Exploitdb Exploits

31,342 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-119307 EXPLOITDB text VERIFIED
XAMPP for Windows 1.7.7 - Multiple Cross-Site Scripting / SQL Injections
by Sangteamtham
EIP-2026-115814 EXPLOITDB text VERIFIED
Microsoft Windows OpenType Font - File Format Denial of Service
by Cr4sh
CVE-2012-6649 EXPLOITDB CRITICAL text VERIFIED
Devfarm WP Gpx Maps - Unrestricted File Upload
WordPress WP GPX Maps Plugin 1.1.21 allows remote attackers to execute arbitrary PHP code via improper file upload.
by Adrien Thierry
CVSS 9.8
EIP-2026-114155 EXPLOITDB text VERIFIED
WordPress Plugin User Meta 1.1.1 - Arbitrary File Upload
by Adrien Thierry
EIP-2026-114121 EXPLOITDB text VERIFIED
WordPress Plugin Top Quark Architecture 2.10 - Arbitrary File Upload
by Adrien Thierry
EIP-2026-114036 EXPLOITDB text VERIFIED
WordPress Plugin SfBrowser 1.4.5 - Arbitrary File Upload
by Adrien Thierry
EIP-2026-113960 EXPLOITDB text VERIFIED
WordPress Plugin Pica Photo Gallery 1.0 - Arbitrary File Upload
by Adrien Thierry
EIP-2026-113874 EXPLOITDB text VERIFIED
WordPress Plugin Mac Photo Gallery 2.7 - Arbitrary File Upload
by Adrien Thierry
EIP-2026-113691 EXPLOITDB text VERIFIED
WordPress Plugin drag and drop file upload 0.1 - Arbitrary File Upload
by Adrien Thierry
EIP-2026-113674 EXPLOITDB text VERIFIED
WordPress Plugin Custom Content Type Manager 0.9.5.13-pl - Arbitrary File Upload
by Adrien Thierry
EIP-2026-105875 EXPLOITDB text VERIFIED
ClanSuite 2.9 - Arbitrary File Upload
by Adrien Thierry
CVE-2012-1493 EXPLOITDB text VERIFIED
F5 Big-ip 3600 - Credentials Management
F5 BIG-IP appliances 9.x before 9.4.8-HF5, 10.x before 10.2.4, 11.0.x before 11.0.0-HF2, and 11.1.x before 11.1.0-HF3, and Enterprise Manager before 2.1.0-HF2, 2.2.x before 2.2.0-HF1, and 2.3.x before 2.3.0-HF3, use a single SSH private key across different customers' installations and do not properly restrict access to this key, which makes it easier for remote attackers to perform SSH logins via the PubkeyAuthentication option.
by Florent Daigniere
EIP-2026-118797 EXPLOITDB text
Microsoft IIS 6.0/7.5 (+ PHP) - Multiple Vulnerabilities
by kingcope
EIP-2026-113369 EXPLOITDB text VERIFIED
Webspell dailyinput Movie Addon 4.2.x - SQL Injection
by Easy Laster
EIP-2026-108264 EXPLOITDB text VERIFIED
Joomla! Component com_alphacontent - 'limitstart' SQL Injection
by xDarkSton3x
EIP-2026-107237 EXPLOITDB text VERIFIED
freepost 0.1 r1 - Multiple Vulnerabilities
by ThE g0bL!N
EIP-2026-114119 EXPLOITDB text VERIFIED
WordPress Plugin TinyMCE Thumbnail Gallery 1.0.7 - Remote File Disclosure
by Sammy FORGIT
EIP-2026-114116 EXPLOITDB text VERIFIED
WordPress Plugin Thinkun Remind 1.1.3 - Remote File Disclosure
by Sammy FORGIT
EIP-2026-114047 EXPLOITDB text VERIFIED
WordPress Plugin Simple Download Button ShortCode 1.0 - Remote File Disclosure
by Sammy FORGIT
EIP-2026-113961 EXPLOITDB text VERIFIED
WordPress Plugin PICA Photo Gallery 1.0 - Remote File Disclosure
by Sammy FORGIT
CVE-2012-3588 EXPLOITDB text VERIFIED
Wordpress Plugin Newsletter Plugin - Path Traversal
Directory traversal vulnerability in preview.php in the Plugin Newsletter plugin 1.5 for WordPress allows remote attackers to read arbitrary files via a .. (dot dot) in the data parameter.
by Sammy FORGIT
EIP-2026-113773 EXPLOITDB text VERIFIED
WordPress Plugin Front File Manager 0.1 - Arbitrary File Upload
by Adrien Thierry
EIP-2026-113709 EXPLOITDB text VERIFIED
WordPress Plugin Easy Contact Forms Export 1.1.0 - Information Disclosure
by Sammy FORGIT
EIP-2026-113370 EXPLOITDB text
Webspell FIRSTBORN Movie-Addon - Blind SQL Injection
by Easy Laster
EIP-2026-113718 EXPLOITDB text VERIFIED
WordPress Plugin Email NewsLetter 8.0 - 'option' Information Disclosure
by Sammy FORGIT
By Source
All 31,342 Writeup 60,258 Exploitdb 50,007 Nomisec 21,814 Metasploit 3,224 Github 2,599 Vulncheck_xdb 906 Inthewild 514 Gitlab 442 Gitee 415 Patchapalooza 312
By Language
text 31,342 python 5,976 ruby 5,913 c 3,568 perl 2,849 html 2,053 php 1,326 bash 460 java 362 c++ 250 javascript 215 shell 91 go 55 postscript 25 xml 24