Explotación pública
Catálogo de exploits
Todo exploit público que catalogamos, en un solo índice. Busca por CVE, nombre del exploit o tecnología — y mira, al lado, lo que la falla realmente vale: severidad, probabilidad de explotación y si ya está bajo ataque.
71.062exploits catalogados
31.617CVEs con explotación pública
0probados en laboratorio
TodosExploit-DB 22.467Referência 19.791GitHub PoC 13.086VulnCheck XDB 8069Nuclei 4187Metasploit 3462✓ solo verificadosrecientespopularesriesgo
22.467 exploits
Exploit-DB
Kramer VIAware - Remote Code Execution (RCE) (Root)
KramerAV VIAWare, all tested versions, allow privilege escalation through misconfiguration of sudo. Sudoers permits runn
60RIESGO
abrir ↗Exploit-DB
Kramer VIAware 2.5.0719.1034 - Remote Code Execution (RCE)
Kramer VIAware 2.5.0719.1034 has Incorrect Access Control.
28RIESGO
abrir ↗Exploit-DB
WordPress Plugin Easy Cookie Policy 1.6.2 - Broken Access Control to Stored XSS
Easy Cookie Policy <= 1.6.2 - Broken Access Control to Stored Cross-Site Scripting
28RIESGO
abrir ↗Exploit-DB
ImpressCMS 1.4.2 - Remote Code Execution (RCE)
ImpressCMS before 1.4.3 allows include/findusers.php groups SQL Injection.
43RIESGO
abrir ↗Exploit-DB
iRZ Mobile Router - CSRF to RCE
A CSRF issue in /api/crontab on iRZ Mobile Routers through 2022-03-16 allows a threat actor to create a crontab entry in
35RIESGO
abrir ↗Exploit-DB
Ivanti Endpoint Manager 4.6 - Remote Code Execution (RCE)
A code injection vulnerability in the Ivanti EPM Cloud Services Appliance (CSA) allows an unauthenticated user to execut
100RIESGO
abrir ↗Exploit-DB
Pluck CMS 4.7.16 - Remote Code Execution (RCE) (Authenticated)
In Pluck 4.7.16, an admin user can use the theme upload functionality at /admin.php?action=themeinstall to perform remot
35RIESGO
abrir ↗Exploit-DB
Tiny File Manager 2.4.6 - Remote Code Execution (RCE)
A Path Traversal vulnerability exists in TinyFileManager all version up to and including 2.4.6 that allows attackers to
23RIESGO
abrir ↗Exploit-DB
Apache APISIX 2.12.1 - Remote Code Execution (RCE)
apisix/batch-requests plugin allows overwriting the X-REAL-IP header
100RIESGO
abrir ↗Exploit-DB
Tiny File Manager 2.4.6 - Remote Code Execution (RCE)
A path traversal vulnerability in the file upload functionality in tinyfilemanager.php in Tiny File Manager before 2.4.7
45RIESGO
abrir ↗Exploit-DB
Webmin 1.984 - Remote Code Execution (Authenticated)
Improper Access Control to Remote Code Execution in webmin/webmin
78RIESGO
abrir ↗Exploit-DB
Linux Kernel 5.8 < 5.16.11 - Local Privilege Escalation (DirtyPipe)
A flaw was found in the way the "flags" member of the new pipe buffer structure was lacking proper initialization in cop
100RIESGO
abrir ↗Exploit-DB
part-db 0.5.11 - Remote Code Execution (RCE)
OS Command Injection in part-db/part-db
60RIESGO
abrir ↗Exploit-DB
Spring Cloud Gateway 3.1.0 - Remote Code Execution (RCE)
In spring cloud gateway versions prior to 3.1.1+ and 3.0.7+ , applications are vulnerable to a code injection attack whe
100RIESGO
abrir ↗Exploit-DB
Xerte 3.10.3 - Directory Traversal (Authenticated)
A Directory Traversal vulnerability exists in the Xerte Project Xerte through 3.10.3 when downloading a project file via
