Public exploitation

Exploit catalog

Every public exploit we catalog, in one index. Search by CVE, exploit name or technology — and see, right beside it, what the flaw is actually worth: severity, exploitation probability, and whether it’s already under attack.

71,062cataloged exploits
31,617CVEs with public exploitation
0lab-tested
71,062 exploits
GitHub PoC
Vtiger CRM 8.3.0 Authenticated RCE via .phar Upload
CVE-2026-23697HIGH07 Jul 2026
Vtiger CRM < 8.4.0 Authenticated File Upload RCE via Documents Module
41RISK
open
Exploit-DB
Discuz! X5.0 - Authentication Bypass
CVE-2026-49952CRITICALwebappsmultiple07 Jul 2026
Discuz! X5.0 Authentication Bypass via dbbak.php Encryption Oracle
48RISK
open
GitHub PoC2
CVE-2026-48908 — PoC exploit for unauthenticated RCE in SP Page Builder (Joomla) via arbitrary file upload. Multi‑threaded, case‑bypass, shell verification. For authorized security testing only.
CVE-2026-48908CRITICAL07 Jul 2026
Joomla Extension - joomshaper.com - Remote Code Execution in SP Pagebuilder extension for Joomla < 6.6.2
48RISK
open
Exploit-DB
Tenable Nessus 10.12.1 - SQL Injection
CVE-2026-57588LOWwebappsmultiple07 Jul 2026
SQL Injection in Nessus via Malicious Scan Result File Import
28RISK
open
GitHub PoC6
CVE-2026-42980 PUBLIC EXPLOIT + RESEARCH
CVE-2026-42980HIGH07 Jul 2026
NT OS Kernel Elevation of Privilege Vulnerability
41RISK
open
GitHub PoC3
CVE-2026-42271 - LiteLLM AI Gateway MCP Command Injection RCE - PoC & Analysis | CVSS 8.8 | AMN SECURITY
CVE-2026-42271HIGHunder attack07 Jul 2026
LiteLLM: Authenticated command execution via MCP stdio test endpoints
100RISK
open
GitHub PoC1
CVE-2026-39492 — WP Maps (wp-google-map-plugin) <= 4.9.1 Unauthenticated Blind SQL Injection Mass Scanner | sqlmap-style detection | backtick bypass esc_sql() | 100K+ installs
CVE-2026-39492CRITICAL07 Jul 2026
WordPress WP Maps plugin <= 4.9.1 - SQL Injection vulnerability
48RISK
open
GitHub PoC
CVE-2026-11405 - Draft
CVE-2026-11405CRITICAL07 Jul 2026
Hidden backdoor authentication mechanism in multiple versions of Tenda firmware allows admin access to web management interface
48RISK
open
GitHub PoC2
IOCs and a read-only triage checklist from a real Linux root compromise: RedTail miner, XorDDoS persistence, MoneroOcean miner, DirtyFrag LPE (CVE-2026-43284/43500). CC0.
CVE-2026-43284HIGH07 Jul 2026
xfrm: esp: avoid in-place decrypt on shared skb frags
78RISK
open
GitHub PoC
Vtiger CRM 8.3.0, 8.4.0 Module Import Authenticated RCE PoC
CVE-2026-23698HIGH07 Jul 2026
Vtiger CRM 8.4.0 Authenticated RCE via Module Import File Upload
41RISK
open
Exploit-DB
Hydra - Stack Buffer Overflow
CVE-2026-56766HIGHremotelinux07 Jul 2026
Hydra - Stack Buffer Overflow in NTLM Authentication Handler
41RISK
open
GitHub PoC
Laboratory validation of CVE-2026-48282 in Adobe ColdFusion RDS, covering arbitrary CFM file write, code execution as the ColdFusion service user, auditd and PCAP evidence, event timeline reconstruction, and SOC detection recommendations. Includes Polish and English reports.
CVE-2026-48282CRITICAL07 Jul 2026
ColdFusion | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') (CWE-22)
68RISK
open
GitHub PoC2
Linux 内核升级指南 - 修复 CVE-2026-53359
CVE-2026-5335907 Jul 2026
KVM: x86: Fix shadow paging use-after-free due to unexpected role
23RISK
open
GitHub PoC5
Complete fix collection for the CVE-2026-53359 guest-to-host escape vulnerability in the KVM/x86 shadow MMU. From zero-downtime livepatch to kernel upgrade — covers every operational scenario. / KVM/x86 shadow MMU 虚拟机逃逸漏洞(CVE-2026-53359)的完整修复方案集合。 从零停机热修复到内核升级,覆盖所有运维场景。
CVE-2026-5335907 Jul 2026
KVM: x86: Fix shadow paging use-after-free due to unexpected role
23RISK
open
GitHub PoC2
