Exploitdb Exploits

31,339 exploits tracked across all sources.

Sort: Activity Stars
CVE-2012-2172 EXPLOITDB text
IBM DS Storage Manager Host Software < 10.83 - XSS
Cross-site scripting (XSS) vulnerability in SoftwareRegistration.do in the Storage Manager Profiler in IBM System Storage DS Storage Manager before 10.83.xx.18 on DS Series devices allows remote attackers to inject arbitrary web script or HTML via the updateRegn parameter.
by LiquidWorm
EIP-2026-112786 EXPLOITDB text VERIFIED
traq 2.3.5 - Multiple Vulnerabilities
by AkaStep
EIP-2026-108557 EXPLOITDB text VERIFIED
Joomla! Component com_szallasok - 'id' SQL Injection
by CoBRa_21
EIP-2026-106079 EXPLOITDB text
Commentics 2.0 - Multiple Vulnerabilities
by Jean Pascal Pereira
EIP-2026-104952 EXPLOITDB text VERIFIED
Adiscan LogAnalyzer 3.4.3 - Cross-Site Scripting
by Sooraj K.S
EIP-2026-114022 EXPLOITDB text VERIFIED
WordPress Plugin Schreikasten 0.14.13 - Cross-Site Scripting
by Henry Hoggard
CVE-2012-3232 EXPLOITDB text VERIFIED
web@all <2.0 - XSS
Cross-site scripting (XSS) vulnerability in search.php in web@all 2.0, as downloaded before May 30, 2012, allows remote attackers to inject arbitrary web script or HTML via the _text[title] parameter.
by High-Tech Bridge
EIP-2026-106158 EXPLOITDB text VERIFIED
Coppermine Photo Gallery - 'index.php' Script SQL Injection
by Taurus Omar
EIP-2026-106078 EXPLOITDB text VERIFIED
Commentics - 'index.php' Cross-Site Scripting
by Jean Pascal Pereira
EIP-2026-116211 EXPLOITDB text VERIFIED
Samsung AllShare 2.1.1.0 - Null Pointer Dereference
by Luigi Auriemma
EIP-2026-107710 EXPLOITDB text
iBoutique eCommerce 4.0 - Multiple Web Vulnerabilities
by Vulnerability-Lab
EIP-2026-106673 EXPLOITDB text VERIFIED
e107 Image Gallery Plugin - 'name' Remote File Disclosure
by Sammy FORGIT
EIP-2026-106671 EXPLOITDB text VERIFIED
e107 Filedownload Plugin - Arbitrary File Upload / Remote File Disclosure
by Sammy FORGIT
EIP-2026-105959 EXPLOITDB text VERIFIED
CMS Balitbang - Multiple HTML Injection / Cross-Site Scripting Vulnerabilities
by TheCyberNuxbie
EIP-2026-104939 EXPLOITDB text VERIFIED
AdaptCMS 2.0.2 - 'index.php' Script Cross-Site Scripting
by indoushka
EIP-2026-103395 EXPLOITDB text
Airlock WAF 4.2.4 - Overlong UTF-8 Sequence Bypass
by SEC Consult
EIP-2026-114255 EXPLOITDB text VERIFIED
WordPress Plugin Wp-ImageZoom - 'file' Remote File Disclosure
by Sammy FORGIT
EIP-2026-112954 EXPLOITDB text VERIFIED
VANA CMS - 'index.php' Script SQL Injection
by Black Hat Group
EIP-2026-109809 EXPLOITDB text VERIFIED
MyTickets 1.x < 2.0.8 - Blind SQL Injection
by al-swisre
EIP-2026-101935 EXPLOITDB text
QNAP Turbo NAS 3.6.1 Build 0302T - Multiple Vulnerabilities
by Sense of Security
CVE-2012-2698 EXPLOITDB text VERIFIED
MediaWiki <1.17.5, <1.18.4, <1.19.1 - XSS
Cross-site scripting (XSS) vulnerability in the outputPage function in includes/SkinTemplate.php in MediaWiki before 1.17.5, 1.18.x before 1.18.4, and 1.19.x before 1.19.1 allows remote attackers to inject arbitrary web script or HTML via the uselang parameter to index.php/Main_page.
by anonymous
EIP-2026-107309 EXPLOITDB text VERIFIED
Funeral Script PHP - Cross-Site Scripting / SQL Injection
by snup
CVE-2012-6666 EXPLOITDB MEDIUM text VERIFIED
Vbseo < 3.8.7 - XSS
vBSeo before 3.6.0PL2 allows XSS via the member.php u parameter.
by MegaMan
CVSS 6.1
EIP-2026-116622 EXPLOITDB text VERIFIED
XnView - '.RAS' Image Processing Heap Overflow
by Francis Provencher
EIP-2026-116621 EXPLOITDB text VERIFIED
XnView - '.FlashPix' Image Processing Heap Overflow
by Francis Provencher
By Source
All 31,339 Writeup 60,258 Exploitdb 50,004 Nomisec 21,809 Metasploit 3,224 Github 2,599 Vulncheck_xdb 906 Inthewild 514 Gitlab 442 Gitee 415 Patchapalooza 312
By Language
text 31,339 python 5,976 ruby 5,913 c 3,568 perl 2,849 html 2,053 php 1,326 bash 460 java 362 c++ 250 javascript 215 shell 91 go 55 postscript 25 xml 24