Exploitdb Exploits

50,076 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-112092 EXPLOITDB python
Simple File Uploader - Arbitrary File Download
by Daniel Godoy
EIP-2026-106693 EXPLOITDB text
Easy File Uploader - Arbitrary File Upload
by Daniel Godoy
EIP-2026-111762 EXPLOITDB text
Revive Ad Server 4.0.1 - Cross-Site Scripting / Cross-Site Request Forgery
by Cyril Vallicari
CVE-2017-20246 EXPLOITDB HIGH text
KittyCatfish 2.2 Plugin for WordPress SQL Injection
KittyCatfish 2.2 plugin for WordPress contains an SQL injection vulnerability that allows unauthenticated attackers to read database contents by exploiting an unescaped GET parameter. Attackers can inject SQL code through the 'kc_ad' parameter in base.css.php or kittycatfish.php to extract sensitive database information using boolean-based blind or time-based blind techniques.
by TAD GROUP
CVSS 8.2
CVE-2017-20245 EXPLOITDB HIGH text
Wow Viral Signups 2.1 WordPress Plugin SQL Injection
Wow Viral Signups 2.1 WordPress plugin contains an SQL injection vulnerability that allows unauthenticated attackers to extract database information by exploiting the unescaped 'idsignup' POST parameter. Attackers can send crafted requests to the admin-ajax.php endpoint with malicious SQL payloads in the 'idsignup' parameter to read arbitrary data from the database.
by TAD GROUP
CVSS 8.2
CVE-2017-20244 EXPLOITDB HIGH text
Wow Forms WordPress Plugin 2.1 SQL Injection
Wow Forms WordPress Plugin version 2.1 contains an SQL injection vulnerability that allows unauthenticated attackers to read arbitrary database information by exploiting an unescaped POST parameter. Attackers can inject SQL code through the 'mwpformid' parameter in requests to the admin-ajax.php endpoint with the 'send_mwp_form' action to extract sensitive database contents.
by TAD GROUP
CVSS 8.2
CVE-2025-34103 EXPLOITDB CRITICAL ruby VERIFIED
WePresent WiPG-1000 <2.2.3.0 - Command Injection
An unauthenticated command injection vulnerability exists in WePresent WiPG-1000 firmware versions prior to 2.2.3.0, due to improper input handling in the undocumented /cgi-bin/rdfs.cgi endpoint. The Client parameter is not sanitized before being passed to a system call, allowing an unauthenticated remote attacker to execute arbitrary commands as the web server user.
by Metasploit
CVE-2017-7720 EXPLOITDB HIGH python VERIFIED
PrivateTunnel 2.7-2.8 - Buffer Overflow
Buffer overflow in PrivateTunnel 2.7 and 2.8 allows local attackers to cause a denial of service (SEH overwrite) or possibly have unspecified other impact via a long password.
by Muhann4d
CVSS 7.8
CVE-2017-5798 EXPLOITDB MEDIUM text VERIFIED
HPE OpenCall Media Platform < 3.4.2 - Remote Code Execution
A Remote Code Execution vulnerability in HPE OpenCall Media Platform (OCMP) was found. The vulnerability impacts OCMP versions prior to 3.4.2 RP201 (for OCMP 3.x), all versions prior to 4.4.7 RP702 (for OCMP 4.x).
by Paolo Stagno
CVSS 6.1
CVE-2017-3548 EXPLOITDB MEDIUM text
Oracle PeopleSoft Products <8.56 - Info Disclosure
Vulnerability in the PeopleSoft Enterprise PeopleTools component of Oracle PeopleSoft Products (subcomponent: Integration Broker). Supported versions that are affected are 8.54 and 8.55. Easily "exploitable" vulnerability allows unauthenticated attacker with network access via HTTP to compromise PeopleSoft Enterprise PeopleTools. Successful attacks of this vulnerability can result in unauthorized read access to a subset of PeopleSoft Enterprise PeopleTools accessible data and unauthorized ability to cause a partial denial of service (partial DOS) of PeopleSoft Enterprise PeopleTools. CVSS 3.0 Base Score 6.5 (Confidentiality and Availability impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L).
by ERPScan
CVSS 6.5
EIP-2026-118874 EXPLOITDB python
Microsoft Windows 2003 SP2 - 'ERRATICGOPHER' SMB Remote Code Execution
by vportal
CVE-2017-0199 EXPLOITDB HIGH ruby VERIFIED
Microsoft Office Word Malicious Hta Execution
Microsoft Office 2007 SP3, Microsoft Office 2010 SP2, Microsoft Office 2013 SP1, Microsoft Office 2016, Microsoft Windows Vista SP2, Windows Server 2008 SP2, Windows 7 SP1, Windows 8.1 allow remote attackers to execute arbitrary code via a crafted document, aka "Microsoft Office/WordPad Remote Code Execution Vulnerability w/Windows API."
by Metasploit
CVSS 7.8
CVE-2017-7293 EXPLOITDB HIGH text VERIFIED
Dolby DAX2/DAX3 - Privilege Escalation
The Dolby DAX2 and DAX3 API services are vulnerable to a privilege escalation vulnerability that allows a normal user to get arbitrary system privileges, because these services have .NET code for DCOM. This affects Dolby Audio X2 (DAX2) 1.0, 1.0.1, 1.1, 1.1.1, 1.2, 1.3, 1.3.1, 1.3.2, 1.4, 1.4.1, 1.4.2, 1.4.3, and 1.4.4 and Dolby Audio X3 (DAX3) 1.0 and 1.1. An example affected driver is Realtek Audio Driver 6.0.1.7898 on a Lenovo P50.
