An
exploit is code or technique that takes advantage of a vulnerability to execute malicious actions — gaining access, escalating privileges, or causing damage.
Vulnerability ≠ exploit. A vulnerability is the flaw; an exploit is the code that uses it. PoC (Proof of Concept) exploits demonstrate exploitability. Metasploit contains hundreds of ready-to-use exploits.