Home
Vulnerability & Exploit Database

Vulnerability & Exploit Database

Try Surface Command Get a continuous 360° view of your attack surface

A curated repository of vetted computer software exploits and exploitable vulnerabilities.

Technical details for over 180,000 vulnerabilities and 4,000 exploits are available for security professionals and researchers to review. The exploits are all included in the Metasploit framework. Our vulnerability and exploit database is updated frequently and contains the most recent security research.

Results 4,901 - 4,920 of 260,876 in total

Huawei EulerOS: CVE-2025-0685: grub2 security update

Published: March 03, 2025 | Severity: 6

WordPress Plugin: shortcodes-ultimate: CVE-2025-0370: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Published: March 03, 2025 | Severity: 5

WordPress Plugin: ultimate-auction: CVE-2025-0958: Improper Input Validation

Published: March 03, 2025 | Severity: 5

Debian: CVE-2025-0685: grub2 -- security update

Published: March 03, 2025 | Severity: 6

WordPress Plugin: registrations-for-the-events-calendar: CVE-2024-10703: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Published: March 03, 2025 | Severity: 6

WordPress Plugin: teachpress: CVE-2025-1321: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')

Published: March 03, 2025 | Severity: 7

Debian: CVE-2022-49733: linux -- security update

Published: March 02, 2025 | Severity: 4

Ubuntu: (CVE-2022-49733): linux vulnerability

Published: March 02, 2025 | Severity: 4

FreeBSD: VID-398D1EC1-F7E6-11EF-BB15-002590AF0794: vim -- Potential code execution

Published: March 02, 2025 | Severity: 9

WordPress Plugin: pods: CVE-2025-1446: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Published: March 02, 2025 | Severity: 3

WordPress Plugin: wp-nested-pages: CVE-2025-0718: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Published: March 02, 2025 | Severity: 5

WordPress Plugin: ml-slider: CVE-2025-1203: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Published: March 02, 2025 | Severity: 5

WordPress Plugin: ml-slider: CVE-2025-1062: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Published: March 02, 2025 | Severity: 5

WordPress Plugin: gsheetconnector-easy-digital-downloads: CVE-2023-2334: Cross-Site Request Forgery (CSRF)

Published: March 02, 2025 | Severity: 5

WordPress Plugin: memberspace: CVE-2024-13727: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Published: March 02, 2025 | Severity: 6

Debian: CVE-2025-25724: libarchive -- security update

Published: March 02, 2025 | Severity: 3

WordPress Plugin: form-maker: CVE-2024-10558: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Published: March 02, 2025 | Severity: 5

FFmpeg: CVE-2025-1816: Unspecified Security Vulnerability

Published: March 02, 2025 | Severity: 8

WordPress Plugin: calculated-fields-form: CVE-2024-13382: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Published: March 02, 2025 | Severity: 5

WordPress Plugin: photo-gallery: CVE-2024-13124: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Published: March 02, 2025 | Severity: 5