Home
Vulnerability & Exploit Database

Vulnerability & Exploit Database

Try Surface Command Get a continuous 360° view of your attack surface

A curated repository of vetted computer software exploits and exploitable vulnerabilities.

Technical details for over 180,000 vulnerabilities and 4,000 exploits are available for security professionals and researchers to review. The exploits are all included in the Metasploit framework. Our vulnerability and exploit database is updated frequently and contains the most recent security research.

Results 3,701 - 3,720 of 254,041 in total

Veeam Backup and Replication: Remote Code Execution (CVE-2025-23120)

Published: March 19, 2025 | Severity: 9

WordPress Plugin: woo-rfq-for-woocommerce: CVE-2024-13558: Authorization Bypass Through User-Controlled Key

Published: March 19, 2025 | Severity: 8

Microsoft Edge Chromium: CVE-2025-2476 Use after free in Lens

Published: March 19, 2025 | Severity: 9

WordPress Plugin: wp-event-solution: CVE-2025-1766: Missing Authorization

Published: March 19, 2025 | Severity: 5

SUSE: CVE-2025-2476: SUSE Linux Security Advisory

Published: March 19, 2025 | Severity: 9

WordPress Plugin: order-import-export-for-woocommerce: CVE-2024-13923: Server-Side Request Forgery (SSRF)

Published: March 19, 2025 | Severity: 7

WordPress Plugin: order-import-export-for-woocommerce: CVE-2024-13921: Deserialization of Untrusted Data

Published: March 19, 2025 | Severity: 8

WordPress Plugin: order-import-export-for-woocommerce: CVE-2024-13922: External Control of File Name or Path

Published: March 19, 2025 | Severity: 3

WordPress Plugin: order-import-export-for-woocommerce: CVE-2024-13920: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

Published: March 19, 2025 | Severity: 6

WordPress Plugin: hide-my-wp: CVE-2025-26909: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')

Published: March 19, 2025 | Severity: 10

Debian: CVE-2025-2476: chromium -- security update

Published: March 19, 2025 | Severity: 9

Debian: CVE-2025-30258: gnupg2 -- security update

Published: March 19, 2025 | Severity: 1

FreeBSD: VID-9456D4E9-055F-11F0-85F3-A8A1599412C6 (CVE-2025-2476): chromium -- multiple security fixes

Published: March 19, 2025 | Severity: 10

Ubuntu: USN-7412-1 (CVE-2025-30258): GnuPG vulnerability

Published: March 19, 2025 | Severity: 9

Progress MOVEit Transfer: CVE-2025-2324: Improper Privilege Management for Shared Account users

Published: March 19, 2025 | Severity: 6

WordPress Plugin: custom-twitter-feeds: CVE-2025-1314: Cross-Site Request Forgery (CSRF)

Published: March 19, 2025 | Severity: 5

OS X update for XProtect (CVE-2024-54565)

Published: March 18, 2025 | Severity: 10

Oracle Linux: CVE-2025-2487: ELSA-2025-4491: 389-ds-base security update (MODERATE)

Published: March 18, 2025 | Severity: 6

Alma Linux: CVE-2025-2487: Moderate: 389-ds-base security update (ALSA-2025-4491)

Published: March 18, 2025 | Severity: 8

IBM AIX: nim_advisory (CVE-2024-56347): Vulnerability in nim affects AIX

Published: March 18, 2025 | Severity: 8