Public exploitation

Exploit catalog

Every public exploit we catalog, in one index. Search by CVE, exploit name or technology — and see, right beside it, what the flaw is actually worth: severity, exploitation probability, and whether it’s already under attack.

71,114cataloged exploits
31,649CVEs with public exploitation
0lab-tested
71,114 exploits
VulnCheck XDB
initial-access
CVE-2023-27350CRITICALunder attackransomware30 May 2026
This vulnerability allows remote attackers to bypass authentication on affected installations of PaperCut NG 22.0.5 (Bui
100RISK
open
GitHub PoC3
CVE-2026-0257
CVE-2026-0257HIGHunder attack30 May 2026
PAN-OS: GlobalProtect Authentication Bypass Vulnerabilities
100RISK
open
GitHub PoC
HAERIN-L/poc_cve-2026-42208
CVE-2026-42208CRITICALunder attack30 May 2026
LiteLLM: SQL injection in Proxy API key verification
100RISK
open
Exploit-DB
YAMCS yamcs-core 5.12.7 - User Enumeration
CVE-2026-44595MEDIUMwebappsmultiple30 May 2026
Yamcs: Unauthorized user enumeration via IAM API endpoints
30RISK
open
GitHub PoC
CVE-2026-0257 - PAN-OS
CVE-2026-0257HIGHunder attack30 May 2026
PAN-OS: GlobalProtect Authentication Bypass Vulnerabilities
100RISK
open
GitHub PoC
HAERIN-L/POC_CVE-2026-46716
CVE-2026-46716CRITICAL30 May 2026
Nezha Monitoring: RoleMember can run shell on every server (cross-tenant RCE) via POST /api/v1/cron
48RISK
open
GitHub PoC
letsr00t/CVE-2026-43494-PinTheft-PoC
CVE-2026-43494HIGH30 May 2026
net/rds: reset op_nents when zerocopy page pin fails
41RISK
open
GitHub PoC
vishvacyber/Detection-Tool-Kit-for-CVE-2026-31431
CVE-2026-31431HIGHunder attack29 May 2026
crypto: algif_aead - Revert to operating out-of-place
100RISK
open
GitHub PoC1
writeup
CVE-2026-8697HIGH29 May 2026
Improper Authentication Rate Limiting on TP-Link's Archer C64
41RISK
open
GitHub PoC
YAMCS yamcs-core < 5.12.7 lacks rate limiting on POST /auth/token. An unauthenticated attacker can perform unlimited brute-force attempts against any account. Never returns HTTP 429. Fixed in 5.12.7.
CVE-2026-44596MEDIUM29 May 2026
Yamcs: No Rate Limiting on Authentication Endpoint
30RISK
open
VulnCheck XDB
initial-access
CVE-2025-24893CRITICALunder attack29 May 2026
Remote code execution as guest via SolrSearchMacros request in xwiki
100RISK
open
GitHub PoC26
Proof-of-concept script to leverage the PAN-OS GlobalProtect authentication bypass CVE-2026-0257
CVE-2026-0257HIGHunder attack29 May 2026
PAN-OS: GlobalProtect Authentication Bypass Vulnerabilities
100RISK
open
Exploit-DB
MikroORM 7.0.13 - SQL Injection
CVE-2026-44680HIGHwebappsmultiple29 May 2026
MikroORM: SQL injection via runtime-controlled identifiers and JSON-path keys
41RISK
open
Exploit-DB
Linux Kernel - Local Privilege Escalation
CVE-2026-46300HIGHlocallinux29 May 2026
net: skbuff: preserve shared-frag marker during coalescing
41RISK
open
GitHub PoC2
akashsingh0454/CVE-2026-0257-PoC
CVE-2026-0257HIGHunder attack29 May 2026
PAN-OS: GlobalProtect Authentication Bypass Vulnerabilities
100RISK
open
Exploit-DB
Linux Kernel - Local Privilege Escalation
CVE-2026-43284HIGHlocallinux29 May 2026
xfrm: esp: avoid in-place decrypt on shared skb frags
78RISK
open
GitHub PoC
# CVE-2026-44595 YAMCS Unauthorized User Enumeration via IAM API
CVE-2026-44595MEDIUM29 May 2026
