Resources

Vulnerability & Exploit Database

This is the list of vulnerabilities you can detect with Pentest-Tools.com and the exploits currently available in the platform.

We detect more than 15.291 vulnerabilities with multiple tools (Network Scanner, Website Scanner, Wordpress Scanner, and more) and we also have 166 exploit modules in Sniper to validate the risk level of critical CVEs.

Display

Displaying 1 - 25 results out of 15.291

Pentest-Tools.com Vulnerabilities
Name
Detectable with
Detection added
Severity
Exploitable
with Sniper
Citrix NetScaler Memory Disclosure - CitrixBleed 2Network Scanner

Critical

No
Wing FTP Server <= 7.4.3 - Remote Code ExecutionNetwork Scanner

Critical(9.8)

No
Wing FTP Server <= 7.4.3 - Path Disclosure via Overlong UID CookieNetwork Scanner

Medium(5.3)

No
D-Link DCS-2103 IP Camera Devices Multiple Vulnerabilities (Nov 2014) - Active CheckNetwork Scanner
N/A
No
Discourse 3.5.x < 3.5.0.beta8 Information Disclosure VulnerabilityNetwork Scanner
N/A
No
D-Link Multiple DNS NAS Devices Multiple Vulnerabilities (2024 - 2025)Network Scanner

Medium(6.5)

No
D-Link DCS-5020L Buffer Overflow Vulnerability (May 2025)Network Scanner

High(8.8)

No
Discourse 3.5.x < 3.5.0.beta6 XSS VulnerabilityNetwork Scanner

High(8.1)

No
Discourse < 3.4.6 Information Disclosure VulnerabilityNetwork Scanner
N/A
No
Microsoft SharePoint _layouts/help.aspx XSS VulnerabilityNetwork Scanner
N/A
No
Cybersecurity Infrastructure Security Agency (CISA)D-Link DIR-859 Multiple Vulnerabilities (2019 - 2024)Network Scanner
N/A
No
D-Link Multiple DCS IP Camera Devices Multiple Vulnerabilities (SAP10247)Network Scanner

Medium(6.3)

No
Cybersecurity Infrastructure Security Agency (CISA)Ivanti Endpoint Manager Mobile - Remote Code ExecutionNetwork Scanner

High(7.5)

Yes
TOTOLINK N150RT - Password ExposureNetwork Scanner

High

No
Brother Printers – Authentication Bypass via Default Admin PasswordNetwork Scanner

Critical(9.8)

No
Brother MFC-L9570CDW - Information DisclosureNetwork Scanner

Medium(5.3)

No
Cybersecurity Infrastructure Security Agency (CISA)Microsoft SMBv3 - Remote Code ExecutionNetwork Scanner

Critical(10)

No
Cybersecurity Infrastructure Security Agency (CISA)QNAP Photo Station < 6.0.3 - Remote Code ExecutionNetwork Scanner

Critical(9.8)

No
Apache Dubbo 2.5.x-2.7.4 - Insecure DeserializationNetwork Scanner

Critical(9.8)

No
UEditor - PHP Arbitrary File UploadNetwork Scanner

Medium

No
Likes and Dislikes Plugin <= 1.0.0 - Unauthenticated SQL InjectionNetwork Scanner

High(7.5)

No
Moodle Jmol Filter 6.1 - Local File InclusionNetwork Scanner

High(7.5)

No
Cybersecurity Infrastructure Security Agency (CISA)Microsoft SharePoint - Remote Code ExecutionNetwork Scanner

Critical(9.8)

No
Apache Kyuubi - Configuration ExposureNetwork Scanner

Medium

No
elFinder <= 2.1.47 - Command InjectionNetwork Scanner

Critical(9.8)

No