Resources

Vulnerability & Exploit Database

This is the list of vulnerabilities you can detect with Pentest-Tools.com and the exploits currently available in the platform.

We detect more than 14.620 vulnerabilities with multiple tools (Network Scanner, Website Scanner, Wordpress Scanner, and more) and we also have 155 exploit modules in Sniper to validate the risk level of critical CVEs.

Display

Displaying 1 - 25 results out of 14.620

Pentest-Tools.com Vulnerabilities
Name
Detectable with
Detection added
Severity
Exploitable
with Sniper
SSL VPN Session HijackingNetwork Scanner

Critical(9.8)

No
Xerox Printers Multiple Vulnerabilities (XRX25-003)Network Scanner

High(7.6)

No
HP LaserJet Pro Printers DoS Vulnerability (HPSBPI03998)Network Scanner
N/A
No
WordPress WPForms Lite plugin <= 1.9.3.1 XSS VulnerabilityNetwork Scanner

Medium(6.4)

No
WordPress WPForms Contact Form Plugin <= 1.8.7.2 Unauthenticated Data Manipulation VulnerabilityNetwork Scanner

Medium(5.3)

No
OpenSSL RPKs Vulnerability (20250211) - WindowsNetwork Scanner
N/A
No
Discourse < 3.3.4 Multiple VulnerabilitiesNetwork Scanner

Medium(6.5)

No
Discourse 3.4.x < 3.4.0.beta5 Information Disclosure VulnerabilityNetwork Scanner

Low(2.2)

No
Canon Printers Multiple Vulnerabilities (CP2025-001)Network Scanner

High(9.8)

No
Cybersecurity Infrastructure Security Agency (CISA)Mitel MiCollab - Arbitary File ReadNetwork Scanner

Critical(2.7)

No
phpMyFAQ < 3.1.8 - Cross-Site ScriptingNetwork Scanner

Medium(6.1)

No
74cmsSE v3.4.1 - Arbitrary File ReadNetwork Scanner

High(7.5)

No
XWiki Platform - Unauthorized Document History AccessNetwork Scanner

Medium(5.3)

No
DevDojo Voyager <=1.8.0 - Arbitrary File ReadNetwork Scanner

High(5.7)

No
DevDojo Voyager <= 1.8.0 - Arbitrary File Write vulnerabilityNetwork Scanner

High(4.3)

No
DevDojo Voyager - Default loginNetwork Scanner

High

No
Vitest Browser Mode - Local File ReadNetwork Scanner

Medium(5.9)

No
DevDojo Voyager <=1.8.0 - Cross-Site ScriptingNetwork Scanner

Low(3.5)

No
TP-Link Archer A20 v3 Router - Cross-site ScriptingNetwork Scanner

Medium(4.8)

No
NodeBB < 0.7.3 XSS Vulnerability - Active CheckNetwork Scanner

Medium(6.1)

No
Yeti Platform < 2.1.12 - Server-Side Template Injection to RCENetwork Scanner

High

No
Nexus Repository 2 - Remote Code ExecutionNetwork Scanner

High(4.3)

No
D-Link DAP-2555 DoS Vulnerability (SAP10232)Network Scanner

Medium(6.5)

No
D-Link DIR-816 Devices Multiple Vulnerabilities (Jan 2025)Network Scanner

High(9.8)

No
Casdoor <=v1.811.0 - Unauthenticated SCIM OperationsNetwork Scanner

Critical

No