CalvinBackup/CVEs-PoC
1
0
Fork 0
mirror of https://github.com/0xMarcio/cve.git synced 2026-05-21 00:44:53 +02:00
Code Issues Packages Projects Releases Wiki Activity

Restore README trending tables and auto-build site

Browse Source
This commit is contained in:
0xMarcio
2025-12-17 21:39:16 +01:00
parent 0afef5597e
commit 5cb3a28aeb
4 changed files with 173 additions and 43 deletions
Download Patch File Download Diff File Expand all files Collapse all files
.github/getTrending.py
+69 -32
View File
@@ -1,11 +1,12 @@
#!/usr/bin/env python3
"""Regenerate the Trending PoCs tables in README.md.
- Consider the latest 4 years (current year and previous 3).
- Require repository name to contain a CVE for that year (e.g., CVE-2025-1234).
- Require a non-empty description (we only want actual PoCs, not empty shells).
- Restrict to repositories updated in the last 4 days.
- Sort by most recently updated, then stars, and emit up to 20 rows per year.
Goals (matching the legacy README that worked well):
- Cover the current year plus the previous three.
- Keep the familiar heading “Latest 20 of N Repositories”.
- Only show repos updated in the last WINDOW_DAYS.
- Require a CVE-shaped repo name for that year and a non-empty description.
- Sort newest first, then by stars, and cap at MAX_ROWS per year.
"""
from __future__ import annotations
@@ -21,6 +22,7 @@ import requests
WINDOW_DAYS = 4
MAX_ROWS = 20
YEARS_BACK = 4
MIN_STARS = 0 # keep low to capture fresh repos
class Repo(TypedDict):
@@ -53,34 +55,69 @@ def time_ago(updated_at: str, now: datetime) -> str:
return "just now"
def fetch_trending(year: int, cutoff: datetime) -> List[Repo]:
query = f"CVE-{year} in:name stars:>2 pushed:>={cutoff.date().isoformat()} archived:false"
def _search_total(year: int) -> int:
"""Return total repositories matching CVE-year (used for table heading)."""
stars_clause = f"stars:>{MIN_STARS}" if MIN_STARS >= 0 else "stars:>0"
query = f"CVE-{year} in:name {stars_clause} archived:false"
url = "https://api.github.com/search/repositories"
params = {
"q": query,
"sort": "updated",
"order": "desc",
"per_page": 100,
"page": 1,
}
resp = requests.get(url, params=params, headers=github_headers(), timeout=30)
resp = requests.get(
url, params={"q": query, "per_page": 1}, headers=github_headers(), timeout=30
)
resp.raise_for_status()
items: Iterable[Repo] = resp.json().get("items", [])
return int(resp.json().get("total_count", 0))
def fetch_trending(year: int, cutoff: datetime) -> tuple[List[Repo], int]:
"""Fetch and filter trending repos for a year, returning rows and total_count."""
stars_clause = f"stars:>{MIN_STARS}" if MIN_STARS >= 0 else "stars:>0"
query = f"CVE-{year} in:name {stars_clause} archived:false pushed:>={cutoff.date().isoformat()}"
url = "https://api.github.com/search/repositories"
total_count = _search_total(year)
pattern = re.compile(rf"cve-{year}-\d+", re.IGNORECASE)
filtered: List[Repo] = []
for item in items:
name = item.get("name", "")
updated_at = item.get("updated_at")
description = (item.get("description") or "").strip()
if not updated_at or not pattern.search(name or "") or not description:
continue
updated_dt = datetime.strptime(updated_at, "%Y-%m-%dT%H:%M:%SZ").replace(tzinfo=timezone.utc)
if updated_dt < cutoff:
continue
filtered.append(item)
seen_urls: set[str] = set()
