Exploitdb Exploits

50,076 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-114697 EXPLOITDB text
GitLab 12.9.0 - Arbitrary File Read
by KouroshRZ
EIP-2026-114528 EXPLOITDB text
YesWiki cercopitheque 2020.04.18.1 - 'id' SQL Injection
by coiffeur
EIP-2026-109600 EXPLOITDB text
MPC Sharj 3.11.1 - Arbitrary File Download
by SajjadBnd
CVE-2020-37082 EXPLOITDB CRITICAL text
webERP 4.15.1 - Unauthenticated Database Backup File Access
webERP 4.15.1 contains an unauthenticated file access vulnerability that allows remote attackers to download database backup files without authentication. Attackers can directly access generated backup files in the companies/weberp/ directory by requesting the Backup_[timestamp].sql.gz file.
by Besim
CVSS 9.8
CVE-2020-37081 EXPLOITDB HIGH text
Fishing Reservation System 7.5 - SQL Injection
Fishing Reservation System 7.5 contains multiple remote SQL injection vulnerabilities in admin.php, cart.php, and calendar.php that allow attackers to inject malicious SQL commands. Attackers can exploit vulnerable parameters like uid, pid, type, m, y, and code to compromise the database management system and web application without user interaction.
by Vulnerability-Lab
CVSS 7.1
EIP-2026-119670 EXPLOITDB text
BlogEngine 3.3 - 'syndication.axd' XML External Entity Injection
by Daniel Martinez Adan
EIP-2026-117729 EXPLOITDB text
Oracle Database 11g Release 2 - 'OracleDBConsoleorcl' Unquoted Service Path
by Nguyen Khang
EIP-2026-112151 EXPLOITDB text
SimplePHPGal 0.7 - Remote File Inclusion
by h4shur
EIP-2026-111265 EXPLOITDB text
PhreeBooks ERP 5.2.5 - Remote Command Execution
by Besim
EIP-2026-110169 EXPLOITDB text
Online Scheduling System 1.0 - 'username' SQL Injection
by Saurav Shukla
CVE-2020-11652 EXPLOITDB MEDIUM text
SaltStack Salt < 2019.2.4 - Authenticated Path Traversal via ClearFuncs Methods
An issue was discovered in SaltStack Salt before 2019.2.4 and 3000 before 3000.2. The salt-master process ClearFuncs class allows access to some methods that improperly sanitize paths. These methods allow arbitrary directory access to authenticated users.
by Jasper Lievisse Adriaanse
CVSS 6.5
EIP-2026-101856 EXPLOITDB text
NEC Electra Elite IPK II WebPro 01.03.01 - Session Enumeration
by Cold z3ro
CVE-2020-37083 EXPLOITDB HIGH text
PHP AddressBook 9.0.0.1 - SQL Injection
PHP AddressBook 9.0.0.1 contains a time-based blind SQL injection vulnerability that allows remote attackers to manipulate database queries through the 'id' parameter. Attackers can inject crafted SQL statements with time delays to extract information by observing response times in the photo.php endpoint.
by David Velazquez
CVSS 8.2
CVE-2020-37030 EXPLOITDB HIGH text
Outline Service 1.3.3 - Privilege Escalation
Outline Service 1.3.3 contains an unquoted service path vulnerability that allows local users to potentially execute arbitrary code with elevated system privileges. Attackers can exploit the unquoted binary path in C:\Program Files (x86)\Outline to inject malicious code that would execute with LocalSystem permissions during service startup.
by Minh Tuan
CVSS 7.8
CVE-2020-12629 EXPLOITDB MEDIUM text
osTicket < 1.14.2 - Stored Cross-Site Scripting via SLA Name
include/class.sla.php in osTicket before 1.14.2 allows XSS via the SLA Name.
by Mehmet Kelepçe
CVSS 5.4
EIP-2026-117206 EXPLOITDB python
Frigate 3.36 - Buffer Overflow (SEH)
by Xenofon Vassilakopoulos
EIP-2026-105581 EXPLOITDB text
BoltWire 6.03 - Local File Inclusion
by Andrey Stoykov
CVE-2020-37085 EXPLOITDB HIGH python
VirtualTablet Server 3.0.2 - Denial of Service via Oversized Thrift Payload
VirtualTablet Server 3.0.2 contains a denial of service vulnerability that allows attackers to crash the service by sending oversized string payloads through the Thrift protocol. Attackers can exploit the vulnerability by sending a long string to the send_say() method, causing the server to become unresponsive.
by Dolev Farhi
CVSS 7.5
CVE-2020-12706 EXPLOITDB MEDIUM text
php-fusion 9.03.50 - Cross-Site Scripting via FAQ or Shoutbox Admin Panel go Parameter
Multiple Cross-site scripting vulnerabilities in PHP-Fusion 9.03.50 allow remote attackers to inject arbitrary web script or HTML via the go parameter to faq/faq_admin.php or shoutbox_panel/shoutbox_admin.php
by SunCSR
CVSS 5.4
EIP-2026-110171 EXPLOITDB text
Online Scheduling System 1.0 - Persistent Cross-Site Scripting
by boku
EIP-2026-110170 EXPLOITDB text
Online Scheduling System 1.0 - Authentication Bypass
by boku
EIP-2026-105820 EXPLOITDB text
ChemInv 1.0 - Authenticated Persistent Cross-Site Scripting
by boku
CVE-2016-4437 EXPLOITDB CRITICAL ruby VERIFIED
Apache Shiro < 1.2.5 - Remote Code Execution via Remember Me Feature
Apache Shiro before 1.2.5, when a cipher key has not been configured for the "remember me" feature, allows remote attackers to execute arbitrary code or bypass intended access restrictions via an unspecified request parameter.
by Metasploit
CVSS 9.8
CVE-2019-0235 EXPLOITDB HIGH text
Apache OFBiz 17.12.01 - Cross-Site Request Forgery
Apache OFBiz 17.12.01 is vulnerable to some CSRF attacks.
by Faiz Ahmed Zaidi
CVSS 8.8
EIP-2026-102297 EXPLOITDB text
Super Backup 2.0.5 for iOS - Directory Traversal
by Vulnerability-Lab