Publicly Disclosed
PoC Exploits

🔴 Alway take caution when working with PoC Exploits 🔴

Discovered just now...

PoC for CVE-2026-42926

F5Nginx Open Source6.3MEDIUM
HTTP/2 Traffic Injection Vulnerability in NGINX Open Source by F5 N...

A vulnerability exists in NGINX Open Source when configured to proxy HTTP/2 traffic using the proxy_http_version set to 2 in conjunction with proxy_set_body. An attacker could exploit this configuration to inject frame headers and payload bytes directed at the upstream server, potentially leading...

Discovered 41 minutes ago

PoC for CVE-2024-54887

TP-LinkTl-wr940n Firmware8HIGH
Buffer Overflow in TP-Link Routers Allowing Code Execution

The TP-Link TL-WR940N V3 and V4 with firmware 3.16.9 and earlier are susceptible to a buffer overflow vulnerability through the dnsserver1 and dnsserver2 parameters located at /userRpm/Wan6to4TunnelCfgRpm.htm. An authenticated attacker can exploit this vulnerability to execute arbitrary code on t...

Discovered 5 hours ago

PoC for CVE-2026-24061

GnuInetutils🟣 EPSS 92%9.8CRITICAL
Remote Authentication Bypass in GNU Inetutils Telnetd

The GNU Inetutils telnet daemon (telnetd) is vulnerable to a remote authentication bypass that can occur when an attacker manipulates the USER environment variable by specifying a '-f root' value. This flaw allows unauthorized users to gain access without proper authentication. Affected users sho...

Discovered 10 hours ago

PoC for CVE-2026-11437

PerfreeGo-fastdfs-web6.9MEDIUM
perfree go-fastdfs-web Installation Endpoint checkServer server-sid...

A flaw has been found in perfree go-fastdfs-web up to 1.3.7. Affected is the function checkServer of the file /install/checkServer of the component Installation Endpoint. Executing a manipulation can lead to server-side request forgery. The attack can be executed remotely. The exploit has been pu...

Discovered 11 hours ago

PoC for CVE-2026-11436

Mage Ai5.3MEDIUM
Mage AI Sign-in Flow index.tsx useMutation cross site scripting

A vulnerability was detected in Mage AI up to 0.9.79. This impacts the function useMutation of the file mage_ai/frontend/components/Sessions/SignForm/index.tsx of the component Sign-in Flow. Performing a manipulation of the argument query.redirect_url results in cross site scripting. Remote explo...

PoC for CVE-2026-11435

JinherOa6.9MEDIUM
Jinher OA nextselectplan.aspx sql injection

A security vulnerability has been detected in Jinher OA 1.0. This affects an unknown function of the file nextselectplan.aspx. Such manipulation of the argument httpOID leads to sql injection. The attack may be launched remotely. The exploit has been disclosed publicly and may be used. The vendor...

Discovered 12 hours ago

PoC for CVE-2026-42588

ApacheApache ActiveMQ Broker8.1HIGH
Code Injection Vulnerability in Apache ActiveMQ Broker by Apache

Apache ActiveMQ Classic has a vulnerability due to improper input validation. The Jolokia JMX-HTTP bridge allows authenticated attackers to perform exec operations on ActiveMQ MBeans by using a crafted discovery URI. This manipulation could trigger arbitrary code execution on the broker's JVM by ...

PoC for CVE-2026-11434

Fluentcms4.8MEDIUM
FluentCMS Blocks Plugin blocks cross site scripting

A weakness has been identified in FluentCMS 0.0.5. The impacted element is an unknown function of the file /admin/blocks of the component Blocks Plugin. This manipulation causes cross site scripting. The attack may be initiated remotely. The exploit has been made available to the public and could...

PoC for CVE-2026-23744

McpjamInspector🟣 EPSS 30%9.8CRITICAL
Remote Code Execution Vulnerability in MCPJam Inspector by MCP

MCPJam Inspector, designed for local-first development on MCP servers, has a vulnerability allowing remote code execution (RCE) due to improper binding settings. In versions 1.4.2 and earlier, the platform listens on 0.0.0.0 by default, enabling attackers to exploit this configuration through cra...

Discovered 13 hours ago

PoC for CVE-2026-20245

CiscoCisco Catalyst Sd-wan ...7.8HIGH
Cisco Catalyst SD-WAN Controller Authenticated Privilege Escalation...

