Publicly Disclosed
PoC Exploits

🔴 Alway take caution when working with PoC Exploits 🔴

Discovered just now...

PoC for CVE-2026-46242

LinuxLinux7.8HIGH
Eventpoll Memory Management Flaw in Linux Kernel

A memory management vulnerability in the Linux kernel's eventpoll subsystem allows for a misuse of freed memory, resulting from improper handling of file structures during critical operations. The flaw occurs when an ep_remove operation clears a file pointer under lock while allowing concurrent o...

PoC for CVE-2026-12277

WordPressFrontend File Manager ...8.7HIGH
Unauthorized File Deletion in Frontend File Manager Plugin by WordP...

The Frontend File Manager Plugin for WordPress, version 23.6, is susceptible to a vulnerability that allows unauthenticated users to delete arbitrary files on the server without proper validation of file paths derived from user input. This issue is particularly concerning when guest upload mode i...

Discovered 3 hours ago

PoC for CVE-2025-36911

GoogleAndroid7.1HIGH
Logic Flaw in Key-Based Pairing Affects Android Devices

The vulnerability arises from a logic error in the key-based pairing process of certain Android devices. This flaw may allow an attacker in proximity to exploit the issue and gain unauthorized access to sensitive user information, including conversations and location data. Notably, the attack doe...

PoC for CVE-2022-46364

ApacheApache Cxf9.8CRITICAL
Apache CXF SSRF Vulnerability

A SSRF vulnerability in parsing the href attribute of XOP:Include in MTOM requests in versions of Apache CXF before 3.5.5 and 3.4.10 allows an attacker to perform SSRF style attacks on webservices that take at least one parameter of any type. 

Discovered 4 hours ago

PoC for CVE-2025-64459

DjangoprojectDjango🟣 EPSS 19%9.1CRITICAL
SQL Injection Vulnerability in Django Software by Django

An SQL injection vulnerability exists in specific versions of Django prior to 5.1.14, 4.2.26, and 5.2.8. Through the use of specially crafted dictionaries, attackers can exploit the `QuerySet.filter()`, `QuerySet.exclude()`, and `QuerySet.get()` methods, as well as the `Q()` class, when utilizing...

PoC for CVE-2026-48611

PHPbbPHPbb9.8CRITICAL
Improper Authentication in OAuth Implementation Affects phpBB Software

The OAuth implementation in phpBB has a critical flaw where improper authentication checks can lead to account hijacking. This vulnerability is particularly concerning as it may allow unauthorized users to gain access to accounts even if OAuth is not configured or enabled. Default installations a...

Discovered 6 hours ago

PoC for CVE-2023-31488

CiscoIronport Email Securit...9.8CRITICAL
Segmentation Fault Vulnerability in Hyland Perceptive Filters for C...

A vulnerability has been identified in Hyland Perceptive Filters versions prior to December 8, 2023. This issue affects products like Cisco IronPort Email Security Appliance Software and Cisco Secure Email Gateway, along with several non-Cisco products. Attackers can exploit this flaw by crafting...

PoC for CVE-2023-20075

CiscoCisco Secure Email6.7MEDIUM
Remote Command Execution Vulnerability in Cisco Secure Email Gateway

A vulnerability exists in the command-line interface (CLI) of Cisco Secure Email Gateway due to improper input validation. This security flaw allows authenticated, remote attackers to inject malicious operating system commands into legitimate commands. A successful exploitation of this vulnerabil...

PoC for CVE-2023-20009

CiscoCisco Secure Email7.2HIGH
Privilege Escalation in Cisco Secure Email Gateway and Manager

A vulnerability exists within the Web UI and administrative CLI of Cisco Secure Email Gateway (ESA) and Cisco Secure Email and Web Manager (SMA). This security flaw enables both authenticated local and remote attackers to escalate their privileges, potentially gaining root access on the device. T...

PoC for CVE-2023-0090

ProofpointEnterprise Protection9.8CRITICAL
Proofpoint Enterprise Protection webservices unauthenticated RCE

The webservices in Proofpoint Enterprise Protection (PPS/POD) are susceptible to a vulnerability that enables unauthorized users to execute remote code through 'eval injection'. Exploitation of this vulnerability necessitates network access to the webservices API; however, such access is typicall...

