Recently updated Proof-of-Concepts

2026

Latest 20 of 191 Repositories

Stars	Updated	Name	Description
3812⭐	36 minutes ago	copy-fail-CVE-2026-31431	Copy Fail (CVE-2026-31431): 9-year-old Linux kernel LPE found by Theori's Xint Code
556⭐	8 hours ago	cve_2026_31431	Exploit POC for CVE_2026_31431
258⭐	4 days ago	CVE-2026-21858	n8n Ni8mare - Unauthenticated Arbitrary File Read to RCE Chain (CVSS 10.0)
208⭐	4 days ago	CVE-2026-24061	Exploitation of CVE-2026-24061
69⭐	1 day ago	cve-2026-31431	CVE-2026-31431: Copy Fail
98⭐	2 days ago	CVE-2026-31431-Advanced-Exploit	CVE-2026-31431 纯文件利用
84⭐	5 days ago	CVE-2026-41651
91⭐	12 hours ago	Copy-Fail-Exploit-CVE-2026-31431	Most Linux LPEs need a race window or a kernel-specific offset. Copy Fail is a straight-line logic flaw, it needs neither. The same 732-byte Python script (or .c elf) roots every Linux distribution shipped since 2017.
59⭐	1 hour ago	CVE-2026-34486	Apache Tomcat Tribes EncryptInterceptor fail-open bypass, unauthenticated RCE PoC
134⭐	3 hours ago	Copy-Fail-CVE-2026-31431-Kubernetes-PoC	PoC: fully unprivileged container escape to node-level code execution on Kubernetes via CVE-2026-31431 page-cache corruption + shared image layers. Validated on Alibaba Cloud ACK, Amazon EKS and Google GKE.
60⭐	14 hours ago	CVE-2026-0073-Android-adbd-authentication-bypass-POC
31⭐	16 hours ago	CVE-2026-31431
29⭐	6 days ago	cve-2026-41940-poc
50⭐	11 hours ago	CVE-2026-31431-Linux-Copy-Fail	Rust implementation Exploit/PoC of CVE-2026-31431-Linux-Copy-Fail, allow executing customized shellcode (such as Meterpreter).
66⭐	27 days ago	CVE-2026-24061-POC
26⭐	36 days ago	cve-2026-32746	CVE-2026-32746 - GNU InetUtils telnetd LINEMODE SLC Buffer Overflow PoC (pre-auth RCE, CVSS 9.8)
28⭐	6 days ago	CVE-2026-34159	0 Click RCE exploit for CVE-2026-34159 Lama.cpp RPC server
62⭐	3 hours ago	poc-cpanel-cve-2026-41940
31⭐	3 days ago	CVE-2026-35616	Fortinet FortiClientEMS improper access control
40⭐	14 days ago	CVE-2026-25769	Remote Code Execution via Insecure Deserialization in Wazuh Cluster

2025

Latest 20 of 570 Repositories

Stars	Updated	Name	Description
1403⭐	1 day ago	CVE-2025-55182	Explanation and full RCE PoC for CVE-2025-55182
797⭐	11 hours ago	CVE-2025-55182-research	CVE-2025-55182 POC
701⭐	6 days ago	CVE-2025-33073	PoC Exploit for the NTLM reflection SMB flaw.
528⭐	10 hours ago	CVE-2025-32463_chwoot	Escalation of Privilege to the root through sudo binary with chroot option. CVE-2025-32463
461⭐	1 day ago	CVE-2025-32463	Local Privilege Escalation to Root via Sudo chroot in Linux
312⭐	2 days ago	CVE-2025-53770-Exploit	SharePoint WebPart Injection Exploit Tool
310⭐	2 days ago	CVE-2025-55182	RSC/Next.js RCE Vulnerability Detector & PoC Chrome Extension – CVE-2025-55182 & CVE-2025-66478
1039⭐	1 day ago	React2Shell-CVE-2025-55182-original-poc	Original Proof-of-Concepts for React2Shell CVE-2025-55182
402⭐	2 days ago	CVE-2025-24071_PoC	CVE-2025-24071: NTLM Hash Leak via RAR/ZIP Extraction and .library-ms File
212⭐	3 days ago	CVE-2025-32023	PoC & Exploit for CVE-2025-32023 / PlaidCTF 2025 "Zerodeo"
421⭐	2 days ago	Next.js-RSC-RCE-Scanner-CVE-2025-66478	A command-line scanner for batch detection of Next.js application versions and determining if they are affected by CVE-2025-66478 vulnerability.
386⭐	31 days ago	ColorOS-CVE-2025-10184	ColorOS短信漏洞，以及用户自救方案
274⭐	2 days ago	CVE-2025-55182-advanced-scanner-
194⭐	5 days ago	POC-CVE-2025-24813	his repository contains an automated Proof of Concept (PoC) script for exploiting CVE-2025-24813, a Remote Code Execution (RCE) vulnerability in Apache Tomcat. The vulnerability allows an attacker to upload a malicious serialized payload to the server, leading to arbitrary code execution via deserialization when specific conditions are met.
190⭐	50 days ago	RSC-Detect-CVE-2025-55182	RSC Detect CVE 2025 55182
198⭐	8 days ago	CVE-2025-30208-EXP	CVE-2025-30208-EXP
159⭐	4 days ago	CVE-2025-21756	Exploit for CVE-2025-21756 for Linux kernel 6.6.75. My first linux kernel exploit!
196⭐	4 days ago	CVE-2025-32756-POC	Proof of Concept for CVE-2025-32756 - A critical stack-based buffer overflow vulnerability affecting multiple Fortinet products.
110⭐	25 days ago	CVE-2025-43300	This is POC for IOS 0click CVE-2025-43300
172⭐	17 days ago	CVE-2025-26125	( 0day ) Local Privilege Escalation in IObit Malware Fighter

