CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13541 matches found

Packet Storm•added 2024/08/31 12:0 a.m.•413 views

ColdFusion password.properties Hash Extraction

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "ColdFusion 'password.properties' Hash Extraction", 'Description' = %q This module uses a directory traversal vulnerability to extract information...

5CVSS7AI score0.85888EPSS

Exploits2

Packet Storm•added 2024/08/31 12:0 a.m.•183 views

Lantronix Telnet Password Recovery

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Lantronix Telnet Password Recovery', 'Description' = %q This module retrieves the setup record from Lantronix serial-to-ethernet devices via the...

7.4AI score

Exploits0

Packet Storm•added 2024/08/31 12:0 a.m.•153 views

Archer C7 Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Archer C7 Directory Traversal Vulnerability', 'Description' = %q This module exploits a directory traversal vulnerability in the PATHINFO found a...

7.8CVSS7AI score0.92455EPSS

Exploits5

Packet Storm•added 2024/08/31 12:0 a.m.•167 views

Novell EDirectory EMBox Unauthenticated File Access

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Novell eDirectory eMBox Unauthenticated File Access', 'Description' = %q This module will access Novell eDirectory's eMBox service and can run th...

7.5CVSS7AI score0.75044EPSS

Exploits3

Packet Storm•added 2024/08/31 12:0 a.m.•203 views

Telnet Service Encryption Key ID Overflow Detection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Telnet Service Encryption Key ID Overflow Detection', 'Description' = 'Detect telnet services vulnerable to the encrypt option Key ID overflow...

10CVSS7.1AI score0.92381EPSS

Exploits19

Packet Storm•added 2024/08/31 12:0 a.m.•198 views

VxWorks WDB Agent Remote Memory Dump

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'VxWorks WDB Agent Remote Memory Dump', 'Description' = %q This module provides the ability to dump the system memory of a VxWorks target through...

7.4AI score

Exploits0

Packet Storm•added 2024/08/31 12:0 a.m.•373 views

Android Browser Remote Code Execution Through Google Play Store XFO

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Android Browser RCE Through Google Play Store XFO', 'Description' = %q This module combines two vulnerabilities to achieve remote code execution ...

5.8CVSS7.2AI score0.77565EPSS

Exploits7

Packet Storm•added 2024/08/31 12:0 a.m.•131 views

Oracle DB SQL Injection Via SYS.DBMS_METADATA.GET_GRANTED_XML

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Oracle DB SQL Injection via SYS.DBMSMETADATA.GETGRANTEDXML', 'Description' = %q This module will escalate an Oracle DB user to DBA by exploiting ...

7.4AI score

Exploits0

Packet Storm•added 2024/08/31 12:0 a.m.•197 views

BMC / Numara Track-It! Domain Administrator and SQL Server User Password Disclosure

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'openssl' class MetasploitModule 'BMC / Numara Track-It! Domain Administrator and SQL Server User Password Disclosure', 'Description' = %q This module exploits a...

7.5CVSS7AI score0.82177EPSS

Exploits15

Packet Storm•added 2024/08/31 12:0 a.m.•126 views

Oracle Account Discovery

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'csv' class MetasploitModule 'Oracle Account Discovery', 'Description' = %q This module uses a list of well known default authentication credentials to discover...

7.4AI score

Exploits0

Packet Storm•added 2024/08/31 12:0 a.m.•159 views

AVTECH 744 DVR Account Information Retrieval

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'AVTECH 744 DVR Account Information Retrieval', 'Description' = %q This module will extract the account information from the AVTECH 744 DVR device...

7.4AI score

Exploits0

Packet Storm•added 2024/08/31 12:0 a.m.•207 views

WordPress W3-Total-Cache 0.9.2.4 Username / Hash Extraction

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'WordPress W3-Total-Cache Plugin 0.9.2.4 or before Username and Hash Extract', 'Description' = "The W3-Total-Cache Wordpress Plugin MSFLICENSE,...

7.4AI score

Exploits0

Packet Storm•added 2024/08/31 12:0 a.m.•199 views

Android Browser File Theft

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Android Browser File Theft', 'Description' = %q This module steals the cookie, password, and autofill databases from the Browser application on...

7.4AI score

Exploits0

Packet Storm•added 2024/08/31 12:0 a.m.•155 views

HTTP Client LAN IP Address Gather

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'HTTP Client LAN IP Address Gather', 'Description' = %q This module retrieves a browser's network interface IP addresses using WebRTC. , 'License'...

4.3CVSS7AI score0.75314EPSS

Exploits7

Packet Storm•added 2024/08/31 12:0 a.m.•148 views

WebEx Remote Command Execution Utility

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'WebEx Remote Command Execution Utility', 'Description' = %q This module enables the execution of a single command as System by exploiting a remot...

7.8CVSS7AI score0.43344EPSS

Exploits14

Packet Storm•added 2024/08/31 12:0 a.m.•217 views

TFTP Brute Forcer

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'TFTP Brute Forcer', 'Description' = 'This module uses a dictionary to brute force valid TFTP image names from a TFTP server.', 'Author' =...

7.4AI score

Exploits0

Packet Storm•added 2024/08/31 12:0 a.m.•171 views

Jasmin Ransomware Web Server Unauthenticated Directory Traversal

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Jasmin Ransomware Web Server Unauthenticated Directory Traversal', 'Description' = %q The Jasmin Ransomware web server contains an unauthenticate...

7AI score0.75688EPSS

Exploits7

Packet Storm•added 2024/08/31 12:0 a.m.•240 views

Victory FTP Server 5.0 LIST Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Victory FTP Server 5.0 LIST DoS', 'Description' = %q The Victory FTP Server v5.0 can be brought down by sending a very simple LIST command ,...

5CVSS7.4AI score0.70215EPSS

Exploits2

Packet Storm•added 2024/08/31 12:0 a.m.•260 views

IBM BigFix Relay Server Sites and Package Enum

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'IBM BigFix Relay Server Sites and Package Enum', 'Description' = %q This module retrieves masthead, site, and available package information from...

5.3CVSS7.1AI score0.74625EPSS

Exploits2

Packet Storm•added 2024/08/31 12:0 a.m.•296 views

CouchDB Enum Utility

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'CouchDB Enum Utility', 'Description' = %q This module enumerates databases on CouchDB using the REST API without authentication by default. ,...

10CVSS6.9AI score0.94098EPSS

Exploits21

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by