Are the PoCs on this site free to access?

Public PoCs aggregated from GitHub and the security community are freely accessible. AI-generated PoC analyses produced by Shenlong Agent are a Pro / Pro+ premium feature, requiring a paid subscription.

AI PoC Generator & CVE Exploit Database

Q: What is a CVE PoC (Proof of Concept)?

A CVE PoC (Proof of Concept) is a piece of code or technique that demonstrates how a specific vulnerability (CVE) can be exploited. Security researchers and penetration testers use PoCs to verify whether a vulnerability actually exists in a target system and to understand the potential impact.

Q: How does the AI-generated PoC work?

Shenlong Agent analyzes CVE descriptions, references, and patch diffs using a large language model pipeline. It generates a structured technical walk-through including vulnerability root cause, exploitation steps, and mitigation recommendations — covering high-severity CVEs within hours of disclosure.

We aggregate public proof-of-concept (PoC) code from GitHub and the security community, and use a Shenlong Agent (LLM-based) pipeline to generate technical PoC walk-throughs for high-severity CVEs. Public PoCs are free; AI-generated PoCs are a Pro / Pro+ feature. Each entry links back to its source CVE detail page for full context, references, and patches.

Latest POC List

Public POCs are scraped from GitHub / security community. AI Exclusive POCs are generated by Shenlong Agent — paid content.

Shenlong AI Exclusive POCs are paid content. Logged-in users get 3 free unlocks/month; upgrade to Pro for unlimited access. Log in / View plans

CVE-2025-32931Voyager 安全漏洞 AI Paid

Qwen3.6-35B-A3B · 11303 chars · 2026-05-27 19:53

Goal Reached Thanks to every supporter — we hit 100%!

AI PoC Generator & CVE Exploit Database

Latest POC List

CVE-2025-32931Voyager 安全漏洞 AI Paid

CVE-2026-22665prompts.chat Identity Confusion via Case-Sensitive Username Handling AI Paid

CVE-2024-41126Out-of-bounds read when decoding SNMP messages in Contiki-NG AI Paid

CVE-2026-22699RustCrypto SM2-PKE has Unchecked AffinePoint Decoding (unwrap) in decrypt() AI Paid

CVE-2025-5330FreeFloat FTP Server RETR Command buffer overflow AI Paid

CVE-2025-10116SiempreCMS file_upload.php unrestricted upload AI Paid

CVE-2026-34148Fedify affected by resource exhaustion caused by unbounded redirect following during remote key/document resolution AI Paid

CVE-2025-3829PHPGurukul Men Salon Management System sales-reports-detail.php sql injection AI Paid

CVE-2025-6405Campcodes Online Teacher Record Management System edit-teacher-detail.php sql injection AI Paid

CVE-2025-10816Jinher OA XML text xml external entity reference AI Paid

CVE-2025-104241000projects Online Student Project Report Submission and Evaluation System faculty_controller.php unrestricted upload AI Paid

CVE-2025-14209Campcodes School File Management System update_query.php sql injection AI Paid

CVE-2025-4881itsourcecode Restaurant Management System user_save.php sql injection AI Paid

CVE-2025-67644LangGraph SQLite Checkpoint is vulnerable to SQL Injection via metadata filter key in checkpointer list method AI Paid

CVE-2025-55205Capsule tenant owners with "patch namespace" permission can hijack system namespaces label AI Paid

CVE-2025-7411code-projects LifeStyle Store success.php sql injection AI Paid

CVE-2026-22777ComfyUI-Manager is Vulnerable to CRLF Injection in Configuration Handler AI Paid

CVE-2025-4843D-Link DCS-932L udev SubUPnPCSInit stack-based overflow AI Paid

CVE-2026-22046iccDEV has heap-buffer-overflow in CIccProfileXml::ParseBasic() at IccXML/IccLibXML/IccProfileXml.cpp AI Paid

CVE-2025-7824Jinher OA XmlHttp.aspx xml external entity reference AI Paid

Frequently Asked Questions