unSafe.sh - 不安全

EQSTLab/CVE-2026-30951 Sequelize - ORM SQL Injection
Create: 2026-04-05 17:37:20 +0000 UTC Push: 2026-04-05 17:37:21 +0000 UTC |

n0n4m3x41/CVE-2025-1738 0day discover CVE-2025-1738
Create: 2026-04-05 17:35:58 +0000 UTC Push: 2026-04-05 17:35:58 +0000 UTC |

rachidafaf/bola-CVE-2023-27524
Create: 2026-04-05 17:11:08 +0000 UTC Push: 2026-04-05 17:11:09 +0000 UTC |

sattyamjjain/agent-audit-kit Static scanner for MCP-connected AI agent pipelines — 202 rules across 11 categories, 12 compliance frameworks, OWASP Agentic 10/10 + MCP 10/10, GitHub Action, SARIF, 48h CVE-to-rule SLA.
Create: 2026-04-05 15:12:41 +0000 UTC Push: 2026-05-18 18:06:21 +0000 UTC |

0xBlackash/CVE-2026-22557 CVE-2026-22557
Create: 2026-04-05 14:31:35 +0000 UTC Push: 2026-04-05 14:31:35 +0000 UTC |

kaktus5454/CVE-2018-15473 python code for CVE-2018-15473, using paramiko
Create: 2026-04-05 13:24:14 +0000 UTC Push: 2026-04-05 13:24:15 +0000 UTC |

njeru-codes/CVE-2026-25769 POC for deserialization of untrusted data in wazuh leading to RCE
Create: 2026-04-05 11:31:47 +0000 UTC Push: 2026-04-05 11:31:48 +0000 UTC |

ngtuonghung/CVE-2022-27666
Create: 2026-04-05 09:53:37 +0000 UTC Push: 2026-04-05 09:53:37 +0000 UTC |

Risma2025/CVE-2026-24061-GNU-InetUtils-telnetd-Authentication-Bypass-Vulnerability
Create: 2026-04-05 07:28:39 +0000 UTC Push: 2026-04-05 07:28:40 +0000 UTC |

vinh0212/CVE-2024-23700 PoC for CVE-2024-23700, Android slient privilege escalation allow to read/write contacts, SMS, calendar, call log and voicemail, make outgoing calls or answer incoming calls, manipulate call settings, access & control notifications sent by other apps, control nearby devices, record audio, access device identifiers, and bypass background restriction
Create: 2026-04-05 07:09:41 +0000 UTC Push: 2026-04-05 11:27:50 +0000 UTC |

pedro-lucas-melo/Estudo-de-Caso-CVE-2024-21413 Um estudo de caso do CVE-2024-21413. Usado como parâmetro a sala do TryHackMe Moniker Link (CVE-2024-21413). Feito edições com claude code no exploit.
Create: 2026-04-05 02:21:55 +0000 UTC Push: 2026-04-05 02:21:55 +0000 UTC |

kaleth4/CVE-2026-28363
Create: 2026-04-05 01:41:19 +0000 UTC Push: 2026-04-05 01:41:50 +0000 UTC |

bootstrapbool/cve-2026-4257
Create: 2026-04-05 00:52:39 +0000 UTC Push: 2026-04-12 20:22:53 +0000 UTC |

porsellaj/cve-2025-55182-react2shell-analysis Technical analysis of CVE-2025-55182 (React2Shell RCE vulnerability)
Create: 2026-04-04 23:24:29 +0000 UTC Push: 2026-04-04 23:24:30 +0000 UTC |

fevar54/CVE-2026-3502-Scanner---TrueConf-Vulnerability-Detection-Tool Herramienta de detección para CVE-2026-3502. Escanea servidores TrueConf sin verificación de actualizaciones, detecta clientes Windows vulnerables (≤8.5.3.884) y busca IOCs de TrueChaos: PowerISO, persistencia en registro y tareas programadas. Reportes JSON, HTML o CSV.
Create: 2026-04-04 22:50:54 +0000 UTC Push: 2026-04-04 22:50:54 +0000 UTC |

fevar54/CVE-2026-3502---TrueConf-Client-Update-Hijacking-PoC Exploit para CVE-2026-3502 en TrueConf Client. Un atacante con control del servidor TrueConf local reemplaza la actualización legítima por un payload malicioso sin verificación de integridad, logrando ejecución remota de código y despliegue de malware Havoc en todos los clientes conectados (Operación TrueChaos).
Create: 2026-04-04 22:39:53 +0000 UTC Push: 2026-04-04 22:39:53 +0000 UTC |

z3usx01/CVE-2023-2640-3262-PoC POC exploits demonstrating OverlayFS-based local privilege escalation vulnerabilities in Ubuntu (CVE-2023-2640 & CVE-2023-3262)
Create: 2026-04-04 19:00:05 +0000 UTC Push: 2026-04-04 19:00:06 +0000 UTC |

Dahalsamir/CVE-2011-2523-exploit
Create: 2026-04-04 17:32:16 +0000 UTC Push: 2026-04-04 17:32:17 +0000 UTC |

abhayclasher/CVE-2026-33331 Proof-of-concept lab for stored XSS in orpc (CVE-2026-33331)
Create: 2026-04-04 17:03:14 +0000 UTC Push: 2026-04-04 17:03:24 +0000 UTC |

ElinaNotElina/cve-2024-3094-analysis
Create: 2026-04-04 16:42:04 +0000 UTC Push: 2026-04-04 16:42:05 +0000 UTC |