Vulnerability & Exploit Database

A curated repository of vetted computer software exploits and exploitable vulnerabilities.

Technical details for over 180,000 vulnerabilities and 4,000 exploits are available for security professionals and researchers to review. These vulnerabilities are utilized by our vulnerability management tool InsightVM. The exploits are all included in the Metasploit framework and utilized by our penetration testing tool, Metasploit Pro. Our vulnerability and exploit database is updated frequently and contains the most recent security research.

Results 01 - 20 of 4,395 in total
Atlassian Confluence WebWork OGNL Injection
Disclosed: August 25, 2021
module
Explore
Canon Driver Privilege Escalation
Disclosed: August 07, 2021
module
Explore
ManageEngine OpManager SumPDU Java Deserialization
Disclosed: July 26, 2021
module
Explore
Windows SAM secrets leak - HiveNightmare
Disclosed: July 20, 2021
module
Explore
Lexmark Driver Privilege Escalation
Disclosed: July 15, 2021
module
Explore
Geutebruck instantrec Remote Command Execution
Disclosed: July 08, 2021
module
Explore
Geutebruck Multiple Remote Command Execution
Disclosed: July 08, 2021
module
Explore
Sage X3 Administration Service Authentication Bypass Command Execution
Disclosed: July 07, 2021
module
Explore
ForgeRock / OpenAM Jato Java Deserialization
Disclosed: June 29, 2021
module
Explore
Wordpress Plugin SP Project and Document - Authenticated Remote Code Execution
Disclosed: June 14, 2021
module
Explore
elFinder Archive Command Injection
Disclosed: June 13, 2021
module
Explore
Polkit D-Bus Authentication Bypass
Disclosed: June 03, 2021
module
Explore
VMware vCenter Server Virtual SAN Health Check Plugin RCE
Disclosed: May 25, 2021
module
Explore
ExifTool DjVu ANT Perl injection
Disclosed: May 24, 2021
module
Explore
IPFire 2.25 Core Update 156 and Prior pakfire.cgi Authenticated RCE
Disclosed: May 17, 2021
module
Explore
HashiCorp Nomad Remote Command Execution
Disclosed: May 17, 2021
module
Explore
Microsoft SharePoint Unsafe Control and ViewState RCE
Disclosed: May 11, 2021
module
Explore
Linux eBPF ALU32 32-bit Invalid Bounds Tracking LPE
Disclosed: May 11, 2021
module
Explore
Cisco HyperFlex HX Data Platform Command Execution
Disclosed: May 05, 2021
module
Explore
Cisco HyperFlex HX Data Platform unauthenticated file upload to RCE (CVE-2021-1499)
Disclosed: May 05, 2021
module
Explore