Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1194 matches found

Packet Storm
Packet Stormadded 2024/09/01 12:0 a.m.173 views

LiteSpeed Source Code Disclosure/Download

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'LiteSpeed Source Code Disclosure/Download', 'Description' = %q This module exploits a source code disclosure/download vulnerability in versions...

5CVSS7AI score0.76489EPSS
Exploits3
Packet Storm
Packet Stormadded 2024/09/01 12:0 a.m.128 views

WordPress Mobile Pack Information Disclosure

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'WordPress Mobile Pack Information Disclosure Vulnerability', 'Description' = %q This module exploits an information disclosure vulnerability in...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2024/09/01 12:0 a.m.149 views

Novell Zenworks Mobile Device Management Admin Credentials

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Novell Zenworks Mobile Device Management Admin Credentials', 'Description' = %q This module attempts to pull the administrator credentials from a...

7.5CVSS7AI score0.80561EPSS
Exploits10
Packet Storm
Packet Stormadded 2024/09/01 12:0 a.m.179 views

Ray Sharp DVR Password Retriever

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Ray Sharp DVR Password Retriever', 'Description' = %q This module takes advantage of a protocol design issue with the Ray Sharp based DVR systems...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2024/09/01 12:0 a.m.208 views

Multiple DVR Manufacturers Configuration Disclosure

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Multiple DVR Manufacturers Configuration Disclosure', 'Description' = %q This module takes advantage of an authentication bypass vulnerability at...

7.5CVSS7AI score0.86369EPSS
Exploits4
Packet Storm
Packet Stormadded 2024/09/01 12:0 a.m.533 views

Microsoft IIS Shortname Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Microsoft IIS shortname vulnerability scanner', 'Description' = %q The vulnerability is caused by a tilde character "" in a GET or OPTIONS reques...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2024/09/01 12:0 a.m.138 views

SAP /sap/bc/soap/rfc SOAP Service SXPG_CALL_SYSTEM Function Command Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework This module is based on, inspired by, or is a port of a plugin available in the Onapsis Bizploit Opensource ERP Penetration Testing framework -...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2024/09/01 12:0 a.m.223 views

Httpdasm Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Httpdasm Directory Traversal', 'Description' = %q This module allows for traversing the file system of a host running httpdasm v0.92. , 'Author' ...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2024/09/01 12:0 a.m.187 views

Yaws Web Server Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "Yaws Web Server Directory Traversal", 'Description' = %q This module exploits a directory traversal bug in Yaws v1.9.1 or less. The module can on...

6.5CVSS7AI score0.24955EPSS
Exploits3
Packet Storm
Packet Stormadded 2024/09/01 12:0 a.m.228 views

WordPress Duplicator File Read

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'WordPress Duplicator File Read Vulnerability', 'Description' = %q This module exploits an unauthenticated directory traversal vulnerability in...

7.5CVSS7AI score0.94252EPSS
Exploits11
Packet Storm
Packet Stormadded 2024/09/01 12:0 a.m.146 views

HP SiteScope SOAP Call GetSiteScopeConfiguration Configuration Access

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'HP SiteScope SOAP Call getSiteScopeConfiguration Configuration Access', 'Description' = %q This module exploits an authentication bypass...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2024/09/01 12:0 a.m.534 views

SMB Group Policy Preference Saved Passwords Enumeration

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SMB Group Policy Preference Saved Passwords Enumeration', 'Description' = %Q This module enumerates files from target domain controllers and...

9CVSS7AI score0.74632EPSS
Exploits3
Packet Storm
Packet Stormadded 2024/09/01 12:0 a.m.168 views

Apache ActiveMQ Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Apache ActiveMQ Directory Traversal', 'Description' = %q This module exploits a directory traversal vulnerability in Apache ActiveMQ 5.3.1 and...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2024/08/31 12:0 a.m.263 views

MantisBT Admin SQL Injection Arbitrary File Read

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "MantisBT Admin SQL Injection Arbitrary File Read", 'Description' = %q Versions 1.2.13 through 1.2.16 are vulnerable to a SQL injection attack if ...

6.5CVSS7AI score0.45353EPSS
Exploits8
Packet Storm
Packet Stormadded 2024/08/31 12:0 a.m.242 views

Kaseya VSA Master Administrator Account Creation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Kaseya VSA Master Administrator Account Creation', 'Description' = %q This module abuses the setAccount page on Kaseya VSA between 7 and 9.1 to...

9.8CVSS7.4AI score0.77795EPSS
Exploits13
Packet Storm
Packet Stormadded 2024/08/31 12:0 a.m.205 views

Mirage firewall for QubesOS 0.8.0-0.8.3 Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Mirage firewall for QubesOS 0.8.0-0.8.3 Denial of Service DoS Exploit', 'Description' = %q This module allows remote attackers to cause a denial ...

7.5CVSS7AI score0.16905EPSS
Exploits6
Packet Storm
Packet Stormadded 2024/08/31 12:0 a.m.162 views

Yokogawa BKBCopyD.exe Client

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Yokogawa BKBCopyD.exe Client', 'Description' = %q This module allows an unauthenticated user to interact with the Yokogawa CENTUM CS3000...

7.5CVSS7AI score0.08455EPSS
Exploits4
Packet Storm
Packet Stormadded 2024/08/31 12:0 a.m.184 views

ZyXEL GS1510-16 Password Extractor

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'ZyXEL GS1510-16 Password Extractor', 'Description' = %q This module exploits a vulnerability in ZyXEL GS1510-16 routers to extract the admin...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2024/08/31 12:0 a.m.241 views

Windows IIS HTTP Protocol Stack Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Windows IIS HTTP Protocol Stack DOS', 'Description' = %q This module exploits CVE-2021-31166, a UAF bug in http.sys when parsing specially crafte...

9.8CVSS7.4AI score0.93069EPSS
Exploits24
Packet Storm
Packet Stormadded 2024/08/31 12:0 a.m.216 views

Netgear Unauthenticated SOAP Password Extractor

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Netgear Unauthenticated SOAP Password Extractor', 'Description' = %q This module exploits an authentication bypass vulnerability in different...

7.4AI score
Exploits0
Rows per page
Query Builder