# Walk multiple pages to gather enough fresh repos (up to MAX_ROWS).
for page in range(1, 2):
params = {
"q": query,
"sort": "updated",
"order": "desc",
"per_page": 100,
"page": page,
}
resp = requests.get(url, params=params, headers=github_headers(), timeout=30)
resp.raise_for_status()
items: Iterable[Repo] = resp.json().get("items", [])
if not items:
break
for item in items:
name = item.get("name", "")
updated_at = item.get("updated_at")
description = (item.get("description") or "").strip()
html_url = item.get("html_url")
if not updated_at or not html_url or not description:
continue
if not pattern.search(name or ""):
continue
updated_dt = datetime.strptime(updated_at, "%Y-%m-%dT%H:%M:%SZ").replace(tzinfo=timezone.utc)
if updated_dt < cutoff:
continue
if html_url in seen_urls:
continue
seen_urls.add(html_url)
filtered.append(item)
if len(filtered) >= MAX_ROWS:
break
# Already sorted by updated desc; break ties by stars
filtered.sort(key=lambda r: (-datetime.strptime(r["updated_at"], "%Y-%m-%dT%H:%M:%SZ").timestamp(), -int(r.get("stargazers_count", 0))))
return filtered[:MAX_ROWS]
filtered.sort(
key=lambda r: (
-datetime.strptime(r["updated_at"], "%Y-%m-%dT%H:%M:%SZ").timestamp(),
-int(r.get("stargazers_count", 0)),
)
)
return filtered[:MAX_ROWS], total_count
def build_rows(repos: List[Repo], now: datetime) -> List[str]:
@@ -94,16 +131,16 @@ def build_rows(repos: List[Repo], now: datetime) -> List[str]:
def main() -> None:
current_year = datetime.now(timezone.utc).year
cutoff = datetime.now(timezone.utc) - timedelta(days=WINDOW_DAYS)
now = datetime.now(timezone.utc)
current_year = now.year
cutoff = now - timedelta(days=WINDOW_DAYS)
output: List[str] = ['<h1 align="center">Recently updated Proof-of-Concepts</h1>']
for year in range(current_year, current_year - YEARS_BACK, -1):
repos = fetch_trending(year, cutoff)
repos, total = fetch_trending(year, cutoff)
output.append(f"\n\n## {year}\n")
output.append(f"### Updated in the last {WINDOW_DAYS} days (up to {MAX_ROWS} repos)\n")
output.append(f"### Latest {MAX_ROWS} of {total} Repositories\n")
output.append("| Stars | Updated | Name | Description |")
output.append("| --- | --- | --- | --- |")
if repos:
.github/workflows/site.yml
+1 -1
View File
@@ -49,7 +49,7 @@ jobs:
python scripts/fetch_epss.py
- name: Build site
run: python scripts/build_site.py
run: python scripts/build_site.py --html-mode summary
- name: Configure Pages
uses: actions/configure-pages@v5
README.md
+21 -6
View File
@@ -3,40 +3,55 @@
## 2025
### Updated in the last 4 days (up to 20 repos)
### Latest 20 of 1258 Repositories
| Stars | Updated | Name | Description |
| --- | --- | --- | --- |
| 1⭐ | 55 minutes ago | [CVE-2025-61882-CVE-2025-61884](https://github.com/siddu7575/CVE-2025-61882-CVE-2025-61884) | 🔍 Detect vulnerabilities CVE-2025-61882 and CVE-2025-61884 in Oracle E-Business Suite to help secure your systems from potential remote code execution threats. |
| 1⭐ | 1 hour ago | [CVE-2025-54253-Exploit-Demo](https://github.com/jm7knz/CVE-2025-54253-Exploit-Demo) | 🐙 CVE-2025-54253 exploit demo for Adobe AEM Forms on JEE: OGNL injection to RCE with PoC, Python 3.10 exploit code, reproducer and mitigation guidance. |
| 1⭐ | 1 hour ago | [CVE-2025-54424](https://github.com/hophtien/CVE-2025-54424) | CVE-2025-54424: 1Panel TLS client cert bypass enables RCE via forged CN 'panel_client' using a bundled scanning and exploitation tool. Affected: <= v2.0.5. 🔐 |
