unSafe.sh - 不安全

menevarad007/CVE-2026-37748 Visitor Management System 1.0 - Unrestricted File Upload → RCE (CVE-2026-37748)
Create: 2026-04-16 17:27:49 +0000 UTC Push: 2026-04-16 17:27:50 +0000 UTC |

Nxvh1337/CVE-2025-15602-PoC Snipe-IT < 8.3.7 Mass Assignment Vulnerability Leading to Privilege Escalation
Create: 2026-04-16 14:37:45 +0000 UTC Push: 2026-04-16 14:38:02 +0000 UTC |

ZaidArif47/CVE-2024-42009
Create: 2026-04-16 14:03:05 +0000 UTC Push: 2026-04-16 14:03:08 +0000 UTC |

z3r0h3ro/CVE-2026-33824 Windows IKEv2 Double-Free RCE
Create: 2026-04-16 14:01:04 +0000 UTC Push: 2026-04-16 14:01:05 +0000 UTC |

keraattin/CVE-2026-22679 Critical RCE vulnerability (CVSS 9.3) in Weaver E-cology platform versions prior to build 20260312. Unauthenticated remote code execution via exposed debug endpoint at /papi/esearch/data/devops/dubboApi/debug/method. Comprehensive analysis, proof-of-concept, and detection guidance included.
Create: 2026-04-16 13:55:42 +0000 UTC Push: 2026-04-16 13:56:56 +0000 UTC |

janAWARE7/cross-country-cve-2026
Create: 2026-04-16 11:33:14 +0000 UTC Push: 2026-04-16 11:33:14 +0000 UTC |

venom203020/CVE-2026-5059-poc poc CVE-2026-5059 in aws-mcp-server
Create: 2026-04-16 10:52:43 +0000 UTC Push: 2026-04-16 10:52:44 +0000 UTC |

seokjohn/CVE-2026-1880 ASUS DriverHub Driver Update Process TOCTOU Vulnerability Leading to LPE
Create: 2026-04-16 10:37:12 +0000 UTC Push: 2026-04-16 10:37:12 +0000 UTC |

helGayhub233/CVE-2026-34486-Tribes Apache Tomcat Tribes 集群通信协议探测工具
Create: 2026-04-16 09:35:37 +0000 UTC Push: 2026-04-16 09:35:38 +0000 UTC |

EQSTLab/CVE-2026-34220
Create: 2026-04-16 09:31:07 +0000 UTC Push: 2026-04-16 09:31:07 +0000 UTC |

Zedocun/PAN-OS-CVE-2024-3400-Command-Injection-Investigation
Create: 2026-04-16 08:54:55 +0000 UTC Push: 2026-04-16 08:54:55 +0000 UTC |

jasetpen/CVE-2025-69428
Create: 2026-04-16 07:52:06 +0000 UTC Push: 2026-04-16 07:52:06 +0000 UTC |

AnggaTechI/Mass-Scanner-CVE-2026-3891 CVE-2026-3891 Mass Scanning
Create: 2026-04-16 06:43:25 +0000 UTC Push: 2026-04-16 06:43:25 +0000 UTC |

Saku0512/CVE-2026-40176-poc
Create: 2026-04-16 04:29:29 +0000 UTC Push: 2026-04-16 04:29:30 +0000 UTC |

danhle5402/CVE-2025-59528
Create: 2026-04-16 04:25:44 +0000 UTC Push: 2026-04-16 04:25:44 +0000 UTC |

terminat0r7031/composer-CVE-2026-40261-CVE-2026-40176-PoC
Create: 2026-04-16 04:00:23 +0000 UTC Push: 2026-04-16 04:01:17 +0000 UTC |

ZeroMemoryEx/CVE-2026-0827 CVE-2026-0827 PoC
Create: 2026-04-16 02:10:56 +0000 UTC Push: 2026-04-16 02:11:23 +0000 UTC |

rippsec/CVE-2025-49113-Roundcube-RCE CVE-2025-49113 – Roundcube ≤1.6.10 post-auth RCE via PHP object deserialization (HackTheBox CTF)
Create: 2026-04-16 01:18:22 +0000 UTC Push: 2026-04-16 01:18:24 +0000 UTC |

rippsec/CVE-2025-27591-Meta-below-LPE CVE-2025-27591 – Meta below symlink following local privilege escalation (HackTheBox CTF)
Create: 2026-04-16 01:18:19 +0000 UTC Push: 2026-04-16 01:18:21 +0000 UTC |

rippsec/CVE-2025-24893-XWiki-SSTI-RCE CVE-2025-24893 – XWiki SSTI unauthenticated RCE exploit (HackTheBox CTF)
Create: 2026-04-16 01:18:16 +0000 UTC Push: 2026-04-16 01:18:18 +0000 UTC |