Public exploitation

Exploit catalog

Every public exploit we catalog, in one index. Search by CVE, exploit name or technology — and see, right beside it, what the flaw is actually worth: severity, exploitation probability, and whether it’s already under attack.

71,114cataloged exploits
31,649CVEs with public exploitation
0lab-tested
13,116 exploits
GitHub PoC
Exploit code for CVE-2026-42096 and CVE-2026-42097 allowing for arbitrary SQL command execution without authentication.
CVE-2026-42096HIGH19 May 2026
Broken Access Control in Sparx Pro Cloud Server
41RISK
open
GitHub PoC
The code for personally reproducing the corresponding vulnerability
CVE-2026-35030CRITICAL19 May 2026
LiteLLM has an authentication bypass via OIDC userinfo cache key collision
48RISK
open
GitHub PoC
imSre9/CVE-2026-42945
CVE-2026-42945CRITICAL19 May 2026
NGINX ngx_http_rewrite_module vulnerability
60RISK
open
GitHub PoC1
A report on Dirty Frag, which is a Linux Local Privilege Escalation (LPE) vulnerability chain that allows an unprivileged user to gain root access
CVE-2026-43284HIGH19 May 2026
xfrm: esp: avoid in-place decrypt on shared skb frags
78RISK
open
GitHub PoC
NGINX CVE-2026-42945 一键修复脚本
CVE-2026-42945CRITICAL19 May 2026
NGINX ngx_http_rewrite_module vulnerability
60RISK
open
GitHub PoC1
RedCrazyGhost/CVE-2026-42945
CVE-2026-42945CRITICAL19 May 2026
NGINX ngx_http_rewrite_module vulnerability
60RISK
open
GitHub PoC
rufflabs/CVE-2026-36748
CVE-2026-36748CRITICAL19 May 2026
RockRMS v16.13 and before v.17.7.0 is vulnerable to Cross Site Scripting (XSS) via Social Media links in user profile.
48RISK
open
GitHub PoC
Xmyronn/CVE-2026-11344-RCE
CVE-2026-11344MEDIUM19 May 2026
code-projects Vehicle Management System New Driver Registration Form newdriver.php unrestricted upload
33RISK
open
GitHub PoC5
CVE-2026-31635
CVE-2026-31635HIGH19 May 2026
rxrpc: fix oversized RESPONSE authenticator length check
41RISK
open
GitHub PoC
Writeup da sala Blue do TryHackMe — exploração do EternalBlue (MS17-010/CVE-2017-0143).
CVE-2017-0143HIGHunder attackransomware19 May 2026
The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows
100RISK
open
GitHub PoC
The code for personally reproducing the corresponding vulnerability
CVE-2026-40217HIGH19 May 2026
LiteLLM through 2026-04-08 allows remote attackers to execute arbitrary code via bytecode rewriting at the /guardrails/t
41RISK
open
GitHub PoC
SMB Red Team Lab— NTLM Relay via LLMNR Poisoning, CVE-2007-2447, NTLMv2 Hash Cracking & NT AUTHORITY\SYSTEM on Windows 10
CVE-2007-244719 May 2026
The MS-RPC functionality in smbd in Samba 3.0.0 through 3.0.25rc3 allows remote attackers to execute arbitrary commands
50RISK
open
GitHub PoC
suil12/CVE-2025-24813_presentation
CVE-2025-24813CRITICALunder attack19 May 2026
Apache Tomcat: Potential RCE and/or information disclosure and/or information corruption with partial PUT
100RISK
open
GitHub PoC
Technical breakdown of CVE-2026-34472, an auth bypass via leaked credentials affecting ZTE H188A routers.
CVE-2026-34472HIGH18 May 2026
Unauthenticated credential disclosure in the wizard interface in ZTE ZXHN H188A V6.0.10P2_TE and V6.0.10P3N3_TE allows u
41RISK
open
GitHub PoC3
暂无
CVE-2026-39636MEDIUM18 May 2026
WordPress Livemesh Addons for Elementor plugin <= 9.0 - Cross Site Scripting (XSS) vulnerability
33RISK
open
GitHub PoC1
IOC checker for the TanStack/Mini Shai-Hulud npm supply chain attack (CVE-2026-45321)
CVE-2026-45321CRITICALunder attackransomware18 May 2026
Malware in 42 @tanstack/* packages exfiltrates cloud credentials, GitHub tokens, and SSH keys
78RISK
open
GitHub PoC
