Publicly Disclosed
PoC Exploits

🔴 Alway take caution when working with PoC Exploits 🔴

Discovered just now...

PoC for CVE-2026-35204

HelmHelm8.4HIGH
Arbitrary File Write Vulnerability in Helm Package Manager

A security issue has been identified in Helm, the package manager for Kubernetes Charts. Versions 4.0.0 through 4.1.3 are impacted by a flaw that allows a specially crafted Helm plugin to write files to arbitrary locations on the filesystem when installed or updated. To mitigate this risk, it is ...

PoC for CVE-2026-40047

ApacheApache Camel9.1CRITICAL
Command Injection Vulnerability in Apache Camel Docling Component

A command injection vulnerability exists in the Apache Camel Docling component due to improper validation of custom CLI arguments. The vulnerability arises when the DoclingProducer constructs an argument list for the external 'docling' command-line tool, where insufficient validation may allow an...

PoC for CVE-2025-54136

CursorCursor7.2HIGH
Remote Code Execution Vulnerability in Cursor Code Editor by Cursor

In Cursor Code Editor versions prior to 1.3, a significant vulnerability exists allowing attackers to execute arbitrary code remotely. This occurs through manipulation of a trusted MCP configuration file either within a shared GitHub repository or on the target machine. If an attacker can alter t...

Discovered 48 minutes ago

PoC for CVE-2021-21974

VmwareVmware Esxi🟣 EPSS 45%8.8HIGH
Heap Overflow Vulnerability in ESXi by VMware

The OpenSLP service in VMware ESXi contains a heap overflow vulnerability that could allow an attacker within the same network segment to execute arbitrary code. By sending specially crafted packets to port 427, an unauthorized actor may exploit this flaw, potentially compromising the entire syst...

Discovered 2 hours ago

PoC for CVE-2026-43499

LinuxLinux7.8HIGH
Linux Kernel Vulnerability in rtmutex Component Affecting Multiple ...

A vulnerability exists in the Linux kernel's rtmutex component where the remove_waiter() function incorrectly utilizes current instead of waiter::task during a dequeue operation within various mutex handling paths. This mismanagement leads to multiple issues, including potential use-after-free vu...

Discovered 3 hours ago

PoC for CVE-2026-15036

HarnessHarness5.3MEDIUM
Authorization Bypass in Harness Gitspaces Component

A vulnerability exists in the Harness platform, specifically within the gitspaces component, affecting versions up to 2.28.2. The issue is located in the getAuthorizedSpaces function of the app/api/controller/gitspace/list_all.go file. It allows unauthorized users to bypass authorization, potenti...

Discovered 4 hours ago

PoC for CVE-2026-15035

BentomlOpenllm4.8MEDIUM
Command Injection in OpenLLM Model Repository by Bentoml

A command injection vulnerability has been identified in the OpenLLM 0.6.30, specifically within the async_run_command function located in src/openllm/common.py. This flaw allows an attacker to manipulate the cmd argument, potentially leading to unauthorized command execution on affected systems....

PoC for CVE-2026-56290

Joomlack.frJoomlack.fr Page Build...10CRITICAL
Unauthenticated Arbitrary File Upload Vulnerability in Joomla Exten...

The Joomla extension Page Builder CK contains a vulnerability that allows unauthenticated attackers to upload arbitrary files. This weakness can be exploited to upload executable files, resulting in remote code execution on the server. The implications of this vulnerability are severe, as it may ...

PoC for CVE-2026-15034

Flask-dashboardFlask-monitoringdashboard5.3MEDIUM
Cross-Site Request Forgery Vulnerability in Flask-MonitoringDashboa...

A vulnerability identified in Flask-MonitoringDashboard, up to version 5.0.2, facilitates cross-site request forgery attacks. This issue allows attackers to exploit certain functions without proper authorization, potentially leading to unauthorized actions performed on behalf of legitimate users....

Discovered 8 hours ago

PoC for CVE-2026-46242

LinuxLinux7.8HIGH
Eventpoll Memory Management Flaw in Linux Kernel

A memory management vulnerability in the Linux kernel's eventpoll subsystem allows for a misuse of freed memory, resulting from improper handling of file structures during critical operations. The flaw occurs when an ep_remove operation clears a file pointer under lock while allowing concurrent o...

