Exploitdb Exploits

31,344 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-108396 EXPLOITDB text VERIFIED
Joomla! Component com_jfuploader < 2.12 - Arbitrary File Upload
by Setr0nix
EIP-2026-106004 EXPLOITDB text VERIFIED
CMS WebManager-Pro 7.4.3 - Cross-Site Scripting / SQL Injection
by MustLive
EIP-2026-118639 EXPLOITDB text VERIFIED
Home FTP Server 1.11.1.149 - (Authenticated) Directory Traversal
by chr1x
EIP-2026-116390 EXPLOITDB text VERIFIED
TeamSpeak 2.0.32.60 - Memory Corruption
by Jokaim & nSense
EIP-2026-112626 EXPLOITDB text
TFTgallery 0.13.1 - Local File Inclusion
by Havok
EIP-2026-111574 EXPLOITDB text
Pub-Me CMS - Blind SQL Injection
by H4f
EIP-2026-107068 EXPLOITDB text VERIFIED
Feindura CMS Groupware - Multiple Local File Inclusion / Cross-Site Scripting Vulnerabilities
by Justanotherhacker.com
EIP-2026-118902 EXPLOITDB text VERIFIED
MinaliC WebServer 1.0 - Remote Source Disclosure / File Download
by Dr_IDE
EIP-2026-118901 EXPLOITDB text VERIFIED
MinaliC WebServer 1.0 - Directory Traversal
by John Leitch
EIP-2026-114638 EXPLOITDB text VERIFIED
Zomplog 3.9 - Multiple Cross-Site Scripting / Cross-Site Request Forgery Vulnerabilities
by High-Tech Bridge SA
EIP-2026-114635 EXPLOITDB text VERIFIED
Zomplog 3.9 - Cross-Site Request Forgery
by High-Tech Bridge SA
EIP-2026-113162 EXPLOITDB text VERIFIED
W-Agora 4.1.5 - Local File Inclusion / Cross-Site Scripting
by MustLive
EIP-2026-111123 EXPLOITDB text VERIFIED
phpLiterAdmin 1.0 RC1 - Authentication Bypass
by High-Tech Bridge SA
EIP-2026-109965 EXPLOITDB text VERIFIED
Novaboard 1.1.4 - Local File Inclusion
by High-Tech Bridge SA
CVE-2010-4874 EXPLOITDB text VERIFIED
NinkoBB 1.3 RC5 - XSS
Multiple cross-site scripting (XSS) vulnerabilities in users.php in NinkoBB 1.3 RC5 allow remote attackers to inject arbitrary web script or HTML via the (1) first_name, (2) last_name, (3) msn, or (4) aim parameter.
by High-Tech Bridge SA
EIP-2026-109757 EXPLOITDB text VERIFIED
mycart 2.0 - Multiple Vulnerabilities
by Salvatore Fresta
EIP-2026-109692 EXPLOITDB text
MyBB 1.6 - Full Path Disclosure
by High-Tech Bridge SA
EIP-2026-109101 EXPLOITDB text VERIFIED
LES PACKS - 'ID' SQL Injection
by Cru3l.b0y
CVE-2010-4185 EXPLOITDB text VERIFIED
Energine < 2.3.8 - SQL Injection
SQL injection vulnerability in index.php in Energine, possibly 2.3.8 and earlier, allows remote attackers to execute arbitrary SQL commands via the NRGNSID cookie.
by High-Tech Bridge SA
EIP-2026-106614 EXPLOITDB text VERIFIED
DZCP (deV!L_z Clanportal) 1.5.4 - Local File Inclusion
by High-Tech Bridge SA
EIP-2026-106373 EXPLOITDB text
DBHcms 1.1.4 - 'dbhcms_user/SearchString' SQL Injection
by High-Tech Bridge SA
CVE-2010-4870 EXPLOITDB text VERIFIED
BloofoxCMS 0.3.5 - SQL Injection
SQL injection vulnerability in index.php in BloofoxCMS 0.3.5 allows remote attackers to execute arbitrary SQL commands via the gender parameter.
by High-Tech Bridge SA
EIP-2026-105544 EXPLOITDB text VERIFIED
BloofoxCMS 0.3.5 - Information Disclosure
by High-Tech Bridge SA
EIP-2026-105527 EXPLOITDB text
BlogBird Platform - Multiple Cross-Site Scripting Vulnerabilities
by High-Tech Bridge SA
CVE-2008-5751 EXPLOITDB text VERIFIED
AlstraSoft Web Email Script Enterprise - SQL Injection
SQL injection vulnerability in index.php in AlstraSoft Web Email Script Enterprise (ESE) allows remote attackers to execute arbitrary SQL commands via the id parameter in a directory action.
by Salvatore Fresta
By Source
All 31,344 Writeup 60,393 Exploitdb 50,009 Nomisec 21,896 Metasploit 3,227 Github 2,737 Vulncheck_xdb 907 Inthewild 514 Gitlab 442 Gitee 415 Patchapalooza 312
By Language
text 31,344 python 6,039 ruby 5,916 c 3,576 perl 2,849 html 2,053 php 1,326 bash 460 java 364 c++ 251 javascript 220 shell 96 go 61 postscript 25 xml 24