Attack and Defense course project focused on CVE-2017-5638 analysis, exploitation, and mitigation.
CVE-2017-5638CRITICALunder attackransomware18 May 2026
The Jakarta Multipart parser in Apache Struts 2 2.3.x before 2.3.32 and 2.5.x before 2.5.10.1 has incorrect exception ha
100RISK
open
GitHub PoC1
这是一个面向防守和内网排查的 CVE-2026-42945 静态检测工具,用于检查 NGINX ngx_http_rewrite_module 相关配置是否存在高风险 rewrite 组合。
CVE-2026-42945CRITICAL18 May 2026
NGINX ngx_http_rewrite_module vulnerability
60RISK
open
GitHub PoC
Lab for the CVE-2024-27198
CVE-2024-27198CRITICALunder attackransomware18 May 2026
In JetBrains TeamCity before 2023.11.4 authentication bypass allowing to perform admin actions was possible
100RISK
open
GitHub PoC
Ne0zer01/CVE-2024-27198_LAB
CVE-2024-27198CRITICALunder attackransomware18 May 2026
In JetBrains TeamCity before 2023.11.4 authentication bypass allowing to perform admin actions was possible
100RISK
open
GitHub PoC
CaginKyr/CVE-2026-5203
CVE-2026-5203MEDIUM18 May 2026
CMS Made Simple UserGuide Module XML Import class.UserGuideImporterExporter.php _copyFilesToFolder path traversal
33RISK
open
GitHub PoC
Research environment and validation scripts for evaluating deserialization behaviors in MLflow and MLServer.
CVE-2026-0596CRITICAL18 May 2026
Command Injection in mlflow/mlflow
48RISK
open
GitHub PoC3
CVE-2026-33825
CVE-2026-33825HIGHunder attackransomware18 May 2026
Microsoft Defender Elevation of Privilege Vulnerability
71RISK
open
GitHub PoC1
This repository provides proof of concept (PoC) for the CVE-2021-4034
CVE-2021-4034HIGHunder attack18 May 2026
A local privilege escalation vulnerability was found on polkit's pkexec utility. The pkexec application is a setuid tool
100RISK
open
GitHub PoC4
IKEv2, ikeext.dll, CVE-2026-33824, double free, heap grooming, ROP, SKF fragmentation, Windows exploit, anti-debug, obfuscation, API hooking, shellcode, reverse shell
CVE-2026-33824CRITICAL18 May 2026
Windows Internet Key Exchange (IKE) Service Extensions Remote Code Execution Vulnerability
60RISK
open
GitHub PoC
LAT-06/CVE-2026-34197
CVE-2026-34197HIGHunder attack18 May 2026
Apache ActiveMQ Broker, Apache ActiveMQ All, Apache ActiveMQ: Authenticated users could perform RCE via Jolokia MBeans
100RISK
open
GitHub PoC
Local Privilege Escalation. Flips the running user's UID to 0 in /etc/passwd's page cache, then invokes su for a root shell.
CVE-2026-31431HIGHunder attack18 May 2026
crypto: algif_aead - Revert to operating out-of-place
100RISK
open
GitHub PoC
Laboratorio automatizado Plug & Play en Docker para auditar y estudiar la vulnerabilidad Log4Shell (CVE-2021-44228)
CVE-2021-44228CRITICALunder attackransomware18 May 2026
Apache Log4j2 JNDI features do not protect against attacker controlled LDAP and other JNDI related endpoints
100RISK
open
GitHub PoC
a.k.a. React2Shell
CVE-2025-55182CRITICALunder attackransomware18 May 2026
A pre-authentication remote code execution vulnerability exists in React Server Components versions 19.0.0, 19.1.0, 19.1
100RISK
open
GitHub PoC
Detection and mitigation tooling for CVE-2026-31431 (Copy Fail) on Linux kernels. Includes Phalanx-CCS and Silent4Labs scripts plus an Ansible playbook to apply temporary mitigation (block algif_aead module or boot parameter) across servers.
CVE-2026-31431HIGHunder attack18 May 2026
crypto: algif_aead - Revert to operating out-of-place
100RISK
open

We index only the public link to the proof of concept — we never host or redistribute exploitation code. Sources: PoC-in-GitHub, Exploit-DB, Nuclei, Metasploit and VulnCheck XDB. A public PoC existing does not mean the flaw is exploitable in your environment.