Public exploitation
Exploit catalog
Every public exploit we catalog, in one index. Search by CVE, exploit name or technology — and see, right beside it, what the flaw is actually worth: severity, exploitation probability, and whether it’s already under attack.
71,062cataloged exploits
31,617CVEs with public exploitation
0lab-tested
AllExploit-DB 22,467Referência 19,791GitHub PoC 13,086VulnCheck XDB 8,069Nuclei 4,187Metasploit 3,462✓ verified onlyrecentpopularrisk
13,086 exploits
GitHub PoC
Chequeo y Fix de la vulnerabilidad "pedit COW"
net/sched: fix pedit partial COW leading to page cache corruption
41RISK
open ↗GitHub PoC★ 1
CVE-2025-45422: Proximus b-box UPnP Persistence & Access Control Bypass
Incorrect access control in Proximus b-box v8c.725A allows authenticated attackers to bypass normal restrictions and mak
41RISK
open ↗GitHub PoC
CVE-2026-8037 - Draft
OS Command Injection Remote Code Execution Vulnerability in Progress LoadMaster, ECS Connection Manager, Object Scale Connection Manager & MOVEit WAF
75RISK
open ↗GitHub PoC
POC for CVE-2026-48907
Joomla Extension - joomlacontenteditor.net - Remote Code Execution in JCE extension for Joomla < 2.9.99.5
100RISK
open ↗GitHub PoC
Defensive validation of CVE-2026-46331 / pedit COW with auditd, AppArmor, mitigation comparison and detection logic.
net/sched: fix pedit partial COW leading to page cache corruption
41RISK
open ↗GitHub PoC★ 1
CVE-2026-43284 - CVE-2026-43500 - CVE-2026-46300 Variant of dirtyfrag exploit
net: skbuff: preserve shared-frag marker during coalescing
41RISK
open ↗GitHub PoC
CVE-2026-46817 - Draft
Vulnerability in the Oracle Payments product of Oracle E-Business Suite (component: File Transmission). Supported versi
78RISK
open ↗GitHub PoC
rootdirective-sec/CVE-2026-55255-Lab
Langflow: IDOR Vulnerability in `/api/v1/responses` Endpoint Allows Authenticated Attackers to Access Another User's Flow
41RISK
open ↗GitHub PoC
CVE-2026-44789 — n8n <1.123.43 HTTP Request pagination prototype pollution to RCE (NODE_OPTIONS runner-spawn gadget). Lab + automated PoC, verified e2e.
n8n: HTTP Request Node Pagination Prototype Pollution to RCE
48RISK
open ↗GitHub PoC
Safari 跨域读取视频
A cross-origin issue was addressed with improved tracking of security origins. This issue is fixed in Safari 26.5.2, iOS
33RISK
open ↗GitHub PoC
PoC exploit for CVE-2026-10580 - Authentication Bypass in Hippoo Mobile App for WooCommerce <= 1.9.4 leading to Admin Account Takeover
Hippoo Mobile App for WooCommerce <= 1.9.4 - Unauthenticated Authentication Bypass to Administrator Account Takeover via REST API
63RISK
open ↗GitHub PoC★ 14
Linux kernel FUSE readdir cache out-of-bounds write (CVE-2026-31694): a malicious FUSE server overflows a page-cache page by 24 bytes. PoC plus an unprivileged local-root exploit via /etc/passwd page-cache corruption. Run only inside a VM.
fuse: reject oversized dirents in page cache
41RISK
open ↗GitHub PoC
CVE-2026-46490 — samlify <2.13.0 SAML AttributeValue XML injection -> signed-assertion privilege escalation. Self-contained PoC, verified e2e.
samlify: XML Injection in AttributeValue Allows Privilege Escalation in Signed SAML Assertions
41RISK
open ↗GitHub PoC
Defensive validation of CVE-2026-46331 / pedit COW with auditd, AppArmor, mitigation comparison and detection logic.
net/sched: fix pedit partial COW leading to page cache corruption
41RISK
open ↗GitHub PoC
CVE-2026-53753 — Crawl4AI <0.8.7 unauthenticated RCE (AST sandbox escape via gi_frame.f_back). Lab + PoC, verified e2e.
