Public exploitation

Exploit catalog

Every public exploit we catalog, in one index. Search by CVE, exploit name or technology — and see, right beside it, what the flaw is actually worth: severity, exploitation probability, and whether it’s already under attack.

71,062cataloged exploits
31,617CVEs with public exploitation
0lab-tested
71,062 exploits
VulnCheck XDB
initial-access
CVE-2024-36401CRITICALunder attack07 Jul 2026
Remote Code Execution (RCE) vulnerability in evaluating property name expressions in Geoserver
100RISK
open
GitHub PoC1
Stored Cross-Site Scripting (XSS) in osTicket via Vulnerable Bootstrap Tooltip Component
CVE-2026-36214MEDIUM07 Jul 2026
osTicket versions from 1.10 up to 1.17.7 and from 1.18.0 up to 1.18.3 are vulnerable to a stored XSS due to a vulnerable
33RISK
open
GitHub PoC
This is a Proof-of-Concept for the Blink CSS UAF vulnerability tracked as CVE-2026-6300.
CVE-2026-6300HIGH07 Jul 2026
Use after free in CSS in Google Chrome prior to 147.0.7727.101 allowed a remote attacker to execute arbitrary code insid
41RISK
open
VulnCheck XDB
initial-access
CVE-2026-20896CRITICAL07 Jul 2026
Gitea Docker image trusts spoofable reverse-proxy headers by default
48RISK
open
VulnCheck XDB
initial-access
CVE-2026-42271HIGHunder attack07 Jul 2026
LiteLLM: Authenticated command execution via MCP stdio test endpoints
100RISK
open
GitHub PoC9
CVE-2026-20896 Gitea Docker X-WEBAUTH-USER auth bypass checker
CVE-2026-20896CRITICAL07 Jul 2026
Gitea Docker image trusts spoofable reverse-proxy headers by default
48RISK
open
GitHub PoC
Exploitability PoC for CVE-2026-49352 (9router Hardcoded JWT Secret Authentication Bypass)
CVE-2026-49352CRITICAL06 Jul 2026
9Router: Hardcoded Default fallback JWT Secret Allows Authentication Bypass
45RISK
open
VulnCheck XDB
initial-access
CVE-2026-0920CRITICAL06 Jul 2026
LA-Studio Element Kit for Elementor <= 1.5.6.3 - Unauthenticated Privilege Escalation via Backdoor to Administrative User Creation via lakit_bkrole parameter
48RISK
open
GitHub PoC6
jaf0rk/CVE-2026-14382
CVE-2026-14382CRITICAL06 Jul 2026
Insufficient validation of untrusted input in ANGLE in Google Chrome prior to 150.0.7871.46 allowed a remote attacker to
48RISK
open
Exploit-DB
MEmu Android Emulator 9.2.7.0 - Local Privilege Escalation
CVE-2026-36213HIGHlocalwindows06 Jul 2026
An issue in Microvirt MEmu Android Emulator 9.2.7.0 allows a local attacker to escalate privileges via the MemuService.e
41RISK
open
GitHub PoC
HTB "Abducted" write-up. Exploit CVE-2026-4480 (Samba RCE) → SMB wide links → systemd → root. Full methodology and flags.
CVE-2026-4480CRITICAL06 Jul 2026
Samba: samba: remote code execution in printing subsystem via unescaped job description
68RISK
open
Exploit-DB
Pulpy 0.1.1-Beta - Filesystem Sandbox Bypass
CVE-2026-44225CRITICALwebappsmultiple06 Jul 2026
Pulpy: Incomplete filesystem sandbox in pulpy.fs bridge allows packaged web apps to read arbitrary user files
48RISK
open
GitHub PoC
Reproducer for CVE-2026-27172: Apache Camel camel-consul ConsulRegistry Java deserialization (RCE)
CVE-2026-27172HIGH06 Jul 2026
Apache Camel: Unsafe Java deserialization in camel-consul ConsulRegistry allows arbitrary code execution via malicious values read from the Consul KV store
41RISK
open
GitHub PoC
Reproducer for CVE-2026-33453: Apache Camel camel-coap header injection to RCE via camel-exec
CVE-2026-33453CRITICAL06 Jul 2026
Apache Camel: CoAP URI Query Parameter to Exchange Header Injection in camel-coap Allows Single-Packet Pre-Auth Remote Code Execution
63RISK
open
GitHub PoC1
Reproducer for CVE-2026-33454: Apache Camel camel-mail header injection to RCE via camel-exec
CVE-2026-33454CRITICAL06 Jul 2026
Apache Camel: Inbound Header Filter Missing in MailHeaderFilterStrategy Allows Remote Code Execution via MIME Header Injection (CVE-2025-30177 Variant)
