A curated repository of vetted computer software exploits and exploitable vulnerabilities.

Technical details for over 180,000 vulnerabilities and 4,000 exploits are available for security professionals and researchers to review. These vulnerabilities are utilized by our vulnerability management tool InsightVM. The exploits are all included in the Metasploit framework and utilized by our penetration testing tool, Metasploit Pro. Our vulnerability and exploit database is updated frequently and contains the most recent security research.

Results 01 - 20 of 5,848 in total
Unauthenticated RCE in NetAlertX
Disclosed: 1月 30, 2025
module
Explore
Netis Router Exploit Chain Reactor (CVE-2024-48455, CVE-2024-48456 and CVE-2024-48457).
Disclosed: 12月 27, 2024
module
Explore
Craft CMS Twig Template Injection RCE via FTP Templates Path
Disclosed: 12月 19, 2024
module
Explore
Cleo LexiCom, VLTrader, and Harmony Unauthenticated Remote Code Execution
Disclosed: 12月 09, 2024
module
Explore
mySCADA myPRO Manager Unauthenticated Command Injection (CVE-2024-47407)
Disclosed: 11月 21, 2024
module
Explore
Pandora FMS authenticated command injection leading to RCE via LDAP using default DB password
Disclosed: 11月 21, 2024
module
Explore
Ubuntu needrestart Privilege Escalation
Disclosed: 11月 19, 2024
module
Explore
Palo Alto Networks PAN-OS Management Interface Unauthenticated Remote Code Execution
Disclosed: 11月 18, 2024
module
Explore
WordPress WP Time Capsule Arbitrary File Upload to RCE
Disclosed: 11月 15, 2024
module
Explore
LibreNMS Authenticated RCE (CVE-2024-51092)
Disclosed: 11月 15, 2024
module
Explore
WordPress Really Simple SSL Plugin Authentication Bypass to RCE
Disclosed: 11月 14, 2024
module
Explore
Pyload RCE (CVE-2024-39205) with js2py sandbox escape (CVE-2024-28397)
Disclosed: 10月 28, 2024
module
Explore
CyberPanel Multi CVE Pre-auth RCE
Disclosed: 10月 27, 2024
module
Explore
Fortinet FortiManager Unauthenticated RCE
Disclosed: 10月 23, 2024
module
Explore
OneDev Unauthenticated Arbitrary File Read
Disclosed: 10月 19, 2024
module
Explore
Palo Alto Expedition Remote Code Execution (CVE-2024-5910 and CVE-2024-9464)
Disclosed: 10月 09, 2024
module
Explore
Ivanti Connect Secure Authenticated Remote Code Execution via OpenSSL CRLF Injection
Disclosed: 10月 08, 2024
module
Explore
CUPS IPP Attributes LAN Remote Code Execution
Disclosed: 9月 26, 2024
module
Explore
WordPress TI WooCommerce Wishlist SQL Injection (CVE-2024-43917)
Disclosed: 9月 25, 2024
module
Explore
WordPress LearnPress Unauthenticated SQLi (CVE-2024-8522, CVE-2024-8529)
Disclosed: 9月 11, 2024
module
Explore