CVE & Exploit Intelligence Database

Updated 6h ago

Search and track vulnerabilities with real-time exploit intelligence. Cross-reference CVEs against public exploits from ExploitDB, Metasploit, GitHub, and Nuclei — with CVSS and EPSS scoring, CISA KEV monitoring, and AI-powered exploit analysis.

338,223 CVEs tracked 53,271 with exploits 4,730 exploited in wild 1,542 CISA KEV 3,929 Nuclei templates 37,826 vendors 42,547 researchers
1,290 results Clear all
CVE-2018-19078 9.8 CRITICAL EPSS 0.00
Opticam I5 Application Firmware - Insufficiently Protected Credentials
An issue was discovered on Foscam Opticam i5 devices with System Firmware 1.5.2.11 and Application Firmware 2.21.1.128. The response to an ONVIF media GetStreamUri request contains the administrator username and password.
CWE-522 Nov 07, 2018
CVE-2018-17922 9.8 CRITICAL EPSS 0.00
Circontrol Circarlife Firmware - Insufficiently Protected Credentials
Circontrol CirCarLife all versions prior to 4.3.1, the PAP credentials of the device are stored in clear text in a log file that is accessible without authentication.
CWE-522 Nov 02, 2018
CVE-2018-8858 9.8 CRITICAL EPSS 0.00
VGo Robot <3.0.3.53662 - Info Disclosure
If an attacker has access to the firmware from the VGo Robot (Versions 3.0.3.52164 and 3.0.3.53662. Prior versions may also be affected) they may be able to extract credentials.
CWE-522 Oct 30, 2018
CVE-2018-18754 9.8 CRITICAL EPSS 0.00
Zyxel Vmg3312-b10b Firmware - Insufficiently Protected Credentials
ZyXEL VMG3312-B10B 1.00(AAPP.7) devices have a backdoor root account with the tTn3+Z@!Sr0O+ password hash in the etc/default.cfg file.
CWE-522 Oct 29, 2018
CVE-2018-18656 7.8 HIGH EPSS 0.00
Purevpn < 6.1.0 - Insufficiently Protected Credentials
The PureVPN client before 6.1.0 for Windows stores Login Credentials (username and password) in cleartext. The location of such files is %PROGRAMDATA%\purevpn\config\login.conf. Additionally, all local users can read this file.
CWE-522 Oct 26, 2018
CVE-2018-9280 4.9 MEDIUM EPSS 0.00
Eaton 9px Ups Firmware - Insufficiently Protected Credentials
An issue was discovered on Eaton UPS 9PX 8000 SP devices. The appliance discloses the SNMP version 3 user's password. The web page displayed by the appliance contains the password in cleartext. Passwords of the read and write users could be retrieved by browsing the source code of the webpage.
CWE-522 Oct 24, 2018
CVE-2018-9279 4.9 MEDIUM EPSS 0.00
Eaton 9px Ups Firmware - Insufficiently Protected Credentials
An issue was discovered on Eaton UPS 9PX 8000 SP devices. The appliance discloses the user's password. The web page displayed by the appliance contains the password in cleartext. Passwords could be retrieved by browsing the source code of the webpage.
CWE-522 Oct 24, 2018
CVE-2018-11079 5.5 MEDIUM EPSS 0.00
EMC Secure Remote Services - Insufficiently Protected Credentials
Dell EMC Secure Remote Services, versions prior to 3.32.00.08, contains a Plaintext Password Storage vulnerability. Database credentials are stored in plaintext in a configuration file. An authenticated malicious user with access to the configuration file may obtain the exposed password to gain access to the application database.
CWE-522 Oct 18, 2018
CVE-2018-12383 5.5 MEDIUM EPSS 0.00
Firefox <62 - Info Disclosure
If a user saved passwords before Firefox 58 and then later set a master password, an unencrypted copy of these passwords is still accessible. This is because the older stored password file was not deleted when the data was copied to a new format starting in Firefox 58. The new master password is added only on the new file. This could allow the exposure of stored password data outside of user expectations. This vulnerability affects Firefox < 62, Firefox ESR < 60.2.1, and Thunderbird < 60.2.1.
