Exploitdb Exploits

2,814 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-112440 EXPLOITDB perl
Stock Photo Selling 1.0 - SQL Injection
by Ihsan Sencan
CVE-2017-14703 EXPLOITDB CRITICAL perl
Cash Back Comparison Script 1.0 - SQL Injection
SQL injection vulnerability in Cash Back Comparison Script 1.0 allows remote attackers to execute arbitrary SQL commands via the PATH_INFO to search/.
by Ihsan Sencan
CVSS 9.8
CVE-2017-7285 EXPLOITDB HIGH perl
MikroTik <6.38.5 - DoS
A vulnerability in the network stack of MikroTik Version 6.38.5 released 2017-03-09 could allow an unauthenticated remote attacker to exhaust all available CPU via a flood of TCP RST packets, preventing the affected router from accepting new TCP connections.
by FarazPajohan
CVSS 7.5
EIP-2026-106663 EXPLOITDB perl
e107 < 2.1.4 - 'keyword' Blind SQL Injection
by StAkeR
EIP-2026-105136 EXPLOITDB perl
Alstrasoft Template Seller Pro 3.25e - 'tempid' SQL Injection
by Ihsan Sencan
EIP-2026-108019 EXPLOITDB perl
iTechscripts Freelancer Script 5.11 - 'sk' SQL Injection
by v3n0m
EIP-2026-115817 EXPLOITDB perl
Microsoft Windows Server 2008/2012 - LDAP RootDSE Netlogon Denial of Service
by Todor Donev
EIP-2026-106747 EXPLOITDB perl VERIFIED
EC-CUBE 2.12.6 - Server-Side Request Forgery
by Wadeek
EIP-2026-100770 EXPLOITDB perl VERIFIED
Cgiemail 1.6 - Source Code Disclosure
by Finbar Crago
EIP-2026-113038 EXPLOITDB perl
VegaDNS 0.13.2 - Remote Command Injection
by Wireghoul
EIP-2026-115606 EXPLOITDB perl
MediaInfo 0.7.61 - Crash (PoC)
by Mohammad Reza Espargham
EIP-2026-116596 EXPLOITDB perl
Xion Audio Player 1.5 (build 160) - '.mp3' Crash (PoC)
by Charley Celice
EIP-2026-116992 EXPLOITDB perl VERIFIED
CoolPlayer (Standalone) build 2.19 - '.m3u' Local Stack Overflow
by Charley Celice
EIP-2026-116421 EXPLOITDB perl
Toshiba Viewer v2 p3console - Local Denial of Service
by JaMbA
EIP-2026-111673 EXPLOITDB perl
Ramui Forum Script 9.0 - SQL Injection
by bd0rk
CVE-2015-7944 EXPLOITDB HIGH perl
Ganeti <2.9.7-2.15.2 - DoS
The RESTful control interface (aka RAPI or ganeti-rapi) in Ganeti before 2.9.7, 2.10.x before 2.10.8, 2.11.x before 2.11.8, 2.12.x before 2.12.6, 2.13.x before 2.13.3, 2.14.x before 2.14.2, and 2.15.x before 2.15.2, when used in SSL mode, allows remote attackers to cause a denial of service (resource consumption) via SSL parameter renegotiation.
by Pierre Kim
CVSS 7.5
CVE-2015-7945 EXPLOITDB HIGH perl
Ganeti <2.9.7-2.15.2 - Info Disclosure
The RESTful control interface (aka RAPI or ganeti-rapi) in Ganeti before 2.9.7, 2.10.x before 2.10.8, 2.11.x before 2.11.8, 2.12.x before 2.12.6, 2.13.x before 2.13.3, 2.14.x before 2.14.2, and 2.15.x before 2.15.2 allows remote attackers to obtain the DRBD secret via instance information job results.
by Pierre Kim
CVSS 7.5
EIP-2026-110426 EXPLOITDB perl
Ovidentia Widgets 1.0.61 - Remote Command Execution
by bd0rk
EIP-2026-110423 EXPLOITDB perl
Ovidentia NewsLetter Module 2.2 - 'admin.php' Remote File Inclusion
by bd0rk
CVE-2015-7808 EXPLOITDB perl VERIFIED
vBulletin 5 Connect <5.1.9 - Code Injection
The vB_Api_Hook::decodeArguments method in vBulletin 5 Connect 5.1.2 through 5.1.9 allows remote attackers to conduct PHP object injection attacks and execute arbitrary PHP code via a crafted serialized object in the arguments parameter to ajax/api/hook/decodeArguments.
by Mohammad Reza Espargham
EIP-2026-117998 EXPLOITDB perl VERIFIED
TECO SG2 LAD Client 3.51 - '.gen' Overwrite Buffer Overflow (SEH)
by LiquidWorm
EIP-2026-117997 EXPLOITDB perl
TECO JN5 L510-DriveLink 1.482 - '.lf5' Overwrite Buffer Overflow (SEH)
by LiquidWorm
CVE-2015-7805 EXPLOITDB perl
libsndfile 1.0.25 - Buffer Overflow
Heap-based buffer overflow in libsndfile 1.0.25 allows remote attackers to have unspecified impact via the headindex value in the header in an AIFF file.
by Marco Romano
EIP-2026-117424 EXPLOITDB perl
Logitech Webcam Software 1.1 - 'eReg.exe' Local Buffer Overflow (SEH Unicode)
by Robbie Corley
EIP-2026-118049 EXPLOITDB perl VERIFIED
VeryPDF HTML Converter 2.0 - Local Buffer Overflow (SEH/ToLower() Bypass)
by Robbie Corley
By Source
All 2,814 Exploitdb 50,123 Writeup 46,583 Nomisec 21,106 Metasploit 3,189 Github 2,211 Vulncheck_xdb 900 Inthewild 518 Gitlab 438 Gitee 415 Patchapalooza 312
By Language
text 31,341 ruby 5,920 python 5,723 c 3,550 perl 2,854 html 2,053 php 1,332 bash 459 java 359 javascript 256 c++ 245 shell 67 go 41 postscript 25 xml 24