Exploitdb Exploits

31,344 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-100966 EXPLOITDB text VERIFIED
FreeBSD OpenSSH 3.5p1 - Remote Command Execution
by kingcope
EIP-2026-118044 EXPLOITDB text
Valve Steam Client Application 1559/1559 - Local Privilege Escalation
by LiquidWorm
CVE-2011-1865 EXPLOITDB text VERIFIED
HP OpenView Storage Data Protector <6.20 - Buffer Overflow
Multiple stack-based buffer overflows in the inet service in HP OpenView Storage Data Protector 6.00 through 6.20 allow remote attackers to execute arbitrary code via a request containing crafted parameters.
by Core Security
EIP-2026-116160 EXPLOITDB text VERIFIED
RealityServer Web Services RTMP Server 3.1.1 build 144525.5 - Null Pointer Dereference Denial of Service
by Luigi Auriemma
EIP-2026-111770 EXPLOITDB text
rgboard 4.2.1 - SQL Injection
by hamt0ry
EIP-2026-108180 EXPLOITDB text VERIFIED
Joomla! 1.6.3 - Multiple Cross-Site Scripting Vulnerabilities
by Aung Khant
EIP-2026-107138 EXPLOITDB text VERIFIED
Flatpress 0.1010.1 - Multiple Cross-Site Scripting Vulnerabilities
by High-Tech Bridge SA
EIP-2026-119228 EXPLOITDB text VERIFIED
Ubisoft CoGSManager ActiveX Control 1.0.0.23 - 'Initialize()' Method Stack Buffer Overflow
by Luigi Auriemma
EIP-2026-119180 EXPLOITDB text VERIFIED
Sybase Advantage Server 10.0.0.3 - 'ADS' Process Off-by-One Buffer Overflow
by Luigi Auriemma
EIP-2026-113984 EXPLOITDB text VERIFIED
WordPress Plugin Pretty Link Lite 1.4.56 - Multiple SQL Injections
by MaKyOtOx
EIP-2026-109272 EXPLOITDB text VERIFIED
Mambo 4.6.x - Multiple Cross-Site Scripting Vulnerabilities
by Aung Khant
EIP-2026-108445 EXPLOITDB text VERIFIED
Joomla! Component com_morfeoshow - 'idm' SQL Injection
by Th3.xin0x
EIP-2026-103998 EXPLOITDB text VERIFIED
MySQLDriverCS 4.0.1 - SQL Injection
by Qihan Luo
EIP-2026-113592 EXPLOITDB text
WordPress Plugin Beer Recipes 1.0 - Cross-Site Scripting
by TheUzuki.'
EIP-2026-108744 EXPLOITDB text
Joomla! Component JoomlaXi - Persistent Cross-Site Scripting
by Karthik R
CVE-2011-2956 EXPLOITDB text VERIFIED
Azeotech Daqfactory < 5.84 - Authentication Bypass
AzeoTech DAQFactory before 5.85 (Build 1842) does not perform authentication for certain signals, which allows remote attackers to cause a denial of service (system reboot or shutdown) via a signal.
by Knud Erik Hojgaard
EIP-2026-118671 EXPLOITDB text VERIFIED
IBM Web Application Firewall - Bypass
by Trustwave's SpiderLabs
EIP-2026-113256 EXPLOITDB text
Webcat - Multiple Blind SQL Injections
by w0rd
EIP-2026-112188 EXPLOITDB text VERIFIED
Sitemagic CMS - 'SMTpl' Directory Traversal
by Andrea Bocchetti
EIP-2026-109952 EXPLOITDB text
nodesforum 1.059 - Remote File Inclusion
by bd0rk
EIP-2026-109951 EXPLOITDB text VERIFIED
Nodesforum - '_nodesforum_node' SQL Injection
by Andrea Bocchetti
EIP-2026-107976 EXPLOITDB text VERIFIED
iSupport 1.8 - SQL Injection
by Brendan Coles
EIP-2026-105618 EXPLOITDB text VERIFIED
BrewBlogger 2.3.2 - Multiple Vulnerabilities
by Brendan Coles
EIP-2026-104829 EXPLOITDB text VERIFIED
2Point Solutions - 'cmspages.php' SQL Injection
by Newbie Campuz
CVE-2011-2757 EXPLOITDB text VERIFIED
Manageengine Servicedesk Plus < 8.0.0.12 - Path Traversal
Directory traversal vulnerability in FileDownload.jsp in ManageEngine ServiceDesk Plus 8.0.0.12 and earlier allows remote attackers to read arbitrary files via a .. (dot dot) in the FILENAME parameter. NOTE: this might overlap the US-CERT VU#543310 issue.
by xistence
By Source
All 31,344 Writeup 60,306 Exploitdb 50,009 Nomisec 21,873 Metasploit 3,224 Github 2,687 Vulncheck_xdb 906 Inthewild 514 Gitlab 442 Gitee 415 Patchapalooza 312
By Language
text 31,344 python 6,021 ruby 5,913 c 3,575 perl 2,849 html 2,053 php 1,326 bash 460 java 364 c++ 250 javascript 220 shell 94 go 58 postscript 25 xml 24