Public exploitation

Exploit catalog

Every public exploit we catalog, in one index. Search by CVE, exploit name or technology — and see, right beside it, what the flaw is actually worth: severity, exploitation probability, and whether it’s already under attack.

71,062cataloged exploits
31,617CVEs with public exploitation
0lab-tested
71,062 exploits
GitHub PoC
fevar54/CVE-2026-20253-Splunk-Enterprise-Pre-Auth-RCE-
CVE-2026-20253CRITICALunder attack26 Jun 2026
Unauthenticated Arbitrary File Creation and Truncation in a PostgreSQL Sidecar Service Endpoint in Splunk Enterprise
100RISK
open
GitHub PoC
12hrformat/CVE-2026-35273-POC
CVE-2026-35273CRITICALunder attackransomware26 Jun 2026
Vulnerability in the PeopleSoft Enterprise PeopleTools product of Oracle PeopleSoft (component: Updates Environment Mana
100RISK
open
GitHub PoC1
CVE-2026-8932
CVE-2026-8932HIGH26 Jun 2026
incomplete mTLS config matching in conn reuse
41RISK
open
GitHub PoC
Cacti <= 1.2.30
CVE-2026-39938CRITICAL26 Jun 2026
Cacti: Unauthenticated RCE on Graph Image
48RISK
open
GitHub PoC
A public share looked clean in the page tree, but the search endpoint told a different story. In Docmost, restricted child pages hidden from public share viewers could still leak through public share search results.
CVE-2026-33146MEDIUM26 Jun 2026
Docmost's Public Share Search Exposes Metadata of Restricted Children
33RISK
open
GitHub PoC
A low-privileged Docmost user could supply a victim attachmentId to the generic upload endpoint and overwrite another page's stored attachment inside the same workspace.
CVE-2026-34213MEDIUM26 Jun 2026
Docmost has cross-page attachment overwrite via flawed attachmentId overwrite validation
33RISK
open
VulnCheck XDB
client-side
CVE-2025-8088HIGHunder attack26 Jun 2026
Path traversal vulnerability in WinRAR
93RISK
open
GitHub PoC
A local package installation helper trusted caller-supplied package names too much. In yeoman-environment, missing generators could be installed without user confirmation, turning attacker-controlled project metadata into a package-install and code-execution path.
CVE-2026-42089HIGH26 Jun 2026
yeoman-environment Vulnerable to Arbitrary Package Installation without User Confirmation
41RISK
open
GitHub PoC1
CVE-2026-24207 — NVIDIA Triton SageMaker auth bypass to unauth RCE. Detection script, bypass demo, RCE-chain PoC, and IDS rules.
CVE-2026-24207CRITICAL26 Jun 2026
NVIDIA Triton Inference Server contains a vulnerability where an attacker could cause an authentication bypass. A succes
63RISK
open
GitHub PoC15
mooder1/dirtyclone-CVE-2026-43503
CVE-2026-43503HIGH26 Jun 2026
net: skbuff: propagate shared-frag marker through frag-transfer helpers
41RISK
open
GitHub PoC
Docmost accepted a javascript: URL inside an attachment node, preserved it through storage and rendering, and turned it back into a clickable anchor in the Docmost origin.
CVE-2026-34212MEDIUM26 Jun 2026
Docmost page content has stored XSS via unsanitized attachment URLs
33RISK
open
GitHub PoC4
aexdyhaxor/CVE-2026-43503-DirtyClone
CVE-2026-43503HIGH26 Jun 2026
net: skbuff: propagate shared-frag marker through frag-transfer helpers
41RISK
open
GitHub PoC26
CVE-2026-46331
CVE-2026-46331HIGH26 Jun 2026
net/sched: fix pedit partial COW leading to page cache corruption
41RISK
open
GitHub PoC
Penpot's remote image import let an authenticated file editor turn a normal media convenience feature into backend-origin SSRF because attacker-controlled URLs crossed into a redirect-following server fetch path without destination filtering.
