Public exploitation

Exploit catalog

Every public exploit we catalog, in one index. Search by CVE, exploit name or technology — and see, right beside it, what the flaw is actually worth: severity, exploitation probability, and whether it’s already under attack.

71,114cataloged exploits
31,649CVEs with public exploitation
0lab-tested
71,062 exploits
GitHub PoC1
Full walkthrough of HTB's Reactor machine — exploit CVE-2025-55182 to gain a shell, then get root via an exposed Node.js debugger. Step-by-step with screenshots.
CVE-2025-55182CRITICALunder attackransomware28 May 2026
A pre-authentication remote code execution vulnerability exists in React Server Components versions 19.0.0, 19.1.0, 19.1
100RISK
open
GitHub PoC
CVE-2023-26083-Mali-InfoLeak-PoC
CVE-2023-26083LOWunder attack28 May 2026
Memory leak vulnerability in Mali GPU Kernel Driver in Midgard GPU Kernel Driver all versions from r6p0 - r32p0, Bifrost
58RISK
open
GitHub PoC1
funixone/EXPLOIT-CVE-2026-8832
CVE-2026-8832HIGH28 May 2026
WPCode <= 2.3.5 - Authenticated (Author+) Remote Code Execution via CPT Capability Bypass via XML-RPC wp.newPost
41RISK
open
GitHub PoC
EXPLOIT CVE-2026-8832
CVE-2026-8832HIGH28 May 2026
WPCode <= 2.3.5 - Authenticated (Author+) Remote Code Execution via CPT Capability Bypass via XML-RPC wp.newPost
41RISK
open
GitHub PoC1
Intentionally-vulnerable nginx 1.30.0 CVE lab images (CVE-2026-40701/42934/42945/42946) for isolated security research. Lab use only.
CVE-2026-40701MEDIUM28 May 2026
NGINX ngx_http_ssl_module vulnerability
33RISK
open
GitHub PoC6
Gogs RCE via argument injection in git rebase (CWE-88) — Python PoC. CVE-2026-52806
CVE-2026-52806CRITICAL28 May 2026
Gogs: RCE via git rebase --exec argument injection in pull request merge
48RISK
open
GitHub PoC
CVE-2026-35616 - Draft
CVE-2026-35616CRITICALunder attack28 May 2026
A improper access control vulnerability in Fortinet FortiClientEMS 7.4.5 through 7.4.6 may allow an unauthenticated atta
100RISK
open
VulnCheck XDB
initial-access
CVE-2026-31431HIGHunder attack28 May 2026
crypto: algif_aead - Revert to operating out-of-place
100RISK
open
GitHub PoC1
W5M1n9/NGINX-ngx_http_rewrite_module-heap-buffer-overflow-CVE-2026-9256
CVE-2026-9256CRITICAL28 May 2026
NGINX ngx_http_rewrite_module vulnerability
48RISK
open
GitHub PoC2
3nou9h/CVE-2026-9256-Poc
CVE-2026-9256CRITICAL28 May 2026
NGINX ngx_http_rewrite_module vulnerability
48RISK
open
VulnCheck XDB
initial-access
CVE-2026-42945CRITICAL28 May 2026
NGINX ngx_http_rewrite_module vulnerability
60RISK
open
GitHub PoC
POC for CVE-2026-49009, an authenticated path traversal to RCE issue in Mender Server.
CVE-2026-49009LOW28 May 2026
Northern.tech Mender Server v4.1.0, v4.0.1 and below, and fixed in v4.1.1 and v4.0.2 allows Directory Traversal.
28RISK
open
GitHub PoC1
Detection scanner for CVE-2026-48710 - Host-header auth bypass in Starlette/FastAPI
CVE-2026-48710MEDIUM28 May 2026
Starlette has missing Host header validation that poisons request.url.path, bypassing path-based security checks
48RISK
open
GitHub PoC
quantumworld-dpdns-io/CVE-2026-42945
CVE-2026-42945CRITICAL28 May 2026
NGINX ngx_http_rewrite_module vulnerability
60RISK
open
Exploit-DB
Linux Kernel - Local Privilege Escalation
CVE-2026-43500HIGHlocallinux27 May 2026
rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present
78RISK
open
VulnCheck XDB
info-leak
CVE-2026-26980CRITICAL27 May 2026
Ghost has a SQL Injection in its Content API
75RISK
open
GitHub PoC
lwd3c/CVE-2026-47342
CVE-2026-47342HIGH27 May 2026
Apache OFBiz: Privilege Escalation via updateOrRemove Authorization Bypass
21RISK
open
Exploit-DB
scramble - Remote Code Execution
CVE-2026-44262CRITICALwebappsphp27 May 2026
Scramble: Remote code execution via evaluation of user-controlled input in validation rules
63RISK
open
Exploit-DB
EspoCRM 9.3.3 - SSRF
CVE-2026-33534MEDIUM27 May 2026
EspoCRM has authenticated SSRF via internal-host validation bypass using alternative IPv4 notation
48RISK
open
GitHub PoC18
CVE-2026-27771 - Gitea/Forgejo Container Registry Auth Bypass Exploit PoC - Pull private container images without authentication
CVE-2026-27771HIGH27 May 2026
Gitea Composer package source links use insufficient permission checks
68RISK
open
GitHub PoC
CVE-2026-27771 - Draft
CVE-2026-27771HIGH27 May 2026
Gitea Composer package source links use insufficient permission checks
68RISK
open
VulnCheck XDB
info-leak
CVE-2026-9082CRITICALunder attack27 May 2026
Drupal core - Highly critical - SQL injection - SA-CORE-2026-004
100RISK
open
GitHub PoC
CVE-2026-45659
CVE-2026-45659HIGHunder attack27 May 2026
Microsoft SharePoint Remote Code Execution Vulnerability
71RISK
open
VulnCheck XDB
initial-access
CVE-2025-54123CRITICAL27 May 2026
Hoverfly vulnerable to remote code execution at `/api/v2/hoverfly/middleware` endpoint due to insecure middleware implementation
68RISK
open
GitHub PoC
CVE-2026-45659 Microsoft SharePoint Server Deserialization RCE.
CVE-2026-45659HIGHunder attack27 May 2026
Microsoft SharePoint Remote Code Execution Vulnerability
71RISK
open
GitHub PoC1
Starlette Host-Header URL Confusion Lab (X41-2026-002) - CVE-2026-48710
CVE-2026-48710MEDIUM27 May 2026
Starlette has missing Host header validation that poisons request.url.path, bypassing path-based security checks
48RISK
open
GitHub PoC
this is a study about CVE-2021-3156: Heap-Based Buffer Overflow in Sudo (Baron Samedit)
CVE-2021-3156HIGHunder attack27 May 2026
Sudo before 1.9.5p2 contains an off-by-one error that can result in a heap-based buffer overflow, which allows privilege
100RISK
open
GitHub PoC
This exploit is based on CVE-2019-6340 and was built upon the original exploit by leonjza and the Metasploit module, extending it can be executed multiple times against the same target without waiting for cache expiration.
CVE-2019-6340HIGHunder attack27 May 2026
Drupal core - Highly critical - Remote Code Execution
100RISK
open
GitHub PoC
Lab 3: Supervisord XML-RPC Remote Code Execution (CVE-2017-11610) - Writeup and Exploit
CVE-2017-1161027 May 2026
The XML-RPC server in supervisor before 3.0.1, 3.1.x before 3.1.4, 3.2.x before 3.2.4, and 3.3.x before 3.3.3 allows rem
60RISK
open
GitHub PoC3
Ghost Content API SQL Injection
CVE-2026-26980CRITICAL27 May 2026
Ghost has a SQL Injection in its Content API
75RISK
open
previouspage 41 / 2,369next

We index only the public link to the proof of concept — we never host or redistribute exploitation code. Sources: PoC-in-GitHub, Exploit-DB, Nuclei, Metasploit and VulnCheck XDB. A public PoC existing does not mean the flaw is exploitable in your environment.