Public exploitation

Exploit catalog

Every public exploit we catalog, in one index. Search by CVE, exploit name or technology — and see, right beside it, what the flaw is actually worth: severity, exploitation probability, and whether it’s already under attack.

71,062cataloged exploits
31,617CVEs with public exploitation
0lab-tested
71,062 exploits
GitHub PoC
Proof of Concept of CVE-2026-38526 in Krayin CRM <= v2.2.x. Arbitrary File Upload leading to Remote Code Execution
CVE-2026-38526CRITICAL24 Jun 2026
An authenticated arbitrary file upload vulnerability in the /admin/tinymce/upload endpoint of Webkul Krayin CRM v2.2.x a
48RISK
open
VulnCheck XDB
initial-access
CVE-2021-42013CRITICALunder attackransomware24 Jun 2026
Path Traversal and Remote Code Execution in Apache HTTP Server 2.4.49 and 2.4.50 (incomplete fix of CVE-2021-41773)
100RISK
open
GitHub PoC
CVE-2026-49777, CVE-2026-10735 - Draft
CVE-2026-49777CRITICAL24 Jun 2026
WordPress Product Slider Pro for WooCommerce plugin < 3.5.4 - Backdoor vulnerability
63RISK
open
GitHub PoC1
Proof of concept for CVE-2026-56111, an out-of-bounds write in the M421 G-code handler of Marlin Firmware
CVE-2026-56111HIGH24 Jun 2026
Marlin Firmware 2.1.2.7 Out-of-Bounds Write via M421 G-code Handler
41RISK
open
GitHub PoC
Unauthenticated RCE PoC for CVE-2026-48908 SP Page Builder (Joomla) arbitrary file upload and remote code execution exploit with mass scaning support.
CVE-2026-48908CRITICAL24 Jun 2026
Joomla Extension - joomshaper.com - Remote Code Execution in SP Pagebuilder extension for Joomla < 6.6.2
48RISK
open
GitHub PoC13
Y5neKO/CVE-2026-8461-EXP
CVE-2026-8461HIGH24 Jun 2026
Heap out-of-bounds write via odd slice_height in FFmpeg MagicYUV decoder
41RISK
open
GitHub PoC60
CVE-2026-45504 Microsoft Exchange File Read
CVE-2026-45504HIGH24 Jun 2026
Microsoft Exchange Server Elevation of Privilege Vulnerability
41RISK
open
GitHub PoC
CVE-2026-48908 - SP Page Builder Joomla Unauthenticated RCE
CVE-2026-48908CRITICAL24 Jun 2026
Joomla Extension - joomshaper.com - Remote Code Execution in SP Pagebuilder extension for Joomla < 6.6.2
48RISK
open
GitHub PoC1
CVE-2026-48908
CVE-2026-48908CRITICAL24 Jun 2026
Joomla Extension - joomshaper.com - Remote Code Execution in SP Pagebuilder extension for Joomla < 6.6.2
48RISK
open
VulnCheck XDB
initial-access
CVE-2021-22205CRITICALunder attackransomware24 Jun 2026
An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.9. GitLab was not properly validati
100RISK
open
VulnCheck XDB
initial-access
CVE-2025-55182CRITICALunder attackransomware24 Jun 2026
A pre-authentication remote code execution vulnerability exists in React Server Components versions 19.0.0, 19.1.0, 19.1
100RISK
open
GitHub PoC1
CVE-2026-8461 - Draft
CVE-2026-8461HIGH24 Jun 2026
Heap out-of-bounds write via odd slice_height in FFmpeg MagicYUV decoder
41RISK
open
GitHub PoC
CVE-2026-31431 getroot from a Turkish Cryptominer
CVE-2026-31431HIGHunder attack24 Jun 2026
crypto: algif_aead - Revert to operating out-of-place
100RISK
open
GitHub PoC1
Unauthenticated Account Takeover via Weak Password Reset Validation via 'reset_user_id' Parameter | Unauthenticated Privilege Escalation via Weak Password Reset Validation via 'reset_activation_code' Leading to Account Takeover
CVE-2026-12416CRITICAL24 Jun 2026
Invoice Generator <= 1.0.0 - Unauthenticated Account Takeover via Weak Password Reset Validation via 'reset_user_id' Parameter
48RISK
open
VulnCheck XDB
initial-access
CVE-2025-32432CRITICALunder attack24 Jun 2026
