Public exploitation

Exploit catalog

Every public exploit we catalog, in one index. Search by CVE, exploit name or technology — and see, right beside it, what the flaw is actually worth: severity, exploitation probability, and whether it’s already under attack.

71,114cataloged exploits
31,649CVEs with public exploitation
0lab-tested
3,462 exploits
Metasploit600
Polycom Shell HDX Series Traceroute Command Execution
CVE-2025-34093HIGH12 Nov 2017
Polycom HDX Series Telnet Command Injection via lan traceroute
36RISK
open
Metasploit300
Roundcube TimeZone Authenticated File Disclosure
CVE-2017-16651HIGHunder attack09 Nov 2017
Roundcube Webmail before 1.1.10, 1.2.x before 1.2.7, and 1.3.x before 1.3.3 allows unauthorized access to arbitrary file
98RISK
open
Metasploit600
Synology DiskStation Manager smart.cgi Remote Command Execution
CVE-2017-1588908 Nov 2017
Command injection vulnerability in smart.cgi in Synology DiskStation Manager (DSM) before 5.2-5967-5 allows remote authe
60RISK
open
Metasploit300
Samsung Internet Browser SOP Bypass
CVE-2017-1769208 Nov 2017
Samsung Internet Browser 5.4.02.3 allows remote attackers to bypass the Same Origin Policy and obtain sensitive informat
60RISK
open
Metasploit600
pfSense authenticated group member RCE
CVE-2016-1070906 Nov 2017
pfSense before 2.3 allows remote authenticated users to execute arbitrary OS commands via a '|' character in the status_
30RISK
open
Metasploit300
Brother Debut http Denial Of Service
CVE-2017-1624902 Nov 2017
The Debut embedded http server contains a remotely exploitable denial of service where a single malformed HTTP POST requ
50RISK
open
Metasploit400
Advantech WebAccess Webvrpcs Service Opcode 80061 Stack Buffer Overflow
CVE-2017-1401602 Nov 2017
A Stack-based Buffer Overflow issue was discovered in Advantech WebAccess versions prior to V8.2_20170817. The applicati
43RISK
open
Metasploit600
Xplico Remote Code Execution
CVE-2017-1666629 Oct 2017
Xplico before 1.2.1 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the name
60RISK
open
Metasploit600
Tuleap 9.6 Second-Order PHP Object Injection
CVE-2017-741123 Oct 2017
An issue was discovered in Enalean Tuleap 9.6 and prior versions. The vulnerability exists because the User::getRecentEl
50RISK
open
Metasploit300
Ayukov NFTP FTP Client Buffer Overflow
CVE-2017-1522221 Oct 2017
Buffer Overflow vulnerability in Ayukov NFTPD 2.0 and earlier allows remote attackers to execute arbitrary code.
50RISK
open
Metasploit600
Oracle WebLogic wls-wsat Component Deserialization RCE
CVE-2017-10271HIGHunder attackransomware19 Oct 2017
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS Security). Supporte
100RISK
open
Metasploit300
Easy Chat Server User Registeration Buffer Overflow (SEH)
CVE-2017-954409 Oct 2017
There is a remote stack-based buffer overflow (SEH) in register.ghp in EFS Software Easy Chat Server versions 2.0 to 3.1
23RISK
open
Metasploit600
Trend Micro InterScan Messaging Security (Virtual Appliance) Remote Code Execution
CVE-2017-1139207 Oct 2017
Proxy command injection vulnerability in Trend Micro InterScan Messaging Virtual Appliance 9.0 and 9.1 allows remote att
30RISK
open
Metasploit600
Trend Micro InterScan Messaging Security (Virtual Appliance) Remote Code Execution
CVE-2017-1139107 Oct 2017
Proxy command injection vulnerability in Trend Micro InterScan Messaging Virtual Appliance 9.0 and 9.1 allows remote att
30RISK
open
Metasploit600
Trend Micro InterScan Messaging Security (Virtual Appliance) Remote Code Execution
CVE-2017-789607 Oct 2017
Trend Micro InterScan Messaging Security Virtual Appliance (IMSVA) 9.1 before CP 1644 has XSS.