PoC for CVE-2023-0089

ProofpointEnterprise Protection8.8HIGH
Proofpoint Enterprise Protection webutils authenticated RCE

The webutils component of Proofpoint Enterprise Protection is affected by a vulnerability that permits an authenticated user to leverage eval injection for remote code execution. This vulnerability affects all versions up to and including 8.20.0, potentially allowing malicious actions by users wi...

Discovered 7 hours ago

PoC for CVE-2026-14762

Code-projectsHotel And Tourism Rese...6.9MEDIUM
SQL Injection Vulnerability in Hotel and Tourism Reservation by Cod...

A significant SQL injection vulnerability has been identified in the Hotel and Tourism Reservation application by Code-Projects, specifically within the Room Management Page component. The vulnerability arises from the manipulation of an argument within the /admin/rooms.php file, allowing an atta...

Discovered 8 hours ago

PoC for CVE-2026-58473

TopoteretesCognee9.3CRITICAL
Improper Access Control in Cognee by Topoteretes

Cognee, prior to version 1.2.0, exhibits an improper access control vulnerability that allows unauthenticated attackers to register an account and modify global LLM provider configurations through the settings endpoint. This endpoint does not enforce necessary administrative checks, enabling atta...

PoC for CVE-2026-58583

FluxinkColor Management Driver8.4HIGH
Local Privilege Escalation Vulnerability in FluxInk Color Managemen...

The FluxInk Color Management Driver (TcnPeripheral64.sys) version 1.0.7.2 contains a security flaw that allows a standard user account to escalate privileges by mapping arbitrary physical memory. This vulnerability poses a significant risk, enabling unauthorized users to gain elevated access and ...

Discovered 9 hours ago

PoC for CVE-2026-58468

NocobaseNocobase5.1MEDIUM
Server-Side Request Forgery in NocoBase by NocoBase

NocoBase, up to version 2.1.20, exhibits a server-side request forgery vulnerability within the serverRequest wrapper. This flaw permits authenticated administrators to make unauthorized outbound HTTP requests by inputting malicious URL links into workflow request nodes, custom action buttons, or...

PoC for CVE-2026-14191

RarlabWinrar7.8HIGH
Out-of-Bounds Heap Write in WinRAR Product by RARLab

A vulnerability exists within the RAR5 recovery-volume parser used in WinRAR and UnRAR, leading to potential heap corruption through crafted .rev files. This flaw stems from the incorrect validation of input that allows for manipulation of internal data structures, posing a risk when users perfor...

Discovered 10 hours ago

PoC for CVE-2024-36401

GeoserverGeoserver🟣 EPSS 100%9.8CRITICAL
Remote Code Execution Vulnerability in GeoServer Prior to Versions ...

GeoServer, an open-source server enabling geospatial data sharing and manipulation, contains a vulnerability that permits unauthenticated users to execute arbitrary code. This flaw arises from the handling of OGC request parameters, where property names are unsafely evaluated as XPath expressions...

PoC for CVE-2021-41773

ApacheApache Http Server🟣 EPSS 100%7.5HIGH
Path traversal and file disclosure vulnerability in Apache HTTP Ser...

A flaw was found in a change made to path normalization in Apache HTTP Server 2.4.49. An attacker could use a path traversal attack to map URLs to files outside the directories configured by Alias-like directives. If files outside of these directories are not protected by the usual default config...

Discovered 12 hours ago

PoC for CVE-2026-11405

TendaFirmware
Hidden Backdoor Authentication in Web Server Binary by Vendor

The web server binary '/bin/httpd' contains a vulnerability that enables a hidden backdoor authentication mechanism within its login function. This flaw allows unauthorized access by reading a backdoor password from the device configuration file if normal authentication fails. Using a direct comp...

PoC for CVE-2026-23697

VtigerVtiger Crm8.7HIGH
Authenticated File Upload Vulnerability in Vtiger CRM by Vtiger

Vtiger CRM versions prior to 8.4.0 are subject to an authenticated file upload vulnerability that allows low-privileged users to perform remote code execution. This is achieved by uploading a .phar file containing malicious PHP code through the Documents module, circumventing the configured denyl...

