AI PoC Generator & CVE Exploit Database

We aggregate public proof-of-concept (PoC) code from GitHub and the security community, and use a Shenlong Agent (LLM-based) pipeline to generate technical PoC walk-throughs for high-severity CVEs. Public PoCs are free; AI-generated PoCs are a Pro / Pro+ feature. Each entry links back to its source CVE detail page for full context, references, and patches.

最新 POC 列表

Public POCs are scraped from GitHub / security community. AI Exclusive POCs are generated by Shenlong Agent — paid content.Public POCs are scraped from GitHub / security community. AI Exclusive POCs are generated by Shenlong Agent — paid content.

Shenlong AI Exclusive POCs are paid content. Logged-in users get 3 free unlocks/month; upgrade to Pro for unlimited access.Shenlong AI Exclusive POCs are paid content. Logged-in users get 3 free unlocks/month; upgrade to Pro for unlimited access. Log in / View plans

CVE-2026-41642GoBGP: Remote Denial of Service (Panic) via Malformed Well-known Path Attribute AI Paid

Qwen3.6-35B-A3B · 8871 chars · 2026-05-07 20:34

查看详情

CVE-2026-41643GoBGP: Remote Denial of Service (Panic) in UpdatePathAttrs4ByteAs via Malformed BGP UPDATE AI Paid

Qwen3.6-35B-A3B · 10796 chars · 2026-05-07 20:32

查看详情

CVE-2026-5179SourceCodester Simple Doctors Appointment System login.php sql injection AIVerified env Paid

Qwen3.6-35B-A3B · 6587 chars · 2026-05-07 20:31

查看详情

CVE-2026-34453SiYuan: Broken access control in /api/bookmark/getBookmark allows unauthenticated publish visitors to read password-protected bookmarked content AI Paid

Qwen3.6-35B-A3B · 10352 chars · 2026-05-07 19:32

查看详情

Goal Reached Thanks to every supporter — we hit 100%!

AI PoC Generator & CVE Exploit Database

最新 POC 列表

CVE-2026-41642GoBGP: Remote Denial of Service (Panic) via Malformed Well-known Path Attribute AI Paid

CVE-2026-41643GoBGP: Remote Denial of Service (Panic) in UpdatePathAttrs4ByteAs via Malformed BGP UPDATE AI Paid

CVE-2026-5179SourceCodester Simple Doctors Appointment System login.php sql injection AIVerified env Paid

CVE-2026-34163Server-Side Request Forgery via MCP Tools Endpoint in FastGPT AI Paid

CVE-2026-34209mppx: Tempo has a session close voucher bypass vulnerability due to settled amount equality AI Paid

CVE-2026-32725SciTokens C++: Relative Path Traversal Vulnerability AI Paid

CVE-2026-32726SciTokens C++: Sibling-Path Authorization Bypass AI Paid

CVE-2026-5190AWS C Event Stream Streaming Decoder Stack Buffer Overflow AI Paid

CVE-2026-5211D-Link DNS-1550-04 app_mgr.cgi UPnP_AV_Server_Path_Del stack-based overflow AI Paid

CVE-2026-34365InvoiceShelf: SSRF in Estimate PDF Rendering via Unsanitised HTML in Notes Field AI Paid

CVE-2026-5214D-Link DNS-1550-04 account_mgr.cgi cgi_addgroup_get_group_quota_minsize stack-based overflow AI Paid

CVE-2026-34453SiYuan: Broken access control in /api/bookmark/getBookmark allows unauthenticated publish visitors to read password-protected bookmarked content AI Paid

CVE-2026-5213D-Link DNS-1550-04 account_mgr.cgi cgi_adduser_to_session stack-based overflow AI Paid

CVE-2026-34367InvoiceShelf: SSRF in Invoice PDF Rendering via Unsanitised HTML in Notes Field AI Paid

CVE-2026-34381Admidio: Unauthenticated Access to Role-Restricted documents via neutralized .htaccess AI Paid

CVE-2026-5256code-projects Simple Laundry System Parameter modify.php sql injection AI Paid

CVE-2026-34585SiYuan: Stored XSS in imported .sy.zip content leads to arbitrary command execution AI Paid

CVE-2026-34603@tinacms/graphql's Media Endpoints Can Escape the Media Root via Symlinks or Junctions AI Paid

CVE-2026-34604@tinacms/graphql's `FilesystemBridge` Path Validation Can Be Bypassed via Symlinks or Junctions AI Paid

CVE-2026-34430ByteDance DeerFlow LocalSandboxProvider Host Bash Escape AI Paid