PoC Archive PoC Archive

tag

Use-After-Free

Critical
Redis Vector Set Duplicate HNSW Node ID RCE
None assigned as of 2026-07-03· Redis server, Vector Set module (modules/vector-sets) unpatched
Critical
libssh2 Publickey Subsystem List Parser Heap Corruption to Code Execution
None assigned as of 2026-07-03· libssh2, publickey subsystem list parser (src/publickey.c) unpatched
Critical
Ladybird Browser WebAssembly ESM Host-Function Use-After-Free RCE
None assigned as of 2026-07-03· Ladybird web browser (WebContent process, LibWeb / LibWasm) unpatched
High
c-ares TCP ares_getaddrinfo() Use-After-Free Code Execution
None assigned as of 2026-07-03· c-ares (async DNS resolver library) unpatched
High
PinTheft: RDS Double-Free → LPE
Linux kernel (RDS subsystem + io_uring) unpatched
High
Chrome WebGPU Use-After-Free (CVE-2026-5281)
CVE-2026-5281· Google Chrome / Chromium WebGPU (Dawn backend) unpatched
High
Chrome CSSFontFeatureValuesMap Use-After-Free (CVE-2026-2441)
CVE-2026-2441· Google Chrome / Chromium-based browsers (Blink CSS engine) unpatched
Critical
HTTP Protocol Stack Remote Code Execution Vulnerability (CVE-2021-31166)
CVE-2021-31166· Microsoft Windows HTTP Protocol Stack (http.sys) patched