Publicly Disclosed
PoC Exploits

🔴 Alway take caution when working with PoC Exploits 🔴

Discovered just now...

PoC for CVE-2026-41940

WebprosCpanel🟣 EPSS 28%9.3CRITICAL
Authentication Bypass Vulnerability in cPanel and WHM

The affected versions of cPanel and WHM contain a serious authentication bypass flaw in the login flow. This vulnerability enables unauthenticated remote attackers to bypass authentication mechanisms, allowing them to gain unauthorized access to the control panel. Users of the specified versions ...

PoC for CVE-2026-31431

LinuxLinux7.8HIGH
Vulnerability in Linux Kernel Affecting Crypto Operations

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

Discovered 40 minutes ago

PoC for CVE-2026-41940

WebprosCpanel🟣 EPSS 28%9.3CRITICAL
Authentication Bypass Vulnerability in cPanel and WHM

The affected versions of cPanel and WHM contain a serious authentication bypass flaw in the login flow. This vulnerability enables unauthenticated remote attackers to bypass authentication mechanisms, allowing them to gain unauthorized access to the control panel. Users of the specified versions ...

Discovered 1 hour ago

PoC for CVE-2026-31431

LinuxLinux7.8HIGH
Vulnerability in Linux Kernel Affecting Crypto Operations

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

PoC for CVE-2026-31431

LinuxLinux7.8HIGH
Vulnerability in Linux Kernel Affecting Crypto Operations

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

Discovered 4 hours ago

PoC for CVE-2026-31431

LinuxLinux7.8HIGH
Vulnerability in Linux Kernel Affecting Crypto Operations

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

PoC for CVE-2026-31431

LinuxLinux7.8HIGH
Vulnerability in Linux Kernel Affecting Crypto Operations

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

PoC for CVE-2026-31431

LinuxLinux7.8HIGH
Vulnerability in Linux Kernel Affecting Crypto Operations

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

PoC for CVE-2026-31431

LinuxLinux7.8HIGH
Vulnerability in Linux Kernel Affecting Crypto Operations

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

Discovered 5 hours ago

PoC for CVE-2026-41940

WebprosCpanel🟣 EPSS 28%9.3CRITICAL
Authentication Bypass Vulnerability in cPanel and WHM

The affected versions of cPanel and WHM contain a serious authentication bypass flaw in the login flow. This vulnerability enables unauthenticated remote attackers to bypass authentication mechanisms, allowing them to gain unauthorized access to the control panel. Users of the specified versions ...

Discovered 6 hours ago

PoC for CVE-2026-31431

LinuxLinux7.8HIGH
Vulnerability in Linux Kernel Affecting Crypto Operations

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

PoC for CVE-2026-41940

WebprosCpanel🟣 EPSS 28%9.3CRITICAL
Authentication Bypass Vulnerability in cPanel and WHM

The affected versions of cPanel and WHM contain a serious authentication bypass flaw in the login flow. This vulnerability enables unauthenticated remote attackers to bypass authentication mechanisms, allowing them to gain unauthorized access to the control panel. Users of the specified versions ...

Discovered 7 hours ago

PoC for CVE-2026-31431

LinuxLinux7.8HIGH
Vulnerability in Linux Kernel Affecting Crypto Operations

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

Discovered 8 hours ago

PoC for CVE-2026-31431

LinuxLinux7.8HIGH
Vulnerability in Linux Kernel Affecting Crypto Operations

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

PoC for CVE-2026-31431

LinuxLinux7.8HIGH
Vulnerability in Linux Kernel Affecting Crypto Operations

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

PoC for CVE-2026-7599

DayooounHWPx-mcp5.3MEDIUM
Path Traversal Vulnerability in Dayoooun hwpx-mcp Software

A vulnerability has been identified in the Dayoooun hwpx-mcp software version 0.2.0, specifically within the MCP Interface's save_document, export_to_text, and export_to_html functions. This flaw allows an attacker to manipulate the argument output_path, leading to path traversal issues. As a res...

Discovered 9 hours ago

PoC for CVE-2026-7597

Mem0aiMem05.3MEDIUM
Deserialization Vulnerability in mem0ai mem0 Software

A deserialization vulnerability exists in the mem0ai mem0 software, specifically affecting versions up to 1.0.11. The issue arises within the pickle.load and pickle.dump functions located in mem0/vector_stores/faiss.py. Attackers can exploit this vulnerability remotely, allowing for unauthorized ...

PoC for CVE-2026-41940

WebprosCpanel🟣 EPSS 28%9.3CRITICAL
Authentication Bypass Vulnerability in cPanel and WHM

The affected versions of cPanel and WHM contain a serious authentication bypass flaw in the login flow. This vulnerability enables unauthenticated remote attackers to bypass authentication mechanisms, allowing them to gain unauthorized access to the control panel. Users of the specified versions ...

PoC for CVE-2026-31431

LinuxLinux7.8HIGH
Vulnerability in Linux Kernel Affecting Crypto Operations

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

PoC for CVE-2026-7596

NextlevelbuilderUi-ux-pro-max-skill5.3MEDIUM
Cross-Site Scripting Exposure in Nextlevelbuilder Slide Generator C...

