Text Exploits

31,386 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-102209 EXPLOITDB text VERIFIED
iOS TIOD 1.3.3 - Directory Traversal
by R3d@l3rt_ H@ckk3y
EIP-2026-113093 EXPLOITDB text VERIFIED
VidiScript - 'vp' Cross-Site Scripting
by NassRawI
EIP-2026-111698 EXPLOITDB text VERIFIED
Readmore Systems Script - SQL Injection
by vBzone & Zooka & El3arby
EIP-2026-111649 EXPLOITDB text VERIFIED
Quicktech - SQL Injection
by eXeSoul
EIP-2026-107196 EXPLOITDB text VERIFIED
Forritun - Multiple SQL Injections
by eXeSoul
EIP-2026-105494 EXPLOITDB text
Bitweaver 2.8.0 - Multiple Vulnerabilities
by lemlajt
CVE-2011-1143 EXPLOITDB text VERIFIED
Wireshark < 1.4.4 - Denial of Service via NTLMSSP Dissector NULL Pointer Dereference
epan/dissectors/packet-ntlmssp.c in the NTLMSSP dissector in Wireshark before 1.4.4 allows remote attackers to cause a denial of service (NULL pointer dereference and application crash) via a crafted .pcap file.
by Buildbot Builder
EIP-2026-118640 EXPLOITDB text
Home FTP Server 1.12 - Directory Traversal
by clshack
EIP-2026-115940 EXPLOITDB text
Nitro PDF Reader 1.4.0 - Heap Memory Corruption (PoC)
by LiquidWorm
EIP-2026-113584 EXPLOITDB text VERIFIED
WordPress Plugin BackWPup 1.4 - Multiple Information Disclosure Vulnerabilities
by Danilo Massa
EIP-2026-112261 EXPLOITDB text VERIFIED
SnapProof - 'retPageID' Cross-Site Scripting
by difficult 511
EIP-2026-112260 EXPLOITDB text VERIFIED
SnapProof - 'page.php' SQL Injection
by AtT4CKxT3rR0r1ST
EIP-2026-106483 EXPLOITDB text VERIFIED
DO-CMS - Multiple SQL Injections
by AtT4CKxT3rR0r1ST
CVE-2011-0708 EXPLOITDB text VERIFIED
PHP < 5.3.6 - Denial of Service via Exif Image File Directory Buffer Over-read
exif.c in the Exif extension in PHP before 5.3.6 on 64-bit platforms performs an incorrect cast, which allows remote attackers to cause a denial of service (application crash) via an image with a crafted Image File Directory (IFD) that triggers a buffer over-read.
by _ikki & paradoxengine
EIP-2026-113939 EXPLOITDB text VERIFIED
WordPress Plugin OPS Old Post Spinner 2.2.1 - Local File Inclusion
by AutoSec Tools
EIP-2026-113848 EXPLOITDB text VERIFIED
WordPress Plugin jQuery Mega Menu 1.0 - Local File Inclusion
by AutoSec Tools
EIP-2026-111266 EXPLOITDB text VERIFIED
phreebooks r30rc4 - Multiple Vulnerabilities
by AutoSec Tools
EIP-2026-111466 EXPLOITDB text VERIFIED
Pragyan CMS 3.0 - Multiple Vulnerabilities
by Villy & Abhishek Lyall
EIP-2026-111205 EXPLOITDB text VERIFIED
phpShop 0.8.1 - 'page' Cross-Site Scripting
by Aung Khant
EIP-2026-107420 EXPLOITDB text VERIFIED
glFusion 1.1.x/1.2.1 - 'users.php' SQL Injection
by H3X
EIP-2026-100514 EXPLOITDB text VERIFIED
RaksoCT - Multiple SQL Injections
by p0pc0rn
EIP-2026-114006 EXPLOITDB text VERIFIED
WordPress Plugin Relevanssi 2.7.2 - Persistent Cross-Site Scripting
by Saif El-Sherei
EIP-2026-113843 EXPLOITDB text VERIFIED
WordPress Plugin IWantOneButton 3.0.1 - Multiple Vulnerabilities
by High-Tech Bridge SA
EIP-2026-113787 EXPLOITDB text VERIFIED
WordPress Plugin GigPress 2.1.10 - Persistent Cross-Site Scripting
by Saif El-Sherei
CVE-2011-1047 EXPLOITDB text
VastHTML Forum Server 1.6.1 and 1.6.5 - SQL Injection via Search Max Parameter
Multiple SQL injection vulnerabilities in VastHTML Forum Server (aka ForumPress) plugin 1.6.1 and 1.6.5 for WordPress allow remote attackers to execute arbitrary SQL commands via the (1) search_max parameter in a search action to index.php, which is not properly handled by wpf.class.php, (2) id parameter in an editpost action to index.php, which is not properly handled by wpf-post.php, or (3) topic parameter to feed.php.
by High-Tech Bridge SA
By Source
All 31,386 Writeup 62,509 Exploitdb 50,076 Nomisec 22,473 Github 3,698 Metasploit 3,315 Vulncheck_xdb 930 Inthewild 514 Gitlab 480 Gitee 415 Patchapalooza 312
By Language
text 31,386 python 6,607 ruby 6,006 c 3,632 perl 2,849 html 2,076 php 1,333 bash 462 java 371 c++ 261 javascript 231 shell 135 go 73 postscript 25 typescript 25