-30190-follina Workarounds Patch
administrator cmd cve cve-2022-30190 exe microsoft patch program py python windows
Last synced: 12 Mar 2025
https://github.com/kernelerr/vlc-cve-2008-4654-exploit
An EXP could run on Windows x64 against CVE-2008-4654.
cve exploit out-of-memory vlc vlc-media-player
Last synced: 13 Mar 2025
https://github.com/lynk4/cve-2011-2523
Python exploit for vsftpd 2.3.4 - Backdoor Command Execution
cve cve-2011-2523 exploit metasploitable metasploitable-2 metasploitable-3 python vsftpd-exploit
Last synced: 21 Feb 2025
https://github.com/p1ckzi/cve-2022-35513
CVE-2022-35513 | blink1-pass-decrypt
blink1-pass-decrypt blink1control2 cve cve-2022-35513 exploit
Last synced: 25 Mar 2025
https://github.com/muchdogesec/vulmatch
Vulmatch is a database of CVEs in STIX 2.1 format with a REST API wrapper to access them.
cpe cve nvd vulnerabilities vulnerability
Last synced: 02 May 2025
https://github.com/mbadanoiu/cve-2023-26269
CVE-2023-26269: Misconfigured JMX in Apache James
0-day cve cve-2023-26269 cves local-privilege-escalation mlet unauthenticated
Last synced: 01 Mar 2025
https://github.com/whokilleddb/CVE-2019-15107
CVE-2019-15107 Webmin Exploit in C
Last synced: 10 Mar 2025
https://github.com/peiwithhao/hacker-university-of-peiwithhao
peiwithhao's learning journey in network/system security
archlinux course cve fuzzing linux-kernel linux-kernel-module university
Last synced: 09 Apr 2025
https://github.com/spamixofficial/cve-2023-38831
CVE-2023-38831 Proof-of-concept code
cve cve-2023-38831 poc proof-of-concept rust
Last synced: 11 Apr 2025
https://github.com/sneezry/vscode-cve
Show security alert for vulnerable dependencies of Node projects
audit cve nodejs vscode-extension
Last synced: 28 Mar 2025
https://github.com/sa7mon/vulnchest
A collection of vulnerable applications for research purposes
Last synced: 01 Mar 2025
https://github.com/jmousqueton/cti-teams-notification
Teams Notification on closed PR
cti cve cybersecurity github-actions msteams python python3 ransomware teams webhook
Last synced: 25 Feb 2025
https://github.com/GeorgiiFirsov/CVE-2020-1034
CVE 2020-1034 exploit and presentation
cve cve-2020-1034 education exploit research vulnerability winapi windows
Last synced: 10 Mar 2025
https://github.com/ariary/CVE-2021-25741
🪄 Instant shell on kubernetes node with CVE-2021-25741 exploit adaptation
cve hostpath infosec k8s-security kubernetes poc
Last synced: 10 Mar 2025
https://github.com/whokilleddb/CVE-2019-17662
Exploit for CVE-2019-17662 (ThinVNC 1.0b1)
cve cve-2019-17662 exploit poc thinvnc
Last synced: 10 Mar 2025
https://github.com/swapravo/cvesploit
Find SearchSploit exploits by CVE-IDs / dpkg status file
Last synced: 10 Mar 2025
https://github.com/SherlockSec/CVE-2020-0601
A Windows Crypto Exploit
cve cve-2020-0601 exploit windows
Last synced: 10 Mar 2025
https://github.com/usdtc/slient-url-exploit
URL Contamination Exploit Muted Java Drive-By downloads can transpire during the act of perusing a website, inaugurating an electronic mail communication.
cve cve-2021-44228 cve-scanning exploit exploit-code exploit-database exploit-development exploit-exercises exploit-kit exploitation exploitation-framework slient-doc-exploit slient-exploit slient-exploit-builder slient-hta-exploit slient-jpg-exploit slient-pdf-exploit slient-png-exploit slient-url-exploit
Last synced: 21 Mar 2025
https://github.com/mykhis/jpg-png-exploit-slient-builder-exploit-database-cve-2023-malware
In the hushed galleries of the Silent JPG Exploit, a symphony shrouded in enigma unfurls—an opus named silent-jpg-exploit-2018—a title that reverberates through the annals of intrigue.
cve cve-2021-44228 cve-scanning exploit exploit-code exploit-database exploit-development exploit-exercises exploit-kit exploitation exploitation-framework slient-doc-exploit slient-exploit slient-exploit-builder slient-hta-exploit slient-jpg-exploit slient-pdf-exploit slient-png-exploit slient-url-exploit
Last synced: 28 Jan 2025
https://github.com/appatalks/ghes-cve-check
Automate investigating CVE Look-ups against GitHub Enterprise Server (GHES)
Last synced: 19 Feb 2025
https://github.com/l0wk3y-iaan/discord-cve-notifier
A Python script that periodically checks for new vulnerabilities from the JSON data provided by CISA (Cybersecurity and Infrastructure Security Agency).
