Text Exploits

31,392 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-105941 EXPLOITDB text
ClipperCMS 1.3.0 - Multiple SQL Injections
by Curesec Research Team
EIP-2026-105794 EXPLOITDB text
CF Image Host 1.65 - PHP Command Injection
by hyp3rlinx
EIP-2026-104482 EXPLOITDB text
VideoLAN VLC Media Player Web Interface 2.2.1 - Metadata Title Cross-Site Scripting
by Andrea Sindoni
CVE-2015-5999 EXPLOITDB text
D-Link DIR-816L <2.06.B09_BETA - CSRF
Multiple cross-site request forgery (CSRF) vulnerabilities in the D-Link DIR-816L Wireless Router with firmware before 2.06.B09_BETA allow remote attackers to hijack the authentication of administrators for requests that (1) change the admin password, (2) change the network policy, or (3) possibly have other unspecified impact via crafted requests to hedwig.cgi and pigwidgeon.cgi.
by Bhadresh Patel
EIP-2026-101239 EXPLOITDB text
D-Link DIR-890L/R - Multiple Buffer Overflow Vulnerabilities
by Samuel Huntley
EIP-2026-101238 EXPLOITDB text
D-Link DIR-880L - Multiple Buffer Overflow Vulnerabilities
by Samuel Huntley
EIP-2026-101237 EXPLOITDB text
D-Link DIR-866L - Multiple Buffer Overflow Vulnerabilities
by Samuel Huntley
EIP-2026-101236 EXPLOITDB text
D-Link DIR-825 (vC) - Multiple Vulnerabilities
by Samuel Huntley
EIP-2026-101235 EXPLOITDB text
D-Link DIR-818W - Multiple Vulnerabilities
by Samuel Huntley
EIP-2026-101234 EXPLOITDB text
D-Link DIR-817LW - Multiple Vulnerabilities
by Samuel Huntley
EIP-2026-101233 EXPLOITDB text
D-Link DIR-815 / DIR-850L - SSDP Command Injection
by Samuel Huntley
EIP-2026-101232 EXPLOITDB text
D-Link DIR-815 - Multiple Vulnerabilities
by Samuel Huntley
EIP-2026-101230 EXPLOITDB text
D-Link DIR-645 - Multiple UPNP Vulnerabilities
by Samuel Huntley
EIP-2026-101228 EXPLOITDB text
D-Link DIR-615 - Multiple Buffer Overflow Vulnerabilities
by Samuel Huntley
EIP-2026-101226 EXPLOITDB text
D-Link DIR-601 - Command Injection
by Samuel Huntley
EIP-2026-101223 EXPLOITDB text
D-Link DGL5500 - HNAP Buffer Overflow
by Samuel Huntley
EIP-2026-105365 EXPLOITDB text
b374k 3.2.3/2.8 (Web Shell) - Cross-Site Request Forgery / Command Injection
by hyp3rlinx
EIP-2026-111657 EXPLOITDB text
R-Scripts Vacation Rental Script 7R - Multiple Vulnerabilities
by LiquidWorm
CVE-2015-9316 EXPLOITDB CRITICAL text
WP Fastest Cache < 0.8.4.9 - SQL Injection via poll_id Parameter
The wp-fastest-cache plugin before 0.8.4.9 for WordPress has SQL injection in wp-admin/admin-ajax.php?action=wpfc_wppolls_ajax_request via the poll_id parameter.
by Kacper Szurek
CVSS 9.8
EIP-2026-114527 EXPLOITDB text VERIFIED
YesWiki 0.2 - 'template' Directory Traversal
by HaHwul
EIP-2026-101311 EXPLOITDB text
Huawei HG630a / HG630a-50 - Default SSH Admin Password on ADSL Modems
by Murat Sahin
EIP-2026-112607 EXPLOITDB text
TestLink 1.9.14 - Cross-Site Request Forgery
by Aravind C Ajayan_ Balagopal N
EIP-2026-103473 EXPLOITDB text VERIFIED
FreeType 2.6.1 - TrueType tt_sbit_decoder_load_bit_aligned Heap Out-of-Bounds Read
by Google Security Research
EIP-2026-107460 EXPLOITDB text
Google AdWords API PHP client library 6.2.0 - Arbitrary PHP Code Execution
by Dawid Golunski
EIP-2026-107459 EXPLOITDB text
Google AdWords 6.2.0 API client libraries - XML eXternal Entity Injection
by Dawid Golunski