Exploitdb Exploits

31,346 exploits tracked across all sources.

Sort: Activity Stars
CVE-2020-7108 EXPLOITDB MEDIUM text
Learndash < 3.1.2 - XSS
The LearnDash LMS plugin before 3.1.2 for WordPress allows XSS via the ld-profile search field.
by Jinson Varghese Behanan
CVSS 5.4
CVE-2019-6146 EXPLOITDB MEDIUM text
Forcepoint Web Security < 8.5.4 - XSS
It has been reported that cross-site scripting (XSS) is possible in Forcepoint Web Security, version 8.x, via host header injection. CVSSv3.0: 5.3 (Medium) (/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)
by Prasenjit Kanti Paul
CVSS 6.1
CVE-2020-3837 EXPLOITDB HIGH text VERIFIED
iOS <13.3.1 - Memory Corruption
A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 13.3.1 and iPadOS 13.3.1, macOS Catalina 10.15.3, tvOS 13.3.1, watchOS 6.1.2. An application may be able to execute arbitrary code with kernel privileges.
by Google Security Research
CVSS 7.8
CVE-2020-37163 EXPLOITDB HIGH text
QuickDate 1.3.2 - SQL Injection
QuickDate 1.3.2 contains a SQL injection vulnerability that allows remote attackers to manipulate database queries through the '_located' parameter in the find_matches endpoint. Attackers can inject UNION-based SQL statements to extract database information including user credentials, database name, and system version.
by Ihsan Sencan
CVSS 8.2
EIP-2026-119674 EXPLOITDB text
ExpertGPS 6.38 - XML External Entity Injection
by Trent Gordon
EIP-2026-113050 EXPLOITDB text
VehicleWorkshop 1.0 - 'bookingid' SQL Injection
by Mehran Feizi
EIP-2026-110442 EXPLOITDB text
PackWeb Formap E-learning 1.0 - 'NumCours' SQL Injection
by Amel BOUZIANE-LEBLOND
CVE-2020-8656 EXPLOITDB CRITICAL text
EyesOfNetwork <5.3 - SQL Injection
An issue was discovered in EyesOfNetwork 5.3. The EyesOfNetwork API 2.4.2 is prone to SQL injection, allowing an unauthenticated attacker to perform various tasks such as authentication bypass via the username field to getApiKey in include/api_functions.php.
by Clément Billac
CVSS 9.8
EIP-2026-104269 EXPLOITDB text
Google Invisible RECAPTCHA 3 - Spoof Bypass
by Matamorphosis
EIP-2026-117120 EXPLOITDB text
ELAN Smart-Pad 11.10.15.1 - 'ETDService' Unquoted Service Path
by ZwX
EIP-2026-110130 EXPLOITDB text
Online Job Portal 1.0 - Remote Code Execution
by Ihsan Sencan
EIP-2026-110128 EXPLOITDB text
Online Job Portal 1.0 - Cross Site Request Forgery (Add User)
by Ihsan Sencan
EIP-2026-110127 EXPLOITDB text
Online Job Portal 1.0 - 'user_email' SQL Injection
by Ihsan Sencan
EIP-2026-102758 EXPLOITDB text
VIM 8.2 - Denial of Service (PoC)
by Dhiraj Mishra
CVE-2020-37173 EXPLOITDB HIGH text
AVideo Platform 8.1 - Info Disclosure
AVideo Platform 8.1 contains an information disclosure vulnerability that allows attackers to enumerate user details through the playlistsFromUser.json.php endpoint. Attackers can retrieve sensitive user information including email, password hash, and administrative status by manipulating the users_id parameter.
by Ihsan Sencan
CVSS 7.5
CVE-2020-37172 EXPLOITDB MEDIUM text
AVideo Platform 8.1 - CSRF
AVideo Platform 8.1 contains a cross-site request forgery vulnerability that allows attackers to reset user passwords by exploiting the password recovery mechanism. Attackers can craft malicious requests to the recoverPass endpoint using the user's recovery token to change account credentials without authentication.
by Ihsan Sencan
CVSS 5.3
CVE-2020-37158 EXPLOITDB MEDIUM text
AVideo Platform 8.1 - CSRF
AVideo Platform 8.1 contains a cross-site request forgery vulnerability that allows attackers to reset user passwords by exploiting the password recovery mechanism. Attackers can craft malicious requests to the recoverPass endpoint using the user's recovery token to change account credentials without authentication.
by Ihsan Sencan
CVSS 5.3
EIP-2026-103006 EXPLOITDB text
Socat 1.7.3.4 - Heap-Based Overflow (PoC)
by hieubl
CVE-2019-18634 EXPLOITDB HIGH text
Sudo <1.8.26 - Buffer Overflow
In Sudo before 1.8.26, if pwfeedback is enabled in /etc/sudoers, users can trigger a stack-based buffer overflow in the privileged sudo process. (pwfeedback is a default setting in Linux Mint and elementary OS; however, it is NOT the default for upstream and many other packages, and would exist only if enabled by an administrator.) The attacker needs to deliver a long string to the stdin of getln() in tgetpass.c.
by Joe Vennix
CVSS 7.8
CVE-2020-8504 EXPLOITDB MEDIUM text
School Management Software - CSRF
School Management Software PHP/mySQL through 2019-03-14 allows office_admin/?action=addadmin CSRF to add an administrative user.
by J3rryBl4nks
CVSS 6.5
CVE-2020-8512 EXPLOITDB MEDIUM text
IceWarp Webmail Server <11.4.4.1 - XSS
In IceWarp Webmail Server through 11.4.4.1, there is XSS in the /webmail/ color parameter.
by Lutfu Mert Ceylan
CVSS 6.1
CVE-2020-8641 EXPLOITDB HIGH text
Lotus Core CMS 1.0.1 - Path Traversal
Lotus Core CMS 1.0.1 allows authenticated Local File Inclusion of .php files via directory traversal in the index.php page_slug parameter.
by Daniel Monzón
CVSS 8.8
CVE-2019-25313 EXPLOITDB MEDIUM text
FlexNet Publisher 11.12.1 - CSRF
FlexNet Publisher 11.12.1 contains a cross-site request forgery vulnerability that allows attackers to create administrative user accounts without authentication. Attackers can craft a malicious HTML form to trick authenticated users into submitting a request that creates a new local admin account with a predefined password.
by Ismail Tasdelen
CVSS 4.0
EIP-2026-117571 EXPLOITDB text
Microsoft Windows Media Center WMV / WMA 6.3.9600.16384 - Code Execution
by Eduardo Braun Prado
EIP-2026-119386 EXPLOITDB text
Kibana 6.6.1 - CSV Injection
by Aamir Rehman
By Source
All 31,346 Exploitdb 50,135 Writeup 46,968 Nomisec 21,259 Metasploit 3,228 Github 2,444 Vulncheck_xdb 900 Inthewild 518 Gitlab 439 Gitee 415 Patchapalooza 312
By Language
text 31,346 ruby 5,959 python 5,832 c 3,570 perl 2,854 html 2,055 php 1,334 bash 459 java 360 javascript 260 c++ 247 shell 87 go 47 postscript 25 xml 24