Vulnerability & Exploit Database

Try Surface Command Get a continuous 360° view of your attack surface

A curated repository of vetted computer software exploits and exploitable vulnerabilities.

Technical details for over 180,000 vulnerabilities and 4,000 exploits are available for security professionals and researchers to review. The exploits are all included in the Metasploit framework. Our vulnerability and exploit database is updated frequently and contains the most recent security research.

Results 121 - 140 of 6,012 in total
GitLens Git Local Configuration Exec
Disclosed: November 14, 2023
module
Explore
Atlassian Confluence Unauth JSON setup-restore Improper Authorization leading to RCE (CVE-2023-22518)
Disclosed: October 31, 2023
module
Explore
Apache ActiveMQ Unauthenticated Remote Code Execution
Disclosed: October 27, 2023
module
Explore
F5 BIG-IP TMUI AJP Smuggling RCE
Disclosed: October 26, 2023
module
Explore
Vinchin Backup and Recovery Command Injection
Disclosed: October 26, 2023
module
Explore
Mirth Connect Deserialization RCE
Disclosed: October 25, 2023
module
Explore
Citrix ADC (NetScaler) Bleed Scanner
Disclosed: October 25, 2023
module
Explore
Cisco IOX XE unauthenticated OS command execution
Disclosed: October 16, 2023
module
Explore
Cisco IOX XE unauthenticated Command Line Interface (CLI) execution
Disclosed: October 16, 2023
module
Explore
Cisco IOX XE Unauthenticated RCE Chain
Disclosed: October 16, 2023
module
Explore
Atlassian Confluence Unauthenticated Remote Code Execution
Disclosed: October 04, 2023
module
Explore
Atlassian Confluence Data Center and Server Authentication Bypass via Broken Access Control
Disclosed: October 04, 2023
module
Explore
Glibc Tunables Privilege Escalation CVE-2023-4911 (aka Looney Tunables)
Disclosed: October 03, 2023
module
Explore
PyTorch Model Server Registration and Deserialization RCE
Disclosed: October 03, 2023
module
Explore
Kafka UI Unauthenticated Remote Command Execution via the Groovy Filter option.
Disclosed: September 27, 2023
module
Explore
Progress Software WS_FTP Unauthenticated Remote Code Execution
Disclosed: September 27, 2023
module
Explore
JetBrains TeamCity Unauthenticated Remote Code Execution
Disclosed: September 19, 2023
module
Explore
Themebleed- Windows 11 Themes Arbitrary Code Execution CVE-2023-38146
Disclosed: September 13, 2023
module
Explore
Craft CMS unauthenticated Remote Code Execution (RCE)
Disclosed: September 13, 2023
module
Explore
Apache Superset Signed Cookie RCE
Disclosed: September 06, 2023
module
Explore