Cybersecurity researchers that publicize exploit code used in cyberattacks are giving a clear and unequivocal advantage to attackers, new research has found. About one-third of the time, that code is made publicly available before a software developer can make a patch available. The research found that when exploit code disclosure precedes a patch, attackers gain a 98-day advantage over defenders ‘ that is, attackers deploy the exploit against more assets than defenders can mitigate for more than three months. Just 1.3 percent of vulnerabilities have been exploited in the wild AND have publicly available exploit code.
Source: https://www.helpnetsecurity.com/2021/05/14/exploit-code-disclosure/