Public exploitation
Exploit catalog
Every public exploit we catalog, in one index. Search by CVE, exploit name or technology — and see, right beside it, what the flaw is actually worth: severity, exploitation probability, and whether it’s already under attack.
71,063cataloged exploits
31,617CVEs with public exploitation
0lab-tested
AllExploit-DB 22,467Referência 19,791GitHub PoC 13,086VulnCheck XDB 8,069Nuclei 4,188Metasploit 3,462✓ verified onlyrecentpopularrisk
22,467 exploits
Exploit-DB
Hospital Management Startup 1.0 - 'Multiple' SQLi
HMS v1.0 was discovered to contain a SQL injection vulnerability via patientlogin.php.
23RISK
open ↗Exploit-DB
AtomCMS v2.0 - SQLi
AtomCMS v2.0 was discovered to contain a SQL injection vulnerability via /admin/login.php.
50RISK
open ↗Exploit-DB
Hospital Management System 4.0 - 'multiple' SQL Injection
Hospital Management System v4.0 was discovered to contain a SQL injection vulnerability in /Hospital-Management-System-m
23RISK
open ↗Exploit-DB
FileBrowser 2.17.2 - Cross Site Request Forgery (CSRF) to Remote Code Execution (RCE)
A Cross-Site Request Forgery vulnerability exists in Filebrowser < 2.18.0 that allows attackers to create a backdoor use
23RISK
open ↗Exploit-DB
Wordpress Plugin Simple Job Board 2.9.3 - Local File Inclusion
Directory traversal vulnerability in class-simple_job_board_resume_download_handler.php in the Simple Board Job plugin 2
50RISK
open ↗Exploit-DB
WordPress Plugin Security Audit 1.0.0 - Stored Cross Site Scripting (XSS)
Security Audit <= 1.0.0 - Admin+ Stored Cross Site Scripting
23RISK
open ↗Exploit-DB
Strapi CMS 3.0.0-beta.17.4 - Set Password (Unauthenticated) (Metasploit)
strapi before 3.0.0-beta.17.5 mishandles password resets within packages/strapi-admin/controllers/Auth.js and packages/s
60RISK
open ↗Exploit-DB
WordPress Plugin CP Blocks 1.0.14 - Stored Cross Site Scripting (XSS)
CP Blocks < 1.0.15 - Admin+ Stored Cross-Site Scripting
23RISK
open ↗Exploit-DB
Servisnet Tessa - MQTT Credentials Dump (Unauthenticated) (Metasploit)
An issue was discovered in Servisnet Tessa 0.0.2. Authorization data is available via an unauthenticated /data-service/u
28RISK
open ↗Exploit-DB
Servisnet Tessa - Privilege Escalation (Metasploit)
An issue was discovered in Servisnet Tessa 0.0.2. An attacker can obtain sensitive information via a /js/app.js request.
28RISK
open ↗Exploit-DB
Wordpress Plugin Download Monitor WordPress V 4.4.4 - SQL Injection (Authenticated)
Download Monitor < 4.4.5 - Admin+ SQL Injection
61RISK
open ↗Exploit-DB
WordPress Plugin Learnpress 4.1.4.1 - Arbitrary Image Renaming
LearnPress < 4.1.5 - Arbitrary Image Renaming
23RISK
open ↗Exploit-DB
Wordpress Plugin 404 to 301 2.0.2 - SQL-Injection (Authenticated)
The 404-to-301 plugin before 2.0.3 for WordPress has SQL injection.
50RISK
open ↗Exploit-DB
WordPress Plugin Post Grid 2.1.1 - Cross Site Scripting (XSS)
Post Grid < 2.1.8 - Reflected Cross-Site Scripting (XSS)
43RISK
open ↗Exploit-DB
Mozilla Firefox 67 - Array.pop JIT Type Confusion
A type confusion vulnerability can occur when manipulating JavaScript objects due to issues in Array.pop. This can allow
83RISK
open ↗Exploit-DB
WordPress Plugin Product Slider for WooCommerce 1.13.21 - Cross Site Scripting (XSS)
PickPlugins Product Slider for WooCommerce < 1.13.22 - Reflected Cross-Site Scripting (XSS)
43RISK
open ↗Exploit-DB
PHP Unit 4.8.28 - Remote Code Execution (RCE) (Unauthenticated)
Util/PHP/eval-stdin.php in PHPUnit before 4.8.28 and 5.x before 5.6.3 allows remote attackers to execute arbitrary PHP c
100RISK
open ↗Exploit-DB
Chamilo LMS 1.11.14 - Account Takeover
A user without privileges in Chamilo LMS 1.11.14 can send an invitation message to another user, e.g., the administrator
23RISK
open ↗Exploit-DB
Moodle 3.11.4 - SQL Injection
A flaw was found in Moodle in versions 3.11 to 3.11.4. An SQL injection risk was identified in the h5p activity web serv
35RISK
open ↗Exploit-DB
WordPress Plugin Domain Check 1.0.16 - Reflected Cross-Site Scripting (XSS) (Authenticated)
Domain Check < 1.0.17 - Reflected Cross-Site Scripting
43RISK
open ↗Exploit-DB
WordPress Plugin Contact Form Check Tester 1.0.2 - Broken Access Control
Contact Form Check Tester <= 1.0.2 - Broken Access Control to Cross-Site Scripting (XSS)
23RISK
open ↗Exploit-DB
WordPress Plugin Modern Events Calendar V 6.1 - SQL Injection (Unauthenticated)
Modern Events Calendar < 6.1.5 - Unauthenticated Blind SQL Injection
60RISK
open ↗Exploit-DB
WordPress Plugin RegistrationMagic V 5.0.1.5 - SQL Injection (Authenticated)
RegistrationMagic < 5.0.1.6 - Admin+ SQL Injection
60RISK
open ↗Exploit-DB
Oracle WebLogic Server 14.1.1.0.0 - Local File Inclusion
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Web Container). Supported ve
78RISK
open ↗Exploit-DB
PolicyKit-1 0.105-31 - Privilege Escalation
A local privilege escalation vulnerability was found on polkit's pkexec utility. The pkexec application is a setuid tool
100RISK
open ↗Exploit-DB
WordPress Plugin Mortgage Calculators WP 1.52 - Stored Cross-Site Scripting (XSS) (Authenticated)
Mortgage Calculators WP < 1.56 - Admin+ Stored Cross-Site Scripting
23RISK
open ↗Exploit-DB
PHPIPAM 1.4.4 - SQLi (Authenticated)
PhpIPAM v1.4.4 allows an authenticated admin user to inject SQL sentences in the "subnet" parameter while searching a su
28RISK
open ↗Exploit-DB
Creston Web Interface 1.0.0.2159 - Credential Disclosure
An issue was discovered on Crestron HD-MD4X2-4K-E 1.0.0.2159 devices. When the administrative web interface of the HDMI
60RISK
open ↗Exploit-DB
WordPress Plugin Frontend Uploader 1.3.2 - Stored Cross Site Scripting (XSS) (Unauthenticated)
Frontend Uploader <= 1.3.2 - Unauthenticated Stored Cross-Site Scripting
28RISK
open ↗Exploit-DB
VUPlayer 2.49 - '.wax' Local Buffer Overflow (DEP Bypass)
Buffer overflow in VUPlayer 2.49 and earlier allows user-assisted attackers to execute arbitrary code via a long URL in
50RISK
open ↗We index only the public link to the proof of concept — we never host or redistribute exploitation code. Sources: PoC-in-GitHub, Exploit-DB, Nuclei, Metasploit and VulnCheck XDB. A public PoC existing does not mean the flaw is exploitable in your environment.