Public exploitation

Exploit catalog

Every public exploit we catalog, in one index. Search by CVE, exploit name or technology — and see, right beside it, what the flaw is actually worth: severity, exploitation probability, and whether it’s already under attack.

71,622cataloged exploits
32,030CVEs with public exploitation
1,932lab-tested
22,786 exploits
Exploit-DB
LayerBB 1.1.1 - Persistent Cross-Site Scripting
CVE-2018-1799707 Jan 2019
LayerBB 1.1.1 allows XSS via the titles of conversations (PMs).
23RISK
open
Exploit-DB
PLC Wireless Router GPN2.4P21-C-CN - Cross-Site Scripting
CVE-2018-2032607 Jan 2019
ChinaMobile PLC Wireless Router GPN2.4P21-C-CN devices with firmware W2001EN-00 have XSS via the cgi-bin/webproc?getpage
23RISK
open
Exploit-DB
Linux Kernel 4.15.x < 4.19.2 - 'map_write() CAP_SYS_ADMIN' Local Privilege Escalation (dbus Method)
CVE-2018-1895504 Jan 2019
In the Linux kernel 4.15.x through 4.19.x before 4.19.2, map_write() in kernel/user_namespace.c allows privilege escalat
38RISK
open
Exploit-DB
Linux Kernel 4.15.x < 4.19.2 - 'map_write() CAP_SYS_ADMIN' Local Privilege Escalation (polkit Method)
CVE-2018-1895504 Jan 2019
In the Linux kernel 4.15.x through 4.19.x before 4.19.2, map_write() in kernel/user_namespace.c allows privilege escalat
38RISK
open
Exploit-DB
WebKit JSC - 'AbstractValue::set' Use-After-Free
CVE-2018-444302 Jan 2019
A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1,
23RISK
open
Exploit-DB
Ayukov NFTP FTP Client 2.0 - Buffer Overflow
CVE-2017-1522202 Jan 2019
Buffer Overflow vulnerability in Ayukov NFTPD 2.0 and earlier allows remote attackers to execute arbitrary code.
50RISK
open
Exploit-DB
WebKit JSC - 'JSArray::shiftCountWithArrayStorage' Out-of-Bounds Read/Write
CVE-2018-444102 Jan 2019
A memory corruption issue was addressed with improved memory handling. This issue affected versions prior to iOS 12.1.1,
28RISK
open
Exploit-DB
Frog CMS 0.9.5 - Cross-Site Scripting
CVE-2018-2044802 Jan 2019
Frog CMS 0.9.5 has XSS via the Database name field to the /install/index.php URI.
23RISK
open
Exploit-DB
VMware Workstation/Player < 12.5.5 - Local Privilege Escalation
CVE-2017-491530 Dec 2018
VMware Workstation Pro/Player contains an insecure library loading vulnerability via ALSA sound driver configuration fil
38RISK
open
Exploit-DB
Linux Kernel 4.4.0-21 < 4.4.0-51 (Ubuntu 14.04/16.04 x64) - 'AF_PACKET' Race Condition Privilege Escalation
CVE-2016-865529 Dec 2018
Race condition in net/packet/af_packet.c in the Linux kernel through 4.8.12 allows local users to gain privileges or cau
43RISK
open
Exploit-DB
Linux Kernel 4.8.0-34 < 4.8.0-45 (Ubuntu / Linux Mint) - Packet Socket Local Privilege Escalation
CVE-2017-730829 Dec 2018
The packet_set_ring function in net/packet/af_packet.c in the Linux kernel through 4.10.6 does not properly validate cer
43RISK
open
Exploit-DB
Linux Kernel < 4.4.0/ < 4.8.0 (Ubuntu 14.04/16.04 / Linux Mint 17/18 / Zorin) - Local Privilege Escalation (KASLR / SMEP)
CVE-2017-100011229 Dec 2018
Linux kernel: Exploitable memory corruption due to UFO to non-UFO path switch. When building a UFO packet with MSG_MORE
43RISK
open
Exploit-DB
Craft CMS 3.0.25 - Cross-Site Scripting
CVE-2018-2041827 Dec 2018
index.php?p=admin/actions/entries/save-entry in Craft CMS 3.0.25 allows XSS by saving a new title from the console tab.
23RISK
open
Exploit-DB
bludit Pages Editor 3.0.0 - Arbitrary File Upload
CVE-2018-100081127 Dec 2018
bludit version 3.0.0 contains a Unrestricted Upload of File with Dangerous Type vulnerability in Content Upload in Pages
35RISK
open
Exploit-DB
Adobe Flash ActiveX Plugin 28.0.0.137 - Remote Code Execution (PoC)
