Resources

Vulnerability & Exploit Database

This is the list of vulnerabilities you can detect with Pentest-Tools.com and the exploits currently available in the platform.

We detect more than 15.310 vulnerabilities with multiple tools (Network Scanner, Website Scanner, Wordpress Scanner, and more) and we also have 166 exploit modules in Sniper to validate the risk level of critical CVEs.

Display

Displaying 1 - 25 results out of 15.310

Pentest-Tools.com Vulnerabilities
Name
Detectable with
Detection added
Severity
Exploitable
with Sniper
FasterXML Jackson Databind <=2.9.10.4 - Remote Code ExecutionNetwork Scanner

Critical(9.8)

No
Docusaurus Gists Plugin < 4.0.0 - GitHub Personal Access Token ExposureNetwork Scanner

High(8.6)

No
vBulletin 5.0.0-6.0.3 - Authentication BypassNetwork Scanner

Critical(9.8)

No
NetMRI Unauthenticated SQL Injection via skipjackUsernameNetwork Scanner

Critical(9.8)

No
Zhiyuan OA Platform - Arbitrary File UploadNetwork Scanner

Critical

No
WordPress Forminator Plugin < 1.44.3 Multiple VulnerabilitiesNetwork Scanner

High(7.5)

No
Ads Pro Plugin <= 4.89 - Local File InclusionNetwork Scanner

Critical(9.8)

No
Tenable Nessus Multiple Vulnerabilities (TNS-2025-13)Network Scanner

High(7.5)

No
WordPress JobWP Plugin <= 2.3.9 - SQL InjectionNetwork Scanner

High(7.5)

No
Tenable Nessus Privilege Escalation Vulnerability (TNS-2025-13)Network Scanner

High(8.4)

No
ClamAV 1.2 < 1.4.3 DoS Vulnerability - WindowsNetwork Scanner

Medium(5.3)

No
PHP < 8.1.33, 8.2.x < 8.2.29, 8.3.x < 8.3.23, 8.4.x < 8.4.10 Multiple Vulnerabilities - WindowsNetwork Scanner
N/A
No
FasterXML jackson-databind - Deserialization Remote Code ExecutionNetwork Scanner

Critical(9.8)

No
ClamAV 1.x < 1.0.9, 1.1.x < 1.4.3 Buffer Overflow Vulnerability - WindowsNetwork Scanner

Critical(9.8)

No
Molgenis - Default LoginNetwork Scanner

High

No
Infoblox NetMRI < 7.6.1 - Unauthenticated Command Injection in get_saml_requestNetwork Scanner

High(7.2)

No
RevPi Webstatus <= v2.4.5 - Authentication BypassNetwork Scanner

Critical(9.8)

No
Pritunl - InstallationNetwork Scanner

High

No
Scoold < 1.64.0 - Authentication BypassNetwork Scanner

Medium(5.3)

No
Cybersecurity Infrastructure Security Agency (CISA)Citrix NetScaler Memory Disclosure - CitrixBleed 2Network Scanner

Critical(7.5)

No
Wing FTP Server <= 7.4.3 - Remote Code ExecutionNetwork Scanner

Critical(9.8)

No
Wing FTP Server <= 7.4.3 - Path Disclosure via Overlong UID CookieNetwork Scanner

Medium(5.3)

No
Discourse 3.5.x < 3.5.0.beta6 XSS VulnerabilityNetwork Scanner

High(8.1)

No
Discourse < 3.4.6 Information Disclosure VulnerabilityNetwork Scanner
N/A
No
D-Link DCS-2103 IP Camera Devices Multiple Vulnerabilities (Nov 2014) - Active CheckNetwork Scanner
N/A
No