Recent Advisories

Severity ID Title Vendor Product Date Type
CRITICAL 9.8 MSF:EXPLOIT-MULTI-

Remote Code Execution Vulnerability in XWiki Platform (CVE-2025-24893)_MSF:EXPLOIT-MULTI-HTTP-XWIKI_UNAUTH_RCE_CVE_2025_24893-

This module exploits a template injection vulnerability in the the XWiki Platform. XWiki includes a macro...

N/A N/A METASPLOIT
MEDIUM 6.5 MSF:AUXILIARY-SCANNER-

Pretalx Arbitrary File Read/Limited File Write_MSF:AUXILIARY-SCANNER-HTTP-PRETALX_FILE_READ_CVE_2023_28459-

This module exploits functionality in Pretalx that export conference schedule as zipped file. The Pretalx...

N/A N/A METASPLOIT
MEDIUM 4.3 MSF:EXPLOIT-LINUX-

Pretalx Limited File Write to Remote Code Execution_MSF:EXPLOIT-LINUX-HTTP-PRETALX_RCE_CVE_2023_28458-

This module exploits CVE-2023-28458, a limited file write in Pretalx, up to...

N/A N/A METASPLOIT
NONE MSF:EXPLOIT-OSX-

Remote for Mac 2025.6 Unauthenticated UDP Keyboard RCE_MSF:EXPLOIT-OSX-MISC-REMOTE_FOR_MAC_UDP_RCE-

This module exploits an unauthenticated remote code execution vulnerability in Remote for Mac 2025.6. When the "Allow...

N/A N/A METASPLOIT
CRITICAL 10 MSF:AUXILIARY-ADMIN-

mySCADA myPRO Manager Credential Harvester (CVE-2025-24865 and CVE-2025-22896)_MSF:AUXILIARY-ADMIN-SCADA-MYPRO_MGR_CREDS-

Credential Harvester in MyPRO Manager <= v1.3 from mySCADA. The product suffers from...

N/A N/A METASPLOIT
NONE MSF:AUXILIARY-ADMIN-

Get NAA Credentials_MSF:AUXILIARY-ADMIN-SCCM-GET_NAA_CREDENTIALS-

This module attempts to retrieve the Network Access Account(s), if configured, from the SCCM server. ...

N/A N/A METASPLOIT
CRITICAL 10 MSF:AUXILIARY-SCANNER-

NetAlertX File Read Vulnerability_MSF:AUXILIARY-SCANNER-HTTP-NETALERTX_FILE_READ-

This module exploits improper authentication in logs.php endpoint. An unathenticated attacker can request log...

N/A N/A METASPLOIT
CRITICAL 9.1 MSF:AUXILIARY-SCANNER-

SimpleHelp Path Traversal Vulnerability CVE-2024-57727_MSF:AUXILIARY-SCANNER-HTTP-SIMPLEHELP_TOOLBOX_PATH_TRAVERSAL-

There exists a path traversal vulnerability in the /toolbox-resource endpoint that enables unauthenticated ...

N/A N/A METASPLOIT
NONE MSF:AUXILIARY-SCANNER-

SonicWall HTTP Login Scanner_MSF:AUXILIARY-SCANNER-SONICWALL-SONICWALL_LOGIN-

This module adds HTTP Login scanning for SonicWall NSv. It allows scanning both admin and user accounts. Module Options msf > use auxiliary/scan...

N/A N/A METASPLOIT
NONE MSF:AUXILIARY-SERVER-

Microsoft Windows SMB to LDAP Relay_MSF:AUXILIARY-SERVER-RELAY-SMB_TO_LDAP-

This module supports running an SMB server which validates credentials, and then attempts to execute a relay attack against an LDAP serve...

N/A N/A METASPLOIT