Public exploitation

Exploit catalog

Every public exploit we catalog, in one index. Search by CVE, exploit name or technology — and see, right beside it, what the flaw is actually worth: severity, exploitation probability, and whether it’s already under attack.

71,062cataloged exploits
31,617CVEs with public exploitation
0lab-tested
71,062 exploits
GitHub PoC
POC for CVE-2026-41179
CVE-2026-41179CRITICAL28 Jun 2026
RClone: Unauthenticated operations/fsinfo allows attacker-controlled backend instantiation and local command execution
63RISK
open
GitHub PoC
Unauthenticated RCE PoC for CVE-2026-48908 SP Page Builder (Joomla) arbitrary file upload and remote code execution exploit with mass scaning support.
CVE-2026-48908CRITICAL28 Jun 2026
Joomla Extension - joomshaper.com - Remote Code Execution in SP Pagebuilder extension for Joomla < 6.6.2
48RISK
open
GitHub PoC
SugiB3o/CVE-2026-31431
CVE-2026-31431HIGHunder attack27 Jun 2026
crypto: algif_aead - Revert to operating out-of-place
100RISK
open
GitHub PoC56
cve-2026-48907 scanner
CVE-2026-48907CRITICALunder attack27 Jun 2026
Joomla Extension - joomlacontenteditor.net - Remote Code Execution in JCE extension for Joomla < 2.9.99.5
100RISK
open
GitHub PoC
CVE-2026-48907 is a CVSS 10.0 pre-auth RCE in Joomla Content Editor affecting all versions ≤ 2.9.99.4. The Grayxploit team breaks down the 3-weakness chain — missing auth, no extension validation, and an unsafe upload flag — that lets attackers pop a shell in 3 HTTP requests.
CVE-2026-48907CRITICALunder attack27 Jun 2026
Joomla Extension - joomlacontenteditor.net - Remote Code Execution in JCE extension for Joomla < 2.9.99.5
100RISK
open
VulnCheck XDB
local
CVE-2016-5195HIGHunder attack27 Jun 2026
Race condition in mm/gup.c in the Linux kernel 2.x through 4.x before 4.8.3 allows local users to gain privileges by lev
93RISK
open
GitHub PoC2
Educational, defensive kit for two Linux page-cache-corruption LPEs (DirtyClone CVE-2026-43503, pedit COW CVE-2026-46331): hardening, detection, verification, seccomp + validation harness. Detection and prevention only — no exploit code. TLP:CLEAR.
CVE-2026-43503HIGH27 Jun 2026
net: skbuff: propagate shared-frag marker through frag-transfer helpers
41RISK
open
GitHub PoC2
CVE-2026-0073-Android-ADBD-bypass-POC汉化版
CVE-2026-0073HIGH27 Jun 2026
In adbd_tls_verify_cert of auth.cpp, there is a possible bypass of wireless ADB mutual authentication due to a logic err
41RISK
open
GitHub PoC7
OpenSTAManager-RCE-Exploit-CVE-2026-38751
CVE-2026-38751HIGH27 Jun 2026
OpenSTAManager version 2.10 and earlier contains an arbitrary file upload vulnerability in the module update functionali
41RISK
open
GitHub PoC105
CVE-2026-43499 PoC
CVE-2026-43499HIGH27 Jun 2026
rtmutex: Use waiter::task instead of current in remove_waiter()
41RISK
open
GitHub PoC
PoC for CVE-2026-5366: git argument injection in Prefect's GitRepository leading to RCE on the worker.
CVE-2026-5366CRITICAL27 Jun 2026
Git Argument Injection in prefecthq/prefect
48RISK
open
GitHub PoC
patched ffmpeg-tools for jellyfin to patch CVE-2026-8461 aka PixelSmash
CVE-2026-8461HIGH27 Jun 2026
Heap out-of-bounds write via odd slice_height in FFmpeg MagicYUV decoder
41RISK
open
VulnCheck XDB
initial-access
CVE-2026-48907CRITICALunder attack27 Jun 2026
Joomla Extension - joomlacontenteditor.net - Remote Code Execution in JCE extension for Joomla < 2.9.99.5
100RISK
open
GitHub PoC
Hunt-Benito/traefik-stripprefix-auth-bypass-cve-2026-48020-path-normalization
CVE-2026-48020HIGH27 Jun 2026
