Text Exploits

31,337 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-114362 EXPLOITDB text VERIFIED
WordPress Theme Wp-ImageZoom - 'id' SQL Injection
by Amirh03in
EIP-2026-113540 EXPLOITDB text VERIFIED
WordPress Plugin Ads Box - 'count' SQL Injection
by Ashiyane Digital Security Team
EIP-2026-112243 EXPLOITDB text VERIFIED
SmartCMS - 'index.php?idx' SQL Injection
by NoGe
EIP-2026-111460 EXPLOITDB text VERIFIED
PRADO PHP Framework 3.2.0 - Arbitrary File Read
by LiquidWorm
EIP-2026-105664 EXPLOITDB text VERIFIED
BuyClassifiedScript - PHP Code Injection
by d3b4g
CVE-2012-4982 EXPLOITDB text VERIFIED
Forescout CounterACT <7.0 - Open Redirect
Open redirect vulnerability in assets/login on the Forescout CounterACT NAC device before 7.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the a parameter.
by Joseph Sheridan
EIP-2026-103719 EXPLOITDB text
Websense Proxy - Filter Bypass
by Nahuel Grisolia
EIP-2026-108069 EXPLOITDB text VERIFIED
jBilling 3.0.2 - Cross-Site Scripting
by Woody Hughes
EIP-2026-106902 EXPLOITDB text VERIFIED
ES CmS 0.1 - SQL Injection
by hossein beizaee
EIP-2026-105430 EXPLOITDB text VERIFIED
Beat Websites - 'id' SQL Injection
by Metropolis
EIP-2026-103915 EXPLOITDB text VERIFIED
Greenstone - Multiple Vulnerabilities
by AkaStep
EIP-2026-114340 EXPLOITDB text VERIFIED
WordPress Theme Magazine Basic - 'id' SQL Injection
by Novin hack
EIP-2026-114294 EXPLOITDB text VERIFIED
WordPress Plugin Zingiri Web Shop - 'path' Arbitrary File Upload
by Ashiyane Digital Security Team
EIP-2026-114291 EXPLOITDB text VERIFIED
WordPress Plugin Zarzadzonie Kontem - 'ajaxfilemanager.php' Script Arbitrary File Upload
by Ashiyane Digital Security Team
EIP-2026-114186 EXPLOITDB text VERIFIED
WordPress Plugin Webplayer - 'id' SQL Injection
by Novin hack
EIP-2026-113969 EXPLOITDB text VERIFIED
WordPress Plugin Plg Novana - 'id' SQL Injection
by sil3nt
EIP-2026-119399 EXPLOITDB text
ManageEngine ServiceDesk 8.0 - Multiple Vulnerabilities
by Vulnerability-Lab
EIP-2026-114866 EXPLOITDB text VERIFIED
Adobe Reader 10.1.4 - JP2KLib&CoolType Crash (PoC)
by coolkaveh
EIP-2026-114532 EXPLOITDB text
Yii Framework 1.1.8 - Search SQL Injection
by Juno_okyo
EIP-2026-110758 EXPLOITDB text VERIFIED
PHP Server Monitor - Persistent Cross-Site Scripting
by loneferret
EIP-2026-107071 EXPLOITDB text VERIFIED
Feng Office - Security Bypass / HTML Injection
by Ur0b0r0x
CVE-2012-5701 EXPLOITDB text VERIFIED
dotProject <2.1.7 - SQL Injection
Multiple SQL injection vulnerabilities in dotProject before 2.1.7 allow remote authenticated administrators to execute arbitrary SQL commands via the (1) search_string or (2) where parameter in a contacts action, (3) dept_id parameter in a departments action, (4) project_id[] parameter in a project action, or (5) company_id parameter in a system action to index.php. NOTE: this can be leveraged using CSRF to allow remote attackers to execute arbitrary SQL commands.
by High-Tech Bridge
CVE-2012-5702 EXPLOITDB text VERIFIED
dotProject <2.1.7 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in dotProject before 2.1.7 allow remote attackers to inject arbitrary web script or HTML via the (1) callback parameter in a color_selector action, (2) field parameter in a date_format action, or (3) company_name parameter in an addedit action to index.php. NOTE: the date parameter vector is already covered by CVE-2008-3886.
by High-Tech Bridge
EIP-2026-118721 EXPLOITDB text
LAN.FS Messenger 2.4 - Command Execution
by Vulnerability-Lab
EIP-2026-115746 EXPLOITDB text VERIFIED
Microsoft Office OneNote 2010 - Crash (PoC)
by coolkaveh
By Source
All 31,337 Writeup 60,210 Exploitdb 50,000 Nomisec 21,750 Metasploit 3,220 Github 2,593 Vulncheck_xdb 905 Inthewild 514 Gitlab 442 Gitee 415 Patchapalooza 312
By Language
text 31,337 python 5,970 ruby 5,909 c 3,567 perl 2,849 html 2,053 php 1,326 bash 460 java 362 c++ 250 javascript 215 shell 91 go 55 postscript 25 xml 24