PoC for CVE-2026-23698

VtigerVtiger Crm8.6HIGH
Remote Code Execution Vulnerability in Vtiger CRM Admin Module

Vtiger CRM versions up to 8.4.0 contain a vulnerability that permits authenticated users with administrative privileges to execute arbitrary PHP code remotely. This occurs via the ModuleManager's import feature, which allows crafted zip files to be uploaded without sufficient validation. Attacker...

PoC for CVE-2026-57851

Micro-star Intern...Kerncorelib64.sys8.5HIGH
Local Privilege Escalation Vulnerability in MSI Feature Manager by MSI

The MSI Feature Manager, through its KernCoreLib64.sys kernel driver, introduces a local privilege escalation vulnerability. This flaw enables any locally authenticated user to execute arbitrary read/write operations on physical memory and conduct unrestricted I/O port operations. By exploiting e...

Discovered 15 hours ago

PoC for CVE-2026-53359

LinuxLinux
Use-After-Free Vulnerability in Linux Kernel Affecting KVM x86 Prod...

A vulnerability has been identified in the Linux kernel concerning the KVM x86 module, specifically a use-after-free scenario due to an unexpected role in shadow paging. This issue arises when a host modifies a Page Directory Entry (PDE) mapping from outside a guest virtual machine and subsequent...

PoC for CVE-2021-42278

MicrosoftWindows Server 2019🟣 EPSS 70%7.5HIGH
Active Directory Domain Services Elevation of Privilege Vulnerability

Active Directory Domain Services Elevation of Privilege Vulnerability

PoC for CVE-2026-42980

MicrosoftWindows 10 Version 16077.8HIGH
Elevation of Privilege Vulnerability in Windows NT OS Kernel by Mic...

The Windows NT OS Kernel contains a vulnerability that allows authorized attackers to exploit an integer underflow condition, which can lead to local privilege escalation. This design flaw may enable attackers to gain elevated privileges on affected systems, making it critical for users to apply ...

Discovered 18 hours ago

PoC for CVE-2026-48908

Joomshaper.netSp Page Builder Extens...10CRITICAL
Arbitrary File Upload in SP Page Builder for Joomla

A vulnerability in the SP Page Builder for Joomla permits unauthenticated users to upload arbitrary files. This weakness can lead to the execution of PHP code, presenting significant security risks for Joomla websites using this extension.

PoC for CVE-2026-54350

BudibaseBudibase10CRITICAL
Unauthenticated Access to Budibase Apps Exposes Database Contents

Budibase, an open-source low-code platform, has a vulnerability that allows unauthenticated visitors to access and manipulate sensitive database documents. This issue primarily affects versions prior to 3.39.12. An attacker can exploit this flaw by sending an HTTP request to a published Budibase ...

PoC for CVE-2014-6271

GnuBash🟣 EPSS 100%9.8CRITICAL
Code Injection Vulnerability in GNU Bash by The GNU Project

GNU Bash versions up to 4.3 are vulnerable to a code injection flaw due to the mishandling of trailing strings after function definitions in environment variables. This vulnerability enables remote attackers to execute arbitrary code by crafting specific environment variables under various condit...

Discovered 22 hours ago

PoC for CVE-2025-55182

MetaReact-server-dom-webpack🟣 EPSS 100%10CRITICAL
Remote Code Execution Vulnerability in React Server Components by Meta

A remote code execution vulnerability found in React Server Components allows attackers to exploit improperly handled payloads. This issue affects versions 19.0.0 through 19.2.0, compromising server function endpoints through unsafe deserialization of HTTP request payloads. As a result, this flaw...

PoC for CVE-2026-38526

WebkulKrayin CRM9.9CRITICAL
Arbitrary File Upload Vulnerability in Webkul Krayin CRM

An authenticated arbitrary file upload vulnerability exists in the /admin/tinymce/upload endpoint of Webkul Krayin CRM version 2.2.x. This flaw enables attackers to upload crafted PHP files, which can subsequently lead to the execution of arbitrary code on the server. Such vulnerabilities can be ...

