Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

AI PoC Generator & CVE Exploit Database

We aggregate public proof-of-concept (PoC) code from GitHub and the security community, and use a Shenlong Agent (LLM-based) pipeline to generate technical PoC walk-throughs for high-severity CVEs. Public PoCs are free; AI-generated PoCs are a Pro / Pro+ feature. Each entry links back to its source CVE detail page for full context, references, and patches.

最新 POC 列表

Public POCs are scraped from GitHub / security community. AI Exclusive POCs are generated by Shenlong Agent — paid content.Public POCs are scraped from GitHub / security community. AI Exclusive POCs are generated by Shenlong Agent — paid content.
Shenlong AI Exclusive POCs are paid content. Logged-in users get 3 free unlocks/month; upgrade to Pro for unlimited access.Shenlong AI Exclusive POCs are paid content. Logged-in users get 3 free unlocks/month; upgrade to Pro for unlimited access. Log in / View plans
CVE-2026-25526JinJava Bypass through ForTag leads to Arbitrary Java Execution AI Paid
Qwen3.5-35B-A3B-UD-Q4_K_XL.gguf · 7241 chars · 2026-04-24 04:25
CVE-2026-25161Alist vulnerable to Path Traversal in multiple file operation handlers AI Paid
Qwen3.5-35B-A3B-UD-Q4_K_XL.gguf · 10817 chars · 2026-04-24 04:25
CVE-2026-24884Compressing Vulnerable to Arbitrary File Write via Symlink Extraction AI Paid
Qwen3.5-35B-A3B-UD-Q4_K_XL.gguf · 7757 chars · 2026-04-24 04:25
CVE-2026-25143melange affected by potential host command execution via license-check YAML mode patch pipeline AI Paid
Qwen3.5-35B-A3B-UD-Q4_K_XL.gguf · 9071 chars · 2026-04-24 04:25
CVE-2026-24843melange QEMU runner could write files outside workspace directory AI Paid
Qwen3.5-35B-A3B-UD-Q4_K_XL.gguf · 9571 chars · 2026-04-24 04:22
CVE-2026-23897Apollo Server is vulnerable to denial of service with `startStandaloneServer` AI Paid
Qwen3.5-35B-A3B-UD-Q4_K_XL.gguf · 8003 chars · 2026-04-24 04:22
CVE-2026-25223Fastify's Content-Type header tab character allows body validation bypass AI Paid
Qwen3.5-35B-A3B-UD-Q4_K_XL.gguf · 7381 chars · 2026-04-24 04:22
CVE-2026-25060OpenList Insecure TLS Default Configuration AI Paid
Qwen3.5-35B-A3B-UD-Q4_K_XL.gguf · 9320 chars · 2026-04-24 04:22
CVE-2026-25059OpenList affected by Path Traversal in file copy and remove handlers AI Paid
Qwen3.5-35B-A3B-UD-Q4_K_XL.gguf · 9442 chars · 2026-04-24 04:20
CVE-2026-35209defu: Prototype pollution via `__proto__` key in defaults argument AI Paid
Qwen3.5-35B-A3B-UD-Q4_K_XL.gguf · 8062 chars · 2026-04-24 04:20
CVE-2026-34841Axios npm Supply Chain Incident Impacting @usebruno/cli AI Paid
Qwen3.5-35B-A3B-UD-Q4_K_XL.gguf · 9490 chars · 2026-04-24 04:20
CVE-2026-23515RCE - Command Injection in Signal K set-system-time plugin AI Paid
Qwen3.5-35B-A3B-UD-Q4_K_XL.gguf · 7792 chars · 2026-04-24 04:20
CVE-2026-24737jsPDF has a PDF Injection in AcroFormChoiceField which allows Arbitrary JavaScript Execution AI Paid
Qwen3.5-35B-A3B-UD-Q4_K_XL.gguf · 9430 chars · 2026-04-24 04:17
CVE-2026-1701itsourcecode School Management System index.php sql injection AI Paid
Qwen3.5-35B-A3B-UD-Q4_K_XL.gguf · 6294 chars · 2026-04-24 04:17
CVE-2026-1688itsourcecode Directory Management System index.php sql injection AI Paid
Qwen3.5-35B-A3B-UD-Q4_K_XL.gguf · 5464 chars · 2026-04-24 04:17
CVE-2026-1637Tenda AC21 AdvSetMacMtuWan fromAdvSetMacMtuWan stack-based overflow AI Paid
Qwen3.5-35B-A3B-UD-Q4_K_XL.gguf · 7103 chars · 2026-04-24 04:17
CVE-2026-1593itsourcecode Society Management System edit_expenses_query.php sql injection AI Paid
Qwen3.5-35B-A3B-UD-Q4_K_XL.gguf · 12267 chars · 2026-04-24 04:15