CVE-2026-8451 - Citrix NetScaler SAML Memory Overread (CitrixBleed) - PoC & Analysis | CVSS 8.8 | AMN SECURITY
CVE-2026-8451HIGH07 Jul 2026
Insufficient input validation leading to memory overread
41RISK
open
Exploit-DB
Flowise 3.1.3 - arbitrary code execution
CVE-2026-58057LOWwebappsmultiple07 Jul 2026
Flowise - Custom MCP Environment Variable Denylist Bypass via Case Sensitivity
28RISK
open
GitHub PoC
Bypass Authentication
CVE-2026-48611CRITICAL07 Jul 2026
Improper authentication checks in the OAuth implementation allow account hijacking even when OAuth is not configured or
63RISK
open
GitHub PoC3
CVE-2026-53359
CVE-2026-5335907 Jul 2026
KVM: x86: Fix shadow paging use-after-free due to unexpected role
23RISK
open
GitHub PoC
PoC for CVE-2026-54350 — Budibase unauthenticated NoSQL operator injection (CVSS 10.0). Read/mass-write any document collection via a PUBLIC query.
CVE-2026-54350CRITICAL07 Jul 2026
Budibase: Anonymous NoSQL operator injection via published-app query templates
48RISK
open
GitHub PoC
CVE-2026-53359 - Draft
CVE-2026-5335907 Jul 2026
KVM: x86: Fix shadow paging use-after-free due to unexpected role
23RISK
open
GitHub PoC1
CVE-2026-45659 - Microsoft SharePoint Deserialization RCE - PoC & Analysis | CVSS 8.8 | AMN SECURITY
CVE-2026-45659HIGHunder attack07 Jul 2026
Microsoft SharePoint Remote Code Execution Vulnerability
71RISK
open
GitHub PoC
🐳 docker-compose 를 활용한 취약한 환경 구성 및 검증 (vulhub 한글판)
CVE-2026-40519HIGH07 Jul 2026
Nginx Proxy Manager Authenticated RCE via setupCertbotPlugins()
21RISK
open
GitHub PoC1
CVE-2026-14762 exploit for Hotel & Tourism Reservation 1.0. Time-based blind SQL injection via /admin/rooms.php?delete. Dumps DB, tables, columns, reads files, writes webshells. Multi-threaded, proxy support, interactive shell. CVSS 7.3. Authorized testing only. By| @tc4dy
CVE-2026-14762MEDIUM07 Jul 2026
code-projects Hotel and Tourism Reservation Room Management rooms.php sql injection
33RISK
open
GitHub PoC
CVE-2026-14191 - Draft
CVE-2026-14191HIGH07 Jul 2026
WinRAR / UnRAR RAR5 recovery-volume (.rev) out-of-bounds heap write in RecVolumes5::ReadHeader
41RISK
open
VulnCheck XDB
initial-access
CVE-2026-42271HIGHunder attack07 Jul 2026
LiteLLM: Authenticated command execution via MCP stdio test endpoints
100RISK
open
GitHub PoC9
CVE-2026-20896 Gitea Docker X-WEBAUTH-USER auth bypass checker
CVE-2026-20896CRITICAL07 Jul 2026
Gitea Docker image trusts spoofable reverse-proxy headers by default
48RISK
open
VulnCheck XDB
initial-access
CVE-2026-20896CRITICAL07 Jul 2026
Gitea Docker image trusts spoofable reverse-proxy headers by default
48RISK
open
GitHub PoC1
A17-ba/CVE-2026-51119
CVE-2026-51119CRITICAL07 Jul 2026
An issue in Invixium IXM WEB v.2.3.85.25 allows an attacker to escalate privileges via the /SystemUsers/CreateAppUser co
48RISK
open
VulnCheck XDB
initial-access
CVE-2024-36401CRITICALunder attack07 Jul 2026
Remote Code Execution (RCE) vulnerability in evaluating property name expressions in Geoserver
100RISK
open
GitHub PoC
Laboratory validation of CVE-2026-48282 in Adobe ColdFusion RDS, covering arbitrary CFM file write, code execution as the ColdFusion service user, auditd and PCAP evidence, event timeline reconstruction, and SOC detection recommendations. Includes Polish and English reports.
CVE-2026-48282CRITICAL07 Jul 2026
ColdFusion | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') (CWE-22)
68RISK
open
previouspage 7 / 2,369next

We index only the public link to the proof of concept — we never host or redistribute exploitation code. Sources: PoC-in-GitHub, Exploit-DB, Nuclei, Metasploit and VulnCheck XDB. A public PoC existing does not mean the flaw is exploitable in your environment.