PoC for CVE-2026-10834

WordPressWP Travel Engine
File Relocation Vulnerability in WP Travel Engine Plugin by WordPress

The WP Travel Engine plugin for WordPress fails to validate the source of user-supplied profile image paths effectively. This security flaw allows authenticated users with subscriber-level access and above to relocate arbitrary files within the WordPress uploads directory into their own profile-i...

PoC for CVE-2026-12375

WordPressUncanny-automator-pro9.8CRITICAL
Unsecured Backdoor in Uncanny Automator Pro Plugin for WordPress

The Uncanny Automator Pro WordPress plugin versions prior to 7.3.0.6 were found to have a critical backdoor that was planted following a compromise of the vendor's update infrastructure. This malicious code allows attackers without authentication to gain administrative access to the affected site...

PoC for CVE-2026-4375

WordPressDoleads Integrator9CRITICAL
Remote Code Execution in DoLeads Integrator and wp2epub Plugins by ...

The DoLeads Integrator and wp2epub plugins for WordPress allow unauthorized users to install unverified extensions from wordpress.org. This creates a pathway for remote code execution (RCE), jeopardizing website security. Website administrators must ensure that these plugins are updated to mitiga...

PoC for CVE-2026-12277

WordPressFrontend File Manager ...8.7HIGH
Unauthorized File Deletion in Frontend File Manager Plugin by WordP...

The Frontend File Manager Plugin for WordPress, version 23.6, is susceptible to a vulnerability that allows unauthenticated users to delete arbitrary files on the server without proper validation of file paths derived from user input. This issue is particularly concerning when guest upload mode i...

Discovered 23 hours ago

PoC for CVE-2025-54068

LivewireLivewire🟣 EPSS 95%9.2CRITICAL
Remote Command Execution Vulnerability in Livewire Framework from L...

In Livewire up to and including version 3.6.3, a vulnerability exists that allows unauthenticated attackers to execute commands remotely in certain configurations. This issue is caused by specific component property updates that are not adequately secured. Importantly, exploitation of this vulner...

Discovered 1 day ago

PoC for CVE-2023-22496

NetdataNetdata🟣 EPSS 36%8.1HIGH
Netdata vulnerable to command injection

Netdata, an open-source real-time infrastructure monitoring tool, contains a vulnerability that allows attackers to execute arbitrary commands on the Netdata agent. This occurs when an attacker establishes a streaming connection and triggers an alert, thereby exploiting the function `health_alarm...

PoC for CVE-2026-24061

GnuInetutils🟣 EPSS 99%9.8CRITICAL
Remote Authentication Bypass in GNU Inetutils Telnetd

The GNU Inetutils telnet daemon (telnetd) is vulnerable to a remote authentication bypass that can occur when an attacker manipulates the USER environment variable by specifying a '-f root' value. This flaw allows unauthorized users to gain access without proper authentication. Affected users sho...

PoC for CVE-2012-2122

OracleMysql🟣 EPSS 96%
SQL Injection Vulnerability in MySQL and MariaDB Products

A flaw in the handling of password comparisons in Oracle MySQL and MariaDB allows remote attackers to bypass authentication by repeatedly attempting to login with the same incorrect password. This occurs due to an improper check of the return value from the memcmp function, leading to a situation...

PoC for CVE-2026-40022

ApacheApache Camel Platform ...8.2HIGH
Authentication Bypass in Apache Camel's HTTP Server Affects Security

The Apache Camel embedded HTTP server contains a vulnerability that allows unauthenticated access to protected endpoints. Specifically, when authentication is enabled, and non-root context paths are set, the derived authentication paths do not cover subpaths. This misconfiguration can lead to una...

PoC for CVE-2026-33454

ApacheApache Camel9.4CRITICAL
Header Injection Vulnerability in Apache Camel Email Component

The Camel-Mail component allows for potential header injection due to improper filtering of Camel message headers when email is consumed. The MailHeaderFilterStrategy only applies filtering on outbound messages, leaving inbound message checks unconfigured. As a result, attackers can deliver craft...

