Public exploitation
Exploit catalog
Every public exploit we catalog, in one index. Search by CVE, exploit name or technology — and see, right beside it, what the flaw is actually worth: severity, exploitation probability, and whether it’s already under attack.
71,114cataloged exploits
31,649CVEs with public exploitation
0lab-tested
AllExploit-DB 22,469Referência 19,810GitHub PoC 13,116VulnCheck XDB 8,069Nuclei 4,188Metasploit 3,462✓ verified onlyrecentpopularrisk
4,188 exploits
Nucleihigh
Oracle Business Intelligence Publisher - XML External Entity Injection
Vulnerability in the BI Publisher (formerly XML Publisher) component of Oracle Fusion Middleware (subcomponent: BI Publi
18RISK
open ↗Nucleicritical
Atlassian Confluence Server - Path Traversal
The Widget Connector macro in Atlassian Confluence Server before version 6.6.12 (the fixed version for 6.6.x), from vers
100RISK
open ↗Nucleihigh
Atlassian Confluence Download Attachments - Remote Code Execution
Confluence Server and Data Center had a path traversal vulnerability in the downloadallattachments resource. A remote at
100RISK
open ↗Nucleimedium
Atlassian Jira <7.13.3/8.0.0-8.1.1 - Incorrect Authorization
The ManageFilters.jspa resource in Jira before version 7.13.3 and from version 8.0.0 before version 8.1.1 allows remote
23RISK
open ↗Nucleimedium
Jira < 8.1.1 - Cross-Site Scripting
The ConfigurePortalPages.jspa resource in Jira before version 7.13.3 and from version 8.0.0 before version 8.1.1 allows
18RISK
open ↗Nucleimedium
Jira - Incorrect Authorization
The /rest/api/2/user/picker rest resource in Jira before version 7.13.3, from version 8.0.0 before version 8.0.4, and fr
30RISK
open ↗Nucleimedium
Spring Cloud Config Server - Local File Inclusion
Directory Traversal with spring-cloud-config-server
60RISK
open ↗Nucleimedium
LabKey Server Community Edition <18.3.0 - Cross-Site Scripting
Reflected cross-site scripting (XSS) vulnerability in LabKey Server Community Edition before 18.3.0-61806.763 allows an
18RISK
open ↗Nucleimedium
LabKey Server Community Edition <18.3.0 - Open Redirect
An open redirect vulnerability in LabKey Server Community Edition before 18.3.0-61806.763 via the /__r1/ returnURL param
18RISK
open ↗Nucleicritical
Barco/AWIND OEM Presentation Platform - Remote Command Injection
The Crestron AM-100 firmware 1.6.0.2, Crestron AM-101 firmware 2.7.0.1, Barco wePresent WiPG-1000P firmware 2.3.0.10, Ba
100RISK
open ↗Nucleimedium
IBM BigFix Platform - Information Disclosure
IBM BigFix Platform 9.2 and 9.5 could allow an attacker to query the relay remotely and gather information about the upd
33RISK
open ↗Nucleicritical
IBM Planning Analytics - Authentication Bypass & Remote Code Execution Version Detection
IBM Planning Analytics 2.0.0 through 2.0.8 is vulnerable to a configuration overwrite that allows an unauthenticated use
100RISK
open ↗Nucleicritical
YouPHPTube Encoder 2.3 - Remote Command Injection
A command injection have been found in YouPHPTube Encoder. A successful attack could allow an attacker to compromise the
55RISK
open ↗Nucleicritical
YouPHPTube Encoder - Arbitrary File Write
A command injection have been found in YouPHPTube Encoder. A successful attack could allow an attacker to compromise the
55RISK
open ↗Nucleicritical
YouPHPTube Encoder 2.3 - Command Injection
A command injection have been found in YouPHPTube Encoder. A successful attack could allow an attacker to compromise the
55RISK
open ↗Nucleihigh
Rails File Content Disclosure
There is a File Content Disclosure vulnerability in Action View <5.2.2.1, <5.1.6.2, <5.0.7.2, <4.2.11.1 and v3 where spe
100RISK
open ↗Nucleicritical
Revive Adserver 4.2 - Remote Code Execution
An attacker could send a specifically crafted payload to the XML-RPC invocation script and trigger the unserialize() cal
50RISK
open ↗Nucleimedium
FortiOS - Insecure LDAP Configuration Detection
A Default Configuration vulnerability in FortiOS may allow an unauthenticated attacker on the same subnet to intercept s
83RISK
open ↗Nucleimedium
WordPress Sell Media 2.4.1 - Cross-Site Scripting
A Cross-site scripting (XSS) vulnerability in /inc/class-search.php in the Sell Media plugin v2.4.1 for WordPress allows
18RISK
open ↗Nucleihigh
Drupal - Remote Code Execution
Drupal core - Highly critical - Remote Code Execution
100RISK
open ↗Nucleicritical
Total Donations Plugin for WordPress < 2.0.6 - Arbitrary Options Update
Incorrect access control in migla_ajax_functions.php in the Calmar Webmedia Total Donations plugin through 2.0.5 for Wor
23RISK
open ↗Nucleihigh
W3 Total Cache 0.9.2.6-0.9.3 - Unauthenticated File Read / Directory Traversal
pub/sns.php in the W3 Total Cache plugin before 0.9.4 for WordPress allows remote attackers to read arbitrary files via
23RISK
open ↗Nucleihigh
GitLab Enterprise Edition - Server-Side Request Forgery
An issue was discovered in GitLab Enterprise Edition before 11.5.8, 11.6.x before 11.6.6, and 11.7.x before 11.7.1. The
18RISK
open ↗Nucleimedium
phpMyAdmin <4.8.5 - Local File Inclusion
An issue was discovered in phpMyAdmin before 4.8.5. When the AllowArbitraryServer configuration setting is set to true,
23RISK
open ↗Nucleimedium
Pypiserver <1.2.5 - Carriage Return Line Feed Injection
CRLF Injection in pypiserver 1.2.5 and below allows attackers to set arbitrary HTTP headers and possibly conduct XSS att
18RISK
open ↗Nucleicritical
Magento - SQL Injection
An unauthenticated user can execute SQL statements that allow arbitrary read access to the underlying database, which ca
43RISK
open ↗Nucleicritical
QNAP QTS and Photo Station 6.0.3 - Remote Command Execution
This improper access control vulnerability allows remote attackers to gain unauthorized access to the system. To fix the
100RISK
open ↗Nucleicritical
QNAP Photo Station < 6.0.3 - Remote Code Execution
This external control of file name or path vulnerability allows remote attackers to access or modify system files. To fi
100RISK
open ↗Nucleicritical
QNAP Photo Station - Path Traversal
This external control of file name or path vulnerability allows remote attackers to access or modify system files. To fi
100RISK
open ↗Nucleimedium
Zarafa WebApp <=2.0.1.47791 - Cross-Site Scripting
Unauthenticated reflected cross-site scripting (XSS) exists in Zarafa Webapp 2.0.1.47791 and earlier. NOTE: this is a di
18RISK
open ↗We index only the public link to the proof of concept — we never host or redistribute exploitation code. Sources: PoC-in-GitHub, Exploit-DB, Nuclei, Metasploit and VulnCheck XDB. A public PoC existing does not mean the flaw is exploitable in your environment.