unSafe.sh - 不安全

aim-sec/CVE-2016-1000027-with-c3p0 An exploit of CVE-2016-1000027 using ysoserial's c3p0 payload type to achieve remote code execution
Create: 2026-01-07 00:00:44 +0000 UTC Push: 2026-01-07 00:00:45 +0000 UTC |

LACHHAB-Anas/Exploit_CVE-2025-37164 Exploit for the CVE-2025-37164
Create: 2026-01-06 22:23:25 +0000 UTC Push: 2026-01-06 22:23:25 +0000 UTC |

SnailSploit/CVE-2025-12030 ACF to REST API WordPress Plugin IDOR Vulnerability (CVE-2025-12030) - Security flaw allowing authenticated users with Contributor-level access to modify ACF fields on objects they do not own.
Create: 2026-01-06 21:17:57 +0000 UTC Push: 2026-01-06 21:17:57 +0000 UTC |

B1TC0R3/CVE-2025-55182 React Server Component RCE PoC
Create: 2026-01-06 20:05:46 +0000 UTC Push: 2026-01-06 20:05:46 +0000 UTC |

waheeb71/CVE-2025-14847 CVE-2025-14847 MongoDB Memory Leak Exploit
Create: 2026-01-06 19:14:27 +0000 UTC Push: 2026-01-06 19:14:27 +0000 UTC |

nishant-kumar-5173/CVE-2024-5932
Create: 2026-01-06 19:05:58 +0000 UTC Push: 2026-01-06 19:05:59 +0000 UTC |

DDestinys/CVE-2023-42793
Create: 2026-01-06 01:12:23 +0000 UTC Push: 2026-01-06 01:12:56 +0000 UTC |

jir4vv1t/CVE-2025-43529
Create: 2026-01-05 23:43:41 +0000 UTC Push: 2026-01-05 23:45:36 +0000 UTC |

podatnosci/React2Shell-CVE-2025-55182-
Create: 2026-01-05 22:46:33 +0000 UTC Push: 2026-01-05 22:46:33 +0000 UTC |

you-ssef9/CVE-2026-21440 Advanced detection-only PoC for CVE-2026-21440 affecting AdonisJS BodyParser. No exploitation included.
Create: 2026-01-05 22:40:37 +0000 UTC Push: 2026-01-05 22:40:57 +0000 UTC |

Nxploited/CVE-2025-12674 KiotViet Sync <= 1.8.5 - Unauthenticated Arbitrary File Upload
Create: 2026-01-05 19:39:01 +0000 UTC Push: 2026-01-05 19:39:01 +0000 UTC |

Nxploited/CVE-2025-13390 WP Directory Kit <= 1.4.4 - Authentication Bypass to Privilege Escalation via Account Takeover
Create: 2026-01-05 18:45:40 +0000 UTC Push: 2026-01-05 18:45:41 +0000 UTC |

hackergovind/CVE-2025-61246 CVE-2025-61246: SQL Injection vulnerability PoC in Online Shopping System PHP - Time-based blind SQLi exploitation tool
Create: 2026-01-05 18:14:11 +0000 UTC Push: 2026-01-05 18:14:11 +0000 UTC |

Arcueld/CVE-2025-68926 CVE-2025-68926 POC
Create: 2026-01-05 16:12:07 +0000 UTC Push: 2026-01-05 16:12:14 +0000 UTC |

JRrooot/CVE-2012-2982-Webmin-RCE Python PoC for Webmin 1.580 Remote Command Execution (CVE-2012-2982)
Create: 2026-01-05 14:43:22 +0000 UTC Push: 2026-01-05 14:43:22 +0000 UTC |

Ashwesker/Ashwesker-CVE-2026-21440 CVE-2026-21440
Create: 2026-01-05 14:36:22 +0000 UTC Push: 2026-01-05 14:36:23 +0000 UTC |

lutrasecurity/CVE-2025-1910-WatchGuard-Privilege-Escalation Proof-of-Concept for exploiting CVE-2025-1910, a local privilege escalation within Watchguard's Mobile VPN with SSL client.
Create: 2026-01-05 14:07:51 +0000 UTC Push: 2026-01-07 17:11:03 +0000 UTC |

Prodigysec/dd-trace-cpp-0.2.1-CVE-2024-38525
Create: 2026-01-05 09:50:14 +0000 UTC Push: 2026-01-05 09:54:09 +0000 UTC |

hyan0116/Next.js-RCE-CVE-2025-55182 next.js rce exploit
Create: 2026-01-05 07:06:11 +0000 UTC Push: 2026-01-05 07:06:51 +0000 UTC |

lucyz1125/CVE-2025-55182-Next.js-RCE Nextjs RCE Exploit
Create: 2026-01-05 06:55:27 +0000 UTC Push: 2026-01-05 06:55:27 +0000 UTC |