48RISK
open
GitHub PoC
Reproducer for CVE-2026-40022: Apache Camel camel-platform-http-main authentication bypass on non-root context paths
CVE-2026-40022HIGH06 Jul 2026
Apache Camel Platform HTTP Main: Authentication Bypass on Non-Root Context Paths in camel main runtime
41RISK
open
GitHub PoC
AF_ALG/splice 기반 Linux Page Cache 변조 취약점 분석 및 대응 실습
CVE-2026-31431HIGHunder attack06 Jul 2026
crypto: algif_aead - Revert to operating out-of-place
100RISK
open
GitHub PoC
Rust-based DLL hijacking loader for MobaXterm (CVE-2026-6421) with persistence
CVE-2026-6421HIGH06 Jul 2026
Mobatek MobaXterm Home Edition msimg32.dll uncontrolled search path
41RISK
open
GitHub PoC
HTB_Nexus Penetration Test Report – Comprehensive security assessment documenting credential leakage from Gitea, CVE-2026-38526 exploitation in Krayin CRM, and privilege escalation via Gitea template sync directory traversal. Mapped to MITRE ATT&CK and NSA D3FEND frameworks with actionable remediation roadmap and full evidence appendix.
CVE-2026-38526CRITICAL06 Jul 2026
An authenticated arbitrary file upload vulnerability in the /admin/tinymce/upload endpoint of Webkul Krayin CRM v2.2.x a
48RISK
open
GitHub PoC
Exploit for Authenticated Remote Code Execution (RCE) in Krayin CRM v2.2.x (CVE-2026-38526)
CVE-2026-38526CRITICAL06 Jul 2026
An authenticated arbitrary file upload vulnerability in the /admin/tinymce/upload endpoint of Webkul Krayin CRM v2.2.x a
48RISK
open
VulnCheck XDB
initial-access
CVE-2025-54236CRITICALunder attack06 Jul 2026
Adobe Commerce | Improper Input Validation (CWE-20)
100RISK
open
VulnCheck XDB
initial-access
CVE-2026-24061CRITICALunder attack06 Jul 2026
telnetd in GNU Inetutils through 2.7 allows remote authentication bypass via a "-f root" value for the USER environment
100RISK
open
Exploit-DB
Joomla Extension 4.1.4 - PHP Object injection
CVE-2026-48909CRITICALwebappsphp06 Jul 2026
Joomla Extension - joomshaper.com - PHP Object injection in SP LMS extension for Joomla < 4.1.4
48RISK
open
Exploit-DB
WordPress Plugin WPZOOM Portfolio 1.4.21 - Reflected Cross-Site Scripting (XSS)
CVE-2026-49069HIGHwebappsmultiple06 Jul 2026
WordPress WPZOOM Portfolio plugin <= 1.4.21 - Cross Site Scripting (XSS) vulnerability
41RISK
open
Exploit-DB
KeepInMind 0.8.4.2 - Stored XSS
CVE-2026-9271MEDIUMwebappsmultiple06 Jul 2026
KeepInMind - Dashboard Notes < 0.8.4.2 - Contributor+ Stored XSS
33RISK
open
VulnCheck XDB
initial-access
CVE-2025-55182CRITICALunder attackransomware06 Jul 2026
A pre-authentication remote code execution vulnerability exists in React Server Components versions 19.0.0, 19.1.0, 19.1
100RISK
open
GitHub PoC
OpenBullet2 through version 0.3.2 contains an authentication bypass vulnerability in the API key authentication middleware that allows unauthenticated attackers to gain admin access by supplying an empty X-Api-Key header value.
CVE-2026-25555CRITICAL06 Jul 2026
OpenBullet2 0.3.2 Authentication Bypass via X-Api-Key Header
63RISK
open
GitHub PoC20
imbas007/CVE-2026-48282
CVE-2026-48282CRITICAL06 Jul 2026
ColdFusion | Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') (CWE-22)
68RISK
open
VulnCheck XDB
initial-access
CVE-2026-48908CRITICAL05 Jul 2026
Joomla Extension - joomshaper.com - Remote Code Execution in SP Pagebuilder extension for Joomla < 6.6.2
48RISK
open
VulnCheck XDB
initial-access
CVE-2026-20896CRITICAL05 Jul 2026
Gitea Docker image trusts spoofable reverse-proxy headers by default
48RISK
open
previouspage 8 / 2,369next

We index only the public link to the proof of concept — we never host or redistribute exploitation code. Sources: PoC-in-GitHub, Exploit-DB, Nuclei, Metasploit and VulnCheck XDB. A public PoC existing does not mean the flaw is exploitable in your environment.