Public exploitation

Exploit catalog

Every public exploit we catalog, in one index. Search by CVE, exploit name or technology — and see, right beside it, what the flaw is actually worth: severity, exploitation probability, and whether it’s already under attack.

71,114cataloged exploits
31,649CVEs with public exploitation
0lab-tested
71,114 exploits
GitHub PoC
Proof-of-concept for CVE-2026-43494 (PinTheft): Linux LPE via RDS zerocopy refcount bug + io_uring fixed buffers → SUID page-cache overwrite. Authorized research only.
CVE-2026-43494HIGH25 May 2026
net/rds: reset op_nents when zerocopy page pin fails
41RISK
open
GitHub PoC
Manual, non-Metasploit authenticated Remote Code Execution (RCE) exploit via the browser URL bar for Webmin 1.580 (CVE-2012-2982)
CVE-2012-298225 May 2026
file/show.cgi in Webmin 1.590 and earlier allows remote authenticated users to execute arbitrary commands via an invalid
50RISK
open
GitHub PoC
A proof of concept for CVE 2024 23113 inspired by WatchTowr's article.
CVE-2024-23113CRITICALunder attack25 May 2026
A use of externally-controlled format string in Fortinet FortiOS versions 7.4.0 through 7.4.2, 7.2.0 through 7.2.6, 7.0.
90RISK
open
GitHub PoC
Critical vulnerability in Siemens RuggedCom ROS devices allowing attackers to derive a hidden factory account password from the device MAC address and gain unauthorized administrative access via TELNET, rsh, or serial interfaces. Affects ROS 3.10.x and earlier.
CVE-2012-180325 May 2026
RuggedCom Rugged Operating System (ROS) 3.10.x and earlier has a factory account with a password derived from the MAC Ad
50RISK
open
VulnCheck XDB
info-leak
CVE-2024-34102CRITICALunder attack25 May 2026
XXE can expose crypt key and other secrets granting full admin access
100RISK
open
VulnCheck XDB
denial-of-service
CVE-2026-42945CRITICAL25 May 2026
NGINX ngx_http_rewrite_module vulnerability
60RISK
open
GitHub PoC
CVE-2026-33712 - Typebot <= 3.15.2 Unauthenticated SSRF via isolated-vm sandbox fetch
CVE-2026-33712CRITICAL25 May 2026
TypeBot: Unauthenticated SSRF via isolated-vm fetch in preview chat endpoint bypasses SSRF controls
48RISK
open
GitHub PoC
renewablehacking/CVE-2026-45321-Tanstack
CVE-2026-45321CRITICALunder attackransomware25 May 2026
Malware in 42 @tanstack/* packages exfiltrates cloud credentials, GitHub tokens, and SSH keys
78RISK
open
GitHub PoC
XWiki Platform - CVE-2026-33137 PoC - Unauthenticated XAR Import via REST /wikis/{wikiName}
CVE-2026-33137CRITICAL25 May 2026
XWiki Platform has an Unauthenticated XAR Import via REST /wikis/{wikiName}
48RISK
open
GitHub PoC
CVE-2026-38422 — Remote Code Execution via Combined Buffer Overflows in Tasmota fetch_jpg() (Tasmota <= 15.3.0.3)
CVE-2026-38422HIGH25 May 2026
Buffer Overflow vulnerability in arendst Tasmota v.15.3.0.3 and before allows a remote attacker to execute arbitrary cod
41RISK
open
GitHub PoC
The code for personally reproducing the corresponding vulnerability
CVE-2026-47101HIGH25 May 2026
LiteLLM < 1.83.14 Privilege Escalation via API Key Generation
41RISK
open
GitHub PoC
notthemystery/CVE-2026-20700-POC-that-ll-never-work
CVE-2026-20700HIGHunder attack25 May 2026
A memory corruption issue was addressed with improved state management. This issue is fixed in iOS 26.3 and iPadOS 26.3,
71RISK
open
GitHub PoC
The code for personally reproducing the corresponding vulnerability
CVE-2026-47102HIGH25 May 2026
LiteLLM < 1.83.10 Privilege Escalation via User Update
41RISK
open
VulnCheck XDB
initial-access
CVE-2026-42945CRITICAL25 May 2026
NGINX ngx_http_rewrite_module vulnerability
60RISK
open
GitHub PoC5
CVE-2026-42945 NGINX 堆溢出漏洞扫描与验证工具
CVE-2026-42945CRITICAL25 May 2026
