Publicly Disclosed
PoC Exploits

🔴 Alway take caution when working with PoC Exploits 🔴

Discovered just now...

PoC for CVE-2026-14762

Code-projectsHotel And Tourism Rese...6.9MEDIUM
SQL Injection Vulnerability in Hotel and Tourism Reservation by Cod...

A significant SQL injection vulnerability has been identified in the Hotel and Tourism Reservation application by Code-Projects, specifically within the Room Management Page component. The vulnerability arises from the manipulation of an argument within the /admin/rooms.php file, allowing an atta...

PoC for CVE-2026-14191

RarlabWinrar7.8HIGH
Out-of-Bounds Heap Write in WinRAR Product by RARLab

A vulnerability exists within the RAR5 recovery-volume parser used in WinRAR and UnRAR, leading to potential heap corruption through crafted .rev files. This flaw stems from the incorrect validation of input that allows for manipulation of internal data structures, posing a risk when users perfor...

PoC for CVE-2024-36401

GeoserverGeoserver🟣 EPSS 100%9.8CRITICAL
Remote Code Execution Vulnerability in GeoServer Prior to Versions ...

GeoServer, an open-source server enabling geospatial data sharing and manipulation, contains a vulnerability that permits unauthenticated users to execute arbitrary code. This flaw arises from the handling of OGC request parameters, where property names are unsafely evaluated as XPath expressions...

PoC for CVE-2021-41773

ApacheApache Http Server🟣 EPSS 100%7.5HIGH
Path traversal and file disclosure vulnerability in Apache HTTP Ser...

A flaw was found in a change made to path normalization in Apache HTTP Server 2.4.49. An attacker could use a path traversal attack to map URLs to files outside the directories configured by Alias-like directives. If files outside of these directories are not protected by the usual default config...

PoC for CVE-2026-11405

TendaFirmware
Hidden Backdoor Authentication in Web Server Binary by Vendor

The web server binary '/bin/httpd' contains a vulnerability that enables a hidden backdoor authentication mechanism within its login function. This flaw allows unauthorized access by reading a backdoor password from the device configuration file if normal authentication fails. Using a direct comp...

Discovered 1 hour ago

PoC for CVE-2026-53359

LinuxLinux
Use-After-Free Vulnerability in Linux Kernel Affecting KVM x86 Prod...

A vulnerability has been identified in the Linux kernel concerning the KVM x86 module, specifically a use-after-free scenario due to an unexpected role in shadow paging. This issue arises when a host modifies a Page Directory Entry (PDE) mapping from outside a guest virtual machine and subsequent...

Discovered 2 hours ago

PoC for CVE-2021-42278

MicrosoftWindows Server 2019🟣 EPSS 70%7.5HIGH
Active Directory Domain Services Elevation of Privilege Vulnerability

Active Directory Domain Services Elevation of Privilege Vulnerability

PoC for CVE-2026-42980

MicrosoftWindows 10 Version 16077.8HIGH
Elevation of Privilege Vulnerability in Windows NT OS Kernel by Mic...

The Windows NT OS Kernel contains a vulnerability that allows authorized attackers to exploit an integer underflow condition, which can lead to local privilege escalation. This design flaw may enable attackers to gain elevated privileges on affected systems, making it critical for users to apply ...

Discovered 5 hours ago

PoC for CVE-2026-48908

Joomshaper.netSp Page Builder Extens...10CRITICAL
Arbitrary File Upload in SP Page Builder for Joomla

A vulnerability in the SP Page Builder for Joomla permits unauthenticated users to upload arbitrary files. This weakness can lead to the execution of PHP code, presenting significant security risks for Joomla websites using this extension.

PoC for CVE-2026-54350

BudibaseBudibase10CRITICAL
Unauthenticated Access to Budibase Apps Exposes Database Contents

Budibase, an open-source low-code platform, has a vulnerability that allows unauthenticated visitors to access and manipulate sensitive database documents. This issue primarily affects versions prior to 3.39.12. An attacker can exploit this flaw by sending an HTTP request to a published Budibase ...

