Exploitdb Exploits

31,344 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-108545 EXPLOITDB text VERIFIED
Joomla! Component com_sobi2 2.9.3.2 - Blind SQL Injections
by jdc
EIP-2026-107869 EXPLOITDB text
Inscribe Webmedia - SQL Injection
by Netrondoank
EIP-2026-112570 EXPLOITDB text VERIFIED
TCExam 11.2.x - Multiple Cross-Site Scripting Vulnerabilities
by Gjoko Krstic
EIP-2026-112569 EXPLOITDB text
TCExam 11.2.011 - Multiple SQL Injections
by LiquidWorm
EIP-2026-109173 EXPLOITDB text VERIFIED
LiteRadius 3.2 - Multiple Blind SQL Injections
by Robert Cooper
CVE-2011-2743 EXPLOITDB text VERIFIED
Chyrp < 2.1 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in Chyrp 2.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the action parameter to (1) the default URI or (2) includes/javascript.php, or the (3) title or (4) body parameter to admin/help.php.
by Wireghoul
CVE-2011-2743 EXPLOITDB text VERIFIED
Chyrp < 2.1 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in Chyrp 2.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the action parameter to (1) the default URI or (2) includes/javascript.php, or the (3) title or (4) body parameter to admin/help.php.
by Wireghoul
EIP-2026-112768 EXPLOITDB text VERIFIED
Tradingeye E-Commerce Shopping Cart - Multiple Vulnerabilities
by $#4d0\/\/[r007k17]
EIP-2026-112380 EXPLOITDB text VERIFIED
Sphider 1.3.x - Admin Panel Multiple SQL Injections
by Karthik R
EIP-2026-108603 EXPLOITDB text VERIFIED
Joomla! Component com_xmap 1.2.11 - Blind SQL Injection
by jdc
EIP-2026-107105 EXPLOITDB text
Fire Soft Board 2.0.1 - Persistent Cross-Site Scripting (Admin Panel)
by _jill for A-S
CVE-2011-3642 EXPLOITDB CRITICAL text VERIFIED
Flowplayer Flash <3.2.16 - XSS
Cross-site scripting (XSS) vulnerability in Flowplayer Flash 3.2.7 through 3.2.16, as used in the News system (news) extension for TYPO3 and Mahara, allows remote attackers to inject arbitrary web script or HTML via the plugin configuration directive in a reference to an external domain plugin.
by Szymon Gruszecki
CVSS 9.6
EIP-2026-100980 EXPLOITDB text VERIFIED
Alice Modem 1111 - 'rulename' Cross-Site Scripting / Denial of Service
by Moritz Naumann
EIP-2026-113607 EXPLOITDB text VERIFIED
WordPress Plugin bSuite 4.0.7 - Multiple HTML Injection Vulnerabilities
by IHTeam
EIP-2026-111549 EXPLOITDB text VERIFIED
Prontus CMS - 'page' Cross-Site Scripting
by Zerial
EIP-2026-107742 EXPLOITDB text VERIFIED
ICMusic 1.2 - 'music_id' SQL Injection
by kaMtiEz
EIP-2026-107413 EXPLOITDB text VERIFIED
Gilnet News - 'read_more.php' SQL Injection
by Err0R
EIP-2026-112807 EXPLOITDB text
Tugux CMS 1.2 - 'pid' Arbitrary File Deletion
by LiquidWorm
CVE-2011-0546 EXPLOITDB text VERIFIED
Symantec Backup Exec - Improper Input Validation
Symantec Backup Exec 11.0, 12.0, 12.5, 13.0, and 13.0 R2 does not validate identity information sent between the media server and the remote agent, which allows man-in-the-middle attackers to execute NDMP commands via unspecified vectors.
by Nibin
EIP-2026-111416 EXPLOITDB text VERIFIED
Portix-CMS 1.5.0. rc5 - Local File Inclusion
by Or4nG.M4N
EIP-2026-108588 EXPLOITDB text VERIFIED
Joomla! Component com_voj - SQL Injection
by CoBRa_21
EIP-2026-105209 EXPLOITDB text
appRain Quick Start Edition Core Edition Multiple 0.1.4-Alpha - Cross-Site Scripting
by SecPod Research
EIP-2026-109227 EXPLOITDB text VERIFIED
LuxCal Web Calendar 2.4.2/2.5.0 - SQL Injection
by kaMtiEz
EIP-2026-115223 EXPLOITDB text VERIFIED
ESTsoft ALPlayer 2.0 - ASX Playlist File Handling Buffer Overflow
by LiquidWorm
EIP-2026-108179 EXPLOITDB text
Joomla! 1.6.3 - Cross-Site Request Forgery
by Luis Santana
By Source
All 31,344 Writeup 60,294 Exploitdb 50,009 Nomisec 21,871 Metasploit 3,224 Github 2,678 Vulncheck_xdb 906 Inthewild 514 Gitlab 442 Gitee 415 Patchapalooza 312
By Language
text 31,344 python 6,015 ruby 5,913 c 3,574 perl 2,849 html 2,053 php 1,326 bash 460 java 364 c++ 250 javascript 220 shell 92 go 58 postscript 25 xml 24