Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

AI PoC Generator & CVE Exploit Database

We aggregate public proof-of-concept (PoC) code from GitHub and the security community, and use a Shenlong Agent (LLM-based) pipeline to generate technical PoC walk-throughs for high-severity CVEs. Public PoCs are free; AI-generated PoCs are a Pro / Pro+ feature. Each entry links back to its source CVE detail page for full context, references, and patches.

最新 POC 列表

Public POCs are scraped from GitHub / security community. AI Exclusive POCs are generated by Shenlong Agent — paid content.Public POCs are scraped from GitHub / security community. AI Exclusive POCs are generated by Shenlong Agent — paid content.
Shenlong AI Exclusive POCs are paid content. Logged-in users get 3 free unlocks/month; upgrade to Pro for unlimited access.Shenlong AI Exclusive POCs are paid content. Logged-in users get 3 free unlocks/month; upgrade to Pro for unlimited access. Log in / View plans
CVE-2025-15502Sangfor Operation and Maintenance Management System session SessionController os command injection AI Paid
Qwen3.5-35B-A3B-UD-Q4_K_XL.gguf · 7254 chars · 2026-04-24 03:45
CVE-2025-15503Sangfor Operation and Maintenance Management System common.jsp unrestricted upload AI Paid
Qwen3.5-35B-A3B-UD-Q4_K_XL.gguf · 8507 chars · 2026-04-24 03:45
CVE-2026-22704HAXcms Has Stored XSS Vulnerability that May Lead to Account Takeover AI Paid
Qwen3.5-35B-A3B-UD-Q4_K_XL.gguf · 6847 chars · 2026-04-24 03:45
CVE-2026-22700RustCrypto Has Insufficient Length Validation in decrypt() in SM2-PKE AI Paid
Qwen3.5-35B-A3B-UD-Q4_K_XL.gguf · 9437 chars · 2026-04-24 03:45
CVE-2026-22589Spree API has Unauthenticated IDOR - Guest Address AI Paid
Qwen3.5-35B-A3B-UD-Q4_K_XL.gguf · 8409 chars · 2026-04-24 03:45
CVE-2025-65091XWiki Full Calendar Macro vulnerable to SQL injection through Calendar.JSONService AI Paid
Qwen3.5-35B-A3B-UD-Q4_K_XL.gguf · 9220 chars · 2026-04-24 03:45
CVE-2025-15500Sangfor Operation and Maintenance Management System HTTP POST Request getHis os command injection AI Paid
Qwen3.5-35B-A3B-UD-Q4_K_XL.gguf · 6967 chars · 2026-04-24 03:45
CVE-2026-22249Docmost affected by an Arbitrary File Write via Zip Import Feature (ZipSlip) AI Paid
Qwen3.5-35B-A3B-UD-Q4_K_XL.gguf · 7275 chars · 2026-04-24 03:45
CVE-2026-21688iccDEV has Type Confusion in SIccCalcOp::ArgsPushed() at IccProfLib/IccMpeCalc.cpp AI Paid
Qwen3.5-35B-A3B-UD-Q4_K_XL.gguf · 8580 chars · 2026-04-24 03:40
CVE-2026-21686iccDEV has Undefined Behavior in CIccTagLutAtoB::Validate() AI Paid
Qwen3.5-35B-A3B-UD-Q4_K_XL.gguf · 6577 chars · 2026-04-24 03:40
CVE-2026-21683iccDEV has Type Confusion in icStatusCMM::CIccEvalCompare::EvaluateProfile() AI Paid
Qwen3.5-35B-A3B-UD-Q4_K_XL.gguf · 9877 chars · 2026-04-24 03:40
CVE-2026-21682iccDEV has heap-buffer-overflow in CIccXmlArrayType::ParseText() AI Paid
Qwen3.5-35B-A3B-UD-Q4_K_XL.gguf · 6198 chars · 2026-04-24 03:40
CVE-2026-21678iccDEV has heap-buffer-overflow vulnerability on IccTagXml() AI Paid
Qwen3.5-35B-A3B-UD-Q4_K_XL.gguf · 27734 chars · 2026-04-24 03:40
CVE-2026-21679iccDEV has heap-buffer-overflow vulnerability in CIccLocalizedUnicode::GetText() AI Paid
Qwen3.5-35B-A3B-UD-Q4_K_XL.gguf · 5403 chars · 2026-04-24 03:38
CVE-2025-69223AIOHTTP's HTTP Parser auto_decompress feature is vulnerable to zip bomb AI Paid
Qwen3.5-35B-A3B-UD-Q4_K_XL.gguf · 5505 chars · 2026-04-24 03:38
CVE-2025-15457bg5sbk MiniCMS Trash File Restore post.php improper authentication AI Paid
Qwen3.5-35B-A3B-UD-Q4_K_XL.gguf · 6862 chars · 2026-04-24 03:38
CVE-2026-21447Bagisto has IDOR in Customer Order Reorder Functionality AI Paid
Qwen3.5-35B-A3B-UD-Q4_K_XL.gguf · 10099 chars · 2026-04-24 03:38