unSafe.sh - 不安全
我的收藏
今日热榜
公众号文章
导航
Github CVE
Github Tools
编码/解码
文件传输
Twitter Bot
Telegram Bot
Search
Rss
黑夜模式
增加标签
Tags (allow clear + 0 threshold)
Choose a tag...
Please select a valid tag.
yeremeu/CVE-2025-32463_chwoot
Demonstrate CVE-2025-32463 with this PoC for sudo's chroot feature. Explore the exploit and its impact on vulnerable sudo versions. 🐱💻🔒
Create: 2025-07-04 18:20:09 +0000 UTC Push: 2025-07-04 18:20:15 +0000 UTC |
Ilansos/ansible-sudo-cve2025-patch
This repository ships an Ansible playbook that detects vulnerable versions and—only after you confirm—upgrades sudo to a safe release.
Create: 2025-07-04 17:37:30 +0000 UTC Push: 2025-07-04 17:40:49 +0000 UTC |
ill-deed/WingFTP-CVE-2025-47812-illdeed
Remote Command Execution exploit for Wing FTP Server (CVE-2025-47812)
Create: 2025-07-04 16:22:22 +0000 UTC Push: 2025-07-04 16:22:22 +0000 UTC |
ill-deed/Cisco-CVE-2025-20281-illdeed
Unauthenticated Remote Code Execution exploit for CVE-2025-20281 in Cisco ISE ERS API. Execute commands or launch reverse shells as root — no authentication required.
Create: 2025-07-04 14:59:02 +0000 UTC Push: 2025-07-04 14:59:02 +0000 UTC |
ill-deed/CrushFTP-CVE-2024-2825-illdeed
Exploit for CVE-2024-4040 – Authentication bypass in CrushFTP via CrushAuth cookie and AWS-style header spoofing. Stealthy Python PoC with secure token generation, SSL bypass, and improved output.
Create: 2025-07-04 14:30:16 +0000 UTC Push: 2025-07-04 14:30:17 +0000 UTC |
ill-deed/CrushFTP-CVE-2024-4040-illdeed
Exploit for CVE-2024-4040 – Authentication bypass in CrushFTP via CrushAuth cookie and AWS-style header spoofing. Stealthy Python PoC with secure token generation, SSL bypass, and improved output.
Create: 2025-07-04 14:30:16 +0000 UTC Push: 2025-07-04 14:37:08 +0000 UTC |
zinzloun/CVE-2025-32463
# CVE-2025-32463 – Sudo EoP Exploit (PoC) with precompiled .so
Create: 2025-07-04 13:13:31 +0000 UTC Push: 2025-07-04 13:13:31 +0000 UTC |
ill-deed/CVE-2025-32463_illdeed
Privilege escalation exploit for CVE-2025-32463 using a malicious NSS module injected via sudo -R. This version creates a stealth payload called illdeed, granting root access through a controlled chroot environment.
Create: 2025-07-04 13:02:46 +0000 UTC Push: 2025-07-04 13:02:47 +0000 UTC |
byteReaper77/cve-2025-6907
a standalone C-based SQL Injection exploit targeting the CVE‑2025‑6907 vulnerability in the CODE_PROJECT service.
Create: 2025-07-04 12:54:16 +0000 UTC Push: 2025-07-04 12:54:16 +0000 UTC |
windz3r0day/CVE-2025-6554
Create: 2025-07-04 11:42:42 +0000 UTC Push: 2025-07-04 11:42:43 +0000 UTC |
Nxploited/CVE-2025-5961
Migration, Backup, Staging – WPvivid Backup & Migration <= 0.9.116 - Authenticated (Administrator+) Arbitrary File Upload
Create: 2025-07-04 10:57:59 +0000 UTC Push: 2025-07-04 10:58:00 +0000 UTC |
Tea-On/CVE-2021-29447-Authenticated-XXE-WordPress-5.6-5.7
POC to exploit WordPress 5.6-5.7 (PHP 8+) Authenticated XXE Injection.
Create: 2025-07-04 08:08:20 +0000 UTC Push: 2025-07-04 08:08:20 +0000 UTC |
cyberre124/CVE-2025-41646---Critical-Authentication-Bypass-
CVE-2025-41646 - Critical Authentication bypass
Create: 2025-07-04 07:31:34 +0000 UTC Push: 2025-07-04 07:31:35 +0000 UTC |
uxieltc/CVE-2025-49132
Check a list of Pterodactyl panels for vulnerabilities from a file.
Create: 2025-07-04 03:55:17 +0000 UTC Push: 2025-07-04 03:55:17 +0000 UTC |
6eun/cve-2025-6554
Create: 2025-07-04 02:16:52 +0000 UTC Push: 2025-07-04 02:16:52 +0000 UTC |
iSee857/CVE-2025-27817
Apache Kafka客户端未对用户输入进行严格验证和限制,未经身份验证的攻击者可通过构造恶意配置读取环境变量或磁盘任意内容,或向非预期位置发送请求,提升REST API的文件系统/环境/URL访问权限。
Create: 2025-07-04 01:47:31 +0000 UTC Push: 2025-07-04 01:47:31 +0000 UTC |
mylovem313/CVE-2025-32462
CVE-2025-32462 exploit code
Create: 2025-07-03 22:34:04 +0000 UTC Push: 2025-07-03 22:34:04 +0000 UTC |
rbaicba/CVE-2025-6554
Create: 2025-07-03 20:45:49 +0000 UTC Push: 2025-07-03 20:45:50 +0000 UTC |
mirchr/CVE-2025-32463-sudo-chwoot
PoC for CVE-2025-32463 - Sudo chroot Elevation of Privilege Vulnerability
Create: 2025-07-03 20:40:10 +0000 UTC Push: 2025-07-03 20:40:11 +0000 UTC |
abrewer251/CVE-2025-6543_CitrixNetScalerr_PoC
Multi-host, multi-port scanner and auditor for CVE-2025-6543-affected NetScaler devices. Supports SNMP and SSH enumeration with optional CSV reporting and exploit stubs.
Create: 2025-07-03 20:02:39 +0000 UTC Push: 2025-07-03 20:02:40 +0000 UTC |
Previous
295
296
297
298
299
300
301
302
Next