Yamcs: Unauthorized user enumeration via IAM API endpoints
30RISK
open
VulnCheck XDB
initial-access
CVE-2024-47176MEDIUM29 May 2026
cups-browsed binds to `INADDR_ANY:631`, trusting any packet from any source
60RISK
open
Exploit-DB
CubeCart < 6.7.0 - Reflected Cross-Site Scripting (XSS) (Unauthenticated)
CVE-2026-44376MEDIUMwebappsmultiple29 May 2026
CubeCart: Reflected XSS in Store Search Bar
33RISK
open
GitHub PoC
Exploit de Execução Remota de Código (RCE) no XWiki
CVE-2025-24893CRITICALunder attack29 May 2026
Remote code execution as guest via SolrSearchMacros request in xwiki
100RISK
open
Exploit-DB
ZTE Routers - Unauthenticated Denial of Service
CVE-2026-34473HIGHlocalmultiple29 May 2026
Unauthenticated DoS in ZTE H8102E, H168N, H167A, H199A, H288A, H198A, H267A, H267N, H268A, H388X, H196A, H369A, H268N, H
41RISK
open
Exploit-DB
Wing FTP Server 8.1.3 - Authenticated Remote Code Execution
CVE-2026-44403HIGHremotemultiple29 May 2026
Wing FTP Server < 8.1.3 Authenticated Remote Code Execution via Session Serialization
41RISK
open
VulnCheck XDB
initial-access
CVE-2026-0257HIGHunder attack29 May 2026
PAN-OS: GlobalProtect Authentication Bypass Vulnerabilities
100RISK
open
Exploit-DB
ZTE ZXHN H188A V6 - Authentication Bypass
CVE-2026-34472HIGH29 May 2026
Unauthenticated credential disclosure in the wizard interface in ZTE ZXHN H188A V6.0.10P2_TE and V6.0.10P3N3_TE allows u
41RISK
open
GitHub PoC
LuizHenz/PoC-CVE-2025-55182
CVE-2025-55182CRITICALunder attackransomware29 May 2026
A pre-authentication remote code execution vulnerability exists in React Server Components versions 19.0.0, 19.1.0, 19.1
100RISK
open
Exploit-DB
ZTE H298A / H108N - Unauthenticated Credential Exposure
CVE-2026-34474HIGHlocalmultiple29 May 2026
Sensitive data exposure leading to admin/WLAN credential leak in ZTE ZXHN H298A 1.1 and H108N 2.6. A crafted request to
46RISK
open
Exploit-DB
Linux Kernel - Local Privilege Escalation
CVE-2026-43500HIGHlocallinux29 May 2026
rxrpc: Also unshare DATA/RESPONSE packets when paged frags are present
78RISK
open
GitHub PoC
CVE-2026-40564: SSRF via FlinkSessionJob jarURI in apache/flink-kubernetes-operator. Self-contained reproducer that runs on a local kind cluster with one make command.
CVE-2026-40564MEDIUM29 May 2026
Apache Flink Kubernetes Operator: Server-Side Request Forgery and local file access in Kubernetes Operator
33RISK
open
Exploit-DB
Quick Playground for WordPress 1.3.1 - Unauthenticated Remote Code Execution
CVE-2026-1830CRITICAL29 May 2026
Quick Playground <= 1.3.1 - Missing Authorization to Unauthenticated Arbitrary File Upload
48RISK
open
GitHub PoC
An LDAP injection vulnerability exists in org.yamcs.security.LdapAuthModule. The username parameter is inserted directly into LDAP search filters without RFC 4515 escaping, allowing authentication bypass.
CVE-2026-42568MEDIUM29 May 2026
Yamcs Vulnerable to LDAP Injection in LdapAuthModule
33RISK
open
previouspage 40 / 2,371next

We index only the public link to the proof of concept — we never host or redistribute exploitation code. Sources: PoC-in-GitHub, Exploit-DB, Nuclei, Metasploit and VulnCheck XDB. A public PoC existing does not mean the flaw is exploitable in your environment.