Proof of concept code (POC)

After a security researcher has found a vulnerability in a company’s software, he/she may opt to corroborate his findings by creating a proof-of-concept code. This code proves that the underlying vulnerability could be exploited and used with malicious intent. In a preponderance of cases, the POC is not hostile and serves only to encourage the vendor to quickly mitigate the risk by releasing a patch.