Exploitdb Exploits

31,344 exploits tracked across all sources.

Sort: Activity Stars
CVE-2010-2617 EXPLOITDB text VERIFIED
Paul Mcenery Php Bible Search - XSS
Cross-site scripting (XSS) vulnerability in bible.php in PHP Bible Search allows remote attackers to inject arbitrary web script or HTML via the chapter parameter.
by L0rd CrusAd3r
CVE-2010-2683 EXPLOITDB text VERIFIED
Customer Paradigm PageDirector CMS - SQL Injection
SQL injection vulnerability in result.php in Customer Paradigm PageDirector CMS allows remote attackers to execute arbitrary SQL commands via the sub_catid parameter.
by v3n0m
CVE-2010-4979 EXPLOITDB text VERIFIED
CANDID - SQL Injection
SQL injection vulnerability in image/view.php in CANDID allows remote attackers to execute arbitrary SQL commands via the image_id parameter.
by L0rd CrusAd3r
CVE-2010-4978 EXPLOITDB text VERIFIED
CANDID - Cross-Site Scripting via image_id Parameter
Cross-site scripting (XSS) vulnerability in image/view.php in CANDID allows remote attackers to inject arbitrary web script or HTML via the image_id parameter.
by L0rd CrusAd3r
EIP-2026-105226 EXPLOITDB text VERIFIED
ArcademSX 2.904 - 'cat' Cross-Site Scripting
by Th3 RDX
EIP-2026-105111 EXPLOITDB text
Allomani Super MultiMedia 2.5 - Cross-Site Request Forgery (Add Admin)
by G0D-F4Th3r
EIP-2026-105106 EXPLOITDB text
Allomani E-Store 1.0 - Cross-Site Request Forgery (Add Admin) (1)
by G0D-F4Th3r
EIP-2026-104308 EXPLOITDB text
LIOOSYS CMS - 'news.php' SQL Injection
by GlaDiaT0R
EIP-2026-104302 EXPLOITDB text VERIFIED
Kryn.cms 6.0 - Cross-Site Request Forgery / HTML Injection
by TurboBorland
CVE-2010-5029 EXPLOITDB text
Ecomat CMS 5.0 - SQL Injection
SQL injection vulnerability in index.php in Ecomat CMS 5.0 allows remote attackers to execute arbitrary SQL commands via the show parameter in a web action.
by High-Tech Bridge SA
CVE-2010-1931 EXPLOITDB text VERIFIED
Cubecart - SQL Injection
SQL injection vulnerability in includes/content/cart.inc.php in CubeCart PHP Shopping cart 4.3.4 through 4.3.9 allows remote attackers to execute arbitrary SQL commands via the shipKey parameter to index.php.
by Core Security
EIP-2026-102690 EXPLOITDB text VERIFIED
Mumble Murmur 1.2 - Denial of Service
by Luigi Auriemma
CVE-2010-2626 EXPLOITDB text VERIFIED
Miyabi-seo Cgi Tools Seo Links - Code Injection
index.pl in Miyabi CGI Tools SEO Links 1.02 allows remote attackers to execute arbitrary commands via shell metacharacters in the fn command. NOTE: some of these details are obtained from third party information.
by Marshall Whittaker
EIP-2026-100361 EXPLOITDB text VERIFIED
Iatek PortalApp 3.3/4.0 - 'login.asp' Multiple Cross-Site Scripting Vulnerabilities
by High-Tech Bridge SA
CVE-2010-2684 EXPLOITDB text VERIFIED
Customer Paradigm PageDirector CMS - SQL Injection
SQL injection vulnerability in index.php in Customer Paradigm PageDirector CMS allows remote attackers to execute arbitrary SQL commands via the id parameter.
by Tr0y-x
EIP-2026-112940 EXPLOITDB text VERIFIED
V-EVA Classified Script 5.1 - 'classified_img.php' SQL Injection
by Sid3^effects
EIP-2026-111573 EXPLOITDB text VERIFIED
PTCPay GEN4 - 'buyupg.php' SQL Injection
by Dark.Man
CVE-2010-2685 EXPLOITDB text VERIFIED
Customer Paradigm PageDirector CMS - Auth Bypass
siteadmin/adduser.php in Customer Paradigm PageDirector CMS does not properly restrict access, which allows remote attackers to bypass intended restrictions and add administrative users via a direct request.
by Tr0y-x
EIP-2026-109868 EXPLOITDB text VERIFIED
Netartmedia iBoutique.MALL - SQL Injection
by Sid3^effects
EIP-2026-109793 EXPLOITDB text VERIFIED
MySpace Clone 2010 - SQL Injection / Cross-Site Scripting
by L0rd CrusAd3r
EIP-2026-107829 EXPLOITDB text
iNet Online Community - Blind SQL Injection
by JaMbA
EIP-2026-107698 EXPLOITDB text
I-net Multi User Email Script - SQL Injection
by Sid3^effects
EIP-2026-106743 EXPLOITDB text VERIFIED
eBay Clone Script 2010 - 'showcategory.php' SQL Injection
by L0rd CrusAd3r
EIP-2026-106286 EXPLOITDB text VERIFIED
Customer Paradigm PageDirector - 'id' SQL Injection
by Tr0y-x
EIP-2026-105948 EXPLOITDB text VERIFIED
Clix'N'Cash Clone 2010 - 'index.php' SQL Injection
by L0rd CrusAd3r
By Source
All 31,344 Writeup 60,429 Exploitdb 50,009 Nomisec 21,918 Metasploit 3,229 Github 2,763 Vulncheck_xdb 907 Inthewild 514 Gitlab 443 Gitee 415 Patchapalooza 312
By Language
text 31,344 python 6,048 ruby 5,918 c 3,579 perl 2,849 html 2,054 php 1,327 bash 460 java 364 c++ 251 javascript 220 shell 98 go 61 postscript 25 xml 24