Public exploitation

Exploit catalog

Every public exploit we catalog, in one index. Search by CVE, exploit name or technology — and see, right beside it, what the flaw is actually worth: severity, exploitation probability, and whether it’s already under attack.

71,114cataloged exploits
31,649CVEs with public exploitation
0lab-tested
13,116 exploits
GitHub PoC
xxconi/CVE-2026-46275
CVE-2026-46275HIGH26 May 2026
Bluetooth: hci_uart: fix UAFs and race conditions in close and init paths
41RISK
open
GitHub PoC
xl337x/CVE-2023-31902
CVE-2023-31902CRITICAL26 May 2026
RPA Technology Mobile Mouse 3.6.0.4 is vulnerable to Remote Code Execution (RCE).
63RISK
open
GitHub PoC1
Proof-of-concept for CVE-2026-43284 — 4-byte XFRM/ESP page-cache write primitive to patch a setuid binary (x86_64, user namespaces). Includes kernel preflight + SUID scan.
CVE-2026-43284HIGH26 May 2026
xfrm: esp: avoid in-place decrypt on shared skb frags
78RISK
open
GitHub PoC1
Cisco Catalyst SD-WAN Peering Authentication Bypass
CVE-2026-20182CRITICALunder attack26 May 2026
Cisco Catalyst SD-WAN Controller Authentication Bypass Vulnerability
100RISK
open
GitHub PoC
CVE-2026-3296 is a CVSS 9.8 Critical unauthenticated PHP Object Injection vulnerability in the Everest Forms WordPress plugin
CVE-2026-3296CRITICAL26 May 2026
Everest Forms <= 3.4.3 - Unauthenticated PHP Object Injection via Form Entry Metadata
48RISK
open
GitHub PoC
CVE-2026-6741 is a CVSS 8.8 (High) Authenticated (Agent+) Privilege Escalation vulnerability in the LatePoint – Calendar Booking Plugin
CVE-2026-6741HIGH26 May 2026
LatePoint <= 5.4.1 - Authenticated (Agent+) Privilege Escalation to Administrator via 'connect-customer-to-wp-user' Ability
41RISK
open
GitHub PoC10
ambionics/cve-2026-9082-drupal-postgresql-rce
CVE-2026-9082CRITICALunder attack26 May 2026
Drupal core - Highly critical - SQL injection - SA-CORE-2026-004
100RISK
open
GitHub PoC
CVE-2026-5718: Unauthenticated File Upload To RCE in DnD Upload CF7 Plugin
CVE-2026-5718HIGH26 May 2026
Drag and Drop Multiple File Upload for Contact Form 7 <= 1.3.9.7 - Unauthenticated Arbitrary File Upload via Non-ASCII Filename Blacklist Bypass
56RISK
open
GitHub PoC
CVE-2026-5426
CVE-2026-5426CRITICAL26 May 2026
KnowledgeDeliver deployments before February 24, 2026 use a static ASP.NET/IIS machineKey value
48RISK
open
GitHub PoC
CVE-2026-5364 is a CVSS 8.1 (High) Unauthenticated Arbitrary File Upload vulnerability in the Drag and Drop File Upload for Contact Form 7
CVE-2026-5364HIGH26 May 2026
Drag and Drop File Upload for Contact Form 7 <= 1.1.3 - Unauthenticated Arbitrary File Upload via sanitize_file_name Bypass
41RISK
open
GitHub PoC
xxconi/CVE-2026-6271
CVE-2026-6271CRITICAL26 May 2026
Career Section <= 1.7 - Unauthenticated Arbitrary File Upload
48RISK
open
GitHub PoC
Educational lab demonstrating CVE-2025-55182: Critical RCE in React Server Components via prototype pollution in the Flight protocol
CVE-2025-55182CRITICALunder attackransomware26 May 2026
A pre-authentication remote code execution vulnerability exists in React Server Components versions 19.0.0, 19.1.0, 19.1
100RISK
open
GitHub PoC6
CVE-2025-55182 Exploit Tool – Python 2.7 exploit for Next.js prototype pollution leading to RCE
CVE-2025-55182CRITICALunder attackransomware25 May 2026
A pre-authentication remote code execution vulnerability exists in React Server Components versions 19.0.0, 19.1.0, 19.1
100RISK
open
GitHub PoC
Tomcat AJP文件读取/包含漏洞
CVE-2020-1938CRITICALunder attack25 May 2026
When using the Apache JServ Protocol (AJP), care must be taken when trusting incoming connections to Apache Tomcat. Tomc
100RISK
open
GitHub PoC
Educational laboratory for studying CVE-2014-0160 (Heartbleed) and framing inconsistencies in TLS heartbeat handling.
