Metasploit Unleashed Back Online

Blog

Just a quick note – the Metasploit Unleashed Wiki is back online, patched cleaned and secured.

The Offsec Exploit database will be online by the end of the week. Stay tuned!

Stay in the know: Become an OffSec Insider

Get the latest updates about resources, events & promotions from OffSec!

Latest from OffSec

Research & Tutorials

CVE-2024-21683 – Authenticated RCE via “Add a New Language” in Atlassian Confluence

Critical RCE vulnerability (CVE-2024-21683) in Atlassian Confluence Data Center and Server (v5.2–8.9.0) allows authenticated users to execute arbitrary code via malicious code macros.

Jun 12, 2025

2 min read

Research & Tutorials

CVE‑2025‑49113 – Post‑Auth Remote Code Execution in Roundcube via PHP Object Deserialization

A critical RCE vulnerability (CVSS 9.9) in Roundcube Webmail (

Jun 12, 2025

3 min read

Research & Tutorials

CVE-2025-24893 – Unauthenticated Remote Code Execution in XWiki via SolrSearch Macro

An RCE vulnerability in XWiki was found allowing unauthenticated attackers to execute arbitrary Groovy code remotely without authentication or prior access.

Jun 5, 2025

2 min read

View all blogs

New course! SJD-100: Secure Java Development Essentials

Metasploit Unleashed Back Online

Stay in the know: Become an OffSec Insider

Latest from OffSec

CVE-2024-21683 – Authenticated RCE via “Add a New Language” in Atlassian Confluence

CVE‑2025‑49113 – Post‑Auth Remote Code Execution in Roundcube via PHP Object Deserialization

CVE-2025-24893 – Unauthenticated Remote Code Execution in XWiki via SolrSearch Macro