Text Exploits

31,386 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-105525 EXPLOITDB text VERIFIED
Blog:CMS 4.2 - Multiple Cross-Site Scripting Vulnerabilities
by Stefan Schurtz
EIP-2026-113026 EXPLOITDB text VERIFIED
vBulletin vBExperience 3 - 'sortorder' Cross-Site Scripting
by Mr.ThieF
EIP-2026-112415 EXPLOITDB text VERIFIED
Squiz Matrix 4 - 'colour_picker.php' Cross-Site Scripting
by Patrick Webster
EIP-2026-111408 EXPLOITDB text VERIFIED
PopScript - 'index.php' Multiple Input Validation Vulnerabilities
by NassRawI
EIP-2026-109832 EXPLOITDB text VERIFIED
Nakid CMS 1.0.2 - 'CKEditorFuncNum' Cross-Site Scripting
by AutoSec Tools
EIP-2026-109641 EXPLOITDB text VERIFIED
Multiple WordPress WooThemes Themes - 'test.php' Cross-Site Scripting
by MustLive
EIP-2026-108233 EXPLOITDB text VERIFIED
Joomla! Component CCBoard - SQL Injection / Arbitrary File Upload
by KedAns-Dz
EIP-2026-119452 EXPLOITDB text VERIFIED
WebSVN 2.3.2 - Unproper Metacharacters Escaping 'exec()' Remote Command Injection
by rgod
EIP-2026-112937 EXPLOITDB text VERIFIED
Ushahidi 2.0.1 - 'range' SQL Injection
by Gjoko Krstic
EIP-2026-101367 EXPLOITDB text VERIFIED
MODACOM URoad-5000 1450 - Remote Command Execution / Backdoor Access
by Alex Stanev
EIP-2026-112585 EXPLOITDB text VERIFIED
TEDE Simplificado 1.01/S2.04 - Multiple SQL Injections
by KnocKout
EIP-2026-105234 EXPLOITDB text VERIFIED
ARSC Really Simple Chat 3.3-rc2 - Cross-Site Scripting / Multiple SQL Injections
by High-Tech Bridge SA
CVE-2011-2179 EXPLOITDB text VERIFIED
Icinga < 1.4.0 - Cross-Site Scripting via Expand Parameter
Multiple cross-site scripting (XSS) vulnerabilities in config.c in config.cgi in (1) Nagios 3.2.3 and (2) Icinga before 1.4.1 allow remote attackers to inject arbitrary web script or HTML via the expand parameter, as demonstrated by an (a) command action or a (b) hosts action.
by Stefan Schurtz
EIP-2026-101381 EXPLOITDB text VERIFIED
Netgear WNDAP350 Wireless Access Point - Multiple Information Disclosure Vulnerabilities
by Juerd Waalboer
EIP-2026-111863 EXPLOITDB text VERIFIED
S9Y Serendipity Freetag-plugin 3.21 - 'index.php' Cross-Site Scripting
by Stefan Schurtz
CVE-2011-1944 EXPLOITDB text VERIFIED
libxml2 <2.6.32 & 2.7.8 - DoS/Code Injection
Integer overflow in xpath.c in libxml2 2.6.x through 2.6.32 and 2.7.x through 2.7.8, and libxml 1.8.16 and earlier, allows context-dependent attackers to cause a denial of service (crash) and possibly execute arbitrary code via a crafted XML file that triggers a heap-based buffer overflow when adding a new namespace node, related to handling of XPath expressions.
by Chris Evans
EIP-2026-100386 EXPLOITDB text VERIFIED
Kentico CMS 5.5R2.23 - 'userContextMenu_Parameter' Cross-Site Scripting
by LiquidWorm
EIP-2026-107535 EXPLOITDB text VERIFIED
Guru JustAnswer Professional 1.25 - Multiple SQL Injections
by v3n0m
EIP-2026-106177 EXPLOITDB text VERIFIED
Cotonti 0.9.2 - Multiple SQL Injections
by KedAns-Dz
CVE-2012-2765 EXPLOITDB text VERIFIED
Belkin F5D7234-4 v5 G Wireless Router - Remote Hash Exposed
by Aodrulez
EIP-2026-111596 EXPLOITDB text
Puzzle Apps CMS 3.2 - Local File Inclusion
by Treasure Priyamal
EIP-2026-108413 EXPLOITDB text VERIFIED
Joomla! Component com_joomnik - SQL Injection
by SOLVER
EIP-2026-107939 EXPLOITDB text
Invisionix Roaming System Remote metasys 0.2 - Local File Inclusion
by Treasure Priyamal
EIP-2026-115930 EXPLOITDB text VERIFIED
NetVault: SmartDisk 1.2 - 'libnvbasics.dll' Remote Denial of Service
by Luigi Auriemma
EIP-2026-108401 EXPLOITDB text
Joomla! Component com_jmsfileseller - Local File Inclusion
by Valentin
By Source
All 31,386 Writeup 62,507 Exploitdb 50,076 Nomisec 22,463 Github 3,685 Metasploit 3,315 Vulncheck_xdb 930 Inthewild 514 Gitlab 479 Gitee 415 Patchapalooza 312
By Language
text 31,386 python 6,604 ruby 6,006 c 3,632 perl 2,849 html 2,076 php 1,333 bash 462 java 371 c++ 261 javascript 231 shell 133 go 73 postscript 25 typescript 25