Exploitdb Exploits

31,344 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-112749 EXPLOITDB text VERIFIED
Toronja CMS - SQL Injection
by cyberlog
EIP-2026-112748 EXPLOITDB text VERIFIED
Toronja CMS - HTML / Cross-Site Scripting Injection
by CoBRa_21
EIP-2026-111713 EXPLOITDB text VERIFIED
Realtor WebSite System E-Commerce - SQL Injection
by cyberlog
EIP-2026-111456 EXPLOITDB text VERIFIED
PPhlogger 2.2.5 - 'trace.php' Remote Command Execution
by Sn!pEr.S!Te Hacker
EIP-2026-110482 EXPLOITDB text VERIFIED
parlic Design - SQL Injection / Cross-Site Scripting / HTML Injection
by XroGuE
EIP-2026-108442 EXPLOITDB text VERIFIED
Joomla! Component com_mediqna 1.1 - Local File Inclusion
by kaMtiEz
EIP-2026-107550 EXPLOITDB text VERIFIED
Hampshire Trading Standards Script - SQL Injection
by Mr.P3rfekT
EIP-2026-107428 EXPLOITDB text VERIFIED
GlobalWebTek Design - SQL Injection
by cyberlog
EIP-2026-107086 EXPLOITDB text
File Share scriptFile share - SQL Injection
by MouDy-Dz
EIP-2026-105377 EXPLOITDB text VERIFIED
BackLinkSpider 1.3.1774 - 'cat_id' SQL Injection
by sniper ip
CVE-2010-1938 EXPLOITDB text VERIFIED
Freebsd < 2.4.1 - Numeric Error
Off-by-one error in the __opiereadrec function in readrec.c in libopie in OPIE 2.4.1-test1 and earlier, as used on FreeBSD 6.4 through 8.1-PRERELEASE and other platforms, allows remote attackers to cause a denial of service (daemon crash) or possibly execute arbitrary code via a long username, as demonstrated by a long USER command to the FreeBSD 8.0 ftpd.
by Maksymilian Arciemowicz
EIP-2026-119416 EXPLOITDB text VERIFIED
RapidWareX 2.0.1 - 'WebUI' Cross-Site Request Forgery
by l3D
EIP-2026-112364 EXPLOITDB text VERIFIED
Spaceacre - SQL Injection / Cross-Site Scripting / HTML Injection
by XroGuE
EIP-2026-112362 EXPLOITDB text VERIFIED
Spaceacre - '/index.php' SQL Injection / HTML / Cross-Site Scripting Injection
by CoBRa_21
EIP-2026-109629 EXPLOITDB text VERIFIED
Multi Vendor Mall - 'pages.php' SQL Injection
by Newbie_Campuz
EIP-2026-109628 EXPLOITDB text VERIFIED
Multi Vendor Mall - 'itemdetail.php?& shop.php' SQL Injection
by CoBRa_21
EIP-2026-109379 EXPLOITDB text VERIFIED
md5 Encryption Decryption PHP Script - 'index.php' Cross-Site Scripting
by indoushka
EIP-2026-105585 EXPLOITDB text VERIFIED
Book Gallery - 'aboutbook.php' SQL Injection
by Mr.P3rfekT
EIP-2026-113350 EXPLOITDB text VERIFIED
Website Design and Hosting By Netricks Inc - 'news.php' SQL Injection
by Dr.SiLnT HilL
EIP-2026-113321 EXPLOITDB text VERIFIED
Webit CMS - SQL Injection
by CoBRa_21
EIP-2026-113232 EXPLOITDB text VERIFIED
web5000 - 'page_show' SQL Injection
by BLack Revenge
EIP-2026-112060 EXPLOITDB text VERIFIED
Simpel Side - 'index2.php' SQL Injection
by MN9
CVE-2010-2141 EXPLOITDB text VERIFIED
Nitropowered Nitro Web Gallery - SQL Injection
SQL injection vulnerability in index.php in NITRO Web Gallery allows remote attackers to execute arbitrary SQL commands via the PictureId parameter in an open action.
by cyberlog
CVE-2010-2091 EXPLOITDB text
Microsoft Exchange Server - XSS
Microsoft Outlook Web Access (OWA) 8.2.254.0, when Internet Explorer 7 on Windows Server 2003 is used, does not properly handle the id parameter in a Folder IPF.Note action to the default URI, which might allow remote attackers to obtain sensitive information or conduct cross-site scripting (XSS) attacks via an invalid value.
by Praveen Darshanam
EIP-2026-113328 EXPLOITDB text VERIFIED
Webloader 8 - SQL Injection
by ByEge
By Source
All 31,344 Writeup 60,430 Exploitdb 50,009 Nomisec 21,921 Metasploit 3,230 Github 2,773 Vulncheck_xdb 907 Inthewild 514 Gitlab 443 Gitee 415 Patchapalooza 312
By Language
text 31,344 python 6,051 ruby 5,919 c 3,584 perl 2,849 html 2,054 php 1,327 bash 460 java 364 c++ 251 javascript 220 shell 98 go 61 postscript 25 xml 24