Home
Vulnerability & Exploit Database

Vulnerability & Exploit Database

Try Surface Command Get a continuous 360° view of your attack surface

A curated repository of vetted computer software exploits and exploitable vulnerabilities.

Technical details for over 180,000 vulnerabilities and 4,000 exploits are available for security professionals and researchers to review. The exploits are all included in the Metasploit framework. Our vulnerability and exploit database is updated frequently and contains the most recent security research.

Results 9,461 - 9,480 of 257,730 in total

WordPress Plugin: wpupper-share-buttons: CVE-2024-13883: Cross-Site Request Forgery (CSRF)

Published: February 20, 2025 | Severity: 5

Debian: CVE-2025-26618: erlang -- security update

Published: February 20, 2025 | Severity: 9

Debian: CVE-2025-27091: openh264 -- security update

Published: February 20, 2025 | Severity: 9

Broadcom Article 371126: VMware vCenter Server affected by OpenSSH signal handler race condition vulnerability (CVE-2024-6387)

Published: February 20, 2025 | Severity: 8

WordPress Plugin: pie-calendar: CVE-2025-1410: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Published: February 20, 2025 | Severity: 5

Ubuntu: (CVE-2025-27091): openh264 vulnerability

Published: February 20, 2025 | Severity: 8

Ubuntu: USN-7313-1 (CVE-2025-26618): Erlang vulnerability

Published: February 20, 2025 | Severity: 7

WordPress Plugin: wpappninja: CVE-2024-13888: URL Redirection to Untrusted Site ('Open Redirect')

Published: February 19, 2025 | Severity: 6

Debian: CVE-2025-1006: chromium -- security update

Published: February 19, 2025 | Severity: 9

WordPress Plugin: modal-window: CVE-2025-0897: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Published: February 19, 2025 | Severity: 5

WordPress Plugin: woo-exfood: CVE-2024-13792: Improper Control of Generation of Code ('Code Injection')

Published: February 19, 2025 | Severity: 7

FreeBSD: (Multiple Advisories) (CVE-2025-0999): electron{32,33} -- multiple vulnerabilities

Published: February 19, 2025 | Severity: 10

Huawei EulerOS: CVE-2025-0624: grub2 security update

Published: February 19, 2025 | Severity: 6

Huawei EulerOS: CVE-2025-1118: grub2 security update

Published: February 19, 2025 | Severity: 5

WordPress Plugin: gift-voucher: CVE-2024-13520: Missing Authorization

Published: February 19, 2025 | Severity: 5

SUSE: CVE-2025-24965: SUSE Linux Security Advisory

Published: February 19, 2025 | Severity: 7

Red Hat OpenShift: CVE-2025-0624: grub2: net: Out-of-bounds write in grub_net_search_config_file()

Published: February 19, 2025 | Severity: 6

WordPress Plugin: embed-any-document: CVE-2025-1043: Server-Side Request Forgery (SSRF)

Published: February 19, 2025 | Severity: 5

WordPress Plugin: bandsintown: CVE-2024-13802: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Published: February 19, 2025 | Severity: 5

Amazon Linux AMI 2: CVE-2024-45777: Security patch for grub2 (ALAS-2025-2844)

Published: February 19, 2025 | Severity: 7