Public exploitation

Exploit catalog

Every public exploit we catalog, in one index. Search by CVE, exploit name or technology — and see, right beside it, what the flaw is actually worth: severity, exploitation probability, and whether it’s already under attack.

71,062cataloged exploits
31,617CVEs with public exploitation
0lab-tested
3,462 exploits
Metasploit600
QNAP QTS and QuTS Hero Unauthenticated Remote Code Execution in quick.cgi
CVE-2023-47218MEDIUM13 Feb 2024
QTS, QuTS hero, QuTScloud
70RISK
open
Metasploit300
WordPress Ultimate Member SQL Injection (CVE-2024-1071)
CVE-2024-1071CRITICAL10 Feb 2024
The Ultimate Member – User Profile, Registration, Login, Member Directory, Content Restriction & Membership Plugin plugi
85RISK
open
Metasploit300
Rancher Audit Log Sensitive Information Leak
CVE-2023-22649HIGH08 Feb 2024
Rancher 'Audit Log' leaks sensitive information
36RISK
open
Metasploit600
runc (docker) File Descriptor Leak Privilege Escalation
CVE-2024-21626HIGH31 Jan 2024
runc container breakout through process.cwd trickery and leaked fds
61RISK
open
Metasploit600
Ivanti Connect Secure Unauthenticated Remote Code Execution
CVE-2024-21887CRITICALunder attackransomware31 Jan 2024
A command injection vulnerability in web components of Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy Secure (9.x,
100RISK
open
Metasploit600
Ivanti Connect Secure Unauthenticated Remote Code Execution
CVE-2024-21893HIGHunder attackransomware31 Jan 2024
A server-side request forgery vulnerability in the SAML component of Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy
100RISK
open
Metasploit600
Ivanti Connect Secure Unauthenticated Remote Code Execution
CVE-2023-36661HIGH31 Jan 2024
Shibboleth XMLTooling before 3.2.4, as used in OpenSAML and Shibboleth Service Provider, allows SSRF via a crafted KeyIn
36RISK
open
Metasploit300
GitLab Tags RSS feed email disclosure
CVE-2023-5612MEDIUM25 Jan 2024
Missing Authorization in GitLab
28RISK
open
Metasploit300
Zyxel parse_config.py Command Injection
CVE-2023-33012HIGH24 Jan 2024
A command injection vulnerability in the configuration parser of the Zyxel ATP series firmware versions 5.10 through 5.3
41RISK
open
Metasploit300
Jenkins cli Ampersand Replacement Arbitrary File Read
CVE-2024-23897CRITICALunder attackransomware24 Jan 2024
Jenkins 2.441 and earlier, LTS 2.426.2 and earlier does not disable a feature of its CLI command parser that replaces an
100RISK
open
Metasploit600
Fortra GoAnywhere MFT Unauthenticated Remote Code Execution
CVE-2024-0204CRITICAL22 Jan 2024
Authentication Bypass in GoAnywhere MFT
85RISK
open
Metasploit600
Gambio Online Webshop unauthenticated PHP Deserialization Vulnerability
CVE-2024-23759CRITICAL19 Jan 2024
Deserialization of Untrusted Data in Gambio through 4.9.2.0 allows attackers to run arbitrary code via "search" paramete
55RISK
open
Metasploit600
Atlassian Confluence SSTI Injection
CVE-2023-22527CRITICALunder attackransomware16 Jan 2024
A template injection vulnerability on older versions of Confluence Data Center and Server allows an unauthenticated atta
100RISK
open
Metasploit300
GitLab Password Reset Account Takeover
CVE-2023-7028CRITICALunder attack11 Jan 2024
Weak Password Recovery Mechanism for Forgotten Password in GitLab
100RISK
open
Metasploit600
Netis router MW5360 unauthenticated RCE.
