Public exploitation

Exploit catalog

Every public exploit we catalog, in one index. Search by CVE, exploit name or technology — and see, right beside it, what the flaw is actually worth: severity, exploitation probability, and whether it’s already under attack.

71,046cataloged exploits
31,617CVEs with public exploitation
0lab-tested
4,187 exploits
Nucleihigh
Joomla! Component com_gcalendar Suite 2.1.5 - Local File Inclusion
Directory traversal vulnerability in the GCalendar (com_gcalendar) component 2.1.5 for Joomla! allows remote attackers t
43RISK
open
Nucleimedium
Joomla! Component com_cartweberp - Local File Inclusion
Directory traversal vulnerability in the CARTwebERP (com_cartweberp) component 1.56.75 for Joomla! allows remote attacke
38RISK
open
Nucleihigh
Joomla! Component com_abbrev - Local File Inclusion
Directory traversal vulnerability in the Abbreviations Manager (com_abbrev) component 1.1 for Joomla! allows remote atta
43RISK
open
Nucleimedium
Joomla! Component com_rokdownloads - Local File Inclusion
Directory traversal vulnerability in the RokDownloads (com_rokdownloads) component before 1.0.1 for Joomla! allows remot
43RISK
open
Nucleimedium
Joomla! Component com_communitypolls 1.5.2 - Local File Inclusion
Directory traversal vulnerability in the Community Polls (com_communitypolls) component 1.5.2, and possibly earlier, for
43RISK
open
Nucleimedium
Joomla! Component & Plugin JE Tooltip 1.0 - Local File Inclusion
Directory traversal vulnerability in the JE Form Creator (com_jeformcr) component for Joomla!, when magic_quotes_gpc is
38RISK
open
Nucleimedium
Joomla! Component com_janews - Local File Inclusion
Directory traversal vulnerability in the JA News (com_janews) component 1.0 for Joomla! allows remote attackers to read
38RISK
open
Nucleimedium
Joomla! Component DW Graph - Local File Inclusion
Directory traversal vulnerability in dwgraphs.php in the DecryptWeb DW Graphs (com_dwgraphs) component 1.0 for Joomla! a
38RISK
open
Nucleimedium
Joomla! Component User Status - Local File Inclusion
Directory traversal vulnerability in userstatus.php in the User Status (com_userstatus) component 1.21.16 for Joomla! al
43RISK
open
Nucleimedium
Joomla! Component JInventory 1.23.02 - Local File Inclusion
Directory traversal vulnerability in jinventory.php in the JInventory (com_jinventory) component 1.23.02 and possibly ot
43RISK
open
Nucleihigh
Joomla! Component Picasa 2.0 - Local File Inclusion
Directory traversal vulnerability in the Picasa (com_joomlapicasa2) component 2.0 and 2.0.5 for Joomla! allows remote at
43RISK
open
Nucleimedium
Joomla! Component Magic Updater - Local File Inclusion
Directory traversal vulnerability in the Magic Updater (com_joomlaupdater) component for Joomla! allows remote attackers
43RISK
open
Nucleimedium
Joomla! Component SVMap 1.1.1 - Local File Inclusion
Directory traversal vulnerability in the SVMap (com_svmap) component 1.1.1 for Joomla! allows remote attackers to read a
43RISK
open
Nucleimedium
Joomla! Component News Portal 1.5.x - Local File Inclusion
Directory traversal vulnerability in the iJoomla News Portal (com_news_portal) component 1.5.x for Joomla! allows remote
43RISK
open
Nucleimedium
Joomla! Component Saber Cart 1.0.0.12 - Local File Inclusion
Directory traversal vulnerability in the Seber Cart (com_sebercart) component 1.0.0.12 and 1.0.0.13 for Joomla!, when ma
38RISK
open
Nucleimedium
Joomla! Component Highslide 1.5 - Local File Inclusion
Directory traversal vulnerability in the Highslide JS (com_hsconfig) component 1.5 and 2.0.9 for Joomla! allows remote a
43RISK
open
Nucleimedium
Joomla! Component webERPcustomer - Local File Inclusion
Directory traversal vulnerability in weberpcustomer.php in the webERPcustomer (com_weberpcustomer) component 1.2.1 and 1
38RISK
open
Nucleimedium
Joomla! Component com_jresearch - 'Controller' Local File Inclusion
Directory traversal vulnerability in jresearch.php in the J!Research (com_jresearch) component for Joomla! allows remote
43RISK
open
Nucleimedium
Joomla! Component Cookex Agency CKForms - Local File Inclusion
Directory traversal vulnerability in the Cookex Agency CKForms (com_ckforms) component 1.3.3 for Joomla! allows remote a
43RISK
open
Nucleimedium
Joomla! Component Juke Box 1.7 - Local File Inclusion
Directory traversal vulnerability in the JOOFORGE Jutebox (com_jukebox) component 1.0 and 1.7 for Joomla! allows remote
43RISK
open
Nucleimedium
Joomla! Component LoginBox - Local File Inclusion
Directory traversal vulnerability in the LoginBox Pro (com_loginbox) component for Joomla! allows remote attackers to re
43RISK
open
Nucleimedium
Joomla! Component VJDEO 1.0 - Local File Inclusion
Directory traversal vulnerability in the VJDEO (com_vjdeo) component 1.0 and 1.0.1 for Joomla! allows remote attackers t
43RISK
open
Nucleimedium
Red Hat JBoss Enterprise Application Platform - Sensitive Information Disclosure
Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.2 before 4.2.0.CP09 and 4.3 before 4.3.0.CP08 a
30RISK
open
Nucleimedium
Joomla! Component Photo Battle 1.0.1 - Local File Inclusion
Directory traversal vulnerability in the Photo Battle (com_photobattle) component 1.0.1 for Joomla! allows remote attack
38RISK
open
Nucleimedium
Joomla! Component JProject Manager 1.0 - Local File Inclusion
Directory traversal vulnerability in the Ternaria Informatica JProject Manager (com_jprojectmanager) component 1.0 for J
38RISK
open
Nucleihigh
Joomla! Component Web TV 1.0 - Local File Inclusion
Directory traversal vulnerability in the Web TV (com_webtv) component 1.0 for Joomla! allows remote attackers to read ar
43RISK
open
Nucleihigh
Joomla! Component Address Book 1.5.0 - Local File Inclusion
Directory traversal vulnerability in the AddressBook (com_addressbook) component 1.5.0 for Joomla! allows remote attacke
43RISK
open
Nucleihigh
Joomla! Component Horoscope 1.5.0 - Local File Inclusion
Directory traversal vulnerability in the Daily Horoscope (com_horoscope) component 1.5.0 for Joomla! allows remote attac
43RISK
open
Nucleimedium
Joomla! Component Advertising 0.25 - Local File Inclusion
Directory traversal vulnerability in the Advertising (com_advertising) component 0.25 for Joomla! allows remote attacker
38RISK
open
Nucleimedium
Joomla! Component Sweetykeeper 1.5 - Local File Inclusion
Directory traversal vulnerability in the Sweety Keeper (com_sweetykeeper) component 1.5.x for Joomla! allows remote atta
38RISK
open

We index only the public link to the proof of concept — we never host or redistribute exploitation code. Sources: PoC-in-GitHub, Exploit-DB, Nuclei, Metasploit and VulnCheck XDB. A public PoC existing does not mean the flaw is exploitable in your environment.