Public exploitation

Exploit catalog

Every public exploit we catalog, in one index. Search by CVE, exploit name or technology — and see, right beside it, what the flaw is actually worth: severity, exploitation probability, and whether it’s already under attack.

71,171cataloged exploits
31,690CVEs with public exploitation
0lab-tested
3,462 exploits
Metasploit300
SSL/TLS Version Detection
CVE-2022-335814 Oct 2014
Using a Custom Cipher with NID_undef may lead to NULL encryption
18RISK
open
Metasploit300
Windows TrackPopupMenu Win32k NULL Pointer Dereference
CVE-2014-4113HIGHunder attack14 Oct 2014
win32k.sys in the kernel-mode drivers in Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 a
100RISK
open
Metasploit300
SSL/TLS Version Detection
CVE-2011-338914 Oct 2014
The SSL protocol, as used in certain configurations in Microsoft Windows and Microsoft Internet Explorer, Mozilla Firefo
40RISK
open
Metasploit500
Adobe Flash Player casi32 Integer Overflow
CVE-2014-056914 Oct 2014
Integer overflow in Adobe Flash Player before 13.0.0.250 and 14.x and 15.x before 15.0.0.189 on Windows and OS X and bef
60RISK
open
Metasploit300
SSL/TLS Version Detection
CVE-2013-2566MEDIUM14 Oct 2014
The RC4 algorithm, as used in the TLS protocol and SSL protocol, has many single-byte biases, which makes it easier for
50RISK
open
Metasploit600
TWiki Debugenableplugins Remote Code Execution
CVE-2014-723609 Oct 2014
Eval injection vulnerability in lib/TWiki/Plugins.pm in TWiki before 6.0.1 allows remote attackers to execute arbitrary
50RISK
open
Metasploit300
BMC / Numara Track-It! Domain Administrator and SQL Server User Password Disclosure
CVE-2014-487207 Oct 2014
BMC Track-It! 11.3.0.355 does not require authentication on TCP port 9010, which allows remote attackers to upload arbit
60RISK
open
Metasploit600
Numara / BMC Track-It! FileStorageService Arbitrary File Upload
CVE-2014-487207 Oct 2014
BMC Track-It! 11.3.0.355 does not require authentication on TCP port 9010, which allows remote attackers to upload arbit
60RISK
open
Metasploit300
Android Open Source Platform (AOSP) Browser UXSS
CVE-2014-604104 Oct 2014
The Android WebView in Android before 4.4 allows remote attackers to bypass the Same Origin Policy via a crafted attribu
23RISK
open
Metasploit300
MS15-001 Microsoft Windows NtApphelpCacheControl Improper Authorization Check
CVE-2015-000230 Sep 2014
The AhcVerifyAdminContext function in ahcache.sys in the Application Compatibility component in Microsoft Windows 7 SP1,
43RISK
open
Metasploit600
Joomla Akeeba Kickstart Unserialize Remote Code Execution
CVE-2014-722829 Sep 2014
Akeeba Restore (restore.php), as used in Joomla! 2.5.4 through 2.5.25, 3.x through 3.2.5, and 3.3.0 through 3.3.4; Akeeb
50RISK
open
Metasploit600
IPFire Bash Environment Variable Injection (Shellshock)
CVE-2014-6271CRITICALunder attack29 Sep 2014
GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which
100RISK
open
Metasploit600
ManageEngine OpManager and Social IT Arbitrary File Upload
CVE-2014-603427 Sep 2014
Directory traversal vulnerability in the com.me.opmanager.extranet.remote.communication.fw.fe.FileCollector servlet in Z
60RISK
open
Metasploit600
Wordpress InfusionSoft Upload Vulnerability
CVE-2014-644625 Sep 2014
The Infusionsoft Gravity Forms plugin 1.5.3 through 1.5.10 for WordPress does not properly restrict access, which allows
50RISK
open
Metasploit0
Mac OS X IOKit Keyboard Driver Root Privilege Escalation
CVE-2014-4404HIGHunder attack24 Sep 2014
Heap-based buffer overflow in IOHIDFamily in Apple iOS before 8 and Apple TV before 7 allows attackers to execute arbitr
98RISK
open
Metasploit600
