Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
CVE-2011-2110 EXPLOITDB ruby VERIFIED
Adobe Flash Player <10.3.181.26-10.3.185.23 - RCE
Adobe Flash Player before 10.3.181.26 on Windows, Mac OS X, Linux, and Solaris, and 10.3.185.23 and earlier on Android, allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via unspecified vectors, as exploited in the wild in June 2011.
by Metasploit
EIP-2026-117986 EXPLOITDB python VERIFIED
Sysax 5.62 - Admin Interface Local Buffer Overflow
by Craig Freyman
EIP-2026-114022 EXPLOITDB text VERIFIED
WordPress Plugin Schreikasten 0.14.13 - Cross-Site Scripting
by Henry Hoggard
CVE-2012-3232 EXPLOITDB text VERIFIED
web@all 2.0 - Cross-Site Scripting via _text[title] Parameter
Cross-site scripting (XSS) vulnerability in search.php in web@all 2.0, as downloaded before May 30, 2012, allows remote attackers to inject arbitrary web script or HTML via the _text[title] parameter.
by High-Tech Bridge
EIP-2026-106158 EXPLOITDB text VERIFIED
Coppermine Photo Gallery - 'index.php' Script SQL Injection
by Taurus Omar
EIP-2026-106078 EXPLOITDB text VERIFIED
Commentics - 'index.php' Cross-Site Scripting
by Jean Pascal Pereira
CVE-2011-0922 EXPLOITDB python VERIFIED
HP Data Protector - Remote Code Execution via EXEC_SETUP Command
The client in HP Data Protector allows remote attackers to execute arbitrary programs via an EXEC_SETUP command that references a UNC share pathname.
by Ben Turner
EIP-2026-118530 EXPLOITDB ruby VERIFIED
EZHomeTech EzServer 6.4.017 - Remote Stack Buffer Overflow (Metasploit)
by Metasploit
EIP-2026-116211 EXPLOITDB text VERIFIED
Samsung AllShare 2.1.1.0 - Null Pointer Dereference
by Luigi Auriemma
EIP-2026-107710 EXPLOITDB text
iBoutique eCommerce 4.0 - Multiple Web Vulnerabilities
by Vulnerability-Lab
EIP-2026-106673 EXPLOITDB text VERIFIED
e107 Image Gallery Plugin - 'name' Remote File Disclosure
by Sammy FORGIT
EIP-2026-106672 EXPLOITDB php VERIFIED
e107 Hupsi_fancybox Plugin - 'Uploadify.php' Arbitrary File Upload
by Sammy FORGIT
EIP-2026-106671 EXPLOITDB text VERIFIED
e107 Filedownload Plugin - Arbitrary File Upload / Remote File Disclosure
by Sammy FORGIT
EIP-2026-105959 EXPLOITDB text VERIFIED
CMS Balitbang - Multiple HTML Injection / Cross-Site Scripting Vulnerabilities
by TheCyberNuxbie
EIP-2026-104939 EXPLOITDB text VERIFIED
AdaptCMS 2.0.2 - 'index.php' Script Cross-Site Scripting
by indoushka
EIP-2026-103395 EXPLOITDB text
Airlock WAF 4.2.4 - Overlong UTF-8 Sequence Bypass
by SEC Consult
EIP-2026-118529 EXPLOITDB python VERIFIED
EZHomeTech Ezserver 6.4 - Remote Stack Overflow
by modpr0be
EIP-2026-116424 EXPLOITDB python VERIFIED
Total Video Player 1.31 - '.m3u' Crash (PoC)
by 0dem
EIP-2026-114255 EXPLOITDB text VERIFIED
WordPress Plugin Wp-ImageZoom - 'file' Remote File Disclosure
by Sammy FORGIT
EIP-2026-113860 EXPLOITDB php VERIFIED
WordPress Plugin LB Mixed Slideshow - 'upload.php' Arbitrary File Upload
by Sammy FORGIT
EIP-2026-112954 EXPLOITDB text VERIFIED
VANA CMS - 'index.php' Script SQL Injection
by Black Hat Group
EIP-2026-109809 EXPLOITDB text VERIFIED
MyTickets 1.x < 2.0.8 - Blind SQL Injection
by al-swisre
EIP-2026-109639 EXPLOITDB php VERIFIED
Multiple WordPress Themes - 'upload.php' Arbitrary File Upload
by Sammy FORGIT
EIP-2026-101935 EXPLOITDB text
QNAP Turbo NAS 3.6.1 Build 0302T - Multiple Vulnerabilities
by Sense of Security
CVE-2012-2329 EXPLOITDB ruby VERIFIED
PHP 5.4.x < 5.4.3 - Buffer Overflow via HTTP Request Header
Buffer overflow in the apache_request_headers function in sapi/cgi/cgi_main.c in PHP 5.4.x before 5.4.3 allows remote attackers to cause a denial of service (application crash) via a long string in the header of an HTTP request.
by Metasploit