unSafe.sh - 不安全

rootdirective-sec/cve-2026-33017
Create: 2026-03-26 04:49:07 +0000 UTC Push: 2026-03-26 04:49:07 +0000 UTC |

rootdirective-sec/cve-2026-33017-Lab
Create: 2026-03-26 04:49:07 +0000 UTC Push: 2026-03-26 04:51:33 +0000 UTC |

bx33661/CVE-2026-30039
Create: 2026-03-26 02:38:23 +0000 UTC Push: 2026-03-26 02:38:23 +0000 UTC |

kysonlol/CVE-2026-2636 Proof-of concept executable for CVE-2026-2636
Create: 2026-03-26 02:27:22 +0000 UTC Push: 2026-03-26 02:27:22 +0000 UTC |

pwnc4t/cve-2025-20282 Cisco ISE RCE PoC
Create: 2026-03-26 01:52:25 +0000 UTC Push: 2026-04-06 01:51:50 +0000 UTC |

Su1ph3r/vercelsior Open-source security scanner and configuration auditor for Vercel. 130+ checks across 20 categories. Finds leaked tokens, WAF gaps, NEXT_PUBLIC_ secret leaks, subdomain takeover risks, Next.js CVEs, and more. Single binary, zero dependencies.
Create: 2026-03-26 00:44:59 +0000 UTC Push: 2026-03-26 00:45:02 +0000 UTC |

mahsumaktas/ailm AI-powered Linux system companion — 20 sources, zero blind spots. GPU, CPU, RAM, NVMe, Btrfs, Docker, Tailscale, coredumps, CVE, 80+ journald patterns. Local LLM (Jazari-4B). v0.2 live.
Create: 2026-03-26 00:20:04 +0000 UTC Push: 2026-03-28 14:07:22 +0000 UTC |

pream-totaram/CVE-2024-52302-reproduction
Create: 2026-03-25 20:59:49 +0000 UTC Push: 2026-03-25 21:00:23 +0000 UTC |

K3rn3l-32/Threaded-CVE-2018-15473 A Python 3 reimplementation of the classic CVE-2018-15473 OpenSSH user enumeration exploit, extended with multi-threading, wordlist support, automatic vulnerability detection, and thread-safe exploit patching.
Create: 2026-03-25 20:00:29 +0000 UTC Push: 2026-03-25 20:00:29 +0000 UTC |

l0lsec/cve-2025-55182-lab Intentionally vulnerable Next.js RSC Docker lab for CVE-2025-55182 (React2Shell) local testing
Create: 2026-03-25 18:29:03 +0000 UTC Push: 2026-03-25 18:29:05 +0000 UTC |

0xzap/CVE-2025-32463 A proof-of-concept exploit demonstrating local privilege escalation to root in sudo (CVE-2025-32463) by abusing the --chroot (-R) option and injecting a malicious NSS configuration
Create: 2026-03-25 16:46:04 +0000 UTC Push: 2026-03-25 16:48:56 +0000 UTC |

qoo7972365/CVE-2022-36883-Poc
Create: 2026-03-25 15:28:19 +0000 UTC Push: 2026-03-25 15:28:19 +0000 UTC |

Noidolosity/CVE-2022-32250
Create: 2026-03-25 15:09:48 +0000 UTC Push: 2026-03-25 15:09:49 +0000 UTC |

ImVihanga03/Static-Malware-Analysis-Follina-CVE-2022-30190 Static Malware Analysis of Follina (CVE-2022-30190) from Blue Team Labs Online
Create: 2026-03-25 14:23:35 +0000 UTC Push: 2026-03-25 14:23:36 +0000 UTC |

cyber-sparky/CVE-2019-3835 It was found that the superexec operator was available in the internal dictionary in ghostscript before 9.27. A specially crafted PostScript file could use this flaw in order to, for example, have access to the file system outside of the constrains imposed by -dSAFER.
Create: 2026-03-25 13:41:39 +0000 UTC Push: 2026-03-25 13:42:08 +0000 UTC |

sergicortesabadia/CVE-2026-26198-analysis Deep dive into a critical SQL injection in Python's Ormar ORM — reproduction, fix, and tests
Create: 2026-03-25 13:09:40 +0000 UTC Push: 2026-03-25 13:09:41 +0000 UTC |

lennertdefauw/CVE-2025-8088 WinRAR < 7.13 path traversal for persistency
Create: 2026-03-25 13:04:51 +0000 UTC Push: 2026-03-25 13:04:51 +0000 UTC |

Yucaerin/CVE-2026-3584 CVE-2026-3584
Create: 2026-03-25 09:21:54 +0000 UTC Push: 2026-03-25 09:21:55 +0000 UTC |

NeoArtemis37/OverlayFS-PrivEsc-CVE-2022-0944
Create: 2026-03-25 07:13:10 +0000 UTC Push: 2026-03-25 07:13:39 +0000 UTC |

devianntsec/CVE-2024-30051-DWMHeapOverflow-Masters-Thesis Master's Thesis research on CVE-2024-30051 (Windows DWM Heap Overflow). Improved PoC with auto-retry, session logging, and empirical heap spray analysis across controlled sessions. Portfolio piece demonstrating Windows exploit development and security research.
Create: 2026-03-25 06:18:49 +0000 UTC Push: 2026-03-25 06:18:49 +0000 UTC |