Exploitdb Exploits

50,076 exploits tracked across all sources.

Sort: Activity Stars
CVE-2020-36904 EXPLOITDB HIGH text
Selea CarPlateServer 4.0.1.6 - Unauthenticated Remote Program Execution via NO_LIST_EXE_PATH Configuration
Selea CarPlateServer 4.0.1.6 contains a remote program execution vulnerability that allows attackers to execute arbitrary Windows binaries by manipulating the NO_LIST_EXE_PATH configuration parameter. Attackers can bypass authentication through the /cps/ endpoint and modify server configuration, including changing admin passwords and executing system commands.
by LiquidWorm
CVSS 7.5
CVE-2020-36903 EXPLOITDB HIGH text
Selea CarPlateServer 4.0.1.6 - Privilege Escalation
Selea CarPlateServer 4.0.1.6 contains an unquoted service path vulnerability in the Windows service configuration that allows local users to potentially execute code with elevated privileges. Attackers can exploit the service's unquoted binary path by inserting malicious code in the system root path that could execute with LocalSystem privileges during application startup or reboot.
by LiquidWorm
CVSS 8.4
EIP-2026-104242 EXPLOITDB python
ERPNext 12.14.0 - SQL Injection (Authenticated)
by Hodorsec
CVE-2019-3396 EXPLOITDB CRITICAL python
Atlassian Confluence Widget Connector Macro Velocity Template Injection
The Widget Connector macro in Atlassian Confluence Server before version 6.6.12 (the fixed version for 6.6.x), from version 6.7.0 before 6.12.3 (the fixed version for 6.12.x), from version 6.13.0 before 6.13.3 (the fixed version for 6.13.x), and from version 6.14.0 before 6.14.2 (the fixed version for 6.14.x), allows remote attackers to achieve path traversal and remote code execution on a Confluence Server or Data Center instance via server-side template injection.
by 46o60
CVSS 9.8
CVE-2021-2109 EXPLOITDB HIGH python
Oracle WebLogic Server <14.1.1.0.0 - RCE
Vulnerability in the Oracle WebLogic Server product of Oracle Fusion Middleware (component: Console). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.3.0, 12.2.1.4.0 and 14.1.1.0.0. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compromise Oracle WebLogic Server. Successful attacks of this vulnerability can result in takeover of Oracle WebLogic Server. CVSS 3.1 Base Score 7.2 (Confidentiality, Integrity and Availability impacts). CVSS Vector: (CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H).
by Photubias
CVSS 7.2
CVE-2020-35749 EXPLOITDB HIGH ruby VERIFIED
Simple Board Job < 2.9.3 - Authenticated Path Traversal via sjb_file Parameter
Directory traversal vulnerability in class-simple_job_board_resume_download_handler.php in the Simple Board Job plugin 2.9.3 and earlier for WordPress allows remote attackers to read arbitrary files via the sjb_file parameter to wp-admin/post.php.
by SunCSR Team
CVSS 7.7
EIP-2026-110091 EXPLOITDB text
Online Documents Sharing Platform 1.0 - 'user' SQL Injection
by CANKAT ÇAKMAK
EIP-2026-109829 EXPLOITDB text
Nagios XI 5.7.5 - Multiple Persistent Cross-Site Scripting
by Matthew Aberegg
EIP-2026-105191 EXPLOITDB text
Apartment Visitors Management System 1.0 - 'email' SQL Injection
by CANKAT ÇAKMAK
CVE-2020-23342 EXPLOITDB HIGH html
Anchor CMS 0.12.7 - Cross-Site Request Forgery in User Edit Function
A CSRF vulnerability exists in Anchor CMS 0.12.7 anchor/views/users/edit.php that can change the Delete admin users.
by Ninad Mishra
CVSS 8.8
EIP-2026-113147 EXPLOITDB python
Voting System 1.0 - File Upload RCE (Authenticated Remote Code Execution)
by Richard Jones
EIP-2026-104375 EXPLOITDB text
Oracle Business Intelligence Enterprise Edition 11.1.1.7.140715 - Stored XSS
by omurugur
EIP-2026-104200 EXPLOITDB python
ChurchRota 2.6.4 - RCE (Authenticated)
by Rob McCarthy
CVE-2020-24881 EXPLOITDB CRITICAL text
osTicket < 1.14.3 - Server-Side Request Forgery
SSRF exists in osTicket before 1.14.3, where an attacker can add malicious file to server or perform port scanning.
by Talat Mehmood
CVSS 9.8
CVE-2021-3137 EXPLOITDB MEDIUM text
XWiki < 12.10.3 - Stored Cross-Site Scripting via SVG Upload in Comment Section
XWiki 12.10.2 allows XSS via an SVG document to the upload feature of the comment section.
by Karan Keswani
CVSS 5.4
EIP-2026-109122 EXPLOITDB text
Life Insurance Management System 1.0 - File Upload RCE (Authenticated)
by Aitor Herrero
EIP-2026-109121 EXPLOITDB text
Life Insurance Management System 1.0 - 'client_id' SQL Injection
by Aitor Herrero
EIP-2026-101592 EXPLOITDB python
Cisco UCS Manager 2.2(1d) - Remote Command Execution
by liquidsky
CVE-2021-3239 EXPLOITDB CRITICAL python
E-Learning System 1.0 - SQL Injection
E-Learning System 1.0 suffers from an unauthenticated SQL injection vulnerability, which allows remote attackers to execute arbitrary code on the hosting web server and gain a reverse shell.
by Himanshu Shukla
CVSS 9.8
CVE-2021-3113 EXPLOITDB HIGH ruby VERIFIED
Netsia SEBA+ <0.16.1 build 70-e669dcd7 - Info Disclosure
Netsia SEBA+ through 0.16.1 build 70-e669dcd7 allows remote attackers to discover session cookies via a direct /session/list/allActiveSession request. For example, the attacker can discover the admin's cookie if the admin account happens to be logged in when the allActiveSession request occurs, and can then use that cookie immediately for admin access,
by AkkuS
CVSS 7.5
EIP-2026-113707 EXPLOITDB text
WordPress Plugin Easy Contact Form 1.1.7 - 'Name' Stored Cross-Site Scripting (XSS)
by Rahul Ramakant Singh
CVE-2020-35687 EXPLOITDB MEDIUM html
PHPFusion 9.03.90 - Cross-Site Request Forgery
PHPFusion version 9.03.90 is vulnerable to CSRF attack which leads to deletion of all shoutbox messages by the attacker on behalf of the logged in victim.
by Mohamed Oosman
CVSS 4.3
EIP-2026-110119 EXPLOITDB text
Online Hotel Reservation System 1.0 - Cross-site request forgery (CSRF)
by Mesut Cetin
EIP-2026-110117 EXPLOITDB text
Online Hotel Reservation System 1.0 - 'person' time-based SQL Injection
by Mesut Cetin
EIP-2026-110115 EXPLOITDB text
Online Hotel Reservation System 1.0 - 'id' Time-based SQL Injection
by Mesut Cetin