| 1⭐ | 2 hours ago | [CVE-2025-13780](https://github.com/ThemeHackers/CVE-2025-13780) | A comprehensive vulnerability scanner for CVE-2025-13780, a Remote Code Execution (RCE) vulnerability in pgAdmin 4 versions ≤ 8.14. |
| 360⭐ | 2 hours ago | [Next.js-RSC-RCE-Scanner-CVE-2025-66478](https://github.com/Malayke/Next.js-RSC-RCE-Scanner-CVE-2025-66478) | A command-line scanner for batch detection of Next.js application versions and determining if they are affected by CVE-2025-66478 vulnerability. |
| 2⭐ | 10 hours ago | [CVE-2025-6218-WinRAR-RCE-POC](https://github.com/Chrxstxqn/CVE-2025-6218-WinRAR-RCE-POC) | Comprehensive analysis and proof-of-concept for CVE-2025-6218 - WinRAR path traversal RCE vulnerability affecting versions 7.11 and earlier |
| 1⭐ | 11 hours ago | [CVE-2025-55182-React2Shell-Exploit](https://github.com/M4rgs/CVE-2025-55182-React2Shell-Exploit) | A proof-of-concept tool for demonstrating the critical React2Shell vulnerability |
| 4⭐ | 13 hours ago | [CVE-2025-66478-POC](https://github.com/wangxso/CVE-2025-66478-POC) | CVE-2025-66478 Proof of Concept |
| 4⭐ | 22 hours ago | [CVE-2025-65318-and-CVE-2025-65319](https://github.com/bbaboha/CVE-2025-65318-and-CVE-2025-65319) | Insecure attachment handling when using Canary Mail or Blue mail |
| 2⭐ | 1 day ago | [CVE-2025-31702](https://github.com/itres-labs/CVE-2025-31702) | Repository with tools, exploits, and material associated with the analysis and discovery process of CVE-2025-31702 and other related security issues. |
| 1⭐ | 1 day ago | [CVE-2025-55182](https://github.com/LucasPDiniz/CVE-2025-55182) | React2Shell Vulnerability |
| 78⭐ | 1 day ago | [Blackash-CVE-2025-55182](https://github.com/Ashwesker/Blackash-CVE-2025-55182) | CVE-2025-55182 |
| 3⭐ | 1 day ago | [CVE-2025-54100](https://github.com/ThemeHackers/CVE-2025-54100) | CVE-2025-54100 (CVSS 7.8 High) is a command injection vulnerability in the Invoke-WebRequest cmdlet of Windows PowerShell 5.1. It arises from improper neutralization of special elements during the automatic parsing of Web responses. |
| 17⭐ | 1 day ago | [CVE-2025-55182](https://github.com/ThemeHackers/CVE-2025-55182) | a critical Remote Code Execution (RCE) vulnerability in React Server Components (RSC). It also includes a realistic "Lab Environment" to safely test and understand the vulnerability. |
| 5⭐ | 3 days ago | [CVE-2025-55182-golang-PoC](https://github.com/keklick1337/CVE-2025-55182-golang-PoC) | CVE-2025-55182 React Server Components RCE - Go PoC |
| 1⭐ | 1 day ago | [Blackash-CVE-2025-13780](https://github.com/Ashwesker/Blackash-CVE-2025-13780) | CVE-2025-13780 |
| 1⭐ | 2 days ago | [react2shell-scanner-CVE-2025-55182](https://github.com/Security-Phoenix-demo/react2shell-scanner-CVE-2025-55182) | React2shell-web-scanner |
| 2⭐ | 2 days ago | [CVE-2025-55182](https://github.com/subhdotsol/CVE-2025-55182) | This project provides a fully functional demonstration of CVE-2025-55182 (React2Shell) - a critical Remote Code Execution vulnerability in React Server Components and Next.js. |
| 1⭐ | 2 days ago | [CVE-2025-55182-Waf](https://github.com/l0n3m4n/CVE-2025-55182-Waf) | CVE-2025-55182 RCE vulnerability in Next.js/React RSC servers (exploit and scanner) |
| 1⭐ | 2 days ago | [CVE-2025-55182](https://github.com/rix4uni/CVE-2025-55182) | A command-line tool for detecting CVE-2025-55182 and CVE-2025-66478 in Next.js applications using React Server Components. |
| 1⭐ | 2 days ago | [CVE-2025-9074_DAEMON_KILLER](https://github.com/fsoc-ghost-0x/CVE-2025-9074_DAEMON_KILLER) | The Ultimate DAEMON_KILLER. Control is an illusion. This Exploit forces CVE-2025-9074 to break the Docker cage. Advanced Container Escape & Root Escalation toolkit. Verify the vulnerability, take the host, destroy the logs. > We Are Fsociety_ |
