Public exploitation

Exploit catalog

Every public exploit we catalog, in one index. Search by CVE, exploit name or technology — and see, right beside it, what the flaw is actually worth: severity, exploitation probability, and whether it’s already under attack.

71,062cataloged exploits
31,617CVEs with public exploitation
0lab-tested
71,062 exploits
GitHub PoC7
anyanything/CVE-2026-8461-PoC
CVE-2026-8461HIGH23 Jun 2026
Heap out-of-bounds write via odd slice_height in FFmpeg MagicYUV decoder
41RISK
open
GitHub PoC
CVE-2026-40369本地权限提升漏洞exp
CVE-2026-40369HIGH23 Jun 2026
Windows Kernel Elevation of Privilege Vulnerability
41RISK
open
GitHub PoC2
This repository contains the Proof of Concept (PoC) exploit script for CVE-2026-45156
CVE-2026-45156HIGH23 Jun 2026
Nextcloud: Authentication Bypass in ID4me handling via Missing JWT Signature Verification in User OIDC
41RISK
open
GitHub PoC1
A minimal PoC for CVE-2026-21018, demonstrating how it works
CVE-2026-21018MEDIUM23 Jun 2026
Out-of-bounds write in SveService prior to SMR May-2026 Release 1 allows local privileged attackers to execute arbitrary
33RISK
open
GitHub PoC
Prueba de concepto de CVE-2021-41773
CVE-2021-41773HIGHunder attackransomware23 Jun 2026
Path traversal and file disclosure vulnerability in Apache HTTP Server 2.4.49
100RISK
open
GitHub PoC3
Proof of Concept (PoC) for the TP-Link DHCP Option 66 Unauthenticated RCE (CVE-2026-11834)
CVE-2026-11834HIGH23 Jun 2026
Unauthenticated Command Injection via DHCP Option Handling in Multiple TP-Link Routers
41RISK
open
GitHub PoC1
Technical analysis of CVE-2026-42945 (NGINX Rift), a critical heap buffer overflow in NGINX's rewrite engine caused by a state mismatch between length calculation and copy operations, enabling worker crashes and potential remote code execution.
CVE-2026-42945CRITICAL22 Jun 2026
NGINX ngx_http_rewrite_module vulnerability
60RISK
open
VulnCheck XDB
initial-access
CVE-2026-48908CRITICAL22 Jun 2026
Joomla Extension - joomshaper.com - Remote Code Execution in SP Pagebuilder extension for Joomla < 6.6.2
48RISK
open
VulnCheck XDB
denial-of-service
CVE-2026-42945CRITICAL22 Jun 2026
NGINX ngx_http_rewrite_module vulnerability
60RISK
open
GitHub PoC1
Ethical, network-isolated Docker lab reproducing CVE-2026-26030 — Semantic Kernel in-memory vector store filter eval() RCE (patched in 1.39.4)
CVE-2026-26030CRITICAL22 Jun 2026
Microsoft Semantic Kernel InMemoryVectorStore filter functionality vulnerable to remote code execution
48RISK
open
GitHub PoC
CVE-2026-4020 - Draft
CVE-2026-4020HIGH22 Jun 2026
Gravity SMTP <= 2.1.4 - Unauthenticated Sensitive Information Exposure via REST API
68RISK
open
VulnCheck XDB
initial-access
CVE-2026-48907CRITICALunder attack22 Jun 2026
Joomla Extension - joomlacontenteditor.net - Remote Code Execution in JCE extension for Joomla < 2.9.99.5
100RISK
open
VulnCheck XDB
initial-access
CVE-2026-48907CRITICALunder attack22 Jun 2026
Joomla Extension - joomlacontenteditor.net - Remote Code Execution in JCE extension for Joomla < 2.9.99.5
100RISK
open
VulnCheck XDB
initial-access
CVE-2026-23744CRITICAL22 Jun 2026
REC in MCPJam inspector due to HTTP Endpoint exposes
75RISK
open
VulnCheck XDB
initial-access
CVE-2025-55182CRITICALunder attackransomware22 Jun 2026
A pre-authentication remote code execution vulnerability exists in React Server Components versions 19.0.0, 19.1.0, 19.1
100RISK
open
GitHub PoC
Vulnerability proof of concept reworked from https://github.com/utmost3/cve/issues/2 I take no credit for discovering the vulnerability. This is for educational and portfolio purposes only.
CVE-2026-6992HIGH22 Jun 2026
Linksys MR9600 JNAP Action run_central2.sh BTRequestGetSmartConnectStatus os command injection
41RISK
open
GitHub PoC13
Unauthenticated RCE PoC for CVE-2026-48908 — SP Page Builder for Joomla (≤ 6.6.1): arbitrary file upload via asset.uploadCustomIcon. Self-cleaning, token-guarded. Authorized testing only.
