Public exploitation
Exploit catalog
Every public exploit we catalog, in one index. Search by CVE, exploit name or technology — and see, right beside it, what the flaw is actually worth: severity, exploitation probability, and whether it’s already under attack.
71,062cataloged exploits
31,617CVEs with public exploitation
0lab-tested
AllExploit-DB 22,467Referência 19,791GitHub PoC 13,086VulnCheck XDB 8,069Nuclei 4,187Metasploit 3,462✓ verified onlyrecentpopularrisk
22,467 exploits
Exploit-DB
NodeJS 24.x - Path Traversal
An incomplete fix has been identified for CVE-2025-23084 in Node.js, specifically affecting Windows device names like CO
41RISK
open ↗Exploit-DB
Stacks Mobile App Builder 5.2.3 - Authentication Bypass via Account Takeover
WordPress Stacks Mobile App Builder plugin <= 5.2.3 - Account Takeover vulnerability
63RISK
open ↗Exploit-DB
Microsoft PowerPoint 2019 - Remote Code Execution (RCE)
Microsoft PowerPoint Remote Code Execution Vulnerability
41RISK
open ↗Exploit-DB
Microsoft Outlook - Remote Code Execution (RCE)
Microsoft Outlook Remote Code Execution Vulnerability
33RISK
open ↗Exploit-DB
Sudo 1.9.17 Host Option - Elevation of Privilege
Sudo before 1.9.17p1, when used with a sudoers file that specifies a host that is neither the current host nor ALL, allo
28RISK
open ↗Exploit-DB
ScriptCase 9.12.006 (23) - Remote Command Execution (RCE)
In the Production Environment extension in Netmake ScriptCase through 9.12.006 (23), shell injection in the SSH connecti
38RISK
open ↗Exploit-DB
Sudo chroot 1.9.17 - Local Privilege Escalation
Sudo before 1.9.17p1 allows local users to obtain root access because /etc/nsswitch.conf from a user-controlled director
100RISK
open ↗Exploit-DB
Discourse 3.2.x - Anonymous Cache Poisoning
Anonymous cache poisoning via XHR requests in Discourse
41RISK
open ↗Exploit-DB
Wing FTP Server 7.4.3 - Unauthenticated Remote Code Execution (RCE)
In Wing FTP Server before 7.4.4. the user and admin web interfaces mishandle '\0' bytes, ultimately allowing injection o
100RISK
open ↗Exploit-DB
gogs 0.13.0 - Remote Code Execution (RCE)
The built-in SSH server of Gogs through 0.13.0 allows argument injection in internal/ssh/ssh.go, leading to remote code
48RISK
open ↗Exploit-DB
Microsoft SharePoint 2019 - NTLM Authentication
Microsoft SharePoint Server Remote Code Execution Vulnerability
46RISK
open ↗Exploit-DB
Moodle 4.4.0 - Authenticated Remote Code Execution
Moodle: remote code execution via calculated question types
78RISK
open ↗Exploit-DB
Social Warfare WordPress Plugin 3.5.2 - Remote Code Execution (RCE)
The social-warfare plugin before 3.5.3 for WordPress has stored XSS via the wp-admin/admin-post.php?swp_debug=load_optio
100RISK
open ↗Exploit-DB
Sitecore 10.4 - Remote Code Execution (RCE)
Sitecore Experience Manager (XM) and Experience Platform (XP) 10.4 before KB1002844 allow remote code execution through
60RISK
open ↗Exploit-DB
Pterodactyl Panel 1.11.11 - Remote Code Execution (RCE)
Pterodactyl Panel Allows Unauthenticated Arbitrary Remote Code Execution
68RISK
open ↗Exploit-DB
Microsoft Excel 2024 Use after free - Remote Code Execution (RCE)
Microsoft Excel Remote Code Execution Vulnerability
41RISK
open ↗Exploit-DB
Ingress-NGINX 4.11.0 - Remote Code Execution (RCE)
ingress-nginx admission controller RCE escalation
85RISK
open ↗Exploit-DB
FortiOS SSL-VPN 7.4.4 - Insufficient Session Expiration & Cookie Reuse
An Insufficient Session Expiration vulnerability [CWE-613] in FortiOS SSL-VPN version 7.6.0, version 7.4.6 and below, ve
33RISK
open ↗Exploit-DB
Microsoft Excel LTSC 2024 - Remote Code Execution (RCE)
Microsoft Word Remote Code Execution Vulnerability
41RISK
open ↗Exploit-DB
Windows 11 SMB Client - Privilege Escalation & Remote Code Execution (RCE)
Windows SMB Client Elevation of Privilege Vulnerability
83RISK
open ↗Exploit-DB
PHP CGI Module 8.3.4 - Remote Code Execution (RCE)
Argument Injection in PHP-CGI
100RISK
open ↗Exploit-DB
PCMan FTP Server 2.0.7 - Buffer Overflow
PCMan FTP Server RMD Command buffer overflow
33RISK
open ↗Exploit-DB
Freefloat FTP Server 1.0 - Remote Buffer Overflow
FreeFloat FTP Server NOOP Command buffer overflow
38RISK
open ↗Exploit-DB
Roundcube 1.6.10 - Remote Code Execution (RCE)
Roundcube Webmail before 1.5.10 and 1.6.x before 1.6.11 allows remote code execution by authenticated users because the
100RISK
open ↗Exploit-DB
Windows File Explorer Windows 10 Pro x64 - TAR Extraction
Microsoft Windows File Explorer Spoofing Vulnerability
38RISK
open ↗Exploit-DB
Laravel Pulse 1.3.1 - Arbitrary Code Injection
Laravel Pulse Allows Remote Code Execution via Unprotected Query Method
46RISK
open ↗Exploit-DB
Microsoft Windows 11 Version 24H2 Cross Device Service - Elevation of Privilege
Microsoft Windows Cross Device Service Elevation of Privilege Vulnerability
41RISK
open ↗Exploit-DB
TightVNC 2.8.83 - Control Pipe Manipulation
TightVNC (Server for Windows) before 2.8.84 allows attackers to connect to the control pipe via a network connection.
48RISK
open ↗We index only the public link to the proof of concept — we never host or redistribute exploitation code. Sources: PoC-in-GitHub, Exploit-DB, Nuclei, Metasploit and VulnCheck XDB. A public PoC existing does not mean the flaw is exploitable in your environment.