AI PoC Generator & CVE Exploit Database

We aggregate public proof-of-concept (PoC) code from GitHub and the security community, and use a Shenlong Agent (LLM-based) pipeline to generate technical PoC walk-throughs for high-severity CVEs. Public PoCs are free; AI-generated PoCs are a Pro / Pro+ feature. Each entry links back to its source CVE detail page for full context, references, and patches.

最新 POC 列表

Public POCs are scraped from GitHub / security community. AI Exclusive POCs are generated by Shenlong Agent — paid content.Public POCs are scraped from GitHub / security community. AI Exclusive POCs are generated by Shenlong Agent — paid content.

Shenlong AI Exclusive POCs are paid content. Logged-in users get 3 free unlocks/month; upgrade to Pro for unlimited access.Shenlong AI Exclusive POCs are paid content. Logged-in users get 3 free unlocks/month; upgrade to Pro for unlimited access. Log in / View plans

CVE-2026-34745Unauthenticated Path Traversal Arbitrary File Write in /api/uploadChunked/public AI Paid

Qwen3.6-35B-A3B · 15413 chars · 2026-05-07 17:30

查看详情

CVE-2026-34838Group-Office: Authenticated Remote Code Execution via PHP Insecure Deserialization in `AbstractSettingsCollection` AI Paid

Qwen3.6-35B-A3B · 14891 chars · 2026-05-07 17:24

查看详情

CVE-2026-33184nimiq/core-rs-albatross: Discovery handshake limit could underflow and later provoke a deterministic overflow panic AI Paid

Qwen3.6-35B-A3B · 7538 chars · 2026-05-07 16:47

查看详情

CVE-2026-5548Tenda AC10 httpd fromSysToolChangePwd stack-based overflow AIVerified env Paid

Qwen3.6-35B-A3B · 14243 chars · 2026-05-07 16:29

查看详情

CVE-2026-5544UTT HiPER 1250GW formRemoteControl stack-based overflow AIVerified env Paid

Qwen3.6-35B-A3B · 9763 chars · 2026-05-07 16:25

查看详情

CVE-2026-5536FedML-AI FedML gRPC server grpc_server.py sendMessage deserialization AI Paid

Qwen3.6-35B-A3B · 6235 chars · 2026-05-07 16:24

查看详情

Goal Reached Thanks to every supporter — we hit 100%!

AI PoC Generator & CVE Exploit Database

最新 POC 列表

CVE-2026-34745Unauthenticated Path Traversal Arbitrary File Write in /api/uploadChunked/public AI Paid

CVE-2026-34838Group-Office: Authenticated Remote Code Execution via PHP Insecure Deserialization in `AbstractSettingsCollection` AI Paid

CVE-2026-35535Sudo 安全漏洞 AI Paid

CVE-2026-35536Tornado 安全漏洞 AI Paid

CVE-2026-35216Budibase: Unauthenticated Remote Code Execution via Webhook Trigger and Bash Automation Step AI Paid

CVE-2026-31818Budibase: Server-Side Request Forgery via REST Connector with Empty Default Blacklist AI Paid

CVE-2026-35214Budibase: Path traversal in plugin file upload enables arbitrary directory deletion and file write AI Paid

CVE-2026-22663prompts.chat Authorization Bypass Information Disclosure AI Paid

CVE-2026-22661prompts.chat Path Traversal via Skill File Handling AI Paid

CVE-2026-22664prompts.chat SSRF via Fal.ai Media Status Polling AI Paid

CVE-2026-33184nimiq/core-rs-albatross: Discovery handshake limit could underflow and later provoke a deterministic overflow panic AI Paid

CVE-2026-27885Piwigo: SQL Injection in Activity.getList AI Paid

CVE-2026-27834Piwigo: SQL Injection in pwg.users.getList API Method via filter Parameter AI Paid

CVE-2026-27833Piwigo: Unauthenticated Information Disclosure via pwg.history.search API AI Paid

CVE-2026-22665prompts.chat Identity Confusion via Case-Sensitive Username Handling AI Paid

CVE-2026-34612Kestra: Remote Code Execution via SQL Injection AI Paid

CVE-2026-5540code-projects Simple Laundry System Parameter modifymember.php sql injection AI Paid

CVE-2026-5548Tenda AC10 httpd fromSysToolChangePwd stack-based overflow AIVerified env Paid

CVE-2026-5544UTT HiPER 1250GW formRemoteControl stack-based overflow AIVerified env Paid

CVE-2026-5536FedML-AI FedML gRPC server grpc_server.py sendMessage deserialization AI Paid