A curated repository of vetted computer software exploits and exploitable vulnerabilities.

Technical details for over 180,000 vulnerabilities and 4,000 exploits are available for security professionals and researchers to review. These vulnerabilities are utilized by our vulnerability management tool InsightVM. The exploits are all included in the Metasploit framework and utilized by our penetration testing tool, Metasploit Pro. Our vulnerability and exploit database is updated frequently and contains the most recent security research.

Results 1,261 - 1,280 of 5,808 in total
Exim GHOST (glibc gethostbyname) Buffer Overflow
Disclosed: January 27, 2015
module
Explore
Group Policy Script Execution From Shared Resource
Disclosed: January 26, 2015
module
Explore
WordPress Platform Theme File Upload Vulnerability
Disclosed: January 21, 2015
module
Explore
IPass Control Pipe Remote Command Execution
Disclosed: January 21, 2015
module
Explore
Oracle DB Privilege Escalation via Function-Based Index
Disclosed: January 21, 2015
module
Explore
Java Secure Socket Extension (JSSE) SKIP-TLS MITM Proxy
Disclosed: January 20, 2015
module
Explore
WordPress Pixabay Images PHP Code Upload
Disclosed: January 19, 2015
module
Explore
MS15-004 Microsoft Remote Desktop Services Web Proxy IE Sandbox Escape
Disclosed: January 13, 2015
module
Explore
WordPress WP EasyCart Unrestricted File Upload
Disclosed: January 08, 2015
module
Explore
OpenNMS Authenticated XXE
Disclosed: January 08, 2015
module
Explore
McAfee ePolicy Orchestrator Authenticated XXE Credentials Exposure
Disclosed: January 06, 2015
module
Explore
ASUS infosvr Auth Bypass Command Execution
Disclosed: January 04, 2015
module
Explore
ManageEngine Desktop Central Administrator Account Creation
Disclosed: December 31, 2014
module
Explore
Malicious Git and Mercurial HTTP Server For CVE-2014-9390
Disclosed: December 18, 2014
module
Explore
Achat Unicode SEH Buffer Overflow
Disclosed: December 18, 2014
module
Explore
Allegro Software RomPager 'Misfortune Cookie' (CVE-2014-9222) Authentication Bypass
Disclosed: December 17, 2014
module
Explore
Allegro Software RomPager 'Misfortune Cookie' (CVE-2014-9222) Scanner
Disclosed: December 17, 2014
module
Explore
Symantec Web Gateway 5 restore.php Post Authentication Command Injection
Disclosed: December 16, 2014
module
Explore
Malwarebytes Anti-Malware and Anti-Exploit Update Remote Code Execution
Disclosed: December 16, 2014
module
Explore
ManageEngine Multiple Products Authenticated File Upload
Disclosed: December 15, 2014
module
Explore