Resources

Vulnerability & Exploit Database

This is the list of vulnerabilities you can detect with Pentest-Tools.com and the exploits currently available in the platform.

We detect more than 15.291 vulnerabilities with multiple tools (Network Scanner, Website Scanner, Wordpress Scanner, and more) and we also have 166 exploit modules in Sniper to validate the risk level of critical CVEs.

Display

Displaying 1 - 25 results out of 15.291

Pentest-Tools.com Vulnerabilities
Name	Detectable with	Detection added	Severity	Exploitable with Sniper
Citrix NetScaler Memory Disclosure - CitrixBleed 2 CVE-2025-5777	Network Scanner	Jul 5, 2025	Critical	No
Wing FTP Server <= 7.4.3 - Remote Code Execution CVE-2025-47812	Network Scanner	Jul 4, 2025	Critical(9.8)	No
Wing FTP Server <= 7.4.3 - Path Disclosure via Overlong UID Cookie CVE-2025-47813	Network Scanner	Jul 4, 2025	Medium(5.3)	No
D-Link DCS-2103 IP Camera Devices Multiple Vulnerabilities (Nov 2014) - Active Check CVE-2014-9234 CVE-2014-9238	Network Scanner	Jul 2, 2025	N/A	No
Discourse 3.5.x < 3.5.0.beta8 Information Disclosure Vulnerability CVE-2025-49845	Network Scanner	Jul 2, 2025	N/A	No
D-Link Multiple DNS NAS Devices Multiple Vulnerabilities (2024 - 2025) CVE-2024-10914 CVE-2024-10915 CVE-2024-10916 CVE-2025-44023	Network Scanner	Jul 2, 2025	Medium(6.5)	No
D-Link DCS-5020L Buffer Overflow Vulnerability (May 2025) CVE-2025-5215	Network Scanner	Jul 2, 2025	High(8.8)	No
Discourse 3.5.x < 3.5.0.beta6 XSS Vulnerability CVE-2025-48954	Network Scanner	Jul 2, 2025	High(8.1)	No
Discourse < 3.4.6 Information Disclosure Vulnerability CVE-2025-49845	Network Scanner	Jul 2, 2025	N/A	No
Microsoft SharePoint _layouts/help.aspx XSS Vulnerability CVE-2010-0817	Network Scanner	Jul 2, 2025	N/A	No
D-Link DIR-859 Multiple Vulnerabilities (2019 - 2024) CVE-2019-17508 CVE-2020-25506 CVE-2022-25106 CVE-2022-46476 CVE-2024-48630 CVE-2023-36092 CVE-2024-0769 CVE-2024-57045	Network Scanner	Jul 2, 2025	N/A	No
D-Link Multiple DCS IP Camera Devices Multiple Vulnerabilities (SAP10247) CVE-2021-41503 CVE-2021-41504 CVE-2024-37606 CVE-2025-4841 CVE-2025-4842 CVE-2025-4843 CVE-2025-5571 CVE-2025-5572 CVE-2025-5573	Network Scanner	Jul 2, 2025	Medium(6.3)	No
Ivanti Endpoint Manager Mobile - Remote Code Execution CVE-2025-4427	Network Scanner	Jul 1, 2025	High(7.5)	Yes
TOTOLINK N150RT - Password Exposure	Network Scanner	Jun 30, 2025	High	No
Brother Printers – Authentication Bypass via Default Admin Password CVE-2024-51978	Network Scanner	Jun 29, 2025	Critical(9.8)	No
Brother MFC-L9570CDW - Information Disclosure CVE-2024-51977	Network Scanner	Jun 29, 2025	Medium(5.3)	No
Microsoft SMBv3 - Remote Code Execution CVE-2020-0796	Network Scanner	Jun 28, 2025	Critical(10)	No
QNAP Photo Station < 6.0.3 - Remote Code Execution CVE-2019-7194	Network Scanner	Jun 28, 2025	Critical(9.8)	No
Apache Dubbo 2.5.x-2.7.4 - Insecure Deserialization CVE-2019-17564	Network Scanner	Jun 28, 2025	Critical(9.8)	No
UEditor - PHP Arbitrary File Upload	Network Scanner	Jun 27, 2025	Medium	No
Likes and Dislikes Plugin <= 1.0.0 - Unauthenticated SQL Injection CVE-2025-5287	Network Scanner	Jun 27, 2025	High(7.5)	No
Moodle Jmol Filter 6.1 - Local File Inclusion CVE-2025-34031	Network Scanner	Jun 27, 2025	High(7.5)	No
Microsoft SharePoint - Remote Code Execution CVE-2019-0604	Network Scanner	Jun 27, 2025	Critical(9.8)	No
Apache Kyuubi - Configuration Exposure	Network Scanner	Jun 27, 2025	Medium	No
elFinder <= 2.1.47 - Command Injection CVE-2019-9194	Network Scanner	Jun 27, 2025	Critical(9.8)	No