unSafe.sh - 不安全

MMAKINGDOM/CVE-2025-51970 A Cross-Site Request Forgery (CSRF) vulnerability in Salmen2/Simple-Faucet-Script v1.07 via crafted POST request to admin.php?p=ads&c=1 allowing attackers to execute arbitrary code.
Create: 2025-11-08 10:03:20 +0000 UTC Push: 2025-11-08 10:03:21 +0000 UTC |

MMAKINGDOM/CVE-2025-57310 A Cross-Site Request Forgery (CSRF) vulnerability in Salmen2/Simple-Faucet-Script v1.07 via crafted POST request to admin.php?p=ads&c=1 allowing attackers to execute arbitrary code.
Create: 2025-11-08 10:03:20 +0000 UTC Push: 2025-11-08 10:18:11 +0000 UTC |

B1ack4sh/Blackash-CVE-2025-21042 CVE-2025-21042
Create: 2025-11-08 09:04:32 +0000 UTC Push: 2025-11-08 09:04:33 +0000 UTC |

usjnx72726w/CVE-2025-21042
Create: 2025-11-08 08:32:37 +0000 UTC Push: 2025-11-08 08:32:37 +0000 UTC |

shourout/CVE-2025-8088 Path traversal tool based on CVE-2025-8088 vulnerability
Create: 2025-11-08 08:05:47 +0000 UTC Push: 2025-11-08 08:08:43 +0000 UTC |

l1nuxkid/CVE-2025-32433-exploit
Create: 2025-11-08 06:58:56 +0000 UTC Push: 2025-11-08 06:58:56 +0000 UTC |

l1nuxkid/CVE-2025-32433
Create: 2025-11-08 06:58:12 +0000 UTC Push: 2025-11-08 06:58:13 +0000 UTC |

Nxploited/CVE-2025-11749 AI Engine <= 3.1.3 - Unauthenticated Sensitive Information Exposure to Privilege Escalation
Create: 2025-11-08 03:19:59 +0000 UTC Push: 2025-11-08 03:19:59 +0000 UTC |

enzocipher/CVE-2023-5359 CVE-2023-5359 - W3 Total Cache Cleartext Storage Vulnerability Scanner. Detect exposed credentials in W3 Total Cache plugin versions ≤ 2.7.5.
Create: 2025-11-07 20:31:23 +0000 UTC Push: 2025-11-07 20:31:24 +0000 UTC |

ksaweryr/CVE-2023-45612-PoC Proof of concept for XXE in Ktor (CVE-2023-45612)
Create: 2025-11-07 18:44:24 +0000 UTC Push: 2025-11-07 18:44:39 +0000 UTC |

Fa1c0n35/CVE-2017-12615 Tomcat - PUT Method
Create: 2025-11-07 16:14:42 +0000 UTC Push: 2025-11-07 16:14:43 +0000 UTC |

stefan-500/ktor-cve-2023-45612-poc Proof-of-Concept for Ktor XXE (CVE-2023-45612)
Create: 2025-11-07 15:47:22 +0000 UTC Push: 2025-11-07 21:22:20 +0000 UTC |

MMAKINGDOM/CVE-2025-63420 CrushFTP11 before 11.3.7_57 is vulnerable to stored HTML injection in the CrushFTP Admin Panel (Reports / "Who Created Folder"), enabling persistent HTML execution in admin sessions.
Create: 2025-11-07 15:26:10 +0000 UTC Push: 2025-11-07 15:26:11 +0000 UTC |

jacopoaugelli/CVE-2025-60574
Create: 2025-11-07 15:11:43 +0000 UTC Push: 2025-11-07 15:11:44 +0000 UTC |

Amperclock/CVE-2025-9491_POC Proof-of-Concept of the CVE-2025-9491 using invisible characters in the arguments of a Windows shortcut file (.lnk)
Create: 2025-11-07 14:52:05 +0000 UTC Push: 2025-11-07 14:52:06 +0000 UTC |

B1ack4sh/Blackash-CVE-2025-20343 CVE-2025-20343
Create: 2025-11-07 09:21:48 +0000 UTC Push: 2025-11-07 09:21:49 +0000 UTC |

B1ack4sh/Blackash-CVE-2020-5902 CVE-2020-5902
Create: 2025-11-07 09:08:25 +0000 UTC Push: 2025-11-07 09:08:26 +0000 UTC |

GovindPalakkal/CVE-2025-61299_POC Authenticated Command Injection in Nagios XI 2024R1 (CVE-2025-61299)
Create: 2025-11-07 05:40:52 +0000 UTC Push: 2025-11-07 05:40:53 +0000 UTC |

Kgan0509/CVE-2025-63441
Create: 2025-11-07 03:27:20 +0000 UTC Push: 2025-11-07 03:27:21 +0000 UTC |

Kgan0509/CVE-2025-63585
Create: 2025-11-07 03:22:55 +0000 UTC Push: 2025-11-07 03:22:55 +0000 UTC |