unSafe.sh - 不安全

Nxploited/CVE-2025-13390 WP Directory Kit <= 1.4.4 - Authentication Bypass to Privilege Escalation via Account Takeover
Create: 2026-01-05 18:45:40 +0000 UTC Push: 2026-01-05 18:45:41 +0000 UTC |

hackergovind/CVE-2025-61246 CVE-2025-61246: SQL Injection vulnerability PoC in Online Shopping System PHP - Time-based blind SQLi exploitation tool
Create: 2026-01-05 18:14:11 +0000 UTC Push: 2026-01-05 18:14:11 +0000 UTC |

Arcueld/CVE-2025-68926 CVE-2025-68926 POC
Create: 2026-01-05 16:12:07 +0000 UTC Push: 2026-01-05 16:12:14 +0000 UTC |

JRrooot/CVE-2012-2982-Webmin-RCE Python PoC for Webmin 1.580 Remote Command Execution (CVE-2012-2982)
Create: 2026-01-05 14:43:22 +0000 UTC Push: 2026-01-05 14:43:22 +0000 UTC |

Ashwesker/Ashwesker-CVE-2026-21440 CVE-2026-21440
Create: 2026-01-05 14:36:22 +0000 UTC Push: 2026-01-05 14:36:23 +0000 UTC |

lutrasecurity/CVE-2025-1910-WatchGuard-Privilege-Escalation Proof-of-Concept for exploiting CVE-2025-1910, a local privilege escalation within Watchguard's Mobile VPN with SSL client.
Create: 2026-01-05 14:07:51 +0000 UTC Push: 2026-01-07 17:11:03 +0000 UTC |

Prodigysec/dd-trace-cpp-0.2.1-CVE-2024-38525
Create: 2026-01-05 09:50:14 +0000 UTC Push: 2026-01-05 09:54:09 +0000 UTC |

hyan0116/Next.js-RCE-CVE-2025-55182 next.js rce exploit
Create: 2026-01-05 07:06:11 +0000 UTC Push: 2026-01-05 07:06:51 +0000 UTC |

lucyz1125/CVE-2025-55182-Next.js-RCE Nextjs RCE Exploit
Create: 2026-01-05 06:55:27 +0000 UTC Push: 2026-01-05 06:55:27 +0000 UTC |

KTN1990/CVE-2025-14998 CVE-2025-14998 Wordpress Plugin - Branda – White Label & Branding, Free Login Page Customizer <= 3.4.24 - Unauthenticated Privilege Escalation via Account Takeover
Create: 2026-01-05 03:25:37 +0000 UTC Push: 2026-01-05 03:25:37 +0000 UTC |

zsy107u/CVE-2025-2011-poc
Create: 2026-01-05 00:43:38 +0000 UTC Push: 2026-01-05 00:45:01 +0000 UTC |

Fl5xia/CVE-2017-9805 CVE-2017-9805: Apache Struts 2 S2-052 RCE Exploit - PoC for Harvard University (OTD)
Create: 2026-01-04 18:57:31 +0000 UTC Push: 2026-01-04 18:57:32 +0000 UTC |

Chocapikk/CVE-2025-68926 CVE-2025-68926 - RustFS Hardcoded gRPC Authentication Token Exploit
Create: 2026-01-04 17:19:27 +0000 UTC Push: 2026-01-04 17:20:01 +0000 UTC |

developerfred/cve-2019-14206-poc
Create: 2026-01-04 14:12:45 +0000 UTC Push: 2026-01-04 14:12:45 +0000 UTC |

louislafosse/CVE-2017-5638-assignement Software Security & Privacy ~ Assignement 3 : CVE PoC
Create: 2026-01-04 13:08:03 +0000 UTC Push: 2026-01-04 13:08:03 +0000 UTC |

AdityaBhatt3010/React2Shell-CVE-2025-55182 React2Shell CVE-2025-55182: unauthenticated unsafe deserialization in React Server Components leading to reliable remote code execution via the Flight protocol.
Create: 2026-01-04 12:05:30 +0000 UTC Push: 2026-01-04 12:05:31 +0000 UTC |

keraattin/Mongobleed-Detector-CVE-2025-14847 Mongobleed Detector CVE-2025-14847
Create: 2026-01-04 11:26:59 +0000 UTC Push: 2026-01-04 11:27:00 +0000 UTC |

Ashwesker/Ashwesker-CVE-2026-21451 CVE-2026-21451
Create: 2026-01-04 11:24:39 +0000 UTC Push: 2026-01-04 11:24:40 +0000 UTC |

LittleSuRii/CVE-2024-36985 Splunk RCE exploit by the use of Copybuckets. Just for vulnerability research.
Create: 2026-01-04 11:22:33 +0000 UTC Push: 2026-01-04 11:22:34 +0000 UTC |

Ermensonx/cve-2025-14857-MongoBleed
Create: 2026-01-04 08:58:42 +0000 UTC Push: 2026-01-04 08:59:05 +0000 UTC |