Skip to content
View EaEa0001's full-sized avatar
3 followers · 0 following

Achievements

Achievement: Pair ExtraordinaireAchievement: Pull Shark

Achievements

Achievement: Pair ExtraordinaireAchievement: Pull Shark

Highlights

Block or report EaEa0001

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Maximum 250 characters. Please don’t include any personal information such as legal names or email addresses. Markdown is supported. This note will only be visible to you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
EaEa0001/README.md

Hi there 👋

安全研究与披露记录

项目 漏洞/报告 链接 简要说明
Dify SSRF CVE-2026-28504 SSRF
SiYuan Note 文件读取接口大小写绕过(CVE-2026-25992) CVE-2026-25992 大小写不敏感文件系统下可绕过敏感路径拦截
Remotion Windows RCE CVE-2026-30120 直接rce
Remotion 任意文件写入 CVE-2026-30121 文件上传
Flowise 越权漏洞 GHSA-8r8h-6vcc-xhrv 越权漏洞,存在可能rce风险
windows notepad rce CVE-2026-20841 仅协助后续发现绕过
openclaw 越权 CVE-2026-41298 CVE-2026-41298
ragflow rce CVE-2026-35513 rce
zammad CVE-2026-34720
cloudreve OA2绕过 CVE-2026-54560 oa2 绕过

Popular repositories Loading

  1. code-agent-scan code-agent-scan Public

    Python 2

  2. ApertureStatsTool ApertureStatsTool Public

    Python 1

  3. servu-cve-2026-28318-poc servu-cve-2026-28318-poc Public

    SolarWinds Serv-U CVE-2026-28318: unauthenticated Content-Encoding: deflate crash. Root-cause analysis (invalid free of an interior pointer -> heap corruption) + DoS-only PoC. Fixed in 15.5.4 Hotfi…

    Python 1

  4. PoC-in-GitHub PoC-in-GitHub Public

    Forked from nomi-sec/PoC-in-GitHub

    📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.

  5. PeiQi-WIKI-POC PeiQi-WIKI-POC Public

    Forked from MornS0/PeiQi-WIKI-POC

    鹿不在侧,鲸不予游🐋

    HTML

  6. ngaArchive ngaArchive Public

    Forked from oshino29/ngaArchive

    nga论坛帖子的存档

    Python