Vulnerability & Exploit Database

A curated repository of vetted computer software exploits and exploitable vulnerabilities.

Technical details for over 140,000 vulnerabilities and 3,000 exploits are available for security professionals and researchers to review. These vulnerabilities are utilized by our vulnerability management tool InsightVM. The exploits are all included in the Metasploit framework and utilized by our penetration testing tool, Metasploit Pro. Our vulnerability and exploit database is updated frequently and contains the most recent security research.

Results 21 - 40 of 3,967 in total
Oracle Weblogic Server Deserialization RCE - AsyncResponseService
Disclosed: April 23, 2019
module
Explore
Spring Cloud Config Server Directory Traversal
Disclosed: April 17, 2019
module
Explore
Oracle Application Testing Suite Post-Auth DownloadServlet Directory Traversal
Disclosed: April 16, 2019
module
Explore
Mac OS X Feedback Assistant Race Condition
Disclosed: April 13, 2019
module
Explore
Mac OS X TimeMachine (tmdiagnose) Command Injection Privilege Escalation
Disclosed: April 13, 2019
module
Explore
Apache Tomcat CGIServlet enableCmdLineArguments Vulnerability
Disclosed: April 10, 2019
module
Explore
AppXSvc Hard Link Privilege Escalation
Disclosed: April 09, 2019
module
Explore
WordPress Google Maps Plugin SQL Injection
Disclosed: April 02, 2019
module
Explore
AIS logistics ESEL-Server Unauth SQL Injection RCE
Disclosed: March 27, 2019
module
Explore
AwindInc SNMP Service Command Injection
Disclosed: March 27, 2019
module
Explore
Onion Omega2 Login Brute-Force
Disclosed: March 27, 2019
module
Explore
Atlassian Confluence Widget Connector Macro Velocity Template Injection
Disclosed: March 25, 2019
module
Explore
Horde Form File Upload Vulnerability
Disclosed: March 24, 2019
module
Explore
ptrace Sudo Token Privilege Escalation
Disclosed: March 24, 2019
module
Explore
Chrome 72.0.3626.119 FileReader UaF exploit for Windows 7 x86
Disclosed: March 21, 2019
module
Explore
PostgreSQL COPY FROM PROGRAM Command Execution
Disclosed: March 20, 2019
module
Explore
IBM BigFix Relay Server Sites and Package Enum
Disclosed: March 18, 2019
module
Explore
Ruby On Rails DoubleTap Development Mode secret_key_base Vulnerability
Disclosed: March 13, 2019
module
Explore
Oracle Application Testing Suite WebLogic Server Administration Console War Deployment
Disclosed: March 13, 2019
module
Explore
Zimbra Collaboration Autodiscover Servlet XXE and ProxyServlet SSRF
Disclosed: March 13, 2019
module
Explore