PoC for CVE-2014-6271

GnuBash🟣 EPSS 100%9.8CRITICAL
Code Injection Vulnerability in GNU Bash by The GNU Project

GNU Bash versions up to 4.3 are vulnerable to a code injection flaw due to the mishandling of trailing strings after function definitions in environment variables. This vulnerability enables remote attackers to execute arbitrary code by crafting specific environment variables under various condit...

Discovered 9 hours ago

PoC for CVE-2025-55182

MetaReact-server-dom-webpack🟣 EPSS 100%10CRITICAL
Remote Code Execution Vulnerability in React Server Components by Meta

A remote code execution vulnerability found in React Server Components allows attackers to exploit improperly handled payloads. This issue affects versions 19.0.0 through 19.2.0, compromising server function endpoints through unsafe deserialization of HTTP request payloads. As a result, this flaw...

PoC for CVE-2026-38526

WebkulKrayin CRM9.9CRITICAL
Arbitrary File Upload Vulnerability in Webkul Krayin CRM

An authenticated arbitrary file upload vulnerability exists in the /admin/tinymce/upload endpoint of Webkul Krayin CRM version 2.2.x. This flaw enables attackers to upload crafted PHP files, which can subsequently lead to the execution of arbitrary code on the server. Such vulnerabilities can be ...

PoC for CVE-2026-10834

WordPressWP Travel Engine
File Relocation Vulnerability in WP Travel Engine Plugin by WordPress

The WP Travel Engine plugin for WordPress fails to validate the source of user-supplied profile image paths effectively. This security flaw allows authenticated users with subscriber-level access and above to relocate arbitrary files within the WordPress uploads directory into their own profile-i...

PoC for CVE-2026-4375

WordPressDoleads Integrator
Remote Code Execution in DoLeads Integrator and wp2epub Plugins by ...

The DoLeads Integrator and wp2epub plugins for WordPress allow unauthorized users to install unverified extensions from wordpress.org. This creates a pathway for remote code execution (RCE), jeopardizing website security. Website administrators must ensure that these plugins are updated to mitiga...

PoC for CVE-2026-12277

WordPressFrontend File Manager ...
Unauthorized File Deletion in Frontend File Manager Plugin by WordP...

The Frontend File Manager Plugin for WordPress, version 23.6, is susceptible to a vulnerability that allows unauthenticated users to delete arbitrary files on the server without proper validation of file paths derived from user input. This issue is particularly concerning when guest upload mode i...

PoC for CVE-2026-12375

WordPressUncanny-automator-pro
Unsecured Backdoor in Uncanny Automator Pro Plugin for WordPress

The Uncanny Automator Pro WordPress plugin versions prior to 7.3.0.6 were found to have a critical backdoor that was planted following a compromise of the vendor's update infrastructure. This malicious code allows attackers without authentication to gain administrative access to the affected site...

Discovered 11 hours ago

PoC for CVE-2023-22496

NetdataNetdata🟣 EPSS 36%8.1HIGH
Netdata vulnerable to command injection

Netdata, an open-source real-time infrastructure monitoring tool, contains a vulnerability that allows attackers to execute arbitrary commands on the Netdata agent. This occurs when an attacker establishes a streaming connection and triggers an alert, thereby exploiting the function `health_alarm...

Discovered 13 hours ago

PoC for CVE-2026-24061

GnuInetutils🟣 EPSS 99%9.8CRITICAL
Remote Authentication Bypass in GNU Inetutils Telnetd

The GNU Inetutils telnet daemon (telnetd) is vulnerable to a remote authentication bypass that can occur when an attacker manipulates the USER environment variable by specifying a '-f root' value. This flaw allows unauthorized users to gain access without proper authentication. Affected users sho...

Discovered 15 hours ago

PoC for CVE-2012-2122

OracleMysql🟣 EPSS 96%
SQL Injection Vulnerability in MySQL and MariaDB Products

A flaw in the handling of password comparisons in Oracle MySQL and MariaDB allows remote attackers to bypass authentication by repeatedly attempting to login with the same incorrect password. This occurs due to an improper check of the return value from the memcmp function, leading to a situation...

