Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

AI PoC Generator & CVE Exploit Database

We aggregate public proof-of-concept (PoC) code from GitHub and the security community, and use a Shenlong Agent (LLM-based) pipeline to generate technical PoC walk-throughs for high-severity CVEs. Public PoCs are free; AI-generated PoCs are a Pro / Pro+ feature. Each entry links back to its source CVE detail page for full context, references, and patches.

Latest POC List

Public POCs are scraped from GitHub / security community. AI Exclusive POCs are generated by Shenlong Agent — paid content.
Filter
Shenlong AI Exclusive POCs are paid content. Logged-in users get 3 free unlocks/month; upgrade to Pro for unlimited access. Log in / View plans
CVE-2026-22664prompts.chat SSRF via Fal.ai Media Status Polling AI Paid
Qwen3.6-35B-A3B · 5882 chars · 2026-05-07 16:54
CVE-2026-27885Piwigo: SQL Injection in Activity.getList AI Paid
Qwen3.6-35B-A3B · 10438 chars · 2026-05-07 16:47
CVE-2026-27834Piwigo: SQL Injection in pwg.users.getList API Method via filter Parameter AI Paid
Qwen3.6-35B-A3B · 9313 chars · 2026-05-07 16:46
CVE-2026-27833Piwigo: Unauthenticated Information Disclosure via pwg.history.search API AI Paid
Qwen3.6-35B-A3B · 7748 chars · 2026-05-07 16:46
CVE-2026-22665prompts.chat Identity Confusion via Case-Sensitive Username Handling AI Paid
Qwen3.6-35B-A3B · 10241 chars · 2026-05-07 16:45
CVE-2026-34612Kestra: Remote Code Execution via SQL Injection AI Paid
Qwen3.6-35B-A3B · 6421 chars · 2026-05-07 16:45
CVE-2026-5536FedML-AI FedML gRPC server grpc_server.py sendMessage deserialization AI Paid
Qwen3.6-35B-A3B · 6235 chars · 2026-05-07 16:24
CVE-2026-5534itsourcecode Online Enrollment System Parameter index.php sql injection AI Paid
Qwen3.6-35B-A3B · 6981 chars · 2026-05-07 16:14
CVE-2026-5566UTT HiPER 1250GW formNatStaticMap strcpy buffer overflow AI Paid
Qwen3.6-35B-A3B · 8729 chars · 2026-05-07 15:54
CVE-2026-5564code-projects Simple Laundry System Parameter searchguest.php sql injection AI Paid
Qwen3.6-35B-A3B · 6401 chars · 2026-05-07 15:54
CVE-2026-5570Technostrobe HI-LED-WR120-G2 LoginCB index_config improper authentication AI Paid
Qwen3.6-35B-A3B · 11495 chars · 2026-05-07 15:44
CVE-2026-5577Song-Li cross_browser details Endpoint uniquemachine_app.py sql injection AI Paid
Qwen3.6-35B-A3B · 11182 chars · 2026-05-07 15:28
CVE-2026-5575SourceCodester/jkev Record Management System Login index.php sql injection AI Paid
Qwen3.6-35B-A3B · 7710 chars · 2026-05-07 15:25
CVE-2026-5633assafelovic gpt-researcher ws Endpoint server-side request forgery AI Paid
Qwen3.6-35B-A3B · 7437 chars · 2026-05-07 14:59
CVE-2026-5632assafelovic gpt-researcher HTTP REST API Endpoint missing authentication AI Paid
Qwen3.6-35B-A3B · 7629 chars · 2026-05-07 14:55
CVE-2026-5634projectworlds Car Rental Project Parameter book_car.php sql injection AI Paid
Qwen3.6-35B-A3B · 9582 chars · 2026-05-07 14:52
CVE-2026-5637projectworlds Car Rental System Parameter message_admin.php sql injection AI Paid
Qwen3.6-35B-A3B · 6777 chars · 2026-05-07 14:43

Frequently Asked Questions

What is a CVE PoC (Proof of Concept)?

A CVE PoC (Proof of Concept) is code that demonstrates how a specific vulnerability can be exploited. Security researchers use PoCs to verify vulnerabilities and assess their impact.

How does the AI-generated PoC work?

Shenlong Agent analyzes CVE descriptions and patch diffs via an LLM pipeline, generating structured technical walk-throughs — covering high-severity CVEs within hours of disclosure.

Are the PoCs free to access?

Public PoCs from GitHub are free. AI-generated PoC analyses by Shenlong Agent are a Pro / Pro+ feature.