Skip to main content

Resources

Vulnerability & Exploit Database

This is the list of vulnerabilities you can detect with Pentest-Tools.com and the exploits currently available in the platform.

We detect more than 14.368 vulnerabilities with multiple tools (Network Scanner, Website Scanner, Wordpress Scanner, and more) and we also have 153 exploit modules in Sniper to validate the risk level of critical CVEs.

Display

Displaying 1 - 25 results out of 14.368

Pentest-Tools.com Vulnerabilities
Name
Detectable with
Detection added
Severity
Exploitable
with Sniper
pfSense pfBlockerNG - OS Command Injection
CVE-2022-40624
Network Scanner

Critical(9.8)

No
CentOS Web Panel - OS Command Injection
CVE-2021-31324
Network Scanner

Critical(9.8)

No
ZZCMS 2022 - Path Information Disclosure
CVE-2022-40443
Network Scanner

Medium(5.3)

No
WSO2 User Registration - Arbitrary Account Creation
CVE-2024-7097
Network Scanner

Medium

No
MAMP Server - Cross-Site ScriptingNetwork Scanner

Medium

No
Lantronix XPort 6.10.0.1 - Unauthenticated AccessNetwork Scanner

High

No
WordPress File Upload <= 4.24.11 - Arbitrary File Read
CVE-2024-9047
Network Scanner

Critical(9.8)

No
CRXDE Lite - ExposureNetwork Scanner

Low

No
Grafana Post-Auth DuckDB - SQL Injection To File Read
CVE-2024-9264
Network Scanner

Critical(9.9)

No
Cybersecurity Infrastructure Security Agency (CISA)Aviatrix Controller - Remote Code Execution
CVE-2024-50603
Network Scanner

Critical(10)

No
Error Log Viewer By WP Guru <= 1.0.1.3 - Missing Authorization to Arbitrary File Read
CVE-2024-12849
Network Scanner

High(7.5)

No
Netis Wifi Router - Information DisclosureNetwork Scanner

High

No
Radio Player <= 2.0.82 - Server-Side Request Forgery
CVE-2024-54385
Network Scanner

High(7.2)

No
IceWarp Server 10.2.1 - Cross-Site Scripting
CVE-2024-55218
Network Scanner

Medium(6.1)

No
CodiMD - File UploadNetwork Scanner

Medium

No
CodiMD <2.5.4 - Insecure Filename Randomization
CVE-2024-38353
Network Scanner

Medium(5.3)

No
Apache NiFi - Information Disclosure
CVE-2024-56512
Network Scanner

Medium

No
Xhibiter NFT Marketplace 1.10.2 - SQL InjectionNetwork Scanner

High

No
Crypto <= 2.15 - Authentication Bypass
CVE-2024-9989
Network Scanner

Critical(9.8)

No
Issabel Authenticated - Remote Code Execution
CVE-2024-0986
Network Scanner

Medium(4.7)

No
CPAS Management System - Arbitrary File ReadNetwork Scanner

High

No
MasterSAM Star Gate v11 - Local File Inclusion
CVE-2024-55457
Network Scanner

High

No
Hurrakify <= 2.4 - Server-Side Request Forgery
CVE-2024-54330
Network Scanner

High(7.2)

No
CPAS Management System - SQL InjectionNetwork Scanner

High

No
UFIDA U8 Cloud - SQL Injection (CNVD-2024-33023)
CNVD-2024-33023
Network Scanner

High

No