unSafe.sh - 不安全

Remenis/CVE-2025-63667 Vatilon-based IP camera firmwares issue Session-Id tokens without verifying credentials, allowing attackers to obtain sessions and retrieve plaintext account credentials via API endpoints.
Create: 2025-11-11 14:37:04 +0000 UTC Push: 2025-11-11 14:37:05 +0000 UTC |

Remenis/CVE-2025-63666 Tenda AC15 cookie exposure
Create: 2025-11-11 14:07:18 +0000 UTC Push: 2025-11-11 14:07:18 +0000 UTC |

FeZqq/CVE-2025-10161 Authentication Bypass in Turkguven's Perfektive
Create: 2025-11-11 13:46:10 +0000 UTC Push: 2025-11-11 13:46:10 +0000 UTC |

rimbadirgantara/CVE-2024-51378 Exploit cyberpanel version 2.3.6 - 2.3.7
Create: 2025-11-11 13:12:00 +0000 UTC Push: 2025-11-11 13:12:01 +0000 UTC |

Marven11/CVE-2025-55449-AstrBot-RCE AstrBot老版本RCE
Create: 2025-11-11 13:11:04 +0000 UTC Push: 2025-11-11 13:11:04 +0000 UTC |

Nxploited/CVE-2025-12539 TNC Toolbox: Web Performance <= 1.4.2 - Unauthenticated Sensitive Information Exposure to Privilege Escalation/cPanel Account Takeover
Create: 2025-11-11 11:57:53 +0000 UTC Push: 2025-11-11 11:58:22 +0000 UTC |

rxerium/CVE-2025-34299 Detection for CVE-2025-34299
Create: 2025-11-11 10:06:09 +0000 UTC Push: 2025-11-11 10:06:12 +0000 UTC |

mr-r3b00t/CVE-2025-25257 CVE-2025-25257 PoC for educational use and/or authorised pentesting.
Create: 2025-11-11 10:05:53 +0000 UTC Push: 2025-11-11 10:05:54 +0000 UTC |

matejsmycka/CVE-2018-14324-Exploit
Create: 2025-11-11 09:51:53 +0000 UTC Push: 2025-11-11 09:51:53 +0000 UTC |

rashidovartyr-oss/CVE-2024-31982 Vulnerability for Xwiki
Create: 2025-11-11 09:46:29 +0000 UTC Push: 2025-11-11 09:46:29 +0000 UTC |

raishin1/CVE-2024-31982 Vulnerability for Xwiki
Create: 2025-11-11 09:46:29 +0000 UTC Push: 2025-11-11 09:47:36 +0000 UTC |

0xmoner/CVE-2021-4449
Create: 2025-11-11 08:24:10 +0000 UTC Push: 2025-11-11 08:26:37 +0000 UTC |

shitodcy/CVE-2025-58179-Check
Create: 2025-11-11 08:05:36 +0000 UTC Push: 2025-11-11 08:05:37 +0000 UTC |

ZemarKhos/CVE-2025-55315-PoC-Exploit CVE-2025-55315 PoC Exploit
Create: 2025-11-11 07:22:16 +0000 UTC Push: 2025-11-11 07:22:17 +0000 UTC |

Mitchellzhou1/CVE-2024-48910-PoC
Create: 2025-11-11 04:24:33 +0000 UTC Push: 2025-11-11 04:24:34 +0000 UTC |

godfatherofexps/CVE-2025-61932-PoC [CVE-2025-61932] Lanscope Endpoint Manager - Remote Code Execution [Zero-Day]
Create: 2025-11-10 23:35:03 +0000 UTC Push: 2025-11-10 23:35:04 +0000 UTC |

Nxploited/CVE-2025-6440 WooCommerce Designer Pro <= 1.9.26 - Unauthenticated Arbitrary File Upload
Create: 2025-11-10 23:28:34 +0000 UTC Push: 2025-11-10 23:28:34 +0000 UTC |

MMAKINGDOM/CVE-2025-63419 CrushFTP before 11.3.7_60 is vulnerable to HTML Injection. The Web-Based Server has a feature where users can share files, the feature reflects the filename to an emailbody field with no sanitzations leading to HTML Injection.
Create: 2025-11-10 19:57:37 +0000 UTC Push: 2025-11-10 19:57:38 +0000 UTC |

B1ack4sh/Blackash-CVE-2025-64495 CVE-2025-64495
Create: 2025-11-10 19:40:12 +0000 UTC Push: 2025-11-10 19:40:13 +0000 UTC |

kredscript/cve-2025-8088 path traversal tool based on cve-2025-8088 vulnerability
Create: 2025-11-10 18:04:17 +0000 UTC Push: 2025-11-10 18:05:56 +0000 UTC |