• Home
  • Vulnerability & Exploit Database

Vulnerability & Exploit Database

Try Surface Command Get a continuous 360° view of your attack surface

A curated repository of vetted computer software exploits and exploitable vulnerabilities.

Technical details for over 180,000 vulnerabilities and 4,000 exploits are available for security professionals and researchers to review. The exploits are all included in the Metasploit framework. Our vulnerability and exploit database is updated frequently and contains the most recent security research.

Results 861 - 880 of 6,030 in total
ManageEngine Applications Manager Remote Code Execution
Disclosed: March 07, 2018
module
Explore
ClipBucket beats_uploader Unauthenticated Arbitrary File Upload
Disclosed: March 03, 2018
module
Explore
Memcached Stats Amplification Scanner
Disclosed: February 27, 2018
module
Explore
Atlassian Jira Authenticated Upload Code Execution
Disclosed: February 22, 2018
module
Explore
Eclipse Equinox OSGi Console Command Execution
Disclosed: February 13, 2018
module
Explore
Nanopool Claymore Dual Miner APIs RCE
Disclosed: February 09, 2018
module
Explore
Claymore Dual GPU Miner Format String dos attack
Disclosed: February 06, 2018
module
Explore
Exodus Wallet (ElectronJS Framework) remote Code Execution
Disclosed: January 25, 2018
module
Explore
AsusWRT LAN Unauthenticated Remote Code Execution
Disclosed: January 22, 2018
module
Explore
CloudMe Sync v1.10.9
Disclosed: January 17, 2018
module
Explore
glibc 'realpath()' Privilege Escalation
Disclosed: January 16, 2018
module
Explore
GitStack Unauthenticated REST API Requests
Disclosed: January 15, 2018
module
Explore
Windows UAC Protection Bypass (Via Slui File Handler Hijack)
Disclosed: January 15, 2018
module
Explore
GitStack Unsanitized Argument RCE
Disclosed: January 15, 2018
module
Explore
Cambium ePMP1000 'get_chart' Shell via Command Injection (v3.1-3.5-RC7)
Disclosed: December 18, 2017
module
Explore
Monstra CMS Authenticated Arbitrary File Upload
Disclosed: December 18, 2017
module
Explore
GoAhead Web Server LD_PRELOAD Arbitrary Module Load
Disclosed: December 18, 2017
module
Explore
Linksys WVBR0-25 User-Agent Command Execution
Disclosed: December 13, 2017
module
Explore
Apache Spark Unauthenticated Command Execution
Disclosed: December 12, 2017
module
Explore
Commvault Communications Service (cvd) Command Injection
Disclosed: December 12, 2017
module
Explore