by Google Security Research
CVSS 7.8
EIP-2026-117025 EXPLOITDB python
Dell Customer Connect 1.3.28.0 - Local Privilege Escalation
by Kacper Szurek
EIP-2026-113621 EXPLOITDB text
WordPress Plugin Car Rental System 2.5 - SQL Injection
by TAD GROUP
EIP-2026-110015 EXPLOITDB text VERIFIED
October CMS 1.0.412 - Multiple Vulnerabilities
by Anti Räis
EIP-2026-107166 EXPLOITDB text VERIFIED
FlySpray 1.0-rc4 - Cross-Site Scripting / Cross-Site Request Forgery
by Cyril Vallicari
CVE-2017-7221 EXPLOITDB HIGH python
OpenText Documentum Content Server - SQL Injection
OpenText Documentum Content Server has an inadequate protection mechanism against SQL injection, which allows remote authenticated users to execute arbitrary code with super-user privileges by leveraging the availability of the dm_bp_transition docbase method with a user-created dm_procedure object, as demonstrated by use of a backspace character in an injected string. NOTE: this vulnerability exists because of an incomplete fix for CVE-2014-2513.
by Andrey B. Panfilov
CVSS 8.8
CVE-2017-5799 EXPLOITDB HIGH text VERIFIED
HPE OpenCall Media Platform < 3.4.2 - Remote Code Execution
A Remote Code Execution vulnerability in HPE OpenCall Media Platform (OCMP) was found. The vulnerability impacts OCMP versions prior to 3.4.2 RP201 (for OCMP 3.x), all versions prior to 4.4.7 RP702 (for OCMP 4.x).
by Paolo Stagno
CVSS 8.8
CVE-2017-3587 EXPLOITDB HIGH c++ VERIFIED
Oracle VM VirtualBox <5.0.38 & <5.1.20 - RCE
Vulnerability in the Oracle VM VirtualBox component of Oracle Virtualization (subcomponent: Shared Folder). Supported versions that are affected are Prior to 5.0.38 and Prior to 5.1.20. Easily "exploitable" vulnerability allows low privileged attacker with logon to the infrastructure where Oracle VM VirtualBox executes to compromise Oracle VM VirtualBox. While the vulnerability is in Oracle VM VirtualBox, attacks may significantly impact additional products. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle VM VirtualBox accessible data and unauthorized ability to cause a hang or frequently repeatable crash (complete DOS) of Oracle VM VirtualBox. CVSS 3.0 Base Score 8.4 (Integrity and Availability impacts). CVSS Vector: (CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:C/C:N/I:H/A:H).
by Google Security Research
CVSS 8.4
CVE-2017-2464 EXPLOITDB HIGH html VERIFIED
Safari < 10.1 - Remote Code Execution via WebKit Memory Corruption
An issue was discovered in certain Apple products. iOS before 10.3 is affected. Safari before 10.1 is affected. tvOS before 10.2 is affected. The issue involves the "WebKit" component. It allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption and application crash) via a crafted web site.
by Google Security Research
CVSS 8.8
CVE-2017-7358 EXPLOITDB HIGH text
LightDM < 1.22.0 - Path Traversal and Privilege Escalation via Guest Account Logout
In LightDM through 1.22.0, a directory traversal issue in debian/guest-account.sh allows local attackers to own arbitrary directory path locations and escalate privileges to root when the guest user logs out.
by G. Geshev
CVSS 7.3
CVE-2017-3549 EXPLOITDB CRITICAL text
Oracle E-Business Suite <12.2.6 - RCE
Vulnerability in the Oracle Scripting component of Oracle E-Business Suite (subcomponent: Scripting Administration). Supported versions that are affected are 12.1.1, 12.1.2, 12.1.3, 12.2.3, 12.2.4, 12.2.5 and 12.2.6. Easily "exploitable" vulnerability allows unauthenticated attacker with network access via HTTP to compromise Oracle Scripting. Successful attacks of this vulnerability can result in unauthorized creation, deletion or modification access to critical data or all Oracle Scripting accessible data as well as unauthorized access to critical data or complete access to all Oracle Scripting accessible data. CVSS 3.0 Base Score 9.1 (Confidentiality and Integrity impacts). CVSS Vector: (CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N).
by ERPScan
CVSS 9.1
CVE-2017-20280 EXPLOITDB HIGH text
Joomla Component Myportfolio 3.0.2 SQL Injection via pid Parameter
Joomla Component Myportfolio 3.0.2 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the pid parameter. Attackers can send GET requests to index.php with malicious pid values in the task=project&view=grid endpoint to extract sensitive database information.
by Persian Hack Team
CVSS 8.2
EIP-2026-103294 EXPLOITDB python
LogRhythm Network Monitor - Authentication Bypass / Command Injection
by Francesco Oddo
By Source
All 50,076 Writeup 62,320 Exploitdb 50,076 Nomisec 22,421 Github 3,644 Metasploit 3,314 Vulncheck_xdb 929 Inthewild 514 Gitlab 479 Gitee 415 Patchapalooza 312
By Language
text 31,386 python 6,581 ruby 6,005 c 3,628 perl 2,849 html 2,076 php 1,333 bash 462 java 371 c++ 261 javascript 229 shell 132 go 73 postscript 25 typescript 25