NGINX ngx_http_rewrite_module vulnerability
60RISK
open
GitHub PoC
CVE-2026-38426 — strcpy() Stack Buffer Overflow in Tasmota fetch_jpg() boundary[40] (Tasmota <= 15.3.0.3)
CVE-2026-38426HIGH25 May 2026
Buffer Overflow vulnerability in arendst Tasmota v.15.3.0.3 and before allows a remote attacker to execute arbitrary cod
41RISK
open
GitHub PoC29
CVE-2026-0091, play with an issue in android window management to perform arbitrary code execution in Launcher process from adb
CVE-2026-0091HIGH25 May 2026
In multiple locations, there is a possible way to execute code in the launcher process due to an over-privileged shell u
41RISK
open
GitHub PoC
CVE-2026-38427 — Integer Wraparound → Heap Buffer Overflow in Tasmota fetch_jpg() uint16_t (Tasmota <= 15.3.0.3)
CVE-2026-38427HIGH25 May 2026
An issue in fetch_jpg() in xdrv_10_scripter.ino in Tasmota through 15.3.0.3 allows a remote attacker to cause heap buffe
41RISK
open
VulnCheck XDB
initial-access
CVE-2025-55182CRITICALunder attackransomware25 May 2026
A pre-authentication remote code execution vulnerability exists in React Server Components versions 19.0.0, 19.1.0, 19.1
100RISK
open
VulnCheck XDB
initial-access
CVE-2025-55182CRITICALunder attackransomware25 May 2026
A pre-authentication remote code execution vulnerability exists in React Server Components versions 19.0.0, 19.1.0, 19.1
100RISK
open
GitHub PoC1
Repository for studying the CVE-2026-42945 vulnerability in nginx < 1.30
CVE-2026-42945CRITICAL25 May 2026
NGINX ngx_http_rewrite_module vulnerability
60RISK
open
GitHub PoC
Multi-language PoC (Python · Go · JS · C) and technical documentation for CVE-2025-63353, a critical predictable-default-PSK vulnerability in FiberHome HG6145F1 GPON ONT devices.
CVE-2025-63353CRITICAL25 May 2026
A vulnerability in FiberHome GPON ONU HG6145F1 RP4423 allows the device's factory default Wi-Fi password (WPA/WPA2 pre-s
48RISK
open
GitHub PoC45
PoC for CVE-2026-28990, an ImageIO bug patched in iOS/macOS 26.5
CVE-2026-28990HIGH25 May 2026
The issue was addressed with improved memory handling. This issue is fixed in iOS 26.5 and iPadOS 26.5, macOS Sequoia 15
41RISK
open
GitHub PoC2
CVE-2026-36239 | Authenticated RCE in PbootCMS ≤3.2.12
CVE-2026-36239MEDIUM25 May 2026
PbootCMS v.3.2.11 contains a code injection vulnerability in its site configuration functionality
33RISK
open
GitHub PoC7
Drupal CVE-2026-9082 Blind SQL Injection Checker
CVE-2026-9082CRITICALunder attack24 May 2026
Drupal core - Highly critical - SQL injection - SA-CORE-2026-004
100RISK
open
GitHub PoC3
CVE-2026-41096: Heap Overflow in the Windows DNS Client
CVE-2026-41096CRITICAL24 May 2026
Windows DNS Client Remote Code Execution Vulnerability
48RISK
open
GitHub PoC
Tracking the nginx CVE-2026-9256 rewrite-module heap overflow
CVE-2026-9256CRITICAL24 May 2026
NGINX ngx_http_rewrite_module vulnerability
48RISK
open
VulnCheck XDB
initial-access
CVE-2025-55182CRITICALunder attackransomware24 May 2026
A pre-authentication remote code execution vulnerability exists in React Server Components versions 19.0.0, 19.1.0, 19.1
100RISK
open
VulnCheck XDB
initial-access
CVE-2025-54236CRITICALunder attack24 May 2026
Adobe Commerce | Improper Input Validation (CWE-20)
100RISK
open
VulnCheck XDB
initial-access
CVE-2026-39987CRITICALunder attack24 May 2026
marimo Affected by Pre-Auth Remote Code Execution via Terminal WebSocket Authentication Bypass
100RISK
open
previouspage 45 / 2,371next

We index only the public link to the proof of concept — we never host or redistribute exploitation code. Sources: PoC-in-GitHub, Exploit-DB, Nuclei, Metasploit and VulnCheck XDB. A public PoC existing does not mean the flaw is exploitable in your environment.