Discovered 12 hours ago

PoC for CVE-2026-12378

WordPressAppointment Booking Ca...8.1HIGH
PHP Deserialization Vulnerability in Appointment Booking Calendar P...

The Appointment Booking Calendar Plugin for WordPress, up to version 1.1.28, fails to validate user input before it is processed by a PHP deserialization function. This flaw exposes the plugin to attacks from unauthenticated users, who could exploit the vulnerability to inject arbitrary PHP objec...

PoC for CVE-2026-12277

WordPressFrontend File Manager ...8.7HIGH
Unauthorized File Deletion in Frontend File Manager Plugin by WordP...

The Frontend File Manager Plugin for WordPress, version 23.6, is susceptible to a vulnerability that allows unauthenticated users to delete arbitrary files on the server without proper validation of file paths derived from user input. This issue is particularly concerning when guest upload mode i...

Discovered 17 hours ago

PoC for CVE-2025-36911

GoogleAndroid7.1HIGH
Logic Flaw in Key-Based Pairing Affects Android Devices

The vulnerability arises from a logic error in the key-based pairing process of certain Android devices. This flaw may allow an attacker in proximity to exploit the issue and gain unauthorized access to sensitive user information, including conversations and location data. Notably, the attack doe...

PoC for CVE-2022-46364

ApacheApache Cxf9.8CRITICAL
Apache CXF SSRF Vulnerability

A SSRF vulnerability in parsing the href attribute of XOP:Include in MTOM requests in versions of Apache CXF before 3.5.5 and 3.4.10 allows an attacker to perform SSRF style attacks on webservices that take at least one parameter of any type. 

Discovered 18 hours ago

PoC for CVE-2025-64459

DjangoprojectDjango🟣 EPSS 19%9.1CRITICAL
SQL Injection Vulnerability in Django Software by Django

An SQL injection vulnerability exists in specific versions of Django prior to 5.1.14, 4.2.26, and 5.2.8. Through the use of specially crafted dictionaries, attackers can exploit the `QuerySet.filter()`, `QuerySet.exclude()`, and `QuerySet.get()` methods, as well as the `Q()` class, when utilizing...

PoC for CVE-2026-48611

PHPbbPHPbb9.8CRITICAL
Improper Authentication in OAuth Implementation Affects phpBB Software

The OAuth implementation in phpBB has a critical flaw where improper authentication checks can lead to account hijacking. This vulnerability is particularly concerning as it may allow unauthorized users to gain access to accounts even if OAuth is not configured or enabled. Default installations a...

PoC for CVE-2026-6300

GoogleChrome8.8HIGH
Use After Free Vulnerability in Google Chrome

A use after free vulnerability in the CSS handling of Google Chrome versions prior to 147.0.7727.101 enables remote attackers to execute arbitrary code. This vulnerability can be triggered through a maliciously crafted HTML document, allowing unauthorized actions within a sandboxed environment, w...

Discovered 19 hours ago

PoC for CVE-2023-31488

CiscoIronport Email Securit...9.8CRITICAL
Segmentation Fault Vulnerability in Hyland Perceptive Filters for C...

A vulnerability has been identified in Hyland Perceptive Filters versions prior to December 8, 2023. This issue affects products like Cisco IronPort Email Security Appliance Software and Cisco Secure Email Gateway, along with several non-Cisco products. Attackers can exploit this flaw by crafting...

PoC for CVE-2023-20075

CiscoCisco Secure Email6.7MEDIUM
Remote Command Execution Vulnerability in Cisco Secure Email Gateway

A vulnerability exists in the command-line interface (CLI) of Cisco Secure Email Gateway due to improper input validation. This security flaw allows authenticated, remote attackers to inject malicious operating system commands into legitimate commands. A successful exploitation of this vulnerabil...

PoC for CVE-2023-20009

CiscoCisco Secure Email7.2HIGH
Privilege Escalation in Cisco Secure Email Gateway and Manager

A vulnerability exists within the Web UI and administrative CLI of Cisco Secure Email Gateway (ESA) and Cisco Secure Email and Web Manager (SMA). This security flaw enables both authenticated local and remote attackers to escalate their privileges, potentially gaining root access on the device. T...

