A curated repository of vetted computer software exploits and exploitable vulnerabilities.

Technical details for over 180,000 vulnerabilities and 4,000 exploits are available for security professionals and researchers to review. These vulnerabilities are utilized by our vulnerability management tool InsightVM. The exploits are all included in the Metasploit framework and utilized by our penetration testing tool, Metasploit Pro. Our vulnerability and exploit database is updated frequently and contains the most recent security research.

Results 121 - 140 of 5,803 in total
OpenTSDB 2.4.1 unauthenticated command injection
Disclosed: July 01, 2023
module
Explore
OpenNMS Horizon Authenticated RCE
Disclosed: July 01, 2023
module
Explore
MagnusBilling application unauthenticated Remote Command Execution.
Disclosed: June 26, 2023
module
Explore
Rudder Server SQLI Remote Code Execution
Disclosed: June 16, 2023
module
Explore
Apache NiFi H2 Connection String Remote Code Execution
Disclosed: June 12, 2023
module
Explore
MongoDB Ops Manager Diagnostic Archive Sensitive Information Retriever
Disclosed: June 09, 2023
module
Explore
VMWare Aria Operations for Networks (vRealize Network Insight) pre-authenticated RCE
Disclosed: June 07, 2023
module
Explore
Splunk "edit_user" Capability Privilege Escalation
Disclosed: June 01, 2023
module
Explore
Chamilo unauthenticated command injection in PowerPoint upload
Disclosed: June 01, 2023
module
Explore
Wordpress File Manager Advanced Shortcode 2.3.2 - Unauthenticated Remote Code Execution through shortcode
Disclosed: May 31, 2023
module
Explore
MOVEit SQL Injection vulnerability
Disclosed: May 31, 2023
module
Explore
Openfire authentication bypass with RCE plugin
Disclosed: May 26, 2023
module
Explore
GitLab Authenticated File Read
Disclosed: May 23, 2023
module
Explore
Apache RocketMQ update config RCE
Disclosed: May 23, 2023
module
Explore
Delta Electronics InfraSuite Device Master Deserialization
Disclosed: May 17, 2023
module
Explore
SolarView Compact unauthenticated remote command execution vulnerability.
Disclosed: May 15, 2023
module
Explore
TOTOLINK Wireless Routers unauthenticated remote command execution vulnerability.
Disclosed: May 05, 2023
module
Explore
Sharepoint Dynamic Proxy Generator Unauth RCE
Disclosed: May 01, 2023
module
Explore
Apache Superset Signed Cookie Priv Esc
Disclosed: April 25, 2023
module
Explore
Ivanti Avalanche FileStoreConfig File Upload
Disclosed: April 24, 2023
module
Explore