Resources

Vulnerability & Exploit Database

This is the list of vulnerabilities you can detect with Pentest-Tools.com and the exploits currently available in the platform.

We detect more than 15.597 vulnerabilities with multiple tools (Network Scanner, Website Scanner, Wordpress Scanner, and more) and we also have 169 exploit modules in Sniper to validate the risk level of critical CVEs.

Display

Displaying 1 - 25 results out of 15.597

Pentest-Tools.com Vulnerabilities
Name	Detectable with	Detection added	Severity	Exploitable with Sniper
WordPress OneTone theme <= 3.0.6 – Unauthenticated Options Changes CVE-2019-17230	Network Scanner	Sep 18, 2025	Medium(5.3)	No
Transposh WordPress Translation <= 1.0.8 - Unauthenticated Settings Change CVE-2022-2461	Network Scanner	Sep 18, 2025	Medium(5.3)	No
WordPress OneTone theme <= 3.0.6 – Unauthenticated Stored XSS CVE-2019-17231	Network Scanner	Sep 18, 2025	Medium(6.1)	No
Stirling-PDF SSRF via Markdown CVE-2025-55161	Network Scanner	Sep 18, 2025	High(8.6)	No
Unauthenticated VNC Server	Network Scanner	Sep 18, 2025	Critical	No
Hoverfly <= 1.11.3 - Remote Code Execution CVE-2025-54123	Network Scanner	Sep 18, 2025	Critical(9.8)	No
WordPress Meta SEO <= 4.5.2 - Open Redirect CVE-2023-0876	Network Scanner	Sep 18, 2025	Medium(6.1)	No
WordPress WP Child Theme Generator < 1.1.3 - Arbitrary File Upload CVE-2023-47873	Network Scanner	Sep 18, 2025	Critical(9.1)	No
LiteSpeed Cache <= 5.7 - Unauthenticated Stored XSS CVE-2023-40000	Network Scanner	Sep 18, 2025	High(8.3)	No
Jan v0.4.12 'readFileSync' - Path Traversal CVE-2024-36857	Network Scanner	Sep 18, 2025	High(7.5)	No
Frontend File Manager < 21.3 - Unauthenticated File Renaming CVE-2022-3124	Network Scanner	Sep 18, 2025	Medium(5.3)	No
WordPress ProfilePress 3.0-3.1.3 - Arbitrary File Upload CVE-2021-34624	Network Scanner	Sep 18, 2025	Critical(9.8)	No
Nocobase - Config	Network Scanner	Sep 18, 2025	Medium	No
WPEngine WPGraphQL 0.2.3 - Unauthenticated User Information Disclosure CVE-2019-9880	Network Scanner	Sep 18, 2025	Critical(9.1)	No
Dell Laser Printer - Unauthenticated	Network Scanner	Sep 18, 2025	High	No
Contact Form Plugin by Fluent Forms < 5.1.17 - Unauthenticated Limited Privilege Escalation CVE-2024-2771	Network Scanner	Sep 18, 2025	Critical(9.8)	No
AMR Printer Management Dashboard - Exposure	Network Scanner	Sep 18, 2025	Medium	No
iboss Secure Web Gateway - Stored Cross-Site Scripting CVE-2024-3378	Network Scanner	Sep 18, 2025	Medium(4.3)	No
Tautulli < 2.16.0 Multiple Vulnerabilities - Active Check CVE-2025-58760 CVE-2025-58761 CVE-2025-58762 CVE-2025-58763	Network Scanner	Sep 17, 2025	High(8)	No
Mahara < 22.10.6, 23.04.6, 24.04.1 XSS Vulnerability CVE-2024-35203	Network Scanner	Sep 17, 2025	Medium(6.1)	No
Mahara 24.04 < 24.04.2, 23.04 < 23.04.7 XSS Vulnerability CVE-2024-39923	Network Scanner	Sep 17, 2025	Medium(6.1)	No
Tautulli < 2.16.0 Multiple Vulnerabilities - Version Check CVE-2025-58760 CVE-2025-58761 CVE-2025-58762 CVE-2025-58763	Network Scanner	Sep 17, 2025	High(8)	No
Erlang/OTP (Erlang OTP) Multiple Vulnerabilities (Sep 2025) - Windows CVE-2025-48038 CVE-2025-48039 CVE-2025-48040 CVE-2025-48041	Network Scanner	Sep 17, 2025	N/A	No
Erlang/OTP (Erlang OTP) Buffer Read Overflow Vulnerability (Sep 2025) - Windows CVE-2025-58050	Network Scanner	Sep 17, 2025	Critical(9.1)	No
Mahara < 24.04.9 Information Disclosure Vulnerability CVE-2025-29992	Network Scanner	Sep 17, 2025	High(7.5)	No