Public exploitation

Exploit catalog

Every public exploit we catalog, in one index. Search by CVE, exploit name or technology — and see, right beside it, what the flaw is actually worth: severity, exploitation probability, and whether it’s already under attack.

71,180cataloged exploits
31,691CVEs with public exploitation
0lab-tested
71,180 exploits
GitHub PoC
this little script blocks the new splice-ram-privlilleg ecalation fastly befor the contributers do it ( CVE-2026-31431) (CopyFail fix)
CVE-2026-31431HIGHunder attack13 May 2026
crypto: algif_aead - Revert to operating out-of-place
100RISK
open
Exploit-DB
Ninja Forms Uploads - Unauthenticated PHP File Upload
CVE-2026-0740CRITICAL13 May 2026
Ninja Forms - File Upload <= 3.3.26 - Unauthenticated Arbitrary File Upload
75RISK
open
GitHub PoC
Controlled reproduction of CVE-2017-0144 (EternalBlue) in an isolated AWS EC2 lab — exploit analysis, Wireshark traffic capture, and MITRE ATT&CK mapping
CVE-2017-0144HIGHunder attackransomware13 May 2026
The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows
100RISK
open
GitHub PoC
CVE-2026-44277
CVE-2026-44277CRITICAL13 May 2026
A improper access control vulnerability in Fortinet FortiAuthenticator 8.0.2, FortiAuthenticator 8.0.0, FortiAuthenticat
48RISK
open
VulnCheck XDB
local
CVE-2026-31431HIGHunder attack13 May 2026
crypto: algif_aead - Revert to operating out-of-place
100RISK
open
GitHub PoC3
masjadaan/CVE-2025-29338
CVE-2025-29338MEDIUM13 May 2026
NXP moal.ko Wi-Fi driver 5.1.7.10 FW version from v17.92.1.p149.43 To v17.92.1.p149.157 was discovered to contain a buff
33RISK
open
GitHub PoC
There is a path injection vulnerability in OpenPLC-v3, which arises from the program not performing any validity checks on the file path parameters passed in from the command line. Attackers can read any readable file by constructing malicious paths, posing a risk of information leakage.
CVE-2026-31156MEDIUM13 May 2026
A path injection vulnerability exists in OpenPLC v3 (2c82b0e79c53f8c1f1458eee15fec173400d6e1a) as the binary program com
33RISK
open
Exploit-DB
coreruleset 4.21.0 - Firewall Bypass
CVE-2026-21876CRITICAL13 May 2026
OWASP CRS has multipart bypass using multiple content-type parts
53RISK
open
GitHub PoC1
CVE-2026-8196
CVE-2026-8196MEDIUM13 May 2026
JeecgBoot mLogin Endpoint LoginController.java authorization
33RISK
open
GitHub PoC2
Scanner for the Mini Shai-Hulud npm/PyPI supply chain worm (NHS CC-4781 · CVE-2026-45321). Detects gh-token-monitor persistence, payload artefacts, and attacker commits. Python, Bash, PowerShell.
CVE-2026-45321CRITICALunder attackransomware13 May 2026
Malware in 42 @tanstack/* packages exfiltrates cloud credentials, GitHub tokens, and SSH keys
78RISK
open
GitHub PoC1
Analísis - POC - Mitigación
CVE-2026-31431HIGHunder attack13 May 2026
crypto: algif_aead - Revert to operating out-of-place
100RISK
open
GitHub PoC
CVE-2026-41729 PoC
CVE-2026-41729HIGH13 May 2026
Spring Data REST SpEL Injection via Map Key in JSON Patch
41RISK
open
VulnCheck XDB
local
CVE-2026-43284HIGH13 May 2026
xfrm: esp: avoid in-place decrypt on shared skb frags
78RISK
open
GitHub PoC
A tiny explanation + PoC for CVE-2026-43284
CVE-2026-43284HIGH13 May 2026
xfrm: esp: avoid in-place decrypt on shared skb frags
78RISK
open
GitHub PoC
FrosterDL/CVE-2026-43284
CVE-2026-43284HIGH13 May 2026
xfrm: esp: avoid in-place decrypt on shared skb frags
78RISK
open
VulnCheck XDB
info-leak
CVE-2023-27163MEDIUM12 May 2026
request-baskets up to v1.2.1 was discovered to contain a Server-Side Request Forgery (SSRF) via the component /api/baske
