Latest CVE PoCs
Demonstrate a proof-of-concept exploit for CVE-2026-2441, a high-risk Chrome use-after-free vulnerability in the Blink CSS engine.
🛠 Demonstrate remote code execution in Windows Notepad via markdown links exploiting unsecured URL protocols.
🛠 Demonstrate remote code execution in Windows Notepad versions below 11.2510 using the CVE-2026-20841 proof of concept.
🏆 Discover top ML/NLP research by exploring Best Paper winners from major venues (2022-2026) to enhance your understanding of high-impact work.
🔍 Analyze WSUS deserialization behavior to enhance security, generate reports, and identify configuration weaknesses in your infrastructure.
⚠️ Explore a vulnerable environment to test security scanners against the CVE-2025-55182 RCE flaw in React Server Components and Next.js applications.
🚨 Exploit CVE-2025-55182, a critical RCE vulnerability in React Server Components for Next.js apps; enables testing for prototype pollution risks.
⚡ Discover and exploit CVE-2025-55182 with this PoC, offering reliable remote code execution tests for React Server Components in Next.js.
🚨 Exploit CVE-2025-55182 to demonstrate RCE in React Server Functions, highlighting risks from insecure prototype references in Next.js applications.
🚨 Exploit and scan for CVE-2025-55182, a critical React/Next.js vulnerability enabling remote code execution through prototype pollution techniques.
🚨 Demonstrate CVE-2025-55182, a critical React vulnerability allowing remote code execution via prototype chain pollution in `react-server-dom-webpack@19.0.0`.
🛠 Exploit CVE-2025-8088 with this Python tool to generate malicious WinRAR archives that ensure payload persistence in Windows startup folders.
Versioned PoC dataset collected from GitHub for CVE research and threat intelligence.
Automatically push newly disclosed POC information.
🔒 Exploit local privilege escalation vulnerabilities in sudo before 1.9.17p1 using the chroot option for enhanced security assessments.
Zerologon (CVE-2020-1472) Proof-of-Concept application - Critical Active Directory vulnerability exploitation tool.
📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.
🔍 Scan for vulnerabilities with an AI-powered tool that enhances security in your development process, ensuring safety before production.
🔍 Demonstrate the CVE-2025-32463 privilege-escalation flaw in sudo's chroot feature with this minimal, reproducible proof of concept environment.
🐙 CVE-2025-54253 exploit demo for Adobe AEM Forms on JEE: OGNL injection to RCE with PoC, Python 3.10 exploit code, reproducer and mitigation guidance.
Demonstrate CVE-2025-32463 with this PoC for sudo's chroot feature. Explore the exploit and its impact on vulnerable sudo versions. 🐱💻🔒
Test authentication bypass vulnerabilities in cPanel and WHM using this proof of concept exploit tool written in Go.
Exploit CVE-2026-31431 on Linux using a Rust implementation to achieve local privilege escalation via an arbitrary page cache write primitive.
Automate Python security research with an LLM agent that scans, exploits, and validates PyPI packages in isolated pipelines.
Exploit and detect CVE-2026-31431 vulnerabilities using a static binary that monitors system integrity and bypasses PAM authentication.
Collect CVE research, exploit POCs, and defensive guidance for authorized security testing and vulnerability analysis
Demonstrate CVE-2025-24257 with a public PoC for IOGPUFamily kernel heap OOB read/write and panic analysis
Gather and update all available and newest CVEs with their POC.
Dockerized Spring4Shell (CVE-2022-22965) PoC application and exploit
Lab Docker dựng CMS Made Simple 2.2.5 (Wawa) và tái hiện CVE-2018-1000094 (authenticated RCE). Bao gồm hướng dẫn setup, PoC, và tài liệu kiểm thử.
PoC for the Remote Desktop Gateway vulnerability - CVE-2020-0609 & CVE-2020-0610
Proof of Concept exploit for CVE-2025-8088 - WinRAR path traversal vulnerability affecting versions ≤7.12. Educational tool demonstrating ADS-based file extraction bypass. ⚠️ Research purposes only.
LdapNightmare is a PoC tool that tests a vulnerable Windows Server against CVE-2024-49113
Dockerized Spring4Shell (CVE-2022-22965) PoC application and exploit
CVE-2024-21413 | Microsoft Outlook Remote Code Execution Vulnerability PoC
PoC and reverse shell sample for CVE-2014-9390 (gitshock) vulnerability.
PoC exploit for CVE-2020-7247 OpenSMTPD 6.4.0 < 6.6.1 Remote Code Execution
Local Privilege Escalation via snapd (CVE-2019-7304) Remastered PoC exploit
f4T1H's PoC script for CVE-2021-3560 Polkit D-Bus Privilege Escalation