unSafe.sh - 不安全

mikelkarma/cve-2018-11714_POC An issue was discovered on TP-Link TL-WR840N. This issue is caused by improper session handling on the /cgi/ folder or a /cgi file. If an attacker sends a header of "Referer: http://192.168.0.1/mainFrame.htm" then no authentication is required for any action.
Create: 2025-07-23 22:40:34 +0000 UTC Push: 2025-07-23 22:40:34 +0000 UTC |

exfil0/CVE-2025-53770
Create: 2025-07-23 21:02:14 +0000 UTC Push: 2025-07-23 21:02:15 +0000 UTC |

Beesco00/CVE-2024-52794-Discourse-Stored-XSS Stored XSS in Discourse via image filename - CVE-2024-52794
Create: 2025-07-23 19:31:18 +0000 UTC Push: 2025-07-23 19:31:19 +0000 UTC |

B1ack4sh/Blackash-Top-CVEs-2000-2025 Top-CVEs-2000-2025
Create: 2025-07-23 19:22:52 +0000 UTC Push: 2025-07-23 19:22:53 +0000 UTC |

abrewer251/CVE-2017-12637_SAP-NetWeaver-URL-Traversal Proof-of-concept LFI Scanner: Automated detection of /etc/passwd exposures via directory traversal and regex matching.
Create: 2025-07-23 19:09:40 +0000 UTC Push: 2025-07-23 19:10:02 +0000 UTC |

byteReaper77/CVE-2025-7766 PoC exploit for CVE-2025-7766 – XXE vulnerability leading to potential RCE.
Create: 2025-07-23 18:57:46 +0000 UTC Push: 2025-07-23 18:58:04 +0000 UTC |

Skac44/CVE-2024-38063 Windows Vulnerability that allows the implementation of unauthorised activity over the network: remote execution of Windows TCP/IP remote code.
Create: 2025-07-23 18:27:12 +0000 UTC Push: 2025-07-23 18:27:12 +0000 UTC |

Kamal-Hegazi/CVE-2025-53770-SharePoint-RCE Exploit & research write‑up for CVE‑2025‑53770 – a zero‑day remote code execution vulnerability in Microsoft SharePoint (on‑premises). Includes technical analysis, indicators of compromise, and a proof‑of‑concept exploit for educational and defensive purposes only.
Create: 2025-07-23 18:21:28 +0000 UTC Push: 2025-07-23 18:21:28 +0000 UTC |

Kamal-Hegazi/Next.js-Middleware-Exploit-CVE-2025-29927-Authorization-Bypass CVE‑2025‑29927 is a critical vulnerability (CVSS 9.1) in Next.js that allows attackers to bypass middleware‑based security checks such as authentication, access control, and redirects.
Create: 2025-07-23 17:35:58 +0000 UTC Push: 2025-07-23 17:35:59 +0000 UTC |

Kamal-Hegazi/CVE-2025-29927-Next.js-Middleware-Authorization-Bypass CVE‑2025‑29927 is a critical vulnerability (CVSS 9.1) in Next.js that allows attackers to bypass middleware‑based security checks such as authentication, access control, and redirects.
Create: 2025-07-23 17:35:58 +0000 UTC Push: 2025-07-23 17:36:50 +0000 UTC |

veereshgadige/aziot-cctv-cve-2025-50777 CVE-2025-50777: Root Access and Plaintext Credential Exposure in AZIOT Smart CCTV
Create: 2025-07-23 16:50:34 +0000 UTC Push: 2025-07-23 16:50:35 +0000 UTC |

iamarit/CVE-2024-10858- Vulnerable WordPress plugin ( Jetpack )
Create: 2025-07-23 16:18:49 +0000 UTC Push: 2025-07-23 16:18:49 +0000 UTC |

iamarit/CVE-2024-10858 Vulnerable WordPress plugin ( Jetpack )
Create: 2025-07-23 16:18:49 +0000 UTC Push: 2025-07-23 16:18:49 +0000 UTC |

B1ack4sh/Blackash-CVE-2025-30397 CVE-2025-30397
Create: 2025-07-23 15:34:41 +0000 UTC Push: 2025-07-23 15:34:42 +0000 UTC |

m4r1x/CVE-2025-53770-Scanner
Create: 2025-07-23 15:19:58 +0000 UTC Push: 2025-07-23 15:20:08 +0000 UTC |

xiw1ll/CVE-2024-6387_Checker Nuclei template to detect CVE-2024-6387. All latest patched versions are excluded.
Create: 2025-07-23 14:04:37 +0000 UTC Push: 2025-07-23 14:04:38 +0000 UTC |

drackyjr/CVE-2025-8018 Python exploit script for CVE-2025-8018 a critical SQL injection in the Food Ordering Review System v1.0. This script helps you test, confirm, and exploit the vulnerability using UNION- and time-based SQL injection. Great for CTF practice, ethical hacking, and learning how real-world SQLi works. Educational use only.
Create: 2025-07-23 13:16:44 +0000 UTC Push: 2025-07-23 13:16:44 +0000 UTC |

shan0ar/cve-2025-32756
Create: 2025-07-23 12:08:54 +0000 UTC Push: 2025-07-23 12:08:54 +0000 UTC |

Shivshantp/CVE-2025-5777-TrendMicro-ApexCentral-RCE 🔥 PoC for CVE-2025-5777 – Auth Bypass + RCE in Trend Micro Apex Central
Create: 2025-07-23 12:05:05 +0000 UTC Push: 2025-07-23 12:05:06 +0000 UTC |

Hassanopop/CVE-2025-53770
Create: 2025-07-23 11:40:19 +0000 UTC Push: 2025-07-23 11:40:25 +0000 UTC |