A vulnerability exists in the Slide Generator component of Nextlevelbuilder's ui-ux-pro-max-skill up to version 2.5.0, specifically within the data.get function located in generate-slide.py. This flaw allows for remote cross-site scripting (XSS) attacks, enabling malicious actors to manipulate da...

PoC for CVE-2026-31431

LinuxLinux7.8HIGH
Vulnerability in Linux Kernel Affecting Crypto Operations

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

PoC for CVE-2026-7595

NextlevelbuilderUi-ux-pro-max-skill5.3MEDIUM
Code Injection Vulnerability in Nextlevelbuilder UI-UX-Pro-Max-Skil...

A code injection vulnerability was identified in the Nextlevelbuilder UI-UX-Pro-Max-Skill plugin, specifically within the Tailwind Config Generator component. This issue affects versions up to 2.5.0, where improper handling in the _format_plugins function of the tailwind_config_gen.py file allows...

Discovered 10 hours ago

PoC for CVE-2026-7594

Flux159Mcp-game-asset-gen6.9MEDIUM
Path Traversal Vulnerability in Flux159 MCP Game Asset Generator

A path traversal vulnerability exists in the image_to_3d_async function within the MCP Interface of Flux159's mcp-game-asset-gen version 0.1.0. This issue arises from improper handling of the statusFile argument, allowing attackers to manipulate file paths. Without adequate input validation, this...

PoC for CVE-2026-31431

LinuxLinux7.8HIGH
Vulnerability in Linux Kernel Affecting Crypto Operations

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

PoC for CVE-2026-7593

Sunwood-ai-labsCommand-executor-mcp-s...6.9MEDIUM
Command Injection Vulnerability in Sunwood-ai-labs Command-Executor...

A security vulnerability has been identified in the Sunwood-ai-labs command-executor-mcp-server, specifically in version 0.1.0 and earlier. This flaw resides in the execute_command function located in src/index.ts of the MCP Interface component. The vulnerability allows for potential OS command i...

PoC for CVE-2026-31431

LinuxLinux7.8HIGH
Vulnerability in Linux Kernel Affecting Crypto Operations

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

PoC for CVE-2026-7592

ItsourcecodeCourier Management System6.9MEDIUM
SQL Injection Vulnerability in Itsourcode Courier Management System

A vulnerability has been discovered in the Itsourcode Courier Management System version 1.0, specifically within the /edit_staff.php file. This flaw allows attackers to manipulate the ID argument, leading to SQL injection attacks. Consequently, an unauthorized user can execute remote queries agai...

Discovered 11 hours ago

PoC for CVE-2026-31431

LinuxLinux7.8HIGH
Vulnerability in Linux Kernel Affecting Crypto Operations

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

PoC for CVE-2026-31431

LinuxLinux7.8HIGH
Vulnerability in Linux Kernel Affecting Crypto Operations

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

PoC for CVE-2026-7591

TimbroddinAstro-mcp-server5.3MEDIUM
SQL Injection Vulnerability in TimBroddin Astro MCP Server

A security flaw in the TimBroddin astro-mcp-server, specifically within the MCP Tool Query Construction component, allows for an SQL injection via crafted parameters in the request. An attacker can exploit this vulnerability remotely by manipulating the 'request.params.arguments' argument, which ...

PoC for CVE-2026-7590

Eyal-gorP 69 Branch Monkey Mcp6.9MEDIUM
OS Command Injection Vulnerability in Eyal-Gor p_69_branch_monkey_m...

A critical OS command injection vulnerability exists in the Eyal-Gor p_69_branch_monkey_mcp component, particularly within the Preview Endpoint's advanced.py file. By manipulating the 'dev_script' argument, attackers can execute arbitrary commands on the host system remotely. This vulnerability h...

Discovered 12 hours ago

PoC for CVE-2026-7589

GhantakiranSplunk-mcp-integration6.9MEDIUM
Path Traversal Vulnerability in CSV Export of Ghantakiran Splunk MC...

A vulnerability exists in the CSV Export function of Ghantakiran's Splunk MCP Integration, specifically within the create_csv_export function of the csv_export.py file. This vulnerability arises from improper handling of the job_name argument, allowing an attacker to exploit this weakness to perf...

PoC for CVE-2026-31431

LinuxLinux7.8HIGH
Vulnerability in Linux Kernel Affecting Crypto Operations

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

PoC for CVE-2026-7588

GgerveCoding-standards-mcp6.9MEDIUM
Path Traversal Vulnerability in ggerve Coding Standards-MCP Product

A path traversal vulnerability exists in the ggerve coding-standards-mcp product, specifically in the get_style_guide/get_best_practices function within the server.py file. The flaw arises from improper handling of the 'Language' argument, allowing attackers to traverse the file system remotely a...

Discovered 13 hours ago

PoC for CVE-2026-31431

LinuxLinux7.8HIGH
Vulnerability in Linux Kernel Affecting Crypto Operations

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

PoC for CVE-2026-7587

Open5GSOpen5gs5.3MEDIUM
Denial of Service Vulnerability in Open5GS AMF Component

A vulnerability in the Open5GS AMF component, specifically in the function amf_nsmf_pdusession_handle_update_sm_context located in /src/amf/nsmf-handler.c, has been identified. This issue allows remote attackers to trigger a denial of service condition. The vulnerability affects all versions of O...

