PoC Archives • Page 2 of 9 • Daily CyberSecurity

Two Linux Kernel Vulnerabilities Expose HID Subsystem to Exploitation, PoC Published Linux HID PoC, USB Memory Leak

Two Linux Kernel Vulnerabilities Expose HID Subsystem to Exploitation, PoC Published

Ddos September 26, 2025

The Linux community is patching two new vulnerabilities in the HID (Human Interface Device) core subsystem, tracked...

CVE-2025-9961: TP-Link Router Flaw Could Be Exploited for RCE, PoC Released TP-Link CWMP CVE-2025-9961

CVE-2025-9961: TP-Link Router Flaw Could Be Exploited for RCE, PoC Released

Ddos September 22, 2025

Security researchers at ByteRay have published a detailed exploitation write-up of CVE-2025-9961, a vulnerability in TP-Link’s CWMP...

Linux Kernel 7.1 i486 support Linux 7.0 HIPPI support removal, legacy networking protocol retirement Linus Torvalds AI slop Linux kernel, Lorenzo Stoakes AI tool debate Linux Kernel Rust CVE-2025-68260, Android Binder Rust Race Condition TSEM Security Module Controversy, Linus Torvalds LSM Dispute Kernel Panic, PoC released Linux Kernel 6.16, File System Fixes CVE-2023-42753 - Linux Kernel Developers

Linux Kernel Panic Triggered by Race Condition, PoC Released

Ddos September 2, 2025

A new Linux kernel vulnerability, tracked as CVE-2025-38617, has been analyzed by security researcher Pumpkin (@u1f383) from...

Critical macOS Flaw (CVSS 9.8) Bypasses TCC Without Root Access: PoC Published macOS TCC Bypass, InstallAssistant Vulnerability

Critical macOS Flaw (CVSS 9.8) Bypasses TCC Without Root Access: PoC Published

Ddos August 11, 2025

Security researcher Zhongquan Li has uncovered a critical flaw in macOS InstallAssistant, tracked as CVE-2025-24103 with a...

Linux Kernel Flaw (CVE-2025-38236): Privilege Escalation Risk, PoC Code Available Linux Kernel Exploit, Privilege Escalation

Linux Kernel Flaw (CVE-2025-38236): Privilege Escalation Risk, PoC Code Available

Ddos August 11, 2025

Security researcher Jann Horn from Google Project Zero disclosed the technical details and proof-of-concept exploit code for...

Cisco SD-WAN Vulnerability CVE-2026-20133 FortiGate Compromise Ivanti EPMM Zero-Day CVE-2026-1281 SmarterMail Vulnerability Storm-2603 WatchGuard Zero-Day, IKEv2 Out-of-Bounds Write Cisco Zero-Day, UAT-9686 Chinese APT FortiWeb RCE Exploitation CVE-2025-58034 VMware Zero-Day, Privilege Escalation Sitecore, remote code execution CVE-2025-53690 Windows CLFS, Privilege Escalation CVE-2024-47575 & CVE-2024-11120 CVE-2025-24983 vulnerability

Windows Zero-Day Actively Exploited by Ransomware Gangs – PoC Available!

Ddos July 21, 2025

In April 2025, Microsoft issued a critical security patch addressing a serious vulnerability in the Windows Common...

Everon OCPP Vulnerability CVE-2026-26288 ASUSTOR ADM Vulnerability CVE-2026-24936 PrismX MX100 Vulnerability Hard-Coded Credentials Advantech Vulnerability CVE-2025-52694 Eaton UPS Companion, CVE-2025-59887 ASUS Router, Authentication Bypass ASUSTOR DLL Hijacking, Privilege Escalation OpenShift AI, Privilege Escalation GoAnywhere vulnerability CVE-2025-10035 LangChainGo, template injection DeepDiff, class pollution ToolShell Sunshine, CSRF Vulnerability KACE SMA, Critical Vulnerabilities Oracle Zero-Days - PDQ Deploy vulnerability

Critical Sunshine Flaw: Remote Command Execution via App-Wide CSRF

Ddos July 1, 2025

In the golden age of remote gaming and self-hosted services, Sunshine has emerged as a popular and...

Critical Sudo Flaw (CVE-2025-32463, CVSS 9.3): Root Privilege Escalation & Host Bypass, PoC Available Sudo vulnerability, Privilege Escalation CVE-2023-4147 PoC exploit

Sudo vulnerability, Privilege Escalation CVE-2023-4147 PoC exploit

Critical Sudo Flaw (CVE-2025-32463, CVSS 9.3): Root Privilege Escalation & Host Bypass, PoC Available

Ddos July 1, 2025

In the world of Linux privilege management, Sudo reigns supreme. It’s the gatekeeper, the doorman, the bouncer...