Craft CMS Allows Remote Code Execution
100RISK
open
GitHub PoC
Apache Tomcat CGI Servlet RCE (Windows) — Educational PoC
CVE-2019-023223 Jun 2026
When running on Windows with enableCmdLineArguments enabled, the CGI Servlet in Apache Tomcat 9.0.0.M1 to 9.0.17, 8.5.0
60RISK
open
VulnCheck XDB
initial-access
CVE-2021-41773HIGHunder attackransomware23 Jun 2026
Path traversal and file disclosure vulnerability in Apache HTTP Server 2.4.49
100RISK
open
GitHub PoC10
CVE-2026-42978 — Use-After-Free race condition in Windows Push Notifications (WpnService). Patch diff, root cause analysis, TOCTOU lab, Sysmon/ETW detection rules.
CVE-2026-42978HIGH23 Jun 2026
Windows Push Notifications Elevation of Privilege Vulnerability
41RISK
open
GitHub PoC
Prueba de concepto de CVE-2021-41773
CVE-2021-41773HIGHunder attackransomware23 Jun 2026
Path traversal and file disclosure vulnerability in Apache HTTP Server 2.4.49
100RISK
open
VulnCheck XDB
client-side
CVE-2024-21413CRITICALunder attack23 Jun 2026
Microsoft Outlook Remote Code Execution Vulnerability
100RISK
open
GitHub PoC10
CVE-2026-55200
CVE-2026-55200CRITICAL23 Jun 2026
libssh2 - Out-of-Bounds Write via Unchecked packet_length in transport.c
48RISK
open
VulnCheck XDB
local
CVE-2019-2215HIGHunder attack23 Jun 2026
A use-after-free in binder.c allows an elevation of privilege from an application to the Linux Kernel. No user interacti
100RISK
open
VulnCheck XDB
initial-access
CVE-2019-023223 Jun 2026
When running on Windows with enableCmdLineArguments enabled, the CGI Servlet in Apache Tomcat 9.0.0.M1 to 9.0.17, 8.5.0
60RISK
open
GitHub PoC2
This repository contains the Proof of Concept (PoC) exploit script for CVE-2026-45156
CVE-2026-45156HIGH23 Jun 2026
Nextcloud: Authentication Bypass in ID4me handling via Missing JWT Signature Verification in User OIDC
41RISK
open
VulnCheck XDB
initial-access
CVE-2020-11651CRITICALunder attack23 Jun 2026
An issue was discovered in SaltStack Salt before 2019.2.4 and 3000 before 3000.2. The salt-master process ClearFuncs cla
100RISK
open
GitHub PoC1
CVE-2026-11837: local privilege escalation in the ansible.posix authorized_key module via symlink-following chown. Technical writeup; sibling of CVE-2024-9902.
CVE-2026-11837HIGH23 Jun 2026
Ansible-collection-ansible-posix: ansible.posix authorized_key: local privilege escalation via symlink-following chown
41RISK
open
GitHub PoC
eliHiHo/portfolio-drupal-cve-2026-9082
CVE-2026-9082CRITICALunder attack23 Jun 2026
Drupal core - Highly critical - SQL injection - SA-CORE-2026-004
100RISK
open
GitHub PoC
fuchiuebusi-lab/nginx-ui-CVE-2026-42221-CVE-2026-42238-
CVE-2026-42221HIGH23 Jun 2026
nginx-ui: Unauthenticated First-Run Installer Allows Remote Initial Admin Claim
41RISK
open
GitHub PoC3
Proof of Concept (PoC) for the TP-Link DHCP Option 66 Unauthenticated RCE (CVE-2026-11834)
CVE-2026-11834HIGH23 Jun 2026
Unauthenticated Command Injection via DHCP Option Handling in Multiple TP-Link Routers
41RISK
open
GitHub PoC1
A minimal PoC for CVE-2026-21018, demonstrating how it works
CVE-2026-21018MEDIUM23 Jun 2026
Out-of-bounds write in SveService prior to SMR May-2026 Release 1 allows local privileged attackers to execute arbitrary
33RISK
open
previouspage 16 / 2,369next

We index only the public link to the proof of concept — we never host or redistribute exploitation code. Sources: PoC-in-GitHub, Exploit-DB, Nuclei, Metasploit and VulnCheck XDB. A public PoC existing does not mean the flaw is exploitable in your environment.