unSafe.sh - 不安全

BiiTts/CVE-2026-58138-Conductor-Unauth-RCE CVE-2026-58138 — Conductor (3.21.21..<3.30.2) unauthenticated RCE via INLINE GraalVM evaluator (HostAccess.ALL). Lab + PoC, verified e2e (root).
Create: 2026-06-30 19:48:56 +0000 UTC Push: 2026-06-30 19:48:59 +0000 UTC |

AlexanderGumeniuk/CVE-2025-32434
Create: 2026-06-30 19:24:30 +0000 UTC Push: 2026-06-30 19:24:31 +0000 UTC |

BiiTts/CVE-2026-46490-samlify-SAML-Attribute-Injection CVE-2026-46490 — samlify <2.13.0 SAML AttributeValue XML injection -> signed-assertion privilege escalation. Self-contained PoC, verified e2e.
Create: 2026-06-30 19:13:30 +0000 UTC Push: 2026-06-30 19:13:33 +0000 UTC |

MadExploits/CVE-2025-40271 CVE-2025-40271 Modifed By MadEploits
Create: 2026-06-30 18:40:57 +0000 UTC Push: 2026-06-30 18:41:13 +0000 UTC |

yashswarup12/CVE-2021-27877-PoC A modified Metasploit module for validating CVE-2021-27877 by enabling direct command execution through the Veritas Backup Exec Agent. Includes documentation and the changes made to simplify exploitation during authorized security assessments.
Create: 2026-06-30 18:35:04 +0000 UTC Push: 2026-06-30 18:35:31 +0000 UTC |

g0thamRabb1t/cve-2026-46331-pedit-cow-auditd-detection Defensive validation of CVE-2026-46331 / pedit COW with auditd, AppArmor, mitigation comparison and detection logic.
Create: 2026-06-30 18:29:43 +0000 UTC Push: 2026-06-30 18:29:44 +0000 UTC |

MadExploits/CVE-2026-46300 CVE-2026-43284 - CVE-2026-43500 - CVE-2026-46300 Variant of dirtyfrag exploit
Create: 2026-06-30 18:15:27 +0000 UTC Push: 2026-06-30 18:16:09 +0000 UTC |

sentinel-aidefense/CVE-2026-21509
Create: 2026-06-30 16:19:55 +0000 UTC Push: 2026-06-30 16:19:56 +0000 UTC |

Flanbox/cve-2015-1187-dir820l-reproduction Reproducing DIR-820L Rev A v1.05B03
Create: 2026-06-30 16:08:17 +0000 UTC Push: 2026-06-30 16:08:18 +0000 UTC |

K3ysTr0K3R/CVE-2012-1823
Create: 2026-06-30 16:01:19 +0000 UTC Push: 2026-06-30 16:01:20 +0000 UTC |

gagaltotal/CVE-2026-22557-Path-Traversal-Ubiquti-UniFi CVE-2026-22557 Path Traversal Ubiquti UniFi Network Application
Create: 2026-06-30 15:47:17 +0000 UTC Push: 2026-06-30 15:47:18 +0000 UTC |

pssec-io/CVE-2026-48907 POC for CVE-2026-48907
Create: 2026-06-30 15:35:57 +0000 UTC Push: 2026-06-30 15:35:58 +0000 UTC |

pexmee/CVE-2026-48907 POC for CVE-2026-48907
Create: 2026-06-30 15:29:03 +0000 UTC Push: 2026-06-30 15:29:04 +0000 UTC |

rootdirective-sec/CVE-2026-55255-Lab
Create: 2026-06-30 14:49:22 +0000 UTC Push: 2026-06-30 14:49:23 +0000 UTC |

Ap0dexMe0/CVE-2026-49869 Kestra Auth-Bypass Vulnerability Checker
Create: 2026-06-30 14:13:04 +0000 UTC Push: 2026-06-30 14:13:05 +0000 UTC |

BridgerAlderson/CVE-2025-69212-PoC OpenSTAManager v2.9.8 and earlier versions contain a critical OS Command Injection vulnerability in the P7M (signed XML) file decoding function.
Create: 2026-06-30 13:38:40 +0000 UTC Push: 2026-06-30 13:38:40 +0000 UTC |

CIA911/cve-2026-46817_PoC Proof of Concept for Oracle CVE-2026-46817 - 30 June 2026
Create: 2026-06-30 13:15:03 +0000 UTC Push: 2026-06-30 13:15:04 +0000 UTC |

0xCyberstan/CVE-2026-31694-POC Linux kernel FUSE readdir cache out-of-bounds write (CVE-2026-31694): a malicious FUSE server overflows a page-cache page by 24 bytes. PoC plus an unprivileged local-root exploit via /etc/passwd page-cache corruption. Run only inside a VM.
Create: 2026-06-30 11:49:36 +0000 UTC Push: 2026-06-30 11:49:37 +0000 UTC |

faizdotid/CVE-2026-4020
Create: 2026-06-30 11:37:40 +0000 UTC Push: 2026-06-30 11:37:40 +0000 UTC |

Kuri119/CVE-2022-22965-Spring4Shell
Create: 2026-06-30 11:06:42 +0000 UTC Push: 2026-06-30 11:06:43 +0000 UTC |