Exploitdb Exploits

31,344 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-102596 EXPLOITDB text VERIFIED
FTP Client (Ubuntu 11.04) - Local Buffer Overflow Crash (PoC)
by localh0t
EIP-2026-115816 EXPLOITDB text VERIFIED
Microsoft Windows Server 2008 R1 - Local Denial of Service
by Randomdude
EIP-2026-114023 EXPLOITDB text VERIFIED
WordPress Plugin SCORM Cloud 1.0.6.6 - SQL Injection
by Miroslav Stampar
EIP-2026-113727 EXPLOITDB text VERIFIED
WordPress Plugin Eventify - Simple Events 1.7.f SQL Injection
by Miroslav Stampar
EIP-2026-118275 EXPLOITDB text VERIFIED
Apple QuickTime 7.6.9 - 'QuickTimePlayer.dll' ActiveX Buffer Overflow
by Ivan Sanchez
EIP-2026-114129 EXPLOITDB text
WordPress Plugin Tweet Old Post 3.2.5 - SQL Injection
by sherl0ck_
EIP-2026-113976 EXPLOITDB text VERIFIED
WordPress Plugin post highlights 2.2 - SQL Injection
by Miroslav Stampar
EIP-2026-113857 EXPLOITDB text VERIFIED
WordPress Plugin KNR Author List Widget 2.0.0 - SQL Injection
by Miroslav Stampar
EIP-2026-111323 EXPLOITDB text
PlaySms 0.9.5.2 - Remote File Inclusion
by NoGe
EIP-2026-107383 EXPLOITDB text VERIFIED
GeoClassifieds Lite 2.0.x - Multiple Cross-Site Scripting / SQL Injections
by Yassin Aboukir
EIP-2026-107210 EXPLOITDB text VERIFIED
Free Help Desk 1.1b - Multiple Input Validation Vulnerabilities
by High-Tech Bridge SA
EIP-2026-100389 EXPLOITDB text VERIFIED
Kisanji - 'gr' Cross-Site Scripting
by Bl4ck.Viper
CVE-2011-3979 EXPLOITDB text VERIFIED
Zikula Application Framework <1.3.0-1.2.7 - XSS
Cross-site scripting (XSS) vulnerability in ztemp/view_compiled/Theme/theme_admin_setasdefault.php in the theme module in Zikula Application Framework 1.3.0 build 3168, 1.2.7, and probably other versions allows remote attackers to inject arbitrary web script or HTML via the themename parameter in the setasdefault action to index.php.
by High-Tech Bridge SA
EIP-2026-113940 EXPLOITDB text VERIFIED
WordPress Plugin oQey Gallery 0.4.8 - SQL Injection
by Miroslav Stampar
EIP-2026-113332 EXPLOITDB text VERIFIED
Webmobo WB News System - Blind SQL Injection
by Eyup CELIK
EIP-2026-106835 EXPLOITDB text
Elite Gaming Ladders 3.6 - SQL Injection
by J.O
EIP-2026-106715 EXPLOITDB text VERIFIED
EasyGallery 5 - 'index.php' Multiple SQL Injections
by Eyup CELIK
EIP-2026-104985 EXPLOITDB text VERIFIED
Advanced Image Hosting Script 2.3 - 'report.php' Cross-Site Scripting
by R3d-D3V!L
EIP-2026-114298 EXPLOITDB text VERIFIED
WordPress Plugin Zotpress 4.4 - SQL Injection
by Miroslav Stampar
EIP-2026-113734 EXPLOITDB text VERIFIED
WordPress Plugin Facebook Opengraph Meta 1.0 - SQL Injection
by Miroslav Stampar
EIP-2026-110246 EXPLOITDB text
openads-2.0.11 - Remote File Inclusion
by HaCkErS eV!L
CVE-2012-0242 EXPLOITDB text
Advantech Webaccess < 6.0 - Format String Vulnerability
Format string vulnerability in Advantech/BroadWin WebAccess before 7.0 allows remote attackers to execute arbitrary code via format string specifiers in a message string.
by Luigi Auriemma
EIP-2026-114174 EXPLOITDB text VERIFIED
WordPress Plugin VideoWhisper Video Presentation 1.1 - SQL Injection
by Miroslav Stampar
EIP-2026-109299 EXPLOITDB text VERIFIED
Mambo Component N-Skyrslur - Cross-Site Scripting
by CoBRa_21
EIP-2026-109298 EXPLOITDB text VERIFIED
Mambo Component N-Press - SQL Injection
by CoBRa_21
By Source
All 31,344 Writeup 60,290 Exploitdb 50,009 Nomisec 21,867 Metasploit 3,224 Github 2,668 Vulncheck_xdb 906 Inthewild 514 Gitlab 442 Gitee 415 Patchapalooza 312
By Language
text 31,344 python 6,009 ruby 5,913 c 3,574 perl 2,849 html 2,053 php 1,326 bash 460 java 364 c++ 250 javascript 220 shell 92 go 58 postscript 25 xml 24