CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13542 matches found

Packet Storm•added 2024/08/31 12:0 a.m.•129 views

AlienVault Authenticated SQL Injection Arbitrary File Read

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "AlienVault Authenticated SQL Injection Arbitrary File Read", 'Description' = %q AlienVault 4.5.0 is susceptible to an authenticated SQL injection...

7.4AI score

Exploits0

Packet Storm•added 2024/08/31 12:0 a.m.•236 views

Oracle DB SQL Injection Via SYS.DBMS_CDC_PUBLISH.ALTER_AUTOLOG_CHANGE_SOURCE

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Oracle DB SQL Injection via SYS.DBMSCDCPUBLISH.ALTERAUTOLOGCHANGESOURCE', 'Description' = %q The module exploits an sql injection flaw in the...

5.5CVSS7AI score0.47398EPSS

Exploits2

Packet Storm•added 2024/08/31 12:0 a.m.•494 views

BADPDF Malicious PDF Creator

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'BADPDF Malicious PDF Creator', 'Description' = ' This module can either creates a blank PDF file which contains a UNC link which can be used to...

7.5CVSS7AI score0.68262EPSS

Exploits2

Packet Storm•added 2024/08/31 12:0 a.m.•155 views

ManageEngine Password Manager SQLAdvancedALSearchResult.cc Pro SQL Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'ManageEngine Password Manager SQLAdvancedALSearchResult.cc Pro SQL Injection', 'Description' = %q ManageEngine Password Manager Pro PMP has an...

6.5CVSS7AI score0.74916EPSS

Exploits9

Packet Storm•added 2024/08/31 12:0 a.m.•204 views

SysAid Help Desk Database Credentials Disclosure

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'openssl' class MetasploitModule 'SysAid Help Desk Database Credentials Disclosure', 'Description' = %q This module exploits a vulnerability in SysAid Help Desk...

8.5CVSS7AI score0.88235EPSS

Exploits10

Packet Storm•added 2024/08/31 12:0 a.m.•147 views

Monkey HTTPD Header Parsing Denial of Service (Denial of Service)

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Monkey HTTPD Header Parsing Denial of Service DoS', 'Description' = %q This module causes improper header parsing that leads to a segmentation...

6.8CVSS7AI score0.4015EPSS

Exploits3

Packet Storm•added 2024/08/31 12:0 a.m.•150 views

VBulletin Administrator Account Creation

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'vBulletin Administrator Account Creation', 'Description' = %q This module abuses the "install/upgrade.php" component on vBulletin 4.1+ and 4.5+ t...

7.5CVSS7AI score0.7819EPSS

Exploits7

Packet Storm•added 2024/08/31 12:0 a.m.•156 views

GitLab Authenticated File Read

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'GitLab Authenticated File Read', 'Description' = %q GitLab version 16.0 contains a directory traversal for arbitrary file read as the gitlab-www...

10CVSS7AI score0.91925EPSS

Exploits5

Packet Storm•added 2024/08/31 12:0 a.m.•517 views

SNMP Community Login Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'metasploit/framework/communitystringcollection' require 'metasploit/framework/loginscanner/snmp' class MetasploitModule 'SNMP Community Login Scanner',...

6.9AI score0.89585EPSS

Exploits3

Packet Storm•added 2024/08/31 12:0 a.m.•130 views

F5 BIG-IP Backend Cookie Disclosure

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'F5 BIG-IP Backend Cookie Disclosure', 'Description' = %q This module identifies F5 BIG-IP load balancers and leaks backend information pool name,...

7.4AI score

Exploits0

Packet Storm•added 2024/08/31 12:0 a.m.•211 views

Microsoft SRV.SYS WriteAndX Invalid DataOffset

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Microsoft SRV.SYS WriteAndX Invalid DataOffset', 'Description' = %q This module exploits a denial of service vulnerability in the SRV.SYS driver ...

7.1CVSS7.4AI score0.73659EPSS

Exploits3

Packet Storm•added 2024/08/31 12:0 a.m.•157 views

Android Open Source Platform (AOSP) Browser UXSS

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Android Open Source Platform AOSP Browser UXSS', 'Description' = %q This module exploits a Universal Cross-Site Scripting UXSS vulnerability...

7.4AI score

Exploits0

Packet Storm•added 2024/08/31 12:0 a.m.•161 views

Apache ZooKeeper Information Disclosure

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Apache ZooKeeper Information Disclosure', 'Description' = %q Apache ZooKeeper server service runs on TCP 2181 and by default, it is accessible...

7.4AI score

Exploits0

Packet Storm•added 2024/08/31 12:0 a.m.•142 views

Microsoft SQL Server Escalate EXECUTE AS

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Microsoft SQL Server Escalate EXECUTE AS', 'Description' = %q This module can be used escalate privileges if the IMPERSONATION privilege has been...

7.4AI score

Exploits0

Packet Storm•added 2024/08/31 12:0 a.m.•149 views

MongoDB NoSQL Collection Enumeration Via Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "MongoDB NoSQL Collection Enumeration Via Injection", 'Description' = %q This module can exploit NoSQL injections on MongoDB versions less than 2....

7.4AI score

Exploits0

Packet Storm•added 2024/08/31 12:0 a.m.•159 views

Samba lsa_io_privilege_set Heap Overflow

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Samba lsaioprivilegeset Heap Overflow', 'Description' = %q This module triggers a heap overflow in the LSA RPC service of the Samba daemon. ,...

10CVSS7.1AI score0.90126EPSS

Exploits23

Packet Storm•added 2024/08/31 12:0 a.m.•906 views

MS12-020 Microsoft Remote Desktop Checker

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'MS12-020 Microsoft Remote Desktop Checker', 'Description' = %q This module checks a range of hosts for the MS12-020 vulnerability. This does not...

9.3CVSS7AI score0.87379EPSS

Exploits11

Packet Storm•added 2024/08/31 12:0 a.m.•242 views

Kerberos Domain User Enumeration

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'metasploit/framework/credentialcollection' require 'metasploit/framework/loginscanner/kerberos' class MetasploitModule 'Kerberos Domain User Enumeration',...

7.4AI score

Exploits0

Packet Storm•added 2024/08/31 12:0 a.m.•183 views

HP Operations Manager Perfd Environment Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'HP Operations Manager Perfd Environment Scanner', 'Description' = %q This module will enumerate the process list of a remote machine by abusing H...

7.4AI score

Exploits0

Packet Storm•added 2024/08/31 12:0 a.m.•227 views

MiniUPnPd 1.4 Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'MiniUPnPd 1.4 Denial of Service DoS Exploit', 'Description' = %q This module allows remote attackers to cause a denial of service DoS in MiniUPnP...

7.8CVSS7.2AI score0.74349EPSS

Exploits8

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by