Exploitdb Exploits
50,095 exploits tracked across all sources.
WordPress Plugin Photoracer 1.0 - Multiple Vulnerabilities
by Yakir Wizman
WordPress Plugin oQey Headers 0.3 - SQL Injection
by Miroslav Stampar
WordPress Plugin MM Forms Community 1.2.3 - SQL Injection
by Miroslav Stampar
WordPress Plugin Js-appointment 1.5 - SQL Injection
by Miroslav Stampar
WordPress Plugin Collision Testimonials 3.0 - SQL Injection
by Miroslav Stampar
Sunway Force Control SCADA 6.1 SP3 - 'httpsrv.exe' Remote Overflow
by Canberk BOLAT
RealVNC 4.1.1 - Unauthenticated Authentication Bypass via Insecure Security Type
RealVNC 4.1.1, and other products that use RealVNC such as AdderLink IP and Cisco CallManager, allows remote attackers to bypass authentication via a request in which the client specifies an insecure security type such as "Type 1 - None", which is accepted even if it is not offered by the server, as originally demonstrated using a long password.
by Metasploit
Groovy Media Player 2.6.0 - '.m3u' Local Buffer Overflow (PoC)
by D3r K0n!G
Mambo 4.6.5 - 'index.php' Cross-Site Request Forgery
by Caddy-Dz
Jcow Social Networking Script 4.2 < 5.2 - Arbitrary Code Execution (Metasploit)
by Aung Khant
Zazavi 1.2.1 - '/FileManager/Controller.php' Arbitrary File Upload
by KedAns-Dz
Simple Machines Forum (SMF) 1.1.14/2.0 - '[img]' BBCode Tag Cross-Site Request Forgery
by Christian Yerena
F-Secure (Multiple Products) - ActiveX HeapSpray Overwrite (SEH)
by 41.w4r10r
Tourismscripts Hotel Portal - 'hotel_city' HTML Injection
by Eyup CELIK
Help Desk Software 1.1g - Cross-Site Request Forgery (Add Admin)
by G13
CommodityRentals Real Estate Script - 'txtsearch' HTML Injection
by Eyup CELIK
Open Classifieds 1.7.2 - Multiple Cross-Site Scripting Vulnerabilities
by Yassin Aboukir
ManageEngine ServiceDesk Plus 8.0 - Multiple Persistent Cross-Site Scripting Vulnerabilities
by LiquidWorm
Adobe Photoshop 12.0-12.1 - Remote Code Execution via Crafted GIF File
Adobe Photoshop 12.0 in Creative Suite 5 (CS5) and 12.1 in Creative Suite 5.1 (CS5.1) allows remote attackers to execute arbitrary code or cause a denial of service (memory corruption) via a crafted GIF file.
by Francis Provencher
WordPress Plugin MM Duplicate 1.2 - SQL Injection
by Miroslav Stampar
By Source