• Home
  • Vulnerability & Exploit Database

Vulnerability & Exploit Database

Try Surface Command Get a continuous 360° view of your attack surface

A curated repository of vetted computer software exploits and exploitable vulnerabilities.

Technical details for over 180,000 vulnerabilities and 4,000 exploits are available for security professionals and researchers to review. The exploits are all included in the Metasploit framework. Our vulnerability and exploit database is updated frequently and contains the most recent security research.

Results 281 - 300 of 261,951 in total
WordPress Plugin: booking-and-rental-manager-for-woocommerce: CVE-2025-47585: Missing Authorization
Published: May 22, 2025 | Severity: 6
vulnerability
Explore
WordPress Plugin: tablepress: CVE-2025-5096: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Published: May 22, 2025 | Severity: 5
vulnerability
Explore
Debian: CVE-2025-3887: gst-plugins-bad1.0 -- security update
Published: May 22, 2025 | Severity: 10
vulnerability
Explore
WordPress Plugin: tournamatch: CVE-2025-4594: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Published: May 22, 2025 | Severity: 5
vulnerability
Explore
WordPress Plugin: redi-restaurant-reservation: CVE-2025-48286: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Published: May 22, 2025 | Severity: 7
vulnerability
Explore
SUSE: CVE-2025-3887: SUSE Linux Security Advisory
Published: May 22, 2025 | Severity: 10
vulnerability
Explore
Debian: CVE-2023-47466: taglib -- security update
Published: May 22, 2025 | Severity: 7
vulnerability
Explore
Red Hat: CVE-2025-3887: GStreamer: GStreamer H265 Codec Parsing Stack-based Buffer Overflow Remote Code Execution Vulnerability (Multiple Advisories)
Published: May 22, 2025 | Severity: 10
vulnerability
Explore
WordPress Plugin: wp-smtp: CVE-2025-1123: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Published: May 22, 2025 | Severity: 6
vulnerability
Explore
Debian: CVE-2025-47779: asterisk -- security update
Published: May 22, 2025 | Severity: 4
vulnerability
Explore
FreeBSD: VID-5BAA64D6-37EE-11F0-A116-8447094A420F (CVE-2025-4575): OpenSSL -- Inverted security logic in x509 app
Published: May 22, 2025 | Severity: 8
vulnerability
Explore
WordPress Plugin: advanced-database-cleaner-pro: CVE-2025-46256: Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')
Published: May 22, 2025 | Severity: 4
vulnerability
Explore
Gitlab Gitlab: CVE-2025-3111: Allocation of Resources Without Limits or Throttling
Published: May 22, 2025 | Severity: 7
vulnerability
Explore
Gitlab Gitlab: CVE-2024-12093: Improper Validation of Consistency within Input
Published: May 22, 2025 | Severity: 7
vulnerability
Explore
Debian: CVE-2025-47780: asterisk -- security update
Published: May 22, 2025 | Severity: 9
vulnerability
Explore
FreeBSD: VID-45EB98D6-3B13-11F0-97F7-B42E991FC52E (CVE-2025-4123): grafana -- XSS vulnerability
Published: May 22, 2025 | Severity: 9
vulnerability
Explore
Debian: CVE-2025-5024: gnome-remote-desktop -- security update
Published: May 22, 2025 | Severity: 7
vulnerability
Explore
Oracle Linux: CVE-2025-3887: ELSA-2025-8183: gstreamer1-plugins-bad-free security update (IMPORTANT) (Multiple Advisories)
Published: May 22, 2025 | Severity: 10
vulnerability
Explore
Debian: CVE-2025-47947: modsecurity-apache -- security update
Published: May 21, 2025 | Severity: 8
vulnerability
Explore
Red Hat JBossEAP: Improper Restriction of XML External Entity Reference (CVE-2025-4949)
Published: May 21, 2025 | Severity: 5
vulnerability
Explore