Discovered 16 hours ago

PoC for CVE-2026-40022

ApacheApache Camel Platform ...8.2HIGH
Authentication Bypass in Apache Camel's HTTP Server Affects Security

The Apache Camel embedded HTTP server contains a vulnerability that allows unauthenticated access to protected endpoints. Specifically, when authentication is enabled, and non-root context paths are set, the derived authentication paths do not cover subpaths. This misconfiguration can lead to una...

Discovered 17 hours ago

PoC for CVE-2026-33454

ApacheApache Camel9.4CRITICAL
Header Injection Vulnerability in Apache Camel Email Component

The Camel-Mail component allows for potential header injection due to improper filtering of Camel message headers when email is consumed. The MailHeaderFilterStrategy only applies filtering on outbound messages, leaving inbound message checks unconfigured. As a result, attackers can deliver craft...

Discovered 18 hours ago

PoC for CVE-2026-33453

ApacheApache Camel10CRITICAL
Remote Code Execution Vulnerability in Apache Camel's CoAP Component

A vulnerability exists within Apache Camel's camel-coap component that allows an unauthenticated attacker to exploit message header injection. By sending a single CoAP UDP packet to a Camel route that accepts coap:// input, attackers can inject arbitrary Camel internal headers into the Exchange. ...

Discovered 19 hours ago

PoC for CVE-2026-4480

Red HatRed Hat Enterprise Lin...🟣 EPSS 13%9CRITICAL
Samba Printing Subsystem Vulnerability in Samba Software

A vulnerability exists in the Samba printing subsystem that allows remote attackers to execute arbitrary commands on affected systems. The flaw occurs due to improper handling of the client-controlled job description string, which is passed directly to the configured print command without escapin...

Discovered 20 hours ago

PoC for CVE-2026-6421

MobatekMobaxterm Home Edition7.3HIGH
Uncontrolled Search Path Vulnerability in MobaXterm Home Edition by...

A vulnerability exists in the Mobatek MobaXterm Home Edition, specifically in the msimg32.dll library, which allows for an uncontrolled search path. This could potentially enable an attacker to exploit the software locally. The complexity of the attack is notably high, making it challenging to ex...

PoC for CVE-2026-27172

ApacheApache Camel8.8HIGH
Deserialization Flaw in Apache Camel Consul Component

The Consul component of Apache Camel contains a deserialization vulnerability that allows for potentially malicious Java objects to be injected and executed. When an attacker gains write access to the Consul KV store, they can insert such objects, leading to arbitrary code execution when Camel su...

Discovered 23 hours ago

PoC for CVE-2023-51385

OpenBSDOpenssh🟣 EPSS 20%6.5MEDIUM
OS Command Injection Vulnerability in OpenSSH Before 9.6

In ssh in OpenSSH before 9.6, OS command injection might occur if a user name or host name has shell metacharacters, and this name is referenced by an expansion token in certain situations. For example, an untrusted Git repository can have a submodule with shell metacharacters in a user name or h...

Discovered 1 day ago

PoC for CVE-2025-15668

GPACGpac4.8MEDIUM
Heap-Based Buffer Overflow in GPAC's MP4Box Affects Local Security

A vulnerability has been identified in GPAC's MP4Box component, specifically within the sgpd_del_entry function of the source file box_code_base.c. The issue allows for a heap-based buffer overflow, which can be exploited by an attacker with local access. This provides a method for data manipulat...

PoC for CVE-2025-15667

GPACGpac4.8MEDIUM
Double Free Vulnerability in GPAC MP4Box Affects Various Versions

A vulnerability within GPAC's MP4Box component, specifically in the gf_isom_nalu_sample_rewrite function of avc_ext.c, has been identified. This issue arises from the manipulation of the nalu_out_bs argument, leading to a potential double free condition. An attacker can exploit this vulnerability...

PoC for CVE-2026-8713

WordPressAvada (fusion) Builder9.1CRITICAL
Arbitrary File Deletion in Avada Builder Plugin for WordPress

The Avada (Fusion) Builder plugin for WordPress is susceptible to arbitrary file deletion due to inadequate file path validation in its maybe_delete_files function. This vulnerability affects all versions up to and including 3.15.3, enabling unauthenticated attackers to delete files on the server...

