Vulnerability & Exploit Database

A curated repository of vetted computer software exploits and exploitable vulnerabilities.

Technical details for over 140,000 vulnerabilities and 3,000 exploits are available for security professionals and researchers to review. These vulnerabilities are utilized by our vulnerability management tool InsightVM. The exploits are all included in the Metasploit framework and utilized by our penetration testing tool, Metasploit Pro. Our vulnerability and exploit database is updated frequently and contains the most recent security research.

Results 61 - 80 of 4,359 in total
SAP Solution Manager remote unauthorized OS commands execution
Disclosed: October 03, 2020
module
Explore
Apache NiFi API Remote Code Execution
Disclosed: October 03, 2020
module
Explore
SAP Solution Manager remote unauthorized OS commands execution
Disclosed: October 03, 2020
module
Explore
OpenMediaVault rpc.php Authenticated PHP Code Injection
Disclosed: September 28, 2020
module
Explore
FlexDotnetCMS Arbitrary ASP File Upload
Disclosed: September 28, 2020
module
Explore
HorizontCMS Arbitrary PHP File Upload
Disclosed: September 24, 2020
module
Explore
Micro Focus Operations Bridge Reporter shrboadmin default password
Disclosed: September 21, 2020
module
Explore
Apache Struts 2 Forced Multi OGNL Evaluation
Disclosed: September 14, 2020
module
Explore
MobileIron MDM Hessian-Based Java Deserialization RCE
Disclosed: September 12, 2020
module
Explore
WordPress File Manager Unauthenticated Remote Code Execution
Disclosed: September 09, 2020
module
Explore
MaraCMS Arbitrary PHP File Upload
Disclosed: August 31, 2020
module
Explore
vBulletin 5.x /ajax/render/widget_tabbedcontainer_tab_panel PHP remote code execution.
Disclosed: August 09, 2020
module
Explore
Artica proxy 4.30.000000 Auth Bypass service-cmds-peform Command Injection
Disclosed: August 09, 2020
module
Explore
Cisco AnyConnect Privilege Escalations (CVE-2020-3153 and CVE-2020-3433)
Disclosed: August 05, 2020
module
Explore
Aerospike Database UDF Lua Code Execution
Disclosed: July 31, 2020
module
Explore
Mida Solutions eFramework ajaxreq.php Command Injection
Disclosed: July 24, 2020
module
Explore
LDAP Information Disclosure
Disclosed: July 23, 2020
module
Explore
SAP Unauthenticated WebService User Creation
Disclosed: July 14, 2020
module
Explore
SharePoint DataSet / DataTable Deserialization
Disclosed: July 14, 2020
module
Explore
Apache OFBiz XML-RPC Java Deserialization
Disclosed: July 13, 2020
module
Explore