unSafe.sh - 不安全

gregk4sec/CVE-2026-25854 Released by original Author
Create: 2026-02-07 07:06:59 +0000 UTC Push: 2026-02-07 07:07:00 +0000 UTC |

eeeeeeeeeevan/CVE-2026-25857 one of many nodays. trivial to find
Create: 2026-02-07 04:28:59 +0000 UTC Push: 2026-02-08 03:18:59 +0000 UTC |

securenetexpert/CVE-2024-21413-Moniker-Link-Writeup Technical write-up on CVE-2024-21413 (Moniker Link vulnerability)
Create: 2026-02-07 02:15:36 +0000 UTC Push: 2026-02-07 02:15:37 +0000 UTC |

RajChowdhury240/CVE-2025-67435-PoC PluckCMS 4.7.20 Zip Slip vulnerability Led to RCE
Create: 2026-02-06 21:47:24 +0000 UTC Push: 2026-02-06 21:47:25 +0000 UTC |

CsuriBird/CVE-2025-2304 This Python script exploits a critical mass assignment vulnerability in Camaleon CMS version 2.9.0, allowing any registered user to escalate their privileges to administrator.
Create: 2026-02-06 20:30:28 +0000 UTC Push: 2026-02-06 20:30:29 +0000 UTC |

Christbowel/CVE-2026-25050 CVE-2026-25050 – Timing attack PoC enabling user enumeration via GraphQL authentication
Create: 2026-02-06 17:24:24 +0000 UTC Push: 2026-02-06 17:24:25 +0000 UTC |

scumfrog/cve-2026-24061 CVE-2026-24061 PoC
Create: 2026-02-06 17:06:57 +0000 UTC Push: 2026-02-06 17:06:57 +0000 UTC |

stephaniesahnihi/CVE-2026-24300
Create: 2026-02-06 16:54:33 +0000 UTC Push: 2026-02-06 16:54:34 +0000 UTC |

reschjonas/CVE-2026-24135 Arbitrary File Deletion in Gogs via Wiki Path Traversal
Create: 2026-02-06 15:57:03 +0000 UTC Push: 2026-02-06 16:00:50 +0000 UTC |

Sn0wBaall/CVE-2023-4220-PoC
Create: 2026-02-06 15:28:11 +0000 UTC Push: 2026-02-06 15:29:08 +0000 UTC |

cardosource/CVE-2026-25828 Command Injection in grub-btrfs initramfs hook - CVE-2026-25828
Create: 2026-02-06 14:44:39 +0000 UTC Push: 2026-02-06 14:44:40 +0000 UTC |

dxlerYT/CVE-2026-25731 Proof of Concept for a Server-Side Template Injection (SSTI) vulnerability in Calibre’s Templite engine (GHSA-xrh9-w7qx-3gcc). Demonstrates arbitrary Python code execution via user-supplied HTML export templates in affected versions (≤ 9.1.0).
Create: 2026-02-06 11:14:08 +0000 UTC Push: 2026-02-06 11:14:09 +0000 UTC |

theo543/OSDS_Paper_CVE-2016-5195
Create: 2026-02-06 10:54:06 +0000 UTC Push: 2026-02-06 10:54:32 +0000 UTC |

DarkSploits/CVE-2026-21643-Exploit Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') (CWE-89)
Create: 2026-02-06 09:53:55 +0000 UTC Push: 2026-02-06 09:53:56 +0000 UTC |

namaek2/CVE-2025-70962 CVE-2025-70962 PoC
Create: 2026-02-06 09:17:19 +0000 UTC Push: 2026-02-06 09:17:19 +0000 UTC |

kalibb/CVE-2025-68921
Create: 2026-02-06 08:27:38 +0000 UTC Push: 2026-02-06 08:27:38 +0000 UTC |

HowieHz/CVE-2025-70886 A Proof of Concept (PoC) exploit for CVE-2025-70886, a persistent denial-of-service vulnerability in Halo CMS (v2.22.4 and earlier) that allows unauthenticated attackers to crash the admin comment interface by submitting malformed payloads.
Create: 2026-02-06 02:44:40 +0000 UTC Push: 2026-02-06 02:44:41 +0000 UTC |

nrnw/CVE-2026-24061-GNU-inetutils-Telnet-Detector A passive detection tool for identifying potential exposure to CVE-2026-24061 in GNU inetutils telnet installations
Create: 2026-02-06 00:36:20 +0000 UTC Push: 2026-02-06 01:12:34 +0000 UTC |

Tifa-dev/WordPress-Quiz-Maker-SQLi-Exploit-CVE-2025-10042- This Python script is an exploit for a Time-based Blind SQL Injection vulnerability in the WordPress Quiz Maker plugin (versions <= 6.7.0.56). The vulnerability (CVE-2025-10042) exists due to improper sanitization of the X-Forwarded-For HTTP header.
Create: 2026-02-05 22:02:01 +0000 UTC Push: 2026-02-05 22:02:01 +0000 UTC |

advaitpathak21/CVE-2024-46987 Exploit created using Python
Create: 2026-02-05 21:37:57 +0000 UTC Push: 2026-02-06 03:37:42 +0000 UTC |