unSafe.sh - 不安全

tristanqtn/CVE-2024-37054
Create: 2026-05-19 21:15:25 +0000 UTC Push: 2026-05-19 21:15:26 +0000 UTC |

Mandioantino/20-26-40-369CVE
Create: 2026-05-19 20:14:29 +0000 UTC Push: 2026-05-19 20:15:08 +0000 UTC |

MJ-bin/POC_CVE-2026-45185 POC_CVE-2026-45185 for nuclei-templates
Create: 2026-05-19 16:26:55 +0000 UTC Push: 2026-05-19 16:42:23 +0000 UTC |

gagaltotal/CVE-2026-42945-NGINX-Rift-Scanner NGINX Rift - CVE-2026-42945
Create: 2026-05-19 16:14:02 +0000 UTC Push: 2026-05-19 16:14:03 +0000 UTC |

fkj-src/fix_nginx_cve_2026_42945
Create: 2026-05-19 14:59:59 +0000 UTC Push: 2026-05-19 15:00:00 +0000 UTC |

walidriouah/CVE-2026-30691 CVE-2026-30691: Stored Cross-Site Scripting (XSS) in @cyntler/react-doc-viewer
Create: 2026-05-19 14:39:40 +0000 UTC Push: 2026-05-19 14:39:41 +0000 UTC |

suil12/CVE-2025-24813_presentation
Create: 2026-05-19 13:37:41 +0000 UTC Push: 2026-05-19 13:37:41 +0000 UTC |

learner202649/CVE-2026-40217-PoC The code for personally reproducing the corresponding vulnerability
Create: 2026-05-19 13:19:42 +0000 UTC Push: 2026-05-19 13:19:43 +0000 UTC |

RedCrazyGhost/CVE-2026-42945
Create: 2026-05-19 12:46:37 +0000 UTC Push: 2026-05-19 12:46:37 +0000 UTC |

RedCrazyGhost/CVE-README-CVE-2026-42945
Create: 2026-05-19 12:41:30 +0000 UTC Push: 2026-05-19 12:41:31 +0000 UTC |

Maxime288/CVE-2026-8838-RCE
Create: 2026-05-19 12:41:29 +0000 UTC Push: 2026-05-19 12:41:30 +0000 UTC |

learner202649/CVE-2026-35030-PoC The code for personally reproducing the corresponding vulnerability
Create: 2026-05-19 12:13:16 +0000 UTC Push: 2026-05-19 12:13:17 +0000 UTC |

minanagehsalalma/cve-2021-21735-zte-zxhn-h168n-admin-compromise CVE-2021-21735 write-up: ZTE ZXHN H168N V3.5 wizard-page information leak, firmware routing flaw, and the path from exposed PPPoE/WLAN data to full admin compromise.
Create: 2026-05-19 11:26:32 +0000 UTC Push: 2026-05-20 13:35:44 +0000 UTC |

minanagehsalalma/zyxel-cve-2021-35036-super-admin-password-leak Deep-dive write-up for CVE-2021-35036, plus an adapted VMG8825-B50B genpass lab showing how Zyxel super-admin, TR-069, and FTPS credentials could be exposed across shared firmware.
Create: 2026-05-19 11:22:20 +0000 UTC Push: 2026-05-20 14:01:49 +0000 UTC |

minanagehsalalma/cve-2026-34474-zte-h298a-h108n-sensitive-data-exposure CVE-2026-34474: unauthenticated ETHCheat=1 requests leak the admin password and Wi-Fi PSK from ZTE H298A/H108N routers.
Create: 2026-05-19 11:21:19 +0000 UTC Push: 2026-05-20 13:13:42 +0000 UTC |

Victherich/2008-CVE-ESUT-ALUMNI
Create: 2026-05-19 11:11:22 +0000 UTC Push: 2026-05-19 11:11:23 +0000 UTC |

kuniyal08/Dirty-Frag-CVE-2026-43284 A report on Dirty Frag, which is a Linux Local Privilege Escalation (LPE) vulnerability chain that allows an unprivileged user to gain root access
Create: 2026-05-19 11:07:42 +0000 UTC Push: 2026-05-19 11:07:43 +0000 UTC |

Umit-MHL/webkit-cve-2024-23222 CVE-2024-23222 WebKit type confusion → iOS 16.4.1 sandbox escape. Full chain: JSC JIT confusion → addrof/read64/write64 → WASM indirect call → arbitrary C functions → file write outside sandbox.
Create: 2026-05-19 10:09:50 +0000 UTC Push: 2026-05-19 10:09:51 +0000 UTC |

GubiczaP/cve-2026-31431-checker Shell scanner for CVE-2026-31431 "Copy Fail" — a local privilege escalation via Linux kernel page cache corruption (algif_aead/AF_ALG). Checks kernel version, patch status, module state, setuid exposure and mitigations. Supports Debian 11–13 and Ubuntu 20.04–25.10. CI/CD-ready (exit codes + JSON output).
Create: 2026-05-19 09:07:59 +0000 UTC Push: 2026-05-19 09:08:01 +0000 UTC |

mogwailabs/CVE-2023-32692-CodeIgniter4 Example application, vulnerable to CVE-2023-32692 (Validation Rule Injection in the PHP Framework CodeIgniter)
Create: 2026-05-19 08:08:43 +0000 UTC Push: 2026-05-19 08:09:21 +0000 UTC |