CVE-2025-33053 Proof Of Concept (PoC)
-
Updated
Jun 17, 2025 - Python
#
cve-2025
Here are 13 public repositories matching this topic...
Async Python scanner for Next.js CVE-2025-29927. Uses aiohttp & aiofiles to efficiently process large URL lists, detect vulnerabilities, and save results. Features connection pooling, caching, and chunked processing for fast performance
-
Updated
Mar 24, 2025 - Python
The Restrict File Access plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 1.1.2 via the output() function. This makes it possible for authenticated attackers, with Subscriber-level access and above, to read the contents of arbitrary files on the server
-
Updated
Jun 15, 2025 - Python
A vulnerability in an API of Cisco ISE could allow an authenticated, remote attacker to execute arbitrary commands as the root user on an affected device. This vulnerability is due to insecure deserialization of user-supplied Java byte streams by the affected software.
-
Updated
Jun 16, 2025 - Python
1day practice - Escape macOS sandbox (partial) using RemoteViewServices
security proof-of-concept exploit poc vulnerability cve risk-assessment cyber-security network-security threat-analysis software-vulnerability cve-2025 cve-2025-31258 poc-example system-exploit
-
Updated
Jun 19, 2025 - Objective-C
CVE 2025 24054
-
Updated
Jun 14, 2025 - Python
CVE-2025-30567 - WordPress WP01 < Path traversal
wordpress exploits cves uncodeboss codeb0ss cve-2025 cve-2025-30567 cve-2025-30567-wordpress cve-2025-30567-poc cve-2025-30567-exp
-
Updated
Apr 3, 2025 - Python
Erlang/OTP is a set of libraries for the Erlang programming language. Prior to versions OTP-27.3.3, OTP-26.2.5.11, and OTP-25.3.2.20, a SSH server may allow an attacker to perform unauthenticated remote code execution (RCE). By exploiting a flaw in SSH protocol message handling
-
Updated
Jun 15, 2025 - Python
In ExtremeCloud Universal ZTNA, a syntax error in the 'searchKeyword' condition caused queries to bypass the owner_id filter. This issue may allow users to search data across the entire table instead of being restricted to their specific owner_id.
cve cve-scanning cve-search cve-exploit cve-2025 cve-2025-6083 cve-2025-6083-exploit cve-2025-6083-exploiting
-
Updated
Jun 15, 2025 - Python
Image Resizer On The Fly plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the 'delete' task in all versions up to, and including, 1.1. This makes it possible for unauthenticated attackers to delete arbitrary files on the server
-
Updated
Jun 15, 2025 - Python
Erlang/OTP is a set of libraries for the Erlang programming language. Prior to versions OTP-27.3.3, OTP-26.2.5.11, and OTP-25.3.2.20, a SSH server may allow an attacker to perform unauthenticated remote code execution (RCE). By exploiting a flaw in SSH protocol message handling
cve cve-scanning cve-exploit cve-2025 cve-2025-32433 cve-2025-32433-erlang-otp-ssh-pre-auth-rce erlang-otp-ssh-pre-auth-rce
-
Updated
Jun 15, 2025 - Python
Roundcube Webmail before 1.5.10 and 1.6.x before 1.6.11 allows remote code execution by authenticated users because the _from parameter in a URL is not validated in program/actions/settings/upload.php, leading to PHP Object Deserialization.
-
Updated
Jun 15, 2025 - Python
The WIMP website co-construction management platform from HAMASTAR Technology has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents.
-
Updated
Jun 16, 2025 - Python
Improve this page
Add a description, image, and links to the cve-2025 topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the cve-2025 topic, visit your repo's landing page and select "manage topics."