CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13542 matches found

Packet Storm•added 2024/08/31 12:0 a.m.•178 views

SerComm Device Configuration Dump

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'HTTP Web Management', 'user' = /httpusername=\S+/i, 'pass' = /httppassword=\S+/i , 'HTTP Web Management Login', 'user' = /loginusername=\S+/i,...

7.4AI score

Exploits0

Packet Storm•added 2024/08/31 12:0 a.m.•178 views

D-Link DIR-600 / DIR-300 Unauthenticated Remote Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'D-Link DIR-600 / DIR-300 Unauthenticated Remote Command Execution', 'Description' = %q This module exploits an OS Command Injection vulnerability...

7.4AI score

Exploits0

Packet Storm•added 2024/08/31 12:0 a.m.•134 views

Schneider Modicon Remote START/STOP Command

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Schneider Modicon Remote START/STOP Command', 'Description' = %q The Schneider Modicon with Unity series of PLCs use Modbus function code 90 0x5a...

7.4AI score

Exploits0

Packet Storm•added 2024/08/31 12:0 a.m.•140 views

XM Easy Personal FTP Server 5.7.0 NLST Denial of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'XM Easy Personal FTP Server 5.7.0 NLST DoS', 'Description' = %q You need a valid login to DoS this FTP server, but even anonymous can do it as lo...

4CVSS7AI score0.83067EPSS

Exploits5

Packet Storm•added 2024/08/31 12:0 a.m.•145 views

Novell EDirectory DHOST Predictable Session Cookie

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Novell eDirectory DHOST Predictable Session Cookie', 'Description' = %q This module is able to predict the next session cookie value issued by th...

7.5CVSS7AI score0.6034EPSS

Exploits3

Packet Storm•added 2024/08/31 12:0 a.m.•246 views

WordPress Symposium Plugin SQL Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'WordPress Symposium Plugin SQL Injection', 'Description' = %q This module exploits a SQL injection vulnerability in the WP Symposium plugin befor...

7.5CVSS7.4AI score0.79815EPSS

Exploits5

Packet Storm•added 2024/08/31 12:0 a.m.•141 views

Network Shutdown Module sort_values Credential Dumper

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Network Shutdown Module sortvalues Credential Dumper', 'Description' = %q This module will extract user credentials from Network Shutdown Module...

7.4AI score

Exploits0

Packet Storm•added 2024/08/31 12:0 a.m.•169 views

NETGEAR ProSafe Network Management System 300 Authenticated File Download

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'NETGEAR ProSafe Network Management System 300 Authenticated File Download', 'Description' = %q Netgear's ProSafe NMS300 is a network management...

9.6CVSS7.4AI score0.65727EPSS

Exploits6

Packet Storm•added 2024/08/31 12:0 a.m.•237 views

Varnish Cache CLI Login Utility

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'metasploit/framework/credentialcollection' require 'metasploit/framework/loginscanner/varnish' require 'metasploit/framework/tcp/client' class MetasploitModule...

7.5CVSS6.6AI score0.6839EPSS

Exploits7

Packet Storm•added 2024/08/31 12:0 a.m.•186 views

MS15-034 HTTP Protocol Stack Request Handling Denial-of-Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'MS15-034 HTTP Protocol Stack Request Handling Denial-of-Service', 'Description' = %q This module will check if scanned hosts are vulnerable to...

10CVSS7AI score0.9431EPSS

Exploits16

Packet Storm•added 2024/08/31 12:0 a.m.•157 views

General Electric D20 Password Recovery

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework This module grabs the device configuration from a GE D20M RTU and parses the usernames and passwords from it. class MetasploitModule 'General Electric D20 Password...

7.5CVSS7.1AI score0.2314EPSS

Exploits2

Packet Storm•added 2024/08/31 12:0 a.m.•163 views

IBM Notes Denial Of Service

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule "IBM Notes Denial Of Service", 'Description' = %q This module exploits a vulnerability in the native browser that comes with IBM Lotus Notes. If...

6.5CVSS7AI score0.6548EPSS

Exploits10

Packet Storm•added 2024/08/31 12:0 a.m.•149 views

Apple Filing Protocol Login Utility

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework require 'openssl' require 'metasploit/framework/credentialcollection' require 'metasploit/framework/loginscanner/afp' class MetasploitModule 'Apple Filing Protocol Login...

7.4AI score

Exploits0

Packet Storm•added 2024/08/31 12:0 a.m.•186 views

Amazon Fire TV YouTube Remote Control

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Amazon Fire TV YouTube Remote Control', 'Description' = %q This module acts as a simple remote control for the Amazon Fire TV's YouTube app. Test...

7.4AI score

Exploits0

Packet Storm•added 2024/08/31 12:0 a.m.•229 views

NetBIOS Response Brute Force Spoof

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'NetBIOS Response Brute Force Spoof Direct', 'Description' = %q This module continuously spams NetBIOS responses to a target for given hostname,...

7.4AI score

Exploits0

Packet Storm•added 2024/08/31 12:0 a.m.•181 views

Joomla Real Estate Manager Component Error-Based SQL Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Joomla Real Estate Manager Component Error-Based SQL Injection', 'Description' = %q This module exploits a SQL injection vulnerability in Joomla...

7.4AI score

Exploits0

Packet Storm•added 2024/08/31 12:0 a.m.•336 views

Postfixadmin Protected Alias Deletion

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Postfixadmin Protected Alias Deletion Vulnerability', 'Description' = %q Postfixadmin installations between 2.91 and 3.0.1 do not check if an adm...

3.5CVSS7AI score0.58697EPSS

Exploits2

Packet Storm•added 2024/08/31 12:0 a.m.•130 views

Axigen Arbitrary File Read And Delete

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Axigen Arbitrary File Read and Delete', 'Description' = %q This module exploits a directory traversal vulnerability in the WebAdmin interface of...

6.4CVSS7AI score0.79815EPSS

Exploits3

Packet Storm•added 2024/08/31 12:0 a.m.•171 views

Memcached Stats Amplification Scanner

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Memcached Stats Amplification Scanner', 'Description' = %q This module can be used to discover Memcached servers which expose the unrestricted UD...

7.5CVSS7AI score0.86753EPSS

Exploits3

Packet Storm•added 2024/08/31 12:0 a.m.•276 views

SuiteCRM Authenticated SQL Injection

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'SuiteCRM authenticated SQL injection in export functionality', 'Description' = %q This module exploits an authenticated SQL injection in SuiteCRM...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by