Explotación pública
Catálogo de exploits
Todo exploit público que catalogamos, en un solo índice. Busca por CVE, nombre del exploit o tecnología — y mira, al lado, lo que la falla realmente vale: severidad, probabilidad de explotación y si ya está bajo ataque.
71.114exploits catalogados
31.649CVEs con explotación pública
0probados en laboratorio
TodosExploit-DB 22.469Referência 19.810GitHub PoC 13.116VulnCheck XDB 8069Nuclei 4188Metasploit 3462✓ solo verificadosrecientespopularesriesgo
22.469 exploits
Exploit-DB
Saltstack 3000.1 - Remote Code Execution
An issue was discovered in SaltStack Salt before 2019.2.4 and 3000 before 3000.2. The salt-master process ClearFuncs cla
100RIESGO
abrir ↗Exploit-DB
Apache Shiro 1.2.4 - Cookie RememberME Deserial RCE (Metasploit)
Apache Shiro before 1.2.5, when a cipher key has not been configured for the "remember me" feature, allows remote attack
100RIESGO
abrir ↗Exploit-DB
Apache OFBiz 17.12.03 - Cross-Site Request Forgery (Account Takeover)
Apache OFBiz 17.12.01 is vulnerable to some CSRF attacks.
35RIESGO
abrir ↗Exploit-DB
Druva inSync Windows Client 6.5.2 - Local Privilege Escalation
Improper neutralization of special elements used in an OS command in Druva inSync Windows Client 6.5.0 allows a local, u
38RIESGO
abrir ↗Exploit-DB
Docker-Credential-Wincred.exe - Privilege Escalation (Metasploit)
Docker Desktop Community Edition before 2.1.0.1 allows local users to gain privileges by placing a Trojan horse docker-c
91RIESGO
abrir ↗Exploit-DB
Source Engine CS:GO BuildID: 4937372 - Arbitrary Code Execution
Valve Source allows local users to gain privileges by writing to the /tmp/hl2_relaunch file, which is later executed in
23RIESGO
abrir ↗Exploit-DB
Oracle Solaris Common Desktop Environment 1.6 - Local Privilege Escalation
Vulnerability in the Oracle Solaris product of Oracle Systems (component: Common Desktop Environment). Supported version
41RIESGO
abrir ↗Exploit-DB
Unraid 6.8.0 - Auth Bypass PHP Code Execution (Metasploit)
Unraid 6.8.0 allows authentication bypass.
100RIESGO
abrir ↗Exploit-DB
Unraid 6.8.0 - Auth Bypass PHP Code Execution (Metasploit)
Unraid through 6.8.0 allows Remote Code Execution.
100RIESGO
abrir ↗Exploit-DB
Nexus Repository Manager - Java EL Injection RCE (Metasploit)
Sonatype Nexus Repository before 3.21.2 allows JavaEL Injection (issue 1 of 2).
100RIESGO
abrir ↗Exploit-DB
Cisco IP Phone 11.7 - Denial of service (PoC)
Cisco IP Phones Web Server Remote Code Execution and Denial of Service Vulnerability
100RIESGO
abrir ↗Exploit-DB
TP-Link Archer A7/C7 - Unauthenticated LAN Remote Code Execution (Metasploit)
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of TP-Link Arch
68RIESGO
abrir ↗Exploit-DB
VMware Fusion - USB Arbitrator Setuid Privilege Escalation (Metasploit)
VMware Fusion (11.x before 11.5.2), VMware Remote Console for Mac (11.x and prior before 11.0.1) and Horizon Client for
86RIESGO
abrir ↗Exploit-DB
ThinkPHP - Multiple PHP Injection RCEs (Metasploit)
ThinkPHP before 3.2.4, as used in Open Source BMS v1.1.1 and other products, allows Remote Command Execution via public/
100RIESGO
abrir ↗Exploit-DB
Liferay Portal - Java Unmarshalling via JSONWS RCE (Metasploit)
Deserialization of Untrusted Data in Liferay Portal prior to 7.2.1 CE GA2 allows remote attackers to execute arbitrary c
100RIESGO
