header-logo
Suggest Exploit
explore-vulnerabilities

Explore Vulnerabilities

Vulnerability Type
No results found
SQL Injection (6861)
Buffer Overflow (3832)
Cross-Site Scripting (2498)
Denial of Service (1853)
Remote Code Execution (1507)
Cross-Site Scripting (XSS) (860)
Directory Traversal (845)
Remote File Include (787)
Remote File Inclusion (723)
Privilege Escalation (682)
Authentication Bypass (676)
Local File Inclusion (606)
Information Disclosure (489)
Remote Command Execution (459)
Arbitrary File Upload (430)
Blind SQL Injection (425)
HTML Injection (398)
Cross-Site Request Forgery (384)
Command Injection (352)
Cross-Site Request Forgery (CSRF) (339)
Stack Buffer Overflow (320)
Stack Overflow (304)
Remote SQL Injection (288)
Unquoted Service Path (266)
Memory Corruption (254)
Denial of Service (DoS) (249)
Stored XSS (246)
Local Privilege Escalation (245)
Local File Include (241)
Remote Denial of Service (229)
Stored Cross-Site Scripting (XSS) (213)
Use-After-Free (211)
Heap-overflow (201)
Remote Code Execution (RCE) (199)
Persistent Cross Site Scripting (187)
XSS (169)
Stack-Based Buffer Overflow (165)
Remote Buffer Overflow (146)
Format String Vulnerability (145)
CSRF (142)
Path Traversal (138)
Arbitrary Code Execution (135)
Integer Overflow (135)
Code Execution (134)
Remote File Disclosure (127)
Input Validation (125)
SQL Injection and Cross Site Scripting (123)
Stored Cross Site Scripting (119)
Command Execution (115)
Insecure Cookie Handling (113)
CWE
No results found
89 (8371)
79 (5970)
119 (4727)
78 (2054)
22 (1959)
98 (1882)
N/A (1389)
200 (1317)
400 (1282)
264 (1205)
287 (1107)
352 (1107)
94 (1044)
120 (1032)
20 (1031)
Unknown (897)
434 (856)
269 (278)
416 (254)
284 (227)
121 (196)
134 (187)
190 (149)
399 (138)
611 (120)
426 (115)
476 (110)
Buffer Overflow (110)
120 (Buffer Copy without Checking Size of Input) (104)
362 (96)
125 (92)
601 (89)
428 (88)
502 (86)
843 (86)
787 (85)
798 (85)
122 (77)
427 (73)
Not mentioned (70)
522 (68)
Not provided (59)
80 (55)
259 (54)
918 (47)
285 (45)
113 (40)
613 (39)
614 (37)
None (35)
CPE
No results found
N/A (12110)
Unknown (758)
None (168)
Not mentioned (160)
a:microsoft:internet_explorer (139)
o:microsoft:windows (133)
Not provided (121)
o:linux:linux_kernel (97)
Not Specified (91)
a:joomla:joomla (72)
Not Available (52)
a:wordpress:wordpress (49)
o:apple:mac_os_x (47)
o:freebsd:freebsd (44)
o:microsoft:windows_xp (37)
a:mozilla:firefox (35)
a:php:php (34)
o:microsoft:windows_2000 (34)
a:google:chrome (31)
o:sun:solaris (27)
o:microsoft:windows_2000::sp4 (25)
a:microsoft:iis (23)
a:wireshark:wireshark (23)
a:adobe:flash_player (22)
a:apache:tomcat (22)
a:apple:safari (22)
o:microsoft:windows_7 (22)
o:microsoft:windows_xp::sp2 (18)
a:invision_power_services:invision_power_board (16)
o:microsoft:windows_xp::sp3 (16)
o:sgi:irix (16)
a:apple:quicktime (15)
a:samba:samba (15)
a:mybb:mybb (14)