PoC for CVE-2026-14802

ReactCreate-react-app6.9MEDIUM
OS Command Injection in React Create-React-App on macOS

A security vulnerability has been identified in the React Create-React-App framework on macOS, specifically within the startBrowserProcess function located in openBrowser.js of the react-dev-utils component. This flaw permits OS command injection, allowing attackers to potentially execute arbitra...

PoC for CVE-2021-3493

UbuntuLinux🟣 EPSS 44%8.8HIGH
Local Privilege Escalation in Linux Kernel OverlayFS Implementation...

The OverlayFS implementation in the Linux kernel failed to adequately validate user namespaces when setting file capabilities on underlying file systems. This weakness, combined with specific patches in the Ubuntu kernel that permit unprivileged overlay mounts, enables attackers to exploit the si...

PoC for CVE-2026-14800

ImhamzaazamEcommerceflask5.3MEDIUM
Cross-Site Request Forgery Vulnerability in imhamzaazam Ecommerce P...

A vulnerability has been discovered in the imhamzaazam ecommerceFlask platform, affecting versions prior to cb7d9e24c30a99379651b7493b32048126ef402b. This weakness can lead to unauthorized commands being transmitted from an authenticated user to the application without their consent. Since this i...

PoC for CVE-2026-12083

WordPressAdmin And Site Enhance...8.1HIGH
Unauthorized Role Restoration in Admin Site Enhancements Plugin for...

The Admin and Site Enhancements plugin for WordPress, both the standard and pro versions prior to 8.8.4, contains a significant vulnerability that permits unauthenticated attackers to exploit the role-restoration request handler. This flaw enables malicious users to reinstate administratively dem...

PoC for CVE-2026-6382

WordPressFileorganizer9.1CRITICAL
OS Command Injection Vulnerability in FileOrganizer and Other WordP...

Certain WordPress plugins, including FileOrganizer, Advanced File Manager, File Manager Pro, and File Manager, have a vulnerability due to insufficient input escaping before executing shell commands during image operations. This flaw allows authenticated users to potentially execute arbitrary com...

PoC for CVE-2026-11766

WordPressUltimate Member8HIGH
Improper Sanitization in Ultimate Member WordPress Plugin Affects U...

The Ultimate Member plugin for WordPress, prior to version 2.12.0, contains a flaw in how it handles the sanitization of custom textarea profile fields. This oversight permits authenticated users with Subscriber-level access and higher to inject malicious JavaScript code into their profiles. When...

PoC for CVE-2026-10830

WordPressAllcoach8.8HIGH
Email Verification Flaw in AllCoach WordPress Plugin by the Vendor

The AllCoach WordPress plugin prior to version 1.0.2 contains a critical flaw that fails to confirm whether an email address submitted for account registration is already linked to an existing user. This oversight enables unauthorized individuals to overwrite the passwords of existing users, incl...

PoC for CVE-2024-6228

WordPressNotifications For Form...7.5HIGH
Server-Side File Inclusion Vulnerability in Notifications for Forms...

The Notifications for Forms & WordPress Actions Plugin for WordPress, prior to version 2.6, is prone to a server-side file inclusion vulnerability. This flaw occurs due to the lack of validation on user-supplied input when constructing file paths. As a consequence, authenticated users with subscr...

PoC for CVE-2026-11962

WordPressFileorganizer8.8HIGH
File Upload Vulnerability in FileOrganizer WordPress Plugin

The FileOrganizer plugin for WordPress, prior to version 1.2.0, is susceptible to a file upload vulnerability. This flaw allows authenticated users with file-manager access—potentially extended to sub-admins via a premium add-on—to bypass file type validation during various file management operat...

PoC for CVE-2026-11855

WordPressSimple Membership8.8HIGH
Web Script Injection Vulnerability in Simple Membership Plugin by W...

The Simple Membership WordPress plugin prior to version 4.7.5 is susceptible to a web script injection vulnerability due to insufficient verification of Stripe webhook requests when no signing secret is configured. Additionally, the plugin fails to properly escape values retrieved from these requ...