CVE-2014-0160HIGHunder attack25 May 2026
The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 before 1.0.1g do not properly handle Heartbeat Extension packe
100RISK
open
GitHub PoC
The code for personally reproducing the corresponding vulnerability
CVE-2026-47101HIGH25 May 2026
LiteLLM < 1.83.14 Privilege Escalation via API Key Generation
41RISK
open
GitHub PoC
CVE-2026-38427 — Integer Wraparound → Heap Buffer Overflow in Tasmota fetch_jpg() uint16_t (Tasmota <= 15.3.0.3)
CVE-2026-38427HIGH25 May 2026
An issue in fetch_jpg() in xdrv_10_scripter.ino in Tasmota through 15.3.0.3 allows a remote attacker to cause heap buffe
41RISK
open
GitHub PoC5
CVE-2026-42945 NGINX 堆溢出漏洞扫描与验证工具
CVE-2026-42945CRITICAL25 May 2026
NGINX ngx_http_rewrite_module vulnerability
60RISK
open
GitHub PoC1
Proof-of-concept for CVE-2026-43494 (PinTheft): Linux LPE via RDS zerocopy refcount bug + io_uring fixed buffers → SUID page-cache overwrite. Authorized research only.
CVE-2026-43494HIGH25 May 2026
net/rds: reset op_nents when zerocopy page pin fails
41RISK
open
GitHub PoC
Complete CosmicSting (CVE-2024-34102) exploit suite for Magento/Adobe Commerce XXE vulnerability
CVE-2024-34102CRITICALunder attack25 May 2026
XXE can expose crypt key and other secrets granting full admin access
100RISK
open
GitHub PoC
HAERIN-L/POC_CVE-2026-42880
CVE-2026-42880CRITICAL25 May 2026
ArgoCD ServerSideDiff is vulnerable to Kubernetes Secret Extraction
48RISK
open
GitHub PoC1
Repository for studying the CVE-2026-42945 vulnerability in nginx < 1.30
CVE-2026-42945CRITICAL25 May 2026
NGINX ngx_http_rewrite_module vulnerability
60RISK
open
GitHub PoC
CVE-2026-38426 — strcpy() Stack Buffer Overflow in Tasmota fetch_jpg() boundary[40] (Tasmota <= 15.3.0.3)
CVE-2026-38426HIGH25 May 2026
Buffer Overflow vulnerability in arendst Tasmota v.15.3.0.3 and before allows a remote attacker to execute arbitrary cod
41RISK
open
GitHub PoC
notthemystery/CVE-2026-20700-POC-that-ll-never-work
CVE-2026-20700HIGHunder attack25 May 2026
A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 26.3 and iPadOS 26.3,
71RISK
open
GitHub PoC
The code for personally reproducing the corresponding vulnerability
CVE-2026-47102HIGH25 May 2026
LiteLLM < 1.83.10 Privilege Escalation via User Update
41RISK
open
GitHub PoC
This is POC repo for CVE-2026-48188
CVE-2026-48188CRITICAL25 May 2026
SQL Injection via MySQL Quote Method
48RISK
open
GitHub PoC
CVE-2026-38422 — Remote Code Execution via Combined Buffer Overflows in Tasmota fetch_jpg() (Tasmota <= 15.3.0.3)
CVE-2026-38422HIGH25 May 2026
Buffer Overflow vulnerability in arendst Tasmota v.15.3.0.3 and before allows a remote attacker to execute arbitrary cod
41RISK
open
GitHub PoC
renewablehacking/CVE-2026-45321-Tanstack
CVE-2026-45321CRITICALunder attackransomware25 May 2026
Malware in 42 @tanstack/* packages exfiltrates cloud credentials, GitHub tokens, and SSH keys
78RISK
open
GitHub PoC
Critical vulnerability in Siemens RuggedCom ROS devices allowing attackers to derive a hidden factory account password from the device MAC address and gain unauthorized administrative access via TELNET, rsh, or serial interfaces. Affects ROS 3.10.x and earlier.
CVE-2012-180325 May 2026
RuggedCom Rugged Operating System (ROS) 3.10.x and earlier has a factory account with a password derived from the MAC Ad
50RISK
open
GitHub PoC
This is POC repo for CVE-2026-48208
CVE-2026-48208MEDIUM25 May 2026
Denial-of-Service via SVG Rendering in Ticket
33RISK
open

We index only the public link to the proof of concept — we never host or redistribute exploitation code. Sources: PoC-in-GitHub, Exploit-DB, Nuclei, Metasploit and VulnCheck XDB. A public PoC existing does not mean the flaw is exploitable in your environment.