Exploitdb Exploits

31,339 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-105947 EXPLOITDB text VERIFIED
Clipster Video - Persistent Cross-Site Scripting
by DaOne
EIP-2026-105705 EXPLOITDB text
Cannonbolt Portfolio Manager 1.0 - Multiple Vulnerabilities
by LiquidWorm
EIP-2026-102004 EXPLOITDB text
Sitecom Home Storage Center - Authentication Bypass
by Mattijs van Ommeren
EIP-2026-113234 EXPLOITDB text VERIFIED
web@all - Local File Inclusion / Multiple Arbitrary File Upload Vulnerabilities
by KedAns-Dz
EIP-2026-110307 EXPLOITDB text VERIFIED
OpenFiler 2.3 - Multiple Cross-Site Scripting / Information Disclosure Vulnerabilities
by Brendan Coles
CVE-2012-3233 EXPLOITDB text VERIFIED
Kayako Fusion <4.50.1581 - XSS
Cross-site scripting (XSS) vulnerability in __swift/thirdparty/PHPExcel/PHPExcel/Shared/JAMA/docs/download.php in Kayako Fusion 4.40.1148, and possibly before 4.50.1581, allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.
by High-Tech Bridge
CVE-2012-4336 EXPLOITDB text VERIFIED
Mike Carr Flogr < 2.5.6 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in index.php in Flogr 2.5.6 and earlier allow remote attackers to inject arbitrary web script or HTML via (1) the PATH_INFO or (2) an arbitrary parameter.
by High-Tech Bridge
EIP-2026-106974 EXPLOITDB text VERIFIED
Extcalendar 2.0 - Multiple SQL Injections / HTML Injection Vulnerabilities
by Ashiyane Digital Security Team
EIP-2026-106903 EXPLOITDB text
ES Job Search Engine 3.0 - SQL Injection
by Vulnerability-Lab
EIP-2026-101936 EXPLOITDB text
QNAP Turbo NAS TS-1279U-RP - Multiple Path Injections
by Andrea Fabrizi
EIP-2026-100303 EXPLOITDB text
Ektron CMS 8.5.0 - Multiple Vulnerabilities
by Sense of Security
EIP-2026-100209 EXPLOITDB text VERIFIED
Cm3 CMS - 'search.asp' Multiple Cross-Site Scripting Vulnerabilities
by Crim3R
EIP-2026-112497 EXPLOITDB text VERIFIED
Support4Arabs Pages 2.0 - SQL Injection
by L0n3ly-H34rT
EIP-2026-111945 EXPLOITDB text VERIFIED
Sciretech (Multiple Products) - Multiple SQL Injections
by AkaStep
EIP-2026-111055 EXPLOITDB text VERIFIED
PHPFox 3.0.1 - 'ajax.php' Multiple Cross-Site Scripting Vulnerabilities
by Crim3R
CVE-2012-4240 EXPLOITDB text
Group-office Groupoffice < 4.0.89 - SQL Injection
SQL injection vulnerability in modules/calendar/json.php in Group-Office community before 4.0.90 allows remote authenticated users to execute arbitrary SQL commands via the sort parameter.
by Chris Cooper
EIP-2026-104448 EXPLOITDB text
Splunk 4.3.3 - Arbitrary File Read
by Marcio Almeida
CVE-2012-1500 EXPLOITDB MEDIUM text
Atlassian Greenhopper < 5.9.8 - XSS
Stored XSS vulnerability in UpdateFieldJson.jspa in JIRA 4.4.3 and GreenHopper before 5.9.8 allows an attacker to inject arbitrary script code.
by Hoyt LLC Research
CVSS 5.4
EIP-2026-112193 EXPLOITDB text VERIFIED
Sitemax Maestro - SQL Injection / Local File Inclusion
by AkaStep
EIP-2026-102005 EXPLOITDB text
Sitecom Home Storage Center - Directory Traversal
by Mattijs van Ommeren
EIP-2026-101607 EXPLOITDB text
Conceptronic Grab'n'Go Network Storage - Directory Traversal
by Mattijs van Ommeren
CVE-2012-4748 EXPLOITDB text VERIFIED
Admidio 2.3.5 - Multiple Vulnerabilities
by Stefan Schurtz
EIP-2026-105326 EXPLOITDB text VERIFIED
AV Arcade Free Edition - 'add_rating.php?id' Blind SQL Injection
by DaOne
CVE-2012-4749 EXPLOITDB text VERIFIED
Admidio 2.3.5 - Multiple Vulnerabilities
by Stefan Schurtz
CVE-2012-4170 EXPLOITDB text VERIFIED
Adobe Photoshop Cs6 - Memory Corruption
Buffer overflow in Adobe Photoshop CS6 13.x before 13.0.1 allows remote attackers to execute arbitrary code via a crafted file.
by Francis Provencher
By Source
All 31,339 Writeup 60,254 Exploitdb 50,004 Nomisec 21,798 Metasploit 3,224 Github 2,598 Vulncheck_xdb 906 Inthewild 514 Gitlab 442 Gitee 415 Patchapalooza 312
By Language
text 31,339 python 5,976 ruby 5,913 c 3,568 perl 2,849 html 2,053 php 1,326 bash 460 java 362 c++ 250 javascript 215 shell 91 go 55 postscript 25 xml 24