Vulnerability & Exploit Database

A curated repository of vetted computer software exploits and exploitable vulnerabilities.

Technical details for over 140,000 vulnerabilities and 3,000 exploits are available for security professionals and researchers to review. These vulnerabilities are utilized by our vulnerability management tool InsightVM. The exploits are all included in the Metasploit framework and utilized by our penetration testing tool, Metasploit Pro. Our vulnerability and exploit database is updated frequently and contains the most recent security research.

Results 01 - 20 of 4,323 in total
Apache OFBiz SOAP Java Deserialization
Disclosed: March 22, 2021
module
Explore
F5 iControl REST Unauthenticated SSRF Token Generation RCE
Disclosed: March 10, 2021
module
Explore
Microsoft Exchange ProxyLogon Scanner
Disclosed: March 02, 2021
module
Explore
Microsoft Exchange ProxyLogon Collector
Disclosed: March 02, 2021
module
Explore
VMware View Planner Unauthenticated Log File Upload RCE
Disclosed: March 02, 2021
module
Explore
Microsoft Exchange ProxyLogon RCE
Disclosed: March 02, 2021
module
Explore
FortiLogger Arbitrary File Upload Exploit
Disclosed: February 26, 2021
module
Explore
SaltStack Salt API Unauthenticated RCE through wheel_async client
Disclosed: February 25, 2021
module
Explore
VMware vCenter Server Unauthenticated OVA File Upload RCE
Disclosed: February 23, 2021
module
Explore
Windows Server 2012 SrClient DLL hijacking
Disclosed: February 19, 2021
module
Explore
Win32k ConsoleControl Offset Confusion
Disclosed: February 10, 2021
module
Explore
Advantech iView Unauthenticated Remote Code Execution
Disclosed: February 09, 2021
module
Explore
Sudo Heap-Based Buffer Overflow
Disclosed: January 26, 2021
module
Explore
Microsoft Exchange Server DlpUtils AddTenantDlpPolicy RCE
Disclosed: January 12, 2021
module
Explore
Apache Flink JobManager Traversal
Disclosed: January 05, 2021
module
Explore
Klog Server authenticate.php user Unauthenticated Command Injection
Disclosed: December 27, 2020
module
Explore
HPE Systems Insight Manager AMF Deserialization RCE
Disclosed: December 15, 2020
module
Explore
WordPress Total Upkeep Unauthenticated Backup Downloader
Disclosed: December 12, 2020
module
Explore
WordPress Easy WP SMTP Password Reset
Disclosed: December 06, 2020
module
Explore
Google Chrome versions before 87.0.4280.88 integer overflow during SimplfiedLowering phase
Disclosed: November 19, 2020
module
Explore