PoC for CVE-2026-49975

ApacheApache Http Server🟣 EPSS 11%7.5HIGH
Memory Allocation Vulnerability in Apache HTTP Server by Apache

A memory allocation issue exists in Apache HTTP Server's mod_http module, which can lead to denial of service when an attacker sends crafted HTTP requests with excessive size values. This vulnerability affects a wide range of Apache HTTP Server versions, making it critical for users to implement ...

PoC for CVE-2026-14799

CodeastroEcommerce Website5.3MEDIUM
SQL Injection Vulnerability in CodeAstro Ecommerce Website 1.0

A security flaw has been identified in the CodeAstro Ecommerce Website version 1.0, specifically affecting the wishlist management functionality located in the file /customer/my_account.php?my_wishlist. The vulnerability allows an attacker to manipulate the 'delete_wishlist' parameter, leading to...

PoC for CVE-2026-14798

CodeastroApartment Visitor Mana...5.3MEDIUM
SQL Injection Vulnerability in CodeAstro Apartment Visitor Manageme...

A vulnerability exists in the CodeAstro Apartment Visitor Management System (version 1.0) that allows for SQL injection through inadequate sanitation of user input, specifically in the 'visname' argument of the '/apartment-visitor/visitor-entry.php' file. This flaw can enable an attacker to execu...

PoC for CVE-2018-10933

[unknown]Libssh🟣 EPSS 92%9.1CRITICAL
Unauthorized Channel Creation in libssh Server-Side State Machine b...

A vulnerability in the server-side state machine of libssh permits a malicious client to create communication channels without prior authentication. This flaw can lead to unauthorized access, posing risks to the confidentiality and integrity of data transmitted through the affected software. User...

PoC for CVE-2026-14797

CodeastroApartment Visitor Mana...5.3MEDIUM
SQL Injection Vulnerability in CodeAstro Apartment Visitor Manageme...

A SQL injection vulnerability in the CodeAstro Apartment Visitor Management System version 1.0 arises from improper handling of input in the edit-apartment.php file. Attackers can manipulate the 'editid' argument, potentially allowing them to execute arbitrary SQL queries. This flaw is exploitabl...

PoC for CVE-2026-14796

CodeastroApartment Visitor Mana...5.3MEDIUM
SQL Injection Vulnerability in CodeAstro Apartment Visitor Manageme...

A vulnerability in CodeAstro's Apartment Visitor Management System version 1.0 has been identified, allowing for SQL injection attacks via the manipulation of the 'fromdate' argument in the report.php file. This flaw could enable attackers to execute arbitrary SQL queries on the database, potenti...

PoC for CVE-2026-14795

CodeastroApartment Visitor Mana...5.3MEDIUM
SQL Injection Vulnerability in CodeAstro Apartment Visitor Manageme...

A SQL injection vulnerability exists in the CodeAstro Apartment Visitor Management System version 1.0. The issue arises from improper validation of input within the '/apartment-visitor/action-visitor.php' file, specifically in the argument 'remark'. This flaw allows an attacker to manipulate SQL ...

Discovered 2 days ago

PoC for CVE-2026-14791

Crater-invoice-incCrater5.1MEDIUM
Cross-Site Scripting Vulnerability in Crater Invoice by Crater-Invo...

A security weakness has been discovered in the Crater Invoice application, specifically within the getFormattedString function of the InvoicesRequest.php file. This vulnerability allows an attacker to manipulate the argument used in the invoicing notes, potentially leading to cross-site scripting...

PoC for CVE-2026-14790

GPACGpac4.8MEDIUM
Null Pointer Dereference Vulnerability in GPAC Media File Handler

A flaw exists in GPAC version 26.02.0 within the Media File Handler's function nhmldump_send_frame, specifically in the src/filters/write_nhml.c file. This vulnerability allows an attacker with local access to manipulate the function, potentially leading to a null pointer dereference. The exploit...

PoC for CVE-2026-14789

RadareorgRadare24.8MEDIUM
Stack-based Buffer Overflow in radareorg radare2 Affected by Memory...

A stack-based buffer overflow vulnerability has been identified in the radareorg radare2 tool, specifically within the Memory64ListStream Parser of the libr/bin/format/mdmp/mdmp.c component. This vulnerability arises from improper handling of inputs, allowing an attacker with local access to mani...