Public exploitation

Exploit catalog

Every public exploit we catalog, in one index. Search by CVE, exploit name or technology — and see, right beside it, what the flaw is actually worth: severity, exploitation probability, and whether it’s already under attack.

71,062cataloged exploits
31,617CVEs with public exploitation
0lab-tested
3,462 exploits
Metasploit600
Themebleed- Windows 11 Themes Arbitrary Code Execution CVE-2023-38146
CVE-2023-38146HIGH13 Sep 2023
Windows Themes Remote Code Execution Vulnerability
48RISK
open
Metasploit400
Apache Superset Signed Cookie RCE
CVE-2023-39265LOW06 Sep 2023
Apache Superset: Possible Unauthorized Registration of SQLite Database Connections
45RISK
open
Metasploit400
Apache Superset Signed Cookie RCE
CVE-2023-37941MEDIUM06 Sep 2023
Apache Superset: Metadata db write access can lead to remote code execution
53RISK
open
Metasploit400
Apache Superset Signed Cookie RCE
CVE-2023-27524HIGHunder attack06 Sep 2023
Apache Superset: Session validation vulnerability when using provided default SECRET_KEY
100RISK
open
Metasploit600
VMWare Aria Operations for Networks (vRealize Network Insight) SSH Private Key Exposure
CVE-2023-34039CRITICAL29 Aug 2023
Aria Operations for Networks contains an Authentication Bypass vulnerability due to a lack of unique cryptographic key g
75RISK
open
Metasploit600
LG Simple Editor Remote Code Execution
CVE-2023-40498CRITICAL24 Aug 2023
LG Simple Editor cp Command Directory Traversal Remote Code Execution Vulnerability
65RISK
open
Metasploit600
WinRAR CVE-2023-38831 Exploit
CVE-2023-38831HIGHunder attackransomware23 Aug 2023
RARLAB WinRAR before 6.23 allows attackers to execute arbitrary code when a user attempts to view a benign file within a
100RISK
open
Metasploit600
Ivanti Sentry MICSLogService Auth Bypass resulting in RCE (CVE-2023-38035)
CVE-2023-38035CRITICALunder attackransomware21 Aug 2023
A security vulnerability in MICS Admin Portal in Ivanti MobileIron Sentry versions 9.18.0 and below, which may allow an
100RISK
open
Metasploit300
ThinManager Path Traversal (CVE-2023-2917) Arbitrary File Upload
CVE-2023-2917CRITICAL17 Aug 2023
Rockwell Automation ThinManager Thinserver Software Vulnerable to Input Validation Vulnerability
55RISK
open
Metasploit600
Junos OS PHPRC Environment Variable Manipulation RCE
CVE-2023-36845CRITICALunder attack17 Aug 2023
Junos OS: EX and SRX Series: A PHP vulnerability in J-Web allows an unauthenticated to control an important environment variable
100RISK
open
Metasploit300
ThinManager Path Traversal (CVE-2023-2915) Arbitrary File Delete
CVE-2023-2915HIGH17 Aug 2023
Rockwell Automation ThinManager Thinserver Software Vulnerable to Input Validation Vulnerability
58RISK
open
Metasploit600
Ivanti Avalanche MDM Buffer Overflow
CVE-2023-32560HIGH14 Aug 2023
An attacker can send a specially crafted message to the Wavelink Avalanche Manager, which could result in service disrup
78RISK
open
Metasploit600
PRTG CVE-2023-32781 Authenticated RCE
CVE-2023-3278109 Aug 2023
A command injection vulnerability was identified in PRTG 23.2.84.1566 and earlier versions in the HL7 sensor where an au
23RISK
open
Metasploit600
CrushFTP Unauthenticated RCE
CVE-2023-4317708 Aug 2023
CrushFTP prior to 10.5.1 is vulnerable to Improperly Controlled Modification of Dynamically-Determined Object Attributes
60RISK
