Exploitdb Exploits

31,394 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-111466 EXPLOITDB text VERIFIED
Pragyan CMS 3.0 - Multiple Vulnerabilities
by Villy & Abhishek Lyall
EIP-2026-111205 EXPLOITDB text VERIFIED
phpShop 0.8.1 - 'page' Cross-Site Scripting
by Aung Khant
EIP-2026-107420 EXPLOITDB text VERIFIED
glFusion 1.1.x/1.2.1 - 'users.php' SQL Injection
by H3X
EIP-2026-100514 EXPLOITDB text VERIFIED
RaksoCT - Multiple SQL Injections
by p0pc0rn
EIP-2026-114006 EXPLOITDB text VERIFIED
WordPress Plugin Relevanssi 2.7.2 - Persistent Cross-Site Scripting
by Saif El-Sherei
EIP-2026-113843 EXPLOITDB text VERIFIED
WordPress Plugin IWantOneButton 3.0.1 - Multiple Vulnerabilities
by High-Tech Bridge SA
EIP-2026-113787 EXPLOITDB text VERIFIED
WordPress Plugin GigPress 2.1.10 - Persistent Cross-Site Scripting
by Saif El-Sherei
CVE-2011-1047 EXPLOITDB text
VastHTML Forum Server 1.6.1 and 1.6.5 - SQL Injection via Search Max Parameter
Multiple SQL injection vulnerabilities in VastHTML Forum Server (aka ForumPress) plugin 1.6.1 and 1.6.5 for WordPress allow remote attackers to execute arbitrary SQL commands via the (1) search_max parameter in a search action to index.php, which is not properly handled by wpf.class.php, (2) id parameter in an editpost action to index.php, which is not properly handled by wpf-post.php, or (3) topic parameter to feed.php.
by High-Tech Bridge SA
CVE-2011-1018 EXPLOITDB text VERIFIED
Logwatch 7.3.6 - Remote Code Execution via Shell Metacharacters in Log File Name
logwatch.pl in Logwatch 7.3.6 allows remote attackers to execute arbitrary commands via shell metacharacters in a log file name, as demonstrated via a crafted username to a Samba server.
by Dominik George
EIP-2026-102207 EXPLOITDB text VERIFIED
iOS Share 1.0 - Directory Traversal
by R3d@l3rt_ Sp@2K_ Sunlight
EIP-2026-102206 EXPLOITDB text VERIFIED
iOS myDBLite 1.1.10 - Directory Traversal
by R3d@l3rt_ Sp@2K_ Sunlight
EIP-2026-102203 EXPLOITDB text VERIFIED
iOS iDocManager 1.0.0 - Directory Traversal
by R3d@l3rt_ Sp@2K_ Sunlight
EIP-2026-101335 EXPLOITDB text VERIFIED
iSO Filer Lite 2.1.0 - Directory Traversal
by R3d@l3rt_ Sp@2K_ Sunlight
EIP-2026-101334 EXPLOITDB text
iSO Air Files 2.6 - Directory Traversal
by R3d@l3rt_ Sp@2K_ Sunlight
EIP-2026-101328 EXPLOITDB text
iphone pdf reader pro 2.3 - Directory Traversal
by Khashayar Fereidani
EIP-2026-101326 EXPLOITDB text
iphone ishred 1.93 - Directory Traversal
by Khashayar Fereidani
EIP-2026-101324 EXPLOITDB text
iPhone Guitar - Directory Traversal
by Khashayar Fereidani
EIP-2026-100696 EXPLOITDB text VERIFIED
Alcassoft's SOPHIA CMS - SQL Injection
by p0pc0rn
EIP-2026-114290 EXPLOITDB text
WordPress Plugin Z-Vote 1.1 - SQL Injection
by High-Tech Bridge SA
EIP-2026-114289 EXPLOITDB text VERIFIED
WordPress Plugin YT-Audio 1.7 - 'v' Cross-Site Scripting
by AutoSec Tools
EIP-2026-113820 EXPLOITDB text VERIFIED
WordPress Plugin IGIT Posts Slider Widget 1.0 - 'src' Cross-Site Scripting
by AutoSec Tools
EIP-2026-113638 EXPLOITDB text VERIFIED
WordPress Plugin Comment Rating 2.9.23 - Multiple Vulnerabilities
by High-Tech Bridge SA
EIP-2026-113636 EXPLOITDB text VERIFIED
WordPress Plugin ComicPress Manager 1.4.9 - 'lang' Cross-Site Scripting
by AutoSec Tools
EIP-2026-113094 EXPLOITDB text VERIFIED
VidiScript - SQL Injection
by ThEtA.Nu
EIP-2026-112762 EXPLOITDB text VERIFIED
tplSoccerStats - 'player.php' SQL Injection
by AtT4CKxT3rR0r1ST