CVE-2024-22729CRITICAL11 Jan 2024
NETIS SYSTEMS MW5360 V1.0.1.3031 was discovered to contain a command injection vulnerability via the password parameter
65RISK
open
Metasploit600
Ivanti Connect Secure Unauthenticated Remote Code Execution
CVE-2023-46805HIGHunder attackransomware10 Jan 2024
An authentication bypass vulnerability in the web component of Ivanti ICS 9.x, 22.x and Ivanti Policy Secure allows a re
100RISK
open
Metasploit300
Wordpress POST SMTP Account Takeover
CVE-2023-6875CRITICAL10 Jan 2024
POST SMTP Mailer – Email log, Delivery Failure Notifications and Best Mail SMTP for WordPress <= 2.8.7 - Authorization Bypass via type connect-app API
85RISK
open
Metasploit600
Ivanti Connect Secure Unauthenticated Remote Code Execution
CVE-2024-21887CRITICALunder attackransomware10 Jan 2024
A command injection vulnerability in web components of Ivanti Connect Secure (9.x, 22.x) and Ivanti Policy Secure (9.x,
100RISK
open
Metasploit600
Barracuda ESG Spreadsheet::ParseExcel Arbitrary Code Execution
CVE-2023-710224 Dec 2023
Remote Code Execution (RCE) Vulnerability
30RISK
open
Metasploit600
Barracuda ESG Spreadsheet::ParseExcel Arbitrary Code Execution
CVE-2023-7101HIGHunder attack24 Dec 2023
Arbitrary Code Execution (ACE) Vulnerability
71RISK
open
Metasploit600
Cacti RCE via SQLi in pollers.php
CVE-2023-49084HIGH20 Dec 2023
Local File Inclusion (RCE) in Cacti
48RISK
open
Metasploit600
Cacti RCE via SQLi in pollers.php
CVE-2023-49085HIGH20 Dec 2023
Cacti SQL Injection vulnerability
58RISK
open
Metasploit600
MajorDoMo Command Injection
CVE-2023-5091715 Dec 2023
MajorDoMo (aka Major Domestic Module) before 0662e5e allows command execution via thumb.php shell metacharacters. NOTE:
50RISK
open
Metasploit600
WordPress Backup Migration Plugin PHP Filter Chain RCE
CVE-2023-6553CRITICAL11 Dec 2023
Backup Migration <= 1.3.7 - Unauthenticated Remote Code Execution
85RISK
open
Metasploit600
GL.iNet Unauthenticated Remote Command Execution via the logread module.
CVE-2023-50445HIGH10 Dec 2023
Shell Injection vulnerability GL.iNet A1300 v4.4.6, AX1800 v4.4.6, AXT1800 v4.4.6, MT3000 v4.4.6, MT2500 v4.4.6, MT6000
36RISK
open
Metasploit600
GL.iNet Unauthenticated Remote Command Execution via the logread module.
CVE-2023-50919CRITICAL10 Dec 2023
An issue was discovered on GL.iNet devices before version 4.5.0. There is an NGINX authentication bypass via Lua string
75RISK
open
Metasploit600
Chamilo v1.11.24 Unrestricted File Upload PHP Webshell
CVE-2023-4220HIGH28 Nov 2023
Chamilo LMS Unauthenticated Big Upload File Remote Code Execution
78RISK
open
Metasploit600
Splunk Authenticated XSLT Upload RCE
CVE-2023-46214HIGH28 Nov 2023
Remote code execution (RCE) in Splunk Enterprise through Insecure XML Parsing
58RISK
open
Metasploit300
Control iD iDSecure Authentication Bypass (CVE-2023-6329)
CVE-2023-6329CRITICAL27 Nov 2023
Control iD iDSecure passwordCustom Authentication Bypass
75RISK
open
Metasploit600
WordPress Royal Elementor Addons RCE
CVE-2023-536023 Nov 2023
Royal Elementor Addons and Templates < 1.3.79 - Unauthenticated Arbitrary File Upload
60RISK
open

We index only the public link to the proof of concept — we never host or redistribute exploitation code. Sources: PoC-in-GitHub, Exploit-DB, Nuclei, Metasploit and VulnCheck XDB. A public PoC existing does not mean the flaw is exploitable in your environment.