Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

AI PoC Generator & CVE Exploit Database

We aggregate public proof-of-concept (PoC) code from GitHub and the security community, and use a Shenlong Agent (LLM-based) pipeline to generate technical PoC walk-throughs for high-severity CVEs. Public PoCs are free; AI-generated PoCs are a Pro / Pro+ feature. Each entry links back to its source CVE detail page for full context, references, and patches.

Latest POC List

Public POCs are scraped from GitHub / security community. AI Exclusive POCs are generated by Shenlong Agent — paid content.
Filter
Shenlong AI Exclusive POCs are paid content. Logged-in users get 3 free unlocks/month; upgrade to Pro for unlimited access. Log in / View plans
CVE-2026-5179SourceCodester Simple Doctors Appointment System login.php sql injection AIVerified env Paid
Qwen3.6-35B-A3B · 6587 chars · 2026-05-09 21:53
CVE-2026-34042act: actions/cache server allows malicious cache injection AI Paid
Qwen3.6-35B-A3B · 10443 chars · 2026-05-09 21:35
CVE-2026-32727SciTokens: Authorization Bypass via Path Traversal in Scope Validation AI Paid
Qwen3.6-35B-A3B · 12488 chars · 2026-05-09 21:12
CVE-2026-32734baserCMS: Multiple vulnerabilities in baserCMS AI Paid
Qwen3.6-35B-A3B · 7013 chars · 2026-05-09 21:03
CVE-2026-21861baserCMS: OS Command Injection Leading to Remote Code Execution (RCE) AI Paid
Qwen3.6-35B-A3B · 7020 chars · 2026-05-09 20:57
CVE-2026-30877baserCMS: OS Command Injection in the baserCMS Update Functionality AI Paid
Qwen3.6-35B-A3B · 7972 chars · 2026-05-09 20:51
CVE-2026-5154Tenda CH22 Parameter setcfm fromSetCfm stack-based overflow AI Paid
Qwen3.6-35B-A3B · 7173 chars · 2026-05-09 20:38
CVE-2025-32957baserCMS: unsafe File Upload Leading to Remote Code Execution (RCE) AI Paid
Qwen3.6-35B-A3B · 8781 chars · 2026-05-09 20:11
CVE-2026-33982FreeRDP: Persistent Cache Allocator Mismatch - Heap OOB Read AI Paid
Qwen3.6-35B-A3B · 11406 chars · 2026-05-09 20:04
CVE-2026-33986FreeRDP: H.264 YUV Buffer Dimension Desync - Heap OOB Write AI Paid
Qwen3.6-35B-A3B · 11138 chars · 2026-05-09 19:57
CVE-2026-33984FreeRDP: ClearCodec resize_vbar_entry() Heap OOB Write AI Paid
Qwen3.6-35B-A3B · 14148 chars · 2026-05-09 19:49
CVE-2026-33987FreeRDP: Persistent Cache bmpSize Desync - Heap OOB Write AI Paid
Qwen3.6-35B-A3B · 9980 chars · 2026-05-09 19:42
CVE-2026-5150code-projects Accounting System Parameter viewin_costumer.php sql injection AI Paid
Qwen3.6-35B-A3B · 9993 chars · 2026-05-09 19:29
CVE-2026-5147YunaiV yudao-cloud get-by-website sql injection AI Paid
Qwen3.6-35B-A3B · 9453 chars · 2026-05-09 19:22
CVE-2026-34714Vim 操作系统命令注入漏洞 AI Paid
Qwen3.6-35B-A3B · 8500 chars · 2026-05-09 19:15
CVE-2026-5046Tenda FH1201 Parameter WrlExtraSet formWrlExtraSet stack-based overflow AI Paid
Qwen3.6-35B-A3B · 8044 chars · 2026-05-09 19:02
CVE-2026-3945Tinyproxy 安全漏洞 AI Paid
Qwen3.6-35B-A3B · 7293 chars · 2026-05-09 19:02

Frequently Asked Questions

What is a CVE PoC (Proof of Concept)?

A CVE PoC (Proof of Concept) is code that demonstrates how a specific vulnerability can be exploited. Security researchers use PoCs to verify vulnerabilities and assess their impact.

How does the AI-generated PoC work?

Shenlong Agent analyzes CVE descriptions and patch diffs via an LLM pipeline, generating structured technical walk-throughs — covering high-severity CVEs within hours of disclosure.

Are the PoCs free to access?

Public PoCs from GitHub are free. AI-generated PoC analyses by Shenlong Agent are a Pro / Pro+ feature.