A vulnerability in the CLI of Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an authenticated, local attacker to execute arbitrary commands as root by supplying a crafted file to the affected system. This vulnerability is due to insufficient validation of user-supplied inp...

Discovered 14 hours ago

PoC for CVE-2026-11413

JingdongJd Cloud Box Ax66008.7HIGH
JingDong JD Cloud Box AX6600 jdcweb_rpc set_macfilter stack-based o...

A security vulnerability has been detected in JingDong JD Cloud Box AX6600 4.5.3.r4546. The impacted element is the function set_macfilter of the file /sbin/jdcweb_rpc. The manipulation leads to stack-based buffer overflow. It is possible to initiate the attack remotely. The exploit has been disc...

Discovered 15 hours ago

PoC for CVE-2026-11412

JinherOa5.3MEDIUM
Jinher OA GetFormSn.aspx sql injection

A weakness has been identified in Jinher OA C6. The affected element is an unknown function of the file /C6/JHSoft.Web.ModuleCount/GetFormSn.aspx. Executing a manipulation of the argument queryID can lead to sql injection. The attack may be performed from remote. The exploit has been made availab...

Discovered 16 hours ago

PoC for CVE-2026-11411

Iai LabPDF Ai App4.8MEDIUM
iAI Lab PDF AI App chatpdf.pro getExternalCacheDir path traversal

A security flaw has been discovered in iAI Lab PDF AI App 4.21.0 on Android. Impacted is the function getExternalCacheDir of the component chatpdf.pro. Performing a manipulation of the argument _display_name results in path traversal. The attack requires a local approach. The exploit has been rel...

PoC for CVE-2026-11408

Vertex-appVertex5.3MEDIUM
vertex-app vertex Log Viewer Endpoint LogMod.js os command injection

A vulnerability was identified in vertex-app vertex up to 2026.02.12. This issue affects some unknown processing of the file app/model/LogMod.js of the component Log Viewer Endpoint. Such manipulation of the argument req.query leads to os command injection. The attack can be executed remotely. Th...

Discovered 17 hours ago

PoC for CVE-2026-11406

Gl.inetMt30005.3MEDIUM
GL.iNet MT3000 OpenVPN Client Import Workflow ovpnclient.sh command...

A vulnerability was determined in GL.iNet MT3000 up to 4.4.5. This vulnerability affects unknown code of the file ovpnclient.sh of the component OpenVPN Client Import Workflow. This manipulation causes command injection. Remote exploitation of the attack is possible. The exploit has been publicly...

Discovered 18 hours ago

PoC for CVE-2025-55182

MetaReact-server-dom-webpack🟣 EPSS 84%10CRITICAL
Remote Code Execution Vulnerability in React Server Components by Meta

A remote code execution vulnerability found in React Server Components allows attackers to exploit improperly handled payloads. This issue affects versions 19.0.0 through 19.2.0, compromising server function endpoints through unsafe deserialization of HTTP request payloads. As a result, this flaw...

Discovered 1 day ago

PoC for CVE-2026-9256

F5Nginx Plus9.2CRITICAL
Heap Buffer Overflow in NGINX Plus and Open Source due to Regex Pat...

A vulnerability exists in the ngx_http_rewrite_module of NGINX Plus and NGINX Open Source, which can be exploited by an unauthenticated attacker. When specific rewrite directives utilize overlapping Perl-Compatible Regular Expressions (PCRE) captures, and combine them in a replacement string with...

PoC for CVE-2010-0832

CanonicalUbuntu Linux
Symlink Attack in PAM Impacting Ubuntu Systems

The MOTD module in libpam-modules prior to specific updates on Ubuntu 9.10 and 10.04 LTS exposes local users to a symlink attack. By exploiting vulnerabilities in the .cache directory of a user's home, an attacker can change the ownership of arbitrary files. This issue is related to the handling ...

PoC for CVE-2026-40072

EthereumWeb3.py1.7LOW
Server-Side Request Forgery in web3.py by Ethereum

web3.py, a Python library for interacting with the Ethereum blockchain, is susceptible to Server-Side Request Forgery (SSRF) due to improper validation of URLs supplied by smart contracts via the offchain_lookup_payload. The library allows these URLs to be processed directly without validation, e...

PoC for CVE-2025-71318

Riello UpsNetman 2049.3CRITICAL
NetMan 204 Missing Authentication for Administrative Functions

NetMan 204 fails to enforce authentication on its administrative pages and command endpoints. A remote, unauthenticated attacker can directly request administrative pages (such as administration.html, administration-commands.html, and configuration.html) to disclose sensitive information includin...