23RIESGO
abrir ↗Exploit-DB
Zyxel ZyWALL 2 Plus Internet Security Appliance - Cross-Site Scripting (XSS)
ZyXEL ZyWALL 2 Plus Internet Security Appliance is affected by Cross Site Scripting (XSS). Insecure URI handling leads t
43RIESGO
abrir ↗Exploit-DB
Xerte 3.9 - Remote Code Execution (RCE) (Authenticated)
An Authenticated Remote Code Exection (RCE) vulnerability exists in Xerte through 3.9 in website_code/php/import/fileupl
28RIESGO
abrir ↗Exploit-DB
Casdoor 1.13.0 - SQL Injection (Unauthenticated)
The query API in Casdoor before 1.13.1 has a SQL injection vulnerability related to the field and value parameters, as d
50RIESGO
abrir ↗Exploit-DB
ICL ScadaFlex II SCADA Controllers SC-1/SC-2 1.03.07 - Remote File CRUD
On ICL ScadaFlex II SCADA Controller SC-1 and SC-2 1.03.07 devices, unauthenticated remote attackers can overwrite, dele
35RIESGO
abrir ↗Exploit-DB
WordPress Plugin Perfect Survey - 1.5.1 - SQLi (Unauthenticated)
Perfect Survey < 1.5.2 - Unauthenticated SQL Injection
60RIESGO
abrir ↗Exploit-DB
Thinfinity VirtualUI 2.5.26.2 - Information Disclosure
Thinfinity VirtualUI 2.1.28.0, 2.1.32.1 and 2.5.26.2, fixed in version 3.0 is affected by an information disclosure vuln
28RIESGO
abrir ↗Exploit-DB
WordPress Plugin WP User Frontend 3.5.25 - SQLi (Authenticated)
WP User Frontend < 3.5.26 - SQL Injection to Reflected Cross-Site Scripting
28RIESGO
abrir ↗Exploit-DB
Thinfinity VirtualUI 2.5.41.0 - IFRAME Injection
Thinfinity VirtualUI before 3.0 has functionality in /lab.html reachable by default that could allow IFRAME injection vi
50RIESGO
abrir ↗Exploit-DB
FileCloud 21.2 - Cross-Site Request Forgery (CSRF)
In FileCloud before 21.3, the CSV user import functionality is vulnerable to Cross-Site Request Forgery (CSRF).
23RIESGO
abrir ↗Exploit-DB
Hotel Druid 3.0.3 - Remote Code Execution (RCE)
HotelDruid v3.0.3 was discovered to contain a remote code execution (RCE) vulnerability which is exploited via an attack
35RIESGO
abrir ↗Exploit-DB
WordPress Plugin MasterStudy LMS 2.7.5 - Unauthenticated Admin Account Creation
MasterStudy LMS < 2.7.6 - Unauthenticated Admin Account Creation
60RIESGO
abrir ↗Exploit-DB
Fortinet Fortimail 7.0.1 - Reflected Cross-Site Scripting (XSS)
A improper neutralization of input during web page generation ('cross-site scripting') in Fortinet FortiMail version 7.0
53RIESGO
abrir ↗Exploit-DB
ServiceNow - Username Enumeration
The password-reset form in ServiceNow Orlando provides different responses to invalid authentication attempts depending
28RIESGO
abrir ↗Exploit-DB
WordPress Plugin Error Log Viewer 1.1.1 - Arbitrary File Clearing (Authenticated)
Error Log Viewer Plugin <= 1.1.1 - Admin+ Arbitrary File Clearing
23RIESGO
abrir ↗Exploit-DB
Hospital Management Startup 1.0 - 'Multiple' SQLi
HMS v1.0 was discovered to contain a SQL injection vulnerability via patientlogin.php.
23RIESGO
abrir ↗Indexamos solo el enlace público a la prueba de concepto — nunca alojamos ni redistribuimos código de explotación. Fuentes: PoC-in-GitHub, Exploit-DB, Nuclei, Metasploit y VulnCheck XDB. La existencia de PoC pública no significa que la falla sea explotable en tu entorno.