Exploitdb Exploits

31,344 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-107576 EXPLOITDB text
Help Desk Software 1.1g - Cross-Site Request Forgery (Add Admin)
by G13
EIP-2026-106084 EXPLOITDB text VERIFIED
CommodityRentals Real Estate Script - 'txtsearch' HTML Injection
by Eyup CELIK
EIP-2026-110225 EXPLOITDB text VERIFIED
Open Classifieds 1.7.2 - Multiple Cross-Site Scripting Vulnerabilities
by Yassin Aboukir
EIP-2026-102499 EXPLOITDB text
ManageEngine ServiceDesk Plus 8.0 - Multiple Persistent Cross-Site Scripting Vulnerabilities
by LiquidWorm
CVE-2011-2131 EXPLOITDB text VERIFIED
Adobe Photoshop <12.1 - RCE
Adobe Photoshop 12.0 in Creative Suite 5 (CS5) and 12.1 in Creative Suite 5.1 (CS5.1) allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted GIF file.
by Francis Provencher
EIP-2026-113902 EXPLOITDB text VERIFIED
WordPress Plugin MM Duplicate 1.2 - SQL Injection
by Miroslav Stampar
EIP-2026-113225 EXPLOITDB text VERIFIED
Web Solutions Wcs2u - SQL Injection
by tempe_mendoan
EIP-2026-112755 EXPLOITDB text VERIFIED
TotalShopUK 1.7.2 - 'index.php' SQL Injection
by Eyup CELIK
EIP-2026-110454 EXPLOITDB text VERIFIED
Pandora FMS 3.x - 'index.php' Cross-Site Scripting
by mehdi boukazoula
EIP-2026-106605 EXPLOITDB text VERIFIED
DV Cart Shopping Cart software - SQL Injection
by Eyup CELIK
EIP-2026-106120 EXPLOITDB text VERIFIED
Concrete 5.4.1 1 - 'rcID' Cross-Site Scripting
by Aung Khant
EIP-2026-105584 EXPLOITDB text VERIFIED
Bonza Digital Cart Script - SQL Injection
by Eyup CELIK
EIP-2026-100524 EXPLOITDB text VERIFIED
Redlab CMS - Multiple SQL Injections
by tempe_mendoan
EIP-2026-110044 EXPLOITDB text VERIFIED
OneFileCMS 1.1.1 - 'onefilecms.php' Cross-Site Scripting
by mr.pr0n
EIP-2026-106738 EXPLOITDB text
EasySiteEdit - Remote File Inclusion
by koskesh jakesh
EIP-2026-114147 EXPLOITDB text VERIFIED
WordPress Plugin UnGallery 1.5.8 - Local File Disclosure
by Miroslav Stampar
EIP-2026-105339 EXPLOITDB text
Axis Commerce (E-Commerce System) - Persistent Cross-Site Scripting
by Eyup CELIK
EIP-2026-111167 EXPLOITDB text VERIFIED
PHPMyRealty 1.0.7 - SQL Injection
by H4T$A
EIP-2026-109896 EXPLOITDB text
network tracker .95 - Persistent Cross-Site Scripting
by G13
CVE-2011-3182 EXPLOITDB text VERIFIED
Php < 5.3.6 - Buffer Overflow
PHP before 5.3.7 does not properly check the return values of the malloc, calloc, and realloc library functions, which allows context-dependent attackers to cause a denial of service (NULL pointer dereference and application crash) or trigger a buffer overflow by leveraging the ability to provide an arbitrary value for a function argument, related to (1) ext/curl/interface.c, (2) ext/date/lib/parse_date.c, (3) ext/date/lib/parse_iso_intervals.c, (4) ext/date/lib/parse_tz.c, (5) ext/date/lib/timelib.c, (6) ext/pdo_odbc/pdo_odbc.c, (7) ext/reflection/php_reflection.c, (8) ext/soap/php_sdl.c, (9) ext/xmlrpc/libxmlrpc/base64.c, (10) TSRM/tsrm_win32.c, and (11) the strtotime function.
by Maksymilian Arciemowicz
EIP-2026-113890 EXPLOITDB text VERIFIED
WordPress Plugin Menu Creator 1.1.7 - SQL Injection
by Miroslav Stampar
EIP-2026-113789 EXPLOITDB text VERIFIED
WordPress Plugin Global Content Blocks 1.2 - SQL Injection
by Miroslav Stampar
EIP-2026-113765 EXPLOITDB text VERIFIED
WordPress Plugin Forum 1.7.8 - SQL Injection
by Miroslav Stampar
EIP-2026-113693 EXPLOITDB text VERIFIED
WordPress Plugin DS FAQ 1.3.2 - SQL Injection
by Miroslav Stampar
EIP-2026-113559 EXPLOITDB text VERIFIED
WordPress Plugin Allow PHP in Posts and Pages 2.0.0.RC1 - SQL Injection
by Miroslav Stampar
By Source
All 31,344 Writeup 60,290 Exploitdb 50,009 Nomisec 21,867 Metasploit 3,224 Github 2,668 Vulncheck_xdb 906 Inthewild 514 Gitlab 442 Gitee 415 Patchapalooza 312
By Language
text 31,344 python 6,009 ruby 5,913 c 3,574 perl 2,849 html 2,053 php 1,326 bash 460 java 364 c++ 250 javascript 220 shell 92 go 58 postscript 25 xml 24