Public exploitation

Exploit catalog

Every public exploit we catalog, in one index. Search by CVE, exploit name or technology — and see, right beside it, what the flaw is actually worth: severity, exploitation probability, and whether it’s already under attack.

71,114cataloged exploits
31,649CVEs with public exploitation
0lab-tested
71,114 exploits
GitHub PoC
HTB Facts is a Easy Linux box featuring Camaleon CMS and MinIO. Gain admin access via open registration and a mass assignment vulnerability, then extract MinIO credentials from admin settings. Use CVE-2024-46987 path traversal to steal an SSH private key, crack its passphrase, and escalate to root by abusing sudo permissions on facter via GTFOBins.
CVE-2024-46987HIGH04 Jun 2026
Arbitrary path traversal in Camaleon CMS
61RISK
open
GitHub PoC
CVE-2026-35904 / CVE-2026-35905 / CVE-2026-35906 — Unauth RCE, Hardcoded Root Creds & Telnet Enable in T3 Technology CPE
CVE-2026-35904CRITICAL04 Jun 2026
Incorrect access control in the web management interface of T3 Technology CPE models T625Pro v1.0.07, T6825G v1.0.03, an
48RISK
open
GitHub PoC
CVE-2026-23744
CVE-2026-23744CRITICAL04 Jun 2026
REC in MCPJam inspector due to HTTP Endpoint exposes
75RISK
open
GitHub PoC
Piotnet Forms Pro <= 2.1.40 - Unauthenticated Arbitrary File Upload → RCE
CVE-2026-4883CRITICAL04 Jun 2026
Piotnet Forms <= 2.1.40 - Unauthenticated Arbitrary File Upload via Form File Upload
48RISK
open
VulnCheck XDB
info-leak
CVE-2024-1698CRITICAL04 Jun 2026
NotificationX – Best FOMO, Social Proof, WooCommerce Sales Popup & Notification Bar Plugin With Elementor <= 2.8.2 - Unauthenticated SQL Injection
85RISK
open
VulnCheck XDB
initial-access
CVE-2026-23744CRITICAL04 Jun 2026
REC in MCPJam inspector due to HTTP Endpoint exposes
75RISK
open
VulnCheck XDB
initial-access
CVE-2026-23744CRITICAL03 Jun 2026
REC in MCPJam inspector due to HTTP Endpoint exposes
75RISK
open
GitHub PoC18
CVE-2026-50343 InstallService StaticPluginMap EoP - standard user to SYSTEM
CVE-2026-50343HIGH03 Jun 2026
Microsoft Install Service Elevation of Privilege Vulnerability
41RISK
open
GitHub PoC13
CVE-2026-41089 checker: unauthenticated, non-destructive detection for the Netlogon CLDAP stack buffer overflow (CVSS 9.8). Reports whether a domain controller's domain is long enough to crash, without sending the overflow. The binary-verified analysis the public PoCs got wrong.
CVE-2026-41089CRITICAL03 Jun 2026
Windows Netlogon Remote Code Execution Vulnerability
70RISK
open
GitHub PoC
CVE-2026-9256 Nginx heap buffer overflow POC
CVE-2026-9256CRITICAL03 Jun 2026
NGINX ngx_http_rewrite_module vulnerability
48RISK
open
GitHub PoC1
PoC of CVE-2026-49943
CVE-2026-49943MEDIUM03 Jun 2026
CZ.NIC BIRD Internet Routing Daemon through 2.19.0 contains a stack-based buffer overflow in the BGP AS_PATH mask matchi
33RISK
open
GitHub PoC
CVE-2026-27145 - Draft
CVE-2026-27145MEDIUM03 Jun 2026
Inefficient candidate hostname parsing in crypto/x509
33RISK
open
VulnCheck XDB
initial-access
CVE-2026-41089CRITICAL03 Jun 2026
Windows Netlogon Remote Code Execution Vulnerability
70RISK
open
GitHub PoC1
Rocket.Chat OAuth2 NoSQL Injection
CVE-2026-29198CRITICAL03 Jun 2026
In Rocket.Chat <8.3.0, <8.2.1, <8.1.2, <8.0.3, <7.13.5, <7.12.6, <7.11.6, and <7.10.9, a NoSQL injection vulnerability c
48RISK
open
GitHub PoC
Galaxy-sc/CVE-2026-47423-dompurify-xss-detector
