momo安全漏洞库

多模块数据检索平台

登录 注册
Intelligence Digest

威胁情报

统一威胁情报视图,聚合漏洞监控、网安开源项目与官方源情报

共聚合 4928 条情报 漏洞监控 3131 / 网安开源项目 1553 / 威胁情报 244

漏洞监控

来自 GitHub Issues、仓库检索和关键词命中的 CVE / RCE / POC 动态。

3131总量

网安开源项目

优先展示中文安全团队维护的开源项目,兼顾工具落地场景和最近更新时间。

1553总量

威胁情报

来自 360、奇安信、斗象等官方站点的公开情报聚合。

244总量
parameciumzhang/Tell-Me-Root
GitHub Repos/search parameciumzhang/Tell-Me-Root 发布时间 2026-02-22 入库 2026-03-14 02:41
基于cve-2026-24061 telnet远程认证绕过漏洞的批量检测利用工具 | language: Python
本页此列暂无更多数据
本页此列暂无更多数据
weekevy/SweetRice-CMS-1.5.1-RCE-Exploit
GitHub Repos/search 低危 weekevy/SweetRice-CMS-1.5.1-RCE-Exploit 发布时间 2026-02-22 入库 2026-03-14 02:42
SweetRice CMS 1.5.1 Authenticated RCE Exploit - Python tool exploiting file upload vulnerability in SweetRice CMS 1.5.1 leading to remote code execution. Includes reverse shell automation and full exploitation workflow. ...
dxlerYT/CVE-2026-26331
GitHub Repos/search dxlerYT/CVE-2026-26331 发布时间 2026-02-22 入库 2026-03-14 02:41
Proof of Concept for an arbitrary command injection vulnerability in yt-dlp’s --netrc-cmd option (GHSA-g3gw-q23r-pgqm / CVE-2026-26331). Demonstrates shell command execution via maliciously crafted URLs in affected versi...
Add support for auto-configuring ExpressionJwtGrantedAuthoritiesConverter
GitHub Issues/spring-projects/spring-boot spring-projects/spring-boot#48490 发布时间 2026-02-22 入库 2026-02-22 22:52
Currently, the auto-configured `JwtAuthenticationConverter` (defined in `OAuth2ResourceServerJwtConfiguration`) uses a `JwtGrantedAuthoritiesConverter`. It would be nice if an `ExpressionJwtGrantedAuthoritiesConverter` w...
Missing constructor for type after upgrading to Spring Boot 4.0.1
GitHub Issues/spring-projects/spring-boot spring-projects/spring-boot#49231 发布时间 2026-02-22 入库 2026-02-22 19:51
When selecting a record type that is mapped as JSONB (e.g. via Hibernate’s `@Type(JsonBinaryType.class))`, the following error occurs: ``` org.springframework.dao.InvalidDataAccessApiUsageException: org.hibernate.query...
hexissam/CVE-2026-1731
GitHub Repos/search hexissam/CVE-2026-1731 发布时间 2026-02-22 入库 2026-03-14 02:41
CVE-2026-1731 — BeyondTrust Remote Code Execution Vulnerability | language: Python
dkstar11q/Ashwesker-CVE-2026-20045
GitHub Repos/search dkstar11q/Ashwesker-CVE-2026-20045 发布时间 2026-02-22 入库 2026-03-14 02:41
CVE-2026-20045
CsEnox/Gitlab-Redis-Deserialization-RCE
GitHub Repos/search CsEnox/Gitlab-Redis-Deserialization-RCE 发布时间 2026-02-22 入库 2026-03-14 02:42
Gitlab Deserialisation RCE through Redis Compromise | language: Ruby
bad-antics/rce-shield
GitHub Repos/search bad-antics/rce-shield 发布时间 2026-02-22 入库 2026-03-14 02:42
🛡️ RCE Shield — Remote Code Execution hardening toolkit for PC gamers. Scans game launchers, anti-cheat, mods, overlays, peripherals & network for vulnerabilities. | topics: anti-cheat, cybersecurity, ebpf, gaming-securi...
dxlerYT/CVE-2026-25731
GitHub Repos/search dxlerYT/CVE-2026-25731 发布时间 2026-02-21 入库 2026-03-14 02:41
Proof of Concept for a Server-Side Template Injection (SSTI) vulnerability in Calibre’s Templite engine (GHSA-xrh9-w7qx-3gcc). Demonstrates arbitrary Python code execution via user-supplied HTML export templates in affec...