Resources

Vulnerability & Exploit Database

This is the list of vulnerabilities you can detect with Pentest-Tools.com and the exploits currently available in the platform.

We detect more than 15.227 vulnerabilities with multiple tools (Network Scanner, Website Scanner, Wordpress Scanner, and more) and we also have 164 exploit modules in Sniper to validate the risk level of critical CVEs.

Display

Displaying 1 - 25 results out of 15.227

Pentest-Tools.com Vulnerabilities
Name	Detectable with	Detection added	Severity	Exploitable with Sniper
GeoServer WFS - XXE Processing Vulnerability CVE-2025-30220	Network Scanner	Jun 18, 2025	Critical(9.9)	No
Apache Airflow v3 Default Login	Network Scanner	Jun 18, 2025	High	No
NUUO NVR - Default Login	Network Scanner	Jun 17, 2025	High	No
Hewlett Packard LaserJet Printer - Default Login	Network Scanner	Jun 17, 2025	High	No
PhotoPrism - Unauth Access	Network Scanner	Jun 17, 2025	High	No
OpenSearch Dashboard - Default Login	Network Scanner	Jun 17, 2025	High	No
QNAP QuTS hero Multiple OpenSSH Vulnerabilities (QSA-25-14) CVE-2025-26465 CVE-2025-26466	Network Scanner	Jun 17, 2025	Medium(5.9)	No
PhotoPrism - Default Login	Network Scanner	Jun 17, 2025	High	No
QNAP QTS Multiple OpenSSH Vulnerabilities (QSA-25-14) CVE-2025-26465 CVE-2025-26466	Network Scanner	Jun 17, 2025	Medium(5.9)	No
Dahua 'GetClassValue' - Remote Code Execution	Network Scanner	Jun 17, 2025	Critical	No
Motive eSIM Secure Connect Panel - Exposure	Network Scanner	Jun 17, 2025	High	No
NUUO NVRmini - Remote Command Execution CVE-2018-14933	Network Scanner	Jun 17, 2025	Critical(9.8)	No
OpenSearch Dashboard - Unauth Access	Network Scanner	Jun 17, 2025	High	No
APsystems ECU-R Firmware - Command Injection CVE-2022-45699	Network Scanner	Jun 16, 2025	Critical(9.8)	No
DCBI-Netlog-LAB v1.0 - Command Injection CVE-2023-26802	Network Scanner	Jun 16, 2025	Critical(9.8)	No
WordPress RevSlider - Remote Code Execution via File Upload CVE-2014-9735	Network Scanner	Jun 16, 2025	High(7.5)	No
Rocket LMS - Default Login	Network Scanner	Jun 16, 2025	High	No
Raisecom Gateway vpn_template_style.php - Remote Command Execution	Network Scanner	Jun 16, 2025	Critical	No
Joplin 3.3.3 Server - Privilege Escalation CVE-2025-27134	Network Scanner	Jun 16, 2025	High(8.8)	No
Jan v0.4.12 - Arbitrary File Upload CVE-2024-36858	Network Scanner	Jun 16, 2025	Critical(9.8)	No
WordPress ShowBiz Pro <= 1.7.1 - Authenticated Arbitrary File Upload to RCE CVE-2015-9499	Network Scanner	Jun 16, 2025	Critical(9.8)	No
Bigant DataBase - Exposed Installation	Network Scanner	Jun 15, 2025	High	No
D-Link DIR820LA1_FW105B03 'ping_addr' - OS Command Injection CVE-2023-25280	Network Scanner	Jun 15, 2025	Critical(9.8)	No
Tenda AC15 AC1900 version 15.03.05.19 - Command Injection CVE-2020-10987	Network Scanner	Jun 15, 2025	Critical(9.8)	No
Joplin - Default Login	Network Scanner	Jun 15, 2025	High	No