Exploitdb Exploits

31,344 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-108914 EXPLOITDB text VERIFIED
Joomla! Plugin Captcha 4.5.1 - Local File Disclosure
by dun
CVE-2011-0505 EXPLOITDB text
Remi Jean Zwii - Path Traversal
Directory traversal vulnerability in system/system.php in Zwii 2.1.1, when magic_quotes_gpc is disabled and register_globals is enabled, allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the set[template][value] parameter.
by Abdi Mohamed
EIP-2026-113893 EXPLOITDB text VERIFIED
WordPress Plugin mingle forum 1.0.26 - Multiple Vulnerabilities
by Charles Hooper
EIP-2026-111873 EXPLOITDB text VERIFIED
sahana agasti 0.6.5 - Multiple Vulnerabilities
by dun
EIP-2026-108921 EXPLOITDB text VERIFIED
Joostina 1.3 - 'index.php' Cross-Site Scripting
by MustLive
EIP-2026-106847 EXPLOITDB text
Elxis CMS 2009.2 - Remote File Inclusion
by n0n0x
CVE-2011-0506 EXPLOITDB text VERIFIED
Tsixm Axdcms - Path Traversal
Directory traversal vulnerability in modules/profile/user.php in Ax Developer CMS (AxDCMS) 0.1.1 allows remote attackers to execute arbitrary code via a .. (dot dot) in the aXconf[default_language] parameter.
by n0n0x
EIP-2026-116331 EXPLOITDB text VERIFIED
StageTracker 2.5 - Denial of Service
by freak_out
EIP-2026-110322 EXPLOITDB text
openSite 0.2.2 Beta - Local File Inclusion
by n0n0x
EIP-2026-111172 EXPLOITDB text VERIFIED
phpMySport 1.4 - SQL Injection / Authentication Bypass / Full Path Disclosure
by High-Tech Bridge SA
EIP-2026-110732 EXPLOITDB text
PHP MicroCMS 1.0.1 - Cross-Site Request Forgery / Cross-Site Scripting
by High-Tech Bridge SA
EIP-2026-110731 EXPLOITDB text VERIFIED
PHP MicroCMS 1.0.1 - 'page_text' Cross-Site Scripting
by High-Tech Bridge SA
CVE-2011-0407 EXPLOITDB text
Phenotype-cms Phenotype Cms - SQL Injection
SQL injection vulnerability in the store function in _phenotype/system/class/PhenoTypeDataObject.class.php in Phenotype CMS 3.0 allows remote attackers to execute arbitrary SQL commands via a crafted URI, as demonstrated by Gallery/gal_id/1/image1,1.html. NOTE: some of these details are obtained from third party information.
by High-Tech Bridge SA
CVE-2011-0005 EXPLOITDB text VERIFIED
Joomla! <1.0.16 - XSS
Cross-site scripting (XSS) vulnerability in the com_search module for Joomla! 1.0.x through 1.0.15 allows remote attackers to inject arbitrary web script or HTML via the ordering parameter to index.php.
by Aung Khant
EIP-2026-107775 EXPLOITDB text VERIFIED
Ignition 1.3 - 'comment.php' Local File Inclusion
by n0n0x
EIP-2026-107020 EXPLOITDB text VERIFIED
F3Site 2011 alfa 1 - Cross-Site Scripting / Cross-Site Request Forgery
by High-Tech Bridge SA
EIP-2026-102522 EXPLOITDB text VERIFIED
Openfire 3.6.4 - Multiple Cross-Site Request Forgery Vulnerabilities
by Riyaz Ahemed Walikar
EIP-2026-101343 EXPLOITDB text VERIFIED
Lexmark X651de - Printer Ready Message Value HTML Injection
by dave b
EIP-2026-113435 EXPLOITDB text VERIFIED
WikLink 0.1.3 - 'getURL.php' SQL Injection
by Aliaksandr Hartsuyeu
EIP-2026-109977 EXPLOITDB text
Nucleus 3.61 - Multiple Remote File Inclusions
by n0n0x
EIP-2026-102523 EXPLOITDB text VERIFIED
Openfire 3.6.4 - Multiple Cross-Site Scripting Vulnerabilities
by Walikar Riyaz Ahemed Dawalmalik
EIP-2026-100171 EXPLOITDB text VERIFIED
BlogEngine.NET 1.6 - Directory Traversal / Information Disclosure
by Deniz Cevik
EIP-2026-113469 EXPLOITDB text VERIFIED
WonderCMS 0.3.3 - 'editText.php' Cross-Site Scripting
by High-Tech Bridge SA
EIP-2026-111871 EXPLOITDB text
Sahana Agasti 0.6.4 - Multiple Remote File Inclusions
by n0n0x
CVE-2011-1081 EXPLOITDB text VERIFIED
Openldap - Resource Management Error
modrdn.c in slapd in OpenLDAP 2.4.x before 2.4.24 allows remote attackers to cause a denial of service (daemon crash) via a relative Distinguished Name (DN) modification request (aka MODRDN operation) that contains an empty value for the OldDN field.
by Serge Dubrouski
By Source
All 31,344 Writeup 60,355 Exploitdb 50,009 Nomisec 21,883 Metasploit 3,225 Github 2,722 Vulncheck_xdb 906 Inthewild 514 Gitlab 442 Gitee 415 Patchapalooza 312
By Language
text 31,344 python 6,037 ruby 5,914 c 3,575 perl 2,849 html 2,053 php 1,326 bash 460 java 364 c++ 251 javascript 220 shell 96 go 61 postscript 25 xml 24