unSafe.sh - 不安全

zycoder0day/CVE-2026-6279 CVE-2026-6279 — Avada Builder <= 3.15.2 Unauthenticated RCE via call_user_func()
Create: 2026-05-23 09:33:32 +0000 UTC Push: 2026-05-23 09:33:40 +0000 UTC |

HORKimhab/CVE-2026-48172 CVE-2026-48172
Create: 2026-05-23 08:00:37 +0000 UTC Push: 2026-05-23 08:00:40 +0000 UTC |

fineman999/POC_CVE-2024-12537 POC_CVE-2024-12537
Create: 2026-05-23 06:37:27 +0000 UTC Push: 2026-05-23 06:37:28 +0000 UTC |

xxconi/CVE-2026-6279 CVE-2026-6279: Avada (Fusion) Builder <= 3.15.2 – Unauthenticated Remote Code Execution via PHP Function Injection via 'render_logics' Shortcode Attribute via Widget AJAX Handler (fusion-builder)
Create: 2026-05-23 06:36:55 +0000 UTC Push: 2026-05-23 06:37:19 +0000 UTC |

xxconi/CVE-2026-9018 Unauthenticated Privilege Escalation CVE-2026-9018: Easy Elements for Elementor
Create: 2026-05-23 04:34:31 +0000 UTC Push: 2026-05-23 04:34:31 +0000 UTC |

xxconi/CVE-2026-6960 CVE-2026-6960: BookingPress Pro <= 5.6 – Unauthenticated Arbitrary File Upload
Create: 2026-05-23 04:22:45 +0000 UTC Push: 2026-05-23 04:22:46 +0000 UTC |

offseckit/CVE-2026-23813 CVE-2026-23813 — AOS-CX pre-auth bypass via nginx regex. Detection script, bypass demo, config-disclosure PoC, and IDS rules.
Create: 2026-05-23 03:41:46 +0000 UTC Push: 2026-05-23 03:41:49 +0000 UTC |

HORKimhab/CVE-2025-46822 CVE-2025-46822
Create: 2026-05-23 03:14:55 +0000 UTC Push: 2026-05-23 03:14:58 +0000 UTC |

HORKimhab/CVE-2026-41901 CVE-2026-41901
Create: 2026-05-23 01:25:51 +0000 UTC Push: 2026-05-23 01:25:53 +0000 UTC |

felisha-elmer/Sandbox-Challenge-Log4Shell-CVE-2021-44228-
Create: 2026-05-23 01:24:46 +0000 UTC Push: 2026-05-23 01:24:47 +0000 UTC |

r3nsi15/CVE-2026-33017-langflow-rce
Create: 2026-05-22 22:01:05 +0000 UTC Push: 2026-05-22 22:01:06 +0000 UTC |

portbuster1337/CVE-2026-20182 CVE-2026-20182 PoC - Cisco Catalyst SD-WAN Controller / Manager Authentication Bypass (CVSS 10.0)
Create: 2026-05-22 21:17:01 +0000 UTC Push: 2026-05-22 21:17:03 +0000 UTC |

ridhinva/CVE-2025-34291-Langflow-Scanner Langflow Origin Validation Error / CORS Misconfiguration Scanner
Create: 2026-05-22 20:44:28 +0000 UTC Push: 2026-05-22 20:44:31 +0000 UTC |

ridhinva/CVE-2026-1731-BeyondTrust-RCE BeyondTrust Remote Support / PRA Pre-auth RCE Scanner
Create: 2026-05-22 20:44:24 +0000 UTC Push: 2026-05-22 20:44:27 +0000 UTC |

ridhinva/CVE-2026-3854-GHE-RCE GitHub Enterprise Server Pre-auth RCE via Push Option Injection Scanner
Create: 2026-05-22 20:44:20 +0000 UTC Push: 2026-05-22 20:44:21 +0000 UTC |

ridhinva/CVE-2026-0073-ADBD-Bypass Android ADB Authentication Bypass - Wireless ADB RCE Scanner
Create: 2026-05-22 20:44:16 +0000 UTC Push: 2026-05-22 20:44:19 +0000 UTC |

ridhinva/CVE-2026-0300-PANOS-RCE PAN-OS User-ID Captive Portal Buffer Overflow RCE Scanner & Checker
Create: 2026-05-22 20:44:11 +0000 UTC Push: 2026-05-22 20:44:15 +0000 UTC |

ridhinva/CVE-2026-9082 Drupal PostgreSQL SQLi Scanner - Unauthenticated SQL Injection in Drupal Core via JSON:API (CISA KEV May 2026)
Create: 2026-05-22 19:49:06 +0000 UTC Push: 2026-05-22 19:49:07 +0000 UTC |

0xBlackash/CVE-2026-43494 CVE-2026-43494
Create: 2026-05-22 19:29:17 +0000 UTC Push: 2026-05-22 19:29:18 +0000 UTC |

BishopFox/CVE-2026-27886-check Detect whether a Strapi instance is vulnerable to CVE-2026-27886 (unauthenticated boolean-oracle exfiltration of administrator secrets).
Create: 2026-05-22 19:07:00 +0000 UTC Push: 2026-05-22 19:07:17 +0000 UTC |