CVE-2026-45806HIGH26 Jun 2026
Penpot: Authenticated SSRF in remote image import via create-file-media-object-from-url
38RISK
open
GitHub PoC
e-corp-demo/CVE-2026-44788
CVE-2026-44788MEDIUM26 Jun 2026
SharpCompress: Directory traversal via directory entries in WriteToDirectory (zip slip variant)
33RISK
open
GitHub PoC24
CVE-2026-43503
CVE-2026-43503HIGH25 Jun 2026
net: skbuff: propagate shared-frag marker through frag-transfer helpers
41RISK
open
GitHub PoC
POC of CVE-2026-53075
CVE-2026-53075HIGH25 Jun 2026
ppp: require CAP_NET_ADMIN in target netns for unattached ioctls
41RISK
open
VulnCheck XDB
local
CVE-2025-61155MEDIUM25 Jun 2026
The GameDriverX64.sys kernel-mode anti-cheat driver (v7.23.4.7 and earlier) contains an access control vulnerability in
33RISK
open
GitHub PoC1
W5M1n9/Cisco-Unified-Communications-Manager-Server-Side-Forgery-Request-Vulnerability-CVE-2026-20230
CVE-2026-20230HIGH25 Jun 2026
Cisco Unified Communications Manager Server-Side Request Forgery Vulnerability
53RISK
open
VulnCheck XDB
initial-access
CVE-2026-8181CRITICAL25 Jun 2026
Burst Statistics 3.4.0 - 3.4.1.1 - Authentication Bypass to Admin Account Takeover
68RISK
open
GitHub PoC1
CVE-2026-7574
CVE-2026-7574HIGH25 Jun 2026
Anthropic Claude Desktop Cowork VM Image Contents Not Validated Before Use
41RISK
open
VulnCheck XDB
local
CVE-2016-5195HIGHunder attack25 Jun 2026
Race condition in mm/gup.c in the Linux kernel 2.x through 4.x before 4.8.3 allows local users to gain privileges by lev
93RISK
open
GitHub PoC
Squamity/CVE-2026-8181-PoC
CVE-2026-8181CRITICAL25 Jun 2026
Burst Statistics 3.4.0 - 3.4.1.1 - Authentication Bypass to Admin Account Takeover
68RISK
open
VulnCheck XDB
initial-access
CVE-2021-29441HIGH25 Jun 2026
Authentication bypass
78RISK
open
VulnCheck XDB
remote-with-credentials
CVE-2025-8110HIGHunder attack25 Jun 2026
File overwrite in file update API in Gogs
100RISK
open
VulnCheck XDB
initial-access
CVE-2026-20230HIGH25 Jun 2026
Cisco Unified Communications Manager Server-Side Request Forgery Vulnerability
53RISK
open
VulnCheck XDB
initial-access
CVE-2023-20198CRITICALunder attack25 Jun 2026
Cisco is providing an update for the ongoing investigation into observed exploitation of the web UI feature in Cisco IOS
100RISK
open
GitHub PoC
7whyex/CVE-2026-45321-Tanstack
CVE-2026-45321CRITICALunder attackransomware25 Jun 2026
Malware in 42 @tanstack/* packages exfiltrates cloud credentials, GitHub tokens, and SSH keys
78RISK
open
GitHub PoC
Proof of Concept of CVE-2026-38526 in Krayin CRM <= v2.2.x. Arbitrary File Upload leading to Remote Code Execution
CVE-2026-38526CRITICAL24 Jun 2026
An authenticated arbitrary file upload vulnerability in the /admin/tinymce/upload endpoint of Webkul Krayin CRM v2.2.x a
48RISK
open
GitHub PoC
Unauthenticated RCE PoC for CVE-2026-48908 SP Page Builder (Joomla) arbitrary file upload and remote code execution exploit with mass scaning support.
CVE-2026-48908CRITICAL24 Jun 2026
Joomla Extension - joomshaper.com - Remote Code Execution in SP Pagebuilder extension for Joomla < 6.6.2
48RISK
open
previouspage 15 / 2,369next

We index only the public link to the proof of concept — we never host or redistribute exploitation code. Sources: PoC-in-GitHub, Exploit-DB, Nuclei, Metasploit and VulnCheck XDB. A public PoC existing does not mean the flaw is exploitable in your environment.