Ahmed Thaiban ERPNext 14.82.1 - Account Takeover via Cross-Site Request Forgery (CSRF)
webapps python CVE-2025-28062

Sn1p3r-H4ck3r Grokability Snipe-IT 8.0.4 - Insecure Direct Object Reference (IDOR)
webapps php CVE-2025-47226

Van Lam Nguyen Casdoor 1.901.0 - Cross-Site Request Forgery (CSRF)
webapps go CVE-n/a

hyp3rlinx Microsoft - NTLM Hash Disclosure Spoofing (library-ms)
local windows CVE-2025-24054

tasos meletlidis ZTE ZXV10 H201L - RCE via authentication bypass
local multiple

LiquidWorm Daikin Security Gateway 14 - Remote Password Reset
local multiple

hyp3rlinx Microsoft Windows - XRM-MS File NTLM Information Disclosure Spoofing
local windows

cybersploit unzip-stream 0.3.1 - Arbitrary File Write
local nodejs CVE-2024-42471

Milad karimi Microsoft Windows 11 - Kernel Privilege Escalation
local windows CVE-2024-21338

Milad karimi WordPress Core 6.2 - Directory Traversal
webapps php CVE-2023-2745

Milad karimi Firefox ESR 115.11 - PDF.js Arbitrary JavaScript execution
remote multiple CVE-2024-4367

Pruthu Raut code-projects Online Exam Mastering System 1.0 - Reflected Cross-Site Scripting (XSS)
remote php CVE-2025-28121

Milad karimi WonderCMS 3.4.2 - Remote Code Execution (RCE)
remote php CVE-2023-41425

Milad karimi Microsoft Windows 11 23h2 - CLFS.sys Elevation of Privilege
local windows CVE-2024-49138

Milad karimi OpenSSH server (sshd) 9.8p1 - Race Condition
remote linux CVE-2024-6387

cybersploit tar-fs 3.0.0 - Arbitrary File Write/Overwrite
local linux CVE-2024-12905