Traefik StripPrefix Route-Level Auth Bypass via Path Normalization
41RISK
open
VulnCheck XDB
local
CVE-2026-24061CRITICALunder attack27 Jun 2026
telnetd in GNU Inetutils through 2.7 allows remote authentication bypass via a "-f root" value for the USER environment
100RISK
open
GitHub PoC
CVE-2026-46331 - Draft
CVE-2026-46331HIGH27 Jun 2026
net/sched: fix pedit partial COW leading to page cache corruption
41RISK
open
VulnCheck XDB
initial-access
CVE-2026-24061CRITICALunder attack27 Jun 2026
telnetd in GNU Inetutils through 2.7 allows remote authentication bypass via a "-f root" value for the USER environment
100RISK
open
GitHub PoC1
WP Full Stripe Free <= 8.4.3 - Missing Authorization
CVE-2026-12432MEDIUM27 Jun 2026
Stripe Payment Forms by WP Full Pay <= 8.4.3 - Missing Authorization to Unauthenticated Payment Record Manipulation via 'paymentIntentId' Parameter
33RISK
open
VulnCheck XDB
local
CVE-2026-31431HIGHunder attack27 Jun 2026
crypto: algif_aead - Revert to operating out-of-place
100RISK
open
VulnCheck XDB
initial-access
CVE-2026-48907CRITICALunder attack27 Jun 2026
Joomla Extension - joomlacontenteditor.net - Remote Code Execution in JCE extension for Joomla < 2.9.99.5
100RISK
open
GitHub PoC1
CVE-2026-8932
CVE-2026-8932HIGH26 Jun 2026
incomplete mTLS config matching in conn reuse
41RISK
open
GitHub PoC3
CVE-2026-20251 — Splunk Secure Gateway jsonpickle deserialization RCE (CVSS 8.8) | ReactiveZero Security Research
CVE-2026-20251HIGH26 Jun 2026
Remote Code Execution through Deserialization of Untrusted Data in Splunk Secure Gateway
41RISK
open
GitHub PoC
The SSRF filter checked hostname text, but the actual destination was decided later by DNS. That gap let attacker-controlled Webhook URLs reach loopback, metadata, and private network targets.
CVE-2026-34207HIGH26 Jun 2026
TypeBot: SSRF Protection Bypass via DNS-Resolved Hostnames in Webhook / HTTP Request Validation
41RISK
open
GitHub PoC
CVE-2026-54807 WooCommerce Privilege Escalation ║ ║ Unauthenticated Admin Role Assignment via Reg. Form
CVE-2026-54807CRITICAL26 Jun 2026
WordPress Registration Form for WooCommerce plugin <= 1.0.9 - Privilege Escalation vulnerability
48RISK
open
VulnCheck XDB
initial-access
CVE-2026-20253CRITICALunder attack26 Jun 2026
Unauthenticated Arbitrary File Creation and Truncation in a PostgreSQL Sidecar Service Endpoint in Splunk Enterprise
100RISK
open
VulnCheck XDB
initial-access
CVE-2026-26980CRITICAL26 Jun 2026
Ghost has a SQL Injection in its Content API
75RISK
open
VulnCheck XDB
info-leak
CVE-2026-26980CRITICAL26 Jun 2026
Ghost has a SQL Injection in its Content API
75RISK
open
GitHub PoC4
CVE-2026-8461
CVE-2026-8461HIGH26 Jun 2026
Heap out-of-bounds write via odd slice_height in FFmpeg MagicYUV decoder
41RISK
open
GitHub PoC
A public share looked clean in the page tree, but the search endpoint told a different story. In Docmost, restricted child pages hidden from public share viewers could still leak through public share search results.
CVE-2026-33146MEDIUM26 Jun 2026
Docmost's Public Share Search Exposes Metadata of Restricted Children
33RISK
open
VulnCheck XDB
client-side
CVE-2025-8088HIGHunder attack26 Jun 2026
Path traversal vulnerability in WinRAR
93RISK
open
previouspage 14 / 2,369next

We index only the public link to the proof of concept — we never host or redistribute exploitation code. Sources: PoC-in-GitHub, Exploit-DB, Nuclei, Metasploit and VulnCheck XDB. A public PoC existing does not mean the flaw is exploitable in your environment.