Public exploitation

Exploit catalog

Every public exploit we catalog, in one index. Search by CVE, exploit name or technology — and see, right beside it, what the flaw is actually worth: severity, exploitation probability, and whether it’s already under attack.

71,062cataloged exploits
31,617CVEs with public exploitation
0lab-tested
4,187 exploits
Nucleimedium
DomainMOD <=4.11.01 - Cross-Site Scripting
DomainMOD through 4.11.01 has XSS via the assets/edit/host.php Web Host Name or Web Host URL field.
38RISK
open
Nucleimedium
DomainMOD 4.11.01 - Cross-Site Scripting
DomainMOD 4.11.01 has XSS via the assets/add/ssl-provider.php SSL Provider Name or SSL Provider URL field.
38RISK
open
Nucleimedium
DomainMOD 4.11.01 - Cross-Site Scripting
DomainMOD 4.11.01 has XSS via the assets/add/ssl-provider-account.php username field.
38RISK
open
Nucleimedium
DomainMOD 4.11.01 - Cross-Site Scripting
DomainMOD 4.11.01 has XSS via the assets/add/category.php Category Name or Stakeholder field.
38RISK
open
Nucleicritical
ThinkPHP 5.0.23 - Remote Code Execution
CVE-2018-20062CRITICALunder attack
An issue was discovered in NoneCms V1.3. thinkphp/library/think/App.php allows remote attackers to execute arbitrary PHP
100RISK
open
Nucleimedium
WordPress JSmol2WP <=1.07 - Cross-Site Scripting
An issue was discovered in the JSmol2WP plugin 1.07 for WordPress. A cross-site scripting (XSS) vulnerability allows rem
18RISK
open
Nucleihigh
WordPress JSmol2WP <=1.07 - Local File Inclusion
An issue was discovered in the JSmol2WP plugin 1.07 for WordPress. There is an arbitrary file read vulnerability via ../
23RISK
open
Nucleihigh
Tyto Sahi pro 7.x/8.x - Local File Inclusion
An issue was discovered in Tyto Sahi Pro through 7.x.x and 8.0.0. A directory traversal (arbitrary file access) vulnerab
50RISK
open
Nucleicritical
Roxy Fileman 1.4.5 - Unrestricted File Upload
Roxy Fileman 1.4.5 allows unrestricted file upload in upload.php.
60RISK
open
Nucleihigh
Imcat 4.4 - Phpinfo Configuration
imcat 4.4 allows remote attackers to read phpinfo output via the root/tools/adbug/binfo.php?phpinfo1 URI.
23RISK
open
Nucleimedium
Atlassian Jira WallboardServlet <7.13.1 - Cross-Site Scripting
The WallboardServlet resource in Jira before version 7.13.1 allows remote attackers to inject arbitrary HTML or JavaScri
30RISK
open
Nucleicritical
WordPress Payeezy Pay <=2.97 - Local File Inclusion
The wp-payeezy-pay plugin before 2.98 for WordPress has local file inclusion in pay.php, donate.php, donate-rec, and pay
18RISK
open
Nucleihigh
SAP Internet Graphics Server (IGS) - XML External Entity Injection
Under certain conditions SAP Internet Graphics Server (IGS) 7.20, 7.20EXT, 7.45, 7.49, 7.53, fails to validate XML Exter
50RISK
open
Nucleicritical
osCommerce 2.3.4.1 - Remote Code Execution
osCommerce 2.3.4.1 Installer Unauthenticated Configuration File Injection PHP Code Execution
63RISK
open
Nucleihigh
Oracle Fusion Middleware WebCenter Sites - Cross-Site Scripting
Vulnerability in the Oracle WebCenter Sites component of Oracle Fusion Middleware (subcomponent: Advanced UI). Supported
50RISK
open
Nucleicritical
Oracle WebLogic Server - Remote Code Execution
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS - Web Services). Su
50RISK
open
Nucleimedium
Oracle E-Business Suite - Blind SSRF
Vulnerability in the Application Management Pack for Oracle E-Business Suite component of Oracle E-Business Suite (subco
23RISK
open
Nucleimedium
Oracle Fusion Middleware WebCenter Sites 11.1.1.8.0 - Cross-Site Scripting
Vulnerability in the Oracle WebCenter Sites component of Oracle Fusion Middleware (subcomponent: Advanced UI). The suppo
18RISK
open
Nucleimedium
node-srv - Local File Inclusion
node-srv node module suffers from a Path Traversal vulnerability due to lack of validation of url, which allows a malici
18RISK
open
Nucleihigh
Ruby On Rails - Local File Inclusion
There is an information leak vulnerability in Sprockets. Versions Affected: 4.0.0.beta7 and lower, 3.7.1 and lower, 2.12
43RISK
open
Nucleicritical
Oturia WordPress Smart Google Code Inserter <3.5 - Authentication Bypass
Authentication Bypass vulnerability in the Oturia Smart Google Code Inserter plugin before 3.5 for WordPress allows unau
60RISK
open
Nucleimedium
Atlassian Jira Confluence - Cross-Site Scripting
The issue collector in Atlassian Jira before version 7.6.6, from version 7.7.0 before version 7.7.4, from version 7.8.0
30RISK
open
Nucleimedium
Grav CMS <1.3.0 - Cross-Site Scripting
Cross-site scripting (XSS) vulnerability in system/src/Grav/Common/Twig/Twig.php in Grav CMS before 1.3.0 allows remote
18RISK
open
Nucleimedium
WordPress SagePay Server Gateway for WooCommerce <1.0.9 - Cross-Site Scripting
The "SagePay Server Gateway for WooCommerce" plugin before 1.0.9 for WordPress has XSS via the includes/pages/redirect.p
18RISK
open
Nucleimedium
SugarCRM 3.5.1 - Cross-Site Scripting
phprint.php in SugarCRM 3.5.1 has XSS via a parameter name in the query string (aka a $key variable).
38RISK
open
Nucleihigh
Joomla! Jtag Members Directory 5.3.7 - Local File Inclusion
Arbitrary File Download exists in the Jtag Members Directory 5.3.7 component for Joomla! via the download_file parameter
50RISK
open
Nucleihigh
Zeit Next.js < 4.2.3 - Local File Inclusion
ZEIT Next.js 4 before 4.2.3 has Directory Traversal under the /_next request namespace.
18RISK
open
Nucleimedium
vBulletin - Open Redirect
vBulletin 3.x.x and 4.2.x through 4.2.5 has an open redirect via the redirector.php url parameter.
18RISK
open
Nucleicritical
D-Link - Unauthenticated Remote Code Execution
CVE-2018-6530CRITICALunder attackransomware
OS command injection vulnerability in soap.cgi (soapcgi_main in cgibin) in D-Link DIR-880L DIR-880L_REVA_FIRMWARE_PATCH_
95RISK
open
Nucleicritical
Joomla! Component Zh BaiduMap 3.0.0.1 - SQL Injection
SQL Injection exists in the Zh BaiduMap 3.0.0.1 component for Joomla! via the id parameter in a getPlacemarkDetails, get
50RISK
open

We index only the public link to the proof of concept — we never host or redistribute exploitation code. Sources: PoC-in-GitHub, Exploit-DB, Nuclei, Metasploit and VulnCheck XDB. A public PoC existing does not mean the flaw is exploitable in your environment.