Vulnerability & Exploit Database

A curated repository of vetted computer software exploits and exploitable vulnerabilities.

Technical details for over 140,000 vulnerabilities and 3,000 exploits are available for security professionals and researchers to review. These vulnerabilities are utilized by our vulnerability management tool InsightVM. The exploits are all included in the Metasploit framework and utilized by our penetration testing tool, Metasploit Pro. Our vulnerability and exploit database is updated frequently and contains the most recent security research.

Results 41 - 60 of 3,980 in total
Zimbra Collaboration Autodiscover Servlet XXE and ProxyServlet SSRF
Disclosed: March 13, 2019
module
Explore
Ruby On Rails DoubleTap Development Mode secret_key_base Vulnerability
Disclosed: March 13, 2019
module
Explore
Oracle Application Testing Suite WebLogic Server Administration Console War Deployment
Disclosed: March 13, 2019
module
Explore
CMS Made Simple (CMSMS) Showtime2 File Upload RCE
Disclosed: March 11, 2019
module
Explore
Pimcore Unserialize RCE
Disclosed: March 11, 2019
module
Explore
Cisco RV130W Routers Management Interface Remote Command Execution
Disclosed: February 27, 2019
module
Explore
Cisco RV110W/RV130(W)/RV215W Routers Management Interface Remote Command Execution
Disclosed: February 27, 2019
module
Explore
elFinder PHP Connector exiftran Command Injection
Disclosed: February 26, 2019
module
Explore
Windows Escalate UAC Protection Bypass (Via SilentCleanup)
Disclosed: February 24, 2019
module
Explore
Drupal RESTful Web Services unserialize() RCE
Disclosed: February 20, 2019
module
Explore
WordPress Crop-image Shell Upload
Disclosed: February 19, 2019
module
Explore
Windows 10 UAC Protection Bypass Via Windows Store (WSReset.exe) and Registry
Disclosed: February 19, 2019
module
Explore
Total.js prior to 3.2.4 Directory Traversal
Disclosed: February 18, 2019
module
Explore
RARLAB WinRAR ACE Format Input Validation Remote Code Execution
Disclosed: February 05, 2019
module
Explore
Schneider Electric Pelco Endura NET55XX Encoder
Disclosed: January 25, 2019
module
Explore
Cisco RV320/RV326 Configuration Disclosure
Disclosed: January 24, 2019
module
Explore
Microsoft Exchange Privilege Escalation Exploit
Disclosed: January 21, 2019
module
Explore
Webmin Upload Authenticated RCE
Disclosed: January 17, 2019
module
Explore
BMC Patrol Agent Privilege Escalation Cmd Execution
Disclosed: January 17, 2019
module
Explore
Microsoft Windows Contact File Format Arbitary Code Execution
Disclosed: January 17, 2019
module
Explore