Last synced: 19 Feb 2025
https://github.com/ryosukedtomita/cve_checker
AWS ServerlessFramework with Nist Vulnerability Database(NVD) API
Last synced: 17 Feb 2025
https://github.com/meters4/hta-exploit
Microsoft Windows HTA (HTML Application) - Pinnacle of Remote Code Execution
cve cve-2021-44228 cve-scanning exploit exploit-code exploit-database exploit-development exploit-exercises exploit-kit exploitation exploitation-framework slient-doc-exploit slient-exploit slient-exploit-builder slient-hta-exploit slient-jpg-exploit slient-pdf-exploit slient-png-exploit slient-url-exploit
Last synced: 14 Mar 2025
https://github.com/mbadanoiu/cve-2023-51518
CVE-2023-51518: Preauthenticated Java Deserialization via JMX in Apache James
0-day cve cve-2023-51518 cves deserialization local-privilege-escalation pre-authentication
Last synced: 01 Mar 2025
https://github.com/mbadanoiu/cve-2021-46364
CVE-2021-46364: YAML Deserialization in Magnolia CMS
0-day authenticated cve cve-2021-46364 cves deserialization remote-code-execution
Last synced: 01 Mar 2025
https://github.com/mbadanoiu/cve-2022-29063
CVE-2022-29063: Java Deserialization via RMI Connection in Apache OfBiz
0-day cve cve-2022-29063 cves deserialization local-privilege-escalation
Last synced: 01 Mar 2025
https://github.com/codeb0ss/cve-2024-25735-poc
CVE-2024-25735 - WyreStorm Apollo VX20 - Information Disclosure
codeb0ss cve cve-2024 cve-2024-25753 cve-2024-25753-exp cve-2024-25753-poc exploit exploits uncodeboss vulnerability
Last synced: 01 Mar 2025
https://github.com/codeb0ss/cve-2023-41538-poc
Mass exploit - CVE-2023-41538 < phpjabbers PHP Forum < Cross Site Scripting (XSS)
0day codeb0ss codeboss cve cve-2023 cve-2023-41538 cve-2023-41538-exp cve-2023-41538-exploit cve-2023-41538-poc cve-poc phpforum phpjabber phpjabbers poc
Last synced: 01 Mar 2025
https://github.com/Fadavvi/CVE-2018-17431-PoC
Proof of consept for CVE-2018-17431
comodo cve cve-2018-17431 exploit poc proof-of-concept rce remote-code-execution
Last synced: 10 Mar 2025
https://github.com/t3tra-dev/cve-2025-29927-demo
Next.js における認可バイパスの脆弱性を再現するデモです。
Last synced: 29 Mar 2025
https://github.com/raul23/equifax-data-breach
Researching the 2017 Equifax data breach. Saving important notes about this infamous case.
apache attribution cve data-breach equifax java network-intrusion notes vulnerability
Last synced: 03 Mar 2025
https://github.com/spamegg1/tryhackme
Tryhackme journey
cve defensive-security gobuster hacking hydra nmap offensive-security penetration-testing ubuntu
Last synced: 15 Mar 2025
https://github.com/whokilleddb/cve-2019-17662
Exploit for CVE-2019-17662 (ThinVNC 1.0b1)
cve cve-2019-17662 exploit poc thinvnc
Last synced: 21 Feb 2025
https://github.com/cyllective/cves
This is a list of CVE's discovered by us
cve vulnerabilities vulnerability
Last synced: 02 Apr 2025
https://github.com/s9ra16bf4/exploits
Proof-of-concept for known security issues
cve cve-2019-13623 exploit exploits ghidra golang
Last synced: 21 Feb 2025
https://github.com/krisinfosec/slowest_cve_aggregator
The slowest CVE aggregator - old-fashioned CLI tool in Rust
cve cybersecurity rust rust-lang
Last synced: 09 Mar 2025
https://github.com/marwan-ahmed-23/linux-security-dashboard
An open-source Linux Security Dashboard for monitoring system security, auditing configurations, and generating detailed reports.
audit cve dashboard linux monitoring open-source security
Last synced: 05 Jan 2025
https://github.com/cosasdepuma/cve-research
🔬 My own CVEs
cve cve-report cve-research cve-search cves security-research
Last synced: 11 Mar 2025
https://github.com/password123456/nvd-cve-database
The Common Vulnerabilities Exposures (CVE) Database
cve nvd vulnerability-databases vulnerability-identification
Last synced: 21 Feb 2025
https://github.com/p1ckzi/cve-2009-2265
cf8-upload.py | CVE-2009-2265
cf8-upload cve cve-2009-2265 exploit hacking pentesting-tools
Last synced: 31 Mar 2025
https://github.com/dmdhrumilmistry/cves
List of CVEs found by dmdhrumilmistry
cve cve-2024-22513 cves django-rest-framework hacking jwt jwt-auth jwt-token
Last synced: 25 Mar 2025
https://github.com/vincentscode/cve-2024-34313
☣️ This repository contains the description and a proof of concept for CVE-2024-34313
Last synced: 02 Mar 2025
https://github.com/5fingers/cve-notifier
A python tool for sending email notifications about latest CVE trends
Last synced: 20 Feb 2025
https://github.com/mbadanoiu/cve-2021-20253
CVE-2021-20253: Privilege Escalation via Job Isolation Escape in Ansible Tower
0-day cve cve-2021-20253 cves local-privilege-escalation
Last synced: 01 Mar 2025
https://github.com/travispaul/node-nvd-search
(Unofficial) node module to fetch, cache, and perform offline search of the NIST National Vulnerability Database.
