unSafe.sh - 不安全

HAERIN-L/POC_CVE-2026-42880
Create: 2026-05-25 10:20:01 +0000 UTC Push: 2026-05-25 10:20:02 +0000 UTC |

sermikr0/CVE-2026-38427 CVE-2026-38427 — Integer Wraparound → Heap Buffer Overflow in Tasmota fetch_jpg() uint16_t (Tasmota <= 15.3.0.3)
Create: 2026-05-25 10:10:18 +0000 UTC Push: 2026-05-25 10:10:24 +0000 UTC |

sermikr0/CVE-2026-38426 CVE-2026-38426 — strcpy() Stack Buffer Overflow in Tasmota fetch_jpg() boundary[40] (Tasmota <= 15.3.0.3)
Create: 2026-05-25 10:10:09 +0000 UTC Push: 2026-05-25 10:10:15 +0000 UTC |

sermikr0/CVE-2026-38422 CVE-2026-38422 — Remote Code Execution via Combined Buffer Overflows in Tasmota fetch_jpg() (Tasmota <= 15.3.0.3)
Create: 2026-05-25 10:09:59 +0000 UTC Push: 2026-05-25 10:10:05 +0000 UTC |

junn34/POC_CVE-2024-10829 CVE-2024-10829 analysis
Create: 2026-05-25 09:29:34 +0000 UTC Push: 2026-05-25 09:29:35 +0000 UTC |

learner202649/CVE-2026-47101-PoC The code for personally reproducing the corresponding vulnerability
Create: 2026-05-25 09:10:39 +0000 UTC Push: 2026-05-25 09:10:39 +0000 UTC |

renewablehacking/CVE-2020-7598
Create: 2026-05-25 08:14:26 +0000 UTC Push: 2026-05-25 08:14:26 +0000 UTC |

jayhutajulu1/CVE-2026-43494-PinTheft-PoC Proof-of-concept for CVE-2026-43494 (PinTheft): Linux LPE via RDS zerocopy refcount bug + io_uring fixed buffers → SUID page-cache overwrite. Authorized research only.
Create: 2026-05-25 07:44:22 +0000 UTC Push: 2026-05-25 07:44:22 +0000 UTC |

daniel30padd/CVE-2026-3854
Create: 2026-05-25 04:38:40 +0000 UTC Push: 2026-05-25 04:38:41 +0000 UTC |

Bitcoin12124/CVE-2026-X4992-Uniswap-PoC
Create: 2026-05-25 03:49:17 +0000 UTC Push: 2026-05-25 03:49:18 +0000 UTC |

duckpigdog/Tomcat-AJP-CVE-2020-1938 Tomcat AJP文件读取/包含漏洞
Create: 2026-05-25 03:01:06 +0000 UTC Push: 2026-05-25 03:01:06 +0000 UTC |

karakapaku43/CVE-2026-42945
Create: 2026-05-25 01:35:51 +0000 UTC Push: 2026-05-25 01:35:54 +0000 UTC |

TazmiDev/CVE-2026-36239 CVE-2026-36239: Authenticated RCE in PbootCMS v3.2.12 backend (sitecopyright)
Create: 2026-05-25 01:17:45 +0000 UTC Push: 2026-05-25 01:17:46 +0000 UTC |

Ahmed-Soli/ingress-nginx-cve-2026-42945-backport This repository documents a defensive backport workflow for teams running ingress-nginx controller images that still bundle an NGINX version affected by CVE-2026-42945. It is not an official NGINX or k8s ingress-nginx release. Treat it as an emergency mitigation pattern you can inspect, rebuild, and validate while you wait for an official fixed
Create: 2026-05-25 01:02:29 +0000 UTC Push: 2026-05-25 01:02:30 +0000 UTC |

mein-0/cve-2026-29923
Create: 2026-05-24 22:36:56 +0000 UTC Push: 2026-05-24 22:36:57 +0000 UTC |

hacbs-release-tests/collectors-no-cve-c20d1f15
Create: 2026-05-24 20:24:55 +0000 UTC Push: 2026-05-24 20:24:57 +0000 UTC |

dinosn/CVE-2025-13673 CVE-2025-13673: Tutor LMS SQL Injection PoC + Docker lab
Create: 2026-05-24 18:37:43 +0000 UTC Push: 2026-05-24 18:37:47 +0000 UTC |

v4rr10r/CVE-2019-9053 CMS Made Simple CVE-2019-9053 Exploit (Python 3)
Create: 2026-05-24 18:32:26 +0000 UTC Push: 2026-05-24 18:32:27 +0000 UTC |

M3PH1569/CVE-2026-39987-POC CVE-2026-39987 Exploitation Tool - Marimo < 0.23.0 Pre-Auth RCE (WebSocket)
Create: 2026-05-24 18:00:33 +0000 UTC Push: 2026-05-24 18:00:33 +0000 UTC |

0xS4N4TG/CVE-2025-47812 CVE-2025-47812 Poc for WingData HTB
Create: 2026-05-24 17:59:21 +0000 UTC Push: 2026-05-24 17:59:22 +0000 UTC |