CUPS Filter Bash Environment Variable Code Injection (Shellshock)
CVE-2014-6271CRITICALunder attack24 Sep 2014
GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which
100RISK
open
Metasploit600
Pure-FTPd External Authentication Bash Environment Variable Code Injection (Shellshock)
CVE-2014-6271CRITICALunder attack24 Sep 2014
GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which
100RISK
open
Metasploit300
OS X VMWare Fusion Privilege Escalation via Bash Environment Code Injection (Shellshock)
CVE-2014-6271CRITICALunder attack24 Sep 2014
GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which
100RISK
open
Metasploit300
DHCP Client Bash Environment Variable Code Injection (Shellshock)
CVE-2014-6271CRITICALunder attack24 Sep 2014
GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which
100RISK
open
Metasploit600
Dhclient Bash Environment Variable Injection (Shellshock)
CVE-2014-6271CRITICALunder attack24 Sep 2014
GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which
100RISK
open
Metasploit600
CUPS Filter Bash Environment Variable Code Injection (Shellshock)
CVE-2014-6278HIGHunder attack24 Sep 2014
GNU Bash through 4.3 bash43-026 does not properly parse function definitions in the values of environment variables, whi
100RISK
open
Metasploit600
Apache mod_cgi Bash Environment Variable Code Injection (Shellshock)
CVE-2014-6271CRITICALunder attack24 Sep 2014
GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which
100RISK
open
Metasploit600
Apache mod_cgi Bash Environment Variable Code Injection (Shellshock)
CVE-2014-6278HIGHunder attack24 Sep 2014
GNU Bash through 4.3 bash43-026 does not properly parse function definitions in the values of environment variables, whi
100RISK
open
Metasploit300
Qmail SMTP Bash Environment Variable Injection (Shellshock)
CVE-2014-6271CRITICALunder attack24 Sep 2014
GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which
100RISK
open
Metasploit300
Apache mod_cgi Bash Environment Variable Injection (Shellshock) Scanner
CVE-2014-6278HIGHunder attack24 Sep 2014
GNU Bash through 4.3 bash43-026 does not properly parse function definitions in the values of environment variables, whi
100RISK
open
Metasploit300
Apache mod_cgi Bash Environment Variable Injection (Shellshock) Scanner
CVE-2014-6271CRITICALunder attack24 Sep 2014
GNU Bash through 4.3 processes trailing strings after function definitions in the values of environment variables, which
100RISK
open
Metasploit500
Adobe Flash Player copyPixelsToByteArray Method Integer Overflow
CVE-2014-055623 Sep 2014
Heap-based buffer overflow in Adobe Flash Player before 13.0.0.244 and 14.x and 15.x before 15.0.0.152 on Windows and OS
60RISK
open
Metasploit600
Phpwiki Ploticus Remote Code Execution
CVE-2014-551911 Sep 2014
The Ploticus module in PhpWiki 1.5.0 allows remote attackers to execute arbitrary code via shell metacharacters in a dev
50RISK
open
Metasploit600
Rejetto HttpFileServer Remote Command Execution
CVE-2014-6287CRITICALunder attack11 Sep 2014
The findMacroMarker function in parserLib.pas in Rejetto HTTP File Server (aks HFS or HttpFileServer) 2.3x before 2.3c a
100RISK
open
Metasploit300
MS14-052 Microsoft Internet Explorer XMLDOM Filename Disclosure
CVE-2013-7331MEDIUMunder attack09 Sep 2014
The Microsoft.XMLDOM ActiveX control in Microsoft Windows 8.1 and earlier allows remote attackers to determine the exist
70RISK
open

We index only the public link to the proof of concept — we never host or redistribute exploitation code. Sources: PoC-in-GitHub, Exploit-DB, Nuclei, Metasploit and VulnCheck XDB. A public PoC existing does not mean the flaw is exploitable in your environment.