unSafe.sh - 不安全

doany1/CVE-2026-24849 Proof-of-concept exploit for **CVE-2026-24849**, an authenticated path-traversal / arbitrary file read in OpenEMR's Fax/SMS (EtherFax) module. Any authenticated user — regardless of privilege level — can read arbitrary files from the server filesystem as the web-server user (database credentials, patient documents/PHI, `/etc/passwd`, …).
Create: 2026-06-06 05:48:36 +0000 UTC Push: 2026-06-06 05:48:37 +0000 UTC |

hnytgl/CVE-2026-42588 CVE-2026-42588 - Apache ActiveMQ Jolokia 远程代码执行漏洞利用 (RCE Exploit)
Create: 2026-06-06 05:47:28 +0000 UTC Push: 2026-06-06 05:47:28 +0000 UTC |

REGGYRAIDER/CVE-2023-46604-RCE CVE-2023-46604-RCE exploit with Linux reverse shell payload
Create: 2026-06-06 05:17:40 +0000 UTC Push: 2026-06-06 05:17:40 +0000 UTC |

oryk0/CVE-2026-23744 CVE-2026-23744 Reverse shell
Create: 2026-06-06 04:57:39 +0000 UTC Push: 2026-06-06 04:57:40 +0000 UTC |

HORKimhab/CVE-2026-20245 CVE-2026-20245 - Cisco SD-WAN - Draft
Create: 2026-06-06 04:26:16 +0000 UTC Push: 2026-06-06 04:26:19 +0000 UTC |

t1ckprivate/CVE-2022-0847-Dirty-Pipe
Create: 2026-06-06 02:35:22 +0000 UTC Push: 2026-06-06 02:35:23 +0000 UTC |

bijakc07-sudo/NetSentinel---Advanced-Network-Threat-Intelligence-Scanner host_discovery ICMP + TCP ping sweep across IPs & CIDR ranges port_scanner Multi-threaded TCP connect with stealth jitter banner_grabber HTTP/HTTPS/generic service version extraction os_fingerprint TTL + port pattern + banner OS heuristics vuln_mapper 20+ CVE patterns, CVSS scores, risk scoring report_generator
Create: 2026-06-06 00:00:09 +0000 UTC Push: 2026-06-06 00:00:09 +0000 UTC |

Okymi-X/CVE-2024-34070
Create: 2026-06-05 22:28:12 +0000 UTC Push: 2026-06-05 22:28:15 +0000 UTC |

gearonixx/kernel-cve-2014
Create: 2026-06-05 21:51:58 +0000 UTC Push: 2026-06-05 21:51:58 +0000 UTC |

BishopFox/CVE-2026-34908-check Safely detect whether a UniFi OS Server is vulnerable to CVE-2026-34908
Create: 2026-06-05 20:28:38 +0000 UTC Push: 2026-06-05 20:28:52 +0000 UTC |

partywavesec/CVE-2026-25860 CVE-2026-25860 POC git
Create: 2026-06-05 16:52:51 +0000 UTC Push: 2026-06-05 16:52:52 +0000 UTC |

johnniebozura31/CVE-2024-21182
Create: 2026-06-05 16:17:58 +0000 UTC Push: 2026-06-05 16:18:01 +0000 UTC |

seguridadentrerios/CVE-2026-33829
Create: 2026-06-05 14:25:56 +0000 UTC Push: 2026-06-05 14:25:57 +0000 UTC |

adamshaikhma/CVE-2026-3300
Create: 2026-06-05 14:19:34 +0000 UTC Push: 2026-06-05 14:19:38 +0000 UTC |

mrk336/Breaking-AWS-IAM-Privilege-Escalation-via-Mis-Evaluated-Policy-Conditions-CVE-2026-1238- This research analyzes CVE‑2026‑1238, a flaw in AWS IAM where policy conditions are mis‑evaluated, enabling stealthy privilege escalation. It breaks down the root cause, real‑world impact, and practical mitigation steps to help teams secure their cloud environments.
Create: 2026-06-05 14:07:23 +0000 UTC Push: 2026-06-05 14:07:24 +0000 UTC |

0xABCD01/CVE-2026-48866 CVE-2026-48866 — Gravity Forms <= 2.10.0.1 Arbitrary File Deletion via Path Traversal (CVSS 9.6)
Create: 2026-06-05 13:38:07 +0000 UTC Push: 2026-06-05 13:38:08 +0000 UTC |

mishaqdev/cve-2010-2075-analysis Technical writeup and penetration testing report for CVE-2010-2075, demonstrating UnrealIRCd backdoor exploitation and remediation.
Create: 2026-06-05 12:51:41 +0000 UTC Push: 2026-06-05 12:51:41 +0000 UTC |

ByteWraith1/CVE-2026-33829
Create: 2026-06-05 12:14:58 +0000 UTC Push: 2026-06-05 12:15:04 +0000 UTC |

deltahdf/CVE-2024_3495 Exploitation de la CVE 2024_3495 qui concerne le plugin de Wordpress : Country State City Dropdown CF7, une simple injection SQL permet d'avoir accès à la base de données de celui-ci.
Create: 2026-06-05 11:47:31 +0000 UTC Push: 2026-06-05 11:47:31 +0000 UTC |

TheCyberGeek/CVE-2026-4480-PoC
Create: 2026-06-05 11:05:55 +0000 UTC Push: 2026-06-05 11:31:22 +0000 UTC |