CVE-2018-15982HIGHunder attackransomware24 Dec 2018
Flash Player versions 31.0.0.153 and earlier, and 31.0.0.108 and earlier have a use after free vulnerability. Successful
93RISK
open
Exploit-DB
WSTMart 2.0.8 - Cross-Site Request Forgery (Add Admin)
CVE-2018-1913824 Dec 2018
WSTMart 2.0.7 has CSRF via the index.php/admin/staffs/add.html URI.
23RISK
open
Exploit-DB
Netatalk 3.1.12 - Authentication Bypass
CVE-2018-1160CRITICAL21 Dec 2018
Netatalk before 3.1.12 is vulnerable to an out of bounds write in dsi_opensess.c. This is due to lack of bounds checking
70RISK
open
Exploit-DB
Netatalk 3.1.12 - Authentication Bypass (PoC)
CVE-2018-1160CRITICAL21 Dec 2018
Netatalk before 3.1.12 is vulnerable to an out of bounds write in dsi_opensess.c. This is due to lack of bounds checking
70RISK
open
Exploit-DB
VBScript - VbsErase Reference Leak Use-After-Free
CVE-2018-862520 Dec 2018
A remote code execution vulnerability exists in the way that the VBScript engine handles objects in memory, aka "Windows
35RISK
open
Exploit-DB
VBScript - MSXML Execution Policy Bypass
CVE-2018-861920 Dec 2018
A remote code execution vulnerability exists when the Internet Explorer VBScript execution policy does not properly rest
35RISK
open
Exploit-DB
Yeswiki Cercopitheque - 'id' SQL Injection
CVE-2018-1304519 Dec 2018
SQL injection vulnerability in the "Bazar" page in Yeswiki Cercopitheque 2018-06-19-1 and earlier allows attackers to ex
23RISK
open
Exploit-DB
Bolt CMS < 3.6.2 - Cross-Site Scripting
CVE-2018-1993319 Dec 2018
Bolt CMS <3.6.2 allows XSS via text input click preview button as demonstrated by the Title field of a Configured and Ne
23RISK
open
Exploit-DB
Integria IMS 5.0.83 - Cross-Site Request Forgery
CVE-2018-1982919 Dec 2018
Artica Integria IMS 5.0.83 has CSRF in godmode/usuarios/lista_usuarios, resulting in the ability to delete an arbitrary
23RISK
open
Exploit-DB
Linux Kernel 4.4 - 'rtnetlink' Stack Memory Disclosure
CVE-2016-448619 Dec 2018
The rtnl_fill_link_ifmap function in net/core/rtnetlink.c in the Linux kernel before 4.5.5 does not initialize a certain
23RISK
open
Exploit-DB
Integria IMS 5.0.83 - 'search_string' Cross-Site Scripting
CVE-2018-1982819 Dec 2018
Artica Integria IMS 5.0.83 has XSS via the search_string parameter.
23RISK
open
Exploit-DB
IBM Operational Decision Manager 8.x - XML External Entity Injection
CVE-2018-1821HIGH19 Dec 2018
IBM Operational Decision Management 8.5, 8.6, 8.7, 8.8, and 8.9 is vulnerable to a XML External Entity Injection (XXE) a
46RISK
open
Exploit-DB
MiniShare 1.4.1 - 'HEAD/POST' Remote Buffer Overflow
CVE-2018-1986118 Dec 2018
Buffer overflow in MiniShare 1.4.1 and earlier allows remote attackers to execute arbitrary code via a long HTTP HEAD re
28RISK
open
Exploit-DB
MiniShare 1.4.1 - 'HEAD/POST' Remote Buffer Overflow
CVE-2018-1986218 Dec 2018
Buffer overflow in MiniShare 1.4.1 and earlier allows remote attackers to execute arbitrary code via a long HTTP POST re
28RISK
open
Exploit-DB
Microsoft Windows - 'jscript!JsArrayFunctionHeapSort' Out-of-Bounds Write
CVE-2018-863118 Dec 2018
A remote code execution vulnerability exists when Internet Explorer improperly accesses objects in memory, aka "Internet
35RISK
open
Exploit-DB
SDL Web Content Manager 8.5.0 - XML External Entity Injection
CVE-2018-1937118 Dec 2018
The SaveUserSettings service in Content Manager in SDL Web 8.5.0 has an XXE Vulnerability that allows reading sensitive
23RISK
open

We index only the public link to the proof of concept — we never host or redistribute exploitation code. Sources: PoC-in-GitHub, Exploit-DB, Nuclei, Metasploit and VulnCheck XDB. A public PoC existing does not mean the flaw is exploitable in your environment.