2024

Latest 20 of 623 Repositories

Stars	Updated	Name	Description
2446⭐	1 day ago	CVE-2024-1086	Universal local privilege escalation Proof-of-Concept exploit for CVE-2024-1086, working on most Linux kernels between v5.14 and v6.6, including Debian, Ubuntu, and KernelCTF. The success rate is 99.4% in KernelCTF images.
695⭐	11 days ago	CVE-2024-38063	poc for CVE-2024-38063 (RCE in tcpip.sys)
492⭐	33 days ago	cve-2024-6387-poc	a signal handler race condition in OpenSSH's server (sshd)
519⭐	10 days ago	CVE-2024-49113	LdapNightmare is a PoC tool that tests a vulnerable Windows Server against CVE-2024-49113
523⭐	10 days ago	CVE-2024-6387_Check	CVE-2024-6387_Check is a lightweight, efficient tool designed to identify servers running vulnerable versions of OpenSSH
225⭐	8 days ago	CVE-2024-38077	RDL的堆溢出导致的RCE
382⭐	35 days ago	cve-2024-6387-poc	32-bit PoC for CVE-2024-6387 — mirror of the original 7etsuo/cve-2024-6387-poc
332⭐	7 hours ago	CVE-2024-0044	CVE-2024-0044: a "run-as any app" high-severity vulnerability affecting Android versions 12 and 13
315⭐	10 days ago	CVE-2024-4577	PHP CGI Argument Injection (CVE-2024-4577) Remote Code Execution PoC
319⭐	2 days ago	CVE-2024-21338	Local Privilege Escalation from Admin to Kernel vulnerability on Windows 10 and Windows 11 operating systems with HVCI enabled.
243⭐	3 days ago	CVE-2024-21413	CVE-2024-21413 PoC for THM Lab
766⭐	4 days ago	CVE-2024-21413-Microsoft-Outlook-Remote-Code-Execution-Vulnerability	Microsoft-Outlook-Remote-Code-Execution-Vulnerability
9⭐	63 days ago	CVE-2024-38077-POC
179⭐	6 days ago	CVE-2024-6387	Remote Unauthenticated Code Execution Vulnerability in OpenSSH server (CVE-2024-6387)
237⭐	1 day ago	CVE_2024_30078_POC_WIFI	basic concept for the latest windows wifi driver CVE
180⭐	32 days ago	CVE-2024-25600	Unauthenticated Remote Code Execution – Bricks <= 1.9.6
204⭐	6 days ago	CVE-2024-23897	CVE-2024-23897
157⭐	80 days ago	CVE-2024-21413	Microsoft Outlook Information Disclosure Vulnerability (leak password hash) - Expect Script POC
85⭐	38 days ago	CVE-2024-40725-CVE-2024-40898	CVE-2024-40725 and CVE-2024-40898, affecting Apache HTTP Server versions 2.4.0 through 2.4.61. These flaws pose significant risks to web servers worldwide, potentially leading to source code disclosure and server-side request forgery (SSRF) attacks.
140⭐	122 days ago	cve-2024-20017	exploits for CVE-2024-20017