48RISK
open
GitHub PoC
🛡️ One-command scanner for CVE-2026-45321 — TanStack npm supply-chain attack
CVE-2026-45321CRITICALunder attackransomware12 May 2026
Malware in 42 @tanstack/* packages exfiltrates cloud credentials, GitHub tokens, and SSH keys
78RISK
open
GitHub PoC20
azefzafyoussef/CVE-2026-34621
CVE-2026-34621HIGHunder attack12 May 2026
Acrobat Reader | Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') (CWE-1321)
71RISK
open
GitHub PoC1
oen liner CVE-2026-31431 test. Created 'sandbox' on sudo user and tests if ir can escape to root
CVE-2026-31431HIGHunder attack12 May 2026
crypto: algif_aead - Revert to operating out-of-place
100RISK
open
GitHub PoC
Cybersecurity demo exploiting CVE-2026-35455 with automatic API key generation and exfiltration
CVE-2026-35455HIGH12 May 2026
immich has Stored XSS via OCR Text in 360° Panorama Viewer
41RISK
open
VulnCheck XDB
initial-access
CVE-2021-3129CRITICALunder attackransomware12 May 2026
Ignition before 2.5.2, as used in Laravel and other products, allows unauthenticated remote attackers to execute arbitra
100RISK
open
GitHub PoC885
exploit for CVE-2026-42945
CVE-2026-42945CRITICAL12 May 2026
NGINX ngx_http_rewrite_module vulnerability
60RISK
open
GitHub PoC
lamaper/CVE-2026-52200
CVE-2026-52200CRITICAL12 May 2026
An issue in Generic OEM UZ801_v2.1 4G LTE Router V3.4.3 allows a remote attacker to execute arbitrary code via the /ajax
28RISK
open
VulnCheck XDB
initial-access
CVE-2026-41940CRITICALunder attackransomware12 May 2026
WebPros cPanel and WHM Authentication Bypass via Login Flow
100RISK
open
GitHub PoC
Detects CVE-2026-45321 (TanStack supply chain compromise) and Mini Shai-Hulud worm artifacts. Scans node_modules, lockfiles, persistence hooks (Claude Code, VS Code, systemd, LaunchAgent), GitHub workflows, git history, C2 domains, and AI tool configs.
CVE-2026-45321CRITICALunder attackransomware12 May 2026
Malware in 42 @tanstack/* packages exfiltrates cloud credentials, GitHub tokens, and SSH keys
78RISK
open
GitHub PoC1
Detect CVE-2026-45321 Mini Shai-Hulud supply chain compromise — scans for 170 npm + 2 PyPI poisoned packages across TanStack, Mistral AI, UiPath, OpenSearch, Guardrails AI
CVE-2026-45321CRITICALunder attackransomware12 May 2026
Malware in 42 @tanstack/* packages exfiltrates cloud credentials, GitHub tokens, and SSH keys
78RISK
open
GitHub PoC1
Claude Code skill to scan machines for Mini Shai-Hulud (CVE-2026-45321) supply chain worm IOCs
CVE-2026-45321CRITICALunder attackransomware12 May 2026
Malware in 42 @tanstack/* packages exfiltrates cloud credentials, GitHub tokens, and SSH keys
78RISK
open
GitHub PoC2
Dead.Letter CVE-2026-45185 EXIM Vulnerability Detection Script
CVE-2026-45185CRITICAL12 May 2026
Exim before 4.99.3, in certain GnuTLS configurations, has a remotely reachable use-after-free in the BDAT body parsing p
48RISK
open
VulnCheck XDB
initial-access
CVE-2023-4220HIGH12 May 2026
Chamilo LMS Unauthenticated Big Upload File Remote Code Execution
78RISK
open
VulnCheck XDB
initial-access
CVE-2025-2492CRITICAL12 May 2026
An improper authentication control vulnerability exists in AiCloud. This vulnerability can be triggered by a crafted req
48RISK
open
previouspage 60 / 2,373next

We index only the public link to the proof of concept — we never host or redistribute exploitation code. Sources: PoC-in-GitHub, Exploit-DB, Nuclei, Metasploit and VulnCheck XDB. A public PoC existing does not mean the flaw is exploitable in your environment.