Exploitdb Exploits

50,076 exploits tracked across all sources.

Sort: Activity Stars
CVE-2020-37076 EXPLOITDB HIGH text
Victor CMS 1.0 - SQL Injection via Post Parameter
Victor CMS version 1.0 contains a SQL injection vulnerability in the 'post' parameter on post.php that allows remote attackers to manipulate database queries. Attackers can exploit this vulnerability by sending crafted UNION SELECT payloads to extract database information through boolean-based, error-based, and time-based injection techniques.
by BKpatron
CVSS 8.2
CVE-2020-37022 EXPLOITDB MEDIUM text
OpenZ ERP 3.6.60 - Stored Cross-Site Scripting in Employee Module Parameters
OpenZ ERP 3.6.60 contains a persistent cross-site scripting vulnerability in the Employee module's name and description parameters. Attackers can inject malicious scripts through POST requests to , enabling session hijacking and manipulation of application modules.
by Vulnerability-Lab
CVSS 6.4
CVE-2020-12608 EXPLOITDB HIGH text
SolarWinds MSP PME <1.1.15 - Code Execution
An issue was discovered in SolarWinds MSP PME (Patch Management Engine) Cache Service before 1.1.15 in the Advanced Monitoring Agent. There are insecure file permissions for %PROGRAMDATA%\SolarWinds MSP\SolarWinds.MSP.CacheService\config\. This can lead to code execution by changing the CacheService.xml SISServerURL parameter.
by Jens Regel
CVSS 7.8
EIP-2026-114050 EXPLOITDB python
WordPress Plugin Simple File List 4.2.2 - Remote Code Execution
by coiffeur
EIP-2026-111983 EXPLOITDB text
Sentrifugo CMS 3.2 - Persistent Cross-Site Scripting
by Vulnerability-Lab
EIP-2026-110054 EXPLOITDB text
Online AgroCulture Farm Management System 1.0 - 'uname' SQL Injection
by Tarun Sehgal
EIP-2026-106308 EXPLOITDB text
CuteNews 2.1.2 - Arbitrary File Deletion
by Besim
EIP-2026-106105 EXPLOITDB text
Complaint Management System 1.0 - Authentication Bypass
by BKpatron
EIP-2026-104304 EXPLOITDB text
LibreNMS 1.46 - 'search' SQL Injection
by Punt
EIP-2026-100654 EXPLOITDB text
Kartris 1.6 - Arbitrary File Upload
by Nhat Ha
CVE-2020-11108 EXPLOITDB HIGH python
Pi-Hole heisenbergCompensator Blocklist OS Command Execution
The Gravity updater in Pi-hole through 4.4 allows an authenticated adversary to upload arbitrary files. This can be abused for Remote Code Execution by writing to a PHP file in the web directory. (Also, it can be used in conjunction with the sudo rule for the www-data user to escalate privileges to root.) The code error is in gravity_DownloadBlocklistFromUrl in gravity.sh.
by Nick Frichette
CVSS 8.8
CVE-2020-11108 EXPLOITDB HIGH python
Pi-Hole heisenbergCompensator Blocklist OS Command Execution
The Gravity updater in Pi-hole through 4.4 allows an authenticated adversary to upload arbitrary files. This can be abused for Remote Code Execution by writing to a PHP file in the web directory. (Also, it can be used in conjunction with the sudo rule for the www-data user to escalate privileges to root.) The code error is in gravity_DownloadBlocklistFromUrl in gravity.sh.
by Nick Frichette
CVSS 8.8
CVE-2020-36907 EXPLOITDB HIGH bash
Aerohive HiveOS <= 11.0 - Unauthenticated Denial of Service via NetConfig UI action.php5
Aerohive HiveOS contains a denial of service vulnerability in the NetConfig UI that allows unauthenticated attackers to render the web interface unusable. Attackers can send a crafted HTTP request to the action.php5 script with specific parameters to trigger a 5-minute service disruption.
by LiquidWorm
CVSS 7.5
CVE-2020-28140 EXPLOITDB CRITICAL text
SourceCodester Online Clothing Store 1.0 - Arbitrary File Upload via Products.php Image Upload
SourceCodester Online Clothing Store 1.0 is affected by an arbitrary file upload via the image upload feature of Products.php.
by Sushant Kamble
CVSS 9.8
CVE-2020-14972 EXPLOITDB CRITICAL text
Sourcecodester Pisay Online E-Learning System 1.0 - SQL Injection
Multiple SQL injection vulnerabilities in Sourcecodester Pisay Online E-Learning System 1.0 allow remote unauthenticated attackers to bypass authentication and achieve Remote Code Execution (RCE) via the user_email, user_pass, and id parameters on the admin login-portal and the edit-lessons webpages.
by boku
CVSS 9.8
EIP-2026-115257 EXPLOITDB python
FlashGet 1.9.6 - Denial of Service (PoC)
by Milad karimi
EIP-2026-111928 EXPLOITDB text
School File Management System 1.0 - 'username' SQL Injection
by Tarun Sehgal
EIP-2026-110053 EXPLOITDB text
Online AgroCulture Farm Management System 1.0 - 'pid' SQL Injection
by BKpatron
EIP-2026-105711 EXPLOITDB text
Car Park Management System 1.0 - Authentication Bypass
by Tarun Sehgal
EIP-2026-101675 EXPLOITDB text
Draytek VigorAP 1000C - Persistent Cross-Site Scripting
by Vulnerability-Lab
CVE-2020-37080 EXPLOITDB CRITICAL text
webTareas 2.0.p8 - Privilege Escalation
webTareas 2.0.p8 contains a file deletion vulnerability in the print_layout.php administration component that allows authenticated attackers to delete arbitrary files. Attackers can exploit the vulnerability by manipulating the 'atttmp1' parameter to specify and delete files on the server through an unauthenticated file deletion mechanism.
by Besim
CVSS 9.8
CVE-2020-37078 EXPLOITDB HIGH text
i-doit Open Source CMDB 1.14.1 - File Deletion
i-doit Open Source CMDB 1.14.1 contains a file deletion vulnerability in the import module that allows authenticated attackers to delete arbitrary files by manipulating the delete_import parameter. Attackers can send a POST request to the import module with a crafted filename to remove files from the server's filesystem.
by Besim
CVSS 8.8
CVE-2020-37077 EXPLOITDB MEDIUM text
Booked Scheduler 2.7.7 - Path Traversal
Booked Scheduler 2.7.7 contains a directory traversal vulnerability in the manage_email_templates.php script that allows authenticated administrators to access unauthorized files. Attackers can exploit the vulnerable 'tn' parameter to read files outside the intended directory by manipulating directory path traversal techniques.
by Besim
CVSS 6.5
CVE-2020-28139 EXPLOITDB MEDIUM text
SourceCodester Online Clothing Store 1.0 - Cross-Site Scripting via Offer Detail Field
SourceCodester Online Clothing Store 1.0 is affected by a cross-site scripting (XSS) vulnerability via a Offer Detail field in offer.php.
by Sushant Kamble
CVSS 6.1
CVE-2020-28138 EXPLOITDB CRITICAL text
SourceCodester Online Clothing Store 1.0 - SQL Injection via txtUserName Parameter
SourceCodester Online Clothing Store 1.0 is affected by a SQL Injection via the txtUserName parameter to login.php.
by Sushant Kamble
CVSS 9.8