Resources

Vulnerability & Exploit Database

This is the list of vulnerabilities you can detect with Pentest-Tools.com and the exploits currently available in the platform.

We detect more than 15.305 vulnerabilities with multiple tools (Network Scanner, Website Scanner, Wordpress Scanner, and more) and we also have 166 exploit modules in Sniper to validate the risk level of critical CVEs.

Display

Displaying 1 - 25 results out of 15.305

Pentest-Tools.com Vulnerabilities
Name	Detectable with	Detection added	Severity	Exploitable with Sniper
PHP < 8.1.33, 8.2.x < 8.2.29, 8.3.x < 8.3.23, 8.4.x < 8.4.10 Multiple Vulnerabilities - Windows CVE-2025-1220 CVE-2025-1735 CVE-2025-6491	Network Scanner	Jul 9, 2025	N/A	No
Tenable Nessus Privilege Escalation Vulnerability (TNS-2025-13) CVE-2025-36630	Network Scanner	Jul 9, 2025	High(8.4)	No
ClamAV 1.2 < 1.4.3 DoS Vulnerability - Windows CVE-2025-20234	Network Scanner	Jul 9, 2025	Medium(5.3)	No
FasterXML jackson-databind - Deserialization Remote Code Execution CVE-2020-9547	Network Scanner	Jul 9, 2025	Critical(9.8)	No
WordPress Forminator Plugin < 1.44.3 Multiple Vulnerabilities CVE-2025-6463 CVE-2025-6464	Network Scanner	Jul 9, 2025	High(7.5)	No
Ads Pro Plugin <= 4.89 - Local File Inclusion CVE-2025-4380	Network Scanner	Jul 9, 2025	Critical(9.8)	No
WordPress JobWP Plugin <= 2.3.9 - SQL Injection CVE-2025-2010	Network Scanner	Jul 9, 2025	High(7.5)	No
Molgenis - Default Login	Network Scanner	Jul 9, 2025	High	No
ClamAV 1.x < 1.0.9, 1.1.x < 1.4.3 Buffer Overflow Vulnerability - Windows CVE-2025-20260	Network Scanner	Jul 9, 2025	Critical(9.8)	No
Tenable Nessus Multiple Vulnerabilities (TNS-2025-13) CVE-2025-6021 CVE-2025-24855	Network Scanner	Jul 9, 2025	High(7.5)	No
Pritunl - Installation	Network Scanner	Jul 8, 2025	High	No
Infoblox NetMRI < 7.6.1 - Unauthenticated Command Injection in get_saml_request CVE-2025-32813	Network Scanner	Jul 8, 2025	High(7.2)	No
RevPi Webstatus <= v2.4.5 - Authentication Bypass CVE-2025-41646	Network Scanner	Jul 8, 2025	Critical(9.8)	No
Scoold < 1.64.0 - Authentication Bypass CVE-2024-50334	Network Scanner	Jul 7, 2025	Medium(5.3)	No
Citrix NetScaler Memory Disclosure - CitrixBleed 2 CVE-2025-5777	Network Scanner	Jul 5, 2025	Critical	No
Wing FTP Server <= 7.4.3 - Remote Code Execution CVE-2025-47812	Network Scanner	Jul 4, 2025	Critical(9.8)	No
Wing FTP Server <= 7.4.3 - Path Disclosure via Overlong UID Cookie CVE-2025-47813	Network Scanner	Jul 4, 2025	Medium(5.3)	No
D-Link DCS-5020L Buffer Overflow Vulnerability (May 2025) CVE-2025-5215	Network Scanner	Jul 2, 2025	High(8.8)	No
D-Link Multiple DCS IP Camera Devices Multiple Vulnerabilities (SAP10247) CVE-2021-41503 CVE-2021-41504 CVE-2024-37606 CVE-2025-4841 CVE-2025-4842 CVE-2025-4843 CVE-2025-5571 CVE-2025-5572 CVE-2025-5573	Network Scanner	Jul 2, 2025	Medium(6.3)	No
Discourse 3.5.x < 3.5.0.beta6 XSS Vulnerability CVE-2025-48954	Network Scanner	Jul 2, 2025	High(8.1)	No
Discourse < 3.4.6 Information Disclosure Vulnerability CVE-2025-49845	Network Scanner	Jul 2, 2025	N/A	No
Discourse 3.5.x < 3.5.0.beta8 Information Disclosure Vulnerability CVE-2025-49845	Network Scanner	Jul 2, 2025	N/A	No
Microsoft SharePoint _layouts/help.aspx XSS Vulnerability CVE-2010-0817	Network Scanner	Jul 2, 2025	N/A	No
D-Link DCS-2103 IP Camera Devices Multiple Vulnerabilities (Nov 2014) - Active Check CVE-2014-9234 CVE-2014-9238	Network Scanner	Jul 2, 2025	N/A	No
D-Link Multiple DNS NAS Devices Multiple Vulnerabilities (2024 - 2025) CVE-2024-10914 CVE-2024-10915 CVE-2024-10916 CVE-2025-44023	Network Scanner	Jul 2, 2025	Medium(6.5)	No