Resources

Vulnerability & Exploit Database

This is the list of vulnerabilities that can be detected with Pentest-Tools.com and the exploits that are currently available in the platform.

We detect more than 11.393 vulnerabilities with multiple tools (Network Scanner, Website Scanner, Wordpress Scanner, and more) and we also have 141 exploit modules in Sniper to validate the risk level of critical CVEs.

Display

Displaying 1 - 25 results out of 11.393

Pentest-Tools.com Vulnerabilities
Name
CVE
Detectable
with
Detection added
Severity
CVSSv3
score
Exploitable
with Sniper
Netgear-WN604 downloadFile.php - Information DisclosureNetwork Scanner

Medium

5.3No
EasySpider 0.6.2 - Arbitrary File ReadNetwork Scanner

Medium

4.3No
H3C ER8300G2-X - Password DisclosureNetwork Scanner

Critical

9.8No
TOTOLINK EX1800T TOTOLINK EX1800T - Command InjectionNetwork Scanner
---
---No
BlueNet Technology Clinical Browsing System 1.2.1 - Sql InjectionNetwork Scanner

Medium

6.3No
Magento - XML External Entity InjectionNetwork Scanner

Critical

9.8Yes
WPS Hide Login < 1.9.16.4 - Hidden Login Page DisclosureNetwork Scanner

Medium

6.1No
Next.js - Server Side Request Forgery (SSRF)Network Scanner

High

7.5No
JeecgBoot JimuReport - Template injectionNetwork Scanner

Critical

9.8No
Linx Sphere - Directory TraversalNetwork Scanner

High

7.5No
Electrolink FM/DAB/TV Transmitter (controlloLogin.js) - Credentials DisclosureNetwork Scanner

High

7.5No
XWiki - Open RedirectNetwork Scanner

Medium

6.1No
NS-ASG Application Security Gateway 6.3 - Sql InjectionNetwork Scanner

Medium

6.3No
WWBN AVideo 11.6 - Cross-Site ScriptingNetwork Scanner

Medium

6.1No
mojoPortal v.2.7.0.0 - Cross-Site ScriptingNetwork Scanner

Medium

6.1No
MasterStudy LMS WordPress Plugin <= 3.2.5 - SQL InjectionNetwork Scanner

Critical

9.8No
ServiceNow - Incomplete Input ValidationNetwork Scanner

Critical

9.8No
TrakSYS 11.x.x - Sensitive Data ExposureNetwork Scanner

Medium

5.3No
Chamilo LMS <= 1.11.24 - Remote Code ExecutionNetwork Scanner

Medium

6.1No
Edito CMS - Sensitive Data LeakNetwork Scanner

High

7.5No
Hash Form <= 1.1.0 - Arbitrary File UploadNetwork Scanner

Critical

9.8No
EduSoho < v22.4.7 - Local File Inclusion (CNVD-2023-03903)Network Scanner
---
---No
Label Studio - Sensitive Information ExposureNetwork Scanner

High

7.5No
Leadsec VPN - Arbitrary File Read (CNVD-2021-64035)Network Scanner
---
---No
Linksys RE7000 - Command InjectionNetwork Scanner
---
---No