Text Exploits

31,394 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-108443 EXPLOITDB text
Joomla! Component com_memorix - SQL Injection
by Omar
EIP-2026-108378 EXPLOITDB text
Joomla! Component com_informations - SQL Injection
by Omar
EIP-2026-107418 EXPLOITDB text
Gkplugins Picasaweb - Download File
by TMT zno
EIP-2026-102698 EXPLOITDB text
NetKit FTP Client (Ubuntu 14.04) - Crash/Denial of Service (PoC)
by TUNISIAN CYBER
EIP-2026-102052 EXPLOITDB text
TOTOLINK Routers - Backdoor / Remote Code Execution
by MadMouse
EIP-2026-101976 EXPLOITDB text
Security IP Camera Star Vision DVR - Authentication Bypass
by Meisam Monsef
CVE-2015-2370 EXPLOITDB text
Windows RPC - Local Privilege Escalation via DCE/RPC Connection Reflection
The authentication implementation in the RPC subsystem in Microsoft Windows Server 2003 SP2 and R2 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8, Windows 8.1, Windows Server 2012 Gold and R2, and Windows RT Gold and 8.1 does not prevent DCE/RPC connection reflection, which allows local users to gain privileges via a crafted application, aka "Windows RPC Elevation of Privilege Vulnerability."
by monoxgas
CVE-2015-5161 EXPLOITDB text
Zend Framework < 1.12.14, 2.x < 2.4.6, 2.5.x < 2.5.2 - XML External Entity Injection via Multibyte Encoded Characters
The Zend_Xml_Security::scan in ZendXml before 1.0.1 and Zend Framework before 1.12.14, 2.x before 2.4.6, and 2.5.x before 2.5.2, when running under PHP-FPM in a threaded environment, allows remote attackers to bypass security checks and conduct XML external entity (XXE) and XML entity expansion (XEE) attacks via multibyte encoded characters.
by Dawid Golunski
EIP-2026-104295 EXPLOITDB text
Joomla! Component com_jem 2.1.4 - Multiple Vulnerabilities
by Martino Sani
EIP-2026-115924 EXPLOITDB text
NetServe FTP Client 1.0 - Local Denial of Service
by Un_N0n
EIP-2026-102287 EXPLOITDB text
Printer Pro 5.4.3 IOS - Persistent Cross-Site Scripting
by Taurus Omar
EIP-2026-114279 EXPLOITDB text
WordPress Plugin WPTF Image Gallery 1.03 - Arbitrary File Download
by Larry W. Cashdollar
EIP-2026-114053 EXPLOITDB text
WordPress Plugin Simple Image Manipulator 1.0 - Arbitrary File Download
by Larry W. Cashdollar
EIP-2026-114001 EXPLOITDB text
WordPress Plugin Recent Backups 0.7 - Arbitrary File Download
by Larry W. Cashdollar
EIP-2026-113618 EXPLOITDB text
WordPress Plugin Candidate Application Form 1.0 - Arbitrary File Download
by Larry W. Cashdollar
EIP-2026-113200 EXPLOITDB text VERIFIED
WDS CMS - SQL Injection
by Ismail Marzouk
EIP-2026-114166 EXPLOITDB text
WordPress Plugin Video Gallery 2.7 - SQL Injection
by Kacper Szurek
EIP-2026-104563 EXPLOITDB text
Apple Mac OSX Keychain - EXC_BAD_ACCESS Denial of Service
by Juan Sacco
CVE-2015-2321 EXPLOITDB text
Job Manager < 0.7.22 - Cross-Site Scripting via Email Field
Cross-site scripting (XSS) vulnerability in the Job Manager plugin 0.7.22 and earlier for WordPress allows remote attackers to inject arbitrary web script or HTML via the email field.
by Owais Mehtab
EIP-2026-110735 EXPLOITDB text VERIFIED
PHP News Script 4.0.0 - SQL Injection
by Meisam Monsef
EIP-2026-109450 EXPLOITDB text
Microweber 1.0.3 - Arbitrary File Upload / Filter Bypass / PHP Remote Code Execution
by LiquidWorm
EIP-2026-107268 EXPLOITDB text
Froxlor Server Management Panel 0.9.33.1 - MySQL Login Information Disclosure
by Dustin Dörr
EIP-2026-112595 EXPLOITDB text VERIFIED
Tendoo CMS 1.3 - Cross-Site Scripting
by Arash Khazaei
EIP-2026-111045 EXPLOITDB text
phpFileManager 0.9.8 - Cross-Site Request Forgery
by hyp3rlinx
EIP-2026-108919 EXPLOITDB text VERIFIED
JoomShopping - Blind SQL Injection
by Mormoroth