Proof-of-concept exploits for CVEs — security research, vulnerability analysis, and responsible disclosure