PoC for CVE-2026-33453

ApacheApache Camel10CRITICAL
Remote Code Execution Vulnerability in Apache Camel's CoAP Component

A vulnerability exists within Apache Camel's camel-coap component that allows an unauthenticated attacker to exploit message header injection. By sending a single CoAP UDP packet to a Camel route that accepts coap:// input, attackers can inject arbitrary Camel internal headers into the Exchange. ...

PoC for CVE-2026-4480

Red HatRed Hat Enterprise Lin...🟣 EPSS 13%9CRITICAL
Samba Printing Subsystem Vulnerability in Samba Software

A vulnerability exists in the Samba printing subsystem that allows remote attackers to execute arbitrary commands on affected systems. The flaw occurs due to improper handling of the client-controlled job description string, which is passed directly to the configured print command without escapin...

PoC for CVE-2026-6421

MobatekMobaxterm Home Edition7.3HIGH
Uncontrolled Search Path Vulnerability in MobaXterm Home Edition by...

A vulnerability exists in the Mobatek MobaXterm Home Edition, specifically in the msimg32.dll library, which allows for an uncontrolled search path. This could potentially enable an attacker to exploit the software locally. The complexity of the attack is notably high, making it challenging to ex...

PoC for CVE-2026-27172

ApacheApache Camel8.8HIGH
Deserialization Flaw in Apache Camel Consul Component

The Consul component of Apache Camel contains a deserialization vulnerability that allows for potentially malicious Java objects to be injected and executed. When an attacker gains write access to the Consul KV store, they can insert such objects, leading to arbitrary code execution when Camel su...

Discovered 2 days ago

PoC for CVE-2023-51385

OpenBSDOpenssh🟣 EPSS 20%6.5MEDIUM
OS Command Injection Vulnerability in OpenSSH Before 9.6

In ssh in OpenSSH before 9.6, OS command injection might occur if a user name or host name has shell metacharacters, and this name is referenced by an expansion token in certain situations. For example, an untrusted Git repository can have a submodule with shell metacharacters in a user name or h...

PoC for CVE-2025-15668

GPACGpac4.8MEDIUM
Heap-Based Buffer Overflow in GPAC's MP4Box Affects Local Security

A vulnerability has been identified in GPAC's MP4Box component, specifically within the sgpd_del_entry function of the source file box_code_base.c. The issue allows for a heap-based buffer overflow, which can be exploited by an attacker with local access. This provides a method for data manipulat...

PoC for CVE-2025-15667

GPACGpac4.8MEDIUM
Double Free Vulnerability in GPAC MP4Box Affects Various Versions

A vulnerability within GPAC's MP4Box component, specifically in the gf_isom_nalu_sample_rewrite function of avc_ext.c, has been identified. This issue arises from the manipulation of the nalu_out_bs argument, leading to a potential double free condition. An attacker can exploit this vulnerability...

PoC for CVE-2026-8713

WordPressAvada (fusion) Builder9.1CRITICAL
Arbitrary File Deletion in Avada Builder Plugin for WordPress

The Avada (Fusion) Builder plugin for WordPress is susceptible to arbitrary file deletion due to inadequate file path validation in its maybe_delete_files function. This vulnerability affects all versions up to and including 3.15.3, enabling unauthenticated attackers to delete files on the server...

PoC for CVE-2026-14802

ReactCreate-react-app6.9MEDIUM
OS Command Injection in React Create-React-App on macOS

A security vulnerability has been identified in the React Create-React-App framework on macOS, specifically within the startBrowserProcess function located in openBrowser.js of the react-dev-utils component. This flaw permits OS command injection, allowing attackers to potentially execute arbitra...

PoC for CVE-2021-3493

UbuntuLinux🟣 EPSS 44%8.8HIGH
Local Privilege Escalation in Linux Kernel OverlayFS Implementation...

The OverlayFS implementation in the Linux kernel failed to adequately validate user namespaces when setting file capabilities on underlying file systems. This weakness, combined with specific patches in the Ubuntu kernel that permit unprivileged overlay mounts, enables attackers to exploit the si...