unSafe.sh - 不安全

zebbernCVE/CVE-2026-26830 Advisory for CVE-2026-26830 in pdf-image
Create: 2026-03-24 16:15:10 +0000 UTC Push: 2026-03-24 16:15:13 +0000 UTC |

zebbernCVE/npm-cve-2026-26830-26833 Public advisories for CVE-2026-26830 through CVE-2026-26833 in unmaintained npm packages
Create: 2026-03-24 16:06:40 +0000 UTC Push: 2026-03-24 16:06:44 +0000 UTC |

eagle-nett/React2Shell-PoC-CVE-2025-55182 Khai thác lỗ hổng bảo mật CVE-2025-55182 trong thành phần React
Create: 2026-03-24 13:51:41 +0000 UTC Push: 2026-03-24 13:51:42 +0000 UTC |

tarunbharathe/Zero-Click-RCE-Incident-Response-CVE-2025-21298 Technical investigation and host containment of a Critical-severity Zero-Click RCE exploit (CVE-2025-21298) using EDR telemetry and static malware analysis.
Create: 2026-03-24 10:46:38 +0000 UTC Push: 2026-03-24 10:46:38 +0000 UTC |

PtechAmanja/CVE-2026-29000-pac4j-jwt-auth-bypass Proof-of-Concept (PoC) for an authentication bypass vulnerability affecting applications using **pac4j-jwt** with JWE (JSON Web Encryption).
Create: 2026-03-24 09:24:49 +0000 UTC Push: 2026-03-24 09:24:50 +0000 UTC |

eagle-nett/DAHUA-AUTH-BYPASS-CVE-2021-33044 Camera Dahua Research lỗ hổng CVE-2021-33044
Create: 2026-03-24 03:20:55 +0000 UTC Push: 2026-03-24 03:20:55 +0000 UTC |

eagle-nett/DAHUA_AUTH-BYPASS-CVE-2021-33044 Camera Dahua Research lỗ hổng CVE-2021-33044
Create: 2026-03-24 03:20:55 +0000 UTC Push: 2026-03-24 03:20:55 +0000 UTC |

RyosukeDTomita/CVE-2025-55182
Create: 2026-03-24 03:20:32 +0000 UTC Push: 2026-03-24 03:20:32 +0000 UTC |

eagle-nett/DAHUA-CVE-2021-33044-AuthBypass Camera Dahua Research lỗ hổng CVE-2021-33044
Create: 2026-03-24 03:17:00 +0000 UTC Push: 2026-03-24 03:17:01 +0000 UTC |

SnailSploit/CVE-2026-32794 CVE-2026-32794: TLS Certificate Verification Bypass in Apache Airflow Databricks Provider
Create: 2026-03-24 01:58:19 +0000 UTC Push: 2026-05-08 16:05:48 +0000 UTC |

brynax/CVE-2026-30655 Security advisory for CVE-2026-30655: unauthenticated SQL injection in esiclivre (/reset/index.php).
Create: 2026-03-24 01:43:34 +0000 UTC Push: 2026-03-24 01:43:34 +0000 UTC |

SnailSploit/CVE-2026-32885 CVE-2026-32885: ZipSlip Path Traversal in ddev/ddev rchive Extraction (CVSS 6.5 Moderate)
Create: 2026-03-23 23:18:39 +0000 UTC Push: 2026-03-23 23:18:39 +0000 UTC |

SnailSploit/CVE-2026-32809 CVE-2026-32809: Unvalidated Symlink Targets in Tar Extraction in ouch-org/ouch (CVSS 7.4 High)
Create: 2026-03-23 23:09:38 +0000 UTC Push: 2026-03-23 23:09:39 +0000 UTC |

SnailSploit/CVE-2026-33693 CVE-2026-33693: SSRF via 0.0.0.0 Bypass in activitypub-federation-rust v4_is_invalid() (CVSS 6.5 Moderate)
Create: 2026-03-23 23:00:03 +0000 UTC Push: 2026-03-23 23:00:04 +0000 UTC |

ColdFusionX/CVE-2024-46879-TikiCMS-XSS CVE-2024-46879 - Tiki CMS Reflected Cross-Site Scripting (XSS) Vulnerability
Create: 2026-03-23 18:48:44 +0000 UTC Push: 2026-03-23 18:48:45 +0000 UTC |

ColdFusionX/CVE-2024-46878-TikiCMS-XSS CVE-2024-46878 - Tiki CMS Reflected Cross-Site Scripting (XSS) Vulnerability
Create: 2026-03-23 18:42:42 +0000 UTC Push: 2026-03-23 18:42:43 +0000 UTC |

FrenzisRed/CVE-2026-23744 CVE-2026-23744 - MCPJam inspector Remote-Code-Execution: Proof Of Concept (POC
Create: 2026-03-23 18:38:28 +0000 UTC Push: 2026-03-23 18:38:28 +0000 UTC |

M4xSec/CVE-2024-2473 Wordpress Hidden Login Page Disclosure. Detect Login Page Disclosure in WordPress sites running WPS Hide Login ≤ 1.9.15.2 (CVE-2024-2473)
Create: 2026-03-23 18:32:24 +0000 UTC Push: 2026-03-23 18:45:51 +0000 UTC |

nomaisthere/CVE-2026-3888 Linux LPE via snap-confine + systemd-tmpfiles, explained in depth
Create: 2026-03-23 18:27:12 +0000 UTC Push: 2026-03-23 22:22:25 +0000 UTC |

Mehdi-Ben-Hamou/CVE-2026-30498
Create: 2026-03-23 17:58:37 +0000 UTC Push: 2026-03-23 17:58:38 +0000 UTC |