## 2024
### Updated in the last 4 days (up to 20 repos)
### Latest 20 of 1404 Repositories
| Stars | Updated | Name | Description |
| --- | --- | --- | --- |
| 0⭐ | — | No recent CVE PoCs | No repositories matched the filters. |
| 1⭐ | 7 hours ago | [CVE-2024-34361-Pi-Hole-SSRF-to-RCE](https://github.com/T0X1Cx/CVE-2024-34361-Pi-Hole-SSRF-to-RCE) | This repository contains an exploit for CVE-2024-34361, a critical Pi-hole vulnerability (CVSS 8.6). It uses SSRF to achieve RCE by exploiting improper URL validation, allowing attackers to send arbitrary requests and execute commands on the system. Disclaimer: For educational and ethical security testing only. Unauthorized use is illegal. |
| 2⭐ | 3 days ago | [POC-CVE-2024-12227](https://github.com/HI0U/POC-CVE-2024-12227) | # CVE-2024-12227 - NTIOLib_X64.sys DoS PoC |
## 2023
### Updated in the last 4 days (up to 20 repos)
### Latest 20 of 1156 Repositories
| Stars | Updated | Name | Description |
| --- | --- | --- | --- |
| 1⭐ | 13 hours ago | [cve-2023-44487-POC](https://github.com/tpirate/cve-2023-44487-POC) | poc for the rst dos attack discovered in 2023 |
| 4⭐ | 3 days ago | [F5-BIG-IP-SmuggleShell-CVE-2023-46747-Exploit](https://github.com/Razzlemouse/F5-BIG-IP-SmuggleShell-CVE-2023-46747-Exploit) | #F5-BIG-IP-CVE-2023-46747-Exploit Unauthenticated RCE Python exploit & Nuclei template by Raguraman ✓ Automated TCP reverse shell (LHOST/LPORT) ✓ Tested on affected BIG-IP 13.x17.x ⚠️ Authorized pentesting only |
## 2022
### Updated in the last 4 days (up to 20 repos)
### Latest 20 of 1212 Repositories
| Stars | Updated | Name | Description |
| --- | --- | --- | --- |
docs/index.html
+82 -4
View File
@@ -62,12 +62,48 @@
<table>
<thead><tr><th>Stars</th><th>Updated</th><th>Name</th><th>Description</th></tr></thead>
<tbody id="trending-body">
<tr>
<td>1</td>
<td>55 minutes ago</td>
<td><a href="https://github.com/siddu7575/CVE-2025-61882-CVE-2025-61884" target="_blank">CVE-2025-61882-CVE-2025-61884</a></td>
<td class="mono">🔍 Detect vulnerabilities CVE-2025-61882 and CVE-2025-61884 in Oracle E-Business Suite to help secure your systems from potential remote code execution threats.</td>
</tr>
<tr>
<td>1</td>
<td>1 hour ago</td>
<td><a href="https://github.com/jm7knz/CVE-2025-54253-Exploit-Demo" target="_blank">CVE-2025-54253-Exploit-Demo</a></td>
<td class="mono">🐙 CVE-2025-54253 exploit demo for Adobe AEM Forms on JEE: OGNL injection to RCE with PoC, Python 3.10 exploit code, reproducer and mitigation guidance.</td>
</tr>
<tr>
<td>1</td>
<td>1 hour ago</td>
<td><a href="https://github.com/hophtien/CVE-2025-54424" target="_blank">CVE-2025-54424</a></td>
<td class="mono">CVE-2025-54424: 1Panel TLS client cert bypass enables RCE via forged CN &#39;panel_client&#39; using a bundled scanning and exploitation tool. Affected: &lt;= v2.0.5. 🔐</td>
</tr>
<tr>
<td>360</td>
<td>2 hours ago</td>
<td><a href="https://github.com/Malayke/Next.js-RSC-RCE-Scanner-CVE-2025-66478" target="_blank">Next.js-RSC-RCE-Scanner-CVE-2025-66478</a></td>
<td class="mono">A command-line scanner for batch detection of Next.js application versions and determining if they are affected by CVE-2025-66478 vulnerability.</td>
</tr>
<tr>
<td>1</td>
<td>2 hours ago</td>
<td><a href="https://github.com/ThemeHackers/CVE-2025-13780" target="_blank">CVE-2025-13780</a></td>
