S4E:Equality - Free Vulnerability Scanners

Online pentest tools to scan websites and applications for vulnerabilities, for free.

We have ~1170 tools and adding new each day

Tool Name Desc Asset Verify API
Contact Form by Supsystic < 1.7.15 - Reflected Cross-Site scripting (XSS) CVE-2021-24276 Scanner Remote attacker can perform a reflected cross site scripting attack (XSS) by injecting malicious payload. Yes Yes
AcyMailing < 7.5.0 - Open Redirect Vulnerability CVE-2021-24288 Scanner There is an open redirect vulnerability in AcyMailing < 7.5.0. Yes Yes
Photo Gallery < 1.5.69 - Multiple Reflected Cross-Site Scripting (XSS) CVE-2021-24291 Scanner Remote attacker can perform a reflected cross site scripting attack (XSS) by injecting malicious payload. Yes Yes
Simple Giveaways < 2.36.2 - Reflected Cross-Site Scripting (XSS) CVE-2021-24298 Scanner Remote attacker can perform a reflected cross site scripting attack (XSS) by injecting malicious payload. Yes Yes
Car Repair Services < 4.0 - Reflected Cross-Site Scripting (XSS) CVE-2021-24335 Scanner Remote attacker can perform a reflected cross site scripting attack (XSS) by injecting malicious payload. Yes Yes
WordPress Plugin WP Statistics 13.0-.7 - Unauthenticated Time-Based Blind SQL Injection CVE-2021-24340 Scanner WordPress Plugin WP Statistics 13.0-.7 allows SQL Injection vulnerability. Yes Yes
JNews < 8.0.6 - Reflected Cross-Site Scripting (XSS) CVE-2021-24342 Scanner Remote attacker can perform a reflected cross site scripting attack (XSS) by injecting malicious payload. Yes Yes
Jannah < 5.4.4 Reflected Cross Site Scripting XSS CVE-2021-24364 Scanner Remote attacker can perform a reflected cross site scripting attack (XSS) by injecting malicious payload. Yes Yes
FoodBakery < 2.2 - Reflected Cross-Site Scripting (XSS) Vulnerability CVE-2021-24389 Scanner Remote attacker can perform a reflected cross site scripting attack (XSS) by injecting malicious payload. Yes Yes
Jannah < 5.4.5 - Reflected Cross-Site Scripting (XSS) CVE-2021-24407 Scanner Remote attacker can perform a reflected cross site scripting attack (XSS) by injecting malicious payload. Yes Yes
Onair2 < 3.9.9.2 & KenthaRadio < 2.0.2 - Unauthenticated RFI and SSRF CVE-2021-24472 Scanner In Onair2 < 3.9.9.2 & KenthaRadio < 2.0.2, there are Unauthenticated RFI and SSRF vulnerabilities. Yes Yes
Calendar Event Multi View < 1.4.01 - Reflected XSS CVE-2021-24498 Scanner Remote attacker can perform a reflected cross site scripting attack (XSS) by injecting malicious payload. Yes Yes
Workreap WordPress theme - unauthenticated RCE CVE-2021-24499 Scanner In Workreap WordPress theme, there is a Remote Code Execution vulnerability. Yes Yes
Confluence Server OGNL injection - RCE Vulnerability CVE-2021-26084 Scanner In Confluence Server, there is a Remote Code Execution vulnerability. Yes Yes
EPrints 3.4.2 XSS Vulnerability CVE-2021-26475 Scanner Remote attacker can perform a reflected cross site scripting attack (XSS) by injecting malicious payload. Yes Yes

Need a Full Assessment?

Get help from professional hackers. Learn about our penetration test service now!

Request Pentest Service