unSafe.sh - 不安全

Cyber-DarkNay/CVE-2026-Scanner
Create: 2026-06-11 05:33:04 +0000 UTC Push: 2026-06-11 05:33:25 +0000 UTC |

GenericCoding/cve-2025-43529-arbitrary-ref A demonstration of arbitrary address referencing using cve-2025-43529
Create: 2026-06-11 04:48:56 +0000 UTC Push: 2026-06-11 04:49:24 +0000 UTC |

Alejandro609x/JEFAZO-CVE-2025-55182-Checker Escáner pasivo de seguridad para CVE-2025-55182 que identifica indicadores públicos asociados a Next.js y React Server Components. Realiza validaciones seguras, analiza cabeceras y rutas, y proporciona una evaluación de exposición basada en evidencias sin explotación.
Create: 2026-06-11 04:44:08 +0000 UTC Push: 2026-06-11 04:44:09 +0000 UTC |

ad3210/CVE-2024-2887-REPORT POC available soon
Create: 2026-06-11 03:15:32 +0000 UTC Push: 2026-06-11 03:15:33 +0000 UTC |

HORKimhab/CVE-2026-10520-10523 CVE-2026-10520 and CVE-2026-10523
Create: 2026-06-11 02:39:37 +0000 UTC Push: 2026-06-11 02:39:40 +0000 UTC |

Alardiians/gitea-CVE-2026-28699 Lab + writeup for CVE-2026-28699: Gitea OAuth2 scope enforcement bypass via HTTP Basic auth
Create: 2026-06-11 02:23:10 +0000 UTC Push: 2026-06-11 02:23:12 +0000 UTC |

Alardiians/pocketbase-CVE-2026-44166 Lab + writeup for CVE-2026-44166: PocketBase OAuth2 account pre-hijacking via unvalidated createData.email
Create: 2026-06-11 02:06:40 +0000 UTC Push: 2026-06-11 02:06:43 +0000 UTC |

adamshaikhma/CVE-2026-11645
Create: 2026-06-10 23:06:47 +0000 UTC Push: 2026-06-10 23:06:50 +0000 UTC |

ManagerEmpty/CVE-2026-47291-httpsys
Create: 2026-06-10 22:04:12 +0000 UTC Push: 2026-06-10 22:04:15 +0000 UTC |

LiaoZiqi-GZFLS/CVE-2026-42945 CVE-2026-42945 Nginx Rift
Create: 2026-06-10 19:26:32 +0000 UTC Push: 2026-06-10 19:26:33 +0000 UTC |

Layer-6/CVE-2026-5027-Langflow
Create: 2026-06-10 19:18:56 +0000 UTC Push: 2026-06-10 19:18:57 +0000 UTC |

amar-imamovic/CVE-2023-2640-CVE-2023-32629-Interactive-PoC A clean, interactive multi-step Local Privilege Escalation (LPE) exploit for Ubuntu OverlayFS (GameOver(lay)) that escapes the user namespace sandbox to drop a true host root shell.
Create: 2026-06-10 18:41:03 +0000 UTC Push: 2026-06-10 18:41:04 +0000 UTC |

Polosss/By-Poloss..-..CVE-2026-9067 Schema & Structured Data for WP & AMP < 1.60 - Unauthenticated Arbitrary Media Upload [POC & Xploit]
Create: 2026-06-10 18:30:39 +0000 UTC Push: 2026-06-10 18:30:40 +0000 UTC |

ii4gsp/CVE-2026-49413 FreeBSD LPE
Create: 2026-06-10 17:34:54 +0000 UTC Push: 2026-06-10 17:34:54 +0000 UTC |

LiaoZiqi-GZFLS/CVE-2026-49975 CVE-2026-49975
Create: 2026-06-10 17:26:30 +0000 UTC Push: 2026-06-10 17:26:30 +0000 UTC |

QM4RS/CVE-2026-0023-Update-Ownership-PoC A complete proof-of-concept for CVE-2026-0023 demonstrating Android Update Ownership warning bypass through PackageInstaller permission validation flaws.
Create: 2026-06-10 17:25:45 +0000 UTC Push: 2026-06-10 17:25:46 +0000 UTC |

vasilysaint/CVE-2025-24893 OSCP like CVE-2025-24893 exploit for Linux XWiki
Create: 2026-06-10 17:19:13 +0000 UTC Push: 2026-06-10 17:19:14 +0000 UTC |

fevar54/CVE-2026-7473---Arista-EOS-Tunnel-Decapsulation-Bypass Vulnerability: On affected Arista EOS platforms with tunnel decapsulation
Create: 2026-06-10 16:21:10 +0000 UTC Push: 2026-06-10 16:21:11 +0000 UTC |

xxconi/CVE-2026-5718-PR-V-EXPLO-T WORDPRESS
Create: 2026-06-10 16:01:31 +0000 UTC Push: 2026-06-10 16:01:32 +0000 UTC |

fevar54/CVE-2026-20245---Cisco-SD-WAN-Privilege-Escalation-Exploit **Este código es SOLO para fines educativos y pruebas de seguridad autorizadas.**
Create: 2026-06-10 15:42:52 +0000 UTC Push: 2026-06-10 15:42:52 +0000 UTC |