Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-105559 EXPLOITDB text VERIFIED
BlueSoft (Multiple Products) - Multiple SQL Injections
by Lazmania61
EIP-2026-101333 EXPLOITDB text VERIFIED
Iskratel SI2000 Callisto 821+ - Cross-Site Request Forgery / HTML Injection
by MustLive
EIP-2026-118672 EXPLOITDB ruby VERIFIED
Iconics GENESIS32 9.21.201.01 - Integer Overflow (Metasploit)
by Metasploit
EIP-2026-118572 EXPLOITDB ruby VERIFIED
Freefloat FTP Server 1.0 - 'MKD' Remote Buffer Overflow
by C4SS!0 G0M3S
EIP-2026-105562 EXPLOITDB text VERIFIED
BlueSoft Social Networking CMS - SQL Injection
by Lazmania61
CVE-2009-0920 EXPLOITDB ruby VERIFIED
HP Network Node Manager 7.01, 7.51, 7.53 - Stack-Based Buffer Overflow via OvOSLocale Cookie
Stack-based buffer overflow in OvCgi/Toolbar.exe in HP OpenView Network Node Manager (OV NNM) 7.01, 7.51, and 7.53 allows remote attackers to execute arbitrary code via a long OvOSLocale cookie, a variant of CVE-2008-0067.
by Metasploit
EIP-2026-108766 EXPLOITDB text VERIFIED
Joomla! Component Juicy Gallery - 'picId' SQL Injection
by SOLVER
EIP-2026-108654 EXPLOITDB text VERIFIED
Joomla! Component Foto - 'id_categoria' SQL Injection
by SOLVER
EIP-2026-108616 EXPLOITDB text VERIFIED
Joomla! Component Controller - 'Itemid' SQL Injection
by SOLVER
EIP-2026-108457 EXPLOITDB text VERIFIED
Joomla! Component com_newssearch - SQL Injection
by Robert Cooper
EIP-2026-108369 EXPLOITDB text VERIFIED
Joomla! Component com_hospital - SQL Injection
by SOLVER
EIP-2026-106692 EXPLOITDB text VERIFIED
Easy Estate Rental - 's_location' SQL Injection
by Lazmania61
EIP-2026-105309 EXPLOITDB text VERIFIED
Auto Web Toolbox - 'id' SQL Injection
by Lazmania61
EIP-2026-105044 EXPLOITDB text VERIFIED
AJ Classifieds - 'listingid' SQL Injection
by Lazmania61
CVE-2011-3556 EXPLOITDB ruby VERIFIED
Oracle Java SE JDK/JRE 7/6u27/5.0u31/1.4.2_33 & JRockit R28.1.4 - RCE via RMI
Unspecified vulnerability in the Java Runtime Environment component in Oracle Java SE JDK and JRE 7, 6 Update 27 and earlier, 5.0 Update 31 and earlier, 1.4.2_33 and earlier, and JRockit R28.1.4 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to RMI, a different vulnerability than CVE-2011-3557.
by Metasploit
EIP-2026-110569 EXPLOITDB text
PG eLms Pro vDEC_2007_01 - Multiple Blind SQL Injections
by LiquidWorm
EIP-2026-110568 EXPLOITDB text
PG eLms Pro vDEC_2007_01 - 'contact_us.php' Multiple POST Cross-Site Scripting Vulnerabilities
by LiquidWorm
EIP-2026-108545 EXPLOITDB text VERIFIED
Joomla! Component com_sobi2 2.9.3.2 - Blind SQL Injections
by jdc
EIP-2026-107869 EXPLOITDB text
Inscribe Webmedia - SQL Injection
by Netrondoank
EIP-2026-112570 EXPLOITDB text VERIFIED
TCExam 11.2.x - Multiple Cross-Site Scripting Vulnerabilities
by Gjoko Krstic
EIP-2026-112569 EXPLOITDB text
TCExam 11.2.011 - Multiple SQL Injections
by LiquidWorm
EIP-2026-109173 EXPLOITDB text VERIFIED
LiteRadius 3.2 - Multiple Blind SQL Injections
by Robert Cooper
CVE-2011-2743 EXPLOITDB text VERIFIED
Chyrp < 2.1 - Cross-Site Scripting via Action Parameter
Multiple cross-site scripting (XSS) vulnerabilities in Chyrp 2.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the action parameter to (1) the default URI or (2) includes/javascript.php, or the (3) title or (4) body parameter to admin/help.php.
by Wireghoul
CVE-2011-2743 EXPLOITDB text VERIFIED
Chyrp < 2.1 - Cross-Site Scripting via Action Parameter
Multiple cross-site scripting (XSS) vulnerabilities in Chyrp 2.1 and earlier allow remote attackers to inject arbitrary web script or HTML via the action parameter to (1) the default URI or (2) includes/javascript.php, or the (3) title or (4) body parameter to admin/help.php.
by Wireghoul
EIP-2026-119157 EXPLOITDB python VERIFIED
Solar FTP Server 2.1.1 - PASV Buffer Overflow
by Craig Freyman