Exploitdb Exploits

31,344 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-108205 EXPLOITDB text
Joomla! Component Answers 2.3beta - Multiple Vulnerabilities
by jdc
CVE-2010-4981 EXPLOITDB text VERIFIED
YourFreeWorld Banner Management - SQL Injection
SQL injection vulnerability in trackads.php in YourFreeWorld Banner Management allows remote attackers to execute arbitrary SQL commands via the id parameter. NOTE: some of these details are obtained from third party information.
by L0rd CrusAd3r
CVE-2010-1622 EXPLOITDB text VERIFIED
Oracle Fusion Middleware < 2.5.7 - Code Injection
SpringSource Spring Framework 2.5.x before 2.5.6.SEC02, 2.5.7 before 2.5.7.SR01, and 3.0.x before 3.0.3 allows remote attackers to execute arbitrary code via an HTTP request containing class.classLoader.URLs[0]=jar: followed by a URL of a crafted .jar file.
by Meder Kydyraliev
EIP-2026-115050 EXPLOITDB text VERIFIED
Chrome Engine 4 - Denial of Service
by Luigi Auriemma
EIP-2026-111320 EXPLOITDB text
Planet 1.1 - Cross-Site Request Forgery (Add Admin)
by G0D-F4Th3r
EIP-2026-111285 EXPLOITDB text
Pithcms 0.9.5 - Local File Inclusion
by sh00t0ut
EIP-2026-110885 EXPLOITDB text
PHP-Nuke Module print 6.0 - 'print&sid' SQL Injection
by Gamoscu
EIP-2026-110546 EXPLOITDB text
PenPals - Authentication Bypass
by L0rd CrusAd3r
EIP-2026-109180 EXPLOITDB text VERIFIED
Live CMS - SQL Injection
by ahwak2000
EIP-2026-107560 EXPLOITDB text
Havij 1.10 - Persistent Cross-Site Scripting
by hexon
EIP-2026-107107 EXPLOITDB text VERIFIED
Firebook - Multiple Cross-Site Scripting / Directory Traversal Vulnerabilities
by MustLive
EIP-2026-106701 EXPLOITDB text VERIFIED
Easy Travel Portal - SQL Injection
by L0rd CrusAd3r
CVE-2010-2351 EXPLOITDB text VERIFIED
Novell Netware < 6.5 - Memory Corruption
Stack-based buffer overflow in the CIFS.NLM driver in Netware SMB 1.0 for Novell Netware 6.5 SP8 and earlier allows remote attackers to execute arbitrary code via a Sessions Setup AndX packet with a long AccountName.
by laurent gaffie
EIP-2026-100105 EXPLOITDB text
Ananda Image Gallery - SQL Injection
by L0rd CrusAd3r
CVE-2010-5018 EXPLOITDB text VERIFIED
2daybiz Online Classified Script - XSS
Cross-site scripting (XSS) vulnerability in products/classified/headersearch.php in 2daybiz Online Classified Script allows remote attackers to inject arbitrary web script or HTML via the sid parameter.
by Sid3^effects
EIP-2026-114869 EXPLOITDB text VERIFIED
Adobe SVG Viewer 3.0 - Circle Transform Remote Code Execution
by h07
EIP-2026-111701 EXPLOITDB text VERIFIED
Real Estate - SQL Injection
by L0rd CrusAd3r
EIP-2026-110927 EXPLOITDB text
PHPAuctionSystem - Arbitrary File Upload
by Sid3^effects
CVE-2010-2358 EXPLOITDB text
Jeffkilroy Nakid Cms - Code Injection
PHP remote file inclusion vulnerability in modules/catalog/upload_photo.php in Nakid CMS 0.5.2, when magic_quotes_gpc is disabled and register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the core[system_path] parameter. NOTE: some of these details are obtained from third party information.
by sh00t0ut
EIP-2026-109831 EXPLOITDB text
Nakid CMS 0.5.2 - 'FCKeditor' Arbitrary File Upload
by eidelweiss
CVE-2010-2341 EXPLOITDB text
Ezpx Photoblog - Code Injection
PHP remote file inclusion vulnerability in system/application/views/public/commentform.php in EZPX Photoblog 1.2 beta allows remote attackers to execute arbitrary PHP code via a URL in the tpl_base_dir parameter.
by sh00t0ut
CVE-2010-5015 EXPLOITDB text VERIFIED
2daybiz Network Community Script - SQL Injection
SQL injection vulnerability in view_photo.php in 2daybiz Network Community Script allows remote attackers to execute arbitrary SQL commands via the alb parameter.
by Sid3^effects
CVE-2010-5019 EXPLOITDB text VERIFIED
2daybiz Online Classified Script - SQL Injection
SQL injection vulnerability in view_photo.php in 2daybiz Online Classified Script allows remote attackers to execute arbitrary SQL commands via the alb parameter.
by Sid3^effects
EIP-2026-111974 EXPLOITDB text VERIFIED
Sell@Site PHP Online Jobs Login - Multiple SQL Injections
by L0rd CrusAd3r
EIP-2026-111476 EXPLOITDB text VERIFIED
Pre Job Board Pro - Authentication Bypass
by L0rd CrusAd3r
By Source
All 31,344 Writeup 60,429 Exploitdb 50,009 Nomisec 21,918 Metasploit 3,229 Github 2,763 Vulncheck_xdb 907 Inthewild 514 Gitlab 443 Gitee 415 Patchapalooza 312
By Language
text 31,344 python 6,048 ruby 5,918 c 3,579 perl 2,849 html 2,054 php 1,327 bash 460 java 364 c++ 251 javascript 220 shell 98 go 61 postscript 25 xml 24