Vulnerability & Exploit Database

A curated repository of vetted computer software exploits and exploitable vulnerabilities.

Technical details for over 180,000 vulnerabilities and 4,000 exploits are available for security professionals and researchers to review. These vulnerabilities are utilized by our vulnerability management tool InsightVM. The exploits are all included in the Metasploit framework and utilized by our penetration testing tool, Metasploit Pro. Our vulnerability and exploit database is updated frequently and contains the most recent security research.

Results 81 - 100 of 4,378 in total
Apache Struts 2 Forced Multi OGNL Evaluation
Disclosed: September 14, 2020
module
Explore
MobileIron MDM Hessian-Based Java Deserialization RCE
Disclosed: September 12, 2020
module
Explore
WordPress File Manager Unauthenticated Remote Code Execution
Disclosed: September 09, 2020
module
Explore
MaraCMS Arbitrary PHP File Upload
Disclosed: August 31, 2020
module
Explore
vBulletin 5.x /ajax/render/widget_tabbedcontainer_tab_panel PHP remote code execution.
Disclosed: August 09, 2020
module
Explore
Artica proxy 4.30.000000 Auth Bypass service-cmds-peform Command Injection
Disclosed: August 09, 2020
module
Explore
Cisco AnyConnect Privilege Escalations (CVE-2020-3153 and CVE-2020-3433)
Disclosed: August 05, 2020
module
Explore
Aerospike Database UDF Lua Code Execution
Disclosed: July 31, 2020
module
Explore
Mida Solutions eFramework ajaxreq.php Command Injection
Disclosed: July 24, 2020
module
Explore
LDAP Information Disclosure
Disclosed: July 23, 2020
module
Explore
SAP Unauthenticated WebService User Creation
Disclosed: July 14, 2020
module
Explore
SharePoint DataSet / DataTable Deserialization
Disclosed: July 14, 2020
module
Explore
Apache OFBiz XML-RPC Java Deserialization
Disclosed: July 13, 2020
module
Explore
Apache OFBiz XML-RPC Java Deserialization
Disclosed: July 13, 2020
module
Explore
FreeBSD ip6_setpktopt Use-After-Free Privilege Escalation
Disclosed: July 07, 2020
module
Explore
F5 BIG-IP TMUI Directory Traversal and File Upload RCE
Disclosed: June 30, 2020
module
Explore
openSIS Unauthenticated PHP Code Execution
Disclosed: June 30, 2020
module
Explore
Rockwell FactoryTalk View SE SCADA Unauthenticated Remote Code Execution
Disclosed: June 22, 2020
module
Explore
ZenTao Pro 8.8.2 Remote Code Execution
Disclosed: June 20, 2020
module
Explore
Cacti color filter authenticated SQLi to RCE
Disclosed: June 17, 2020
module
Explore