Public exploitation

Exploit catalog

Every public exploit we catalog, in one index. Search by CVE, exploit name or technology — and see, right beside it, what the flaw is actually worth: severity, exploitation probability, and whether it’s already under attack.

71,114cataloged exploits
31,649CVEs with public exploitation
0lab-tested
3,462 exploits
Metasploit300
Easy File Sharing HTTP Server 7.2 POST Buffer Overflow
CVE-2025-34096CRITICAL12 Jun 2017
Easy File Sharing HTTP Server 7.2 Buffer Overflow via POST to /sendemail.ghp
63RISK
open
Metasploit600
IPFire proxy.cgi RCE
CVE-2017-975709 Jun 2017
IPFire 2.19 has a Remote Command Injection vulnerability in ids.cgi via the OINKCODE parameter, which is mishandled by a
30RISK
open
Metasploit300
Riverbed SteelHead VCX File Read
CVE-2025-34098HIGH01 Jun 2017
Riverbed SteelHead VCX Authenticated Arbitrary File Read via Log Filter Injection
36RISK
open
Metasploit600
IBM OpenAdmin Tool SOAP welcomeServer PHP Code Execution
CVE-2017-109230 May 2017
IBM Informix Open Admin Tool 11.5, 11.7, and 12.1 could allow an unauthorized user to execute arbitrary code as system a
60RISK
open
Metasploit600
VICIdial user_authorization Unauthenticated Command Execution
CVE-2025-34099CRITICAL26 May 2017
VICIdial vicidial_sales_viewer.php Unauthenticated Command Injection via Basic Auth Password
63RISK
open
Metasploit600
VMware Workstation ALSA Config File Local Privilege Escalation
CVE-2017-491522 May 2017
VMware Workstation Pro/Player contains an insecure library loading vulnerability via ALSA sound driver configuration fil
38RISK
open
Metasploit600
PlaySMS sendfromfile.php Authenticated "Filename" Field Code Execution
CVE-2017-908021 May 2017
PlaySMS 1.4 allows remote code execution because PHP code in the name of an uploaded .php file is executed. sendfromfile
50RISK
open
Metasploit600
PlaySMS import.php Authenticated CSV File Upload Code Execution
CVE-2017-910121 May 2017
import.php (aka the Phonebook import feature) in PlaySMS 1.4 allows remote code execution via vectors involving the User
60RISK
open
Metasploit600
Joomla Component Fields SQLi Remote Code Execution
CVE-2017-891717 May 2017
SQL injection vulnerability in Joomla! 3.7.x before 3.7.1 allows attackers to execute arbitrary SQL commands via unspeci
60RISK
open
Metasploit300
LabF nfsAxe 3.7 FTP Client Stack Buffer Overflow
CVE-2017-1804715 May 2017
Buffer Overflow in the FTP client in LabF nfsAxe 3.7 allows remote FTP servers to execute arbitrary code via a long repl
23RISK
open
Metasploit600
HPE iMC dbman RestoreDBase Unauthenticated RCE
CVE-2017-581715 May 2017
A Remote Code Execution vulnerability in HPE Intelligent Management Center (iMC) PLAT version 7.3 E0504P04 was found.
60RISK
open
Metasploit600
HPE iMC dbman RestartDB Unauthenticated RCE
CVE-2017-581615 May 2017
A Remote Code Execution vulnerability in HPE Intelligent Management Center (iMC) PLAT version 7.3 E0504P04 was found.
60RISK
open
Metasploit600
Octopus Deploy Authenticated Code Execution
CVE-2018-1885015 May 2017
In Octopus Deploy 2018.8.0 through 2018.9.x before 2018.9.1, an authenticated user with permission to modify deployment
23RISK
open
Metasploit300
Veritas/Symantec Backup Exec SSL NDMP Connection Use-After-Free
CVE-2017-889510 May 2017
In Veritas Backup Exec 2014 before build 14.1.1187.1126, 15 before build 14.2.1180.3160, and 16 before FP1, there is a u
60RISK
open
Metasploit300
Intel AMT Digest Authentication Bypass Scanner