PoC for CVE-2026-3300

WordPressEverest Forms Pro9.8CRITICAL
Remote Code Execution Risk in Everest Forms Pro Plugin by WordPress

The Everest Forms Pro plugin for WordPress has a significant vulnerability that allows for Remote Code Execution through PHP Code Injection. This affects all versions up to and including 1.9.12. The vulnerability arises from the Calculation Addon's process_filter() function, which improperly conc...

PoC for CVE-2026-11344

Code-projectsVehicle Management System6.9MEDIUM
code-projects Vehicle Management System New Driver Registration For...

A vulnerability was found in code-projects Vehicle Management System 1.0. This impacts an unknown function of the file newdriver.php of the component New Driver Registration Form. Performing a manipulation of the argument photo results in unrestricted upload. The attack may be initiated remotely....

PoC for CVE-2026-11342

Code-projectsHotel And Tourism Rese...6.9MEDIUM
code-projects Hotel and Tourism Reservation System details.php sql ...

A vulnerability has been found in code-projects Hotel and Tourism Reservation System 1.0. This affects an unknown function of the file /details.php. Such manipulation of the argument room leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and...

PoC for CVE-2026-11341

D-linkDwr-m9205.3MEDIUM
D-Link DWR-M920 formIMEISetup sub_412DA0 os command injection

A flaw has been found in D-Link DWR-M920 up to 1.1.50. The impacted element is the function sub_412DA0 of the file /boafrm/formIMEISetup. This manipulation of the argument IMEI_value causes os command injection. The attack can be initiated remotely. The exploit has been published and may be used.

PoC for CVE-2026-11339

D-linkDwr-m9205.3MEDIUM
D-Link DWR-M920 formUSSDSetup sub_41CF20 command injection

A vulnerability was detected in D-Link DWR-M920 up to 1.1.50. The affected element is the function sub_41CF20 of the file /boafrm/formUSSDSetup. The manipulation of the argument ussdValue results in command injection. It is possible to launch the attack remotely. The exploit is now public and may...

PoC for CVE-2026-23744

McpjamInspector🟣 EPSS 30%9.8CRITICAL
Remote Code Execution Vulnerability in MCPJam Inspector by MCP

MCPJam Inspector, designed for local-first development on MCP servers, has a vulnerability allowing remote code execution (RCE) due to improper binding settings. In versions 1.4.2 and earlier, the platform listens on 0.0.0.0 by default, enabling attackers to exploit this configuration through cra...

PoC for CVE-2026-11337

TittuvargheseCollegemanagementsystem5.3MEDIUM
tittuvarghese CollegeManagementSystem fetch.php cross site scripting

A vulnerability was found in tittuvarghese CollegeManagementSystem 3e476335cfbfb9a049e09f474c7ec885f69a9df3/a38852979f7e27ae67b610dce5979500ef8ebe01. Affected by this vulnerability is an unknown functionality of the file /dashboard_page/forms/fetch.php. The manipulation of the argument department...

PoC for CVE-2026-11336

TittuvargheseCollegemanagementsystem5.3MEDIUM
tittuvarghese CollegeManagementSystem Admin admin_page.php improper...

A vulnerability has been found in tittuvarghese CollegeManagementSystem 3e476335cfbfb9a049e09f474c7ec885f69a9df3/a38852979f7e27ae67b610dce5979500ef8ebe01. Affected is an unknown function of the file dashboard_page/admin_page.php of the component Admin Interface. The manipulation of the argument U...

PoC for CVE-2025-53779

MicrosoftWindows Server 20257.2HIGH
Relative Path Traversal in Windows Kerberos Affects Microsoft Products

An elevation of privilege vulnerability exists in Windows Kerberos due to improper handling of relative path traversal. An authenticated attacker who successfully exploits this vulnerability can gain elevated permissions on the network, leading to unauthorized access and control over sensitive in...

PoC for CVE-2026-11335

TittuvargheseCollegemanagementsystem5.3MEDIUM
tittuvarghese CollegeManagementSystem login-form.php session_start ...

A flaw has been found in tittuvarghese CollegeManagementSystem 3e476335cfbfb9a049e09f474c7ec885f69a9df3/a38852979f7e27ae67b610dce5979500ef8ebe01. This impacts the function session_start of the file /login-form.php. Executing a manipulation of the argument UserAuthData can lead to session fixiatio...

