CVE-2025-14174

The repository contains a functional SQL injection exploit for CVE-2025-10042 targeting WordPress Quiz Maker plugin. The exploit uses time-based blind SQLi to extract admin credentials and hashes.

This repository contains a functional PoC exploit for CVE-2025-14174, targeting a memory corruption vulnerability in the ANGLE graphics engine. The exploit enables remote code execution via crafted WebGL content and is designed to bypass mitigations in patched systems.

This PoC demonstrates a use-after-free vulnerability in the V8 JavaScript engine of Google Chrome prior to version 121.0.6167.85. The exploit manipulates garbage collection to create a dangling reference, which is then used to corrupt memory and potentially achieve arbitrary code execution.

The repository contains only a README and frontend JavaScript libraries (jQuery) with no exploit code or technical analysis related to CVE-2025-14174. It appears to be a placeholder or unrelated project.

Technical analysis and proof-of-concept for CVE-2025-14174, an out-of-bounds write vulnerability in ANGLE's Metal backend when uploading depth textures via a staging buffer.