A curated repository of vetted computer software exploits and exploitable vulnerabilities.

Technical details for over 180,000 vulnerabilities and 4,000 exploits are available for security professionals and researchers to review. These vulnerabilities are utilized by our vulnerability management tool InsightVM. The exploits are all included in the Metasploit framework and utilized by our penetration testing tool, Metasploit Pro. Our vulnerability and exploit database is updated frequently and contains the most recent security research.

Results 1,321 - 1,340 of 5,808 in total
MS14-060 Microsoft Windows OLE Package Manager Code Execution
Disclosed: October 14, 2014
module
Explore
TWiki Debugenableplugins Remote Code Execution
Disclosed: October 09, 2014
module
Explore
Numara / BMC Track-It! FileStorageService Arbitrary File Upload
Disclosed: October 07, 2014
module
Explore
BMC / Numara Track-It! Domain Administrator and SQL Server User Password Disclosure
Disclosed: October 07, 2014
module
Explore
Android Open Source Platform (AOSP) Browser UXSS
Disclosed: October 04, 2014
module
Explore
HP Data Protector EXEC_INTEGUTIL Remote Code Execution
Disclosed: October 02, 2014
module
Explore
MS15-001 Microsoft Windows NtApphelpCacheControl Improper Authorization Check
Disclosed: September 30, 2014
module
Explore
IPFire Bash Environment Variable Injection (Shellshock)
Disclosed: September 29, 2014
module
Explore
Joomla Akeeba Kickstart Unserialize Remote Code Execution
Disclosed: September 29, 2014
module
Explore
Gather Ticket Granting Service (TGS) tickets for User Service Principal Names (SPN)
Disclosed: September 27, 2014
module
Explore
ManageEngine OpManager and Social IT Arbitrary File Upload
Disclosed: September 27, 2014
module
Explore
Wordpress InfusionSoft Upload Vulnerability
Disclosed: September 25, 2014
module
Explore
Dhclient Bash Environment Variable Injection (Shellshock)
Disclosed: September 24, 2014
module
Explore
Apache mod_cgi Bash Environment Variable Code Injection (Shellshock)
Disclosed: September 24, 2014
module
Explore
Pure-FTPd External Authentication Bash Environment Variable Code Injection (Shellshock)
Disclosed: September 24, 2014
module
Explore
CUPS Filter Bash Environment Variable Code Injection (Shellshock)
Disclosed: September 24, 2014
module
Explore
DHCP Client Bash Environment Variable Code Injection (Shellshock)
Disclosed: September 24, 2014
module
Explore
Qmail SMTP Bash Environment Variable Injection (Shellshock)
Disclosed: September 24, 2014
module
Explore
Mac OS X IOKit Keyboard Driver Root Privilege Escalation
Disclosed: September 24, 2014
module
Explore
OS X VMWare Fusion Privilege Escalation via Bash Environment Code Injection (Shellshock)
Disclosed: September 24, 2014
module
Explore