Public exploitation

Exploit catalog

Every public exploit we catalog, in one index. Search by CVE, exploit name or technology — and see, right beside it, what the flaw is actually worth: severity, exploitation probability, and whether it’s already under attack.

71,114cataloged exploits
31,649CVEs with public exploitation
0lab-tested
13,116 exploits
GitHub PoC
Xmyronn/CVE-2026-10288-AUTH-BYPASS
CVE-2026-10288MEDIUM11 May 2026
code-projects Hotel and Tourism Reservation System Admin Login login.php password_verify improper authentication
33RISK
open
GitHub PoC
Xmyronn/CVE-2026-10289-XSS
CVE-2026-10289MEDIUM11 May 2026
code-projects Hotel and Tourism Reservation System tour.php cross site scripting
33RISK
open
GitHub PoC
Dirtyfrag CVE-2026-43284 & CVE-2026-43500 Scanner
CVE-2026-43284HIGH11 May 2026
xfrm: esp: avoid in-place decrypt on shared skb frags
78RISK
open
GitHub PoC
Xmyronn/CVE-2026-10290-SQLI
CVE-2026-10290MEDIUM11 May 2026
code-projects Hotel and Tourism Reservation System GET Parameter tour.php sql injection
33RISK
open
GitHub PoC
SSTI contact form to rce
CVE-2026-4257CRITICAL11 May 2026
Contact Form by Supsystic <= 1.7.36 - Unauthenticated Server-Side Template Injection via Prefill Functionality
75RISK
open
GitHub PoC1
This project is a cybersecurity research and analysis project focused on CVE-2023-38831, a critical WinRAR vulnerability that allows attackers to execute malicious code through specially crafted archive files. The project was conducted in a controlled lab environment for educational and defensive security purposes only.
CVE-2023-38831HIGHunder attackransomware11 May 2026
RARLAB WinRAR before 6.23 allows attackers to execute arbitrary code when a user attempts to view a benign file within a
100RISK
open
GitHub PoC
EspoCRM 9.3.3 - Stored HTML Injection in Email Notifications
CVE-2026-33657MEDIUM11 May 2026
EspoCRM: Stored HTML injection in email notifications about stream notes via unescaped post field
13RISK
open
GitHub PoC
A temporary mitigation against copy_fail variant (copyfail2_electric_boogaloo) - Unprivileged Linux LPE via xfrm ESP-in-UDP MSG_SPLICE_PAGES no-COW fast path. Page-cache write into any readable file. Overwrites a nologin line in /etc/passwd with sick::0:0:…:/:/bin/bash and sus into it. Same class as Copy Fail (CVE-2026-31431), different subsystem.
CVE-2026-31431HIGHunder attack10 May 2026
crypto: algif_aead - Revert to operating out-of-place
100RISK
open
GitHub PoC27
arm64/aarch64 port of V4bel/dirtyfrag (CVE-2026-43284). ESP-only - rxrpc path kernel-oopses on arm64 due to flush_dcache_page
CVE-2026-43284HIGH10 May 2026
xfrm: esp: avoid in-place decrypt on shared skb frags
78RISK
open
GitHub PoC
ryan2929/CVE-2026-43284-
CVE-2026-43284HIGH10 May 2026
xfrm: esp: avoid in-place decrypt on shared skb frags
78RISK
open
GitHub PoC
kaleth4/CVE-2026-7482
CVE-2026-7482HIGH10 May 2026
Ollama heap out-of-bounds read in GGUF tensor parsing leaks server process memory to unauthenticated remote attackers
21RISK
open
GitHub PoC2
cPanelSniper STABLE - CVE-2026-41940 optimized for 10M+ targets
CVE-2026-41940CRITICALunder attackransomware10 May 2026
WebPros cPanel and WHM Authentication Bypass via Login Flow
100RISK
open
GitHub PoC
Educational Proof of Concept for CVE-2026-31431 / Copy Fail Linux local privilege escalation via AF_ALG algif_aead
CVE-2026-31431HIGHunder attack10 May 2026
crypto: algif_aead - Revert to operating out-of-place
100RISK
open
GitHub PoC
Threat intelligence brief on CVE-2026-42208, a critical pre-auth SQL injection in BerriAI LiteLLM exploited within 36 hours of disclosure. Covers attack path, detection opportunities, and recommended actions.
