Exploitdb Exploits

31,346 exploits tracked across all sources.

Sort: Activity Stars
CVE-2010-0975 EXPLOITDB text VERIFIED
PHPCityPortal - Remote Code Execution via external.php URL Parameter
PHP remote file inclusion vulnerability in external.php in PHPCityPortal allows remote attackers to execute arbitrary PHP code via a URL in the url parameter.
by R3d-D3V!L
EIP-2026-107973 EXPLOITDB text
ispCP Omega 1.0.4 - Remote File Inclusion
by cr4wl3r
EIP-2026-107350 EXPLOITDB text VERIFIED
Gazelle CMS - Cross-Site Request Forgery
by pratul agrawal
CVE-2010-0122 EXPLOITDB text VERIFIED
Timeclock-software Employee Timeclock Software - SQL Injection
Multiple SQL injection vulnerabilities in Employee Timeclock Software 0.99 allow remote attackers to execute arbitrary SQL commands via the (1) username or (2) password parameter to (a) auth.php or (b) login_action.php.
by Secunia Research
EIP-2026-106393 EXPLOITDB text VERIFIED
DDL CMS 2.1 - 'blacklist.php' Cross-Site Scripting
by ITSecTeam
EIP-2026-105700 EXPLOITDB text VERIFIED
Campsite 3.3.5 - Cross-Site Request Forgery
by pratul agrawal
EIP-2026-104859 EXPLOITDB text VERIFIED
60cycleCMS - 'select.php' Multiple HTML Injection Vulnerabilities
by pratul agrawal
EIP-2026-104258 EXPLOITDB text VERIFIED
Friendly Technologies TR-069 ACS 2.8.9 - Login SQL Injection
by Yaniv Miron
EIP-2026-103673 EXPLOITDB text VERIFIED
SUPERAntiSpyware 4.34.1000 and SuperAdBlocker 4.6.1000 - Multiple Vulnerabilities
by Luka Milkovic
EIP-2026-101748 EXPLOITDB text
Friendly-Tech FriendlyTR69 CPE Remote Management 2.8.9 - SQL Injection
by Yaniv Miron
EIP-2026-100416 EXPLOITDB text VERIFIED
Max Network Technology BBSMAX 4.2 - 'threadid' Cross-Site Scripting
by Liscker
EIP-2026-119108 EXPLOITDB text VERIFIED
SAP GUI 7.10 - WebViewer3D Active-X JIT-Spray
by Alexey Sintsov
EIP-2026-117411 EXPLOITDB text VERIFIED
Lenovo Hotkey Driver 5.33 - Local Privilege Escalation
by Chilik Tamir
EIP-2026-113437 EXPLOITDB text VERIFIED
Wild CMS - SQL Injection
by Ariko-Security
EIP-2026-112855 EXPLOITDB text VERIFIED
Uebimiau Webmail 3.2.0-2.0 - Email Disclosure
by Z3r0c0re_ R4vax
EIP-2026-112682 EXPLOITDB text VERIFIED
TikiWik < 4.2 - Multiple Vulnerabilities
by Mateusz Drygas
EIP-2026-110697 EXPLOITDB text VERIFIED
PHP File Sharing System 1.5.1 - Multiple Vulnerabilities
by blake
CVE-2010-5060 EXPLOITDB text VERIFIED
NUs Newssystem <1.02 - SQL Injection
SQL injection vulnerability in Nus.php in NUs Newssystem 1.02 allows remote attackers to execute arbitrary SQL commands via the id parameter.
by n3w7u
CVE-2010-5062 EXPLOITDB text VERIFIED
MH Products kleinanzeigenmarkt - SQL Injection
SQL injection vulnerability in search.php in MH Products kleinanzeigenmarkt allows remote attackers to execute arbitrary SQL commands via the c parameter.
by Easy Laster
EIP-2026-108367 EXPLOITDB text VERIFIED
Joomla! Component com_hezacontent 1.0 - 'id' SQL Injection
by kaMtiEz
CVE-2010-1132 EXPLOITDB text VERIFIED
SpamAssassin Milter Plugin <0.3.1 - RCE
The mlfi_envrcpt function in spamass-milter.cpp in SpamAssassin Milter Plugin 0.3.1, when using the expand option, allows remote attackers to execute arbitrary system commands via shell metacharacters in the RCPT TO field of an email message.
by kingcope
EIP-2026-100363 EXPLOITDB text VERIFIED
IBM ENOVIA SmarTeam - 'LoginPage.aspx' Cross-Site Scripting
by Lament
CVE-2010-0958 EXPLOITDB text VERIFIED
Tribisur < 2.1 - Remote File Inclusion via Theme Parameter
Directory traversal vulnerability in modules/hayoo/index.php in Tribisur 2.1, 2.0, and earlier, when magic_quotes_gpc is disabled, allows remote attackers to include and execute arbitrary files via directory traversal sequences in the theme parameter. NOTE: some of these details are obtained from third party information.
by cr4wl3r
EIP-2026-106611 EXPLOITDB text VERIFIED
DZ Auktionshaus 'V4.rgo' - 'id' news.php?SQL Injection
by Easy Laster
EIP-2026-105818 EXPLOITDB text VERIFIED
Chaton 1.5.2 - Local File Inclusion
by cr4wl3r
By Source
All 31,346 Writeup 60,479 Exploitdb 50,014 Nomisec 21,938 Metasploit 3,232 Github 2,886 Vulncheck_xdb 908 Inthewild 514 Gitlab 443 Gitee 415 Patchapalooza 312
By Language
text 31,346 python 6,149 ruby 5,922 c 3,588 perl 2,849 html 2,054 php 1,327 bash 460 java 364 c++ 252 javascript 220 shell 99 go 64 postscript 25 xml 24