PoC for CVE-2026-23744

McpjamInspector🟣 EPSS 30%9.8CRITICAL
Remote Code Execution Vulnerability in MCPJam Inspector by MCP

MCPJam Inspector, designed for local-first development on MCP servers, has a vulnerability allowing remote code execution (RCE) due to improper binding settings. In versions 1.4.2 and earlier, the platform listens on 0.0.0.0 by default, enabling attackers to exploit this configuration through cra...

Discovered 2 days ago

PoC for CVE-2026-11334

TittuvargheseCollegemanagementsystem6.9MEDIUM
tittuvarghese CollegeManagementSystem fetch.php sql injection

A vulnerability was detected in tittuvarghese CollegeManagementSystem 3e476335cfbfb9a049e09f474c7ec885f69a9df3/a38852979f7e27ae67b610dce5979500ef8ebe01. This affects an unknown function of the file dashboard_page/forms/fetch.php. Performing a manipulation of the argument department_code results i...

PoC for CVE-2026-11333

TittuvargheseCollegemanagementsystem5.3MEDIUM
tittuvarghese CollegeManagementSystem Student Data Upload Endpoint ...

A security vulnerability has been detected in tittuvarghese CollegeManagementSystem 3e476335cfbfb9a049e09f474c7ec885f69a9df3/a38852979f7e27ae67b610dce5979500ef8ebe01. The impacted element is an unknown function of the file dashboard_page/forms/upload_student_data.php of the component Student Data...

PoC for CVE-2026-5076

WordPressArmember Premium – Mem...9.8CRITICAL
Insecure Password Reset Mechanism in ARMember Premium Plugin for Wo...

The ARMember Premium plugin for WordPress is compromised by an insecure password reset mechanism present in all versions up to and including 7.3.1. When a user requests a password reset, the plugin unintentionally stores the plaintext password reset key in the `arm_reset_password_key` user meta f...

PoC for CVE-2026-20230

CiscoCisco Unified Communic...8.6HIGH
Cisco - Cisco Unified Communications Manager

A vulnerability in Cisco Unified Communications Manager (Unified CM) and Cisco Unified Communications Manager Session Management Edition (Unified CM SME) could allow an unauthenticated, remote attacker to conduct server-side request forgery (SSRF) attacks through an affected device. This vulne...

PoC for CVE-2026-3180

WordPressContest Gallery – Uplo...7.5HIGH
Blind SQL Injection in Contest Gallery Plugin for WordPress

The Contest Gallery plugin for WordPress is exposed to a blind SQL injection vulnerability through the 'cgLostPasswordEmail' and 'cgl_mail' parameters in all versions up to and including 28.1.4. This vulnerability arises due to insufficient escaping of user-supplied input and a lack of proper san...

PoC for CVE-2026-41940

WebprosCpanel🟣 EPSS 91%9.3CRITICAL
Authentication Bypass Vulnerability in cPanel and WHM

The affected versions of cPanel and WHM contain a serious authentication bypass flaw in the login flow. This vulnerability enables unauthenticated remote attackers to bypass authentication mechanisms, allowing them to gain unauthorized access to the control panel. Users of the specified versions ...

PoC for CVE-2026-23744

McpjamInspector🟣 EPSS 30%9.8CRITICAL
Remote Code Execution Vulnerability in MCPJam Inspector by MCP

MCPJam Inspector, designed for local-first development on MCP servers, has a vulnerability allowing remote code execution (RCE) due to improper binding settings. In versions 1.4.2 and earlier, the platform listens on 0.0.0.0 by default, enabling attackers to exploit this configuration through cra...

PoC for CVE-2026-11312

BytedanceInfinistore4.8MEDIUM
bytedance InfiniStore KV Map infinistore.h purge_kv_map algorithmic...

A vulnerability was found in bytedance InfiniStore up to 0.2.33. The impacted element is the function purge_kv_map in the library /src/infinistore.h of the component KV Map Handler. Performing a manipulation results in inefficient algorithmic complexity. The attack requires a local approach. The ...

PoC for CVE-2026-6815

CasdoorCasdoor5.9MEDIUM
Arbitrary File Write Vulnerability in Casdoor's Local File System S...

The arbitrary file write vulnerability in Casdoor's Local File System storage provider is caused by insufficient path sanitization. An authenticated attacker with administrative privileges can exploit this vulnerability to perform a Path Traversal attack, allowing them to create or overwrite file...

