Public exploitation
Exploit catalog
Every public exploit we catalog, in one index. Search by CVE, exploit name or technology — and see, right beside it, what the flaw is actually worth: severity, exploitation probability, and whether it’s already under attack.
71,062cataloged exploits
31,617CVEs with public exploitation
0lab-tested
AllExploit-DB 22,467Referência 19,791GitHub PoC 13,086VulnCheck XDB 8,069Nuclei 4,187Metasploit 3,462✓ verified onlyrecentpopularrisk
22,467 exploits
Exploit-DB
JUX Real Estate 3.4.0 - SQL Injection
JoomlaUX JUX Real Estate GET Parameter realties sql injection
33RISK
open ↗Exploit-DB
Extensive VC Addons for WPBakery page builder 1.9.0 - Remote Code Execution (RCE)
Extensive VC Addons for WPBakery page builder < 1.9.1 - Unauthenticated RCE
50RISK
open ↗Exploit-DB
Chamilo LMS 1.11.24 - Remote Code Execution (RCE)
Chamilo LMS Unauthenticated Big Upload File Remote Code Execution
78RISK
open ↗Exploit-DB
Devika v1 - Path Traversal via 'snapshot_path'
The snapshot_path parameter in the /api/get-browser-snapshot endpoint in stitionai devika v1 is susceptible to a path tr
68RISK
open ↗Exploit-DB
SolarWinds Platform 2024.1 SR1 - Race Condition
SolarWinds Platform Race Condition Vulnerability
38RISK
open ↗Exploit-DB
htmlLawed 1.2.5 - Remote Code Execution (RCE)
/vendor/htmlawed/htmlawed/htmLawedTest.php in the htmlawed module for GLPI through 10.0.2 allows PHP code injection.
100RISK
open ↗Exploit-DB
Wordpress Theme XStore 9.3.8 - SQLi
WordPress XStore theme <= 9.3.5 - Unauthenticated SQL Injection vulnerability
48RISK
open ↗Exploit-DB
Apache OFBiz 18.12.12 - Directory Traversal
Apache OFBiz: Path traversal leading to RCE
100RISK
open ↗Exploit-DB
Apache mod_proxy_cluster 1.2.6 - Stored XSS
Mod_cluster/mod_proxy_cluster: stored cross site scripting
33RISK
open ↗Exploit-DB
Palo Alto PAN-OS < v11.1.2-h3 - Command Injection and Arbitrary File Creation
PAN-OS: Arbitrary File Creation Leads to OS Command Injection Vulnerability in GlobalProtect
100RISK
open ↗Exploit-DB
Laravel Framework 11 - Credential Leakage
An issue in Laravel Framework 8 through 11 might allow a remote attacker to discover database credentials in storage/log
23RISK
open ↗Exploit-DB
OpenClinic GA 5.247.01 - Information Disclosure
An issue was discovered in OpenClinic GA 5.247.01. An Information Disclosure vulnerability has been identified in the pr
41RISK
open ↗Exploit-DB
OpenClinic GA 5.247.01 - Path Traversal (Authenticated)
An issue was discovered in OpenClinic GA 5.247.01. An attacker can perform a directory path traversal via the Page param
41RISK
open ↗Exploit-DB
Jenkins 2.441 - Local File Inclusion
Jenkins 2.441 and earlier, LTS 2.426.2 and earlier does not disable a feature of its CLI command parser that replaces an
100RISK
open ↗Exploit-DB
GUnet OpenEclass E-learning platform 3.15 - 'certbadge.php' Unrestricted File Upload
File Upload vulnerability in openeclass v.3.15 and before allows an attacker to execute arbitrary code via a crafted fil
48RISK
open ↗Exploit-DB
Ray OS v2.6.3 - Command Injection RCE(Unauthorized)
Ray Command Injection in cpu_profile Parameter
85RISK
open ↗Exploit-DB
MinIO < 2024-01-31T20-20-33Z - Privilege Escalation
MinIO unsafe default: Access keys inherit `admin` of root user, allowing privilege escalation
53RISK
open ↗Exploit-DB
Casdoor < v1.331.0 - '/api/set-password' CSRF
Casdoor v1.331.0 and below was discovered to contain a Cross-Site Request Forgery (CSRF) in the endpoint /api/set-passwo
23RISK
open ↗Exploit-DB
Daily Habit Tracker 1.0 - SQL Injection
SQL Injection vulnerability in delete-tracker.php in Daily Habit Tracker v.1.0 allows a remote attacker to execute arbit
48RISK
open ↗Exploit-DB
Gibbon LMS v26.0.00 - SSTI vulnerability
Gibbon through 26.0.00 allows /modules/School%20Admin/messengerSettings.php Server Side Template Injection leading to Re
53RISK
open ↗Exploit-DB
Daily Habit Tracker 1.0 - Stored Cross-Site Scripting (XSS)
Cross Site Scripting vulnerability in Daily Habit Tracker v.1.0 allows a remote attacker to execute arbitrary code via t
38RISK
open ↗Exploit-DB
Axigen < 10.5.7 - Persistent Cross-Site Scripting
Cross Site Scripting vulnerability in Axigen WebMail prior to 10.3.3.61 allows a remote attacker to escalate privileges
48RISK
open ↗Exploit-DB
Microsoft Windows 10.0.17763.5458 - Kernel Privilege Escalation
Windows Kernel Elevation of Privilege Vulnerability
83RISK
open ↗Exploit-DB
Daily Habit Tracker 1.0 - Broken Access Control
An issue in Daily Habit Tracker v.1.0 allows a remote attacker to manipulate trackers via the home.php, add-tracker.php,
53RISK
open ↗Exploit-DB
GL-iNet MT6000 4.5.5 - Arbitrary File Download
An issue was discovered on certain GL-iNet devices. Attackers can download files such as logs via commands, potentially
46RISK
open ↗Exploit-DB
Teacher Subject Allocation Management System 1.0 - 'searchdata' SQLi
SQL Injection vulnerability in index.php in phpgurukul Teacher Subject Allocation Management System 1.0 allows attackers
23RISK
open ↗Exploit-DB
Employee Management System 1.0 - 'admin_id' SQLi
SQL Injection vulnerability in Employee Management System v1.0 allows attackers to run arbitrary SQL commands via the ad
48RISK
open ↗Exploit-DB
HNAS SMU 14.8.7825 - Information Disclosure
System Management Unit (SMU) versions prior to 14.8.7825.01, used to manage Hitachi Vantara NAS products is susceptible to unintended information disclosure via unprivileged access to SMU configuration backup data.
41RISK
open ↗Exploit-DB
KiTTY 0.76.1.13 - 'Start Duplicated Session Username' Buffer Overflow
KiTTY versions 0.76.1.13 and before is vulnerable to a stack-based buffer overflow via the username, occurs due to insuf
41RISK
open ↗We index only the public link to the proof of concept — we never host or redistribute exploitation code. Sources: PoC-in-GitHub, Exploit-DB, Nuclei, Metasploit and VulnCheck XDB. A public PoC existing does not mean the flaw is exploitable in your environment.