2023

Latest 20 of 525 Repositories

Stars	Updated	Name	Description
787⭐	1 day ago	CVE-2023-38831-winrar-exploit	CVE-2023-38831 winrar exploit generator
506⭐	1 day ago	Windows_LPE_AFD_CVE-2023-21768	LPE exploit for CVE-2023-21768
374⭐	1 day ago	CVE-2023-32233	CVE-2023-32233: Linux内核中的安全漏洞
418⭐	1 day ago	CVE-2023-0386	CVE-2023-0386在ubuntu22.04上的提权
116⭐	10 days ago	CVE-2023-21839	Weblogic CVE-2023-21839 RCE (无需Java依赖一键RCE)
391⭐	1 day ago	CVE-2023-4911	PoC for CVE-2023-4911
282⭐	1 day ago	CVE-2023-21608	Adobe Acrobat Reader - CVE-2023-21608 - Remote Code Execution Exploit
316⭐	1 day ago	CVE-2023-4863
243⭐	4 days ago	CVE-2023-44487	Basic vulnerability scanning to see if web servers may be vulnerable to CVE-2023-44487
168⭐	140 days ago	CVE-2023-36745
246⭐	19 days ago	CVE-2023-7028	This repository presents a proof-of-concept of CVE-2023-7028
228⭐	3 days ago	CVE-2023-3519	RCE exploit for CVE-2023-3519
231⭐	84 days ago	CVE-2023-20887	VMWare vRealize Network Insight Pre-Authenticated RCE (CVE-2023-20887)
345⭐	1 day ago	CVE-2023-23397-POC-Powershell
181⭐	6 hours ago	CVE-2023-28252
134⭐	21 days ago	CVE-2023-2640-CVE-2023-32629	GameOver(lay) Ubuntu Privilege Escalation
209⭐	32 days ago	CVE-2023-46747-RCE	exploit for f5-big-ip RCE cve-2023-46747
238⭐	15 days ago	Weblogic-CVE-2023-21839
237⭐	28 days ago	CVE-2023-29357	Microsoft SharePoint Server Elevation of Privilege Vulnerability
171⭐	18 days ago	CVE-2023-25157	CVE-2023-25157 - GeoServer SQL Injection - PoC

2022

Latest 20 of 558 Repositories

Stars	Updated	Name	Description
1127⭐	1 hour ago	CVE-2022-0847-DirtyPipe-Exploit	A root exploit for CVE-2022-0847 (Dirty Pipe)
578⭐	1 day ago	CVE-2022-23222	CVE-2022-23222: Linux Kernel eBPF Local Privilege Escalation
377⭐	1 day ago	CVE-2022-29464	WSO2 RCE (CVE-2022-29464) exploit and writeup.
362⭐	1 day ago	CVE-2022-21907	HTTP Protocol Stack Remote Code Execution Vulnerability CVE-2022-21907
355⭐	1 day ago	CVE-2022-40684	A proof of concept exploit for CVE-2022-40684 affecting Fortinet FortiOS, FortiProxy, and FortiSwitchManager
718⭐	1 day ago	CVE-2022-0847-DirtyPipe-Exploits	A collection of exploits and documentation that can be used to exploit the Linux Dirty Pipe vulnerability.
437⭐	1 day ago	CVE-2022-25636	CVE-2022-25636
489⭐	1 day ago	CVE-2022-2588	exploit for CVE-2022-2588
387⭐	1 day ago	CVE-2022-39197	CobaltStrike <= 4.7.1 RCE
417⭐	9 days ago	CVE-2022-33679	One day based on https://googleprojectzero.blogspot.com/2022/10/rc4-is-still-considered-harmful.html
500⭐	1 day ago	CVE-2022-0995	CVE-2022-0995 exploit
280⭐	1 day ago	CVE-2022-0847	CVE-2022-0847-DirtyPipe-Exploit CVE-2022-0847 是存在于 Linux内核 5.8 及之后版本中的本地提权漏洞。攻击者通过利用此漏洞，可覆盖重写任意可读文件中的数据，从而可将普通权限的用户提升到特权 root。 CVE-2022-0847 的漏洞原理类似于 CVE-2016-5195 脏牛漏洞（Dirty Cow），但它更容易被利用。漏洞作者将此漏洞命名为“Dirty Pipe”
352⭐	1 day ago	CVE-2022-21894	baton drop (CVE-2022-21894): Secure Boot Security Feature Bypass Vulnerability
374⭐	1 day ago	CVE-2022-0185	CVE-2022-0185
555⭐	16 hours ago	CVE-2022-38694_unlock_bootloader	This is a one-time signature verification bypass. For persistent signature verification bypass, check https://github.com/TomKing062/CVE-2022-38691_38692
285⭐	18 days ago	cve-2022-27255
265⭐	40 days ago	CVE-2022-39952	POC for CVE-2022-39952
238⭐	1 day ago	CVE-2022-20699	Cisco Anyconnect VPN unauth RCE (rwx stack)
221⭐	49 days ago	CVE-2022-34918	CVE-2022-34918 netfilter nf_tables 本地提权 POC
232⭐	8 days ago	CVE-2022-30075	Tp-Link Archer AX50 Authenticated RCE (CVE-2022-30075)