Text Exploits

31,337 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-114041 EXPLOITDB text VERIFIED
WordPress Plugin Shopping Cart for WordPress - '/wp-content/plugins/levelfourstorefront/scripts/administration/backup.php?reqID' SQL Injection
by Sammy FORGIT
EIP-2026-113419 EXPLOITDB text VERIFIED
WHMCS 5.0 - Insecure Cookie Authentication Bypass
by Agd_Scorp
EIP-2026-109696 EXPLOITDB text VERIFIED
MyBB 1.6.9 - 'editpost.php?posthash' Blind SQL Injection
by Joshua Rogers
EIP-2026-108862 EXPLOITDB text VERIFIED
Joomla! Component Spider Calendar - 'date' Blind SQL Injection
by Red-D3v1L
CVE-2012-5667 EXPLOITDB text VERIFIED
GNU Grep <2.11 - RCE
Multiple integer overflows in GNU Grep before 2.11 might allow context-dependent attackers to execute arbitrary code via vectors involving a long input line that triggers a heap-based buffer overflow.
by Joshua Rogers
EIP-2026-114293 EXPLOITDB text VERIFIED
WordPress Plugin Zingiri Forums - 'language' Local File Inclusion
by Amirh03in
EIP-2026-113406 EXPLOITDB text VERIFIED
WHM - 'filtername' Cross-Site Scripting
by Rafay Baloch
CVE-2012-6448 EXPLOITDB MEDIUM text VERIFIED
Cpanel Webhost Manager - XSS
Cross-site Scripting (XSS) in cPanel WebHost Manager (WHM) 11.34.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.
by Christy Philip Mathew
CVSS 6.1
EIP-2026-106204 EXPLOITDB text VERIFIED
cPanel - 'detailbw.html' Multiple Cross-Site Scripting Vulnerabilities
by Christy Philip Mathew
EIP-2026-101161 EXPLOITDB text VERIFIED
Astaro Security Gateway 8.1 - HTML Injection
by Vulnerability Research Laboratory
EIP-2026-107534 EXPLOITDB text VERIFIED
Guru Auction 2.0 - Multiple SQL Injections
by v3n0m
EIP-2026-106205 EXPLOITDB text VERIFIED
cPanel - 'dir' Cross-Site Scripting
by Rafay Baloch
EIP-2026-109718 EXPLOITDB text VERIFIED
MyBB HM My Country Flags - SQL Injection
by JoinSe7en
EIP-2026-109707 EXPLOITDB text VERIFIED
MyBB AwayList Plugin - 'index.php?id' SQL Injection
by Red_Hat
EIP-2026-107585 EXPLOITDB text VERIFIED
Hero Framework - users/login 'Username' Cross-Site Scripting
by Stefan Schurtz
EIP-2026-107584 EXPLOITDB text VERIFIED
Hero Framework - 'search?q' Cross-Site Scripting
by Stefan Schurtz
EIP-2026-106203 EXPLOITDB text VERIFIED
cPanel - 'account' Cross-Site Scripting
by Rafay Baloch
EIP-2026-105857 EXPLOITDB text VERIFIED
City Directory Review and Rating Script - 'search.php' SQL Injection
by 3spi0n
EIP-2026-105858 EXPLOITDB text VERIFIED
City Reviewer - 'search.php' Script SQL Injection
by 3spi0n
CVE-2012-5243 EXPLOITDB text VERIFIED
Banana Dance <B.2.6 - Info Disclosure
functions/suggest.php in Banana Dance B.2.6 and earlier allows remote attackers to read arbitrary database information via a crafted request.
by High-Tech Bridge SA
CVE-2012-5242 EXPLOITDB text VERIFIED
Banana Dance <B.2.6 - Path Traversal
Directory traversal vulnerability in functions/suggest.php in Banana Dance B.2.6 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the name parameter in a get_template action.
by High-Tech Bridge SA
EIP-2026-116276 EXPLOITDB text
Sony PC Companion 2.1 - 'Load()' Unicode Stack Buffer Overflow
by LiquidWorm
EIP-2026-116275 EXPLOITDB text
Sony PC Companion 2.1 - 'DownloadURLToFile()' Unicode Stack Buffer Overflow
by LiquidWorm
EIP-2026-116274 EXPLOITDB text
Sony PC Companion 2.1 - 'CheckCompatibility()' Unicode Stack Buffer Overflow
by LiquidWorm
EIP-2026-116273 EXPLOITDB text
Sony PC Companion 2.1 - 'Admin_RemoveDirectory()' Unicode Stack Buffer Overflow
by LiquidWorm
By Source
All 31,337 Writeup 60,210 Exploitdb 50,000 Nomisec 21,750 Metasploit 3,220 Github 2,593 Vulncheck_xdb 905 Inthewild 514 Gitlab 442 Gitee 415 Patchapalooza 312
By Language
text 31,337 python 5,970 ruby 5,909 c 3,567 perl 2,849 html 2,053 php 1,326 bash 460 java 362 c++ 250 javascript 215 shell 91 go 55 postscript 25 xml 24