Home
Vulnerability & Exploit Database

Vulnerability & Exploit Database

Try Surface Command Get a continuous 360° view of your attack surface

A curated repository of vetted computer software exploits and exploitable vulnerabilities.

Technical details for over 180,000 vulnerabilities and 4,000 exploits are available for security professionals and researchers to review. The exploits are all included in the Metasploit framework. Our vulnerability and exploit database is updated frequently and contains the most recent security research.

Results 4,041 - 4,060 of 260,080 in total

Microsoft Windows: CVE-2025-24071: Microsoft Windows File Explorer Spoofing Vulnerability

Published: March 11, 2025 | Severity: 8

Microsoft Windows: CVE-2025-24067: Kernel Streaming Service Driver Elevation of Privilege Vulnerability

Published: March 11, 2025 | Severity: 7

Microsoft Windows: CVE-2025-24994: Microsoft Windows Cross Device Service Elevation of Privilege Vulnerability

Published: March 11, 2025 | Severity: 7

Microsoft Windows: CVE-2025-24066: Kernel Streaming Service Driver Elevation of Privilege Vulnerability

Published: March 11, 2025 | Severity: 7

Microsoft Windows: CVE-2025-24064: Windows Domain Name Service Remote Code Execution Vulnerability

Published: March 11, 2025 | Severity: 9

Microsoft Windows: CVE-2025-24061: Windows Mark of the Web Security Feature Bypass Vulnerability

Published: March 11, 2025 | Severity: 7

Microsoft Windows: CVE-2025-24059: Windows Common Log File System Driver Elevation of Privilege Vulnerability

Published: March 11, 2025 | Severity: 7

Microsoft Windows: CVE-2025-24056: Windows Telephony Service Remote Code Execution Vulnerability

Published: March 11, 2025 | Severity: 9

Microsoft Windows: CVE-2025-24995: Kernel Streaming WOW Thunk Service Driver Elevation of Privilege Vulnerability

Published: March 11, 2025 | Severity: 7

Adobe Illustrator: CVE-2025-27170: Security updates available for Adobe Illustrator (APSB25-17)

Published: March 11, 2025 | Severity: 5

Oracle Linux: CVE-2025-24201: ELSA-2025-2863: webkit2gtk3 security update (IMPORTANT) (Multiple Advisories)

Published: March 11, 2025 | Severity: 8

WordPress Plugin: uncanny-automator: CVE-2024-13838: Server-Side Request Forgery (SSRF)

Published: March 11, 2025 | Severity: 5

WordPress Plugin: wp-performance-pack: CVE-2025-28938: Missing Authorization

Published: March 11, 2025 | Severity: 4

Adobe Illustrator: CVE-2025-27169: Security updates available for Adobe Illustrator (APSB25-17)

Published: March 11, 2025 | Severity: 7

Adobe Illustrator: CVE-2025-27167: Security updates available for Adobe Illustrator (APSB25-17)

Published: March 11, 2025 | Severity: 7

Adobe Illustrator: CVE-2025-24449: Security updates available for Adobe Illustrator (APSB25-17)

Published: March 11, 2025 | Severity: 5

WordPress Plugin: rafflepress: CVE-2024-10107: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Published: March 11, 2025 | Severity: 4

Debian: CVE-2025-24201: chromium, webkit2gtk, wpewebkit -- security update

Published: March 11, 2025 | Severity: 7

CVE-2025-24078: Microsoft Word Remote Code Execution Vulnerability New [Office for Mac]

Published: March 11, 2025 | Severity: 7

CVE-2025-24081: Microsoft Excel Remote Code Execution Vulnerability New [Office for Mac]

Published: March 11, 2025 | Severity: 7