Intelligence Digest
威胁情报
统一威胁情报视图,聚合漏洞监控、网安开源项目与官方源情报
漏洞监控
来自 GitHub Issues、仓库检索和关键词命中的 CVE / RCE / POC 动态。
3189总量
网安开源项目
优先展示中文安全团队维护的开源项目,兼顾工具落地场景和最近更新时间。
1553总量
威胁情报
来自 360、奇安信、斗象等官方站点的公开情报聚合。
245总量
b1gchoi/CVE-2026-2441_POC
language: HTML
本页此列暂无更多数据
本页此列暂无更多数据
Caused by: java.lang.ClassNotFoundException: org.apache.catalina.core.ApplicationContext$DispatchData
Spring Boot 4.0.3 runnable JAR on:
```
openjdk 25.0.1 2025-10-21
OpenJDK Runtime Environment (build 25.0.1+8-27)
OpenJDK 64-Bit Server VM (build 25.0.1+8-27, mixed mode, sharing)
```
in some circumstances throws:
```
...
NAP3XD/CVE-2023-33869-RCE-PoC
Remote Code Execution (RCE) proof of concept on a enphase solar inverter | language: Python
maycuatroi1/dbs401-cve-lab
DBS401 CVE Lab: SQL Injection → RCE via PostgreSQL COPY FROM PROGRAM (educational) | language: Python
Ahmed-makawi/AD_Foothold_Misconfigs_Cheatsheet
A step-by-step reproduction guide for common Active Directory Foothold misconfigurations used in penetration testing labs. Covers AS-REP Roasting, Kerberoasting, Password in Description, SMB Null Sessions, LLMNR Poisonin...
vmpprotect/DLink-RCE
An authenticated command injection vulnerability exists in the D-Link DVG-N5402GF router. The web-based diagnostic Ping Test functionality fails to properly sanitize user input in the Ping Destination field. An authentic...
nats-server websockets are vulnerable to pre-auth memory DoS
APelaxpnl1/Patch-Rce-Test
Duplicate dependency declaration in ':module:spring-boot-jackson2' build.gradle
In reviewing the dependencies declared in `:module:spring-boot-jackson2` build.gradle, I noticed an `api` ([here](https://github.com/spring-projects/spring-boot/blob/main/module/spring-boot-jackson2/build.gradle#L30)) AN...
Enable autoconfiguration of OAuth2 machinery in a non-webapp
OAuth2 is useful in messaging and non-servlet, non-webflux apps. A lot of the machinery is not dependent on the web APIs, so it could be exposed as autoconfiguration even when the application context type was not MVC or ...