• Home
  • Vulnerability & Exploit Database

Vulnerability & Exploit Database

Try Surface Command Get a continuous 360° view of your attack surface

A curated repository of vetted computer software exploits and exploitable vulnerabilities.

Technical details for over 180,000 vulnerabilities and 4,000 exploits are available for security professionals and researchers to review. The exploits are all included in the Metasploit framework. Our vulnerability and exploit database is updated frequently and contains the most recent security research.

Results 9,001 - 9,020 of 263,383 in total
Debian: CVE-2025-0838: abseil -- security update
Published: February 21, 2025 | Severity: 7
vulnerability
Explore
WordPress Plugin: pago-redsys-tpv-grafreak: CVE-2024-12467: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Published: February 21, 2025 | Severity: 6
vulnerability
Explore
Huawei EulerOS: CVE-2025-0838: abseil-cpp security update
Published: February 21, 2025 | Severity: 9
vulnerability
Explore
WordPress Plugin: svg-support: CVE-2024-10222: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Published: February 21, 2025 | Severity: 5
vulnerability
Explore
Ubuntu: USN-7505-1 (CVE-2025-0838): Abseil vulnerability
Published: February 21, 2025 | Severity: 7
vulnerability
Explore
Ivanti Pulse Connect Secure: February Security Advisory Ivanti Connect Secure (ICS),Ivanti Policy Secure (IPS) and Ivanti Secure Access Client (ISAC) (Multiple CVEs)
Published: February 21, 2025 | Severity: 8
vulnerability
Explore
WordPress Plugin: gpx-viewer: CVE-2025-27274: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Published: February 21, 2025 | Severity: 6
vulnerability
Explore
WordPress Plugin: ip2location-country-blocker: CVE-2025-1361: Improper Authorization
Published: February 21, 2025 | Severity: 8
vulnerability
Explore
WordPress Plugin: wpvivid-backuprestore: CVE-2024-13869: Unrestricted Upload of File with Dangerous Type
Published: February 21, 2025 | Severity: 8
vulnerability
Explore
WordPress Plugin: post-grid: CVE-2024-13798: Improper Input Validation
Published: February 21, 2025 | Severity: 5
vulnerability
Explore
WordPress Plugin: residential-address-detection: CVE-2025-27270: Missing Authorization
Published: February 21, 2025 | Severity: 10
vulnerability
Explore
WordPress Plugin: rife-elementor-extensions: CVE-2024-13564: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Published: February 21, 2025 | Severity: 5
vulnerability
Explore
WordPress Plugin: wp-appbox: CVE-2025-1489: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Published: February 20, 2025 | Severity: 5
vulnerability
Explore
WordPress Plugin: responsive-addons-for-elementor: CVE-2024-13353: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion')
Published: February 20, 2025 | Severity: 9
vulnerability
Explore
FreeBSD: VID-7CB6642C-0C5A-11F0-8688-4CCC6ADDA413 (CVE-2025-2036): qt6-webengine -- Multiple vulnerabilities
Published: February 20, 2025 | Severity: 7
vulnerability
Explore
Debian: CVE-2025-26618: erlang -- security update
Published: February 20, 2025 | Severity: 9
vulnerability
Explore
Debian: CVE-2025-27091: openh264 -- security update
Published: February 20, 2025 | Severity: 9
vulnerability
Explore
WordPress Plugin: wpupper-share-buttons: CVE-2024-13883: Cross-Site Request Forgery (CSRF)
Published: February 20, 2025 | Severity: 5
vulnerability
Explore
WordPress Plugin: ultimate-member: CVE-2024-12276: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')
Published: February 20, 2025 | Severity: 5
vulnerability
Explore
Broadcom Article 371126: VMware vCenter Server affected by OpenSSH signal handler race condition vulnerability (CVE-2024-6387)
Published: February 20, 2025 | Severity: 8
vulnerability
Explore