PoC for CVE-2026-10878

D-linkDwr-m9205.3MEDIUM
D-Link DWR-M920 formSmsManage sub_41C8E8 command injection

A vulnerability was detected in D-Link DWR-M920 1.1.50/1.1.70. Affected is the function sub_41C8E8 of the file /boafrm/formSmsManage. Performing a manipulation of the argument action_value results in command injection. The attack is possible to be carried out remotely. The exploit is now public a...

PoC for CVE-2026-41096

MicrosoftWindows 11 Version 23h29.8CRITICAL
Heap-Based Buffer Overflow in Microsoft Windows DNS Impacting Netwo...

A heap-based buffer overflow vulnerability in Microsoft Windows DNS can allow unauthorized attackers to execute arbitrary code remotely over the network. This can lead to potential data breaches and unauthorized access to sensitive information. Organizations are strongly encouraged to apply secur...

PoC for CVE-2026-10875

ProjectworldsOnline Art Gallery Sho...5.3MEDIUM
projectworlds Online Art Gallery Shop Project adminHome.ph sql inje...

A security flaw has been discovered in projectworlds Online Art Gallery Shop Project 1.0. The impacted element is an unknown function of the file /admin/adminHome.ph. The manipulation of the argument social_twitter results in sql injection. The attack may be launched remotely. The exploit has bee...

PoC for CVE-2026-10874

ProjectworldsOnline Art Gallery Sho...5.3MEDIUM
projectworlds Online Art Gallery Shop Project adminHome.php sql inj...

A vulnerability was identified in projectworlds Online Art Gallery Shop Project 1.0. The affected element is an unknown function of the file /admin/adminHome.php. The manipulation of the argument social_insta leads to sql injection. The attack may be initiated remotely. The exploit is publicly av...

PoC for CVE-2026-45247

MirasvitFull Page Cache Warmer...9.3CRITICAL
PHP Object Injection Vulnerability in Mirasvit Full Page Cache Warm...

The Mirasvit Full Page Cache Warmer, specifically for Magento 2, is susceptible to a PHP object injection flaw that permits unauthenticated attackers to execute arbitrary code. This vulnerability arises from an unrestricted invocation of PHP's native unserialize() function when handling malformed...

PoC for CVE-2026-10872

ShibbyTomato8.6HIGH
Shibby Tomato Web UI rc start_vpnserver os command injection

A vulnerability was found in Shibby Tomato 1.28.0000. This issue affects the function start_vpnserver of the file /sbin/rc of the component Web UI. Performing a manipulation results in os command injection. The attack can be initiated remotely. The exploit has been made public and could be used. ...

PoC for CVE-2026-10871

ShibbyTomato8.6HIGH
Shibby Tomato Web UI rc start_6rd_tunnel os command injection

A vulnerability has been found in Shibby Tomato 1.28.0000. This vulnerability affects the function start_6rd_tunnel of the file /sbin/rc of the component Web UI. Such manipulation of the argument ipv6_6rd_borderrelay leads to os command injection. It is possible to launch the attack remotely. The...

PoC for CVE-2013-6117

DahuasecurityDvr Firmware🟣 EPSS 90%
Authentication Bypass in Dahua DVR Products by Dahua Technology

The Dahua DVR products version 2.608.0000.0 and 2.608.GV00.0 are susceptible to a critical authentication bypass vulnerability that allows malicious remote attackers to gain unauthorized access to sensitive information. By exploiting this flaw via TCP port 37777, attackers can retrieve user crede...

PoC for CVE-2025-71316

SqliteSqldiff9.2CRITICAL
SQLite sqldiff remote code execution via argument injection

SQLite 'sqldiff.exe' does not securely handle the way the Microsoft Windows C runtime converts Unicode characters to ANSI codepages. An attacker could use the '-L' option to load an arbitrary DLL with a crafted command line argument string that results in command line file arguments being misint...

PoC for CVE-2026-25551

Seagull Software,...Bartender 20218.5HIGH
Seagull Software BarTender Deserialization Privilege Escalation via...

Seagull Software BarTender 2021 R1 through 12.0.1 contains an insecure deserialization vulnerability that allows low-privileged local users to escalate privileges. The DataServiceSingleton .NET Remoting endpoint is bound to localhost on TCP port 7375 via BtSystem.Service.exe, limiting the attack ...