18RISK
open
Metasploit600
Trend Micro OfficeScan Remote Code Execution
CVE-2017-1139407 Oct 2017
Proxy command injection vulnerability in Trend Micro OfficeScan 11 and XG (12) allows remote attackers to execute arbitr
50RISK
open
Metasploit600
Tomcat RCE via JSP Upload Bypass
CVE-2017-12617HIGHunder attack03 Oct 2017
When running Apache Tomcat versions 9.0.0.M1 to 9.0.0, 8.5.0 to 8.5.22, 8.0.0.RC1 to 8.0.46 and 7.0.0 to 7.0.81 with HTT
100RISK
open
Metasploit600
HP Intelligent Management Java Deserialization RCE
CVE-2017-1255703 Oct 2017
A Remote Code Execution vulnerability in HPE intelligent Management Center (iMC) PLAT version IMC Plat 7.3 E0504P2 and e
60RISK
open
Metasploit600
phpCollab 2.5.1 Unauthenticated File Upload
CVE-2017-609029 Sep 2017
Unrestricted file upload vulnerability in clients/editclient.php in PhpCollab 2.5.1 and earlier allows remote authentica
60RISK
open
Metasploit300
Unauthenticated information disclosure such as configuration, credentials and camera snapshots of a vulnerable Hikvision IP Camera
CVE-2017-7921CRITICALunder attack23 Sep 2017
An Improper Authentication issue was discovered in Hikvision DS-2CD2xx2F-I Series V5.2.0 build 140721 to V5.4.0 build 16
100RISK
open
Metasploit300
Hikvision IP Camera Unauthenticated Password Change Via Improper Authentication Logic
CVE-2017-7921CRITICALunder attack23 Sep 2017
An Improper Authentication issue was discovered in Hikvision DS-2CD2xx2F-I Series V5.2.0 build 140721 to V5.4.0 build 16
100RISK
open
Metasploit300
CyberLink LabelPrint 2.5 Stack Buffer Overflow
CVE-2017-1462723 Sep 2017
Stack-based buffer overflows in CyberLink LabelPrint 2.5 allow remote attackers to execute arbitrary code via the (1) au
43RISK
open
Metasploit600
DenyAll Web Application Firewall Remote Code Execution
CVE-2017-1470619 Sep 2017
DenyAll WAF before 6.4.1 allows unauthenticated remote attackers to obtain authentication information by making a typeOf
23RISK
open
Metasploit300
Apache Optionsbleed Scanner
CVE-2017-979818 Sep 2017
Apache httpd allows remote attackers to read secret data from process memory if the Limit directive can be set in a user
60RISK
open
Metasploit600
xdebug Unauthenticated OS Command Execution
CVE-2015-10141CRITICAL17 Sep 2017
Xdebug Remote Debugger Unauthenticated OS Command Execution
63RISK
open
Metasploit600
Kaltura Remote PHP Code Execution over Cookie
CVE-2017-1414312 Sep 2017
The getUserzoneCookie function in Kaltura before 13.2.0 uses a hardcoded cookie secret to validate cookie signatures, wh
60RISK
open
Metasploit600
Apache Struts 2 REST Plugin XStream RCE
CVE-2017-9805HIGHunder attack05 Sep 2017
The REST Plugin in Apache Struts 2.1.1 through 2.3.x before 2.3.34 and 2.5.x before 2.5.13 uses an XStreamHandler with a
100RISK
open
Metasploit600
Mako Server v2.5, 2.6 OS Command Injection RCE
CVE-2025-34095CRITICAL03 Sep 2017
Mako Server v2.5 and v2.6 OS Command Injection via examples/save.lsp
63RISK
open
Metasploit600
Zivif Camera iptest.cgi Blind Remote Command Execution
CVE-2017-1710501 Sep 2017
Zivif PR115-204-P-RS V2.3.4.2103 and V4.7.4.2121 (and possibly in-between versions) web cameras are vulnerable to unauth
40RISK
open
Metasploit300
IBM Notes encodeURI DOS
CVE-2017-112931 Aug 2017
IBM Notes 8.5 and 9.0 is vulnerable to a denial of service. If a user is persuaded to click on a malicious link, it coul
50RISK
open

We index only the public link to the proof of concept — we never host or redistribute exploitation code. Sources: PoC-in-GitHub, Exploit-DB, Nuclei, Metasploit and VulnCheck XDB. A public PoC existing does not mean the flaw is exploitable in your environment.