Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-100092 EXPLOITDB text
Acidcat CMS 3.3 - 'FCKeditor' Arbitrary File Upload
by Net.Edit0r
EIP-2026-111874 EXPLOITDB text
sahitya graphics CMS - Multiple Vulnerabilities
by Dr.0rYX & Cr3W-DZ
EIP-2026-106213 EXPLOITDB html
cPanel 11.x - Cross-Site Request Forgery (Edit E-mail)
by Mon7rF .
CVE-2010-4771 EXPLOITDB text
S-CMS 2.5 - SQL Injection via viewforum.php id Parameter
SQL injection vulnerability to viewforum.php in S-CMS 2.5 allows remote attackers to execute arbitrary SQL commands via the id parameter.
by LordTittiS
EIP-2026-117668 EXPLOITDB text
Native Instruments Service Center 2.2.5 - Local Privilege Escalation
by LiquidWorm
CVE-2010-3888 EXPLOITDB VERIFIED
Microsoft Windows - Privilege Escalation
Unspecified vulnerability in Microsoft Windows on 32-bit platforms allows local users to gain privileges via unknown vectors, as exploited in the wild in July 2010 by the Stuxnet worm, and identified by Kaspersky Lab researchers and other researchers.
by webDEViL
EIP-2026-115898 EXPLOITDB perl
Native Instruments Traktor Pro 1.2.6 - Stack Buffer Overflow (PoC)
by LiquidWorm
EIP-2026-115897 EXPLOITDB text VERIFIED
Native Instruments Reaktor 5 Player 5.5.1 - Heap Memory Corruption
by LiquidWorm
EIP-2026-115896 EXPLOITDB perl
Native Instruments Massive 1.1.4 - KSD File Handling Use-After-Free
by LiquidWorm
EIP-2026-115895 EXPLOITDB perl
Native Instruments Kontakt 4 Player - '.NKI' File Syntactic Analysis Buffer Overflow (PoC)
by LiquidWorm
EIP-2026-113001 EXPLOITDB text VERIFIED
vBulletin 4.0.8 PL1 - Cross-Site Scripting Filter Bypass within Profile Customization
by MaXe
CVE-2010-4772 EXPLOITDB text
S-CMS 2.5 - Cross-Site Scripting via id Parameter
Cross-site scripting (XSS) vulnerability in blocks/lang.php in S-CMS 2.5 allows remote attackers to inject arbitrary web script or HTML via the id parameter to viewforum.php.
by LordTittiS
CVE-2010-4769 EXPLOITDB text VERIFIED
Joomla! com_jimtawl 1.0.2 - Path Traversal
Directory traversal vulnerability in the Jimtawl (com_jimtawl) component 1.0.2 Joomla! allows remote attackers to read arbitrary files and possibly have unspecified other impact via a .. (dot dot) in the task parameter to index.php.
by Mask_magicianz
EIP-2026-118943 EXPLOITDB c VERIFIED
Native Instruments (Multiple Products) - DLL Loading Arbitrary Code Execution
by Gjoko Krstic
EIP-2026-117615 EXPLOITDB python VERIFIED
MiniShare 1.5.5 - 'users.txt' Local Buffer Overflow (Egghunter)
by 0v3r
EIP-2026-113062 EXPLOITDB text
ViArt Shop 4.0.5 - Multiple Vulnerabilities
by Ariko-Security
EIP-2026-111350 EXPLOITDB html
Plogger Gallery 1.0 - Cross-Site Request Forgery (Change Admin Password)
by Or4nG.M4N
EIP-2026-111063 EXPLOITDB html
PHPGallery 1.1.0 - Cross-Site Request Forgery
by Or4nG.M4N
CVE-2010-4770 EXPLOITDB text
CommodityRentals DVD Rentals Script - SQL Injection
SQL injection vulnerability in index.php in CommodityRentals DVD Rentals Script allows remote attackers to execute arbitrary SQL commands via the cat_id parameter in a catalog action.
by JaMbA
EIP-2026-105218 EXPLOITDB text
Arabian YouTube Script - Blind SQL Injection
by R3d-D3V!L
CVE-2010-3804 EXPLOITDB html VERIFIED
Apple Safari < 5.0.3 - Weak Random Number Generation in JavaScript Implementation
The JavaScript implementation in WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.3 on Mac OS X 10.4, uses a weak algorithm for generating values of random numbers, which makes it easier for remote attackers to track a user by predicting a value, a related issue to CVE-2008-5913 and CVE-2010-3171.
by Amit Klein
CVE-2010-3804 EXPLOITDB html VERIFIED
Apple Safari < 5.0.3 - Weak Random Number Generation in JavaScript Implementation
The JavaScript implementation in WebKit in Apple Safari before 5.0.3 on Mac OS X 10.5 through 10.6 and Windows, and before 4.1.3 on Mac OS X 10.4, uses a weak algorithm for generating values of random numbers, which makes it easier for remote attackers to track a user by predicting a value, a related issue to CVE-2008-5913 and CVE-2010-3171.
by Amit Klein
CVE-2009-2364 EXPLOITDB ruby VERIFIED
mp3-nator 2.0 - Stack-Based Buffer Overflow via Long String in .plf or listdata.dat File
Stack-based buffer overflow in Mp3-Nator 2.0 allows remote attackers to execute arbitrary code via (1) a long string in a .plf file and (2) a long string in the listdata.dat file, possibly related to a track entry.
by Muhamad Fadzil Ramli
EIP-2026-117065 EXPLOITDB ruby VERIFIED
DIZzy 1.12 - Local Stack Overflow
by g30rg3_x
EIP-2026-113343 EXPLOITDB text
WebRCSdiff 0.9 - 'viewver.php' Remote File Inclusion
by FL0RiX