No Patch, Full Exploit: CVSS 9.9 RCE & IDOR Flaws in InnoShop eCommerce Platform InnoShop vulnerabilities

No Patch, Full Exploit: CVSS 9.9 RCE & IDOR Flaws in InnoShop eCommerce Platform

Ddos June 24, 2025

Security researcher TheHiker disclosured three serious vulnerabilities in InnoShop, an open-source eCommerce system built on Laravel 12....

CVE-2025-23171 & CVE-2025-23172: Versa Director Bugs Open Doors to Webshell Uploads and Command Execution Versa Director, SD-WAN Vulnerabilities

CVE-2025-23171 & CVE-2025-23172: Versa Director Bugs Open Doors to Webshell Uploads and Command Execution

Ddos June 19, 2025

Two newly disclosed vulnerabilities in the Versa Director SD-WAN orchestration platform could allow authenticated attackers to execute...

PoCGen: AI Tool Automates Exploit Generation for npm Vulnerabilities with LLMs PoCGen, LLM Exploit Generation

PoCGen: AI Tool Automates Exploit Generation for npm Vulnerabilities with LLMs

Ddos June 17, 2025

A tool named PoCGen is revolutionizing how the security community generates Proof-of-Concept (PoC) exploits for vulnerabilities in...

Windows Kernel Flaws Revealed: SYSTEM-Level Privilege Escalation & PoC Exploits Available Now! Windows Kernel, Privilege Escalation

Windows Kernel Flaws Revealed: SYSTEM-Level Privilege Escalation & PoC Exploits Available Now!

Ddos June 11, 2025

Security researcher Jael Koh of PixiePoint Security has unveiled the technical details and working proof-of-concept exploits for...

Microsoft BFS Flaws Expose Windows to Privilege Escalation – PoC Code Released Race Condition Exploit

Microsoft BFS Flaws Expose Windows to Privilege Escalation – PoC Code Released

Ddos June 9, 2025

Security researchers at ht3labs published the technical details and proof-of-concept exploit code for a trio of critical...

Legacy vBulletin 4.x Patch Backfires: RCE via Signed Base64 Payloads and a Full PoC vBulletin RCE

Legacy vBulletin 4.x Patch Backfires: RCE via Signed Base64 Payloads and a Full PoC

Ddos June 7, 2025

Security researcher Egidio Romano (EgiX) uncovers a fascinating PHP Object Injection (POI) vulnerability in legacy versions of...

PoC Unleashed: Linux vsock Flaw Enables Privilege Escalation to Root vsock privilege escalation

PoC Unleashed: Linux vsock Flaw Enables Privilege Escalation to Root

Ddos June 4, 2025

Independent researcher V4bel published the technical details and a proof-of-concept exploit code for a Linux kernel vulnerability,...

PoC Reveals Apple Audio Zero-Day Enabling Remote Code Execution via Malicious Media Files CoreAudio Vulnerability, Apple Zero-Day

PoC Reveals Apple Audio Zero-Day Enabling Remote Code Execution via Malicious Media Files

Ddos June 2, 2025

Apple has patched a high-severity zero-day vulnerability in CoreAudio, the framework responsible for audio playback and processing...

Tenda Router Flaw (CVSS 9.8): Unauthenticated RCE Flaw (PoC, No Patch) CVE-2023-4498

Tenda Router Flaw (CVSS 9.8): Unauthenticated RCE Flaw (PoC, No Patch)

Ddos May 29, 2025

A critical vulnerability in the Tenda W18Ev2 Enterprise Router allows unauthenticated attackers to remotely change the administrator...

Windows Server 2025 “BadSuccessor” Flaw Allows Domain Takeover (PoC Available, No Patch)

Ddos May 27, 2025

Akamai security researcher Yuval Gordon has uncovered an Active Directory privilege escalation vulnerability in Windows Server 2025,...

Mesh Wi-Fi Hack (CVSS 9.1): Design Flaw Enables Frame Injection (PoC Available) Mesh Wi-Fi vulnerability A-MSDU spoofing

Mesh Wi-Fi Hack (CVSS 9.1): Design Flaw Enables Frame Injection (PoC Available)

Ddos May 27, 2025

Researchers from KU Leuven’s DistriNet group have unveiled a new high-severity design flaw in mesh Wi-Fi networks....

Critical Pre-Auth RCE: vBulletin Flaw Allows Full Server Compromise (PoC Available) vBulletin RCE, pre-auth RCE

Critical Pre-Auth RCE: vBulletin Flaw Allows Full Server Compromise (PoC Available)

Ddos May 26, 2025

A newly disclosed vulnerability in vBulletin, one of the most widely used commercial forum platforms on the...