CVE-2017-5689CRITICALunder attack05 May 2017
An unprivileged network attacker could gain system privileges to provisioned Intel manageability SKUs: Intel Active Mana
100RISK
open
Metasploit200
WordPress PHPMailer Host Header Command Injection
CVE-2016-10033CRITICALunder attack03 May 2017
The mailSend function in the isMail transport in PHPMailer before 5.2.18 might allow remote attackers to pass extra para
100RISK
open
Metasploit600
Serviio Media Server checkStreamUrl Command Execution
CVE-2025-34101CRITICAL03 May 2017
Serviio Media Server Unauthenticated Command Injection via checkStreamUrl VIDEO Parameter
63RISK
open
Metasploit600
Crypttech CryptoLog Remote Code Execution
CVE-2025-34102CRITICAL03 May 2017
CryptoLog Unauthenticated RCE via SQL Injection and Command Injection
63RISK
open
Metasploit600
Ghostscript Type Confusion Arbitrary Command Execution
CVE-2017-8291HIGHunder attack27 Apr 2017
Artifex Ghostscript through 2017-04-26 allows -dSAFER bypass and remote command execution via .rsdparams type confusion
100RISK
open
Metasploit600
Symantec Messaging Gateway Remote Code Execution
CVE-2017-632626 Apr 2017
The Symantec Messaging Gateway can encounter an issue of remote code execution, which describes a situation whereby an i
60RISK
open
Metasploit600
Jenkins CLI Deserialization
CVE-2017-1000353CRITICALunder attack26 Apr 2017
Jenkins versions 2.56 and earlier as well as 2.46.1 LTS and earlier are vulnerable to an unauthenticated remote code exe
100RISK
open
Metasploit600
October CMS Upload Protection Bypass Code Execution
CVE-2017-100011925 Apr 2017
October CMS build 412 is vulnerable to PHP code execution in the file upload functionality resulting in site compromise
50RISK
open
Metasploit600
Solaris 'EXTREMEPARR' dtappgather Privilege Escalation
CVE-2017-362224 Apr 2017
Vulnerability in the Solaris component of Oracle Sun Systems Products Suite (subcomponent: Common Desktop Environment (C
38RISK
open
Metasploit600
WePresent WiPG-1000 Command Injection
CVE-2025-34103CRITICAL20 Apr 2017
WePresent WiPG-1000 Unauthenticated Command Injection in via rdfs.cgi
63RISK
open
Metasploit600
Mercurial Custom hg-ssh Wrapper Remote Code Exec
CVE-2017-946218 Apr 2017
In Mercurial before 4.1.3, "hg serve --stdio" allows remote authenticated users to launch the Python debugger, and conse
23RISK
open
Metasploit300
MantisBT password reset
CVE-2017-761516 Apr 2017
MantisBT through 2.3.0 allows arbitrary password reset and unauthenticated admin access via an empty confirm_hash value
60RISK
open
Metasploit500
SMB DOUBLEPULSAR Remote Code Execution
CVE-2017-0146HIGHunder attackransomware14 Apr 2017
The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows
100RISK
open
Metasploit500
SMB DOUBLEPULSAR Remote Code Execution
CVE-2017-0147HIGHunder attackransomware14 Apr 2017
The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows
100RISK
open
Metasploit500
SMB DOUBLEPULSAR Remote Code Execution
CVE-2017-0143HIGHunder attackransomware14 Apr 2017
The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows
100RISK
open
Metasploit500
SMB DOUBLEPULSAR Remote Code Execution
CVE-2017-0145HIGHunder attackransomware14 Apr 2017
The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows
100RISK
open

We index only the public link to the proof of concept — we never host or redistribute exploitation code. Sources: PoC-in-GitHub, Exploit-DB, Nuclei, Metasploit and VulnCheck XDB. A public PoC existing does not mean the flaw is exploitable in your environment.