abrir ↗Exploit-DB
DotNetNuke - Cookie Deserialization Remote Code Execution (Metasploit)
DNN (aka DotNetNuke) before 9.1.1 has Remote Code Execution via a cookie, aka "2017-08 (Critical) Possible remote code e
100RIESGO
abrir ↗Exploit-DB
ThinkPHP - Multiple PHP Injection RCEs (Metasploit)
An issue was discovered in NoneCms V1.3. thinkphp/library/think/App.php allows remote attackers to execute arbitrary PHP
100RIESGO
abrir ↗Exploit-DB
DotNetNuke - Cookie Deserialization Remote Code Execution (Metasploit)
DNN (aka DotNetNuke) 9.2 through 9.2.1 incorrectly converts encryption key source values, resulting in lower than expect
50RIESGO
abrir ↗Exploit-DB
DotNetNuke - Cookie Deserialization Remote Code Execution (Metasploit)
DNN (aka DotNetNuke) 9.2 through 9.2.2 uses a weak encryption algorithm to protect input parameters. NOTE: this issue ex
100RIESGO
abrir ↗Exploit-DB
DotNetNuke - Cookie Deserialization Remote Code Execution (Metasploit)
DNN (aka DotNetNuke) 9.2 through 9.2.1 uses a weak encryption algorithm to protect input parameters.
100RIESGO
abrir ↗Exploit-DB
DotNetNuke - Cookie Deserialization Remote Code Execution (Metasploit)
DNN (aka DotNetNuke) 9.2 through 9.2.2 incorrectly converts encryption key source values, resulting in lower than expect
50RIESGO
abrir ↗Exploit-DB
TP-Link Archer A7/C7 - Unauthenticated LAN Remote Code Execution (Metasploit)
This vulnerability allows local attackers to escalate privileges on affected installations of TP-Link Archer A7 Firmware
48RIESGO
abrir ↗Exploit-DB
TP-Link Archer A7/C7 - Unauthenticated LAN Remote Code Execution (Metasploit)
This vulnerability allows network-adjacent attackers execute arbitrary code on affected installations of TP-Link Archer
61RIESGO
abrir ↗Exploit-DB
PlaySMS - index.php Unauthenticated Template Injection Code Execution (Metasploit)
PlaySMS before 1.4.3 does not sanitize inputs from a malicious string.
100RIESGO
abrir ↗Exploit-DB
Apache Solr - Remote Code Execution via Velocity Template (Metasploit)
Apache Solr 5.0.0 to Apache Solr 8.3.1 are vulnerable to a Remote Code Execution through the VelocityResponseWriter. A V
100RIESGO
abrir ↗Exploit-DB
Oracle WebLogic Server 12.2.1.4.0 - Remote Code Execution
Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Caching,CacheStore,Invocation). Su
100RIESGO
abrir ↗Exploit-DB
TVT NVMS 1000 - Directory Traversal
TVT NVMS-1000 devices allow GET /.. Directory Traversal
100RIESGO
abrir ↗Exploit-DB
MOVEit Transfer 11.1.1 - 'token' Unauthenticated SQL Injection
MOVEit.DMZ.WebApi.dll in Progress MOVEit Transfer 2018 SP2 before 10.2.4, 2019 before 11.0.2, and 2019.1 before 11.1.1 a
23RIESGO
abrir ↗Exploit-DB
Amcrest Dahua NVR Camera IP2M-841 - Denial of Service (PoC)
Amcrest cameras and NVR are vulnerable to a stack-based buffer overflow over port 37777. An authenticated remote attacke
83RIESGO
abrir ↗Exploit-DB
WhatsApp Desktop 0.3.9308 - Persistent Cross-Site Scripting
A vulnerability in WhatsApp Desktop versions prior to 0.3.9309 when paired with WhatsApp for iPhone versions prior to 2.
83RIESGO
abrir ↗Indexamos solo el enlace público a la prueba de concepto — nunca alojamos ni redistribuimos código de explotación. Fuentes: PoC-in-GitHub, Exploit-DB, Nuclei, Metasploit y VulnCheck XDB. La existencia de PoC pública no significa que la falla sea explotable en tu entorno.