Vulnerability & Exploit Database

A curated repository of vetted computer software exploits and exploitable vulnerabilities.

Technical details for over 140,000 vulnerabilities and 3,000 exploits are available for security professionals and researchers to review. These vulnerabilities are utilized by our vulnerability management tool InsightVM. The exploits are all included in the Metasploit framework and utilized by our penetration testing tool, Metasploit Pro. Our vulnerability and exploit database is updated frequently and contains the most recent security research.

Results 21 - 40 of 4,148 in total
IBM Data Risk Manager Arbitrary File Download
Disclosed: April 21, 2020
module
Explore
IBM Data Risk Manager Unauthenticated Remote Code Execution
Disclosed: April 21, 2020
module
Explore
IBM Data Risk Manager a3user Default Password
Disclosed: April 21, 2020
module
Explore
Veeam ONE Agent .NET Deserialization
Disclosed: April 15, 2020
module
Explore
Cisco UCS Director Cloupia Script RCE
Disclosed: April 15, 2020
module
Explore
Zen Load Balancer Directory Traversal
Disclosed: April 10, 2020
module
Explore
VMware vCenter Server vmdir Authentication Bypass
Disclosed: April 09, 2020
module
Explore
VMware vCenter Server vmdir Information Disclosure
Disclosed: April 09, 2020
module
Explore
LimeSurvey Zip Path Traversals
Disclosed: April 02, 2020
module
Explore
Nexus Repository Manager Java EL Injection RCE
Disclosed: March 31, 2020
module
Explore
Pi-Hole DHCP MAC OS Command Execution
Disclosed: March 28, 2020
module
Explore
TP-Link Archer A7/C7 Unauthenticated LAN Remote Code Execution
Disclosed: March 25, 2020
module
Explore
VMware Fusion USB Arbitrator Setuid Privilege Escalation
Disclosed: March 17, 2020
module
Explore
Vesta Control Panel Authenticated Remote Code Execution
Disclosed: March 17, 2020
module
Explore
SMBv3 Compression Buffer Overflow
Disclosed: March 13, 2020
module
Explore
vBulletin /ajax/api/content_infraction/getIndexableContent nodeid Parameter SQL Injection
Disclosed: March 12, 2020
module
Explore
vBulletin /ajax/api/content_infraction/getIndexableContent nodeid Parameter SQL Injection
Disclosed: March 12, 2020
module
Explore
Rconfig 3.x Chained Remote Code Execution
Disclosed: March 11, 2020
module
Explore
Background Intelligent Transfer Service Arbitrary File Move Privilege Elevation Vulnerability
Disclosed: March 10, 2020
module
Explore
Pandora FMS Ping Authenticated Remote Code Execution
Disclosed: March 09, 2020
module
Explore