Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-116705 EXPLOITDB perl VERIFIED
ABBS Electronic Flash Cards 2.1 - '.fcd' Local Buffer Overflow
by h1ch4m
EIP-2026-116702 EXPLOITDB perl VERIFIED
ABBS Audio Media Player 3.0 - '.lst' Local Buffer Overflow (SEH)
by h1ch4m
EIP-2026-116701 EXPLOITDB python VERIFIED
ABBS Audio Media Player - '.m3u' / '.LST' Local Buffer Overflow
by Rh0
EIP-2026-109200 EXPLOITDB text
Log1 CMS 2.0 - Multiple Vulnerabilities
by Aodrulez
EIP-2026-105610 EXPLOITDB text VERIFIED
BoutikOne - 'search.php' Multiple SQL Injections
by cdx.security
EIP-2026-105609 EXPLOITDB text VERIFIED
BoutikOne - 'rss_top10.php?lang' SQL Injection
by cdx.security
EIP-2026-105608 EXPLOITDB text VERIFIED
BoutikOne - 'rss_promo.php?lang' SQL Injection
by cdx.security
EIP-2026-105607 EXPLOITDB text VERIFIED
BoutikOne - 'rss_news.php?lang' SQL Injection
by cdx.security
EIP-2026-105606 EXPLOITDB text VERIFIED
BoutikOne - 'rss_flash.php?lang' SQL Injection
by cdx.security
EIP-2026-105605 EXPLOITDB text VERIFIED
BoutikOne - 'list.php?path' SQL Injection
by cdx.security
EIP-2026-105603 EXPLOITDB text VERIFIED
BoutikOne - 'categorie.php?path' SQL Injection
by cdx.security
EIP-2026-104110 EXPLOITDB text VERIFIED
Trend Micro WebReputation API 10.5 - URI SecURIty Bypass
by DcLabs Security Research Group
CVE-2010-4077 EXPLOITDB c
Linux Kernel < 2.6.36.1 - Information Disclosure via TIOCGICOUNT ioctl
The ntty_ioctl_tiocgicount function in drivers/char/nozomi.c in the Linux kernel 2.6.36.1 and earlier does not properly initialize a certain structure member, which allows local users to obtain potentially sensitive information from kernel stack memory via a TIOCGICOUNT ioctl call.
by prdelka
EIP-2026-102200 EXPLOITDB text VERIFIED
iOS Checkview 1.1 - Directory Traversal
by kim@story
EIP-2026-100559 EXPLOITDB text
SmarterMail 8.0 - Multiple Cross-Site Scripting Vulnerabilities
by Hoyt LLC Research
CVE-2010-1119 EXPLOITDB html VERIFIED
Apple Safari < 5.0 - Use-After-Free via Attribute Manipulation
Use-after-free vulnerability in WebKit in Apple Safari before 5.0 on Mac OS X 10.5 through 10.6 and Windows, Safari before 4.1 on Mac OS X 10.4, and Safari on Apple iPhone OS allows remote attackers to execute arbitrary code or cause a denial of service (application crash), or read the SMS database or other data, via vectors related to "attribute manipulation," as demonstrated by Vincenzo Iozzo and Ralf Philipp Weinmann during a Pwn2Own competition at CanSecWest 2010.
by MJ Keith
EIP-2026-106195 EXPLOITDB text VERIFIED
Cover Vision - SQL Injection
by Egyptian.H4x0rz
EIP-2026-117000 EXPLOITDB perl VERIFIED
CoolZip 2.0 - zip Buffer Overflow
by C4SS!0 G0M3S
CVE-2011-1092 EXPLOITDB php VERIFIED
PHP < 5.3.6 - Denial of Service and Memory Disclosure via shmop_read Integer Overflow
Integer overflow in ext/shmop/shmop.c in PHP before 5.3.6 allows context-dependent attackers to cause a denial of service (crash) and possibly read sensitive memory via a large third argument to the shmop_read function.
by Jose Carlos Norte
EIP-2026-114778 EXPLOITDB ruby VERIFIED
Accellion File Transfer Appliance MPIPE2 - Command Execution (Metasploit)
by Metasploit
EIP-2026-110005 EXPLOITDB python VERIFIED
N_CMS 1.1E - Local File Inclusion / Remote Code
by TecR0c
EIP-2026-106136 EXPLOITDB text VERIFIED
Constructr CMS 3.03 - Multiple Remote Vulnerabilities
by LiquidWorm
CVE-2010-4437 EXPLOITDB text
Oracle WebLogic Server Servlet Container - Confidentiality and Integrity Impact
Unspecified vulnerability in the Oracle WebLogic Server component in Oracle Fusion Middleware 9.0, 9.1, 9.2.4, 10.0.2, 10.3.2, and 10.3.3 allows remote attackers to affect confidentiality and integrity via unknown vectors related to Servlet Container.
by Roberto Suggi Liverani
EIP-2026-102664 EXPLOITDB text VERIFIED
Linux NTP query client 4.2.6p1 - Heap Overflow
by mr_me
EIP-2026-100561 EXPLOITDB text VERIFIED
SmarterStats 6.0 - Multiple Vulnerabilities
by Hoyt LLC Research