Home
Vulnerability & Exploit Database

Vulnerability & Exploit Database

Vulnerability Scanner

2024 Attack Intel Report

A curated repository of vetted computer software exploits and exploitable vulnerabilities.

Technical details for over 180,000 vulnerabilities and 4,000 exploits are available for security professionals and researchers to review. These vulnerabilities are utilized by our vulnerability management tool InsightVM. The exploits are all included in the Metasploit framework and utilized by our penetration testing tool, Metasploit Pro. Our vulnerability and exploit database is updated frequently and contains the most recent security research.

Results 1,081 - 1,100 of 5,754 in total

Easy File Sharing HTTP Server 7.2 SEH Overflow

Disclosed: December 02, 2015

Advantech Switch Bash Environment Variable Code Injection (Shellshock)

Disclosed: December 01, 2015

Cambium ePMP1000 'ping' Shell via Command Injection (up to v2.5)

Disclosed: November 28, 2015

ABRT sosreport Privilege Escalation

Disclosed: November 23, 2015

Jenkins CLI RMI Java Deserialization Vulnerability

Disclosed: November 18, 2015

Redis File Upload

Disclosed: November 11, 2015

Oracle BeeHive 2 voice-servlet prepareAudioToPlay() Arbitrary File Upload

Disclosed: November 10, 2015

IBM WebSphere RCE Java Deserialization Vulnerability

Disclosed: November 06, 2015

OpenNMS Java Object Unserialization Remote Code Execution

Disclosed: November 06, 2015

vBulletin 5.1.2 Unserialize Code Execution

Disclosed: November 04, 2015

Atlassian HipChat for Jira Plugin Velocity Template Injection

Disclosed: October 28, 2015

China Chopper Caidao PHP Backdoor Code Execution

Disclosed: October 27, 2015

Joomla Content History SQLi Remote Code Execution

Disclosed: October 23, 2015

Joomla Real Estate Manager Component Error-Based SQL Injection

Disclosed: October 22, 2015

Joomla com_contenthistory Error-Based SQL Injection

Disclosed: October 22, 2015

Safari User-Assisted Applescript Exec Attack

Disclosed: October 16, 2015

Limesurvey Unauthenticated File Download

Disclosed: October 12, 2015

Wordpress Ajax Load More PHP Upload Vulnerability

Disclosed: October 10, 2015

HP SiteScope DNS Tool Command Injection

Disclosed: October 09, 2015

ManageEngine ServiceDesk Plus Path Traversal

Disclosed: October 03, 2015

...
53
54
55
56
57
...