Exploitdb Exploits

31,329 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-109185 EXPLOITDB text
LiveProjects 1.0 - SQL Injection
by Ihsan Sencan
EIP-2026-109183 EXPLOITDB text
LiveInvoices 1.0 - SQL Injection
by Ihsan Sencan
EIP-2026-109182 EXPLOITDB text
LiveCRM 1.0 - SQL Injection
by Ihsan Sencan
EIP-2026-108904 EXPLOITDB text
Joomla! Component Zap Calendar Lite 4.3.4 - SQL Injection
by Ihsan Sencan
EIP-2026-108881 EXPLOITDB text
Joomla! Component Twitch Tv 1.1 - SQL Injection
by Ihsan Sencan
EIP-2026-108861 EXPLOITDB text
Joomla! Component SP Movie Database 1.3 - SQL Injection
by Ihsan Sencan
EIP-2026-108770 EXPLOITDB text
Joomla! Component KissGallery 1.0.0 - SQL Injection
by Ihsan Sencan
EIP-2026-108226 EXPLOITDB text
Joomla! Component Calendar Planner 1.0.1 - SQL Injection
by Ihsan Sencan
EIP-2026-108016 EXPLOITDB text
iTech Travel Script 9.49 - SQL Injection
by Ihsan Sencan
EIP-2026-108007 EXPLOITDB text
iTech Multi Vendor Script 6.63 - SQL Injection
by Ihsan Sencan
EIP-2026-108004 EXPLOITDB text
iTech Movie Script 7.51 - SQL Injection
by Ihsan Sencan
EIP-2026-108001 EXPLOITDB text
iTech Job Script 9.27 - SQL Injection
by Ihsan Sencan
EIP-2026-107997 EXPLOITDB text
iTech Image Sharing Script 4.13 - SQL Injection
by Ihsan Sencan
EIP-2026-107995 EXPLOITDB text
iTech Freelancer Script 5.27 - SQL Injection
by Ihsan Sencan
EIP-2026-107993 EXPLOITDB text
iTech Dating Script 3.40 - SQL Injection
by Ihsan Sencan
EIP-2026-107990 EXPLOITDB text
iTech Classifieds Script 7.41 - SQL Injection
by Ihsan Sencan
EIP-2026-107986 EXPLOITDB text
iTech Business Networking Script 8.26 - SQL Injection
by Ihsan Sencan
EIP-2026-107984 EXPLOITDB text
iTech B2B Script 4.42 - SQL Injection
by Ihsan Sencan
EIP-2026-106751 EXPLOITDB text
eCardMAX 10.5 - SQL Injection
by Ihsan Sencan
EIP-2026-106432 EXPLOITDB text
DeWorkshop 1.0 - Arbitrary File Upload
by Ihsan Sencan
CVE-2017-6327 EXPLOITDB HIGH text VERIFIED
Symantec Message Gateway < 10.6.3-267 - Command Injection
The Symantec Messaging Gateway before 10.6.3-267 can encounter an issue of remote code execution, which describes a situation whereby an individual may obtain the ability to execute commands remotely on a target machine or in a target process. In this type of occurrence, after gaining access to the system, the attacker may attempt to elevate their privileges.
by Philip Pettersson
CVSS 8.8
CVE-2017-12786 EXPLOITDB CRITICAL text
Noviflow Noviware < 400.2.6 - Memory Corruption
Network interfaces of the cliengine and noviengine services, included in the NoviWare software distribution through NW400.2.6 and deployed on NoviSwitch devices, can be inadvertently exposed if an operator attempts to modify ACLs, because of a bug when ACL modifications are applied. This could be leveraged by remote, unauthenticated attackers to gain resultant privileged (root) code execution on the switch, because there is a stack-based buffer overflow during unserialization of packet data.
by François Goichon
CVSS 9.8
CVE-2017-3106 EXPLOITDB HIGH text VERIFIED
Adobe Flash Player <26.0.0.137 - RCE
Adobe Flash Player versions 26.0.0.137 and earlier have an exploitable type confusion vulnerability when parsing SWF files. Successful exploitation could lead to arbitrary code execution.
by Google Security Research
CVSS 8.8
EIP-2026-110617 EXPLOITDB text
Photogallery Project 1.0 - SQL Injection
by Ihsan Sencan
EIP-2026-110161 EXPLOITDB text
Online Quiz Project 1.0 - SQL Injection
by Ihsan Sencan
By Source
All 31,329 Writeup 59,016 Exploitdb 49,983 Nomisec 21,452 Metasploit 3,217 Github 2,523 Vulncheck_xdb 901 Inthewild 514 Gitlab 440 Gitee 415 Patchapalooza 312
By Language
text 31,329 python 5,912 ruby 5,906 c 3,561 perl 2,849 html 2,053 php 1,326 bash 459 java 362 c++ 250 javascript 215 shell 88 go 53 postscript 25 xml 24