Exploitdb Exploits

31,344 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-107203 EXPLOITDB text VERIFIED
Fozzcom Shopping < 7.94 / < 8.04 - Multiple Vulnerabilities
by Dr.0rYX & Cr3W-DZ
EIP-2026-106091 EXPLOITDB text VERIFIED
CompactCMS 1.4.1 - Multiple Cross-Site Scripting Vulnerabilities (1)
by High-Tech Bridge SA
EIP-2026-119111 EXPLOITDB text VERIFIED
SAP NetWeaver 7.0 - SQL Monitor Multiple Cross-Site Scripting Vulnerabilities
by a.polyakov
EIP-2026-107263 EXPLOITDB text
Front Accounting 2.3RC2 - Multiple SQL Injections
by Juan Manuel Garcia
EIP-2026-107262 EXPLOITDB text
Front Accounting 2.3RC2 - Multiple Persistent Cross-Site Scripting Vulnerabilities
by Juan Manuel Garcia
EIP-2026-100550 EXPLOITDB text
Sitefinity CMS - 'ASP.NET' Arbitrary File Upload
by Net.Edit0r
EIP-2026-118435 EXPLOITDB text VERIFIED
DServe - Multiple Cross-Site Scripting Vulnerabilities
by Axiell
EIP-2026-113000 EXPLOITDB text VERIFIED
vBulletin 4.0.8 - Persistent Cross-Site Scripting via Profile Customization
by MaXe
EIP-2026-112058 EXPLOITDB text VERIFIED
Simea CMS - 'index.php' SQL Injection
by Cru3l.b0y
EIP-2026-111668 EXPLOITDB text VERIFIED
Raised Eyebrow CMS - 'venue.php' SQL Injection
by Cru3l.b0y
EIP-2026-110303 EXPLOITDB text
openEngine 2.0 100226 - Local File Inclusion / Cross-Site Scripting
by SecPod Research
EIP-2026-108435 EXPLOITDB text VERIFIED
Joomla! Component com_maianmedia - SQL Injection
by v3n0m
EIP-2026-107728 EXPLOITDB text
IceBB 1.0-rc10 - Multiple Vulnerabilities
by High-Tech Bridge SA
EIP-2026-106094 EXPLOITDB text VERIFIED
CompactCMS 1.4.1 - SQL Injection
by High-Tech Bridge SA
EIP-2026-105871 EXPLOITDB text
ClanSphere 2010.0 Final - Multiple Vulnerabilities
by High-Tech Bridge SA
CVE-2010-4647 EXPLOITDB text VERIFIED
Eclipse Ide < 3.6.1 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in the Help Contents web application (aka the Help Server) in Eclipse IDE before 3.6.2 allow remote attackers to inject arbitrary web script or HTML via the query string to (1) help/index.jsp or (2) help/advanced/content.jsp.
by Aung Khant
CVE-2010-4647 EXPLOITDB text VERIFIED
Eclipse Ide < 3.6.1 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in the Help Contents web application (aka the Help Server) in Eclipse IDE before 3.6.2 allow remote attackers to inject arbitrary web script or HTML via the query string to (1) help/index.jsp or (2) help/advanced/content.jsp.
by Aung Khant
EIP-2026-100177 EXPLOITDB text VERIFIED
BPRealestate Real Estate - Authentication Bypass
by v3n0m
EIP-2026-100176 EXPLOITDB text VERIFIED
BPDirectory Business Directory - Authentication Bypass
by v3n0m
EIP-2026-100175 EXPLOITDB text VERIFIED
BPConferenceReporting Web Reporting - Authentication Bypass
by v3n0m
EIP-2026-100174 EXPLOITDB text VERIFIED
BPAffiliate Affiliate Tracking - Authentication Bypass
by v3n0m
EIP-2026-109991 EXPLOITDB text VERIFIED
Nuked-klaN Module Boutique - Blind SQL Injection
by [AR51]Kevinos
EIP-2026-108263 EXPLOITDB text VERIFIED
Joomla! Component com_alfurqan15x - SQL Injection
by kaMtiEz
CVE-2010-4366 EXPLOITDB text VERIFIED
Abk-soft Chameleon Social Networking - XSS
Multiple cross-site scripting (XSS) vulnerabilities in forum_new_topic.php in Chameleon Social Networking allow remote attackers to inject arbitrary web script or HTML via the (1) thread_title and (2) thread_description parameters in a message.
by Dr-mosta
CVE-2009-5019 EXPLOITDB text VERIFIED
Webwiz Web Wiz Newspad - Access Control
Web Wiz NewsPad stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for database/NewsPad.mdb.
by keracker
By Source
All 31,344 Writeup 60,389 Exploitdb 50,009 Nomisec 21,896 Metasploit 3,227 Github 2,737 Vulncheck_xdb 907 Inthewild 514 Gitlab 442 Gitee 415 Patchapalooza 312
By Language
text 31,344 python 6,039 ruby 5,916 c 3,576 perl 2,849 html 2,053 php 1,326 bash 460 java 364 c++ 251 javascript 220 shell 96 go 61 postscript 25 xml 24