CVE-2026-42208CRITICALunder attack10 May 2026
LiteLLM: SQL injection in Proxy API key verification
100RISK
open
GitHub PoC
Форензика после CVE-2026-41940 (cPanel/WHM) — bash-скрипт и чек-лист
CVE-2026-41940CRITICALunder attackransomware10 May 2026
WebPros cPanel and WHM Authentication Bypass via Login Flow
100RISK
open
GitHub PoC
Exploit Windows server 2019 vulnerable to Zerologon with Garble, Chisel, wp-file-manager vulnerability (have video demo)
CVE-2020-25213CRITICALunder attack10 May 2026
The File Manager (wp-file-manager) plugin before 6.9 for WordPress allows remote attackers to upload and execute arbitra
100RISK
open
GitHub PoC
rootdirective-sec/CVE-2026-42208-Lab
CVE-2026-42208CRITICALunder attack10 May 2026
LiteLLM: SQL injection in Proxy API key verification
100RISK
open
GitHub PoC5
Crihexe/v8-poc-CVE-2026-5865
CVE-2026-5865HIGH10 May 2026
Type Confusion in V8 in Google Chrome prior to 147.0.7727.55 allowed a remote attacker to execute arbitrary code inside
21RISK
open
GitHub PoC
Technical analysis of the LangChain serialization injection vulnerability CVE-2025-68664.
CVE-2025-68664CRITICAL10 May 2026
LangChain serialization injection vulnerability enables secret extraction in dumps/loads APIs
53RISK
open
GitHub PoC
CVE-2026-20131
CVE-2026-20131CRITICALunder attackransomware10 May 2026
Cisco Secure Firewall Management Center Software Remote Code Execution Vulnerability
83RISK
open
GitHub PoC
kaleth4/CVE-2026-32746
CVE-2026-32746CRITICAL09 May 2026
telnetd in GNU inetutils through 2.7 allows an out-of-bounds write in the LINEMODE SLC (Set Local Characters) suboption
53RISK
open
GitHub PoC2
CVE-2026-21510 LNK generator PoC
CVE-2026-21510HIGHunder attack09 May 2026
Windows Shell Security Feature Bypass Vulnerability
76RISK
open
GitHub PoC2
CVE-2020-14008 - ManageEngine Applications Manager RCE
CVE-2020-1400809 May 2026
Zoho ManageEngine Applications Manager 14710 and before allows an authenticated admin user to upload a vulnerable jar in
35RISK
open
GitHub PoC
Kernel patches for Dirty Frag vulnerability (CVE-2026-43284, CVE-2026-43500)
CVE-2026-43284HIGH09 May 2026
xfrm: esp: avoid in-place decrypt on shared skb frags
78RISK
open
GitHub PoC
Helios973/CVE-2026-31431_exp.c
CVE-2026-31431HIGHunder attack09 May 2026
crypto: algif_aead - Revert to operating out-of-place
100RISK
open
GitHub PoC
Elegant C++ exploit for CVE-2026-31431 (Copy Fail) using AF_ALG authenticated encryption + splice(2) to overwrite setuid binary memory
CVE-2026-31431HIGHunder attack09 May 2026
crypto: algif_aead - Revert to operating out-of-place
100RISK
open
GitHub PoC
Proof-of-concept exploits for CVE-2026-4390, CVE-2026-4391 and CVE-2026-4392 in TeamSpeak 3 server (3.13.7).
CVE-2026-4390MEDIUM09 May 2026
TeamSpeak 3 Server Connection State Management process_resend_queue use after free
33RISK
open
GitHub PoC1
CVE-2026-0073 - ADB Wireless Mutual Authentication Bypass PoC
CVE-2026-0073HIGH09 May 2026
In adbd_tls_verify_cert of auth.cpp, there is a possible bypass of wireless ADB mutual authentication due to a logic err
41RISK
open
GitHub PoC
This script will attempt to mitigate the copy_fail attack. CVE-2026-31431
CVE-2026-31431HIGHunder attack09 May 2026
crypto: algif_aead - Revert to operating out-of-place
100RISK
open
GitHub PoC1
This repository provides a reproduction environment for CVE-2026-44656.
CVE-2026-44656MEDIUM09 May 2026
Vim: OS Command Injection via 'path' completion
13RISK
open

We index only the public link to the proof of concept — we never host or redistribute exploitation code. Sources: PoC-in-GitHub, Exploit-DB, Nuclei, Metasploit and VulnCheck XDB. A public PoC existing does not mean the flaw is exploitable in your environment.