Initial Access Intelligence
The "Initial Access Intelligence" module is a vital tool for cybersecurity, designed to scan GitHub repositories for the latest exploit and proof-of-concept codes for new vulnerabilities. It provides users with crucial updates on potential security threats, enabling proactive defense measures. This module helps close the gap between vulnerability discovery and patching, significantly enhancing system security.
-
Dec. 17, 2025, 8:36 p.m.
None
Dockerfile Java JavaScript CSS HTML
Updated: 1 day, 1 hour ago0 stars 0 fork 0 watcherBorn at : Dec. 17, 2025, 8:33 p.m. This repo has been linked 1 different CVEs too. -
Dec. 17, 2025, 8:32 p.m.
Creating a vulnerable instance to test against
Dockerfile Batchfile Shell Java
Updated: 1 day, 1 hour ago0 stars 0 fork 0 watcherBorn at : Dec. 17, 2025, 8:23 p.m. This repo has been linked 1 different CVEs too. -
Dec. 17, 2025, 8:15 p.m.
None
Java
Updated: 1 day, 2 hours ago0 stars 0 fork 0 watcherBorn at : Dec. 17, 2025, 8:14 p.m. This repo has been linked 1 different CVEs too. -
Dec. 18, 2025, 8:46 a.m.
Proof of Concept for Authenticated RCE in Crafty Controller <= 4.6.1
Python
Updated: 13 hours, 41 minutes ago1 stars 0 fork 0 watcherBorn at : Dec. 17, 2025, 8:10 p.m. This repo has been linked 1 different CVEs too. -
Dec. 17, 2025, 6:20 p.m.
CVE-2025-14269 PoC exploit
Updated: 1 day, 4 hours ago0 stars 0 fork 0 watcherBorn at : Dec. 17, 2025, 6:10 p.m. This repo has been linked 0 different CVEs too. -
Dec. 17, 2025, 6:39 p.m.
Proof-of-concept research tool for CVE-2025-55182, a critical unauthenticated RCE in Next.js App Router caused by server-side object injection in React Server Components and Server Actions, including UTF-16LE WAF evasion techniques.
cve-2025-55182 nextjs prototype-pollution react react-server-components remote-code-execution-rce server-actions utf-16le waf-bypass
Python
Updated: 1 day, 3 hours ago0 stars 0 fork 0 watcherBorn at : Dec. 17, 2025, 6 p.m. This repo has been linked 1 different CVEs too. -
Dec. 18, 2025, 2:22 p.m.
PoC & Write-up for CVE-2025-68434: Critical CSRF in OpenSourcePOS. Exploits a disabled filter configuration to allow unauthenticated attackers to silently create rogue Administrator accounts, leading to full system takeover. Validated on versions < 3.4.0.
Updated: 8 hours, 5 minutes ago1 stars 0 fork 0 watcherBorn at : Dec. 17, 2025, 5:37 p.m. This repo has been linked 2 different CVEs too. -
Dec. 18, 2025, 3:52 p.m.
PoC repository for CVE-2025-68147: Stored Cross-Site Scripting (XSS) in OpenSourcePOS. Vulnerability allows privilege escalation via malicious JavaScript injection in the Store Config module. Includes payload details and patch verification (v3.4.0). Security Researcher: Aditya Singh (Nixon-H).
Updated: 6 hours, 35 minutes ago1 stars 0 fork 0 watcherBorn at : Dec. 17, 2025, 5:30 p.m. This repo has been linked 1 different CVEs too. -
Dec. 17, 2025, 5:40 p.m.
CVE's
Updated: 1 day, 4 hours ago0 stars 0 fork 0 watcherBorn at : Dec. 17, 2025, 5:15 p.m. This repo has been linked 8 different CVEs too. -
Dec. 17, 2025, 3:56 p.m.
None
JavaScript TypeScript CSS
Updated: 1 day, 6 hours ago0 stars 0 fork 0 watcherBorn at : Dec. 17, 2025, 3:55 p.m. This repo has been linked 2 different CVEs too.