a:mysql:mysql (14)
a:phpnuke:php-nuke (14)
a:videolan:vlc_media_player (14)
a:cpanel:cpanel (13)
a:microsoft:windows_media_player (13)
a:openemr:openemr (13)
a:opera_software:opera (13)
Solaris (13)
2.0 (12)
a:freepbx:freepbx (12)
a:oracle:virtualbox (12)
a:php:php:5.0.0 (12)
apple:safari (12)
o:cisco:ios (12)
o:google:android (12)
o:hp:hp-ux (12)
Vendor
No results found
N/A (3323)
Microsoft (1771)
WordPress (679)
Unknown (576)
Joomla! (539)
Apple (448)
Sourcecodester (363)
Oracle (320)
IBM (256)
Apache (246)
Adobe (242)
Linux (228)
Cisco (195)
HP (178)
PHP (170)
Mozilla (165)
Google (163)
Sun (141)
D-Link (140)
Novell (125)
PHPGurukul (108)
Inc (107)
Symantec (100)
ManageEngine (92)
PHP-Nuke (92)
Codecanyon (89)
XOOPS (87)
Ltd. (85)
GNU (84)
MyBB (83)
PHP Script Small (83)
phpBB (79)
SAP (77)
FreeBSD (73)
Sun Microsystems (69)
NETGEAR (68)
Not mentioned (68)
SourceForge (67)
vBulletin (64)
TP-Link (63)
Hewlett Packard (61)
Trend Micro (60)
Wireshark (58)
McAfee (57)
Mambo (56)
IPSwitch (54)
Itechscripts (53)
VMware (52)
VideoLAN (51)
e107 (50)
Product Name
No results found
N/A (695)
Internet Explorer (307)
Windows (305)
Linux Kernel (183)
PHP (172)
Unknown (140)
Firefox (115)
Solaris (113)
Joomla (107)
Mac OS X (96)
Flash Player (90)
Windows XP (88)
WordPress (87)
CMS (71)
Safari (65)
Chrome (62)
FreeBSD (57)
vBulletin (57)
Windows 7 (57)
Wireshark (55)
Kernel (54)
PHP-Nuke (54)
MySQL (52)
phpBB (51)
VLC media player (50)
Windows 2000 (50)
Windows 10 (49)
MyBB (48)
IIS (46)
Winamp (45)
AIX (44)
iOS (43)
macOS (40)
Android (38)
Opera (38)
Oracle Database (38)
Tomcat (38)
Windows Media Player (38)
Invision Power Board (37)
Samba (37)
Irix (35)
PHP-Fusion (35)
Linux (33)
phpMyAdmin (33)
osCommerce (32)
RealPlayer (32)
Apache HTTP Server (31)
ProFTPD (31)
Chromium (30)
OpenEMR (30)
Version
From
No results found
N/A (6626)
Unknown (1795)
1 (969)
1.0 (901)
3.1 (727)
1.1 (324)
2 (285)
All versions (234)
1.2 (224)
2.0 (221)
2.1 (176)
3 (158)
1.5 (152)
1.3 (147)
1.0.0 (144)
2.2 (140)
All (119)
1.0.1 (106)
1.4 (100)
v1.0 (98)
0.1 (96)
3.0 (95)
2.5 (94)
4 (90)
1.0.2 (84)
not specified (84)
2.3 (81)
1.6 (75)
Not mentioned (73)
< 3.2 (70)
2.0.0 (70)
6 (68)
5 (64)
1.0.3 (62)
1.7 (61)
3.3 (60)
2.4 (58)
Windows 7 (58)
2.0.1 (57)
1.8 (53)
3.5 (52)
Windows 2000 (51)
0.2 (50)
3.0.0 (50)
Not provided (48)
2.6 (46)
1.0.4 (45)
2.0.2 (45)
4.0 (45)
4.2 (45)
To
No results found
N/A (7012)
Unknown (2690)
1.0 (858)
1 (801)
3.5-RC7 (386)
1.1 (311)
2 (250)
1.2 (247)
2.0 (229)
All versions (221)
2.1 (154)
3 (154)
Not mentioned (153)
1.5 (143)
1.3 (131)
not specified (131)
2.2 (129)
All (118)
Other versions may also be affected. (114)
1.0.0 (111)
1.0.1 (97)
v1.0 (95)
1.0.2 (92)
2.5 (91)
3.0 (91)
3.1 (90)
1.4 (89)
0.1 (84)
Prior versions (79)
Not provided (78)
4 (77)
2.3 (75)
1.6 (73)
5 (66)
1.7 (63)
3.2 (63)
1.0.3 (61)
6 (60)
2.4 (57)
3.3 (57)
Windows 10 (55)
1.8 (54)
2.0.1 (54)