<td class="mono">A comprehensive vulnerability scanner for CVE-2025-13780, a Remote Code Execution (RCE) vulnerability in pgAdmin 4 versions ≤ 8.14.</td>
</tr>
<tr>
<td>2</td>
<td>10 hours ago</td>
<td><a href="https://github.com/Chrxstxqn/CVE-2025-6218-WinRAR-RCE-POC" target="_blank">CVE-2025-6218-WinRAR-RCE-POC</a></td>
<td class="mono">Comprehensive analysis and proof-of-concept for CVE-2025-6218 - WinRAR path traversal RCE vulnerability affecting versions 7.11 and earlier</td>
</tr>
<tr>
<td>1</td>
<td>11 hours ago</td>
<td><a href="https://github.com/M4rgs/CVE-2025-55182-React2Shell-Exploit" target="_blank">CVE-2025-55182-React2Shell-Exploit</a></td>
<td class="mono">A proof-of-concept tool for demonstrating the critical React2Shell vulnerability</td>
</tr>
<tr>
<td>4</td>
<td>13 hours ago</td>
@@ -99,10 +135,52 @@
<td class="mono">CVE-2025-54100 (CVSS 7.8 High) is a command injection vulnerability in the Invoke-WebRequest cmdlet of Windows PowerShell 5.1. It arises from improper neutralization of special elements during the automatic parsing of Web responses.</td>
</tr>
<tr>
<td>5</td>
<td>3 days ago</td>
<td><a href="https://github.com/keklick1337/CVE-2025-55182-golang-PoC" target="_blank">CVE-2025-55182-golang-PoC</a></td>
<td class="mono">CVE-2025-55182 React Server Components RCE - Go PoC</td>
<td>2</td>
<td>1 day ago</td>
<td><a href="https://github.com/itres-labs/CVE-2025-31702" target="_blank">CVE-2025-31702</a></td>
<td class="mono">Repository with tools, exploits, and material associated with the analysis and discovery process of CVE-2025-31702 and other related security issues.</td>
</tr>
<tr>
<td>1</td>
<td>1 day ago</td>
<td><a href="https://github.com/LucasPDiniz/CVE-2025-55182" target="_blank">CVE-2025-55182</a></td>
<td class="mono">React2Shell Vulnerability</td>
</tr>
<tr>
<td>1</td>
<td>1 day ago</td>
<td><a href="https://github.com/Ashwesker/Blackash-CVE-2025-13780" target="_blank">Blackash-CVE-2025-13780</a></td>
<td class="mono">CVE-2025-13780</td>
</tr>
<tr>
<td>2</td>
<td>2 days ago</td>
<td><a href="https://github.com/subhdotsol/CVE-2025-55182" target="_blank">CVE-2025-55182</a></td>
<td class="mono">This project provides a fully functional demonstration of CVE-2025-55182 (React2Shell) - a critical Remote Code Execution vulnerability in React Server Components and Next.js.</td>
</tr>
<tr>
<td>1</td>
<td>2 days ago</td>
<td><a href="https://github.com/Security-Phoenix-demo/react2shell-scanner-CVE-2025-55182" target="_blank">react2shell-scanner-CVE-2025-55182</a></td>
<td class="mono">React2shell-web-scanner</td>
</tr>
<tr>
<td>1</td>
<td>2 days ago</td>
<td><a href="https://github.com/l0n3m4n/CVE-2025-55182-Waf" target="_blank">CVE-2025-55182-Waf</a></td>
<td class="mono">CVE-2025-55182 RCE vulnerability in Next.js/React RSC servers (exploit and scanner)</td>
</tr>
<tr>
<td>1</td>
<td>2 days ago</td>
<td><a href="https://github.com/rix4uni/CVE-2025-55182" target="_blank">CVE-2025-55182</a></td>
<td class="mono">A command-line tool for detecting CVE-2025-55182 and CVE-2025-66478 in Next.js applications using React Server Components.</td>
</tr>
<tr>
<td>1</td>
<td>2 days ago</td>
<td><a href="https://github.com/fsoc-ghost-0x/CVE-2025-9074_DAEMON_KILLER" target="_blank">CVE-2025-9074_DAEMON_KILLER</a></td>
<td class="mono">The Ultimate DAEMON_KILLER. Control is an illusion. This Exploit forces CVE-2025-9074 to break the Docker cage. Advanced Container Escape &amp; Root Escalation toolkit. Verify the vulnerability, take the host, destroy the logs. &gt; We Are Fsociety_</td>
</tr>
</tbody>
</table>