AI Enriched PoC Intelligence

CVE-2026-6279

Unauthenticated RCE in Avada Builder WordPress Plugin

Severity CRITICAL

9.8

AI Intelligence Analysis

Target Stack Avada / Avada Builder (fusion-builder) plugin for WordPress

<=3.15.2

Impact Vector RCE

Authentication Authenticated

Verified Exploits (2)

GitHub https://github.com/xxconi/CVE-2026-6279

GitHub https://github.com/zycoder0day/CVE-2026-6279

CVE-2026-6960

BookingPress Pro Arbitrary File Upload and RCE

Severity CRITICAL

9.8

AI Intelligence Analysis

Target Stack BookingPress / BookingPress Pro

<=5.6

Impact Vector RCE

Authentication PRE-AUTH

Verified Exploits (1)

GitHub https://github.com/xxconi/CVE-2026-6960

CVE-2026-9018

Privilege Escalation

Severity HIGH

8.8

AI Intelligence Analysis

Target Stack WordPress / Easy Elements for Elementor – Addons & Website Templates plugin

<=1.4.5

Impact Vector Privilege Escalation

Authentication Authenticated

Verified Exploits (1)

GitHub https://github.com/xxconi/CVE-2026-9018

CVE-2026-45584

Heap-based Buffer Overflow in Microsoft Defender

Severity HIGH

8.1

AI Intelligence Analysis

Target Stack Microsoft / Defender

Impact Vector RCE

Authentication PRE-AUTH

Verified Exploits (1)

GitHub https://github.com/96613686/CVE-2026-45584

CVE-2026-34926 CISA KEV ACTIVE

Directory traversal in Apex One (on-premise) server

Severity MEDIUM

6.7

AI Intelligence Analysis

Target Stack Trend Micro / Apex One (on-premise) server

Impact Vector Code Injection

Authentication PRE-AUTH

Verified Exploits (1)

GitHub https://github.com/HORKimhab/CVE-2026-34926

CVE-2026-5118

Divi Form Builder Privilege Escalation

Severity CRITICAL

9.8

AI Intelligence Analysis

Target Stack Divi / Form Builder plugin for WordPress

<=5.1.2

Impact Vector Privilege Escalation

Authentication PRE-AUTH

Verified Exploits (3)

GitHub https://github.com/Yucaerin/CVE-2026-5118

GitHub https://github.com/puj790201-lab/CVE-2026-5118

GitHub https://github.com/zycoder0day/CVE-2026-5118

CVE-2026-20223

Unauthenticated API Access in Cisco Secure Workload

Severity CRITICAL

10.0

AI Intelligence Analysis

Target Stack Cisco / Secure Workload

Impact Vector RCE

Authentication PRE-AUTH

Verified Exploits (1)

GitHub https://github.com/HORKimhab/CVE-2026-20223

CVE-2026-41091 CISA KEV ACTIVE

Improper link resolution in Microsoft Defender

Severity HIGH

7.8

AI Intelligence Analysis

Target Stack Microsoft / Defender

Impact Vector Privilege Escalation

Authentication Authenticated

Verified Exploits (1)

GitHub https://github.com/0xBlackash/CVE-2026-41091

CVE-2026-4631

Cockpit SSH Client Injection RCE

Severity CRITICAL

9.8

AI Intelligence Analysis

Target Stack Cockpit Project / Cockpit

Impact Vector RCE

Authentication Authenticated

Verified Exploits (2)

Exploit-DB https://www.exploit-db.com/exploits/52572

GitHub https://github.com/cyberheartmi9/CVE-2026-4631-cockpit-RCE

CVE-2026-45829

ChromaDB Pre-authentication Code Injection

Severity CRITICAL

10.0

AI Intelligence Analysis

Target Stack ChromaDB / Python project

>=1.0.0

Impact Vector RCE

Authentication Authenticated

Verified Exploits (2)

GitHub https://github.com/0xBlackash/CVE-2026-45829

GitHub https://github.com/fevar54/FULL-ANALYSIS---CVE-2026-45829-ChromaDB-

CVE-2026-45250

Kernel stack buffer overflow in setcred(2) system call allows privilege escalation

Severity HIGH

7.8

AI Intelligence Analysis

Target Stack / Kernel

Impact Vector Privilege Escalation

Authentication Authenticated

Verified Exploits (1)

GitHub https://github.com/venglin/setcred

CVE-2026-30950

AutoGPT Authenticated Session Hijacking via IDOR

Severity HIGH

7.1

AI Intelligence Analysis

Target Stack AutoGPT / AutoGPT

>=0.6.36 <=0.6.50

Impact Vector Session Hijacking

Authentication Authenticated

Verified Exploits (1)