3.5 (49)
None (48)
2.0.2 (47)
2.6 (46)
4.0 (45)
4.2 (45)
0.2 (43)
Severity Type
No results found
HIGH (33432)
MEDIUM (4697)
N/A (2324)
CRITICAL (1722)
LOW (287)
Severity Number
No results found
7.5 (16267)
7 (7608)
5 (6608)
8 (3345)
N/A (2741)
9 (2195)
8.8 (1966)
5.5 (1836)
3 (1433)
9.8 (995)
Exploit Author
No results found
SecurityFocus (6696)
Unknown (2432)
Ihsan Sencan (887)
Gjoko 'LiquidWorm' Krstic (388)
Anonymous (356)
Project Zero (308)
milw0rm.com (271)
juan vazquez (245)
rgod (243)
LiquidWorm (222)
MC (202)
ajann (187)
Luigi Auriemma (187)
N/A (187)
Google Security Research (183)
indoushka (182)
shinnai (162)
sinn3r (154)
hdm (138)
John Page (aka hyp3rlinx) (134)
jduck (121)
cr4wl3r (113)
Hussin X (113)
Not mentioned (111)
Vulnerability Laboratory Research Team (108)
ZoRLu (99)
Kacper (a.k.a Rahim) (92)
nu11secur1ty (91)
mr_me (90)
Easy Laster (89)
CWH Underground (88)
S@BUN (84)
SirGod (83)
Ahmet Ümit BAYRAM (82)
High-Tech Bridge Security Research Lab (80)
xoron (80)
Dr_IDE (78)
Sid3^effects aKa haRi (78)
hyp3rlinx (75)
Todor Donev (75)
Stack (73)
Francis Provencher (71)
High-Tech Bridge SA - Ethical Hacking & Penetration Testing (70)
Ismail Tasdelen (70)
AntiSecurity (69)
His0k4 (68)
Kingcope (65)
ThE g0bL!N (65)
Not Specified (64)
Miroslav Stampar (61)
Platforms Tested
No results found
N/A (12658)
Windows (5027)
Linux (3465)
None (1839)
Mac (983)
Unknown (939)
Windows XP SP3 (683)
WiN7_x64/KaLiLinuX_x64 (546)
Windows 10 (540)
unix (487)
Windows 7 (411)
Kali Linux (345)
PHP (326)
Kali linux X64 (296)
Win7 x64 (276)
Windows XP SP2 (267)
Windows XP (234)
WordPress (203)
iOS (151)
All (142)
Ubuntu (138)
macOS (134)
Not mentioned (132)
Apache (121)
Microsoft Windows (117)
Not Specified (108)
Solaris (105)
Windows 7 x64 (98)
Android (96)
Xampp (91)
FreeBSD (90)
Windows 10 Pro x64 es (80)
Mac OS X (78)
Windows 2000 (77)
Windows 10 x64 (74)
Ubuntu 18.04 (72)
Windows 7 SP1 (70)
Windows Vista (70)
Not provided (69)
Windows SP2 Français V.(Pnx2 2.0) + Lunix Français v.(9.4 Ubuntu) (68)
Windows 7 x86 (67)
Windows XP SP3 EN (62)
Kali Linux 2.0 (59)
Windows 10 Pro (59)
Windows XP Professional SP2 (59)
Debian (57)
Linux & Windows (55)
Ubuntu 20.04 (55)
GNU/Linux (53)
Windows XP Professional SP2 with Internet Explorer 7 (53)
Year
Year
No results found
2008 (3443)
2009 (3242)
2020 (2782)
Unknown (2618)
2010 (2541)
2002 (2329)
2006 (2050)
2012 (1810)
2005 (1774)
2018 (1746)
2017 (1739)
2007 (1560)
2011 (1328)
2019 (1296)
2013 (1295)
2016 (1130)
2015 (1109)
2021 (1108)
2014 (995)
2023 (736)
2004 (529)
2022 (478)
2001 (444)
2003 (387)
2024 (272)
2000 (238)
N/A (178)
Not mentioned (138)
1999 (136)
Not Specified (92)
Not provided (89)
1998 (72)
2025 (70)
1997 (48)
1996 (16)
Not available (9)
HIGH (6)
None (6)
[date] (4)
2005-2006 (4)
0day (3)
1994 (3)
Discovered in 2020 (3)
Found in 2020 (3)
MEDIUM (3)
TBD (3)
1988 (2)
2003-2004 (2)
2004-2019 (2)
2006-2007 (2)

