Exploitdb Exploits

50,083 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-113933 EXPLOITDB html VERIFIED
WordPress Plugin Occasions 1.0.4 - Cross-Site Request Forgery
by m3tamantra
EIP-2026-113932 EXPLOITDB html VERIFIED
WordPress Plugin Occasions - Cross-Site Request Forgery
by m3tamantra
EIP-2026-113662 EXPLOITDB ruby VERIFIED
WordPress Plugin Count Per Day 3.2.5 - 'counter.php' Cross-Site Scripting
by m3tamantra
CVE-2013-2294 EXPLOITDB MEDIUM text
ViewGit < 0.0.7 - Cross-Site Scripting via Tag or Branch Name
Multiple cross-site scripting (XSS) vulnerabilities in ViewGit before 0.0.7 allow remote repository users to inject arbitrary web script or HTML via a (1) tag name to the Shortlog table in templates/shortlog.php or branch name to the (2) Shortlog table in templates/shortlog.php or (3) Heads table in plates/summary.php.
by Matthew R. Bucci
CVSS 6.1
EIP-2026-111717 EXPLOITDB text VERIFIED
Rebus:list - 'list.php?list_id' SQL Injection
by Robert Cooper
CVE-2013-0126 EXPLOITDB text
Verizon FIOS Actiontec MI424WR-GEN3I Router Firmware 40.19.36 - Cross-Site Request Forgery via index.cgi
Multiple cross-site request forgery (CSRF) vulnerabilities in index.cgi on the Verizon FIOS Actiontec MI424WR-GEN3I router with firmware 40.19.36 allow remote attackers to hijack the authentication of administrators for requests that (1) add administrative accounts via the username and user_level parameters or (2) enable remote administration via the is_telnet_primary and is_telnet_secondary parameters.
by Jacob Holcomb
EIP-2026-114058 EXPLOITDB text VERIFIED
WordPress Plugin Simply Poll 1.4.1 - Multiple Vulnerabilities
by m3tamantra
EIP-2026-108519 EXPLOITDB text VERIFIED
Joomla! Component com_rsfiles - 'cid' SQL Injection
by ByEge
EIP-2026-106350 EXPLOITDB text
DaloRadius - Multiple Vulnerabilities
by Saadi Siddiqui
EIP-2026-115942 EXPLOITDB python VERIFIED
Nitro Pro 8.0.3.1 - Crash (PoC)
by John Cobb
EIP-2026-114882 EXPLOITDB python VERIFIED
aktiv-player 2.9.0 - Crash (PoC)
by metacom
CVE-2013-1852 EXPLOITDB ruby
LeagueManager < 3.8.1 - SQL Injection via league_id Parameter
SQL injection vulnerability in leaguemanager.php in the LeagueManager plugin before 3.8.1 for WordPress allows remote attackers to execute arbitrary SQL commands via the league_id parameter in the leaguemanager-export page to wp-admin/admin.php.
by Joshua Reynolds
EIP-2026-105944 EXPLOITDB text VERIFIED
ClipShare 4.1.4 - Multiple Vulnerabilities
by AkaStep
CVE-2013-3431 EXPLOITDB text
Cisco Video Surveillance Manager < 7.0.0 - Unauthenticated Information Disclosure via VSMC Monitoring Pages
Cisco Video Surveillance Manager (VSM) before 7.0.0 does not require authentication for access to VSMC monitoring pages, which allows remote attackers to obtain sensitive configuration, archive, and log information via unspecified vectors, related to the Cisco_VSBWT (aka Broadware sample code) package, aka Bug ID CSCsv40169.
by Bassem
CVE-2013-1651 EXPLOITDB text
Open-Xchange Server <6.20.7 rev14, 6.22.0<rev13, 6.22.1<rev14 - MITM via Unverified X.509 Certs
OXUpdater in Open-Xchange Server before 6.20.7 rev14, 6.22.0 before rev13, and 6.22.1 before rev14 does not verify X.509 certificates from SSL servers, which allows man-in-the-middle attackers to spoof update servers and install arbitrary software via a crafted certificate.
by Martin Braun
EIP-2026-110557 EXPLOITDB text VERIFIED
Petite Annonce - Cross-Site Scripting
by Metropolis
EIP-2026-119062 EXPLOITDB text VERIFIED
QlikView - '.qvw' File Remote Integer Overflow
by A. Antukh
CVE-2013-0108 EXPLOITDB ruby VERIFIED
Honeywell EBI R310/R400.2/R410.1/R410.2 & SymmetrE R310/R410.1/R410.2 RCE via HscRemoteDeploy.dll
An ActiveX control in HscRemoteDeploy.dll in Honeywell Enterprise Buildings Integrator (EBI) R310, R400.2, R410.1, and R410.2; SymmetrE R310, R410.1, and R410.2; ComfortPoint Open Manager (aka CPO-M) Station R100; and HMIWeb Browser client packages allows remote attackers to execute arbitrary code via a crafted HTML document.
by Metasploit
EIP-2026-116378 EXPLOITDB text
TagScanner 5.1 - Stack Buffer Overflow (PoC)
by Vulnerability-Lab
EIP-2026-115021 EXPLOITDB text VERIFIED
Cam2pc 4.6.2 - '.BMP' Image Processing Integer Overflow
by coolkaveh
EIP-2026-113214 EXPLOITDB text VERIFIED
Web Cookbook - Multiple SQL Injections
by Saadat Ullah
CVE-2013-1814 EXPLOITDB text
Apache Rave 0.11-0.20 - Authenticated Sensitive Information Exposure via User RPC API
The users/get program in the User RPC API in Apache Rave 0.11 through 0.20 allows remote authenticated users to obtain sensitive information about all user accounts via the offset parameter, as demonstrated by discovering password hashes in the password field of a response.
by Andreas Guth
CVE-2013-1763 EXPLOITDB c
Linux Kernel < 3.4.34 - Local Privilege Escalation via Netlink Message Family Value
Array index error in the __sock_diag_rcv_msg function in net/core/sock_diag.c in the Linux kernel before 3.7.10 allows local users to gain privileges via a large family value in a Netlink message.
by Kacper Szczesniak
EIP-2026-102907 EXPLOITDB c VERIFIED
Linux Kernel 3.0 < 3.3.5 - 'CLONE_NEWUSER|CLONE_FS' Local Privilege Escalation
by Sebastian Krahmer
CVE-2013-1828 EXPLOITDB c
Linux Kernel < 3.8.4 - Local Privilege Escalation via SCTP_GET_ASSOC_STATS Getsockopt
The sctp_getsockopt_assoc_stats function in net/sctp/socket.c in the Linux kernel before 3.8.4 does not validate a size value before proceeding to a copy_from_user operation, which allows local users to gain privileges via a crafted application that contains an SCTP_GET_ASSOC_STATS getsockopt system call.
by Petr Matousek