open
Metasploit600
LG Simple Editor Command Injection (CVE-2023-40504)
CVE-2023-40504CRITICAL04 Aug 2023
LG Simple Editor readVideoInfo Command Injection Remote Code Execution Vulnerability
65RISK
open
Metasploit600
Eramba (up to 3.19.1) Authenticated Remote Code Execution Module
CVE-2023-3625501 Aug 2023
An issue in Eramba Limited Eramba Enterprise and Community edition v.3.19.1 allows a remote attacker to execute arbitrar
30RISK
open
Metasploit600
RaspAP Unauthenticated Command Injection
CVE-2022-3998631 Jul 2023
A Command injection vulnerability in RaspAP 2.8.0 thru 2.8.7 allows unauthenticated attackers to execute arbitrary comma
60RISK
open
Metasploit600
Maltrail Unauthenticated Command Injection
CVE-2025-34073CRITICAL31 Jul 2023
stamparm/maltrail <=0.54 Remote Command Execution
63RISK
open
Metasploit600
Greenshot .NET Deserialization Fileformat Exploit
CVE-2023-3463426 Jul 2023
Greenshot 1.2.10 and below allows arbitrary code execution because .NET content is insecurely deserialized when a .green
38RISK
open
Metasploit300
GameOver(lay) Privilege Escalation and Container Escape
CVE-2023-32629HIGH26 Jul 2023
Local privilege escalation vulnerability in Ubuntu Kernels overlayfs ovl_copy_up_meta_inode_data skip permission checks
56RISK
open
Metasploit300
GameOver(lay) Privilege Escalation and Container Escape
CVE-2023-2640HIGH26 Jul 2023
On Ubuntu kernels carrying both c914c0e27eb0 and "UBUNTU: SAUCE: overlayfs: Skip permission checking for trusted.overlay
61RISK
open
Metasploit600
Metabase Setup Token RCE
CVE-2023-3864622 Jul 2023
Metabase open source before 0.46.6.1 and Metabase Enterprise before 1.46.6.1 allow attackers to execute arbitrary comman
60RISK
open
Metasploit300
Citrix ADC (NetScaler) Forms SSO Target RCE
CVE-2023-3519CRITICALunder attackransomware18 Jul 2023
Unauthenticated remote code execution
100RISK
open
Metasploit600
BoidCMS Command Injection
CVE-2023-3883613 Jul 2023
File Upload vulnerability in BoidCMS v.2.0.0 allows a remote attacker to execute arbitrary code by adding a GIF header t
50RISK
open
Metasploit600
Sonicwall
CVE-2023-34133HIGH12 Jul 2023
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in SonicWall GMS and
58RISK
open
Metasploit600
Sonicwall
CVE-2023-3413212 Jul 2023
Use of password hash instead of password for authentication vulnerability in SonicWall GMS and Analytics allows Pass-the
18RISK
open
Metasploit600
Sonicwall
CVE-2023-34127HIGH12 Jul 2023
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection') vulnerability in SonicWall GM
58RISK
open
Metasploit600
Sonicwall
CVE-2023-34124CRITICAL12 Jul 2023
The authentication mechanism in SonicWall GMS and Analytics Web Services had insufficient checks, allowing authenticatio
75RISK
open
Metasploit600
Microsoft Error Reporting Local Privilege Elevation Vulnerability
CVE-2023-36874HIGHunder attack11 Jul 2023
Windows Error Reporting Service Elevation of Privilege Vulnerability
98RISK
open
Metasploit600
OpenTSDB 2.4.1 unauthenticated command injection
CVE-2023-36812CRITICAL01 Jul 2023
Remote Code Execution in OpenTSDB
68RISK
open

We index only the public link to the proof of concept — we never host or redistribute exploitation code. Sources: PoC-in-GitHub, Exploit-DB, Nuclei, Metasploit and VulnCheck XDB. A public PoC existing does not mean the flaw is exploitable in your environment.