CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13541 matches found

Packet Storm•added 2024/08/31 12:0 a.m.•177 views

MS06-019 Exchange MODPROP Heap Overflow

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'MS06-019 Exchange MODPROP Heap Overflow', 'Description' = %q This module triggers a heap overflow vulnerability in MS Exchange that occurs when...

7.5CVSS7.4AI score0.67468EPSS

Exploits2

Packet Storm•added 2024/08/31 12:0 a.m.•226 views

Android Content Provider File Disclosure

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Android Content Provider File Disclosure', 'Description' = %q This module exploits a cross-domain issue within the Android web browser to...

4.3CVSS7AI score0.62169EPSS

Exploits8

Packet Storm•added 2024/08/31 12:0 a.m.•256 views

PhoenixContact PLC Remote START/STOP Command

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'PhoenixContact PLC Remote START/STOP Command', 'Version' = '1', 'Description' = %q PhoenixContact Programmable Logic Controllers are built upon a...

7.5CVSS7AI score0.82494EPSS

Exploits6

Packet Storm•added 2024/08/31 12:0 a.m.•236 views

ManageEngine Multiple Products Arbitrary Directory Listing

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'ManageEngine Multiple Products Arbitrary Directory Listing', 'Description' = %q This module exploits a directory listing information disclosure...

7.5CVSS7AI score0.88179EPSS

Exploits11

Packet Storm•added 2024/08/31 12:0 a.m.•293 views

Joomla Account Creation And Privilege Escalation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Joomla Account Creation and Privilege Escalation', 'Description' = %q This module creates an arbitrary account with administrative privileges in...

9.8CVSS7AI score0.92004EPSS

Exploits15

Packet Storm•added 2024/08/31 12:0 a.m.•345 views

Check Point Security Gateway Arbitrary File Read

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Check Point Security Gateway Arbitrary File Read', 'Description' = %q This module leverages an unauthenticated arbitrary root file read...

8.6CVSS7.2AI score0.94342EPSS

Exploits52

Packet Storm•added 2024/08/31 12:0 a.m.•292 views

NTP Clock Variables Disclosure

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'NTP Clock Variables Disclosure', 'Description' = %q This module reads the system internal NTP variables. These variables contain potentially...

5CVSS6.7AI score0.92136EPSS

Exploits23

Packet Storm•added 2024/08/31 12:0 a.m.•170 views

Yokogawa BKBCopyD.exe Client

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Yokogawa BKBCopyD.exe Client', 'Description' = %q This module allows an unauthenticated user to interact with the Yokogawa CENTUM CS3000...

7.5CVSS7AI score0.08455EPSS

Exploits4

Packet Storm•added 2024/08/31 12:0 a.m.•305 views

NETGEAR Administrator Password Disclosure

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'NETGEAR Administrator Password Disclosure', 'Description' = %q This module will collect the password for the admin user. The exploit will not...

8.1CVSS7.2AI score0.93804EPSS

Exploits7

Packet Storm•added 2024/08/31 12:0 a.m.•264 views

SSL Labs API Client

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'activesupport/inflector' require 'json' require 'activesupport/coreext/hash' class MetasploitModule uri, 'agent' = useragent, 'method' = 'GET', 'varsget' = para...

7.4CVSS7.5AI score0.89694EPSS

Exploits9

Packet Storm•added 2024/08/31 12:0 a.m.•192 views

HTTP Client Automatic Exploiter

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework ideas: - add a loading page option so the user can specify arbitrary html to insert all of the evil js and iframes into - caching is busted when different browsers come...

7.4AI score

Exploits0

Packet Storm•added 2024/08/31 12:0 a.m.•192 views

Etcd Keys API Information Gathering

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Etcd Keys API Information Gathering', 'Description' = %q This module queries the etcd API to recursively retrieve all of the stored key value...

7.4AI score

Exploits0

Packet Storm•added 2024/08/31 12:0 a.m.•238 views

TeamTalk Gather Credentials

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'TeamTalk Gather Credentials', 'Description' = %q This module retrieves user credentials from BearWare TeamTalk. Valid administrator credentials a...

7.4AI score

Exploits0

Packet Storm•added 2024/08/31 12:0 a.m.•233 views

PostgreSQL Database Name Command Line Flag Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'PostgreSQL Database Name Command Line Flag Injection', 'Description' = %q This module can identify PostgreSQL 9.0, 9.1, and 9.2 servers that are...

6.5CVSS6.9AI score0.81124EPSS

Exploits3

Packet Storm•added 2024/08/31 12:0 a.m.•483 views

Wordpress BookingPress bookingpress_front_get_category_services SQL Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Wordpress BookingPress bookingpressfrontgetcategoryservices SQLi', 'Description' = %q The BookingPress WordPress plugin before 1.0.11 fails to...

9.8CVSS7AI score0.69929EPSS

Exploits11

Packet Storm•added 2024/08/31 12:0 a.m.•175 views

D-Link DIR 645 Password Extractor

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'D-Link DIR 645 Password Extractor', 'Description' = %q This module exploits an authentication bypass vulnerability in DIR 645 'OSVDB', '90733' ,...

7.4AI score

Exploits0

Packet Storm•added 2024/08/31 12:0 a.m.•179 views

Node.js HTTP Pipelining Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Node.js HTTP Pipelining Denial of Service', 'Description' = %q This module exploits a Denial of Service DoS condition in the HTTP parser of Node....

5CVSS7AI score0.68714EPSS

Exploits3

Packet Storm•added 2024/08/31 12:0 a.m.•187 views

ZyXEL GS1510-16 Password Extractor

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'ZyXEL GS1510-16 Password Extractor', 'Description' = %q This module exploits a vulnerability in ZyXEL GS1510-16 routers to extract the admin...

7.4AI score

Exploits0

Packet Storm•added 2024/08/31 12:0 a.m.•297 views

VMWare Web Login Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'VMWare Web Login Scanner', 'Description' = 'This module attempts to authenticate to the VMWare HTTP service for VmWare Server, ESX, and ESXI',...

7.2AI score0.37089EPSS

Exploits41

Packet Storm•added 2024/08/31 12:0 a.m.•189 views

Microsoft Windows NAT Helper Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Microsoft Windows NAT Helper Denial of Service', 'Description' = %q This module exploits a denial of service vulnerability within the Internet...

2.6CVSS7.1AI score0.87486EPSS

Exploits2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by