Discovered 20 hours ago

PoC for CVE-2023-0090

ProofpointEnterprise Protection9.8CRITICAL
Proofpoint Enterprise Protection webservices unauthenticated RCE

The webservices in Proofpoint Enterprise Protection (PPS/POD) are susceptible to a vulnerability that enables unauthorized users to execute remote code through 'eval injection'. Exploitation of this vulnerability necessitates network access to the webservices API; however, such access is typicall...

PoC for CVE-2023-0089

ProofpointEnterprise Protection8.8HIGH
Proofpoint Enterprise Protection webutils authenticated RCE

The webutils component of Proofpoint Enterprise Protection is affected by a vulnerability that permits an authenticated user to leverage eval injection for remote code execution. This vulnerability affects all versions up to and including 8.20.0, potentially allowing malicious actions by users wi...

PoC for CVE-2026-14762

Code-projectsHotel And Tourism Rese...6.9MEDIUM
SQL Injection Vulnerability in Hotel and Tourism Reservation by Cod...

A significant SQL injection vulnerability has been identified in the Hotel and Tourism Reservation application by Code-Projects, specifically within the Room Management Page component. The vulnerability arises from the manipulation of an argument within the /admin/rooms.php file, allowing an atta...

Discovered 21 hours ago

PoC for CVE-2026-58473

TopoteretesCognee9.3CRITICAL
Improper Access Control in Cognee by Topoteretes

Cognee, prior to version 1.2.0, exhibits an improper access control vulnerability that allows unauthenticated attackers to register an account and modify global LLM provider configurations through the settings endpoint. This endpoint does not enforce necessary administrative checks, enabling atta...

PoC for CVE-2026-58583

FluxinkColor Management Driver8.4HIGH
Local Privilege Escalation Vulnerability in FluxInk Color Managemen...

The FluxInk Color Management Driver (TcnPeripheral64.sys) version 1.0.7.2 contains a security flaw that allows a standard user account to escalate privileges by mapping arbitrary physical memory. This vulnerability poses a significant risk, enabling unauthorized users to gain elevated access and ...

Discovered 22 hours ago

PoC for CVE-2026-58468

NocobaseNocobase5.1MEDIUM
Server-Side Request Forgery in NocoBase by NocoBase

NocoBase, up to version 2.1.20, exhibits a server-side request forgery vulnerability within the serverRequest wrapper. This flaw permits authenticated administrators to make unauthorized outbound HTTP requests by inputting malicious URL links into workflow request nodes, custom action buttons, or...

Discovered 23 hours ago

PoC for CVE-2026-53359

LinuxLinux
Use-After-Free Vulnerability in Linux Kernel Affecting KVM x86 Prod...

A vulnerability has been identified in the Linux kernel concerning the KVM x86 module, specifically a use-after-free scenario due to an unexpected role in shadow paging. This issue arises when a host modifies a Page Directory Entry (PDE) mapping from outside a guest virtual machine and subsequent...

PoC for CVE-2026-14191

RarlabWinrar7.8HIGH
Out-of-Bounds Heap Write in WinRAR Product by RARLab

A vulnerability exists within the RAR5 recovery-volume parser used in WinRAR and UnRAR, leading to potential heap corruption through crafted .rev files. This flaw stems from the incorrect validation of input that allows for manipulation of internal data structures, posing a risk when users perfor...

PoC for CVE-2024-36401

GeoserverGeoserver🟣 EPSS 100%9.8CRITICAL
Remote Code Execution Vulnerability in GeoServer Prior to Versions ...

GeoServer, an open-source server enabling geospatial data sharing and manipulation, contains a vulnerability that permits unauthenticated users to execute arbitrary code. This flaw arises from the handling of OGC request parameters, where property names are unsafely evaluated as XPath expressions...

Discovered 1 day ago

PoC for CVE-2021-41773

ApacheApache Http Server🟣 EPSS 100%7.5HIGH
Path traversal and file disclosure vulnerability in Apache HTTP Ser...

