Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1020 CNY

100%
Buy Us a Coffee

Featured AI POCs

Top 50 recently published CVEs with comprehensive Shenlong AI analysis. Each entry includes vulnerability mechanism, trigger conditions, exploit chain, and reproducible POC. Free users get 3 free unlocks per month. JSON

CVE-2025-53833CriticalCVSS 10.0
LaRecipe is vulnerable to Server-Side Template Injection attacks
saleem-hadad / larecipe
CVE-2025-53836CriticalCVSS 10.0
XWiki Rendering is vulnerable to RCE attacks when processing nested macros
xwiki / xwiki-rendering
CVE-2025-7574CriticalCVSS 9.8
LB-LINK BL-WR9000 Web Interface lighttpd.cgi restore improper authentication
LB-LINK / BL-AC1900
CVE-2025-53890CriticalCVSS 9.8
pyLoad vulnerable to remote code execution through js2py onCaptchaResult
pyload / pyload
CVE-2015-10135CriticalCVSS 9.8
WPshop 2 – E-Commerce < 1.3.9.6 - Arbitrary File Upload
eoxia / WPshop 2 – E-Commerce
CVE-2025-53825CriticalCVSS 9.4
Dokploy's Preview Deployments are vulnerable to Remote Code Execution
Dokploy / dokploy
CVE-2025-53835CriticalCVSS 9.1
XWiki Rendering is vulnerable to XSS attacks through insecure XHTML syntax
xwiki / xwiki-rendering
CVE-2025-47917HighCVSS 8.9
Mbed TLS 资源管理错误漏洞
Mbed / mbedtls
CVE-2025-7506HighCVSS 8.8
Tenda FH451 HTTP POST Request Natlimit fromNatlimit stack-based overflow
Tenda / FH451
CVE-2025-7528HighCVSS 8.8
Tenda FH1202 GstDhcpSetSer fromGstDhcpSetSer stack-based overflow
Tenda / FH1202
CVE-2025-7530HighCVSS 8.8
Tenda FH1202 PPTPDClient fromPptpUserAdd stack-based overflow
Tenda / FH1202
CVE-2025-7527HighCVSS 8.8
Tenda FH1202 AdvSetWan fromAdvSetWan stack-based overflow
Tenda / FH1202
CVE-2025-7529HighCVSS 8.8
Tenda FH1202 Natlimit fromNatlimit stack-based overflow
Tenda / FH1202
CVE-2026-24425HighCVSS 8.8
Twig 2.16.x & 3.9.0-3.25.x Sandbox Bypass via SourcePolicyInterface
twigphp / Twig
CVE-2025-7531HighCVSS 8.8
Tenda FH1202 PPTPUserSetting fromPptpUserSetting stack-based overflow
Tenda / FH1202
CVE-2025-7532HighCVSS 8.8
Tenda FH1202 webExcptypemanFilter fromwebExcptypemanFilter stack-based overflow
Tenda / FH1202
CVE-2025-7544HighCVSS 8.8
Tenda AC1206 setMacFilterCfg formSetMacFilterCfg stack-based overflow
Tenda / AC1206
CVE-2025-7548HighCVSS 8.8
Tenda FH1201 SafeEmailFilter formSafeEmailFilter stack-based overflow
Tenda / FH1201
CVE-2025-7551HighCVSS 8.8
Tenda FH1201 PPTPDClient fromPptpUserAdd stack-based overflow
Tenda / FH1201
CVE-2025-7549HighCVSS 8.8
Tenda FH1201 L7Prot frmL7ProtForm stack-based overflow
Tenda / FH1201
CVE-2025-7550HighCVSS 8.8
Tenda FH1201 GstDhcpSetSer fromGstDhcpSetSer stack-based overflow
Tenda / FH1201
CVE-2025-7571HighCVSS 8.8
UTT HiPER 840G aspApBasicConfigUrcp buffer overflow
UTT / HiPER 840G
CVE-2025-7570HighCVSS 8.8
UTT HiPER 840G aspRemoteApConfTempSend buffer overflow
UTT / HiPER 840G
CVE-2025-7586HighCVSS 8.8
Tenda AC500 setWtpData formSetAPCfg stack-based overflow