Crawl4AI: AST Sandbox Escape via gi_frame.f_back Chain - Pre-Auth RCE in Docker API
48RISK
open ↗GitHub PoC
drupal-postgresql-rce
Drupal core - Highly critical - SQL injection - SA-CORE-2026-004
100RISK
open ↗GitHub PoC★ 1
CVE-2026-46817
Vulnerability in the Oracle Payments product of Oracle E-Business Suite (component: File Transmission). Supported versi
78RISK
open ↗GitHub PoC
xitexploiter96-dot/CVE-2026-48907-
Joomla Extension - joomlacontenteditor.net - Remote Code Execution in JCE extension for Joomla < 2.9.99.5
100RISK
open ↗GitHub PoC
CVE-2026-56782 — Gorse <0.5.10 unauthenticated DB dump/restore (admin_api_key fail-open). Lab + PoC, verified e2e.
Gorse - Unauthenticated Database Dump and Restore via /api/dump and /api/restore Endpoints
63RISK
open ↗GitHub PoC★ 2
CVE-2026-55200 - Critical libssh2 Remote Code Execution Vulnerability
libssh2 - Out-of-Bounds Write via Unchecked packet_length in transport.c
48RISK
open ↗GitHub PoC
cve-2026-48907 scanner
Joomla Extension - joomlacontenteditor.net - Remote Code Execution in JCE extension for Joomla < 2.9.99.5
100RISK
open ↗GitHub PoC
cve-2026-46331-audit script
net/sched: fix pedit partial COW leading to page cache corruption
41RISK
open ↗GitHub PoC
POC for CVE-2026-20253
Unauthenticated Arbitrary File Creation and Truncation in a PostgreSQL Sidecar Service Endpoint in Splunk Enterprise
100RISK
open ↗GitHub PoC★ 1
CVE-2026-48907 – Joomla JCE Unauthenticated Remote Code Execution (RCE)
Joomla Extension - joomlacontenteditor.net - Remote Code Execution in JCE extension for Joomla < 2.9.99.5
100RISK
open ↗GitHub PoC★ 1
rootdirective-sec/CVE-2026-28496-Lab
FOSSBilling: Server-side template injection in Twig template rendering enables information disclosure and RCE
63RISK
open ↗GitHub PoC
DirtyClone - local privilege escalation (LPE) proof-of-concept targeting a kernel/XFRM-related vulnerability described in the source as CVE-2026-43503
net: skbuff: propagate shared-frag marker through frag-transfer helpers
41RISK
open ↗GitHub PoC★ 1
iCagenda Unauthenticated File Upload to RCE
Joomla Extension - icagenda.com - Remote Code Execution in iCaganda extension for Joomla < 4.0.8/3.9.15
78RISK
open ↗GitHub PoC
HutTwoThreeFour/CVE-2026-5562-Exploit
provectus kafka-ui Endpoint testexecutions validateAccess code injection
33RISK
open ↗GitHub PoC★ 21
Python Proof of Concept for DirtyClone (CVE-2026-43503) - Linux kernel LPE via page-cache corruption
net: skbuff: propagate shared-frag marker through frag-transfer helpers
41RISK
open ↗GitHub PoC
POC for CVE-2026-41179
RClone: Unauthenticated operations/fsinfo allows attacker-controlled backend instantiation and local command execution
63RISK
open ↗We index only the public link to the proof of concept — we never host or redistribute exploitation code. Sources: PoC-in-GitHub, Exploit-DB, Nuclei, Metasploit and VulnCheck XDB. A public PoC existing does not mean the flaw is exploitable in your environment.