Resources

Vulnerability & Exploit Database

This is the list of vulnerabilities you can detect with Pentest-Tools.com and the exploits currently available in the platform.

We detect more than 15.597 vulnerabilities with multiple tools (Network Scanner, Website Scanner, Wordpress Scanner, and more) and we also have 169 exploit modules in Sniper to validate the risk level of critical CVEs.

Display

Is exploitable with Sniper

Is in CISA catalog

Detectable with

Displaying 1 - 25 results out of 169

Pentest-Tools.com Vulnerabilities
Name	Detectable with	Detection added	CVSSv3	EPSS Score	EPSS Percentile	Exploitable with Sniper
Microsoft Sharepoint - Authentication Bypass & Remote Code Execution CVE-2025-53771 CVE-2025-49704	Network Scanner	Sep 9, 2025	High(8.8)	0.71	0.99	Yes
Fortinet FortiSIEM - Remote Code Execution CVE-2025-25256	Network Scanner	Sep 9, 2025	Critical(9.8)	0.31	0.97	Yes
SSH user enumeration CVE-2018-15473	Network Scanner	Aug 19, 2025	Medium(5.3)	0.93	1	Yes
Ivanti Endpoint Manager Mobile - Remote Code Execution CVE-2025-4427	Network Scanner	Jul 1, 2025	High(7.5)	0.92	1	Yes
Wordpress TemplateInvaders - Arbitrary File Upload CVE-2025-47577	Network Scanner	Jun 24, 2025	Critical(10)	0.01	0.15	Yes
Craft CMS - Remote Code Execution CVE-2024-56145	Network Scanner	Jun 2, 2025	Critical(9.8)	0.94	1	Yes
SMB - Anonymous Write Access	Network Scanner	May 20, 2025	Critical(9.8)	N/A	N/A	Yes
SMB - Anonymous Access	Network Scanner	Apr 29, 2025	High(8.2)	N/A	N/A	Yes
Zyxel - Default credentials CVE-2025-0890	Network Scanner	Apr 1, 2025	Critical(9.8)	0.01	0.71	Yes
Zyxel - Telnet Command Injection CVE-2024-40891	Network Scanner	Apr 1, 2025	High(8.8)	0.44	0.98	Yes
WordPress WP File Upload Plugin - Remote Code Execution CVE-2024-11635	Network Scanner	Apr 1, 2025	Critical(9.8)	0.11	0.93	Yes
Wordpress WP Query Console - Remote Code Execution CVE-2024-50498	Network Scanner	Mar 4, 2025	Critical(9.8)	0.93	1	Yes
Craft CMS - Remote Code Execution CVE-2023-41892	Network Scanner	Mar 4, 2025	Critical(9.8)	0.94	1	Yes
Wordpress Really Simple Security - Authentication Bypass CVE-2024-10924	Network Scanner	Feb 18, 2025	Critical(9.8)	0.94	1	Yes
Cleo Harmony, VLTrader and LexiCom - Arbitrary File Read and Write CVE-2024-50623	Network Scanner	Jan 21, 2025	Critical(9.8)	0.94	1	Yes
ProjectSend - Authentication Bypass CVE-2024-11680	Network Scanner	Jan 21, 2025	Critical(9.8)	0.94	1	Yes
CyberPanel - Remote Code Execution CVE-2024-51567	Network Scanner	Jan 14, 2025	Critical(9.8)	0.95	1	Yes
CyberPanel - Remote Code Execution CVE-2024-51378	Network Scanner	Jan 14, 2025	Critical(9.8)	0.94	1	Yes
Palo Alto Networks Expedition - Remote Code Execution CVE-2024-0012 CVE-2024-9474	Network Scanner	Nov 26, 2024	Critical(9.8)	0.95	1	Yes
Palo Alto Networks Expedition - Remote Code Execution CVE-2024-9463	Network Scanner	Oct 15, 2024	Critical(9.8)	0.95	1	Yes
GiveWP Donation Plugin - Remote Code Execution CVE-2024-5932	Network Scanner	Sep 17, 2024	Critical(9.8)	0.95	1	Yes
Cisco Small Business RV Series - Remote Code Execution CVE-2022-20705 CVE-2022-20707	Network Scanner	Sep 17, 2024	Critical(9.8)	0.83	1	Yes
Progress Telerik Report Server - Remote Code Execution CVE-2024-4358	Network Scanner	Sep 10, 2024	Critical(9.8)	0.95	1	Yes
Zyxel - Remote Code Execution CVE-2024-29973	Network Scanner	Sep 3, 2024	Critical(9.8)	0.94	1	Yes
Apache OFBiz - Remote Code Execution CVE-2024-38856	Network Scanner	Sep 3, 2024	Critical(9.8)	0.95	1	Yes

Vulnerability & Exploit Database

One of EMEA's fastest-growing tech companies.

48,000+ security folks are here. Are you?

More than demos - real faces, real insight.

Security leaders trust what they can prove