A flaw was found in a change made to path normalization in Apache HTTP Server 2.4.49. An attacker could use a path traversal attack to map URLs to files outside the directories configured by Alias-like directives. If files outside of these directories are not protected by the usual default config...

PoC for CVE-2026-11405

TendaFirmware9.8CRITICAL
Hidden Backdoor Authentication in Web Server Binary by Vendor

The web server binary '/bin/httpd' contains a vulnerability that enables a hidden backdoor authentication mechanism within its login function. This flaw allows unauthorized access by reading a backdoor password from the device configuration file if normal authentication fails. Using a direct comp...

PoC for CVE-2026-53359

LinuxLinux
Use-After-Free Vulnerability in Linux Kernel Affecting KVM x86 Prod...

A vulnerability has been identified in the Linux kernel concerning the KVM x86 module, specifically a use-after-free scenario due to an unexpected role in shadow paging. This issue arises when a host modifies a Page Directory Entry (PDE) mapping from outside a guest virtual machine and subsequent...

PoC for CVE-2026-23697

VtigerVtiger Crm8.7HIGH
Authenticated File Upload Vulnerability in Vtiger CRM by Vtiger

Vtiger CRM versions prior to 8.4.0 are subject to an authenticated file upload vulnerability that allows low-privileged users to perform remote code execution. This is achieved by uploading a .phar file containing malicious PHP code through the Documents module, circumventing the configured denyl...

PoC for CVE-2026-23698

VtigerVtiger Crm8.6HIGH
Remote Code Execution Vulnerability in Vtiger CRM Admin Module

Vtiger CRM versions up to 8.4.0 contain a vulnerability that permits authenticated users with administrative privileges to execute arbitrary PHP code remotely. This occurs via the ModuleManager's import feature, which allows crafted zip files to be uploaded without sufficient validation. Attacker...

PoC for CVE-2026-57851

Micro-star Intern...Kerncorelib64.sys8.5HIGH
Local Privilege Escalation Vulnerability in MSI Feature Manager by MSI

The MSI Feature Manager, through its KernCoreLib64.sys kernel driver, introduces a local privilege escalation vulnerability. This flaw enables any locally authenticated user to execute arbitrary read/write operations on physical memory and conduct unrestricted I/O port operations. By exploiting e...

PoC for CVE-2026-53359

LinuxLinux
Use-After-Free Vulnerability in Linux Kernel Affecting KVM x86 Prod...

A vulnerability has been identified in the Linux kernel concerning the KVM x86 module, specifically a use-after-free scenario due to an unexpected role in shadow paging. This issue arises when a host modifies a Page Directory Entry (PDE) mapping from outside a guest virtual machine and subsequent...

PoC for CVE-2021-42278

MicrosoftWindows Server 2019🟣 EPSS 70%7.5HIGH
Active Directory Domain Services Elevation of Privilege Vulnerability

Active Directory Domain Services Elevation of Privilege Vulnerability

PoC for CVE-2026-42980

MicrosoftWindows 10 Version 16077.8HIGH
Elevation of Privilege Vulnerability in Windows NT OS Kernel by Mic...

The Windows NT OS Kernel contains a vulnerability that allows authorized attackers to exploit an integer underflow condition, which can lead to local privilege escalation. This design flaw may enable attackers to gain elevated privileges on affected systems, making it critical for users to apply ...

PoC for CVE-2026-48908

Joomshaper.netSp Page Builder Extens...10CRITICAL
Arbitrary File Upload in SP Page Builder for Joomla

A vulnerability in the SP Page Builder for Joomla permits unauthenticated users to upload arbitrary files. This weakness can lead to the execution of PHP code, presenting significant security risks for Joomla websites using this extension.

PoC for CVE-2026-54350

BudibaseBudibase10CRITICAL
Unauthenticated Access to Budibase Apps Exposes Database Contents

Budibase, an open-source low-code platform, has a vulnerability that allows unauthenticated visitors to access and manipulate sensitive database documents. This issue primarily affects versions prior to 3.39.12. An attacker can exploit this flaw by sending an HTTP request to a published Budibase ...

