A curated repository of vetted computer software exploits and exploitable vulnerabilities.

Technical details for over 180,000 vulnerabilities and 4,000 exploits are available for security professionals and researchers to review. These vulnerabilities are utilized by our vulnerability management tool InsightVM. The exploits are all included in the Metasploit framework and utilized by our penetration testing tool, Metasploit Pro. Our vulnerability and exploit database is updated frequently and contains the most recent security research.

Results 41 - 60 of 5,803 in total
pgAdmin Binary Path API RCE
Disclosed: March 28, 2024
module
Explore
Code Reviewer
Disclosed: March 22, 2024
module
Explore
Kemp LoadMaster Unauthenticated Command Injection
Disclosed: March 19, 2024
module
Explore
Kemp LoadMaster Local sudo privilege escalation
Disclosed: March 19, 2024
module
Explore
Progress Flowmon Local sudo privilege escalation
Disclosed: March 19, 2024
module
Explore
Gibbon School Platform Authenticated PHP Deserialization Vulnerability
Disclosed: March 18, 2024
module
Explore
OpenMetadata authentication bypass and SpEL injection exploit chain
Disclosed: March 15, 2024
module
Explore
Ghostscript Command Execution via Format String
Disclosed: March 14, 2024
module
Explore
WordPress wp-automatic Plugin SQLi Admin Creation
Disclosed: March 13, 2024
module
Explore
CVE-2024-20767 - Adobe Coldfusion Arbitrary File Read
Disclosed: March 12, 2024
module
Explore
NorthStar C2 XSS to Agent RCE
Disclosed: March 12, 2024
module
Explore
Artica Proxy Unauthenticated PHP Deserialization Vulnerability
Disclosed: March 05, 2024
module
Explore
pgAdmin Session Deserialization RCE
Disclosed: March 04, 2024
module
Explore
JetBrains TeamCity Unauthenticated Remote Code Execution
Disclosed: March 04, 2024
module
Explore
Apache Solr Backup/Restore APIs RCE
Disclosed: February 24, 2024
module
Explore
ConnectWise ScreenConnect Unauthenticated Remote Code Execution
Disclosed: February 19, 2024
module
Explore
Unauthenticated RCE in Bricks Builder Theme
Disclosed: February 19, 2024
module
Explore
QNAP QTS and QuTS Hero Unauthenticated Remote Code Execution in quick.cgi
Disclosed: February 13, 2024
module
Explore
WordPress Ultimate Member SQL Injection (CVE-2024-1071)
Disclosed: February 10, 2024
module
Explore
Rancher Audit Log Sensitive Information Leak
Disclosed: February 08, 2024
module
Explore