Exploitdb Exploits
31,394 exploits tracked across all sources.
Pragyan CMS 3.0 - Multiple Vulnerabilities
by Villy & Abhishek Lyall
WordPress Plugin Relevanssi 2.7.2 - Persistent Cross-Site Scripting
by Saif El-Sherei
WordPress Plugin IWantOneButton 3.0.1 - Multiple Vulnerabilities
by High-Tech Bridge SA
WordPress Plugin GigPress 2.1.10 - Persistent Cross-Site Scripting
by Saif El-Sherei
VastHTML Forum Server 1.6.1 and 1.6.5 - SQL Injection via Search Max Parameter
Multiple SQL injection vulnerabilities in VastHTML Forum Server (aka ForumPress) plugin 1.6.1 and 1.6.5 for WordPress allow remote attackers to execute arbitrary SQL commands via the (1) search_max parameter in a search action to index.php, which is not properly handled by wpf.class.php, (2) id parameter in an editpost action to index.php, which is not properly handled by wpf-post.php, or (3) topic parameter to feed.php.
by High-Tech Bridge SA
Logwatch 7.3.6 - Remote Code Execution via Shell Metacharacters in Log File Name
logwatch.pl in Logwatch 7.3.6 allows remote attackers to execute arbitrary commands via shell metacharacters in a log file name, as demonstrated via a crafted username to a Samba server.
by Dominik George
iOS Share 1.0 - Directory Traversal
by R3d@l3rt_ Sp@2K_ Sunlight
iOS myDBLite 1.1.10 - Directory Traversal
by R3d@l3rt_ Sp@2K_ Sunlight
iOS iDocManager 1.0.0 - Directory Traversal
by R3d@l3rt_ Sp@2K_ Sunlight
iSO Filer Lite 2.1.0 - Directory Traversal
by R3d@l3rt_ Sp@2K_ Sunlight
iphone pdf reader pro 2.3 - Directory Traversal
by Khashayar Fereidani
WordPress Plugin YT-Audio 1.7 - 'v' Cross-Site Scripting
by AutoSec Tools
WordPress Plugin IGIT Posts Slider Widget 1.0 - 'src' Cross-Site Scripting
by AutoSec Tools
WordPress Plugin Comment Rating 2.9.23 - Multiple Vulnerabilities
by High-Tech Bridge SA
WordPress Plugin ComicPress Manager 1.4.9 - 'lang' Cross-Site Scripting
by AutoSec Tools
tplSoccerStats - 'player.php' SQL Injection
by AtT4CKxT3rR0r1ST
By Source