CWE-522 Oct 18, 2018
CVE-2018-10824 9.8 CRITICAL 1 PoC Analysis EPSS 0.44
Dlink Dwr-116 Firmware < 1.06 - Path Traversal
An issue was discovered on D-Link DWR-116 through 1.06, DIR-140L through 1.02, DIR-640L through 1.02, DWR-512 through 2.02, DWR-712 through 2.02, DWR-912 through 2.02, DWR-921 through 2.02, and DWR-111 through 1.01 devices. The administrative password is stored in plaintext in the /tmp/csman/0 file. An attacker having a directory traversal (or LFI) can easily get full router access.
CWE-22 Oct 17, 2018
CVE-2018-17900 9.8 CRITICAL EPSS 0.00
Yokogawa STARDOM - Info Disclosure
Yokogawa STARDOM Controllers FCJ, FCN-100, FCN-RTU, FCN-500, All versions R4.10 and prior, The web application improperly protects credentials which could allow an attacker to obtain credentials for remote access to controllers.
CWE-522 Oct 12, 2018
CVE-2017-1231 4.4 MEDIUM EPSS 0.00
IBM Bigfix Platform < 9.5.9 - Insufficiently Protected Credentials
IBM BigFix Platform 9.5 - 9.5.9 stores user credentials in plain in clear text which can be read by a local user. IBM X-Force ID: 123910.
CWE-522 Oct 12, 2018
CVE-2018-13789 7.5 HIGH EPSS 0.00
Descor Infocad FM <3.1.0.0 - Info Disclosure
An issue was discovered in Descor Infocad FM before 3.1.0.0. An unauthenticated web service allows the retrieval of files on the web server and on reachable SMB servers.
CWE-522 Oct 10, 2018
CVE-2018-18074 7.5 HIGH 1 Writeup EPSS 0.00
Python Requests < 2.20.0 - Insufficiently Protected Credentials
The Requests package before 2.20.0 for Python sends an HTTP Authorization header to an http URI upon receiving a same-hostname https-to-http redirect, which makes it easier for remote attackers to discover credentials by sniffing the network.
CWE-522 Oct 09, 2018
CVE-2018-14081 9.8 CRITICAL EPSS 0.01
D-Link DIR-809 - Info Disclosure
An issue was discovered on D-Link DIR-809 A1 through 1.09, A2 through 1.11, and Guest Zone through 1.09 devices. Device passwords, such as the admin password and the WPA key, are stored in cleartext.
CWE-522 Oct 09, 2018
CVE-2018-17871 6.5 MEDIUM EPSS 0.01
Verba Collaboration <9.2.1.5545 - Info Disclosure
Verba Collaboration Compliance and Quality Management Platform before 9.2.1.5545 has Incorrect Access Control.
CWE-522 Oct 04, 2018
CVE-2017-2751 4.6 MEDIUM 1 PoC Analysis EPSS 0.04
HP 240 G1 Firmware < f.48 - Insufficiently Protected Credentials
A BIOS password extraction vulnerability has been reported on certain consumer notebooks with firmware F.22 and others. The BIOS password was stored in CMOS in a way that allowed it to be extracted. This applies to consumer notebooks launched in early 2014.
CWE-522 Oct 03, 2018
CVE-2018-17969 9.8 CRITICAL EPSS 0.00
Samsung Scx-6545x Firmware - Insufficiently Protected Credentials
Samsung SCX-6545X V2.00.03.01 03-23-2012 devices allows remote attackers to discover cleartext credentials via iso.3.6.1.4.1.236.11.5.11.81.10.1.5.0 and iso.3.6.1.4.1.236.11.5.11.81.10.1.6.0 SNMP requests.
CWE-522 Oct 03, 2018
CVE-2018-11752 5.5 MEDIUM EPSS 0.00
Puppet Cisco Ios < 0.4.0 - Insufficiently Protected Credentials
Previous releases of the Puppet cisco_ios module output SSH session debug information including login credentials to a world readable file on every run. These issues have been resolved in the 0.4.0 release.
CWE-522 Oct 02, 2018
CVE-2018-11748 7.8 HIGH EPSS 0.00
Puppet Device Manager < 2.7.0 - Insufficiently Protected Credentials
Previous releases of the Puppet device_manager module creates configuration files containing credentials that are world readable. This issue has been resolved as of device_manager 2.7.0.
CWE-522 Oct 02, 2018