PoC for CVE-2014-6271

GnuBash🟣 EPSS 100%9.8CRITICAL
Code Injection Vulnerability in GNU Bash by The GNU Project

GNU Bash versions up to 4.3 are vulnerable to a code injection flaw due to the mishandling of trailing strings after function definitions in environment variables. This vulnerability enables remote attackers to execute arbitrary code by crafting specific environment variables under various condit...

PoC for CVE-2025-55182

MetaReact-server-dom-webpack🟣 EPSS 100%10CRITICAL
Remote Code Execution Vulnerability in React Server Components by Meta

A remote code execution vulnerability found in React Server Components allows attackers to exploit improperly handled payloads. This issue affects versions 19.0.0 through 19.2.0, compromising server function endpoints through unsafe deserialization of HTTP request payloads. As a result, this flaw...

PoC for CVE-2026-38526

WebkulKrayin CRM9.9CRITICAL
Arbitrary File Upload Vulnerability in Webkul Krayin CRM

An authenticated arbitrary file upload vulnerability exists in the /admin/tinymce/upload endpoint of Webkul Krayin CRM version 2.2.x. This flaw enables attackers to upload crafted PHP files, which can subsequently lead to the execution of arbitrary code on the server. Such vulnerabilities can be ...

PoC for CVE-2026-12375

WordPressUncanny-automator-pro9.8CRITICAL
Unsecured Backdoor in Uncanny Automator Pro Plugin for WordPress

The Uncanny Automator Pro WordPress plugin versions prior to 7.3.0.6 were found to have a critical backdoor that was planted following a compromise of the vendor's update infrastructure. This malicious code allows attackers without authentication to gain administrative access to the affected site...

PoC for CVE-2026-10834

WordPressWP Travel Engine
File Relocation Vulnerability in WP Travel Engine Plugin by WordPress

The WP Travel Engine plugin for WordPress fails to validate the source of user-supplied profile image paths effectively. This security flaw allows authenticated users with subscriber-level access and above to relocate arbitrary files within the WordPress uploads directory into their own profile-i...

PoC for CVE-2026-4375

WordPressDoleads Integrator9CRITICAL
Remote Code Execution in DoLeads Integrator and wp2epub Plugins by ...

The DoLeads Integrator and wp2epub plugins for WordPress allow unauthorized users to install unverified extensions from wordpress.org. This creates a pathway for remote code execution (RCE), jeopardizing website security. Website administrators must ensure that these plugins are updated to mitiga...

PoC for CVE-2026-12277

WordPressFrontend File Manager ...8.7HIGH
Unauthorized File Deletion in Frontend File Manager Plugin by WordP...

The Frontend File Manager Plugin for WordPress, version 23.6, is susceptible to a vulnerability that allows unauthenticated users to delete arbitrary files on the server without proper validation of file paths derived from user input. This issue is particularly concerning when guest upload mode i...

Discovered 2 days ago

PoC for CVE-2025-54068

LivewireLivewire🟣 EPSS 95%9.2CRITICAL
Remote Command Execution Vulnerability in Livewire Framework from L...

In Livewire up to and including version 3.6.3, a vulnerability exists that allows unauthenticated attackers to execute commands remotely in certain configurations. This issue is caused by specific component property updates that are not adequately secured. Importantly, exploitation of this vulner...

PoC for CVE-2023-22496

NetdataNetdata🟣 EPSS 36%8.1HIGH
Netdata vulnerable to command injection

Netdata, an open-source real-time infrastructure monitoring tool, contains a vulnerability that allows attackers to execute arbitrary commands on the Netdata agent. This occurs when an attacker establishes a streaming connection and triggers an alert, thereby exploiting the function `health_alarm...

PoC for CVE-2026-24061

GnuInetutils🟣 EPSS 99%9.8CRITICAL
Remote Authentication Bypass in GNU Inetutils Telnetd

The GNU Inetutils telnet daemon (telnetd) is vulnerable to a remote authentication bypass that can occur when an attacker manipulates the USER environment variable by specifying a '-f root' value. This flaw allows unauthorized users to gain access without proper authentication. Affected users sho...