Explore all Exploits:

Show More

ActSoft DVD-Tools (dvdtools.ocx) Buffer Overflow Exploit

This exploit takes advantage of a buffer overflow vulnerability in the ActSoft DVD-Tools (dvdtools.ocx) ActiveX control. It allows an attacker to execute arbitrary code on the target system by overflowing the buffer and overwriting the SEH handler.

7.5
CVSS
HIGH
Buffer Overflow
119
CWE
Product Name
DVD-Tools
Platforms Tested
Windows 2000 SP4 Server English, Windows 2000 SP4 Professional English
Affected Version
From:
To:
2007
Show More

Mambo CMS N-Skyrslur Cross-Site Scripting Vulnerability

The Mambo CMS N-Skyrslur is prone to a cross-site scripting vulnerability due to improper sanitization of user-supplied input. An attacker can exploit this vulnerability by injecting arbitrary script code in the browser of a targeted user. This can lead to the theft of cookie-based authentication credentials and facilitate other malicious activities.

5.5
CVSS
MEDIUM
Cross-Site Scripting
79
CWE
Product Name
N-Skyrslur
Platforms Tested
Affected Version
From:
To:
Show More

SQL Injection in Web Professional

The Web Professional application is vulnerable to SQL injection attacks due to inadequate sanitization of user-supplied data before using it in an SQL query. This vulnerability can be exploited by an attacker to compromise the application, gain unauthorized access or modify data, and potentially exploit other vulnerabilities in the underlying database.

7.5
CVSS
HIGH
SQL Injection
89
CWE
Product Name
Web Professional
Platforms Tested
Affected Version
From:
To:
Show More

SQL Injection vulnerability in Serendipity

Serendipity is prone to an SQL-injection vulnerability because it fails to sufficiently sanitize user-supplied data before using it in an SQL query. Exploiting this issue could allow an attacker to compromise the application, access or modify data, or exploit latent vulnerabilities in the underlying database.

7.5
CVSS
HIGH
SQL Injection
89
CWE
Product Name
Serendipity
Platforms Tested
Not specified
Affected Version
From:
1.5.2001
To:
Not specified
Not specified

Recent Exploits:

RDPGuard 9.9.9 – Privilege Escalation

author
Ahmet Ümit BAYRAM
vendor
RDPGuard
severity
6.1
HIGH

YesWiki Unauthenticated Path Traversal

author
Al Baradi Joy
vendor
YesWiki
severity
7.1
HIGH

ABB Cylon Aspect 3.08.02 Stored Cross-Site Scripting Vulnerability

author
Gjoko 'LiquidWorm' Krstic
vendor
ABB Ltd.
severity
6.1
HIGH

Apache ActiveMQ 6.1.6 – Denial of Service (DOS)

author
Abdualhadi khalifa
vendor
Apache
severity
6.1
HIGH

GeoVision GV-ASManager 6.1.1.0 – CSRF

author
Giorgi Dograshvili [DRAGOWN]
vendor
GeoVision
severity
6.1
HIGH

ABB Cylon FLXeon 9.3.4 WebSocket Command Spawning Vulnerability

author
Zero Science Lab
vendor
ABB Ltd.
severity
6.1
HIGH

GestioIP 3.5.7 – Stored Cross-Site Scripting Vulnerability

author
m4xth0r (Maximiliano Belino)
vendor
GestioIP
severity
6.1
HIGH

Cacti 1.2.26 – Remote Code Execution (RCE) (Authenticated)

author
D3Ext
vendor
Cacti
severity
6.1
HIGH

Exclusive Addons for Elementor ≤ 2.6.9 – Authenticated Stored Cross-Site Scripting (XSS)

author
Al Baradi Joy
vendor
exclusiveaddons
severity
5.1
MEDIUM

Kentico Xperience 13.0.178 – Cross Site Scripting (XSS)

author
Alex Messham
vendor
Kentico
severity
6.1
HIGH

Navigation

Suggest Exploit

Services By CQR

cqrsecured