Exploitdb Exploits

50,076 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-104652 EXPLOITDB php
PHP 5.0.0 - 'snmpset()' Local Denial of Service
by Yakir Wizman
EIP-2026-104651 EXPLOITDB php
PHP 5.0.0 - 'snmprealwalk()' Local Denial of Service
by Yakir Wizman
EIP-2026-104646 EXPLOITDB php
PHP 5.0.0 - 'fbird_[p]connect()' Local Denial of Service
by Yakir Wizman
EIP-2026-111809 EXPLOITDB html
RSS News AutoPilot Script 1.0.1/3.0.3 - Cross-Site Request Forgery
by Arbin Godar
EIP-2026-104649 EXPLOITDB php
PHP 5.0.0 - 'imap_mail()' Local Denial of Service
by Yakir Wizman
EIP-2026-104648 EXPLOITDB php
PHP 5.0.0 - 'hw_docbyanchor()' Local Denial of Service
by Yakir Wizman
EIP-2026-104647 EXPLOITDB php
PHP 5.0.0 - 'html_doc_file()' Local Denial of Service
by Yakir Wizman
EIP-2026-117707 EXPLOITDB python
NScan 0.9.1 - 'Target' Local Buffer Overflow
by hyp3rlinx
EIP-2026-115360 EXPLOITDB python
Goron WebServer 2.0 - Multiple Vulnerabilities
by Guillaume Kaddouch
EIP-2026-107579 EXPLOITDB python
HelpDeskZ 1.0.2 - Arbitrary File Upload
by Lars Morgenroth
EIP-2026-107234 EXPLOITDB text
FreePBX 13.0.35 - SQL Injection
by i-Hmx
EIP-2026-107233 EXPLOITDB text
FreePBX 13.0.35 - Remote Command Execution
by 0x4148
EIP-2026-104670 EXPLOITDB php
PHP 7.0 - Object Cloning Local Denial of Service
by Yakir Wizman
EIP-2026-104655 EXPLOITDB php
PHP 5.0.0 - 'xmldocfile()' Local Denial of Service
by Yakir Wizman
EIP-2026-104650 EXPLOITDB text
PHP 5.0.0 - 'simplexml_load_file()' Local Denial of Service
by Yakir Wizman
EIP-2026-104645 EXPLOITDB php
PHP 5.0.0 - 'domxml_open_file()' Local Denial of Service
by Yakir Wizman
CVE-2016-4228 EXPLOITDB HIGH text VERIFIED
Adobe Flash Player <22.0.0.209 - Use After Free
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-4173, CVE-2016-4174, CVE-2016-4222, CVE-2016-4226, CVE-2016-4227, CVE-2016-4229, CVE-2016-4230, CVE-2016-4231, and CVE-2016-4248.
by Google Security Research
CVSS 8.8
CVE-2016-4226 EXPLOITDB HIGH text VERIFIED
Adobe Flash Player <22.0.0.209 - Use After Free
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-4173, CVE-2016-4174, CVE-2016-4222, CVE-2016-4227, CVE-2016-4228, CVE-2016-4229, CVE-2016-4230, CVE-2016-4231, and CVE-2016-4248.
by Google Security Research
CVSS 8.8
CVE-2016-4227 EXPLOITDB HIGH text VERIFIED
Adobe Flash Player <22.0.0.209 - Use After Free
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-4173, CVE-2016-4174, CVE-2016-4222, CVE-2016-4226, CVE-2016-4228, CVE-2016-4229, CVE-2016-4230, CVE-2016-4231, and CVE-2016-4248.
by Google Security Research
CVSS 8.8
CVE-2016-4230 EXPLOITDB HIGH text VERIFIED
Adobe Flash Player <22.0.0.209 - Use After Free
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-4173, CVE-2016-4174, CVE-2016-4222, CVE-2016-4226, CVE-2016-4227, CVE-2016-4228, CVE-2016-4229, CVE-2016-4231, and CVE-2016-4248.
by Google Security Research
CVSS 8.8
CVE-2016-4229 EXPLOITDB HIGH text VERIFIED
Adobe Flash Player <22.0.0.209 - Use After Free
Use-after-free vulnerability in Adobe Flash Player before 18.0.0.366 and 19.x through 22.x before 22.0.0.209 on Windows and OS X and before 11.2.202.632 on Linux allows attackers to execute arbitrary code via unspecified vectors, a different vulnerability than CVE-2016-4173, CVE-2016-4174, CVE-2016-4222, CVE-2016-4226, CVE-2016-4227, CVE-2016-4228, CVE-2016-4230, CVE-2016-4231, and CVE-2016-4248.
by Google Security Research
CVSS 8.8
EIP-2026-100879 EXPLOITDB text
PLC Wireless Router GPN2.4P21-C-CN - Arbitrary File Disclosure
by Rahul Raz
EIP-2026-100826 EXPLOITDB bash
Intellinet IP Camera INT-L100M20N - Unauthorized Admin Credential Change
by Todor Donev
CVE-2006-4525 EXPLOITDB text
CubeCart < 3.0.12 - Cross-Site Scripting via Links Array
Cross-site scripting (XSS) vulnerability in CubeCart 3.0.12 and earlier, when register_globals is enabled, allows remote attackers to inject arbitrary web script or HTML via the links array.
by GulfTech Security
EIP-2026-113678 EXPLOITDB text VERIFIED
WordPress Plugin CYSTEME Finder 1.3 - Arbitrary File Disclosure/Arbitrary File Upload
by T0w3ntum
By Source
All 50,076 Writeup 62,526 Exploitdb 50,076 Nomisec 22,480 Github 3,713 Metasploit 3,315 Vulncheck_xdb 930 Inthewild 514 Gitlab 480 Gitee 415 Patchapalooza 312
By Language
text 31,386 python 6,614 ruby 6,006 c 3,635 perl 2,849 html 2,076 php 1,333 bash 462 java 371 c++ 261 javascript 231 shell 137 go 73 postscript 25 typescript 25