Exploração pública

Catálogo de exploits

Todo exploit público que catalogamos, num índice só. Busque por CVE, nome do exploit ou tecnologia — e veja, ao lado, o que a falha realmente vale: severidade, probabilidade de exploração e se já está sob ataque.

71.062exploits catalogados
31.617CVEs com exploração pública
0testados em laboratório
8.069 exploits
VulnCheck XDB
local
CVE-2026-43284HIGH13 mai 2026
xfrm: esp: avoid in-place decrypt on shared skb frags
78RISCO
abrir
VulnCheck XDB
local
CVE-2024-44258HIGH13 mai 2026
This issue was addressed with improved handling of symlinks. This issue is fixed in iOS 17.7.1 and iPadOS 17.7.1, iOS 18
41RISCO
abrir
VulnCheck XDB
client-side
CVE-2024-21413CRITICALsob ataque12 mai 2026
Microsoft Outlook Remote Code Execution Vulnerability
100RISCO
abrir
VulnCheck XDB
initial-access
CVE-2025-2492CRITICAL12 mai 2026
An improper authentication control vulnerability exists in AiCloud. This vulnerability can be triggered by a crafted req
48RISCO
abrir
VulnCheck XDB
denial-of-service
CVE-2026-42945CRITICAL12 mai 2026
NGINX ngx_http_rewrite_module vulnerability
60RISCO
abrir
VulnCheck XDB
initial-access
CVE-2023-4220HIGH12 mai 2026
Chamilo LMS Unauthenticated Big Upload File Remote Code Execution
78RISCO
abrir
VulnCheck XDB
initial-access
CVE-2026-41940CRITICALsob ataqueransomware12 mai 2026
WebPros cPanel and WHM Authentication Bypass via Login Flow
100RISCO
abrir
VulnCheck XDB
client-side
CVE-2026-34621HIGHsob ataque12 mai 2026
Acrobat Reader | Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution') (CWE-1321)
71RISCO
abrir
VulnCheck XDB
local
CVE-2024-0582HIGH12 mai 2026
Kernel: io_uring: page use-after-free vulnerability via buffer ring mmap
46RISCO
abrir
VulnCheck XDB
initial-access
CVE-2026-5718HIGH12 mai 2026
Drag and Drop Multiple File Upload for Contact Form 7 <= 1.3.9.7 - Unauthenticated Arbitrary File Upload via Non-ASCII Filename Blacklist Bypass
56RISCO
abrir
VulnCheck XDB
denial-of-service
CVE-2026-6664HIGH12 mai 2026
PgBouncer integer overflow in PgBouncer network packet parsing
41RISCO
abrir
VulnCheck XDB
info-leak
CVE-2023-27163MEDIUM12 mai 2026
request-baskets up to v1.2.1 was discovered to contain a Server-Side Request Forgery (SSRF) via the component /api/baske
48RISCO
abrir
VulnCheck XDB
initial-access
CVE-2021-3129CRITICALsob ataqueransomware12 mai 2026
Ignition before 2.5.2, as used in Laravel and other products, allows unauthenticated remote attackers to execute arbitra
100RISCO
abrir
VulnCheck XDB
local
CVE-2026-31431HIGHsob ataque12 mai 2026
crypto: algif_aead - Revert to operating out-of-place
100RISCO
abrir
VulnCheck XDB
local
CVE-2026-31431HIGHsob ataque12 mai 2026
crypto: algif_aead - Revert to operating out-of-place
100RISCO
abrir
VulnCheck XDB
local
CVE-2026-31431HIGHsob ataque11 mai 2026
crypto: algif_aead - Revert to operating out-of-place
100RISCO
abrir
VulnCheck XDB
local
CVE-2026-31431HIGHsob ataque11 mai 2026
crypto: algif_aead - Revert to operating out-of-place
100RISCO
abrir
VulnCheck XDB
local
CVE-2026-31431HIGHsob ataque11 mai 2026
crypto: algif_aead - Revert to operating out-of-place
100RISCO
abrir
VulnCheck XDB
local
CVE-2026-31431HIGHsob ataque11 mai 2026
crypto: algif_aead - Revert to operating out-of-place
100RISCO
abrir
VulnCheck XDB
local
CVE-2026-31431HIGHsob ataque11 mai 2026
crypto: algif_aead - Revert to operating out-of-place
100RISCO
abrir
VulnCheck XDB
initial-access
CVE-2026-41940CRITICALsob ataqueransomware11 mai 2026
WebPros cPanel and WHM Authentication Bypass via Login Flow
100RISCO
abrir
VulnCheck XDB
initial-access
CVE-2026-41940CRITICALsob ataqueransomware11 mai 2026
WebPros cPanel and WHM Authentication Bypass via Login Flow
100RISCO
abrir
VulnCheck XDB
initial-access
CVE-2025-54068CRITICALsob ataque11 mai 2026
Livewire vulnerable to remote command execution during property update hydration
100RISCO
abrir
VulnCheck XDB
local
CVE-2026-43284HIGH11 mai 2026
xfrm: esp: avoid in-place decrypt on shared skb frags
78RISCO
abrir
VulnCheck XDB
initial-access
CVE-2026-0740CRITICAL11 mai 2026
Ninja Forms - File Upload <= 3.3.26 - Unauthenticated Arbitrary File Upload
75RISCO
abrir
VulnCheck XDB
initial-access
CVE-2025-1094HIGH10 mai 2026
PostgreSQL quoting APIs miss neutralizing quoting syntax in text that fails encoding validation
78RISCO
abrir
VulnCheck XDB
initial-access
CVE-2026-3844CRITICAL10 mai 2026
Breeze Cache <= 2.4.4 - Unauthenticated Arbitrary File Upload via fetch_gravatar_from_remote
75RISCO
abrir
VulnCheck XDB
initial-access
CVE-2020-25213CRITICALsob ataque10 mai 2026
The File Manager (wp-file-manager) plugin before 6.9 for WordPress allows remote attackers to upload and execute arbitra
100RISCO
abrir
VulnCheck XDB
local
CVE-2026-43284HIGH10 mai 2026
xfrm: esp: avoid in-place decrypt on shared skb frags
78RISCO
abrir
VulnCheck XDB
info-leak
CVE-2025-4396HIGH10 mai 2026
Relevanssi <= 4.24.4 (Free) and <= 2.27.5 (Premium) - Unauthenticated SQL Injection
56RISCO
abrir
anteriorpágina 15 / 269próximo

Indexamos apenas o link público para a prova de conceito — nunca hospedamos nem redistribuímos código de exploração. Fontes: PoC-in-GitHub, Exploit-DB, Nuclei, Metasploit e VulnCheck XDB. A existência de PoC pública não significa que a falha seja explorável no seu ambiente.