Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-101589 EXPLOITDB html
Cisco Linksys WAG120N - Cross-Site Request Forgery
by Khashayar Fereidani
EIP-2026-118502 EXPLOITDB html VERIFIED
Edraw Office Viewer Component 7.4 - ActiveX Stack Buffer Overflow
by Alexander Gavrun
EIP-2026-111466 EXPLOITDB text VERIFIED
Pragyan CMS 3.0 - Multiple Vulnerabilities
by Villy & Abhishek Lyall
EIP-2026-111205 EXPLOITDB text VERIFIED
phpShop 0.8.1 - 'page' Cross-Site Scripting
by Aung Khant
EIP-2026-108598 EXPLOITDB python VERIFIED
Joomla! Component com_xcloner-backupandrestore - Remote Command Execution
by mr_me
EIP-2026-107420 EXPLOITDB text VERIFIED
glFusion 1.1.x/1.2.1 - 'users.php' SQL Injection
by H3X
CVE-2011-1071 EXPLOITDB c
GNU C Library < 2.12.2 and Embedded GLIBC - Remote Code Execution via Long UTF8 String in fnmatch
The GNU C Library (aka glibc or libc6) before 2.12.2 and Embedded GLIBC (EGLIBC) allow context-dependent attackers to execute arbitrary code or cause a denial of service (memory consumption) via a long UTF8 string that is used in an fnmatch call, aka a "stack extension attack," a related issue to CVE-2010-2898, CVE-2010-1917, and CVE-2007-4782, as originally reported for use of this library by Google Chrome.
by Simon Berry-Byrne
EIP-2026-101327 EXPLOITDB python
iphone mydocs 2.7 - Directory Traversal
by Khashayar Fereidani
EIP-2026-101325 EXPLOITDB python
iphone ifile 2.0 - Directory Traversal
by Khashayar Fereidani
EIP-2026-101323 EXPLOITDB python
iphone folders 2.5 - Directory Traversal
by Khashayar Fereidani
EIP-2026-100514 EXPLOITDB text VERIFIED
RaksoCT - Multiple SQL Injections
by p0pc0rn
EIP-2026-116478 EXPLOITDB python VERIFIED
Victory FTP Server 5.0 - Denial of Service
by C4SS!0 G0M3S
EIP-2026-115213 EXPLOITDB python VERIFIED
Elecard MPEG Player 5.7 - Local Buffer Overflow (PoC) (SEH)
by badc0re
EIP-2026-114006 EXPLOITDB text VERIFIED
WordPress Plugin Relevanssi 2.7.2 - Persistent Cross-Site Scripting
by Saif El-Sherei
EIP-2026-113843 EXPLOITDB text VERIFIED
WordPress Plugin IWantOneButton 3.0.1 - Multiple Vulnerabilities
by High-Tech Bridge SA
EIP-2026-113787 EXPLOITDB text VERIFIED
WordPress Plugin GigPress 2.1.10 - Persistent Cross-Site Scripting
by Saif El-Sherei
CVE-2011-1047 EXPLOITDB text
VastHTML Forum Server 1.6.1 and 1.6.5 - SQL Injection via Search Max Parameter
Multiple SQL injection vulnerabilities in VastHTML Forum Server (aka ForumPress) plugin 1.6.1 and 1.6.5 for WordPress allow remote attackers to execute arbitrary SQL commands via the (1) search_max parameter in a search action to index.php, which is not properly handled by wpf.class.php, (2) id parameter in an editpost action to index.php, which is not properly handled by wpf-post.php, or (3) topic parameter to feed.php.
by High-Tech Bridge SA
CVE-2010-4227 EXPLOITDB ruby VERIFIED
Novell Netware < 6.5 SP8 - Remote Code Execution via Crafted NFS RPC Request
The xdrDecodeString function in XNFS.NLM in Novell Netware 6.5 before SP8 allows remote attackers to cause a denial of service (abend) or execute arbitrary code via a crafted, signed value in a NFS RPC request to port UDP 1234, leading to a stack-based buffer overflow.
by Francis Provencher
CVE-2011-1018 EXPLOITDB text VERIFIED
Logwatch 7.3.6 - Remote Code Execution via Shell Metacharacters in Log File Name
logwatch.pl in Logwatch 7.3.6 allows remote attackers to execute arbitrary commands via shell metacharacters in a log file name, as demonstrated via a crafted username to a Samba server.
by Dominik George
EIP-2026-102207 EXPLOITDB text VERIFIED
iOS Share 1.0 - Directory Traversal
by R3d@l3rt_ Sp@2K_ Sunlight
EIP-2026-102206 EXPLOITDB text VERIFIED
iOS myDBLite 1.1.10 - Directory Traversal
by R3d@l3rt_ Sp@2K_ Sunlight
EIP-2026-102203 EXPLOITDB text VERIFIED
iOS iDocManager 1.0.0 - Directory Traversal
by R3d@l3rt_ Sp@2K_ Sunlight
EIP-2026-101335 EXPLOITDB text VERIFIED
iSO Filer Lite 2.1.0 - Directory Traversal
by R3d@l3rt_ Sp@2K_ Sunlight
EIP-2026-101334 EXPLOITDB text
iSO Air Files 2.6 - Directory Traversal
by R3d@l3rt_ Sp@2K_ Sunlight
EIP-2026-101328 EXPLOITDB text
iphone pdf reader pro 2.3 - Directory Traversal
by Khashayar Fereidani