Text Exploits

31,386 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-112519 EXPLOITDB text VERIFIED
SyCtel Design - 'menu' Multiple Local File Inclusions
by Ashiyane Digital Security Team
EIP-2026-116632 EXPLOITDB text VERIFIED
Yahoo! CD Player - ActiveX Control 'open()' Method Stack Buffer Overflow
by shinnai
EIP-2026-112873 EXPLOITDB text VERIFIED
Ultimate eShop - Error-Based SQL Injection
by Romka
EIP-2026-105314 EXPLOITDB text VERIFIED
Automagick Tube Script 1.4.4 - 'module' Cross-Site Scripting
by Kurd-Team
CVE-2010-3654 EXPLOITDB text VERIFIED
Adobe Flash Player
Adobe Flash Player before 9.0.289.0 and 10.x before 10.1.102.64 on Windows, Mac OS X, Linux, and Solaris and 10.1.95.1 on Android, and authplay.dll (aka AuthPlayLib.bundle or libauthplay.so.0.0.0) in Adobe Reader and Acrobat 9.x through 9.4, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via crafted SWF content, as exploited in the wild in October 2010.
by Abysssec
CVE-2011-1206 EXPLOITDB text VERIFIED
IBM Tivoli Directory Server 5.2-6.3 - Remote Code Execution via Crafted LDAP Request
Stack-based buffer overflow in the server process in ibmslapd.exe in IBM Tivoli Directory Server (TDS) 5.2 before 5.2.0.5-TIV-ITDS-IF0010, 6.0 before 6.0.0.67 (aka 6.0.0.8-TIV-ITDS-IF0009), 6.1 before 6.1.0.40 (aka 6.1.0.5-TIV-ITDS-IF0003), 6.2 before 6.2.0.16 (aka 6.2.0.3-TIV-ITDS-IF0002), and 6.3 before 6.3.0.3 (aka 6.3.0.0-TIV-ITDS-IF0003) allows remote attackers to execute arbitrary code via a crafted LDAP request. NOTE: some of these details are obtained from third party information.
by Francis Provencher
EIP-2026-114267 EXPLOITDB text VERIFIED
WordPress Plugin WP-StarsRateBox 1.1 - 'j' SQL Injection
by High-Tech Bridge SA
EIP-2026-113367 EXPLOITDB text VERIFIED
webSPELL 4.2.2a - Multiple Cross-Site Scripting Vulnerabilities
by High-Tech Bridge SA
EIP-2026-112890 EXPLOITDB text VERIFIED
Ultra Marketing Enterprises CMS and Cart - Multiple SQL Injections
by eXeSoul
EIP-2026-106348 EXPLOITDB text VERIFIED
dalbum 1.43 - Multiple Vulnerabilities
by High-Tech Bridge SA
EIP-2026-106347 EXPLOITDB text VERIFIED
Dalbum 1.43 - 'editini.php' Cross-Site Scripting
by High-Tech Bridge SA
EIP-2026-106237 EXPLOITDB text VERIFIED
CRESUS - 'recette_detail.php' SQL Injection
by GrayHatz Security Group
EIP-2026-105815 EXPLOITDB text VERIFIED
ChatLakTurk PHP Botlu Video - 'ara.php' Cross-Site Scripting
by kurdish hackers team
CVE-2011-0836 EXPLOITDB text VERIFIED
Oracle JD Edwards EnterpriseOne <8.98.4.1 - Info Disclosure
Unspecified vulnerability in Oracle JD Edwards EnterpriseOne Tools 8.9 GA through 8.98.4.1 and OneWorld Tools through 24.1.3 allows remote authenticated users to affect integrity, related to Web Runtime SEC.
by Juan Manuel Garcia
CVE-2011-0836 EXPLOITDB text VERIFIED
Oracle JD Edwards EnterpriseOne <8.98.4.1 - Info Disclosure
Unspecified vulnerability in Oracle JD Edwards EnterpriseOne Tools 8.9 GA through 8.98.4.1 and OneWorld Tools through 24.1.3 allows remote authenticated users to affect integrity, related to Web Runtime SEC.
by Juan Manuel Garcia
CVE-2011-0836 EXPLOITDB text VERIFIED
Oracle JD Edwards EnterpriseOne <8.98.4.1 - Info Disclosure
Unspecified vulnerability in Oracle JD Edwards EnterpriseOne Tools 8.9 GA through 8.98.4.1 and OneWorld Tools through 24.1.3 allows remote authenticated users to affect integrity, related to Web Runtime SEC.
by Juan Manuel Garcia
CVE-2011-0836 EXPLOITDB text VERIFIED
Oracle JD Edwards EnterpriseOne <8.98.4.1 - Info Disclosure
Unspecified vulnerability in Oracle JD Edwards EnterpriseOne Tools 8.9 GA through 8.98.4.1 and OneWorld Tools through 24.1.3 allows remote authenticated users to affect integrity, related to Web Runtime SEC.
by Juan Manuel Garcia
CVE-2011-0836 EXPLOITDB text VERIFIED
Oracle JD Edwards EnterpriseOne <8.98.4.1 - Info Disclosure
Unspecified vulnerability in Oracle JD Edwards EnterpriseOne Tools 8.9 GA through 8.98.4.1 and OneWorld Tools through 24.1.3 allows remote authenticated users to affect integrity, related to Web Runtime SEC.
by Juan Manuel Garcia
EIP-2026-103238 EXPLOITDB text VERIFIED
Viola DVR VIO-4/1000 - Multiple Directory Traversal Vulnerabilities
by QSecure
EIP-2026-114463 EXPLOITDB text VERIFIED
XOOPS 2.5 - 'imagemanager.php' Local File Inclusion
by KedAns-Dz
EIP-2026-108480 EXPLOITDB text VERIFIED
Joomla! Component com_phocadownload - Local File Inclusion
by KedAns-Dz
EIP-2026-110396 EXPLOITDB text
osPHPSite - SQL Injection
by vir0e5
EIP-2026-112014 EXPLOITDB text VERIFIED
Shape Web Solutions CMS - SQL Injection
by Ashiyane Digital Security Team
EIP-2026-105827 EXPLOITDB text VERIFIED
ChillyCMS 1.2.1 - Multiple Remote File Inclusions
by KedAns-Dz
EIP-2026-105556 EXPLOITDB text VERIFIED
Blue Hat - Sensitive Database Disclosure / SQL Injection
by ^Xecuti0N3r
By Source
All 31,386 Writeup 62,507 Exploitdb 50,076 Nomisec 22,465 Github 3,690 Metasploit 3,315 Vulncheck_xdb 930 Inthewild 514 Gitlab 479 Gitee 415 Patchapalooza 312
By Language
text 31,386 python 6,604 ruby 6,006 c 3,632 perl 2,849 html 2,076 php 1,333 bash 462 java 371 c++ 261 javascript 231 shell 133 go 73 postscript 25 typescript 25