A curated repository of vetted computer software exploits and exploitable vulnerabilities.

Technical details for over 180,000 vulnerabilities and 4,000 exploits are available for security professionals and researchers to review. These vulnerabilities are utilized by our vulnerability management tool InsightVM. The exploits are all included in the Metasploit framework and utilized by our penetration testing tool, Metasploit Pro. Our vulnerability and exploit database is updated frequently and contains the most recent security research.

Results 501 - 520 of 5,808 in total
Netsweeper WebAdmin unixlogin.php Python Code Injection
Disclosed: April 28, 2020
module
Explore
WordPress Simple File List Unauthenticated Remote Code Execution
Disclosed: April 27, 2020
module
Explore
IBM Data Risk Manager Arbitrary File Download
Disclosed: April 21, 2020
module
Explore
IBM Data Risk Manager Unauthenticated Remote Code Execution
Disclosed: April 21, 2020
module
Explore
IBM Data Risk Manager a3user Default Password
Disclosed: April 21, 2020
module
Explore
Kibana Upgrade Assistant Telemetry Collector Prototype Pollution
Disclosed: April 17, 2020
module
Explore
SpamTitan Unauthenticated RCE
Disclosed: April 17, 2020
module
Explore
Cisco UCS Director Cloupia Script RCE
Disclosed: April 15, 2020
module
Explore
Veeam ONE Agent .NET Deserialization
Disclosed: April 15, 2020
module
Explore
Zen Load Balancer Directory Traversal
Disclosed: April 10, 2020
module
Explore
VMware vCenter Server vmdir Authentication Bypass
Disclosed: April 09, 2020
module
Explore
VMware vCenter Server vmdir Information Disclosure
Disclosed: April 09, 2020
module
Explore
LimeSurvey Zip Path Traversals
Disclosed: April 02, 2020
module
Explore
Nexus Repository Manager Java EL Injection RCE
Disclosed: March 31, 2020
module
Explore
Grandstream UCM62xx IP PBX WebSocket Blind SQL Injection Credential Dump
Disclosed: March 30, 2020
module
Explore
Pi-Hole DHCP MAC OS Command Execution
Disclosed: March 28, 2020
module
Explore
GitLab File Read Remote Code Execution
Disclosed: March 26, 2020
module
Explore
TP-Link Archer A7/C7 Unauthenticated LAN Remote Code Execution
Disclosed: March 25, 2020
module
Explore
Grandstream UCM62xx IP PBX sendPasswordEmail RCE
Disclosed: March 23, 2020
module
Explore
Safari in Operator Side Effect Exploit
Disclosed: March 18, 2020
module
Explore