Exploitdb Exploits

50,135 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-110148 EXPLOITDB text
Online Movie Streaming 1.0 - Admin Authentication Bypass
by Richard Jones
CVE-2020-35578 EXPLOITDB HIGH python
Nagios XI < 5.8.0 - OS Command Injection
An issue was discovered in the Manage Plugins page in Nagios XI before 5.8.0. Because the line-ending conversion feature is mishandled during a plugin upload, a remote, authenticated admin user can execute operating-system commands.
by Haboob Team
CVSS 7.2
CVE-2021-3129 EXPLOITDB CRITICAL python
Ignition <2.5.2 - RCE
Ignition before 2.5.2, as used in Laravel and other products, allows unauthenticated remote attackers to execute arbitrary code because of insecure usage of file_get_contents() and file_put_contents(). This is exploitable on sites using debug mode with Laravel before 8.4.2.
by SunCSR Team
CVSS 9.8
EIP-2026-110118 EXPLOITDB text
Online Hotel Reservation System 1.0 - Admin Authentication Bypass
by Richard Jones
EIP-2026-103900 EXPLOITDB python
Erlang Cookie - Remote Code Execution
by 1F98D
CVE-2021-47900 EXPLOITDB CRITICAL python VERIFIED
Gila CMS <2.0.0 - RCE
Gila CMS versions prior to 2.0.0 contain a remote code execution vulnerability that allows unauthenticated attackers to execute arbitrary system commands through manipulated HTTP headers. Attackers can inject PHP code in the User-Agent header with shell_exec() to run system commands by sending crafted requests to the admin endpoint.
by Enesdex
CVSS 9.8
EIP-2026-105773 EXPLOITDB text
Cemetry Mapping and Information System 1.0 - Multiple SQL Injections
by Mesut Cetin
EIP-2026-104436 EXPLOITDB python
SmartAgent 3.1.0 - Privilege Escalation
by Orion Hridoy
CVE-2021-3124 EXPLOITDB MEDIUM text VERIFIED
Newtarget Custom Global Variables - XSS
Stored cross-site scripting (XSS) in form field in robust.systems product Custom Global Variables v 1.0.5 allows a remote attacker to inject arbitrary code via the vars[0][name] field.
by Swapnil Subhash Bodekar
CVSS 5.4
CVE-2021-3110 EXPLOITDB CRITICAL text
Prestashop - SQL Injection
The store system in PrestaShop 1.7.7.0 allows time-based boolean SQL injection via the module=productcomments controller=CommentGrade id_products[] parameter.
by Jaimin Gondaliya
CVSS 9.8
EIP-2026-117788 EXPLOITDB python
PortableKanban 4.3.6578.38136 - Encrypted Password Retrieval
by rootabeta
EIP-2026-110274 EXPLOITDB text
OpenCart 3.0.36 - ATO via Cross Site Request Forgery
by Mahendra Purbia
EIP-2026-105774 EXPLOITDB text
Cemetry Mapping and Information System 1.0 - Multiple Stored Cross-Site Scripting
by Mesut Cetin
EIP-2026-104247 EXPLOITDB text
EyesOfNetwork 5.3 - RCE & PrivEsc
by Audencia Business SCHOOL Red Team
EIP-2026-104246 EXPLOITDB text
EyesOfNetwork 5.3 - LFI
by Audencia Business SCHOOL Red Team
EIP-2026-104157 EXPLOITDB text
Anchor CMS 0.12.7 - 'markdown' Stored Cross-Site Scripting
by Ramazan Mert GÖKTEN
EIP-2026-114273 EXPLOITDB ruby VERIFIED
Wordpress Plugin wpDiscuz 7.0.4 - Unauthenticated Arbitrary File Upload (Metasploit)
by SunCSR Team
EIP-2026-113578 EXPLOITDB ruby VERIFIED
WordPress Plugin Autoptimize 2.7.6 - Authenticated Arbitrary File Upload (Metasploit)
by SunCSR Team
CVE-2021-25791 EXPLOITDB MEDIUM text
Online Doctor Appointment System Php Full Source Code - XSS
Multiple stored cross site scripting (XSS) vulnerabilities in the "Update Profile" module of Online Doctor Appointment System 1.0 allows authenticated attackers to execute arbitrary web scripts or HTML via crafted payloads in the First Name, Last Name, and Address text fields.
by Mohamed habib Smidi
CVSS 5.4
EIP-2026-109123 EXPLOITDB text
Life Insurance Management System 1.0 - Multiple Stored XSS
by Arnav Tripathy
EIP-2026-104205 EXPLOITDB text
Cockpit Version 234 - Server-Side Request Forgery (Unauthenticated)
by Metin Yunus Kandemir
CVE-2020-17519 EXPLOITDB HIGH ruby VERIFIED
Apache Flink JobManager Traversal
A change introduced in Apache Flink 1.11.0 (and released in 1.11.1 and 1.11.2 as well) allows attackers to read any file on the local filesystem of the JobManager through the REST interface of the JobManager process. Access is restricted to files accessible by the JobManager process. All users should upgrade to Flink 1.11.3 or 1.12.0 if their Flink instance(s) are exposed. The issue was fixed in commit b561010b0ee741543c3953306037f00d7a9f0801 from apache/flink:master.
by SunCSR Team
CVSS 7.5
CVE-2021-3118 EXPLOITDB CRITICAL text
Medicalexpo Ecs Imaging < 6.21.5 - SQL Injection
EVOLUCARE ECSIMAGING (aka ECS Imaging) through 6.21.5 has multiple SQL Injection issues in the login form and the password-forgotten form (such as /req_password_user.php?email=). This allows an attacker to steal data in the database and obtain access to the application. (The database component runs as root.) NOTE: This vulnerability only affects products that are no longer supported by the maintainer
by shoxxdj
CVSS 9.8
CVE-2020-35131 EXPLOITDB CRITICAL text
Cockpit <0.6.1 - RCE
Cockpit before 0.6.1 allows an attacker to inject custom PHP code and achieve Remote Command Execution via registerCriteriaFunction in lib/MongoLite/Database.php, as demonstrated by values in JSON data to the /auth/check or /auth/requestreset URI.
by Rafael Resende
CVSS 9.8
EIP-2026-106864 EXPLOITDB text
Employee Record System 1.0 - Unrestricted File Upload to Remote Code Execution
by Saeed Bala Ahmed
By Source
All 50,135 Writeup 52,991 Exploitdb 50,135 Nomisec 21,420 Metasploit 3,228 Github 2,580 Vulncheck_xdb 903 Inthewild 518 Gitlab 441 Gitee 415 Patchapalooza 312
By Language
text 31,346 ruby 5,959 python 5,917 c 3,577 perl 2,854 html 2,056 php 1,334 bash 459 java 362 javascript 260 c++ 250 shell 95 go 52 postscript 25 xml 24