Investigate

Critical + Public Exploits Exploited in Wild + PoC High EPSS (>=0.7) + PoC With Nuclei Templates Latest Public Exploits

Ecosystems

Linux Maven Packagist PyPI npm Go ecosystem RubyGems crates.io NuGet Hex SwiftURL GitHub Actions

Reference Indexes

Exploit Database Researchers Vendors CWE Categories

Recent Blog Posts

CVE-2026-4105: systemd-machined Privilege Escalation - 72 Minutes from Drop to Bypass
Mar 13, 2026
CVE-2026-28391: OpenClaw Command Injection - The Day I Hacked Myself
Mar 09, 2026
Introducing FuzzForge: Autonomous Source-Code Fuzzing - Finding Bugs in nginx in 112 Minutes
Mar 08, 2026
CVE-2025-68670 Part 2: From Crash to RCE - The One That Fought Back (and Lost)
Mar 04, 2026
CVE-2025-68670: Pre-Auth xrdp Overflow - The One Where the Protocol Fought Back
Mar 04, 2026
CVE-2025-62507: Redis Stack Overflow to RCE in 68 Minutes - Then We Turned ASLR On
Mar 03, 2026
 View all posts →

CVEForge Labs

CVE-2016-15057 CRITICAL
Apache Continuum - Command Injection
CVE-2021-32824 CRITICAL
Apache Dubbo <2.6.10-2.7.10 - RCE
CVE-2023-42117 CRITICAL
Exim < 4.96.2 - Remote Code Execution
CVE-2024-31866 CRITICAL
Apache Zeppelin <0.11.1 - RCE
CVE-2024-37288 CRITICAL
Elastic Kibana - Insecure Deserialization
CVE-2024-43115 HIGH
Apache DolphinScheduler <3.2.2 - RCE
CVE-2024-45409 CRITICAL
Ruby-SAML <=1.16.0 - Auth Bypass
CVE-2024-56143 HIGH
Strapi < 5.5.2 - IDOR
CVE-2025-10622 HIGH
Red Hat Satellite - Command Injection
CVE-2025-11539 CRITICAL
Grafana Image Renderer - RCE
 View all labs →

KEV Gaps

CVE-2026-3910
Google Chrome <146.0.7680.75 - RCE
 CVE-2026-3909
Google Chrome < 146.0.7680.75 - Out-of-Bounds Access
 CVE-2026-1603
Ivanti Endpoint Manager < 2024 - Authentication Bypass
 CVE-2023-43000
macOS Ventura <13.5-iPadOS <16.6-Safari <16.6 - Use After Free
 CVE-2021-30952
tvOS <15.2 - RCE
 CVE-2021-22681
Rockwell Automation Studio 5000 <21 - Path Traversal
 CVE-2026-22719
VMware Aria Operations - Command Injection
 CVE-2026-25108
FileZen - Command Injection
 CVE-2026-22769
Dell RecoverPoint <6.0.3.1 HF1 - Auth Bypass
 CVE-2021-22175
Gitlab < 13.6.7 - SSRF
 CVE-2024-7694
Teamt5 Threatsonar Anti-ransomware < 3.5.0 - Unrestricted File Upload
 CVE-2020-7796
Zimbra Collaboration Suite <8.8.15 Patch 7 - SSRF