• Home
  • Vulnerability & Exploit Database

Vulnerability & Exploit Database

Try Surface Command Get a continuous 360° view of your attack surface

A curated repository of vetted computer software exploits and exploitable vulnerabilities.

Technical details for over 180,000 vulnerabilities and 4,000 exploits are available for security professionals and researchers to review. The exploits are all included in the Metasploit framework. Our vulnerability and exploit database is updated frequently and contains the most recent security research.

Results 181 - 200 of 6,028 in total
Wordpress File Manager Advanced Shortcode 2.3.2 - Unauthenticated Remote Code Execution through shortcode
Disclosed: May 31, 2023
module
Explore
MOVEit SQL Injection vulnerability
Disclosed: May 31, 2023
module
Explore
Openfire authentication bypass with RCE plugin
Disclosed: May 26, 2023
module
Explore
Apache RocketMQ update config RCE
Disclosed: May 23, 2023
module
Explore
GitLab Authenticated File Read
Disclosed: May 23, 2023
module
Explore
Delta Electronics InfraSuite Device Master Deserialization
Disclosed: May 17, 2023
module
Explore
SolarView Compact unauthenticated remote command execution vulnerability.
Disclosed: May 15, 2023
module
Explore
TOTOLINK Wireless Routers unauthenticated remote command execution vulnerability.
Disclosed: May 05, 2023
module
Explore
Sharepoint Dynamic Proxy Generator Unauth RCE
Disclosed: May 01, 2023
module
Explore
Apache Superset Signed Cookie Priv Esc
Disclosed: April 25, 2023
module
Explore
Ivanti Avalanche FileStoreConfig File Upload
Disclosed: April 24, 2023
module
Explore
invscout RPM Privilege Escalation
Disclosed: April 24, 2023
module
Explore
Piwigo CVE-2023-26876 Gather Credentials via SQL Injection
Disclosed: April 21, 2023
module
Explore
ManageEngine ADManager Plus ChangePasswordAction Authenticated Command Injection
Disclosed: April 12, 2023
module
Explore
Windows Common Log File System Driver (clfs.sys) Elevation of Privilege Vulnerability
Disclosed: April 11, 2023
module
Explore
CVE-2023-21554 - QueueJumper - MSMQ RCE Check
Disclosed: April 11, 2023
module
Explore
Jasmin Ransomware Web Server Unauthenticated Directory Traversal
Disclosed: April 08, 2023
module
Explore
Jasmin Ransomware Web Server Unauthenticated SQL Injection
Disclosed: April 08, 2023
module
Explore
Pentaho Business Server Auth Bypass and Server Side Template Injection RCE
Disclosed: April 04, 2023
module
Explore
Zyxel IKE Packet Decoder Unauthenticated Remote Code Execution
Disclosed: March 31, 2023
module
Explore