CVE-2026-47423HIGH03 Jun 2026
DOMPurify XSS via `selectedcontent` re-clone
41RISK
open
GitHub PoC1
CVE-2025-48595 - Draft
CVE-2025-48595HIGHunder attack03 Jun 2026
In multiple locations, there is a possible way to achieve code execution due to an integer overflow. This could lead to
71RISK
open
VulnCheck XDB
initial-access
CVE-2024-36401CRITICALunder attack03 Jun 2026
Remote Code Execution (RCE) vulnerability in evaluating property name expressions in Geoserver
100RISK
open
GitHub PoC
这是一个用于防御巡检的 CVE-2026-41089 检测脚本。该漏洞是 Microsoft 在 2026 年 5 月安全更新中披露的 Windows Netlogon 远程代码执行漏洞。
CVE-2026-41089CRITICAL03 Jun 2026
Windows Netlogon Remote Code Execution Vulnerability
70RISK
open
VulnCheck XDB
info-leak
CVE-2026-0257HIGHunder attack03 Jun 2026
PAN-OS: GlobalProtect Authentication Bypass Vulnerabilities
100RISK
open
VulnCheck XDB
local
CVE-2026-31431HIGHunder attack03 Jun 2026
crypto: algif_aead - Revert to operating out-of-place
100RISK
open
GitHub PoC6
Este repositorio contiene un Proof of Concept (POC) para CVE-2026-49975, también conocida como HTTP/2 Bomb, una vulnerabilidad de denegación de servicio (DoS) remoto que afecta a la mayoría de los servidores web principales en su configuración HTTP/2 predeterminada, incluyendo:
CVE-2026-49975HIGH03 Jun 2026
Apache HTTP Server: mod_http2 denial of service
46RISK
open
GitHub PoC1
go CVE-2026-31431 (CopyFail) local privilege escalation exploit
CVE-2026-31431HIGHunder attack03 Jun 2026
crypto: algif_aead - Revert to operating out-of-place
100RISK
open
GitHub PoC1
Add go CVE-2026-46300 (Fragnesia) local privilege escalation exploit
CVE-2026-46300HIGH03 Jun 2026
net: skbuff: preserve shared-frag marker during coalescing
41RISK
open
GitHub PoC
Detection script for CIFSwitch - CVE-2026-46243
CVE-2026-46243HIGH03 Jun 2026
smb: client: reject userspace cifs.spnego descriptions
41RISK
open
GitHub PoC3
Palo Alto Networks PAN-OS contains an authentication bypass caused by flaws in the GlobalProtect portal and gateway, letting attackers establish unauthorized VPN connections, exploit requires network access to the portal or gateway.
CVE-2026-0257HIGHunder attack03 Jun 2026
PAN-OS: GlobalProtect Authentication Bypass Vulnerabilities
100RISK
open
GitHub PoC14
CVE-2026-41089 是 Windows Netlogon 服务中一个关键的远程代码执行漏洞,单包即可崩溃 lsass.exe,导致域控制器在约 30-60 秒内重启。此期间该 DC 的所有域认证将失败。
CVE-2026-41089CRITICAL03 Jun 2026
Windows Netlogon Remote Code Execution Vulnerability
70RISK
open
GitHub PoC
Saku0512/CVE-2026-54088-poc
CVE-2026-54088CRITICAL03 Jun 2026
File Browser: Command Injection via Authentication Hook Shell Substitution (Pre-Authentication RCE)
48RISK
open
GitHub PoC
lowilol/CVE-2026-42945-NGINX-Rift-Check-Script
CVE-2026-42945CRITICAL03 Jun 2026
NGINX ngx_http_rewrite_module vulnerability
60RISK
open
GitHub PoC3
Bulk scanning + one-click vulnerability exploitation
CVE-2026-42945CRITICAL03 Jun 2026
NGINX ngx_http_rewrite_module vulnerability
60RISK
open
GitHub PoC
leehunkoo/hk_CVE-2025-32433
CVE-2025-32433CRITICALunder attack03 Jun 2026
Erlang/OTP SSH Vulnerable to Pre-Authentication RCE
100RISK
open
previouspage 35 / 2,371next

We index only the public link to the proof of concept — we never host or redistribute exploitation code. Sources: PoC-in-GitHub, Exploit-DB, Nuclei, Metasploit and VulnCheck XDB. A public PoC existing does not mean the flaw is exploitable in your environment.