CVE-2026-48908CRITICAL22 Jun 2026
Joomla Extension - joomshaper.com - Remote Code Execution in SP Pagebuilder extension for Joomla < 6.6.2
48RISK
open
GitHub PoC1
El exploit para obtener root usado la vulnerabilidad del CVE-2021-4034 o tambien llamado PwnKit el cual permite teniendo un shell hacer una escalada de privilegios siempre y cuando la version de pkexec sea = o < que la v0.105
CVE-2021-4034HIGHunder attack22 Jun 2026
A local privilege escalation vulnerability was found on polkit's pkexec utility. The pkexec application is a setuid tool
100RISK
open
GitHub PoC1
sec0x/CVE-2026-48907
CVE-2026-48907CRITICALunder attack22 Jun 2026
Joomla Extension - joomlacontenteditor.net - Remote Code Execution in JCE extension for Joomla < 2.9.99.5
100RISK
open
GitHub PoC2
CVE-2026-49772 — The Events Calendar (WordPress) unauthenticated blind SQLi PoC
CVE-2026-49772CRITICAL22 Jun 2026
WordPress The Events Calendar plugin 6.15.12-6.16.2 - SQL Injection vulnerability
48RISK
open
GitHub PoC2
CVE-2025-48907 - Unauthenticated RCE exploit for Joomla JCE < 2.9.99.5
CVE-2026-48907CRITICALunder attack22 Jun 2026
Joomla Extension - joomlacontenteditor.net - Remote Code Execution in JCE extension for Joomla < 2.9.99.5
100RISK
open
GitHub PoC
POC for CVE-2026-23744 for a python revshell
CVE-2026-23744CRITICAL22 Jun 2026
REC in MCPJam inspector due to HTTP Endpoint exposes
75RISK
open
GitHub PoC
Chaelsoo/CVE-2022-23131-Wrappers
CVE-2022-23131CRITICALunder attack22 Jun 2026
Unsafe client-side session storage leading to authentication bypass/instance takeover via Zabbix Frontend with configured SAML
100RISK
open
GitHub PoC
GNN-based supply chain backdoor detector for Python packages. Uses Code Property Graphs + 3-layer GCN to detect obfuscated backdoors by learning semantic data flow patterns — not just signatures. Inspired by XZ Utils (CVE-2024-3094).
CVE-2024-3094CRITICAL22 Jun 2026
Xz: malicious code in distributed source
70RISK
open
GitHub PoC
Detection & remediation toolkit for the Miasma / Shai-Hulud worm and CVE-2026-35603 (AI-agent/IDE config injection)
CVE-2026-35603MEDIUM22 Jun 2026
Claude Code: Insecure System-Wide Configuration Loading Enables Local Privilege Escalation on Windows
33RISK
open
GitHub PoC5
Unauthenticated PHP Object Injection to RCE in WP Activity Log <= 5.6.3.1 (CVE-2026-54806)
CVE-2026-54806CRITICAL22 Jun 2026
WordPress WP Activity Log plugin <= 5.6.3.1 - PHP Object Injection vulnerability
48RISK
open
GitHub PoC2
Technical analysis of CVE-2026-46300 (Fragnesia), a Linux kernel page-cache write vulnerability that enables local privilege escalation through SKBFL_SHARED_FRAG invariant violations in the networking stack.
CVE-2026-46300HIGH22 Jun 2026
net: skbuff: preserve shared-frag marker during coalescing
41RISK
open
VulnCheck XDB
local
CVE-2021-4034HIGHunder attack22 Jun 2026
A local privilege escalation vulnerability was found on polkit's pkexec utility. The pkexec application is a setuid tool
100RISK
open
GitHub PoC
CVE-2026-39031 — offline plaintext password recovery for Lansweeper lsrunase 2.0 / lsencrypt 2.0 via a hardcoded RC4 key. PoC + technical advisory.
CVE-2026-39031MEDIUM22 Jun 2026
Lansweeper lsrunase 2.0 and lsencrypt 2.0 use RC4 encryption with a hardcoded 142-byte static key array to encrypt crede
33RISK
open
VulnCheck XDB
initial-access
CVE-2022-23131CRITICALunder attack22 Jun 2026
Unsafe client-side session storage leading to authentication bypass/instance takeover via Zabbix Frontend with configured SAML
100RISK
open
previouspage 17 / 2,369next

We index only the public link to the proof of concept — we never host or redistribute exploitation code. Sources: PoC-in-GitHub, Exploit-DB, Nuclei, Metasploit and VulnCheck XDB. A public PoC existing does not mean the flaw is exploitable in your environment.