Home
Vulnerability & Exploit Database

Vulnerability & Exploit Database

Try Surface Command Get a continuous 360° view of your attack surface

A curated repository of vetted computer software exploits and exploitable vulnerabilities.

Technical details for over 180,000 vulnerabilities and 4,000 exploits are available for security professionals and researchers to review. The exploits are all included in the Metasploit framework. Our vulnerability and exploit database is updated frequently and contains the most recent security research.

Results 2,821 - 2,840 of 254,041 in total

Debian: CVE-2025-21916: linux -- security update

Published: April 01, 2025 | Severity: 5

Red Hat: CVE-2025-3030: firefox: thunderbird: Memory safety bugs fixed in Firefox 137, Thunderbird 137, Firefox ESR 128.9, and Thunderbird 128.9 (Multiple Advisories)

Published: April 01, 2025 | Severity: 10

Red Hat: CVE-2025-3028: firefox: thunderbird: Use-after-free triggered by XSLTProcessor (Multiple Advisories)

Published: April 01, 2025 | Severity: 9

Debian: CVE-2025-21918: linux -- security update

Published: April 01, 2025 | Severity: 5

Debian: CVE-2025-21963: linux -- security update

Published: April 01, 2025 | Severity: 5

FreeBSD: VID-32F5E57F-107F-11F0-8195-B42E991FC52E (CVE-2025-3083): MongoDB -- Malformed wire protocol messages may cause mongos to crash

Published: April 01, 2025 | Severity: 8

FreeBSD: VID-350B3389-107F-11F0-8195-B42E991FC52E (CVE-2025-3084): MongoDB -- crash due to improper validation of explain command

Published: April 01, 2025 | Severity: 7

FreeBSD: VID-789BCFB6-1224-11F0-85F3-A8A1599412C6 (CVE-2025-3067): chromium -- multiple security fixes

Published: April 01, 2025 | Severity: 10

FreeBSD: VID-2C0180A5-13C8-11F0-A5BD-B42E991FC52E (CVE-2025-3029): Mozilla -- URL spoofing attack

Published: April 01, 2025 | Severity: 8

Oracle Linux: CVE-2025-3028: ELSA-2025-3556: firefox security update (IMPORTANT) (Multiple Advisories)

Published: April 01, 2025 | Severity: 9

WordPress Plugin: wp-plugin-info-card: CVE-2025-31835: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Published: April 01, 2025 | Severity: 7

WordPress Plugin: woo-product-tables: CVE-2025-31086: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Published: April 01, 2025 | Severity: 7

WordPress Plugin: wp-optin-wheel: CVE-2025-31824: Server-Side Request Forgery (SSRF)

Published: April 01, 2025 | Severity: 4

Amazon Linux AMI 2: CVE-2025-21926: Security patch for kernel (ALASKERNEL-5.10-2025-088)

Published: April 01, 2025 | Severity: 5

Amazon Linux AMI 2: CVE-2025-3030: Security patch for firefox, thunderbird (Multiple Advisories)

Published: April 01, 2025 | Severity: 8

Amazon Linux AMI 2: CVE-2025-21920: Security patch for kernel (Multiple Advisories)

Published: April 01, 2025 | Severity: 6

Amazon Linux AMI 2: CVE-2025-3028: Security patch for firefox, thunderbird (Multiple Advisories)

Published: April 01, 2025 | Severity: 6

Amazon Linux AMI 2: CVE-2025-21919: Security patch for kernel (ALASKERNEL-5.15-2025-069)

Published: April 01, 2025 | Severity: 7

Red Hat JBossEAP: Incorrect Authorization (CVE-2025-27427)

Published: April 01, 2025 | Severity: 4

Amazon Linux AMI 2: CVE-2025-3029: Security patch for firefox, thunderbird (Multiple Advisories)

Published: April 01, 2025 | Severity: 8