Last synced: 10 Apr 2025
https://github.com/bstyls/winrar-exploit-builder
The WinRAR Exploit Builder is a C# project designed to create an exploit targeting a vulnerability in WinRAR.
0day 0day-2024 0day-exploit 0day-exploits archive aslr-bypass cve exploit exploit-database exploit-development exploit-kit pdf pdf-exploit pdf-format rce-exploit security winrar winrar-exploit zero-day-exploit zeroday-attack
Last synced: 03 Apr 2025
https://github.com/mauricelambert/cve-2021-42013
These Nmap, Python and Ruby scripts detects and exploits CVE-2021-42013 with RCE and local file disclosure.
cve cve-2021-42013 detection exploit metasploit nmap python3 rce ruby scanner vulnerability
Last synced: 04 Mar 2025
https://github.com/mauricelambert/cve-2021-41773
These Metasploit, Nmap, Python and Ruby scripts detects and exploits CVE-2021-41773 with RCE and local file disclosure.
cve cve-2021-41773 detection exploit metasploit nmap python3 rce ruby scanner vulnerability
Last synced: 04 Mar 2025
https://github.com/muchdogesec/cti_knowledge_base_store
A repository that stores CTI Knowledge-bases in versioned STIX 2.1 Bundles.
cpe cve disarm mitre-attack mitre-capec mitre-cwe nvd sigma-rules stix2 stix2-extensions yara yara-rules
Last synced: 01 Mar 2025
https://github.com/Sneezry/vscode-cve
Show security alert for vulnerable dependencies of Node projects
audit cve nodejs vscode-extension
Last synced: 10 Mar 2025
https://github.com/dawnofdedsec/cve-writeups
Welcome to the CVE Write-Up Repository! This repository serves as a comprehensive collection of detailed write-ups and analyses for various Common Vulnerabilities and Exposures (CVEs). Each write-up includes an in-depth explanation of the vulnerability, its impact, affected systems, proof-of-concept (PoC) exploits, and mitigation strategies.
Last synced: 25 Mar 2025
https://github.com/m-ah07/linux-security-dashboard
A Flask-based interactive dashboard for monitoring Linux system security. It provides real-time insights into system information, open ports, running processes, and failed login attempts. The dashboard is designed to enhance system monitoring with Basic Auth protection, Slack notifications, and Docker support for seamless deployment.
audit cve dashboard docker flask linux monitoring open-ports open-source security slack-alerts system-info
Last synced: 20 Feb 2025
https://github.com/brayanhenao/cve-notifications-app
It is an application that monitors new CVEs that are announced for the dependencies that are being tracked and notify them via Slack Webhook message to a specific channel.
Last synced: 22 Feb 2025
https://github.com/vipulgupta2048/chps-scorer-github-action
GitHub Action for chps-scorer
chps container cve github-actions security
Last synced: 24 Apr 2025
https://github.com/gsmith257-cyber/bit3434cve
BI T3434 Project on data mining CVEs and Exploits
cve data data-mining exploits research-project
Last synced: 24 Feb 2025
https://github.com/michaelpgalen/CVE-DataVis-Prototype-JS
A vanilla javascript prototype for a React data visualization project.
cve data-visualization vanilla-javascript vanilla-js
Last synced: 10 Mar 2025
https://github.com/shadawck/scabi
Implement vulnerabilities scanning on top of package management system like apt, pip, composer...
cve dependencies mitre ossindex package-manager python scanner security security-audit security-tools vulnerability
Last synced: 05 Mar 2025
https://github.com/vulnsphere/paddlepaddle_poc
This is the PoC repository of PaddlePaddle. Updating...
Last synced: 01 Apr 2025
https://github.com/shamo0/CVE-2022-1388
BIG-IP iControl REST vulnerability CVE-2022-1388 PoC
1388 2022 bash bigip cve cve-2022-1388 exploit f5 icontrol python rest script shell vulnerabilit
Last synced: 10 Mar 2025
https://github.com/anshvaid4/follinatest
Reference of code has been taken from https://github.com/JohnHammond/msdt-follina/blob/main/follina.py. I have given the explanation of the code and made the code a bit simplified.
Last synced: 27 Mar 2025
https://github.com/lquerel/cve-list
In-memory database of CVEs created from a local cache of https://github.com/CVEProject/cvelistV5
Last synced: 04 Apr 2025
