Resources

Vulnerability & Exploit Database

This is the list of vulnerabilities you can detect with Pentest-Tools.com and the exploits currently available in the platform.

We detect more than 12.006 vulnerabilities with multiple tools (Network Scanner, Website Scanner, Wordpress Scanner, and more) and we also have 150 exploit modules in Sniper to validate the risk level of critical CVEs.

Display

Displaying 1 - 25 results out of 12.006

Pentest-Tools.com Vulnerabilities
Name
Detectable with
Detection added
Severity
Exploitable
with Sniper
WordPress Core - Post Author Email DisclosureNetwork Scanner

Medium(5.3)

No
WordPress Core <=6.2 - Directory TraversalNetwork Scanner

Medium(6.1)

No
FXServer < v9601 - Information ExposureNetwork Scanner
N/A
No
Keycloak < 24.0.5 - Broken Access ControlNetwork Scanner

High(8.1)

No
Keycloak - SAML Core Package Signature Validation FlawNetwork Scanner

High(7.7)

No
Palo Alto Expedition - SQL InjectionNetwork Scanner

High(8.2)

No
Gradio - Open RedirectNetwork Scanner
N/A
No
CyberPower < v2.8.3 - SQL InjectionNetwork Scanner

High(7.5)

No
CyberPower - SQL InjectionNetwork Scanner

High(7.5)

No
Gradio - Open RedirectNetwork Scanner

Medium(5.4)

No
CyberPower < v2.8.3 - SQL InjectionNetwork Scanner

High(7.5)

No
osTicket < 1.10.2 - Cross-Site ScriptingNetwork Scanner

Medium(6.1)

No
osTicket < 1.10.2 - Cross-Site ScriptingNetwork Scanner

Medium(6.1)

No
CyberPower - Missing AuthenticationNetwork Scanner

Critical(9.8)

No
Palo Alto Expedition - Admin Account TakeoverNetwork Scanner

Critical(9.3)

No
osTicket < v1.16.6 - Cross-Site ScriptingNetwork Scanner

Medium(5.4)

No
Chaosblade < 1.7.4 - Remote Code ExecutionNetwork Scanner

High(8.6)

No
osTicket 1.15.x - SQL InjectionNetwork Scanner

Medium(6.5)

No
Hostel < 1.1.5.3 - Cross-Site ScriptingNetwork Scanner

Medium(5.9)

No
CyberPower - SQL InjectionNetwork Scanner

High(7.5)

No
osTicket < 1.10.2 - Cross-Site ScriptingNetwork Scanner

Medium(6.1)

No
OPNsense - Cross-Site Scripting to RCENetwork Scanner

Critical(9.6)

No
AnteeoWMS < v4.7.34 - SQL InjectionNetwork Scanner

Critical(9.8)

No
osTicket < v1.16.6 - Cross-Site ScriptingNetwork Scanner

Medium(5.4)

No
WebMvc.fn/WebFlux.fn - Path TraversalNetwork Scanner

High(7.5)

No