Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-100211 EXPLOITDB text VERIFIED
Code Widgets DataBound Collapsible Menu - 'main.asp' SQL Injection
by Inj3ct0r
CVE-2011-0065 EXPLOITDB html VERIFIED
Mozilla Firefox <3.5.19 & SeaMonkey <2.0.14 - Use After Free
Use-after-free vulnerability in Mozilla Firefox before 3.5.19 and 3.6.x before 3.6.17, and SeaMonkey before 2.0.14, allows remote attackers to execute arbitrary code via vectors related to OBJECT's mChannel.
by mr_me
EIP-2026-113839 EXPLOITDB text VERIFIED
WordPress Plugin IP-Logger 3.0 - SQL Injection
by Miroslav Stampar
EIP-2026-101429 EXPLOITDB python
Sagem Router Fast 3304/3464/3504 - Telnet Authentication Bypass
by Elouafiq Ali
EIP-2026-100728 EXPLOITDB text VERIFIED
SurgeFTP 23b6 - Multiple Cross-Site Scripting Vulnerabilities
by Houssam Sahli
CVE-2011-2900 EXPLOITDB python
shttpd 1.42 - Stack-based Buffer Overflow in _shttpd_put_dir Function
Stack-based buffer overflow in the (1) put_dir function in mongoose.c in Mongoose 3.0, (2) put_dir function in yasslEWS.c in yaSSL Embedded Web Server (yasslEWS) 0.2, and (3) _shttpd_put_dir function in io_dir.c in Simple HTTPD (shttpd) 1.42 allows remote attackers to execute arbitrary code via an HTTP PUT request, as exploited in the wild in 2011.
by nion
EIP-2026-111116 EXPLOITDB text VERIFIED
phpList 2.10.x - Security Bypass / Information Disclosure
by Davide Canali
EIP-2026-105337 EXPLOITDB text VERIFIED
awiki 20100125 - Multiple Local File Inclusions
by muuratsalo
EIP-2026-111484 EXPLOITDB text
Prediction Football 2.51 - Cross-Site Request Forgery
by Smith Falcon
EIP-2026-106153 EXPLOITDB php VERIFIED
Contrexx ShopSystem 2.2 SP3 - Blind SQL Injection
by Penguin
CVE-2010-0480 EXPLOITDB ruby VERIFIED
Microsoft Windows MPEG Layer-3 Audio Codecs - Remote Code Execution via Crafted AVI File
Multiple stack-based buffer overflows in the MPEG Layer-3 audio codecs in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP2, Vista Gold, SP1, and SP2, and Server 2008 Gold and SP2 allow remote attackers to execute arbitrary code via a crafted AVI file, aka "MPEG Layer-3 Audio Decoder Stack Overflow Vulnerability."
by Metasploit
EIP-2026-117016 EXPLOITDB perl VERIFIED
D.R. Software Audio Converter 8.1 - DEP Bypass
by C4SS!0 G0M3S
EIP-2026-115980 EXPLOITDB python
NSHC Papyrus 2.0 - Heap Overflow
by wh1ant
EIP-2026-113088 EXPLOITDB text VERIFIED
VideoDB 3.1.0 - SQL Injection
by seceurityoverun
EIP-2026-109273 EXPLOITDB text
Mambo 4.6.x < 4.6.5 - SQL Injection
by Aung Khant
EIP-2026-108957 EXPLOITDB text VERIFIED
Kahf Poems 1.0 - Multiple Vulnerabilities
by Yassin Aboukir
CVE-2011-2900 EXPLOITDB python
shttpd 1.42 - Stack-based Buffer Overflow in _shttpd_put_dir Function
Stack-based buffer overflow in the (1) put_dir function in mongoose.c in Mongoose 3.0, (2) put_dir function in yasslEWS.c in yaSSL Embedded Web Server (yasslEWS) 0.2, and (3) _shttpd_put_dir function in io_dir.c in Simple HTTPD (shttpd) 1.42 allows remote attackers to execute arbitrary code via an HTTP PUT request, as exploited in the wild in 2011.
by G13
EIP-2026-119209 EXPLOITDB ruby VERIFIED
TeeChart Professional ActiveX Control 2010.0.0.3 - Trusted Integer Dereference (Metasploit)
by Metasploit
EIP-2026-117637 EXPLOITDB python VERIFIED
MP3 CD Converter Professional 5.3.0 - Universal DEP Bypass
by C4SS!0 G0M3S
EIP-2026-110700 EXPLOITDB text VERIFIED
PHP Flat File Guestbook 1.0 - 'ffgb_admin.php' Remote File Inclusion
by RiRes Walid
EIP-2026-100734 EXPLOITDB text
Adobe RoboHelp 9 - DOM Cross-Site Scripting
by Roberto Suggi Liverani
CVE-2011-0065 EXPLOITDB ruby VERIFIED
Mozilla Firefox <3.5.19 & SeaMonkey <2.0.14 - Use After Free
Use-after-free vulnerability in Mozilla Firefox before 3.5.19 and 3.6.x before 3.6.17, and SeaMonkey before 2.0.14, allows remote attackers to execute arbitrary code via vectors related to OBJECT's mChannel.
by Metasploit
CVE-1999-1510 EXPLOITDB python VERIFIED
Bisonware FTP Server < 4.1 - Buffer Overflow via Long USER LIST or CWD Commands
Buffer overflows in Bisonware FTP server prior to 4.1 allow remote attackers to cause a denial of service, and possibly execute arbitrary commands, via long (1) USER, (2) LIST, or (3) CWD commands.
by localh0t
EIP-2026-116691 EXPLOITDB ruby VERIFIED
A-PDF All to MP3 2.3.0 - Universal DEP Bypass
by C4SS!0 G0M3S
EIP-2026-113721 EXPLOITDB text VERIFIED
WordPress Plugin eShop 6.2.8 - Multiple Cross-Site Scripting Vulnerabilities
by High-Tech Bridge SA