PoC for CVE-2026-31431

LinuxLinux7.8HIGH
Vulnerability in Linux Kernel Affecting Crypto Operations

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

Discovered 14 hours ago

PoC for CVE-2026-41940

WebprosCpanel🟣 EPSS 28%9.3CRITICAL
Authentication Bypass Vulnerability in cPanel and WHM

The affected versions of cPanel and WHM contain a serious authentication bypass flaw in the login flow. This vulnerability enables unauthenticated remote attackers to bypass authentication mechanisms, allowing them to gain unauthorized access to the control panel. Users of the specified versions ...

PoC for CVE-2026-7586

Open5GSOpen5gs5.3MEDIUM
Denial of Service Vulnerability in Open5GS AMF Component by Open5GS

A vulnerability has been discovered in Open5GS versions up to 2.7.7, specifically within the AMF component's function ogs_id_get_value located in /src/amf/nudm-handler.c. This flaw can be exploited to execute remote denial of service attacks, causing disruptions in service. The exploit has been p...

Discovered 15 hours ago

PoC for CVE-2026-7585

Open5GSOpen5gs5.3MEDIUM
Denial of Service Vulnerability in Open5GS AMF Component

A vulnerability exists within the Open5GS AMF component that affects the function amf_nudm_sdm_handle_provisioned in the file /src/amf/nudm-handler.c. By executing a specific manipulation, an attacker can remotely trigger a denial of service condition, rendering the affected services inoperative....

PoC for CVE-2026-7583

Open5GS CommunityOpen5gs5.3MEDIUM
Denial of Service Vulnerability in Open5GS by Open5GS Community

A vulnerability has been identified in Open5GS up to version 2.7.7 that affects the BSF component. Specifically, the flaw lies in the function bsf_sess_find_by_ipv6prefix within the file /src/bsf/context.c. This vulnerability can be exploited remotely by manipulating the ipv6Prefix argument, lead...

PoC for CVE-2026-31431

LinuxLinux7.8HIGH
Vulnerability in Linux Kernel Affecting Crypto Operations

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

Discovered 16 hours ago

PoC for CVE-2026-31431

LinuxLinux7.8HIGH
Vulnerability in Linux Kernel Affecting Crypto Operations

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

PoC for CVE-2026-7582

Academysoftwarefo...Openimageio4.8MEDIUM
Out-of-Bounds Write Vulnerability in OpenImageIO by Academy Softwar...

A vulnerability has been identified in the Academy Software Foundation's OpenImageIO, specifically within the DDS Image Handler component. This issue arises from an out-of-bounds write condition found in the src/dds.imageio/ddsinput.cpp file. Successful exploitation requires local access, and the...

Discovered 17 hours ago

PoC for CVE-2026-31431

LinuxLinux7.8HIGH
Vulnerability in Linux Kernel Affecting Crypto Operations

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

PoC for CVE-2026-7581

Alexta69Metube5.3MEDIUM
CORS Policy Vulnerability in alexta69 MeTube Product

A security vulnerability has been identified in the alexta69 MeTube application, specifically in the CORS Policy implementation within the app/main.py file. This flaw allows for a permissive cross-domain policy that can unintentionally trust unverified domains, potentially exposing users to remot...

Discovered 18 hours ago

PoC for CVE-2026-31431

LinuxLinux7.8HIGH
Vulnerability in Linux Kernel Affecting Crypto Operations

A vulnerability has been identified in the Linux kernel's crypto subsystem, specifically within the algif_aead component. This issue arises from an unnecessary complexity in operating in-place, which has been reverted for improved security and performance. The change eliminates the need for in-pl...

Discovered 19 hours ago

PoC for CVE-2026-7579

AstrbotdevsAstrbot6.9MEDIUM
Dashboard Vulnerability in AstrBot by AstrBotDevs

A significant security flaw has been identified in the AstrBot application, specifically within the dashboard component located in astrbot/dashboard/routes/auth.py. This vulnerability arises from hard-coded credentials, which could potentially allow unauthorized access to sensitive functionalitie...

PoC for CVE-2026-41940

WebprosCpanel🟣 EPSS 28%9.3CRITICAL
Authentication Bypass Vulnerability in cPanel and WHM

The affected versions of cPanel and WHM contain a serious authentication bypass flaw in the login flow. This vulnerability enables unauthenticated remote attackers to bypass authentication mechanisms, allowing them to gain unauthorized access to the control panel. Users of the specified versions ...

PoC for CVE-2026-7578

MacCMSMaccms Pro5.1MEDIUM
Unrestricted Upload Vulnerability in MacCMS Pro by MacCMS

A vulnerability has been identified in MacCMS Pro, specifically affecting the Plugin Installation Handler's 'install' function. This weakness allows for unrestricted file uploads via manipulation of the '/admi.php/admin/addon/add.html' file. Attackers can exploit this vulnerability to upload any ...