Exploitdb Exploits

49,989 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-117479 EXPLOITDB
Microsoft Data Sharing - Local Privilege Escalation (PoC)
by SandboxEscaper
EIP-2026-112056 EXPLOITDB text
SIM-PKH 2.4.1 - Arbitrary File Upload
by Ihsan Sencan
EIP-2026-112055 EXPLOITDB text
SIM-PKH 2.4.1 - 'id' SQL Injection
by Ihsan Sencan
EIP-2026-111919 EXPLOITDB text
School ERP Pro+Responsive 1.0 - Arbitrary File Download
by Ihsan Sencan
EIP-2026-111918 EXPLOITDB text
School ERP Pro+Responsive 1.0 - 'fid' SQL Injection
by Ihsan Sencan
EIP-2026-105210 EXPLOITDB text
Appsource School Management System 1.0 - 'student_id' SQL Injection
by Ihsan Sencan
EIP-2026-119480 EXPLOITDB python
Modbus Poll 7.2.2 - Denial of Service (PoC)
by Cemal Cihad ÇİFTÇİ
EIP-2026-117551 EXPLOITDB python
Microsoft Windows 10 - Local Privilege Escalation (UAC Bypass)
by Fabien DROMAS
CVE-2018-8120 EXPLOITDB HIGH ruby VERIFIED
Windows SetImeInfoEx Win32k NULL Pointer Dereference
An elevation of privilege vulnerability exists in Windows when the Win32k component fails to properly handle objects in memory, aka "Win32k Elevation of Privilege Vulnerability." This affects Windows Server 2008, Windows 7, Windows Server 2008 R2. This CVE ID is unique from CVE-2018-8124, CVE-2018-8164, CVE-2018-8166.
by Metasploit
CVSS 7.0
EIP-2026-114947 EXPLOITDB perl
Audacity 2.3 - Denial of Service (PoC)
by Kağan Çapar
EIP-2026-113132 EXPLOITDB text
Viva Visitor & Volunteer ID Tracking 0.95.1 - 'fname' SQL Injection
by Ihsan Sencan
EIP-2026-112636 EXPLOITDB text
The Open ISES Project 3.30A - Arbitrary File Download
by Ihsan Sencan
EIP-2026-112635 EXPLOITDB text
The Open ISES Project 3.30A - 'tick_lat' SQL Injection
by Ihsan Sencan
EIP-2026-111921 EXPLOITDB text
School ERP Ultimate 2018 - Arbitrary File Download
by Ihsan Sencan
EIP-2026-111920 EXPLOITDB text
School ERP Ultimate 2018 - 'fid' SQL Injection
by Ihsan Sencan
EIP-2026-109798 EXPLOITDB text
MySQL Edit Table 1.0 - 'id' SQL Injection
by Ihsan Sencan
EIP-2026-106875 EXPLOITDB text
eNdonesia Portal 8.7 - 'artid' SQL Injection
by Ihsan Sencan
EIP-2026-103408 EXPLOITDB text VERIFIED
Apple iOS/macOS - Sandbox Escape due to Trusted Length Field in Shared Memory used by HID Event Subsystem
by Google Security Research
EIP-2026-103407 EXPLOITDB text VERIFIED
Apple iOS/macOS - Sandbox Escape due to mach Message sent from Shared Memory
by Google Security Research
EIP-2026-103406 EXPLOITDB c VERIFIED
Apple iOS/macOS - Kernel Memory Corruption due to Integer Overflow in IOHIDResourceQueue::enqueueReport
by Google Security Research
EIP-2026-103405 EXPLOITDB c VERIFIED
Apple iOS/macOS - Kernel Memory Corruption due to Integer Overflow in IOHIDResourceQueue::enqueueReport
by Google Security Research
EIP-2026-103360 EXPLOITDB c VERIFIED
Apple Intel GPU Driver - Use-After-Free/Double-Delete due to bad Locking
by Google Security Research
CVE-2018-18629 EXPLOITDB HIGH
Keybase - Untrusted Search Path
An issue was discovered in the Keybase command-line client before 2.8.0-20181023124437 for Linux. An untrusted search path vulnerability in the keybase-redirector application allows a local, unprivileged user on Linux to gain root privileges via a Trojan horse binary.
by mirchr
CVSS 7.8
EIP-2026-102416 EXPLOITDB text
Oracle Siebel CRM 8.1.1 - CSV Injection
by Sarath Nair
EIP-2026-102157 EXPLOITDB c VERIFIED
Apple iOS Kernel - Use-After-Free due to bad Error Handling in Personas
by Google Security Research
By Source
All 49,989 Writeup 59,953 Exploitdb 49,989 Nomisec 21,567 Metasploit 3,218 Github 2,551 Vulncheck_xdb 904 Inthewild 514 Gitlab 441 Gitee 415 Patchapalooza 312
By Language
text 31,330 python 5,933 ruby 5,907 c 3,565 perl 2,849 html 2,053 php 1,326 bash 459 java 362 c++ 250 javascript 215 shell 90 go 53 postscript 25 xml 24