unSafe.sh - 不安全

jayhutajulu1/CVE-2026-43494-PinTheft-PoC Proof-of-concept for CVE-2026-43494 (PinTheft): Linux LPE via RDS zerocopy refcount bug + io_uring fixed buffers → SUID page-cache overwrite. Authorized research only.
Create: 2026-05-25 07:44:22 +0000 UTC Push: 2026-05-25 07:44:22 +0000 UTC |

Habuon/CVE-2026-48188 This is POC repo for CVE-2026-48188
Create: 2026-05-25 06:39:42 +0000 UTC Push: 2026-06-01 09:24:43 +0000 UTC |

daniel30padd/CVE-2026-3854
Create: 2026-05-25 04:38:40 +0000 UTC Push: 2026-05-25 04:38:41 +0000 UTC |

Bitcoin12124/CVE-2026-X4992-Uniswap-PoC
Create: 2026-05-25 03:49:17 +0000 UTC Push: 2026-05-25 03:49:18 +0000 UTC |

duckpigdog/Tomcat-AJP-CVE-2020-1938 Tomcat AJP文件读取/包含漏洞
Create: 2026-05-25 03:01:06 +0000 UTC Push: 2026-05-25 03:01:06 +0000 UTC |

karakapaku43/CVE-2026-42945
Create: 2026-05-25 01:35:51 +0000 UTC Push: 2026-05-25 01:35:54 +0000 UTC |

TazmiDev/CVE-2026-36239 CVE-2026-36239: Authenticated RCE in PbootCMS v3.2.12 backend (sitecopyright)
Create: 2026-05-25 01:17:45 +0000 UTC Push: 2026-05-25 01:17:46 +0000 UTC |

Ahmed-Soli/ingress-nginx-cve-2026-42945-backport This repository documents a defensive backport workflow for teams running ingress-nginx controller images that still bundle an NGINX version affected by CVE-2026-42945. It is not an official NGINX or k8s ingress-nginx release. Treat it as an emergency mitigation pattern you can inspect, rebuild, and validate while you wait for an official fixed
Create: 2026-05-25 01:02:29 +0000 UTC Push: 2026-05-25 01:02:30 +0000 UTC |

mein-0/cve-2026-29923
Create: 2026-05-24 22:36:56 +0000 UTC Push: 2026-05-24 22:36:57 +0000 UTC |

hacbs-release-tests/collectors-no-cve-c20d1f15
Create: 2026-05-24 20:24:55 +0000 UTC Push: 2026-05-24 20:24:57 +0000 UTC |

dinosn/CVE-2025-13673 CVE-2025-13673: Tutor LMS SQL Injection PoC + Docker lab
Create: 2026-05-24 18:37:43 +0000 UTC Push: 2026-05-24 18:37:47 +0000 UTC |

v4rr10r/CVE-2019-9053 CMS Made Simple CVE-2019-9053 Exploit (Python 3)
Create: 2026-05-24 18:32:26 +0000 UTC Push: 2026-05-24 18:32:27 +0000 UTC |

M3PH1569/CVE-2026-39987-POC CVE-2026-39987 Exploitation Tool - Marimo < 0.23.0 Pre-Auth RCE (WebSocket)
Create: 2026-05-24 18:00:33 +0000 UTC Push: 2026-05-24 18:00:33 +0000 UTC |

0xS4N4TG/CVE-2025-47812 CVE-2025-47812 Poc for WingData HTB
Create: 2026-05-24 17:59:21 +0000 UTC Push: 2026-05-24 17:59:22 +0000 UTC |

BenZamir/CVE-2026-7791 Local Privilege Escalation in Amazon WorkSpaces via TOCTOU and Arbitrary File Write
Create: 2026-05-24 14:49:03 +0000 UTC Push: 2026-05-28 12:04:10 +0000 UTC |

m0n1x90/CVE-2026-41096 CVE-2026-41096: Heap Overflow in the Windows DNS Client
Create: 2026-05-24 14:23:39 +0000 UTC Push: 2026-05-24 14:23:40 +0000 UTC |

AtlasVector/Dirty-Frag-CVE-2026-43284-
Create: 2026-05-24 12:39:27 +0000 UTC Push: 2026-05-24 12:39:29 +0000 UTC |

AtlasVector/Dirty-Frag-CVE-2026-43284
Create: 2026-05-24 12:39:27 +0000 UTC Push: 2026-05-24 12:40:39 +0000 UTC |

sardine-web/Automated-scanner-CVE-2026-41940 Automated scanner & post-exploitation toolkit for CVE-2026-41940 — cPanel & WHM root authentication bypass via session-file CRLF injection
Create: 2026-05-24 11:10:55 +0000 UTC Push: 2026-05-24 11:10:55 +0000 UTC |

kikechans/CVE-2026-23520-Educational
Create: 2026-05-24 08:48:30 +0000 UTC Push: 2026-05-24 08:48:33 +0000 UTC |