Exploitdb Exploits

50,095 exploits tracked across all sources.

Sort: Activity Stars
EIP-2026-118932 EXPLOITDB html VERIFIED
Multiple Browsers (FF3.6.7/SM 2.0.6) - Clickjacking
by Pouya Daneshmand
EIP-2026-118483 EXPLOITDB ruby VERIFIED
EasyFTP Server 1.7.0.11 - 'LIST' (Authenticated) Remote Buffer Overflow (Metasploit)
by Muhamad Fadzil Ramli
EIP-2026-114586 EXPLOITDB text
ZeeNetworking 1x - Arbitrary File Upload
by SONIC
EIP-2026-114585 EXPLOITDB text
ZeeMatri 3.x - Arbitrary File Upload
by SONIC
EIP-2026-114581 EXPLOITDB text VERIFIED
ZeeAdbox 2.x - SQL Injection
by SONIC
EIP-2026-112949 EXPLOITDB text
ValidForm Builder script - Remote Command Execution
by HaCkEr arar
CVE-2005-0929 EXPLOITDB text VERIFIED
PhotoPost PHP Pro <5.x - SQL Injection
SQL injection vulnerability in PhotoPost PHP Pro 5.x may allow remote attackers to execute arbitrary SQL commands via (1) the sl parameter to showmembers.php or (2) the photo parameter to showphoto.php.
by CoBRa_21
EIP-2026-110621 EXPLOITDB text
PhotoPost - PHP SQL Injection
by Cyber-sec
EIP-2026-109136 EXPLOITDB text
LILDBI - Arbitrary File Upload
by EraGoN
CVE-2010-2907 EXPLOITDB text VERIFIED
com_huruhelpdesk - SQL Injection via cid[0] Parameter
SQL injection vulnerability in the Huru Helpdesk (com_huruhelpdesk) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the cid[0] parameter in a detail action to index.php.
by Amine_92
CVE-2010-2921 EXPLOITDB text VERIFIED
Joomla! com_golfcourseguide <0.9.6.0 - SQL Injection
SQL injection vulnerability in the Golf Course Guide (com_golfcourseguide) component 0.9.6.0 beta and 1 beta for Joomla! allows remote attackers to execute arbitrary SQL commands via the id parameter in a golfcourses action to index.php.
by Valentin
EIP-2026-108381 EXPLOITDB text VERIFIED
Joomla! Component com_iproperty - SQL Injection
by Amine_92
EIP-2026-103931 EXPLOITDB text VERIFIED
IBM Java - UTF8 Byte Sequences Security Bypass
by IBM
EIP-2026-102597 EXPLOITDB text VERIFIED
FTP Client 0.17-19build1 ACCT (Ubuntu 10.04) - Buffer Overflow (PoC)
by d0lc3
EIP-2026-102534 EXPLOITDB text VERIFIED
SAP NetWeaver 6.4/7.0 - 'wsnavigator' Cross-Site Scripting
by Alexandr Polyakov
EIP-2026-116131 EXPLOITDB perl VERIFIED
Quick 'n Easy FTP Server 3.9.1 - 'USER' Remote Buffer Overflow
by demonalex
CVE-2010-2924 EXPLOITDB text VERIFIED
myLinksDump Plugin 1.2 - SQL Injection
SQL injection vulnerability in myLDlinker.php in the myLinksDump Plugin 1.2 for WordPress allows remote attackers to execute arbitrary SQL commands via the url parameter. NOTE: some of these details are obtained from third party information.
by H-SK33PY
EIP-2026-110978 EXPLOITDB text VERIFIED
phpBB MOD 2.0.19 - Invitation Only (PassCode Bypass)
by Silic0n
EIP-2026-110938 EXPLOITDB text VERIFIED
phpBazar Admin - Information Disclosure
by Net_Spy
EIP-2026-108407 EXPLOITDB text VERIFIED
Joomla! Component com_jomtube - 'user_id' Blind SQL Injection
by SixP4ck3r
CVE-2010-4948 EXPLOITDB text
PHP Free Photo Gallery <libs/adodb/adodb.inc.php - RCE
PHP remote file inclusion vulnerability in libs/adodb/adodb.inc.php in PHP Free Photo Gallery script allows remote attackers to execute arbitrary PHP code via a URL in the path parameter.
by ViRuS Qalaa
EIP-2026-107219 EXPLOITDB text
Free PHP photo Gallery script - Remote Command Execution
by ViRuS Qalaa
EIP-2026-105897 EXPLOITDB text VERIFIED
Claus Muus Spitfire 1.0.336 - Multiple Cross-Site Scripting Vulnerabilities
by High-Tech Bridge SA
CVE-2010-2915 EXPLOITDB text VERIFIED
AJ Square AJ HYIP PRIME - SQL Injection
SQL injection vulnerability in welcome.php in AJ Square AJ HYIP PRIME allows remote attackers to execute arbitrary SQL commands via the id parameter.
by JosS
CVE-2010-2916 EXPLOITDB text VERIFIED
AJ Square AJ HYIP MERIDIAN - SQL Injection
SQL injection vulnerability in news.php in AJ Square AJ HYIP MERIDIAN allows remote attackers to execute arbitrary SQL commands via the id parameter.
by JosS