GitHub https://github.com/ZeroPathAI/autogpt-CVE-2026-30950-poc

CVE-2026-30691

@cyntler/react-doc-viewer Cross-Site Scripting (XSS)

Severity MEDIUM

6.1

AI Intelligence Analysis

Target Stack cyntler / react-doc-viewer

=1.17.1

Impact Vector XSS

Authentication PRE-AUTH

Verified Exploits (1)

GitHub https://github.com/walidriouah/CVE-2026-30691

CVE-2026-46333

Information disclosure in Linux kernel ptrace

Severity HIGH

7.1

AI Intelligence Analysis

Target Stack Linux kernel / Linux kernel

Impact Vector Information Disclosure

Authentication Authenticated

Verified Exploits (3)

GitHub https://github.com/0xBlackash/CVE-2026-46333

GitHub https://github.com/studiogangster/CVE-2026-46333

GitHub https://github.com/KaraZajac/CHARON

CVE-2026-39047

Remote Code Execution via RAW Printing Service Buffer Overflow

Severity HIGH

7.5

AI Intelligence Analysis

Target Stack EPSON / L14150 FL27PB

Impact Vector RCE

Authentication PRE-AUTH

Verified Exploits (1)

GitHub https://github.com/AzhariRamadhan/CVE-2026-39047

CVE-2026-45585

Windows Security Feature Bypass (YellowKey)

Severity MEDIUM

6.8

AI Intelligence Analysis

Target Stack Microsoft / Windows

Impact Vector Security Feature Bypass

Authentication PRE-AUTH

Verified Exploits (1)

GitHub https://github.com/bjbakker1984/Yellowkey-mitigation

CVE-2026-45185

Use-after-free in Exim GnuTLS BDAT parsing

Severity CRITICAL

9.8

AI Intelligence Analysis

Target Stack Exim / Exim

<4.99.3

Impact Vector Arbitrary Code Execution

Authentication PRE-AUTH

Verified Exploits (3)

GitHub https://github.com/MJ-bin/POC_CVE-2026-45185

GitHub https://github.com/materaj2/cve-2026-45185-detection-script

GitHub https://github.com/liamromanis101/Dead.Letter-CVE-2026-45185

CVE-2026-42096

Broken Access Control (SQLi) in Sparx Pro Cloud Server

Severity HIGH

8.7

AI Intelligence Analysis

Target Stack Sparx / Pro Cloud Server

<=6.1 (build 167)

Impact Vector SQLi

Authentication Authenticated

Verified Exploits (1)

GitHub https://github.com/br0xpl/sparx_hack

CVE-2026-42097

Unauthenticated SQL Injection in Sparx Pro Cloud Server

Severity CRITICAL

9.3

AI Intelligence Analysis

Target Stack Sparx / Pro Cloud Server

<=6.1 (build 167)

Impact Vector SQLi

Authentication PRE-AUTH

Verified Exploits (1)

GitHub https://github.com/br0xpl/sparx_hack

CVE-2026-8838

Arbitrary Code Execution via Unsafe eval() in amazon-redshift-python-driver

Severity CRITICAL

9.3

AI Intelligence Analysis

Target Stack Amazon / amazon-redshift-python-driver

<2.1.14

Impact Vector RCE

Authentication PRE-AUTH

Verified Exploits (1)

GitHub https://github.com/Maxime288/CVE-2026-8838-RCE

PoC Search Engine

AI Intelligence Analysis

Verified Exploits (2)

AI Intelligence Analysis

Verified Exploits (1)

AI Intelligence Analysis

Verified Exploits (1)

AI Intelligence Analysis

Verified Exploits (1)

AI Intelligence Analysis

Verified Exploits (1)

AI Intelligence Analysis

Verified Exploits (3)

AI Intelligence Analysis

Verified Exploits (1)

AI Intelligence Analysis

Verified Exploits (1)

AI Intelligence Analysis

Verified Exploits (2)

AI Intelligence Analysis

Verified Exploits (2)

AI Intelligence Analysis

Verified Exploits (1)

AI Intelligence Analysis

Verified Exploits (1)

AI Intelligence Analysis

Verified Exploits (1)

AI Intelligence Analysis

Verified Exploits (3)

AI Intelligence Analysis

Verified Exploits (1)

AI Intelligence Analysis

Verified Exploits (1)

AI Intelligence Analysis

Verified Exploits (3)

AI Intelligence Analysis

Verified Exploits (1)

AI Intelligence Analysis

Verified Exploits (1)

AI Intelligence Analysis

Verified Exploits (1)

Don't Miss Critical Exploits