Tenda / AC500
CVE-2025-7596HighCVSS 8.8
Tenda FH1205 WifiExtraSet formWifiExtraSet stack-based overflow
Tenda / FH1205
CVE-2025-7597HighCVSS 8.8
Tenda AX1803 setMacFilterCfg formSetMacFilterCfg stack-based overflow
Tenda / AX1803
CVE-2025-7598HighCVSS 8.8
Tenda AX1803 setWifiFilterCfg formSetWifiMacFilterCfg stack-based overflow
Tenda / AX1803
CVE-2025-7747HighCVSS 8.8
Tenda FH451 POST Request WizardHandle fromWizardHandle buffer overflow
Tenda / FH451
CVE-2025-7762HighCVSS 8.8
D-Link DI-8100 HTTP Request menu_nat_more.asp stack-based overflow
D-Link / DI-8100
CVE-2025-7758HighCVSS 8.8
TOTOLINK T6 HTTP POST Request cstecgi.cgi setDiagnosisCfg buffer overflow
TOTOLINK / T6
CVE-2025-7790HighCVSS 8.8
D-Link DI-8100 HTTP Request menu_nat.asp stack-based overflow
D-Link / DI-8100
CVE-2025-7793HighCVSS 8.8
Tenda FH451 webtypelibrary formWebTypeLibrary stack-based overflow
Tenda / FH451
CVE-2025-7792HighCVSS 8.8
Tenda FH451 SafeEmailFilter formSafeEmailFilter stack-based overflow
Tenda / FH451
CVE-2025-7796HighCVSS 8.8
Tenda FH451 PPTPDClient fromPptpUserAdd stack-based overflow
Tenda / FH451
CVE-2025-7795HighCVSS 8.8
Tenda FH451 P2pListFilter fromP2pListFilter stack-based overflow
Tenda / FH451
CVE-2025-7794HighCVSS 8.8
Tenda FH451 NatStaticSetting fromNatStaticSetting stack-based overflow
Tenda / FH451
CVE-2025-7805HighCVSS 8.8
Tenda FH451 PPTPUserSetting fromPptpUserSetting stack-based overflow
Tenda / FH451
CVE-2025-7806HighCVSS 8.8
Tenda FH451 SafeClientFilter fromSafeClientFilter stack-based overflow
Tenda / FH451
CVE-2025-7807HighCVSS 8.8
Tenda FH451 SafeUrlFilter fromSafeUrlFilter stack-based overflow
Tenda / FH451
CVE-2025-7837HighCVSS 8.8
TOTOLINK T6 MQTT Service recvSlaveStaInfo buffer overflow
TOTOLINK / T6
CVE-2025-7853HighCVSS 8.8
Tenda FH451 SetIpBind fromSetIpBind stack-based overflow
Tenda / FH451
CVE-2025-7855HighCVSS 8.8
Tenda FH451 qossetting fromqossetting stack-based overflow
Tenda / FH451
CVE-2025-7854HighCVSS 8.8
Tenda FH451 VirtualSer fromVirtualSer stack-based overflow
Tenda / FH451
CVE-2025-7908HighCVSS 8.8
D-Link DI-8100 jhttpd ddns.asp sprintf stack-based overflow
D-Link / DI-8100
CVE-2025-7912HighCVSS 8.8
TOTOLINK T6 MQTT Service recvSlaveUpgstatus buffer overflow
TOTOLINK / T6
CVE-2025-7913HighCVSS 8.8
TOTOLINK T6 MQTT Service updateWifiInfo buffer overflow
TOTOLINK / T6
CVE-2025-7914HighCVSS 8.8
Tenda AC6 httpd setparentcontrolinfo buffer overflow
Tenda / AC6
CVE-2025-7911HighCVSS 8.8
D-Link DI-8100 jhttpd upnp_ctrl.asp sprintf stack-based overflow
D-Link / DI-8100
CVE-2025-54075HighCVSS 8.3
mdc vulnerable to XSS in markdown rendering bypassing HTML filter. (N°4)
nuxt-modules / mdc
CVE-2025-7564HighCVSS 7.8
LB-LINK BL-AC3600 shadow hard-coded credentials
LB-LINK / BL-AC3600

📥 Want the latest list as JSON? /api/featured-pocs.json

Open repo: github.com/imfht/cve-cn — README auto-generated weekly from this list.